red(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) r3 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r4) setfsgid(r4) r5 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r6) write$P9_RSTATu(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="9e0000007d010000008301010005000000200400000006000000c7aac70500000000000000000001010000e90000000000000038007365637572697479747275737465bfaa00c3c600000000007374656d6d643573756d6d6435e485a48c419046427e18dfbbbcf073756d24656d3170703023656d3063707573657404007573f9c40e0070726f63266d69200db7e2097e696d655f7479706506006274726673000600627472667300d394a4fe0204bfc2531c797bdb460836f2cdbcb9c33b390308be4f0dda406d69b2b7dabc", @ANYRES32=r2, @ANYRES32=r4, @ANYRES32=r6], 0x9e) rt_sigsuspend(&(0x7f0000000080)={[0x4]}, 0x8) 16:44:41 executing program 5: time(&(0x7f0000000080)) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f00000000c0)={&(0x7f0000000200)="4df8dac51e93ea5461178f8d003ccb5b2b7eb762f8068b83eb220a130c8d7fcfe8f49544161e9d613ba976ccd4417a0f2bfe6c84c20e428fa8bff308bc706abcdb629b7c947a68e064fa14c83f42d183e61fc47d36c18bd5c5d642b064b57ab7fdda843d48e1e9991aa11e6a02ef031fffff639596d48ada85a99ec99b63aaf6e5d14d134268edd0bf2f7daa590bb7e245c52e3c41e30ece51a845d19a6fbc74956c916d30768604737db93a0620077a057427b6", &(0x7f00000002c0)=""/177, &(0x7f0000000380)="e2f251ecc10e4a173f73ebbd1e1097730ca53e670bb50adcead9cee0dfc5cbe3aeaa393ae320aed53c268f2d4d9d726011192f7794c392e7f634df8e4737a88109f01e8bbf2f371f9610fcfca0860adfd570d59db423d19640c97f58566539a5156854eadec550e7bb7d5fc047a2630041e2fd894945c223cb8faf1482e31e9565f6f8054e31be5d1ecb4dd244c8125abbeefd3b38662dcd357dd040f0b9fa", &(0x7f0000000440)="37b471cba4952ddf58ed49885a397d9eb2d9712f3173ecdcd1c887e46a920bced013295441aed743c1dc15045c3257ef3b63a329fbfcfa3ae948fd0961746df54da87d8fd0c719a5b73c995e292962e74fcdf684423372d457e36149b265a65315f90fb219d0c7711f1f7d72a3202a6456d0caca309dca0592051eab0488b9e5cc0cbb62193f8754f1f8a64c5afe0a4cda485f67b8a052e21a4e9d9e05dd5a207b48dc15e96bf360394f73fa45b63c8406cb51fcb6", 0x20, r1, 0x4}, 0x38) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$EVIOCGABS2F(r2, 0x8018456f, &(0x7f0000000500)=""/209) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) dup2(r4, r3) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0xa, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @loopback={0xff00000000000000}}, r5}}, 0x48) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000180), 0x4, {0xa, 0x4e22, 0x0, @remote, 0x7fff}, r5}}, 0x38) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000100)={0xb, 0x10, 0xfa00, {&(0x7f0000000600), r5, 0x100}}, 0x18) 16:44:41 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0x400, 0x0) ioctl$TIOCGRS485(r0, 0x542e, &(0x7f00000000c0)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r1, 0x81e6c000) r2 = socket$inet_sctp(0x2, 0x5, 0x84) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000180)={r4}, 0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000100)={r4, 0x7}, &(0x7f0000000200)=0x8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:41 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000200)={{{@in6=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in6=@private1}}, &(0x7f0000000300)=0xe8) mount$9p_rdma(&(0x7f0000000080)='127.0.0.1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x1880044, &(0x7f0000000340)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x800}}, {@common=@afid={'afid', 0x3d, 0x8cab}}], [{@uid_lt={'uid<', r0}}, {@seclabel='seclabel'}]}}) 16:44:41 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f0000000080)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockname$packet(r0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000580)=0x14) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'batadv0\x00', r1}) 16:44:42 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=0x0) r2 = getpid() sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x480200, 0x0) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000100)={r4, r5, 0x785}) 16:44:42 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r2}, 0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000200)={r2, 0x1000, "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"}, &(0x7f0000000080)=0x1008) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f00000000c0)={r3, 0xff}, &(0x7f0000000100)=0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket$inet_sctp(0x2, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000180)={r6}, 0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000001240)=r6, 0x4) 16:44:42 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SNDCTL_DSP_GETBLKSIZE(r0, 0xc0045004, &(0x7f0000000000)) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="8da4363ac0ed02000a0000000001004d0100c200000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d8ced7611788a8a6e1589e1aa0712af8ff3b95c2192de6a82a78ab114b8e7399f94f3ab0da370f2e2319120bc90ad0e24d653d18ae3a5783f", 0x81, 0x10000}], 0x40000, 0x0) 16:44:42 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0xff}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$FIONREAD(r1, 0x541b, &(0x7f00000000c0)) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f0000000000)={0x3, 0x3, 0x9c}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f0000000540)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x174, r4, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x418}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'netpci0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @multicast1}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xfffffff7, @mcast2, 0x3f}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1b9c2442}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}]}]}, @TIPC_NLA_SOCK={0x78, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5c}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xc7ec}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x49}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6cf9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}]}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80000000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xa39e}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x80000001}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x1}, 0x3) write$binfmt_script(r0, &(0x7f0000000200)={'#! ', './file0', [{}, {0x20, '%^*\xb4eth0'}, {}, {}, {0x20, 'wlan1$-%'}, {0x20, 'wlan1-W'}, {0x20, 'btrfs\x00'}, {0x20, 'btrfs\x00'}, {0x20, 'wlan09^{procvmnet1'}], 0xa, "661083c6e092ad74158624f1ef4d54e8118db1aba4cb0c21b8fc999dd731cdb975071b822049e2725b82e5e5907dec303e436c282901a355389e3fe40d592755eba07bb243c6feca7fcf5e10c7ce639ed2c4bbef6d8bfdeda76facfe94f745589fa79ffb03ad0974b51d7eb073754bea3dd253393380b84346d4bf9359a8105c250c0c8963279ed872812e14e3cfdfbb73959f3d39cac0c64f"}, 0xe2) 16:44:42 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) setsockopt$CAN_RAW_FD_FRAMES(r0, 0x65, 0x5, &(0x7f0000000080), 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:43 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) socket$bt_hidp(0x1f, 0x3, 0x6) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x0, 0x3, 0xd53, 0x1, 0x27}}) 16:44:43 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3fffffffff, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a29bd350000000001006d010000000000000000007a0000000000fff6f2a2299720aeb81e1b00b10efd9a000001000000000001fffffff60000005f46485266276e2855763d0be35a3785004fe5804ba7c65246915e1bc55cd7d4b7b36c5b399b36397ee56fe9878b25cd05b1813cca27dfae9c5c7137b45416de2fef583adfa4671867283ce0c1b073b44bab607ef66f43cfcc04e2e5e9d4387798531d0f94b62505", 0xab, 0x10000}], 0x8, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:43 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cachefiles\x00', 0x4c00, 0x0) waitid$P_PIDFD(0x3, r1, 0x0, 0x8, &(0x7f0000000200)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x17) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x8}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:43 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) setsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, &(0x7f0000000080)=0x1, 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x8, 0x0) 16:44:43 executing program 2: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x20000, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xa8, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'team_slave_1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_macvtap\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'macvlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_logind_var_run_t:s0\x00'}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20004040}, 0x4800) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x101202, 0x0) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000500)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICLIST(r4, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'rose0\x00'}]}, 0x4c}}, 0x4) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r6, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r6, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r6, 0x81e6c000) fcntl$F_SET_FILE_RW_HINT(r6, 0x40e, &(0x7f0000000300)=0x4) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x8c, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:tty_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010102}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24000800}, 0x4800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:44 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x1, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed5b728502000a000000007ad54d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x4b, 0x1}], 0x2084000, 0x0) 16:44:44 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x302580e, 0x0) symlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) lgetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)=@known='system.posix_acl_default\x00', &(0x7f0000000380)=""/251, 0xfb) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000280)={0x3, 0x2, 0xffffff76, 0x4d8af82b, &(0x7f0000000200)=[{}, {}]}) 16:44:44 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r0, 0x40044103, &(0x7f0000000080)=0x9) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:44 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) exit_group(0x7) 16:44:44 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0xffffffff}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:44 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) pwrite64(r0, &(0x7f0000000080)="caff358d9d0ec65ae33d6e5819fc2b8646b3783d2eb9672de1c9d9ac884bb39245c12bcc02b37b03c796eaf54747c8c0965c437cdfbc31712d89ac37e25d17b501fa20ff7adc385f930669453ace7c041ff4ab0d66d6f3cd06af49", 0x5b, 0x97) 16:44:44 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) setsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000080)="4f3d7776138abd4a2ba132b5ffa50bee3c7d4149a832e61b9647bc2790a9249e5689b498a3c08a926ee7baf96d", 0x2d) 16:44:44 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000000200)={{0x1, 0x100000, 0x8, 0x8, 0x0, 0x5, 0x1d, 0x4, 0xff, 0x6b, 0xd1, 0x78}, {0x5000, 0x4000, 0x9, 0x81, 0x6, 0x1f, 0xff, 0x61, 0x3f, 0x0, 0x3, 0x80}, {0x1000, 0xd000, 0xb, 0x9, 0x3, 0x1f, 0x0, 0x6, 0x0, 0x20, 0x0, 0x1f}, {0x0, 0x0, 0xa, 0x1f, 0xaa, 0x1, 0xc1, 0xfb, 0x54, 0x1, 0xf5, 0xc0}, {0x3000, 0x100000, 0x3, 0x5, 0x0, 0x80, 0xa0, 0x5, 0x31, 0x81, 0x5, 0x5f}, {0x1, 0x10000, 0xf, 0x3, 0xa1, 0x5, 0x6, 0x26, 0x4, 0x0, 0x3f, 0x5}, {0x0, 0x4000, 0x4, 0x1f, 0xaf, 0x7f, 0x3, 0x1, 0x9, 0x0, 0x4, 0xfc}, {0x2000, 0x101000, 0xb, 0x1f, 0x1, 0x7, 0x4, 0x7, 0x8, 0xcf, 0x80}, {0x6000, 0x2}, {0x5000, 0x5}, 0x4000a, 0x0, 0x2000, 0x428020, 0xb, 0x4500, 0x6000, [0xfe, 0x3, 0x3, 0x1]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) set_thread_area(&(0x7f0000000080)={0x7, 0xffffffffffffffff, 0x400, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1}) pipe(&(0x7f00000000c0)) 16:44:44 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_SETPLANE(r0, 0xc03064b7, &(0x7f00000000c0)={0x0, 0x8173, 0xffffffc0, 0x21, 0x800, 0x0, 0x5, 0xffffffff, 0x5, 0x1, 0x5, 0x7}) [ 353.321623] BTRFS error (device loop4): superblock checksum mismatch 16:44:45 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000280)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003c80), 0x38e, 0x62, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300)='/dev/hwrng\x00', 0x1, 0x0) sendmmsg$nfc_llcp(r2, &(0x7f0000002900)=[{&(0x7f0000000340)={0x27, 0x1, 0x1, 0x4, 0x80, 0x4, "d6afc1d1cfe16fa0909a8fd715ce9c4ccd11f99b997e10ac6ce31e8c01727fe2ef11e9a40bd86d2b4b5c26803a12df2222d85eddc5ea357061e1bbb37cc20a", 0x25}, 0x60, &(0x7f0000002600)=[{&(0x7f00000003c0)="1072c36b921c78ee31f37f7afc312a74389336222f1e6dfbd9f41b626dfc9b285179ec033d06470ac0ea1db3caa6344cd1878d59a9e34f92def75ec0a41bbde09c4cf216fedf388b82d2f232a857319eb3699d12037d07d18489024de7266089b3a31235f92b39ccb825af2ada4c4b09", 0x70}, {&(0x7f0000000440)="3418", 0x2}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="97f62c46a1cb255d6487a5ea4e9acbb1b3ad8fca363d8b019fba4d84e7748ed24fbe707456faab00d9388e65d6a8fb7d6752ca59a4f9c19fac12c7b668c499131b7957e3e123413db14a36542f1b4b741cb611f582daba3bdabe743fdbe118e4690aef8fdbebbc3093166e755e5d615a36218688174beb003782bfbcb67ef890852cc72b134ed178a6a2b62321770d64d3faac92a0f8d5", 0x97}, {&(0x7f0000001540)="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", 0x1000}, {&(0x7f0000002540)="22204509f94559b9b0d4c80eb7b9c7abf7e4c4c62c3949c1c58896ec362d6055813118c36a469f29f747f5d5106c23a2f19ac892df79f16681c969a44fff79efae12d08b4d686d90e8665f670addb08adc72c613dddbd05e278375ee5768ae7a5a482d9377e85634034fbe19877f4c306a5de9bc50a97f19e62a3c05c08d00cac06097be46bac624f41b1eb144c33b0a0bb2406e78ba9d56f8", 0x99}], 0x6, &(0x7f0000002680)={0xd0, 0x114, 0x1, "b1e4954185c73383e9184816b9de61c38397e38b87989b7576d659f8e4c441421295cb8ab9f94def679b8436a384e8cc6f190653a01c8206bf92bd5f6f9444db2bf59c0767e3d02415eaa5a967e129db573eb6678ab649ac5dd4ac27aa9819079a25d5ee9819c4e44c2717da269362eb0c33113eb549b6b31f0da2e7df11865031bbda2d9d9935966cfa9c81cd7b81b46ef97f7fcb155833590bf7a1073c6c3603373a32daf102f9dc8d9a35aa45c7d72b3ac65b320050bbbf87b87cd696a7bc"}, 0xd0, 0x20000801}, {&(0x7f0000002780)={0x27, 0x0, 0x0, 0x3, 0xfb, 0x3f, "a6c4d197769cdb9fe6acbbed573e6b153c88148f5f79b8937be7411bb7383f296465790b2431b86c27ebfc3806e05797fab72f8d47c964f7637335e9483793", 0x3}, 0x60, &(0x7f00000028c0)=[{&(0x7f0000002800)="a5b7eae8c576ac393dc830a3a2", 0xd}, {&(0x7f0000002840)="d8cb90f4a6ccc2a22c4890fc618843df9f2e10f1b0012fcb23e1acfd24d2d6de80509630cdc83450172cbc3b0ed770231807e25891169ab17bba59b433dfe746403b9832cde248b1d69fb1223eda4a001b9de15876edefbfdd38c8fd88488ab3ece087ccd06ae0b6", 0x68}], 0x2, 0x0, 0x0, 0x40004}], 0x2, 0x20045808) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r1, 0x81e6c000) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x9d0000, 0x3f, 0x2, r1, 0x0, &(0x7f00000000c0)={0x9c0909, 0x401, [], @p_u8=&(0x7f0000000080)=0x2}}) getsockopt$IP6T_SO_GET_REVISION_MATCH(r3, 0x29, 0x44, &(0x7f0000000200)={'icmp\x00'}, &(0x7f0000000240)=0x1e) [ 353.409097] BTRFS error (device loop4): open_ctree failed [ 353.470531] BTRFS error (device loop4): superblock checksum mismatch [ 353.524022] BTRFS error (device loop4): open_ctree failed 16:44:45 executing program 0: eventfd2(0x9, 0x80000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x6}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) r2 = geteuid() mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x10, &(0x7f0000000200)={'trans=unix,', {[{@cache_mmap='cache=mmap'}, {@fscache='fscache'}, {@cache_none='cache=none'}], [{@dont_measure='dont_measure'}, {@subj_role={'subj_role', 0x3d, 'wlan1em0)bdev#4GPL\\'}}, {@euid_gt={'euid>', r1}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x64, 0x61, 0x11, 0x64, 0x63, 0x39, 0x35], 0x2d, [0x32, 0x38, 0x31, 0x37], 0x2d, [0x31, 0x30, 0x37, 0x39], 0x2d, [0x0, 0x35, 0x36, 0x66], 0x2d, [0x62, 0x34, 0x36, 0x36, 0x63, 0x64, 0x33, 0x34]}}}, {@seclabel='seclabel'}, {@euid_eq={'euid', 0x3d, r2}}]}}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) openat$cgroup_procs(r3, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) 16:44:45 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x10000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) setxattr$security_capability(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.capability\x00', &(0x7f00000002c0)=@v1={0x1000000, [{0x2}]}, 0xc, 0x1) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0xc3) write(r1, &(0x7f0000000200)="44a38acfcf8e275dc3a6a7cda6fa056b5dbaa9c0fa38f7b84b9adeb16d5f2b32d974737ffc16d45478b0ff3c05a2c8dd8aa6f5e47693fe3c39543fb7f7b6561b3d0d9d325417edf5d5ee429bbb1d5163b17ed3f4e0f386d5d3b389a43b09ba6d511f01cc7f94c3d4bc4596293b20f491114fcb2270bab5e0db77074182719ed9a07f02be4f291592bfe81e831c349c014a0fb67bf0dd9a2cabd2ad3d", 0x9c) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) inotify_add_watch(r3, &(0x7f0000000340)='./file0\x00', 0x24000000) r4 = dup3(r0, r2, 0x80000) mknodat(r4, &(0x7f0000000080)='./file0\x00', 0x10, 0x3) [ 353.717902] BTRFS error (device loop4): superblock checksum mismatch 16:44:45 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000080)) [ 353.777955] BTRFS error (device loop4): open_ctree failed 16:44:45 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a00b9000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x100000, 0x0) 16:44:45 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001014d010000000000000000007a0000f5fffffef6f2a2299748aeb82d1b00b10efd9a000001000000000001fffffff60000005c42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 354.146008] print_req_error: I/O error, dev loop5, sector 0 16:44:45 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000015c0)={&(0x7f00000014c0), 0xc, &(0x7f0000001580)={&(0x7f0000001500)={0x54, 0x9, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_ADT={0x14, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x346}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x8001}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x7}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xd2}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x48000) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f00000000c0)='wireguard\x00') sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000001480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x1274, r2, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x5fc}, @WGDEVICE_A_PEERS={0x538, 0x8, 0x0, 0x1, [{0x18, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @private=0xa010102}}]}, {0x320, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "e5eeda4e8758b0f2fb84a841336a925300df90cc8849d3779fa01accbcf5408f"}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}, @WGPEER_A_ALLOWEDIPS={0x2b8, 0x9, 0x0, 0x1, [{0x10c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, [], 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, [], 0x1}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x19}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x2}}]}, {0xac, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={[], [], @loopback}}, {0x5}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x10}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, [], 0x3d}}, {0x5}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @broadcast}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x3}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @broadcast}}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x74, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "248db8c5a062a690b074258892ce7ffd0cdf999a104cabcc46ed998108c34f66"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x200}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg='\xdb\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff'}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7}, @WGPEER_A_FLAGS={0x8, 0x3, 0x4}]}, {0x78, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x5}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xb203, @mcast2, 0xfffffffa}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "47ef6cd6c068d895f1abcd0f7fd324852daa01a054f487d302f26c2a7f1cb5f8"}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x5, @private0, 0xffffffff}}]}, {0xbc, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g='\xd1s(\x99\xf6\x11\xcd\x89\x94\x03M\x7fA=\xc9Wc\x0eT\x93\xc2\x85\xac\xa4\x00e\xcbc\x11\xbeik'}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g='\xd1s(\x99\xf6\x11\xcd\x89\x94\x03M\x7fA=\xc9Wc\x0eT\x93\xc2\x85\xac\xa4\x00e\xcbc\x11\xbeik'}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x7, @mcast1, 0x8}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g='\x97\\\x9d\x81\xc9\x83\xc8 \x9e\xe7\x81%K\x89\x9f\x8e\xd9%\xae\x9f\t#\xc20xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000040)=[{&(0x7f0000000440)}, {&(0x7f0000000340)="bff79f882e87edf67b371931394ea52a60a07670cb59cadeddb902b4777338d701cd6d6b605e408bcea732e55063862e3f659334aa3fa12d9a11b547b2fa218490b3012fbcde4376576676a1743291185679023fa250f3c3dd795f32875dd044f0b1bb3102d7cb461fdca0569a47248ec0397d917a5b5606cb172be531336226cc6821d4ab14c7e22f1e9ab1d12ea445a1e12e3ba109f2a114372edb214315df9ee88ea5204dcae9fa5dadf960d3b5ec479b1141b1fbf35e0213f82f3bc293d852e2349bb4faa91416e2788074584e6bc5dc8b79e4589f26ee8d63dfc4c1da451d7bf77f6ef07830718c09b1", 0xec}], 0x2, 0x0) close(r3) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f00000002c0)={@empty, @broadcast}, &(0x7f0000000440)=0xc) ioctl$int_in(r3, 0x5452, &(0x7f00000001c0)) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "6bd2cf9a2508a570", "b39bcd84dea6fe2281106ee7c7789f1c", "e6df2b97", "d6465b4b89361353"}, 0x28) splice(r2, 0x0, r3, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0}) ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f0000000180)={0x0, 0xc, 0x4, 0x20000, 0x0, {r4}, {0x5, 0x2, 0x60, 0x8, 0x0, 0x7f, "18de0416"}, 0x8000, 0x4, @planes=&(0x7f0000000100)={0x58, 0x2, @userptr=0xffffffff, 0x3}, 0x79f0, 0x0, 0xffffffffffffffff}) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r5, 0x800442d2, &(0x7f0000000300)={0x6, &(0x7f0000000200)=[{0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @multicast}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @link_local}]}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) inotify_init1(0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) write$tun(r0, &(0x7f0000000680)={@void, @val={0x0, 0x0, 0xc6}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "a5c268", 0x1290, 0x3a, 0xff, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc]}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, [{0x5, 0x19, "e5fb000005005357cd99e33bca98e246dc9027eb3334ea443e7fdc4049b892d54090878bee496aa11e07fb0f1db1a0ebe2f95347b0317613063381165c01f08fea1048ea59a6f2273e02707fdd7defc02bde3192360593169594710bddd04aead6c89c87778555de42d23236534ba1a799a63eb4532003a703b249e4628e4706bccc7a264ee85014d99a7fd4565d3c416c835a741eb4e97140e834013724d23450072f0087ac65295ca0d7c601c30de0161560e2d20c5b1052e9b208e25470e9fa884ecd2082ec38b3cb19c083"}, {0x0, 0x1b, "14a142ef59c04e8e7b4db5309006bd98ec79847a52ed68124e8a24d3079fc53b81c039a7d59f992dcb481043f510a0ce1ebb98c07a624ff8c8cc0b4fd3b8e700196d1f5696e184393de669ffaebfbd494a9d6a5fedac0738ffc3dcb3c1b96e48fd063786ae5701f6aa5022621e665607848e20f162630df96d0a773993e97ae6b847e51883d73d66bb30b4375229cfd0c9c41f511bfbf2bca94caa7ce76be257173a4eae2b484117ac32acf6ea1a32def26c919c93055c2f9a640b2d847d527357902538828abd66b3d1a9b85034066154f0b2ec054f6a8712ec98e5"}, {0x0, 0x1f, "8cf0833ae2772f05d302c778833be4f2b9c43c83284b82e71ca1ee382af46513079a2f52da08c93afdfc1a18e4b677b307a1c7df90787cbd143b129bc8dbc39104eb21674d26fd4ced8626df256869e168d42f4d160ad1442cae2bd8fda0fc44a08759d245bfe8eba42ec7967c1e953256a057369159333bca73b498a882fb5e840d429804169a6446c1d1b013144ae0ee276a463ef69ea4c4636751083041811c9b549256c6a3a71e451f8fd4de25629b3de61cba78315412fa14e350bb03feaf63909bd7320561df80bc77f36d4561a5efcc324450355ed398d9e46e798e23e2a4a2c787728b9c549a1894c53dcdfe834c7785fb3c4331"}, {0x0, 0x3, "6598975984c98199c07565e33783bc472344c2fc4e6a32"}, {0x0, 0x1f8, "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"}]}}}}}, 0x12c2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7fff}], 0x0, 0x0) 16:44:46 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x103, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x14, r2, 0x400, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14) r6 = socket(0x11, 0x800000003, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r6, &(0x7f0000000040)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @multicast}, 0x14) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000680)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000326bd7000fbdbdf251600000008000300", @ANYRES32=r5, @ANYBLOB="08000300", @ANYRES32=r9, @ANYBLOB="0c0099652ad1c0561c904511bf00050000000100000008000100010000000a0006000180c200000300000a005dfc76e7724942a3911aaaaaaa17000008000100ffffffff08000100040000000a001a00aaaaaaaaaa380000000000584829f1750542cc70e251d729662d5e63b21173c313e03ff01743fbe2fee85f72dffd8a6d2ac5e8ddea848a9c50ed070a3f8ca469940c"], 0x6c}, 0x1, 0x0, 0x0, 0x810}, 0x6804) sendmsg$TIPC_NL_BEARER_DISABLE(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="00082bbd7000fcdbdf2502000000180007800c0003000400000000000000080001004300000014000980080002000010000008000200a1fe00004c000980080002000200000008000200a2b7000008000200050000000800020009000000080001000400000008000100080000000800010096000000080001000900000008000200000000001400098008000200060000000800010009000000"], 0xa0}, 0x1, 0x0, 0x0, 0x855}, 0x8000) 16:44:46 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file1\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="8da4363ac0ed02000a0000000001004d0100007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001ff0000000000007185485266535f4d", 0x41, 0xfffd}], 0x3, 0x0) 16:44:46 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) r1 = socket(0x11, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c000000130008022abd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="05050000c233000008000500c80193f1ce8cac67099656023e4b790be19e21f49bcbd8a06a9fcf3fca735f80ba412e305ffdd7cf67715e2a8f46da0ca6acb34069bde83304d33222ca93f5f148e94000000065ab1469ad1b7a1d68118a765b4cc78615fba0c5a7f9", @ANYRES32=r5, @ANYBLOB="140035643000"/16], 0x5}, 0x1, 0x0, 0x0, 0x10}, 0x8050) write(r0, &(0x7f0000000340), 0x41395527) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000500)={{{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@dev}}, &(0x7f0000000600)=0xe8) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r8, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$IMCTRLREQ(r8, 0x80044945, &(0x7f0000000080)={0x4007, 0x2, 0x1, 0x50d}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'batadv0\x00', r7}) [ 354.565247] print_req_error: I/O error, dev loop2, sector 0 [ 354.605784] print_req_error: I/O error, dev loop4, sector 0 16:44:46 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001050000f70000005f42485266535f4d", 0x48, 0x3664}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:46 executing program 4: openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x400, 0x0) syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a000000c940fa27190001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x4d, 0x10000}], 0x30f8c0f, 0x0) [ 354.703048] print_req_error: I/O error, dev loop4, sector 24 16:44:46 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f00000000c0)) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r1, 0x110, 0x5, &(0x7f0000000080)=[0x2], 0x2) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:46 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) setxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000100)='y\x00', 0x2, 0x3) [ 354.785983] print_req_error: I/O error, dev loop5, sector 0 [ 354.795554] print_req_error: I/O error, dev loop4, sector 0 16:44:46 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000080)) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f00000000c0), &(0x7f0000000200)=0x68) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000280), &(0x7f00000002c0)=0x4) write(r2, &(0x7f0000000340), 0x41395527) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, &(0x7f0000000240)) 16:44:46 executing program 5: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x7ff, 0x0, &(0x7f0000000040), 0x1, 0x0) [ 354.904042] BTRFS error (device loop4): superblock checksum mismatch [ 354.937493] print_req_error: I/O error, dev loop5, sector 0 [ 354.955165] BTRFS error (device loop4): open_ctree failed 16:44:46 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000000)={0xffffffffffffffff, 0x8, "aa6812", 0x3, 0x6}) 16:44:46 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) [ 355.020302] BTRFS error (device loop4): superblock checksum mismatch [ 355.086599] BTRFS error (device loop4): open_ctree failed 16:44:46 executing program 4: pipe(&(0x7f0000000040)={0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) write$FUSE_IOCTL(r1, &(0x7f00000000c0)={0x20, 0x0, 0x4, {0x1, 0x0, 0x7, 0x9}}, 0x20) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)=ANY=[@ANYBLOB="0100aaaaaaaaaaaaaabb"]) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x0, &(0x7f0000000040), 0x39c2068, 0x0) [ 355.218370] print_req_error: I/O error, dev loop4, sector 0 16:44:46 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x81, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a00000100000000f500fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:46 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7fffffff}], 0x0, 0x0) 16:44:47 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3f0402c7cb8f001a, 0x0) r0 = getpid() pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f0000000440)={0x0, {0x2, 0x4e21, @empty}, {0x2, 0x4e21, @multicast1}, {0x2, 0x4e21, @private=0xa010100}, 0x1, 0x0, 0x0, 0x0, 0xc000, &(0x7f0000000400)='bridge_slave_0\x00', 0x3f, 0x5b8c, 0xfff8}) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x6, 0x2}, 0x0) move_pages(r0, 0x5, &(0x7f0000000080)=[&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil], &(0x7f00000000c0)=[0x6, 0x0, 0x8], &(0x7f0000000100)=[0x0, 0x0, 0x0], 0x4) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$nfc_llcp(r2, &(0x7f00000003c0)={&(0x7f0000000200)={0x27, 0x1, 0x0, 0x3, 0x8, 0x0, "8240a0b5f1ca91042afe2b278f7c26acfc50e6b0d470f71729cc4c9b57f8cc9ab86697be5fbbb552feccf85b80bba6f5abfe8ffc557929c08899af127aaeab", 0x38}, 0x60, &(0x7f0000000300)=[{&(0x7f0000000280)="10d42d1b80967a6d2d170948094b55520a842c7992ec011f92c56a97c6aaea992c65cebae91e9e90afdc5d5febdbab864b02c299f656159fc6fc3a96df632dc71d00f07be44ec63644a10468e9aadcbf3a7cb0b2fbd9b1f4fde4d6173efdcaf73b4a2edab3e7d1b376fe0154", 0x6c}], 0x1, &(0x7f0000000340)={0x48, 0x102, 0x6, "4d07de98b09e8b14b0b1618f2172f5a7494f53295123a72f5efbb01a1f6b87d8fbace048e0fcb9e3fb8163006dda4bb8c3ca"}, 0x48, 0x8080}, 0x800) 16:44:47 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) connect$ax25(r1, &(0x7f0000000140)={{0x3, @default}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) getpeername$ax25(r0, &(0x7f0000000200)={{0x3, @rose}, [@netrom, @bcast, @null, @null, @netrom, @netrom, @null, @bcast]}, &(0x7f0000000280)=0x48) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x800081, 0x0) getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)) 16:44:47 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(0xffffffffffffffff, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000340)={r3, 0xffff, 0x1, 0x3, 0x230, 0xc2, 0x7ff, 0x5, {r3, @in6={{0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, [], 0x3b}, 0x3}}, 0x4, 0x2, 0x80000000, 0xfffffd49, 0x5}}, &(0x7f0000000400)=0xb0) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000440)={r4, 0xffe1, 0x7f}, 0x8) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) r6 = socket(0x10, 0x3, 0x0) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="20002bbd700000000000020000000800060006002c00028008000700ccffffff00"/42], 0x30}}, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(r5, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0xc4, r7, 0x8, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x13}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x20}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x4d}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0xb, 0x51}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x21}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x10}}]}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40bb0726}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x400}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x5}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7fffffff}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}]}]}, 0xc4}}, 0x800) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:47 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_DECODER_CMD(r0, 0xc0485660, &(0x7f00000000c0)={0x0, 0x1, @raw_data=[0x8, 0x6, 0x5, 0x1, 0x0, 0x4, 0x7, 0x0, 0x7ff, 0xfffffff9, 0x7f, 0x800, 0x0, 0x8, 0x1, 0x8]}) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x134929dd, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:47 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) umount2(&(0x7f0000000080)='./file0\x00', 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:47 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000b40)=ANY=[@ANYBLOB="f9b6c2ef204e78496eda3d76960e22d219d7012859ac891879170d42a5e0520047444e6b316f07d24ae6fbbfd09fea17f2d0d9db", @ANYRES16=r1, @ANYBLOB="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"], 0x204}, 0x1, 0x0, 0x0, 0x40800}, 0x24000005) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TCSETXW(r2, 0x5435, &(0x7f0000000200)={0x6, 0xffe0, [0x5, 0x6, 0x3, 0x6, 0x200], 0x5}) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:47 executing program 0: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x402000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85513, &(0x7f0000000200)={{0x7, 0x6, 0x200, 0x2, '\x00', 0x3}, 0x1, [0x100000001, 0x1, 0x800, 0x9, 0xff, 0x7, 0x200, 0x9c, 0x2, 0x0, 0x7c6, 0x1000, 0x7, 0x8, 0x934, 0x3f00, 0x3, 0xfff, 0x5, 0xb28a, 0x8000, 0x81, 0x20, 0xfffffffffffff6ac, 0x2, 0x6, 0x6, 0xffffffffffff8000, 0x10001, 0x6, 0x3, 0x3, 0x0, 0x10001, 0x1, 0x101, 0x401, 0x9, 0x6, 0x9, 0x8001, 0x0, 0x7, 0x1, 0x0, 0x80000000, 0x3f, 0x8001, 0x491, 0x8a6f, 0x80000000, 0x7, 0x3, 0x1, 0x5, 0x9, 0x7, 0x9952, 0x1, 0x40, 0x3, 0xf4, 0x7, 0x10000, 0x8, 0x2, 0x5, 0x4, 0x100000001, 0x7ff, 0x9, 0xff, 0xff, 0x35679839, 0x2, 0x8, 0x4, 0x3, 0x3, 0x6, 0x4, 0x0, 0x7, 0x5, 0x101, 0x0, 0x8, 0x80000001, 0x5c5f, 0x2, 0x400, 0x2, 0x0, 0x1, 0x809, 0x6, 0x1, 0x80000000, 0x0, 0x6, 0x3, 0x101, 0x200, 0x6, 0x4, 0x8, 0xf3, 0x4, 0x6, 0x6, 0x3, 0x8000, 0x4, 0x3, 0x6, 0x100000001, 0x51b, 0x1, 0x9, 0x4024, 0x80000001, 0x200, 0xfff, 0x4, 0x6, 0x4, 0xa569, 0x7]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) setsockopt$RDS_RECVERR(r1, 0x114, 0x5, &(0x7f0000000700)=0x6db, 0x4) creat(&(0x7f00000000c0)='./file0\x00', 0x0) prctl$PR_GET_FPEXC(0xb, &(0x7f0000000080)) 16:44:48 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) 16:44:48 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x80, 0x453, 0x8, 0x70bd29, 0x25dfdbfc, "6f21a7c65490aab6526338d52c887a7b1c21ba29f84e47dbf44ca627505002b5ee038a0e6a46f7092030fa472ea90ecf18ff54367e52c2853c83355b49aca4b87dd7fc0d59835c41ee87044fb3e7f77d05ce861ac825ecf88a804163fe78d8c63536349c219549320725cd0b79ba2204", ["", "", "", ""]}, 0x80}, 0x1, 0x0, 0x0, 0x85}, 0x10) 16:44:48 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000080)={0x1000, 0x360, 0x140, 0x800, 0x7, 0x9ee0, 0x20, 0x1, {0x5, 0x8}, {0xffffffc2, 0x3}, {0x2, 0x2, 0x1}, {0x0, 0x2a2, 0x1}, 0x3, 0x40, 0x2, 0x81, 0x0, 0x1, 0x80000001, 0x8000, 0x7, 0x20, 0x80000001, 0x0, 0x11, 0x0, 0x2, 0xe}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0xfffc}], 0x0, 0x0) [ 356.907273] print_req_error: I/O error, dev loop5, sector 0 16:44:48 executing program 4: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000340), 0x10) ioctl$VIDIOC_SUBDEV_S_CROP(r0, 0xc038563c, &(0x7f0000000080)={0x1, 0x0, {0x3, 0x1000, 0x9, 0x80000000}}) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x8000, 0x0) r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) write$binfmt_elf32(r2, &(0x7f0000000200)=ANY=[], 0xff42) r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000200)='NLBL_MGMT\x00') sendmsg$NLBL_MGMT_C_REMOVEDEF(r2, &(0x7f0000000280)={&(0x7f0000000140), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x40, r3, 0x200, 0x70bd2b, 0x0, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xfffffffffffffffc}, @NLBL_MGMT_A_DOMAIN={0xb, 0x1, 'system\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x8044}, 0x41) sendmsg$NLBL_MGMT_C_REMOVEDEF(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x5c, r3, 0x20, 0x70bd26, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_CV4DOI={0x8}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010102}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a0000010000a4cacd42485266000000004512492100000000", 0x48, 0x10000}], 0x3, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88) 16:44:48 executing program 3: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000480)='fou\x00') sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}}, 0x0) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x14, r3, 0xe7a035cf4856fee5}, 0x14}}, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockname$packet(r4, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14) sendmsg$FOU_CMD_GET(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r3, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private0={0xfc, 0x0, [], 0x1}}, @FOU_ATTR_IFINDEX={0x8, 0xb, r5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @initdev={0xfe, 0x88, [], 0x0, 0x0}}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SIOCX25GCALLUSERDATA(r4, 0x89e4, &(0x7f0000000340)={0x5a, "4a72d11768ff22280ae821bc043ee05d0108f5349f92eef3233834b13133c99264bd798aeedd20fcd8f1a1dfc391295467b9548c94f91ecd5f8d8ea4c80643694625ab36e90c8512e244f11dfad2336ca1566e3334f22431cd45780ac9822a681d33b687e23bda2f2155cca3ddc7d20c390089ff59ad312b88883a1ee4f506d4"}) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:48 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000240), 0x1, 0x3) ioctl$VIDIOC_G_STD(r1, 0x80085617, &(0x7f00000000c0)) sendmsg$NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00042bbd7000fddbdf25050000000800010000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4008090}, 0x40050) [ 357.255092] print_req_error: I/O error, dev loop4, sector 0 [ 357.295384] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.302668] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.309969] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.317235] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.324556] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.331753] Buffer I/O error on dev loop3, logical block 0, async page read [ 357.339039] Buffer I/O error on dev loop3, logical block 3, async page read 16:44:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x8) 16:44:49 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', r0}, 0x10) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x8800, 0x0) sendmsg$AUDIT_GET_FEATURE(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x3fb, 0x400, 0x70bd29, 0x25dfdbfe, "", ["", "", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40800}, 0x40) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x80000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:49 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r5) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r7, 0x407, 0x0) write(r7, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r8, 0x407, 0x0) write(r8, &(0x7f0000000340), 0x41395527) getsockopt$inet_IP_IPSEC_POLICY(r8, 0x0, 0x10, &(0x7f0000000200)={{{@in=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@dev}}, &(0x7f0000000300)=0xe8) mount$9p_virtio(&(0x7f0000000080)='syz\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x1, &(0x7f0000000340)={'trans=virtio,', {[{@access_client='access=client'}], [{@uid_gt={'uid>', r1}}, {@context={'context', 0x3d, 'staff_u'}}, {@smackfshat={'smackfshat', 0x3d, '-\xe7'}}, {@fowner_gt={'fowner>', r3}}, {@smackfshat={'smackfshat', 0x3d, 'btrfs\x00'}}, {@euid_eq={'euid'}}, {@pcr={'pcr', 0x3d, 0x36}}, {@fowner_lt={'fowner<', r5}}, {@seclabel='seclabel'}, {@uid_gt={'uid>', r9}}]}}) 16:44:49 executing program 1: connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, 0xffffffffffffffff, 0x81e6c000) ioctl$VIDIOC_DQBUF(0xffffffffffffffff, 0xc0585611, &(0x7f0000000080)={0x5, 0xa, 0x4, 0x20, 0x2bd, {}, {0x4, 0x1, 0x3, 0x1, 0xf3, 0x0, "f379af24"}, 0x1, 0x4, @offset=0x1, 0x7, 0x0, 0xffffffffffffffff}) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r1, 0x81e6c000) getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000200)=0x8) r3 = socket$inet_sctp(0x2, 0x5, 0x84) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000180)={r5}, 0x8) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000240)={r2, 0x40, 0x4, 0x4, 0x3ff, 0x8, 0x7e0e, 0xb0f, {r5, @in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x7, 0xfffff000, 0x3ece400, 0x20, 0x3}}, &(0x7f0000000300)=0xb0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x2}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x200, 0x0) ioctl$SNDCTL_DSP_NONBLOCK(r0, 0x500e, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x22ac0, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f00000000c0)=0x52, 0x4) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r1 = socket$inet_icmp(0x2, 0x2, 0x1) lseek(r1, 0xe4, 0x3) 16:44:49 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x400000, 0x0) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f00000000c0)={{0x1, 0x3, 0x4, 0x0, 0x4}, 0x8000000000, 0x7c}) 16:44:49 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:49 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x2090800, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 357.994854] BTRFS error (device loop4): superblock checksum mismatch [ 358.031940] 9pnet_virtio: no channels available for device syz 16:44:49 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setxattr$security_ima(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.ima\x00', &(0x7f0000000200)=@v1={0x2, "cc21cb"}, 0x4, 0x4) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000080)=r3, 0x4) [ 358.087759] BTRFS error (device loop4): open_ctree failed [ 358.174114] BTRFS error (device loop4): superblock checksum mismatch [ 358.273693] BTRFS error (device loop4): open_ctree failed 16:44:50 executing program 4: ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f0000000000)={0x3, 0x8, [0x7, 0x9]}) 16:44:50 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x5c, 0x0, 0x10, 0x70bd2d, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x4955d38c79e4a587}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x805}, 0x4040084) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file1\x00', 0x100000, 0xcb4, &(0x7f0000000040)=[{&(0x7f0000000140)="8f73363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a003e01000000000011fffffff60000005f42485266535f4d", 0x48, 0x1}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) prctl$PR_GET_SECUREBITS(0x1b) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:50 executing program 5: r0 = open(&(0x7f0000000040)='./file0\x00', 0x80802, 0x120) ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000000280)={0xff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000300)={0x61800, 0xa, 0x4, 0x1000, 0x7fffffff, {0x0, 0xea60}, {0xd767a44beeae37c0, 0x2, 0x5, 0x7, 0x88, 0x5, "e3267575"}, 0x1, 0x4, @planes=&(0x7f00000002c0)={0x1, 0x7, @fd=r0, 0x3}, 0x2, 0x0, r2}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r5) write$P9_RGETATTR(r3, &(0x7f0000000380)={0xa0, 0x19, 0x2, {0x8c, {0x80, 0x2, 0x3}, 0x1, r5, 0xee00, 0xc0, 0x3, 0x7ff, 0x5, 0x9, 0x9, 0x7, 0xfffffffffffffff7, 0x2, 0x8, 0x5, 0x84, 0x5cab, 0xffffffffffffff7f, 0x38}}, 0xa0) ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000080)="35c58f2bee7ead2782a4cb69006da91eb1493e4cf224ee60da300bf818241d41df00bc5772c3a0df77c202343fdddb3169b8d23b4b32edca23a72a808632fdd4667fefcd872825e834e270ca803ee294a58b57f6f052a91896ebb858a59d24", 0x5f, 0x9be}, {&(0x7f0000000100)="79d2036f73301902d26077750b2a95", 0xf, 0x80000000}], 0x0, 0x0) 16:44:50 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) r1 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000480)={0x80000000, 0x1c22, 0x8, 0x400, 0x7, "2f9a40bc9320acc17e9acac89373b97ac6bfe8"}) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa, 0xa0}, {0xfffffffffffffffc, 0x0, 0x0, 0x861, 0x0, 0x0, 0x10000000000000}, {0x0, 0x0, 0xffffffffffffffff}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x4d6, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r1, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) r3 = socket$inet6(0xa, 0x803, 0x2) ioctl$SG_EMULATED_HOST(r2, 0x2203, &(0x7f0000000540)) connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r3, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) write(0xffffffffffffffff, &(0x7f00000004c0)="a35c03be342490f54b5fa93e2210b7933a0c1ccdb37fdac71bb599881b7bd216c4385bde0302ddc1e76dafc30d4d9ebf58d1ace638271dd8615e764e65e1d877bcb31d66c0c44527", 0x48) r4 = openat$cgroup_ro(r0, &(0x7f0000000080)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) execveat(r4, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)=[&(0x7f0000000100)='bdevcpusetmd5sum\x00', &(0x7f0000000200)='btrfs\x00', &(0x7f0000000240)='btrfs\x00', &(0x7f0000000280)='mime_typenodevtrusted(^ppp0\x00', &(0x7f00000002c0)='ppp1\x00', &(0x7f0000000300)='btrfs\x00'], &(0x7f0000000400)=[&(0x7f0000000380)='btrfs\x00', &(0x7f00000003c0)='btrfs\x00'], 0x400) openat$null(0xffffffffffffff9c, &(0x7f0000000440)='/dev/null\x00', 0x541000, 0x0) [ 358.735904] BTRFS error (device loop4): superblock checksum mismatch [ 358.803835] BTRFS error (device loop4): open_ctree failed 16:44:50 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr$trusted_overlay_nlink(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='trusted.overlay.nlink\x00', &(0x7f0000000100)={'U-', 0x7}, 0x16, 0x3) r0 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x40, @loopback}, 0xfffffffffffffec9) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@private1={0xfc, 0x1, [], 0x1}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x80}, {0xfffffffffffffffc, 0x0, 0x0, 0x861, 0x0, 0x100000001, 0x0, 0x1}, {0x0, 0x3, 0x0, 0x100000001}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x33}, 0x0, @in=@multicast1, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2}}, 0xe8) sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) pwritev(r0, &(0x7f0000001540)=[{&(0x7f0000000200)}, {&(0x7f0000000240)="2fd4687834c6263dd79554d42ec9a8b957fc9b043869c3cc2acb3f5ee8e66d674b6453107e99c4bd46709074da13e9a101681ccc3880caf29e5a0b48a14e3ee883fcdb38800f064e5378c5522020b693da9be420fb138e9aeb8427b9ba95ab9217b2d759bdd77f98bf12a63a95ada4123136c2d1ca4bf1870e864c7d7a0958d1ff2b8dc5f1160baef455004a54b967ef32ac4ead0ec69948f9498905979a086e03a42a018d3632cac9e6973ea69e3c6f32c10677d86a031800", 0xb9}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)="dadf4ac2d98fb01ee7ea5c2b839d153a754c880c7c042a9f367ad7ace1a6a51f5c9c75adbccb0db31fd05fa6ae81e4cc0e570648da33", 0x36}, {&(0x7f0000001340)="a00fa88ae723870a3dd214bab551a08e95cf6d7f593576a1ff0d7f69876b41a0bc6908ab94e980f3a7e04265fa3c4340d1c0c526b65bf4d7a38b24763b34dd5f7aa56bf69e61c0f689a3b822fe3056ff49037c1cf147419216d8f76020baba1f616e9b84b3aa417dc84a0bf413262bda", 0x70}, {&(0x7f00000013c0)="fab61dca8f1e4ddba0ab653d7b712b58d61182ebdfc482e3165c80ec3bdcb125b892141812ec3ccc502ff76077f10ee8980f35cc14398419e521f28c0d422c10b68dada160b231e99bc07b4300193f096bb329f85e93acd7b4e448564301af60f2acc028234193ee8909c59fcc849a0a3a277af5fbfb948c3cbbcb0d4b7563b04be479fb24a1925180f98c45fcc9a9d343fe296b3dfb6333490590f7c1af71ac902c5d4c4736263fd96843cb171e5f959e9c9e345cbf16b1bc6e2495879b", 0xbe}, {&(0x7f0000001480)="2778a2b40a2f9904e0043db81d3205ef15470ddeec94c05cfb5562470a6d17cb990bccfc8b396ab225de9f68fdeea2e727e9e29959d27aa0c46a5950d50ef83ba4ecf83b505568b842559ccf0cd00698f499d1af87d227ebad22ca14caf32f867073e54273ba1f2a2e4915a089d07872c3965bfbed1452", 0x77}, {&(0x7f0000001500)="fc", 0x1}], 0x8, 0x3) r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/ocfs2_control\x00', 0x90a00, 0x0) r2 = socket(0x10, 0x3, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x2c, r3, 0x20, 0x70bd2b, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xffffffdb}]}]}, 0x2c}}, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f00000016c0)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001680)={&(0x7f0000001640)={0x28, r3, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}]}, 0x28}}, 0x0) 16:44:50 executing program 0: r0 = socket$inet6(0xa, 0xa, 0x7fd) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) recvmsg$kcm(r1, &(0x7f00000004c0)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/38, 0x26}, {&(0x7f0000000180)=""/71, 0x47}, {&(0x7f0000000200)=""/247, 0xf7}, {&(0x7f0000000340)=""/125, 0x7d}], 0x4, &(0x7f0000000400)=""/143, 0x8f}, 0x10042) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000040)={0x3, 0x0, [{}, {}, {}]}) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000000)) 16:44:50 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000100)=0x5) write(r2, &(0x7f0000000340), 0x41395527) recvfrom$phonet(r2, &(0x7f00000000c0)=""/18, 0x12, 0x6021, 0x0, 0x0) write(r0, &(0x7f0000000340), 0x41395527) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040)=@assoc_value, &(0x7f0000000080)=0x8) ioctl$DRM_IOCTL_MODE_ADDFB(r0, 0xc01c64ae, &(0x7f0000000000)={0x726, 0x44c0, 0x2, 0x100, 0x397, 0x5}) 16:44:51 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS32(r0, 0x80585414, &(0x7f0000000200)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) [ 359.511601] BTRFS error (device loop4): superblock checksum mismatch [ 359.564284] BTRFS error (device loop4): open_ctree failed 16:44:51 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r4) setresgid(0x0, r4, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0}, &(0x7f0000cab000)=0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) getsockname$packet(r8, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) ioctl$DRM_IOCTL_GET_CLIENT(r8, 0xc0286405, &(0x7f0000000000)={0x7, 0xffffffff, {r6}, {r3}, 0x9, 0xffff}) r11 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r13) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000040)={{0x2, r3, r4, r10, r13, 0x100, 0x2}, 0x6, 0x81, 0x4, 0x7, r6, r2, 0xcddc}) r14 = geteuid() mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuse\x00', 0x3004002, &(0x7f0000000200)=ANY=[@ANYBLOB="070005", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r1, @ANYBLOB=',group_id=', @ANYRESDEC=r4, @ANYBLOB=',blksize=0x0000000000001000,default_permissions,func=MODULE_CHECK,dont_appraise,euid>', @ANYRESDEC=r14, @ANYBLOB=',appraise_type=imasig,context=unconfined_u,smackfsfloor=btrfs\x00,hash,\x00']) shmctl$IPC_SET(0x0, 0x1, &(0x7f00000003c0)={{0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x7, 0x8, 0x3244, 0x4, r9, r12, 0x81}) 16:44:51 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x7b, 0x53d, 0x0, 0x1, 0x80, 0x8}) [ 359.768336] BTRFS error (device loop4): superblock checksum mismatch [ 359.844984] BTRFS error (device loop4): open_ctree failed 16:44:51 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x45, 0x10003}, {&(0x7f0000000640)="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", 0x25e, 0x1}, {&(0x7f0000000200)="b452316e303d8c967935a260f50f0ae523c305c07da177c5c82785c8a77410885c72afd1e0ffef53f51398c854a189dbc8b2c3018128addd382428ca8b551f043c7f89a9051f64572f863eee75d33e54673ccb924da52e5b4963a2cd69e61229", 0x0, 0x3}], 0x1192027, 0x0) chdir(&(0x7f0000000080)='./file0\x00') sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, 0xffffffffffffffff, 0x81e6c000) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = socket(0x11, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000005c0)={'batadv_slave_1\x00', r5}) setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000600)={r7, @loopback, @dev={0xac, 0x14, 0x14, 0x1c}}, 0xc) [ 359.897174] BTRFS error (device loop4): superblock checksum mismatch [ 359.938397] BTRFS error (device loop4): open_ctree failed 16:44:51 executing program 2: r0 = syz_open_dev$cec(&(0x7f0000000380)='/dev/cec#\x00', 0x3, 0x2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x980000, 0xfffff8ee, 0x4, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0xa10903, 0x5}}) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000200)={0x6, 0x0, {0x57, 0x7, 0x8000, {}, {0x0, 0x1000}, @ramp={0x3, 0x81, {0x9, 0xff, 0x4400, 0x9}}}, {0x53, 0x1, 0x9, {0x5, 0x3}, {0x0, 0x7}, @const={0x7ff, {0x8, 0x99fe, 0x70ce, 0x7ff}}}}) ioctl$DRM_IOCTL_MODE_GETGAMMA(0xffffffffffffffff, 0xc02064a4, &(0x7f0000000340)={0x800, 0x9, &(0x7f0000000280)=[0x3, 0x8, 0x5, 0xcc0, 0x8, 0x2, 0x9, 0xa005, 0x200], &(0x7f00000002c0)=[0xbadb, 0xaca, 0x1f0, 0xec68, 0x1000, 0x2, 0x9, 0x2040, 0x2, 0xfffe], &(0x7f0000000300)=[0x1f, 0x0, 0x0]}) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r2, 0x0, 0xffffffffffffffad) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f00000003c0)) 16:44:51 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$KVM_SET_TSC_KHZ(r1, 0xaea2, 0x8001) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) recvfrom(r0, &(0x7f0000000080)=""/126, 0x7e, 0xe2, &(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x1, 0x3, 0x1, 0x4, {0xa, 0x4e20, 0x84, @rand_addr=' \x01\x00', 0x8000}}}, 0x80) ioctl$USBDEVFS_CLAIM_PORT(r3, 0x80045518, &(0x7f0000000100)=0xed) 16:44:51 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) ioctl$TCGETX(r0, 0x5432, &(0x7f0000000840)) write(r1, &(0x7f0000000340), 0x41395527) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0xc0d00, 0x0) recvmsg$can_bcm(r2, &(0x7f0000000800)={&(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000000280)=""/15, 0xf}, {&(0x7f0000000340)=""/246, 0xf6}, {&(0x7f00000002c0)=""/9, 0x9}, {&(0x7f0000000440)=""/8, 0x8}, {&(0x7f0000000480)=""/134, 0x86}, {&(0x7f0000000540)=""/49, 0x31}, {&(0x7f0000000580)=""/131, 0x83}, {&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/81, 0x51}], 0xa, &(0x7f00000007c0)=""/14, 0xe}, 0x20) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000080)=0x3) [ 360.021669] print_req_error: 8 callbacks suppressed [ 360.021675] print_req_error: I/O error, dev loop5, sector 0 [ 360.125964] print_req_error: I/O error, dev loop2, sector 128 [ 360.132008] print_req_error: I/O error, dev loop2, sector 0 [ 360.141563] BTRFS error (device loop4): superblock checksum mismatch [ 360.193553] BTRFS error (device loop4): open_ctree failed 16:44:52 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) fstat(r0, &(0x7f0000000080)) write(r0, &(0x7f0000000340), 0x41395527) ioctl$KVM_SET_PIT(r0, 0x8048ae66, 0x0) 16:44:52 executing program 5: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/udplite6\x00') ioctl$UI_SET_MSCBIT(r1, 0x40045568, 0x17) 16:44:52 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a000022d3bff06c52cb19000000000000007a0000000000fff6f2a2299748aeb8f04f0000000000000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$PPPIOCSCOMPRESS(r0, 0x4010744d) 16:44:52 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getrlimit(0x1, &(0x7f0000000680)) setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000006c0)=@ccm_128={{0x304}, "a26cb4e6c2c9f680", "1117167036a7f73c029799b62e523215", "a3890bbe", "30783abe6a84a04b"}, 0x28) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$AUDIT_DEL_RULE(r0, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x44c, 0x3f4, 0x1, 0x70bd29, 0x25dfdbfe, {0x6, 0x2, 0x26, [0x2, 0x5, 0xe7d0, 0xfffffffc, 0x3f, 0x88, 0x5, 0x1000, 0x2, 0x8, 0x6, 0x2, 0x6, 0x10000, 0x2, 0x3, 0x10000, 0x3, 0x3, 0x7fff, 0x1f6a, 0x8000, 0x1, 0x4, 0x5, 0x6, 0x5, 0x5, 0x240000, 0x3, 0xff, 0xfffffff7, 0x7fff, 0x1, 0x1b8355a6, 0xfffffffa, 0x100, 0x3, 0x7, 0xc0ec, 0x7, 0x1, 0x8, 0x3, 0x7, 0x7fffffff, 0x4, 0x800000, 0x9e, 0x21c4, 0x1000, 0x0, 0x9, 0x3, 0x3, 0x3f, 0x200, 0x0, 0x465, 0x7fffffff, 0x9, 0xfffffffb, 0x3ad2795b, 0x5], [0x1000, 0x3, 0x2, 0xc97, 0x7190, 0x4, 0x6, 0x4, 0x80000001, 0x3ff, 0x10000, 0x8000, 0x7, 0x6, 0x0, 0x7fff, 0x9, 0xdef4, 0xb7a2, 0xea, 0x9, 0x1, 0x2, 0x7, 0x5, 0x0, 0x1, 0xef, 0x5, 0x7ff, 0x1, 0x40, 0x3c37, 0x7, 0x38, 0x7fffffff, 0x7, 0x1, 0x6, 0x101, 0x757, 0x7, 0xb7, 0x2, 0x7fff, 0x644, 0xb5dc, 0x1, 0x4, 0xd9d, 0x0, 0x3, 0x2, 0xdf, 0xffff, 0x100, 0xa2, 0x0, 0x9, 0x1, 0x8, 0x100, 0x0, 0x2], [0xffff, 0x9, 0x2, 0xf4, 0x0, 0x80, 0x6, 0x0, 0x80000000, 0x2, 0x9, 0x3, 0x9, 0x659, 0x80, 0x100, 0x0, 0x40, 0x1557, 0x9, 0x9, 0x9, 0x5, 0x5, 0x8, 0x8, 0x8, 0xa61, 0x7, 0x80000000, 0x4, 0xa0, 0x1, 0xbb, 0x80000001, 0x1f3, 0x7ff, 0x7, 0x7fff, 0x2, 0x4, 0x0, 0x7, 0x401, 0x8000, 0xfffffffa, 0x5, 0x0, 0xe3d0, 0x8, 0x7, 0x4, 0x6, 0x0, 0x80000000, 0x5, 0x2, 0x800, 0xd3d8, 0x7f, 0x6, 0x0, 0x3f, 0x7], [0x1000, 0x1400, 0x8, 0x44, 0x2b, 0x7, 0x2, 0x200, 0x4, 0x4000000, 0x0, 0x6, 0x7ff, 0x5, 0x2, 0x20, 0x3, 0x4, 0x6d000000, 0x38392b64, 0x4, 0x400, 0x8, 0xa99, 0x7, 0x1, 0x744, 0x400, 0x3, 0x7ff, 0x8b20dbd, 0x8, 0x100, 0x4, 0x7ff, 0x3, 0x3245, 0x7fffffff, 0x1f, 0x0, 0x1, 0x4, 0x9, 0x4, 0x1ff, 0x1, 0x101, 0x1ff, 0x6, 0x1000, 0x193, 0x8, 0x1ff, 0xc9fd, 0x0, 0x401, 0x7ff, 0x1, 0x9, 0xfff, 0x1, 0x80, 0x7, 0xffffffff], 0x2b, [')\x00', 'wlan0GPLnodev\x00', 'btrfs\x00', 'btrfs\x00', 'btrfs\x00', 'btrfs\x00', ']-\x00']}, [""]}, 0x44c}, 0x1, 0x0, 0x0, 0x24008810}, 0x400c045) 16:44:52 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file1\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x8}], 0x0, 0x0) 16:44:52 executing program 4: r0 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x4) bind$isdn_base(r1, &(0x7f00000000c0)={0x22, 0x0, 0x1, 0x0, 0x1}, 0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00') sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x1c, r3, 0x301, 0x0, 0x0, {0x9}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0) sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4ce00f4aa45a3fd4}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r3, 0x2, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xbf}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x20000001) keyctl$get_security(0x11, r0, &(0x7f0000000200)=""/236, 0xec) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de825257a62"], 0x48}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r8 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f0000000400)={0xd8, 0x0, 0x2, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x3}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x3c, 0x84, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @dev={[], 0xa}}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x5a7cd8b8}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x1}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0x1b, 0x1, "ec96e4f9528f5bf25b05fbe0102d76ee97c2943d3a4e50"}]}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x2, 0x37}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x100, 0x4}}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x5}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x40}, @NL80211_ATTR_SCAN_SSIDS={0x48, 0x2d, 0x0, 0x1, [{0x9, 0x0, [0x3, 0x1d, 0x1b, 0x1a, 0x11]}, {0xa, 0x0, [0x12, 0x10, 0x9, 0x9, 0x1, 0x8]}, {0xb, 0x0, [0x12, 0x20, 0x4, 0x1, 0x11, 0x9, 0x20]}, {0x5, 0x0, [0x1a]}, {0x7, 0x0, [0x9, 0x12, 0x12]}, {0xe, 0x0, [0x16, 0x19, 0x4, 0x16, 0x15, 0x1f, 0x1b, 0x1d, 0x1, 0x5]}]}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x9}]}, 0xd8}, 0x1, 0x0, 0x0, 0x24000880}, 0x1) [ 360.916043] BTRFS: device fsid fff6f2a2-2997-48ae-b8f0-4f0000000000 devid 0 transid 0 /dev/loop5 [ 360.991537] BTRFS error (device loop4): superblock checksum mismatch [ 361.058252] BTRFS error (device loop4): open_ctree failed [ 361.163488] BTRFS error (device loop4): superblock checksum mismatch 16:44:52 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r1, 0x0, 0xffffffffffffffad) fcntl$setpipe(r1, 0x407, 0x10001) write(r0, &(0x7f0000000340), 0x41395527) ioctl$ASHMEM_GET_PIN_STATUS(r0, 0x7709, 0x0) [ 361.233505] BTRFS error (device loop4): open_ctree failed 16:44:52 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='cubic\x00', 0x6) 16:44:52 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x20, @rand_addr=' \x01\x00', 0x10001}, 0x1c) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r5 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'batadv_slave_1\x00', r4}) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000e40)={&(0x7f0000000740)={0x6f4, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {}, [{{0x8}, {0x1ec, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x5}, {0x8}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x10000}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0xb4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x5}, {0x8, 0x4, 0x400}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8, 0x4, 0x7277}}}]}}, {{0x8}, {0x1b0, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x5}, {0x8}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x5}, {0x8, 0x4, 0x7f}}, {0x8}}}]}}, {{0x8}, {0x1b0, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x5}, {0x8, 0x4, 0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x5}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x5}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}]}}]}, 0x6f4}, 0x1, 0x0, 0x0, 0x4000}, 0x40) sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x3c, r3, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}]}, 0x3c}}, 0x0) sendmsg$L2TP_CMD_SESSION_CREATE(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x101000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x4c, r3, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@L2TP_ATTR_PW_TYPE={0x6}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0x7}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x80}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x457e}, @L2TP_ATTR_DEBUG={0x8, 0x11, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x840}, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x81}, 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x40000, 0x0) r7 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r7, 0x0, 0x18, &(0x7f0000000080)=0x8, 0x4) ioctl$DRM_IOCTL_IRQ_BUSID(r1, 0xc0106403, &(0x7f0000000440)={0x2, 0x3f, 0x3, 0x661}) [ 361.377535] print_req_error: I/O error, dev loop2, sector 0 16:44:53 executing program 2: r0 = socket$vsock_dgram(0x28, 0x2, 0x0) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000080)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x84}], 0x10000, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl(r2, 0x800, &(0x7f0000000200)="ea4db79a3ef8056cd30a5cf13e052fa92526a0fe26d20722673e7fa430f1203d8e4f9a3367b9a06b70f9f285a492e1313cfb9b0ea398e8826517758e2552a5242d96990c699ced3f0636587f1c246b06808a62ef2320ad1aad13c0fc5fac4e24fcce90f8ec566fc8234093d4c45408b42daafd268fc33b939944c5261445898dc155c54633909231fccc3bf0a9296017720df4d187940f") ioctl$sock_inet_SIOCRTMSG(r2, 0x890d, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @broadcast}, {0x2, 0x4e21, @multicast2}, {0x2, 0x4e20, @remote}, 0x1, 0x0, 0x0, 0x0, 0x200, 0x0, 0xfff0000000000000, 0x0, 0x4}) ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x2) [ 361.456314] BTRFS error (device loop4): superblock checksum mismatch [ 361.573667] BTRFS error (device loop4): open_ctree failed [ 361.640412] BTRFS error (device loop4): superblock checksum mismatch 16:44:53 executing program 5: r0 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000080)={0x0, @aes128}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:53 executing program 4: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a000022d3bff06c52cb19000000000000007a0000000000fff6f2a2299748aeb8f04f0000000000000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$PPPIOCSCOMPRESS(r0, 0x4010744d) [ 361.706838] BTRFS error (device loop4): open_ctree failed 16:44:53 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$NBD_SET_FLAGS(r0, 0xab0a, 0x54) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x101100, 0x0) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000080)={{0x0, 0x1, 0x7f, 0x3, 0x5}, 0x90, 0x7}) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r2, 0x0, 0xffffffffffffffad) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r5 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, r4, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_MESH_CONFIG(r5, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x30, r6, 0x100, 0x70b528, 0x25dfdbfc, {}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x401}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffff28}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0x72}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000091}, 0x8080) sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000fc0)={0x18b4, r6, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_IE={0x698, 0x2a, "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"}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xfff, 0x4}}, @NL80211_ATTR_SCAN_SUPP_RATES={0x11c4, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x98, 0x3, "5e8c8fa90d2fb0eb019bfb0e52e78abf4e4cca3da72969d9677184145e6d9e57c9d5f77fdd5deccc3be9773a9a3759e57aa91065343fae4d819419e17d5afc58209bf7950440258b38cadf815778110fb1a6b57d9520a895859f5a7c7e11a79c7a4aaf14e15aae8180432ac71f9671f9d5e542ebbc8a21a78d8594943293b1b3766034a2111f7cc9c66b91847850a3ae7d8d3969"}, @NL80211_BAND_6GHZ={0x1004, 0x3, "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"}, @NL80211_BAND_60GHZ={0xb, 0x2, "496fe667b5ce16"}, @NL80211_BAND_60GHZ={0xfa, 0x2, "edecdceb86cf76e6a04b64e48c2a7a2cece8e624f4b2122e39c144fa0d5faba5d5b41092b5454b26e59586d6d6bc3e123de6fa2dc884667d104c82948144fbd1cfde37d23ca88ab01b77b407898b61a740c8ea0f9fc6c81b2b26bb1d153bd0d69de2561660d0be8355e584d9755af66daaf6564627e87a8d9679d364195954896f467d5d5eb46fabc5afab439d84eebeb36a7c696e768109c48d88bc282e9b65fec046bc28b71eb3ddac145d7b8d69cae091c709e4c98ab79de348182727702c1c88d414e651b1f7df9544c0f36c9064d66ca8b3316454e05e68aa4166ca826bf9063f2bfbabe4a5f33dbc511d48c079021b04c6c0f1"}, @NL80211_BAND_2GHZ={0x14, 0x0, "5ec5eafe93550e0f1455b521e64d0883"}, @NL80211_BAND_60GHZ={0x7, 0x2, 'g\b@'}]}, @NL80211_ATTR_SCAN_FREQUENCIES={0x34, 0x2c, 0x0, 0x1, [{0x8}, {0x8, 0x0, 0x6}, {0x8, 0x0, 0x8}, {0x8, 0x0, 0xf13}, {0x8, 0x0, 0x3}, {0x8, 0x0, 0xfffff5ca}]}]}, 0x18b4}, 0x1, 0x0, 0x0, 0x40}, 0x20000001) close(r2) 16:44:53 executing program 5: pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f00000001c0), 0x100000110) r2 = epoll_create(0x2000007) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)={0xe0002004}) epoll_wait(r2, &(0x7f0000000100)=[{}], 0x500, 0x2e0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r3, 0x81e6c000) close(r3) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:53 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) accept4$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast2}, &(0x7f00000000c0)=0x10, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) [ 362.133169] audit: type=1400 audit(1587401093.726:65): avc: denied { block_suspend } for pid=20284 comm="syz-executor.5" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 16:44:54 executing program 5: socket$unix(0x1, 0x2, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:54 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="31c272107568084b16f976f45fa4bd452d13a62b998ae2ab2341f3fd670beb9531edbacbd7ebebddbc6eb61cf12d52ebeb4920263e9c2da4104b7a61384e7ec0bb75b3e32921d8520b26f519942e7a6d96df17a46ba278fbcd2302a4a50ccf1cf8b81a6079698f2b5a3d24e02f4c7acdf261686254c5bd44968f164629a90057e7b23de7a6651d3a4d822817118b8381283ab13242dcb66173f5a820979e524e3d5938b1e3a4cf5877227855b9ccdecddef1ea576c354f009d4c511a4adbed83bdf5d65f94072c6ee558681010599c448f78c89119b524784de322bfbe97e0555f1167ca71dca116cc559c54f8ecf455d260fc60d92245cda96d4821", 0xfc) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000240)={{&(0x7f0000ffc000/0x2000)=nil, 0x2000}, 0x1}) ioctl$SIOCX25SCALLUSERDATA(r0, 0x89e5, &(0x7f0000000080)={0xe, "1d40770d18a721d50ed02e2df0ea732618f3c7fc817f1151903134baf5008f8316ac1b91ec747d3522de5895fdde783259e7e178a31f86b19733a94bbc4b9fb5590c0ba4c6db0c2d9791ef1d5c29c04321d1ff4caa4983b2f89bfc15d46db46b2bc73dccfa24fd0abf1d1fa25547ecef96d179fba164c4bb3db8a572ba5f6070"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0xfffffffffffffffc, 0x0, &(0x7f0000000040), 0x100820, 0x0) 16:44:54 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4800, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80200, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r2, 0xc0845657, &(0x7f0000000300)={0x0, @bt={0x200, 0x9, 0x1, 0x1, 0x1, 0x6, 0xdf, 0x8000, 0x7, 0x5, 0x9, 0x8, 0x80, 0x1, 0x4, 0x31, {0x4, 0x6}, 0x7f}}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280), &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f0000000440)=0x3) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0xfff, 0xc9aabf25a03d79bc}, 0xc) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000000)) sendmmsg(r0, &(0x7f0000002fc0)=[{{0x0, 0xfffffffffffffd9f, &(0x7f0000002d80)=[{&(0x7f0000001c00)="b55381cca459b6cd48487ded6bf0b7d9731bb898342ae3489191c65a0d14dd9144a10907cd98ec3f42b0f2f8a3929b0edaece8f67e73c7ea3e65c640dd43f3f06d3c722356050ec28b442de61e2b5de7e46370222c00185db4f92d019aeb060e83b4b735cca6549f1ba601b97dac1221a2c03eba943b2011244ad58b34d54c05ba00cb5a17e6ebefcbdad3cd7cf95144283519a1cbe200592a", 0x99}, {&(0x7f0000001cc0)="af46950c95861316e989e97f56a50bb7f9c56145e6ac9bc76d374da8651266f0c8df64d7b00142a5fc405c1d223f99350b1beb52739d33c4ea2bda07f9bb3675bac20c381fed788c5a3897889bd1bc3ce921ca576e2fda30be424d7a08378c0c525a684e327fa2f76ac403aca5061f462cd6e11413f66a40e2b3c1a3069fe5476eafcd78173d55e51153af96ea8ca7dbf4540353256002ef1a6a7eb934f66b584a828128b1d34ad9c5fcb4c22e33facf", 0xffb4}, {&(0x7f0000001d80)="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", 0x446}], 0x3}}], 0x300, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:54 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x3, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x7b, 0x53d, 0x0, 0x1, 0x80, 0x8}) 16:44:54 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) recvmsg$can_raw(r0, &(0x7f00000002c0)={&(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000200)=""/68, 0x44}], 0x1, &(0x7f0000000280)=""/5, 0x5}, 0x40000000) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000340)={0x3, r1}) 16:44:55 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fstat(r0, &(0x7f00000000c0)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200), &(0x7f0000000240)=0xc) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r2) setresgid(0x0, r2, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0}, &(0x7f0000cab000)=0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) getsockname$packet(r6, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) ioctl$DRM_IOCTL_GET_CLIENT(r6, 0xc0286405, &(0x7f0000000000)={0x7, 0xffffffff, {r4}, {r1}, 0x9, 0xffff}) setgid(0x0) r7 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) unlinkat(r7, &(0x7f0000000080)='./file0\x00', 0x200) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) [ 363.434430] print_req_error: I/O error, dev loop2, sector 128 16:44:55 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x5, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:55 executing program 5: prctl$PR_GET_FP_MODE(0x2e) r0 = socket$inet(0x2, 0x3, 0x401) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r1, 0x0, 0xffffffffffffffad) r2 = socket$nl_generic(0x10, 0x3, 0x10) accept4(r2, &(0x7f0000000200)=@ax25={{0x3, @null}, [@rose, @netrom, @bcast, @remote, @default, @bcast, @bcast, @default]}, &(0x7f0000000280)=0x80, 0x80800) getsockopt$IP_SET_OP_VERSION(r1, 0x1, 0x53, &(0x7f0000000180), &(0x7f00000001c0)=0x8) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000080)={@empty, @private=0xa010100, 0x1, 0x2, [@multicast1, @multicast2]}, 0x18) syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000000)="cb9cb97a218ccdef7dbbb52e879cc55ef585309011c01f55896b814f62f40424611a853fbd04518556966816c237caf90713f37d64feabcb80c1116a2f2ff14c06120f2ca194b48b8063d22a", 0x4c, 0x82ac}], 0x0, 0x0) [ 363.537062] BTRFS error (device loop4): superblock checksum mismatch 16:44:55 executing program 0: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x9) write(r0, &(0x7f0000000340), 0x41395527) write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0x10, 0x0, 0x4}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x5, &(0x7f0000000380)=[{&(0x7f0000000040), 0x0, 0x2000000005}, {&(0x7f0000000200)="a53df199a9bd699fe936e1ff375f9b612223b926659ae267305718dae300d70668e2577632d93dae53e7d404f298be31c1ae20e0b0e74c091506a5352cef21944fb870104ea12a8206cddc2548e64851c989cf8a37bb1fe743c844d86726ad0228485c36edb7e849e7054a7fb6750f93e9c8fa31fc6c0fe1ad23f505e9d4c13160d817528360539bfd7953d2bf9b851f9e57307ebed95ef756e5d25de7e7e8ccd3dcc6960e33515711d5e07bddca0e982742857566ab5052665cc6572f9636857cfffb7bd925697e4541acb5ffcca3eee4b8578c5c267500746dc746", 0xdc, 0x1}, {&(0x7f0000000100)="cb2010a911ed2a5d69438241bdf4efceeb3eb50182e39d64e8bfa27d35031780259a1d0a29294dbc0dd7ea72387b4437e482bcc72d83ebde", 0x38, 0x2}, {&(0x7f0000000400)="f91941ec8db06cf77043b129e26b2f9ff32840c84ae6edd7e107cedb0eee17c664f4b7b15a4e3dbc436c147561c48d7be66d17592f8a1b622bc36c0ac66c320aefb9fcab2b28e27c617bb78b46aa3c97ebe56f4f842126a46b24018867f2f19b1083c1e632e3a5fc2d5fd93a83883459721146b4e7b6000000000900"/140, 0x8c, 0xd79}, {&(0x7f0000000340)="23cdd7b2af37d5d8112b2b8314", 0xd, 0x1}], 0x0, 0x0) [ 363.663485] BTRFS error (device loop4): open_ctree failed 16:44:55 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4800, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80200, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r2, 0xc0845657, &(0x7f0000000300)={0x0, @bt={0x200, 0x9, 0x1, 0x1, 0x1, 0x6, 0xdf, 0x8000, 0x7, 0x5, 0x9, 0x8, 0x80, 0x1, 0x4, 0x31, {0x4, 0x6}, 0x7f}}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280), &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f0000000440)=0x3) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0xfff, 0xc9aabf25a03d79bc}, 0xc) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000000)) sendmmsg(r0, &(0x7f0000002fc0)=[{{0x0, 0xfffffffffffffd9f, &(0x7f0000002d80)=[{&(0x7f0000001c00)="b55381cca459b6cd48487ded6bf0b7d9731bb898342ae3489191c65a0d14dd9144a10907cd98ec3f42b0f2f8a3929b0edaece8f67e73c7ea3e65c640dd43f3f06d3c722356050ec28b442de61e2b5de7e46370222c00185db4f92d019aeb060e83b4b735cca6549f1ba601b97dac1221a2c03eba943b2011244ad58b34d54c05ba00cb5a17e6ebefcbdad3cd7cf95144283519a1cbe200592a", 0x99}, {&(0x7f0000001cc0)="af46950c95861316e989e97f56a50bb7f9c56145e6ac9bc76d374da8651266f0c8df64d7b00142a5fc405c1d223f99350b1beb52739d33c4ea2bda07f9bb3675bac20c381fed788c5a3897889bd1bc3ce921ca576e2fda30be424d7a08378c0c525a684e327fa2f76ac403aca5061f462cd6e11413f66a40e2b3c1a3069fe5476eafcd78173d55e51153af96ea8ca7dbf4540353256002ef1a6a7eb934f66b584a828128b1d34ad9c5fcb4c22e33facf", 0xffb4}, {&(0x7f0000001d80)="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", 0x446}], 0x3}}], 0x300, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:56 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000000)={0xfffffffffffffff7, 0x0, 0x10000, 0x4a01900}) ioctl$DRM_IOCTL_SG_ALLOC(r0, 0xc0106438, &(0x7f0000000040)={0x2, r2}) 16:44:56 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) link(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0\x00') 16:44:56 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) creat(&(0x7f0000000080)='./file0/file0\x00', 0x11) 16:44:56 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) setfsgid(0x0) setresgid(0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0}, &(0x7f0000cab000)=0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) getsockname$packet(r3, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000000)={0x7, 0xffffffff, {r1}, {0x0}, 0x9, 0xffff}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r6) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000040)={{0x2, 0x0, 0x0, r4, r6, 0x100, 0x2}, 0x6, 0x81, 0x4, 0x7, r1, 0x0, 0xcddc}) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) mount$fuseblk(&(0x7f0000000080)='/dev/loop0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x1800001, &(0x7f0000000440)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f74313e97ac70fa6ac5833df928bfbc6d6f64653d30308485746430303030303030303030303034303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',allow_other,blksize=0x0000000000001c00,blksize=0x0000000000000400,default_permissions,default_permissions,allow_other,blksize=0x0000000000000800,allow_other,allow_other,fsmagic=0x000000000000ffff,uid>', @ANYRESDEC=r7, @ANYBLOB=',\x00']) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:56 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f00000000c0)='./file0\x00', 0x2, 0x9, &(0x7f0000001600)=[{&(0x7f0000000100)="0f7edaa4601abb2570d98c64ccf7ebe889", 0x11, 0x6}, {&(0x7f0000000200)="065790ae12a850003874415a4d98ba97b2985248881ae78f2b81f918c1fd616223076ce890eb305554df125b80fb56457c8e8c43dc11c224875996f153604a9dd5561da61e7065d1da8825a3f74047afb108c6325d6c4b51e3ce5dda4ca35505a1f35d51bd29c9686e61f55b54b14f5b33d0d0fffa0b6dc38ffa7412895fc4e7449ec9faf402a4e1e31914e2846698f1429c21065967c495a70883b38e22cc399fac0bed0fbef8c6bc72b0c35df9972aa9b9f569a8327874ee8c5819fe36a5afd19c0afa792b67a7c57fc2d44319a25df60f73f9f1335168", 0xd8, 0x1ff}, {&(0x7f0000000300)="95e0ed74b620dadb05e724db26e5bfc9511da30f6e2c1021b88fc7cebe83fea8", 0x20, 0x80000000}, {&(0x7f0000000340)="c521005d9eca7a838c93c692cdea1d439d6ba809a6918124d1cd8dbfff6a4bf2ae7c039f0bd397609a6f688a047242e18f7f53f03e086e5efabce2d03a02edd23f84c835641878e345346c82651c8234d762603aad5b245353f08043da63ab1258783d7767c110675f905bade2c5139a89d7d7b62d06e00eca8a4becb988ab2d660058339b5cd2290e19", 0x8a, 0x7}, {&(0x7f0000000400)="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", 0x1000, 0x3e0e}, {&(0x7f0000001400), 0x0, 0x5}, {&(0x7f0000001440)="7467a65162855fde6dc7a29b7d684c08d0e6370a99f3c5ca4bb8a19a47887b0c9b05359d85b4e5e75045f0", 0x2b, 0x9}, {&(0x7f0000001480)="ce135b61abe5e72041e158e943944b52b2eb9154b6c9957e5602521405de015480661d1b27f4a0a269c755047ce48f6a0102bb56f9cd87efa64a36171258745708b85063fb9ef05a56aca028a4b01a43f1dbba3bb10d21d5f0afb255744d56a1198451a364cf6a02ff5f2fbf22cae15c216e3b5b9969d0f1893b4b264c39d11c3998aa676d7788df9dea9a1501d4a22a4f2707f1e0f18ce4a3eaa4d19a67bd8b332b273759476fc4441311065119e329654f1de88c687e88f849d032", 0xbc, 0x74b4}, {&(0x7f0000001540)="c5e465aae059c7bb30ed9238f0a4a67f76bbb568ebb2b37414c580d1b105f85b7e8f814fbcbde7ebe755d72caf39982846361bac945d6234035fba5db7f1c5bc2adb9e2259e53d8e43d4edf1238dc9bc9dae831f6a9cafdfa0c2a63191b7145f9513f51a887483cfd34202140261a4181fb80fbe039567d02639af988d32d9915c", 0x81, 0x5}], 0x10000, &(0x7f0000001700)={[{@noquota='noquota'}, {@noalign='noalign'}, {@noalign='noalign'}, {@swalloc='swalloc'}, {@inode64='inode64'}, {@largeio='largeio'}, {@gquota='gquota'}], [{@uid_eq={'uid', 0x3d, r1}}, {@obj_role={'obj_role', 0x3d, 'btrfs\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x63, 0x37, 0x66, 0x37, 0x66, 0x30, 0x38], 0x2d, [0x37, 0x62, 0x32, 0x62], 0x2d, [0x37, 0x34, 0x61, 0x9], 0x2d, [0x66, 0x5, 0x8b9a0aa8240373b5, 0x18], 0x2d, [0x66, 0x33, 0x33, 0x64, 0x35, 0x37, 0x33, 0x66]}}}, {@smackfshat={'smackfshat'}}, {@fowner_eq={'fowner', 0x3d, r3}}, {@measure='measure'}, {@smackfsdef={'smackfsdef', 0x3d, 'btrfs\x00'}}]}) 16:44:56 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) r1 = open(&(0x7f0000000000)='./file0\x00', 0x8100, 0x2c) ioctl$USBDEVFS_RESETEP(r1, 0x80045503, &(0x7f0000000380)={0xf, 0x1}) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000340)={r1, &(0x7f0000000200)="0e8372ba73b136ae9b812d9e4c868662d847082c8e9180d917791aa147996fbe6b68ac0c1d08cfc9e4953a89e5", &(0x7f0000000240)=""/179}, 0x20) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f00000000c0)=0x9, 0x4) syz_mount_image$btrfs(&(0x7f0000000100)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x7ff, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x2}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$EVIOCSABS0(r2, 0x401845c0, &(0x7f0000000080)={0x5, 0x6, 0x3, 0x8001, 0x7fffffff, 0x5}) 16:44:56 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4800, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80200, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r2, 0xc0845657, &(0x7f0000000300)={0x0, @bt={0x200, 0x9, 0x1, 0x1, 0x1, 0x6, 0xdf, 0x8000, 0x7, 0x5, 0x9, 0x8, 0x80, 0x1, 0x4, 0x31, {0x4, 0x6}, 0x7f}}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280), &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f0000000440)=0x3) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0xfff, 0xc9aabf25a03d79bc}, 0xc) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000000)) sendmmsg(r0, &(0x7f0000002fc0)=[{{0x0, 0xfffffffffffffd9f, &(0x7f0000002d80)=[{&(0x7f0000001c00)="b55381cca459b6cd48487ded6bf0b7d9731bb898342ae3489191c65a0d14dd9144a10907cd98ec3f42b0f2f8a3929b0edaece8f67e73c7ea3e65c640dd43f3f06d3c722356050ec28b442de61e2b5de7e46370222c00185db4f92d019aeb060e83b4b735cca6549f1ba601b97dac1221a2c03eba943b2011244ad58b34d54c05ba00cb5a17e6ebefcbdad3cd7cf95144283519a1cbe200592a", 0x99}, {&(0x7f0000001cc0)="af46950c95861316e989e97f56a50bb7f9c56145e6ac9bc76d374da8651266f0c8df64d7b00142a5fc405c1d223f99350b1beb52739d33c4ea2bda07f9bb3675bac20c381fed788c5a3897889bd1bc3ce921ca576e2fda30be424d7a08378c0c525a684e327fa2f76ac403aca5061f462cd6e11413f66a40e2b3c1a3069fe5476eafcd78173d55e51153af96ea8ca7dbf4540353256002ef1a6a7eb934f66b584a828128b1d34ad9c5fcb4c22e33facf", 0xffb4}, {&(0x7f0000001d80)="1234334bf706876563897914a67c0249dfcda7e3c313589de04ba94f4d45c41caf87715c88a1ac0b401423cc1602b981a7f9785c28d41904c8165adee1823703e1a4b68a11116d1600f3c78b17fd204cf7405074bf416ce17497236f226ea2bb09a58be4dcce2aa7d188336b200338e53274ac929be4b42d646e47e642acaced356a0e694790414e2bff35c71ed3b42b0ca0bf123645c04f09306ed503a7074bd718fca07c4d5e9484a9db6cdebb60f9056106e389b2d9a03a01ba5c922cd05e71542575e6ebf9227f51302b2599084ee832de3076fb3fca90c9531f6672df70b6abb4f61fb5739ddc65c0d2a04ef44d477508f55138346a2c57534eeff102bc125d80034fd8e9d47f4cf3ae1cb9165e9f66b6ffef51bc55adac06667f9634dbbcfa853f18eef7a02e7211045d6123566151917929218eec4df0061c70a89dc85b93e26eda9c9c04432ddc9abb247628701d16dae1161f2fa24521ada9425a08305bb172a0bf59ca966dc5240a0e74b13ebd5cc1b08222c9c3778aede8cc165988f2b26627d604c551ae43d21a17f8b2a8353569802d7c301a05d303441824f95441ba60dd1945197a1bcf1e84493d13e05d2c13890536ddea29b59365a31ca6dfb2fcce51c0ff82054d67aa257191a70e7396cb7126471644beeb653641855bc18565a21ba1d547c34bffc9d9297e1890a3244151574cfb38ad21fdbcc2184cbb774f38b49485ae7363e35fa04a5a50ef9200776e14dc9679856c39daf39a2b7296d0f6e2a212605b4d914dd52f64acf3fa4f6b506b9d8d8abb19edf9b165767cc1538093939f4720445c5f66f329c5792fdebb34d7505e327628ab43800e895da3690ee0687b83b81b59c82aac8c39d5d73e7486f85c391540bd126ace2a2438af1ae4635d8e63dee743a0efa24ebd53004fdb3b40dbcddcac8c2454521ada565fbf477aee437c24e191ea0065641c39a4b679a14afab9b19d8af28c270546b86c4109e2b4ad07661e95d5969d894f1a8b4498b205ee63f14c34aa57d15fc7121ddcdd5cb27472167a850a38eb6c91fb80979ce8dbf1df7732200271e07456318d44a08eafebd0a5141a00b81cbb1eadc15ad9ea8e35c0b02dc0758c71a9cca41507e66268365ce8a9b191d3e341835d50c647f1216da329ae6cf8c0b4a01b58a8f16e20c4097af34b8eba3bedfeadec84b7a5b9c7fecc9e74924c5068af3c23fa332d941dabd0aa252444655adfaeef13a258609dbd2930bf82d95f5e8849345b1756637e998bac26441a748e258c75c9284405f14adc53e403b3498d6ba951356f2977d7451efab9474849cb7a8bf86d39a05d9a1de6c2458f3a2d5b6d9477ea175739fb14902776c2950001d84304152ef28b057e717ff00b7ea2acf71142cdf26b6fb7cb4012341e4ec1508407fc48865d0bd8e38f78e97dca225de4c1d3b5e175b52df56bfa4650a54caef454b35da1cda6c58cd6fa5aa77fa4d4c39bd0aa90ab9aea103a0e18d8e5e71e19b73f3be0780daa7f7b1ad30fe7d2593e0308c3f3e1e9c7", 0x446}], 0x3}}], 0x300, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 364.685674] print_req_error: I/O error, dev loop2, sector 128 16:44:56 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r1, 0x1707, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x1d4, r1, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x545cef69}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x200}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6d}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xc1}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}]}]}, @TIPC_NLA_MEDIA={0x100, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x89c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}]}, @TIPC_NLA_MEDIA={0x24, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}]}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x4000015}, 0x0) [ 364.924929] print_req_error: I/O error, dev loop3, sector 0 16:44:57 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00') sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080), 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x38, r0, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xffffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008004}, 0x4040000) [ 365.410875] print_req_error: I/O error, dev loop2, sector 0 [ 365.410907] print_req_error: I/O error, dev loop2, sector 128 16:44:57 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000240)={'ip6gre0\x00', {0x2, 0x4e22, @loopback}}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$VIDIOC_DBG_S_REGISTER(r0, 0x4038564f, &(0x7f0000000080)={{0x6, @name="9b745f56889b0572139d5f83957e30cac875bf1b3309697ac60940ba713a88ab"}, 0x8, 0x0, 0x400}) 16:44:57 executing program 3: r0 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) getsockname$l2tp6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, &(0x7f00000000c0)=0x20) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:57 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) futimesat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r2, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r2, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x800, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffffad) close(0xffffffffffffffff) recvmmsg(r2, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r2, 0x81e6c000) write(r2, &(0x7f0000000340)="5a8c169ed66b131c20deb6c527f6613e618205cbf1b0c909f225c30849aac964162c8a1d2f46ba7ee8e10275aca5bf3d7806ff6655e03b5a5e917ed1dd16967d234847f688f16d286636c676d7e315270cc4e9397758061b6e43e6141c4422c31cd75a47d88b535f2d9895c2edd95a1c3a2e250b7edd842e50564b7b14f4c4f9aba333a6f1fa6e7998b2767691ab42c3aedc8b11a34d8099d0f116da8b27db59ef455a2691cd8c0e866683ed780710207830b05d791110e63b6ffdc27a3a78a42825fb80c4a6bb4332826503aa9c6e7daa16a0158383ae15886d5d9b40b5971149ffd95583c06f1da394fbe6e4e9a663c544db2fa05782abeb9c9df4acf8193f6ce4ef2947ca8fab07953ce167f5bbed7aada840052583366b59661c70db6c166158bebfae468c307088d1db7f23336854845df2", 0x134) munlockall() ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80044d1d, &(0x7f0000000080)) 16:44:57 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4800, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80200, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r2, 0xc0845657, &(0x7f0000000300)={0x0, @bt={0x200, 0x9, 0x1, 0x1, 0x1, 0x6, 0xdf, 0x8000, 0x7, 0x5, 0x9, 0x8, 0x80, 0x1, 0x4, 0x31, {0x4, 0x6}, 0x7f}}) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000280), &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000002c0)={0x0, 0x3}, &(0x7f0000000440)=0x3) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000240)={0x0, 0xfff, 0xc9aabf25a03d79bc}, 0xc) ioctl$DRM_IOCTL_NEW_CTX(0xffffffffffffffff, 0x40086425, &(0x7f0000000000)) sendmmsg(r0, &(0x7f0000002fc0)=[{{0x0, 0xfffffffffffffd9f, &(0x7f0000002d80)=[{&(0x7f0000001c00)="b55381cca459b6cd48487ded6bf0b7d9731bb898342ae3489191c65a0d14dd9144a10907cd98ec3f42b0f2f8a3929b0edaece8f67e73c7ea3e65c640dd43f3f06d3c722356050ec28b442de61e2b5de7e46370222c00185db4f92d019aeb060e83b4b735cca6549f1ba601b97dac1221a2c03eba943b2011244ad58b34d54c05ba00cb5a17e6ebefcbdad3cd7cf95144283519a1cbe200592a", 0x99}, {&(0x7f0000001cc0)="af46950c95861316e989e97f56a50bb7f9c56145e6ac9bc76d374da8651266f0c8df64d7b00142a5fc405c1d223f99350b1beb52739d33c4ea2bda07f9bb3675bac20c381fed788c5a3897889bd1bc3ce921ca576e2fda30be424d7a08378c0c525a684e327fa2f76ac403aca5061f462cd6e11413f66a40e2b3c1a3069fe5476eafcd78173d55e51153af96ea8ca7dbf4540353256002ef1a6a7eb934f66b584a828128b1d34ad9c5fcb4c22e33facf", 0xffb4}, {&(0x7f0000001d80)="1234334bf706876563897914a67c0249dfcda7e3c313589de04ba94f4d45c41caf87715c88a1ac0b401423cc1602b981a7f9785c28d41904c8165adee1823703e1a4b68a11116d1600f3c78b17fd204cf7405074bf416ce17497236f226ea2bb09a58be4dcce2aa7d188336b200338e53274ac929be4b42d646e47e642acaced356a0e694790414e2bff35c71ed3b42b0ca0bf123645c04f09306ed503a7074bd718fca07c4d5e9484a9db6cdebb60f9056106e389b2d9a03a01ba5c922cd05e71542575e6ebf9227f51302b2599084ee832de3076fb3fca90c9531f6672df70b6abb4f61fb5739ddc65c0d2a04ef44d477508f55138346a2c57534eeff102bc125d80034fd8e9d47f4cf3ae1cb9165e9f66b6ffef51bc55adac06667f9634dbbcfa853f18eef7a02e7211045d6123566151917929218eec4df0061c70a89dc85b93e26eda9c9c04432ddc9abb247628701d16dae1161f2fa24521ada9425a08305bb172a0bf59ca966dc5240a0e74b13ebd5cc1b08222c9c3778aede8cc165988f2b26627d604c551ae43d21a17f8b2a8353569802d7c301a05d303441824f95441ba60dd1945197a1bcf1e84493d13e05d2c13890536ddea29b59365a31ca6dfb2fcce51c0ff82054d67aa257191a70e7396cb7126471644beeb653641855bc18565a21ba1d547c34bffc9d9297e1890a3244151574cfb38ad21fdbcc2184cbb774f38b49485ae7363e35fa04a5a50ef9200776e14dc9679856c39daf39a2b7296d0f6e2a212605b4d914dd52f64acf3fa4f6b506b9d8d8abb19edf9b165767cc1538093939f4720445c5f66f329c5792fdebb34d7505e327628ab43800e895da3690ee0687b83b81b59c82aac8c39d5d73e7486f85c391540bd126ace2a2438af1ae4635d8e63dee743a0efa24ebd53004fdb3b40dbcddcac8c2454521ada565fbf477aee437c24e191ea0065641c39a4b679a14afab9b19d8af28c270546b86c4109e2b4ad07661e95d5969d894f1a8b4498b205ee63f14c34aa57d15fc7121ddcdd5cb27472167a850a38eb6c91fb80979ce8dbf1df7732200271e07456318d44a08eafebd0a5141a00b81cbb1eadc15ad9ea8e35c0b02dc0758c71a9cca41507e66268365ce8a9b191d3e341835d50c647f1216da329ae6cf8c0b4a01b58a8f16e20c4097af34b8eba3bedfeadec84b7a5b9c7fecc9e74924c5068af3c23fa332d941dabd0aa252444655adfaeef13a258609dbd2930bf82d95f5e8849345b1756637e998bac26441a748e258c75c9284405f14adc53e403b3498d6ba951356f2977d7451efab9474849cb7a8bf86d39a05d9a1de6c2458f3a2d5b6d9477ea175739fb14902776c2950001d84304152ef28b057e717ff00b7ea2acf71142cdf26b6fb7cb4012341e4ec1508407fc48865d0bd8e38f78e97dca225de4c1d3b5e175b52df56bfa4650a54caef454b35da1cda6c58cd6fa5aa77fa4d4c39bd0aa90ab9aea103a0e18d8e5e71e19b73f3be0780daa7f7b1ad30fe7d2593e0308c3f3e1e9c7", 0x446}], 0x3}}], 0x300, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:57 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x5e9000, 0x0) ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f00000000c0)=0x7) 16:44:57 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000200), 0x0) write$cgroup_pid(r1, &(0x7f00000000c0)=r0, 0x12) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setscheduler(r0, 0x0, &(0x7f0000000080)=0x3) r2 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) r3 = socket$inet6(0xa, 0x4, 0x1b4) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x7, 0xa}, {0xfffffffffffffffc, 0x0, 0x2000, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r2, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) ioctl$sock_SIOCDELDLCI(r2, 0x8981, &(0x7f0000000100)={'rose0\x00', 0x8}) 16:44:57 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r1, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) ioctl$FICLONE(r0, 0x40049409, r1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:44:58 executing program 3: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:58 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f4248cd55485266535f4d", 0x4b, 0x10001}], 0x100082, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:44:58 executing program 4: r0 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) getsockname$l2tp6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, &(0x7f00000000c0)=0x20) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:58 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) socket$can_raw(0x1d, 0x3, 0x1) ioctl$TIOCSIG(r0, 0x40045436, 0x9) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x88400, 0x0) ioctl$USBDEVFS_RESETEP(r1, 0x80045503, &(0x7f00000000c0)={0x5}) 16:44:58 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) fchmodat(r0, &(0x7f0000000080)='./file0/file0\x00', 0x4) 16:44:58 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$KVM_S390_UCAS_UNMAP(r0, 0x4018ae51, &(0x7f0000000080)={0xef, 0x8, 0x6}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 366.592818] QAT: Invalid ioctl 16:44:58 executing program 4: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000200), 0x0) write$cgroup_pid(r1, &(0x7f00000000c0)=r0, 0x12) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_setscheduler(r0, 0x0, &(0x7f0000000080)=0x3) r2 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) r3 = socket$inet6(0xa, 0x4, 0x1b4) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x7, 0xa}, {0xfffffffffffffffc, 0x0, 0x2000, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r2, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) ioctl$sock_SIOCDELDLCI(r2, 0x8981, &(0x7f0000000100)={'rose0\x00', 0x8}) [ 366.823977] print_req_error: I/O error, dev loop4, sector 0 16:44:58 executing program 4: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000480)='fou\x00') sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}}, 0x0) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x14, r3, 0xe7a035cf4856fee5}, 0x14}}, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockname$packet(r4, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14) sendmsg$FOU_CMD_GET(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r3, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private0={0xfc, 0x0, [], 0x1}}, @FOU_ATTR_IFINDEX={0x8, 0xb, r5}, @FOU_ATTR_PEER_V6={0x14, 0x9, @initdev={0xfe, 0x88, [], 0x0, 0x0}}]}, 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x0) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setgid(0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SIOCX25GCALLUSERDATA(r4, 0x89e4, &(0x7f0000000340)={0x5a, "4a72d11768ff22280ae821bc043ee05d0108f5349f92eef3233834b13133c99264bd798aeedd20fcd8f1a1dfc391295467b9548c94f91ecd5f8d8ea4c80643694625ab36e90c8512e244f11dfad2336ca1566e3334f22431cd45780ac9822a681d33b687e23bda2f2155cca3ddc7d20c390089ff59ad312b88883a1ee4f506d4"}) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, 0x0) 16:44:58 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) munlockall() pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x105000, 0x0) mmap$snddsp_status(&(0x7f0000ffb000/0x2000)=nil, 0x1000, 0x2000008, 0x110, r1, 0x82000000) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000080)=0x1d81) 16:44:58 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000040)=[{&(0x7f0000000440)}, {&(0x7f0000000340)="bff79f882e87edf67b371931394ea52a60a07670cb59cadeddb902b4777338d701cd6d6b605e408bcea732e55063862e3f659334aa3fa12d9a11b547b2fa218490b3012fbcde4376576676a1743291185679023fa250f3c3dd795f32875dd044f0b1bb3102d7cb461fdca0569a47248ec0397d917a5b5606cb172be531336226cc6821d4ab14c7e22f1e9ab1d12ea445a1e12e3ba109f2a114372edb214315df9ee88ea5204dcae9fa5dadf960d3b5ec479b1141b1fbf35e0213f82f3bc293d852e2349bb4faa91416e2788074584e6bc5dc8b79e4589f26ee8d63dfc4c1da451d7bf77f6ef07830718c09b1", 0xec}], 0x2, 0x0) close(r3) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f00000002c0)={@empty, @broadcast}, &(0x7f0000000440)=0xc) ioctl$int_in(r3, 0x5452, &(0x7f00000001c0)) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "6bd2cf9a2508a570", "b39bcd84dea6fe2281106ee7c7789f1c", "e6df2b97", "d6465b4b89361353"}, 0x28) splice(r2, 0x0, r3, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0}) ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f0000000180)={0x0, 0xc, 0x4, 0x20000, 0x0, {r4}, {0x5, 0x2, 0x60, 0x8, 0x0, 0x7f, "18de0416"}, 0x8000, 0x4, @planes=&(0x7f0000000100)={0x58, 0x2, @userptr=0xffffffff, 0x3}, 0x79f0, 0x0, 0xffffffffffffffff}) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r5, 0x800442d2, &(0x7f0000000300)={0x6, &(0x7f0000000200)=[{0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @multicast}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @link_local}]}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) inotify_init1(0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) write$tun(r0, &(0x7f0000000680)={@void, @val={0x0, 0x0, 0xc6}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "a5c268", 0x1290, 0x3a, 0xff, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc]}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, [{0x5, 0x19, "e5fb000005005357cd99e33bca98e246dc9027eb3334ea443e7fdc4049b892d54090878bee496aa11e07fb0f1db1a0ebe2f95347b0317613063381165c01f08fea1048ea59a6f2273e02707fdd7defc02bde3192360593169594710bddd04aead6c89c87778555de42d23236534ba1a799a63eb4532003a703b249e4628e4706bccc7a264ee85014d99a7fd4565d3c416c835a741eb4e97140e834013724d23450072f0087ac65295ca0d7c601c30de0161560e2d20c5b1052e9b208e25470e9fa884ecd2082ec38b3cb19c083"}, {0x0, 0x1b, "14a142ef59c04e8e7b4db5309006bd98ec79847a52ed68124e8a24d3079fc53b81c039a7d59f992dcb481043f510a0ce1ebb98c07a624ff8c8cc0b4fd3b8e700196d1f5696e184393de669ffaebfbd494a9d6a5fedac0738ffc3dcb3c1b96e48fd063786ae5701f6aa5022621e665607848e20f162630df96d0a773993e97ae6b847e51883d73d66bb30b4375229cfd0c9c41f511bfbf2bca94caa7ce76be257173a4eae2b484117ac32acf6ea1a32def26c919c93055c2f9a640b2d847d527357902538828abd66b3d1a9b85034066154f0b2ec054f6a8712ec98e5"}, {0x0, 0x1f, "8cf0833ae2772f05d302c778833be4f2b9c43c83284b82e71ca1ee382af46513079a2f52da08c93afdfc1a18e4b677b307a1c7df90787cbd143b129bc8dbc39104eb21674d26fd4ced8626df256869e168d42f4d160ad1442cae2bd8fda0fc44a08759d245bfe8eba42ec7967c1e953256a057369159333bca73b498a882fb5e840d429804169a6446c1d1b013144ae0ee276a463ef69ea4c4636751083041811c9b549256c6a3a71e451f8fd4de25629b3de61cba78315412fa14e350bb03feaf63909bd7320561df80bc77f36d4561a5efcc324450355ed398d9e46e798e23e2a4a2c787728b9c549a1894c53dcdfe834c7785fb3c4331"}, {0x0, 0x3, "6598975984c98199c07565e33783bc472344c2fc4e6a32"}, {0x0, 0x1f8, "631c74c9d1ae5f26763e689d7358d52b9d78e1af1392b0a090488b19cbc96370f62d48c23e1427c05acd9c3b3f073a763d782618ff1eec26b515a9b327cbc17f30d83b25eb0642880dfa19be7390bfd822af60a6c50ca6e86b5a7a713194fb7fd8d6fbabab53a0be384d6197ec95d58387c3c60474093fafe7b973081f27ecda4197fda48a1f93aef6f2fe0790ee4c44b9311e6a55f85e9a53c1b9d12d9b586d5e9c0f98d3d6f5e215a0392bc0f0747ce75347ce29eea158c0f1ff30ecf208af154508b0c1f57d03d6e884937b7d84b3170624b4ebb76df8681493b4ff2f5cb6ab9fc4745569c2105f1eef9e9e3b7f10aa79b3746d194b78719295ce4ca9a520a08a67241d6770b93eb3a0b12e0ae16886e6a6312f858009dfc6736efec7498718a3c84b37267e49860fcf486442c2f06179672b3a6d1afac32246207723f9f43a7afc4e63820609c8a44dd4a88cdec819602a152eb4403f842712fd75ea44c779e98ff01f41caba247ef6434df425ff6bf93d49d1a8a08e455f2d86ff55773d57b611dd0e464d6b5e139271a91c6c8c629b694364730a38ddbe897a252620a2e41167afc48833290e0859615328f9dd7ba13514af6e3b3ca4e6514d400ad062a3519a85c4c79265bc284308602e73254a6ad85e76649c9b48f6785971a0e01ff0fe22de2c1c0b7ff27cf7e46f022d0b1a3c3a9ba65bcba1901c95e20ce39c24ff76acf7c4a3771e114a760448dbcd88c54351ee97a903c554564866eefb0964b5fe6ba26e73b64273c3f5d8079620cd509a3d88c19d09b5cc4256f38d263e105a94cfd44305e8c2755f90fd580628f0550268c95a1193362c265e0025ebdb42e58e2afcc38edbb77eedc486564a16e2405a99a382cfe15b03b097c10cb1651c2cb4bc7c5df969fb5ce19a6c8d3accb5b67dcf11fcfb6c028107c6b93c6a9b9c659dc05549a6fb1732f67cfc0ae5fe425245b72dbb6a719f83887a8af64ea8d1b3764ce0684f2d748a057d3ee3158d58266a560f8e04777a1f303163304d08b5bd470f627e0a13928e46fd0847bde599510e6978d68bb75f40ac4e247fc8708ca82ad40e729c3de042c94756d3816083784644d5e666fb3810117a62f7508ae3cdcdf312e314acd9add8e9c3e473ae206bd9b25659db6c1f570777f408644dcc6d150e92f284ad68d4bbe1f52e0c36e88a0d083dee8f7d59540b2ddda7fd27c97abc268630cbcad1e9cdd88c0a075462288bbf59824497ba7df15bc34d9fd22f8508a6d1c90118676ad3f9fc03cea1c69594dff6e978f42d1da2011290872e062fb2cc3293030534a6cedb6f461b33b5fd90b2ee0a8ae6803f45f4f2e74fac772ce235d66e8625951d7acbc87f1c4e13cbf0c01e8909de72d3b78b7d945b53e50f38486556dc6fd58db1a1da7f9cda6b50278a73d58842f15117c0232e6860caaab9be2d010ab4c5689a0ea14d78a5ec2dde3e837cadd8e1c794168860a4e303d513cc099d79cbb7605419db906a76d44ea62c6a767fb0f5cf25325a63c4939e1e8eb8df73645b5e9c4eebe6f736706708a8b0b5eebe263d846a9dedd9cb30365f3605cde065ae8fa4cb1075b87485ec0ccbabbe3033901e273234c688136c0960932e2ecd38870b7e72ca635a6e6d23cac391686fd2b7e5aac1c6862242dffc5a656922fbd23a6a8cae9f5a19b8778409987b26442739325b05ce005b215d1843278d767de541646d03cb4a3cfe32ecd2c686b8a550e12945b53bd87ae4387bc7876d1d17f3043a536e2319b760100963de494461c3dff0dc546ade451a393f08107cd419d1a075e7ce14cb082dabb30f61e67a9772aa384ee22505f0f54a58637abea7d3aa2263e744d2f99deefc0a6e2c225b0e14f3eae792b74a289920331b5d08aa748a123e3ccd2e7918495de5ad88068f6a2bc49c0bea736aaf68c21991ddb622522c9e6907ccc0716f394fa97da40beb33db9dbea01e2d07c6425853baffdd8ed2dc0d3ef710f518393634d7e312ea87093957de12f667d2c7a73ada38d95583ec1c3b8ba18bb6f592592a690a63a257b2792c8e75b98b46584082f240301facf10ef823003392d908af8386a403810fbb14a0bf56c9c718ea0e2eb8f478974fb9beb74bfc3fb13fa71babce0fa67e57950c2022dc5580b4a0e66740bc2f11dd4866f786bfb8c4b0fa78cf36d0baff865e0051dfbadcc0fc1bb4a4d89544375500bd08c8b219aba4213e081549239847b1b11cf51a72c26654f0d40b42b69178377ee9819b896c36e70304705aa6d1de33b77b6456fdf05de27813089e6bb5089a1ff02c361a8cc0e35454eff7d06033d02b0e66fd1d542115523c25bc49aea964ff93fe12bafabe723c16a6f9e669540e83d2dd64296b59dccdd553659bf15eec6598f32dfddd5f08380f4382e88e4441135abff53f7990c0c38f8a9f103082bd6009d059852f44bbdd2d8fbeebee4fe0822d205534fa1bec74b8e41ad2314f4742201f32202c21875731f87b86e1062270a3620dc3c5d4818618063379c97a29cf76acd17caf996d186a70d8385655048299538c8eb91fd25891125e5d317d6ca064bee38526fdfb4da1769e1bfddda5e1e64e7eeef125895ab9cf9db641b03ab5ec70633e8b79c665fa37e98cfbf23b176fc6d60668b25020420c81d77bebb0d32c63326bc9f88a8d2c226a85e54d7a44583e0f5b1f7cb52dacb769b57834ddf38ef5abd017f20f115daa51dea5bcbd58ea7a90ca042357927032040291dedf20c20eab92a384a23ab282db6c2a5c89b001a4dea0688cc7ca51a120390be070e07c618cb6b0e8c9106c0d2eabfb645e5b1fa9ef878df5861431e78e9c7ac12ceec025304a4d3351204c9bf7045a3b889f20321599f3f4c9c23169d1d10ace235dfb44edc3b9582dacef2269d5d07bf4555eec665dc307daef0aaaa0f7e44764fda59a861e67c1ce55de3515df6cec910c5fbb87aa9e100c290696ef366bb69b5d2de38d2f2d99413428c9761b0dd6bc5bd8c9c5e4f22c5f2ea5b666fa694359339d2e7e9ab6622b205713c7815edaeb01b2e63ff267e4ad2f66c267a2dae50a830d0b58bb0041bbbe43f6da01fd29e6fae8a8676d366ce2e31d9f61e257dd3ba7da8504fd00eb265c02cbd9d5e1c4955b85190c9bf085fdb54350ee9074c57c7add37bf6a614be01bba4871816ddc0c7e47797ee0d7c53b06352957dd546063f1593263e945ff319dba2bcef8f18844fecb244e9ca42a012774b137e86346a021934d30f2f8fb2cd906b45260154ce17d1cf1836654791bbd378f329a588ddcfd26b87296a17fe5077ec9968f47c4ca921dface81395435873af808472eb42eb12b92dbb4cc26683e21811cd13d8d273fbf3aa75204af1f593a5b423f9537a63308a945757d5f44c99e7eeebc506ec5f28729bd38b988babc33b570f8feca7a50c0966c66f063324fa504de647f7fc7f1d18bf94ae0899b758ee0ad1bb238dfd26a4ce6f3e7fdd1dd1b062b5cd493f4aa6eb08c6cb0510c696983a254c09197c1bfb784d5947a1329d7add6d3ddef0ad4b9ec93dee717788dd223feeab64acf9a73f24996d2e7d698b18607fc9a12b94d6ceafc680d9d91a1cfbf2d5fd6d0a9070d77b7f2204665b3a94f1e6245ecf7a1c671ee987fc0c67e7a26ed5e41862c5ddfa9a8344e1d8a88ca653a2efeb6e8fba6153fff8b279317ef0d65115073b38ab74d451cb58b75812231fd6282b7544fe4412ccea896e899a8f352269f60eb2383acfe60ab315c0f7ca43112bb898c051f6f07097d584e4f743f75d304b46b6b8c0e4825f987de99f24995dde490d7da0b47400a77fc8c39e5953b491a1bddf5d55fbb27e322bdc33e04fcbaf26f93b79c3030d920472b7694810195a02dc792d9ed4b43cedb72647c3005002eab924aa8ffaaecba42aa79eb3f4fb0b9e87317df11a79320a2d5bc83ad25fb139d45b843db5f8002b5cbf33812685fd9d5b994d370e8fd5333fa936ca9940f236b2c2e201912a7781dfca80497df9327c167d4d985db50e45fdb81c6eca85a3a4d0574d75e897ff98a23bfb122438f8f62a8422e0aff85febdc54e42bd05569a95717faf06eaea46b6b3e9335a1a60a922d8e79c153324cad570ee4efa53687280de0814071352d9c6ee939eaf3e89a09887b3bd9105a888635fcd190bcebc98ce4688665b8f827a2f0f1992fa90c4921342026de6fb0d31df3aaeba026678d7425a9c2f7cb2bfd7037cf81f814492f299a29b61e2a6ae386510caf4823e520365204ebc962504cb8997a51aed2903cba9fb52e015659a4fed914f7ecaa3cf3080da45a3d95c881dbb17639c31c9d833f270af042acf467dd492e6fa636e3df3ce7f28455fdd984e609c63170ffd55a0bb2debe6a4efa7228b47d455da6bbd83319620c16c63c2675dedaea4c4d65fa50ae7786621f45b67d022d546b91edda149af142d2a720c238f5e940d701cdb27439c7ff666f80b31ab695d3852bc5f4da0c39e588badb3e49153ea153b5894ee9fdebdb1bc3b6270644fb9f9d9dd3c4089932ec8fd9090d01c7a4eda7e1c1f304b59fed6ab77440eefb0324a8f5d127be662264399b5a4a41979e2a10d2905d9c265dd492edc5df03312f89c5094ff1b7f9ec10b68eb230687b5850a6a5643066fd1ad5c05bc1e8caa2289efafca0e93a284069a2120dd96dc2677e5b913beea0e75afa45e0140aadb7e566799ecbb47c6aa0ce03503ef8da94b2668fcf90e6bba60581590a2ac73c1c419941d0f2c013306d6ea9091a9eacc053213a58b24a6f7497632690083653c19715bcabfeafcebc22b54c6a1f71132c45ae7af19f8b25bdd83851527c63f1d23cb3ea18040475372bc99090e70282d536df518e6e421b4749d2334db9212c01219d6be9693e2f313b61b3a3c34ec932300db3c696d9ee8cbc138c8828f4d956abd0ce0d4b7b4a1ca0904c096befac1d9e48c64f0063554cdff3b77bd80791408c7ddf5759c86b7ca79e55d81b624dfc7b1a7dad93497a3325c53101174876654ce91d827ee124df73708eb88364d9cc3b4847f735d21d5a4f1ed962f51bdd18ae17a4b31eb0044aaa52b561ed84326d39ed7ab2bde55ea620cee86e43b549e7440a9a64efd748b081def3a956e350b66de06bd20dbd5fc86e6eb502be1977c1c83fcb774bba5803cec4f8ef11d3f7d9fb5a225a2f3dd6c9ac755230d1fcba418bebe56ec0cc7318422e362ae7626dc803bda3bf720fb753e586188b030fc6f02a94860d66915b7d4360a87f742ef006eb7dead1d3c9dca6c7ad71096a3040e6869bafa190bb64efdf8ecabd4a61eac2a772e29bcfbfa5021c070fccbc769631e123748c43da6f9f3268ae92aa211ccff1e03368a643b65757b3620bff11a7399c08a851719bd2bd1fb5ae4a0e19002b52f4caef8573a6b4ccee2802f9726fece0e44e192ef4384fce88aa23ad46a36b32ceea3510aae6522f4d407b30f0c551f70ee6bab475df4ac6d75d9aaeac309247eab00e9556c45386522ab5922195895568ed0ccb47d5a0320080b2ec1bdbdf3013c10755eca1b30e04b50cf9cf9bed3074e8ee1eaba87787afc58129ac917ca80bbb86557c6288a99b3850f2137ebf51558ea68f854014b29e9f2329bfd01a2154fd3847c605f2d079f0b0b5c7f0871ca819e97192760f5c0407907a7d6c96950"}]}}}}}, 0x12c2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7fff}], 0x0, 0x0) 16:44:58 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x3616991e) ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000080)=0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 367.353702] QAT: Invalid ioctl 16:44:59 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x5, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x1a1903, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000000200)) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) ptrace$peek(0x1, r1, &(0x7f0000000100)) 16:44:59 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0xc01, 0x0) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000000c0)=""/100, &(0x7f0000000200)=0x64) 16:44:59 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x1a1041, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e00, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r1, 0x81e6c000) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x0) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000002c0)=0x0) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000300)=r3) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="e700004933000001250800"/20], 0x14}, 0x1, 0x0, 0x0, 0x4805}, 0x48090) syz_open_dev$ndb(&(0x7f0000000280)='/dev/nbd#\x00', 0x0, 0xa6880) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cachefiles\x00', 0xc0, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000001c0)={0x0, 0x1f}, &(0x7f0000000200)=0x8) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg\x00', 0x20040, 0x0) ioctl$TIOCL_SELLOADLUT(r4, 0x541c, &(0x7f0000000000)={0x5, 0x1c0000000, 0x3, 0x4, 0x9}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 367.451122] print_req_error: I/O error, dev loop3, sector 0 16:44:59 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000040)=[{&(0x7f0000000440)}, {&(0x7f0000000340)="bff79f882e87edf67b371931394ea52a60a07670cb59cadeddb902b4777338d701cd6d6b605e408bcea732e55063862e3f659334aa3fa12d9a11b547b2fa218490b3012fbcde4376576676a1743291185679023fa250f3c3dd795f32875dd044f0b1bb3102d7cb461fdca0569a47248ec0397d917a5b5606cb172be531336226cc6821d4ab14c7e22f1e9ab1d12ea445a1e12e3ba109f2a114372edb214315df9ee88ea5204dcae9fa5dadf960d3b5ec479b1141b1fbf35e0213f82f3bc293d852e2349bb4faa91416e2788074584e6bc5dc8b79e4589f26ee8d63dfc4c1da451d7bf77f6ef07830718c09b1", 0xec}], 0x2, 0x0) close(r3) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f00000002c0)={@empty, @broadcast}, &(0x7f0000000440)=0xc) ioctl$int_in(r3, 0x5452, &(0x7f00000001c0)) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x303}, "6bd2cf9a2508a570", "b39bcd84dea6fe2281106ee7c7789f1c", "e6df2b97", "d6465b4b89361353"}, 0x28) splice(r2, 0x0, r3, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0}) ioctl$VIDIOC_PREPARE_BUF(r3, 0xc058565d, &(0x7f0000000180)={0x0, 0xc, 0x4, 0x20000, 0x0, {r4}, {0x5, 0x2, 0x60, 0x8, 0x0, 0x7f, "18de0416"}, 0x8000, 0x4, @planes=&(0x7f0000000100)={0x58, 0x2, @userptr=0xffffffff, 0x3}, 0x79f0, 0x0, 0xffffffffffffffff}) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r5, 0x800442d2, &(0x7f0000000300)={0x6, &(0x7f0000000200)=[{0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @multicast}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @link_local}]}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}}) inotify_init1(0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) write$tun(r0, &(0x7f0000000680)={@void, @val={0x0, 0x0, 0xc6}, @mpls={[], @ipv6=@icmpv6={0x0, 0x6, "a5c268", 0x1290, 0x3a, 0xff, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc]}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, [{0x5, 0x19, "e5fb000005005357cd99e33bca98e246dc9027eb3334ea443e7fdc4049b892d54090878bee496aa11e07fb0f1db1a0ebe2f95347b0317613063381165c01f08fea1048ea59a6f2273e02707fdd7defc02bde3192360593169594710bddd04aead6c89c87778555de42d23236534ba1a799a63eb4532003a703b249e4628e4706bccc7a264ee85014d99a7fd4565d3c416c835a741eb4e97140e834013724d23450072f0087ac65295ca0d7c601c30de0161560e2d20c5b1052e9b208e25470e9fa884ecd2082ec38b3cb19c083"}, {0x0, 0x1b, "14a142ef59c04e8e7b4db5309006bd98ec79847a52ed68124e8a24d3079fc53b81c039a7d59f992dcb481043f510a0ce1ebb98c07a624ff8c8cc0b4fd3b8e700196d1f5696e184393de669ffaebfbd494a9d6a5fedac0738ffc3dcb3c1b96e48fd063786ae5701f6aa5022621e665607848e20f162630df96d0a773993e97ae6b847e51883d73d66bb30b4375229cfd0c9c41f511bfbf2bca94caa7ce76be257173a4eae2b484117ac32acf6ea1a32def26c919c93055c2f9a640b2d847d527357902538828abd66b3d1a9b85034066154f0b2ec054f6a8712ec98e5"}, {0x0, 0x1f, "8cf0833ae2772f05d302c778833be4f2b9c43c83284b82e71ca1ee382af46513079a2f52da08c93afdfc1a18e4b677b307a1c7df90787cbd143b129bc8dbc39104eb21674d26fd4ced8626df256869e168d42f4d160ad1442cae2bd8fda0fc44a08759d245bfe8eba42ec7967c1e953256a057369159333bca73b498a882fb5e840d429804169a6446c1d1b013144ae0ee276a463ef69ea4c4636751083041811c9b549256c6a3a71e451f8fd4de25629b3de61cba78315412fa14e350bb03feaf63909bd7320561df80bc77f36d4561a5efcc324450355ed398d9e46e798e23e2a4a2c787728b9c549a1894c53dcdfe834c7785fb3c4331"}, {0x0, 0x3, "6598975984c98199c07565e33783bc472344c2fc4e6a32"}, {0x0, 0x1f8, "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"}]}}}}}, 0x12c2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7fff}], 0x0, 0x0) 16:44:59 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x192000, 0x0) write$cgroup_type(r0, &(0x7f0000000200)='threaded\x00', 0x9) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$UI_BEGIN_FF_UPLOAD(r1, 0xc06855c8, &(0x7f0000000080)={0x8, 0xd9d, {0x54, 0x1, 0x12, {0x900, 0x8}, {0x7fff, 0x7ff}, @const={0x100, {0x6, 0x800, 0x80, 0x7}}}, {0x57, 0xffff, 0x4, {0x401, 0x8}, {0x80, 0x30b}, @cond=[{0x54, 0x7, 0x6, 0x8, 0x81, 0x7fff}, {0x6, 0x800, 0xfff9, 0xa0e3, 0x0, 0xda00}]}}) [ 367.556500] print_req_error: I/O error, dev loop2, sector 0 16:44:59 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x4000, 0x0) 16:44:59 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x20000, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xa8, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'team_slave_1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_macvtap\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'macvlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_logind_var_run_t:s0\x00'}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20004040}, 0x4800) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x101202, 0x0) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000500)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICLIST(r4, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'rose0\x00'}]}, 0x4c}}, 0x4) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r6, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r6, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r6, 0x81e6c000) fcntl$F_SET_FILE_RW_HINT(r6, 0x40e, &(0x7f0000000300)=0x4) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x8c, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:tty_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010102}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24000800}, 0x4800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 367.657272] print_req_error: I/O error, dev loop3, sector 0 [ 367.666384] print_req_error: I/O error, dev loop5, sector 0 16:44:59 executing program 3 (fault-call:7 fault-nth:0): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 367.784357] FAULT_INJECTION: forcing a failure. [ 367.784357] name failslab, interval 1, probability 0, space 0, times 0 [ 367.801401] CPU: 0 PID: 20636 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 367.809324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 367.818771] Call Trace: [ 367.821378] dump_stack+0x13e/0x194 [ 367.825012] should_fail.cold+0x10a/0x14b [ 367.829213] should_failslab+0xd6/0x130 [ 367.833198] kmem_cache_alloc_node+0x288/0x7a0 [ 367.837791] ? mark_held_locks+0xa6/0xf0 [ 367.841914] ? ip6_pol_route_lookup+0x9e0/0x9e0 [ 367.846620] ? retint_kernel+0x2d/0x2d [ 367.850527] __alloc_skb+0x9a/0x4c0 [ 367.854159] ? skb_trim+0x160/0x160 [ 367.857783] ? trace_hardirqs_on+0x10/0x10 [ 367.862006] sock_wmalloc+0xa5/0xf0 [ 367.865667] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 367.870690] ? retint_kernel+0x2d/0x2d [ 367.874584] ? ip6_setup_cork+0x12b0/0x12b0 [ 367.878934] ? ip6_setup_cork+0xb8d/0x12b0 [ 367.883190] ? ip6_setup_cork+0xc39/0x12b0 [ 367.887405] ? ip6_setup_cork+0xca6/0x12b0 [ 367.891670] ip6_append_data+0x1c3/0x300 [ 367.895810] ? rawv6_mh_filter_unregister+0x20/0x20 [ 367.900858] ? rawv6_mh_filter_unregister+0x20/0x20 [ 367.905863] rawv6_sendmsg+0x107c/0x2d10 [ 367.909910] ? entry_SYSCALL_64_after_hwframe+0x43/0xb7 [ 367.915263] ? rawv6_bind+0x850/0x850 [ 367.919085] ? __lock_acquire+0x5f7/0x4620 [ 367.923330] ? mark_held_locks+0xa6/0xf0 [ 367.927378] ? retint_kernel+0x2d/0x2d [ 367.931250] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 367.936265] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 367.941091] ? inet_recvmsg+0x4c0/0x4c0 [ 367.945059] ? inet_sendmsg+0x116/0x4d0 [ 367.949013] inet_sendmsg+0x116/0x4d0 [ 367.952801] ? inet_recvmsg+0x4c0/0x4c0 [ 367.956766] sock_sendmsg+0xc5/0x100 [ 367.960483] sock_no_sendpage+0xe5/0x110 [ 367.964539] ? sock_kzfree_s+0x50/0x50 [ 367.968415] ? check_preemption_disabled+0x35/0x240 [ 367.973517] ? kernel_sendpage+0x1e/0xd0 [ 367.977654] ? sock_kzfree_s+0x50/0x50 [ 367.981529] kernel_sendpage+0x82/0xd0 [ 367.985407] sock_sendpage+0x84/0xa0 [ 367.989166] pipe_to_sendpage+0x226/0x2d0 [ 367.993309] ? kernel_sendpage+0xd0/0xd0 [ 367.997377] ? direct_splice_actor+0x160/0x160 [ 368.001957] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.007314] __splice_from_pipe+0x332/0x740 [ 368.011641] ? direct_splice_actor+0x160/0x160 [ 368.016232] ? direct_splice_actor+0x160/0x160 [ 368.020814] splice_from_pipe+0xc6/0x120 [ 368.024884] ? splice_shrink_spd+0xb0/0xb0 [ 368.029125] ? rw_verify_area+0xe1/0x2a0 16:44:59 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f00000003c0)="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", 0xfb, 0x1ff}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000), 0x0, 0x0) getsockopt$ax25_int(r0, 0x101, 0x8, &(0x7f0000000380), &(0x7f0000000600)=0x4) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000040)={&(0x7f0000ffe000/0x2000)=nil, 0xc84, 0x0, 0x23a25546aa71d9ff, &(0x7f0000ff9000/0x4000)=nil, 0x2}) setxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000002c0)='security.ima\x00', &(0x7f0000000200)=@v2={0x5, 0x3, 0x17, 0x80005, 0xad, "ef3690412d087429967993545cc50663c6bceb1ba434a19c8fec74ab53c897f12c4a8671f5d562a6c3dd510b951006ca4de9097738f822339bc026c208751cf1960e477bd507116eaa9539322015128e2342b36a35864a0095bd4e2cb807756f96ef2910f2674b4c2ea8b73565d61b9b469f048142ff9ea83673927064d8f000176191a7095c8d5022e41fe21a1f8a828492e68fd89aa69c64a2e652d549b456a8242ff62245be6845c1dd1b7f"}, 0xb6, 0x2) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)='bpf\x00', 0x180080, &(0x7f00000004c0)=ANY=[@ANYBLOB='mode=00000000000000000000200,mode=00000000000000000000002,mode=00000000000000000000010,mode=00000000000000000000002,mode=00000000000000000000000,subj_user=security.ima\x00,uid=', @ANYRESDEC=r2, @ANYBLOB="2c736d61636b66736465663d6274726673002c66736d61676b633d30786666666666666666382c7375626a5f747970653d6264651bf1e37673797374656d766d6e65743176626f78adc2d5bb6e657431776c616e1b47504c295d7472757374656473656c696e75787d76626f7800000000000000"]) 16:44:59 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x3f}], 0x0, 0x0) [ 368.033189] ? splice_from_pipe+0x120/0x120 [ 368.037509] SyS_splice+0xca0/0x1230 [ 368.041236] ? SyS_write+0x14d/0x210 [ 368.044955] ? compat_SyS_vmsplice+0x250/0x250 [ 368.049539] ? SyS_clock_settime+0x1a0/0x1a0 [ 368.053960] ? do_syscall_64+0x4c/0x640 [ 368.057939] ? compat_SyS_vmsplice+0x250/0x250 [ 368.062528] do_syscall_64+0x1d5/0x640 [ 368.066423] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.071613] RIP: 0033:0x45c829 [ 368.074803] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 16:44:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x34a, 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0]) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000240)={0x0, 0x11d000}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3e7) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = socket$inet6(0xa, 0x3, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0xa0, &(0x7f0000000000)="6546e09a7c0d79bbccc700e5bf54aba0faf87874aee7a3b4acbe63cae3c72259ab8d8a32d525d014dfd261bf16d781f9f2f1200b72f180edf2d4e85deb454c1f298e6628951f57e959d6accfeacba2e6ba2c671071738f0229265c55d9653857e665add35f80cdf77a0c76ad083af477a2e1d35b5c310b635b553d51ab49e00bef7865bb3af14a8c327755ada8a9a70d514e4fe8f8649bf869dc067a844806f0", 0x0, 0x0, 0x0}) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)={0xd, 0x7, 0x2, {{}, 0x7f7}}, 0xd) [ 368.082513] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.089792] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.097062] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.104329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.111601] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:44:59 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0xa0020, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f00000000c0)=0xd000) ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000340)=""/4096) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000080)="3fcc8bb00b7c6096eae8a024e503e96ebe87745f1a981a6eaaef7f4a08687e0644f594c21db28f1fab") 16:44:59 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0xa0000, 0x0) 16:44:59 executing program 3 (fault-call:7 fault-nth:1): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:44:59 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x20000, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xa8, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'team_slave_1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_macvtap\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'macvlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_logind_var_run_t:s0\x00'}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20004040}, 0x4800) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x101202, 0x0) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000500)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICLIST(r4, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'rose0\x00'}]}, 0x4c}}, 0x4) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r6, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r6, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r6, 0x81e6c000) fcntl$F_SET_FILE_RW_HINT(r6, 0x40e, &(0x7f0000000300)=0x4) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x8c, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:tty_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010102}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24000800}, 0x4800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 368.200280] kvm: emulating exchange as write [ 368.210244] print_req_error: I/O error, dev loop4, sector 0 16:44:59 executing program 3 (fault-call:7 fault-nth:2): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:00 executing program 1: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) mq_timedreceive(r0, &(0x7f0000000200)=""/228, 0xe4, 0x3, &(0x7f0000000080)={0x0, 0x3938700}) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000100)={0x3, &(0x7f00000000c0)=[{0xffff, 0x0, 0x4, 0x2}, {0x0, 0x8, 0x1, 0x269e}, {0x3, 0x3, 0x4, 0x4}]}) fanotify_init(0x2, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) 16:45:00 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000080)) [ 368.272891] FAULT_INJECTION: forcing a failure. [ 368.272891] name failslab, interval 1, probability 0, space 0, times 0 16:45:00 executing program 3 (fault-call:7 fault-nth:3): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 368.272938] CPU: 1 PID: 20661 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.272945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.272949] Call Trace: [ 368.272964] dump_stack+0x13e/0x194 16:45:00 executing program 3 (fault-call:7 fault-nth:4): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 368.272988] should_fail.cold+0x10a/0x14b [ 368.273002] should_failslab+0xd6/0x130 [ 368.273012] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 368.273027] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 368.273039] ? __alloc_skb+0x9a/0x4c0 [ 368.273051] __kmalloc_node_track_caller+0x38/0x70 [ 368.273063] __kmalloc_reserve.isra.0+0x35/0xd0 [ 368.273077] __alloc_skb+0xca/0x4c0 [ 368.273089] ? skb_trim+0x160/0x160 [ 368.273100] ? trace_hardirqs_on+0x10/0x10 [ 368.273114] sock_wmalloc+0xa5/0xf0 [ 368.273126] __ip6_append_data.isra.0+0x1fc1/0x2940 16:45:00 executing program 3 (fault-call:7 fault-nth:5): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 368.273152] ? ip6_setup_cork+0x12b0/0x12b0 [ 368.273163] ? ip6_mtu+0x13c/0x410 [ 368.273172] ? ip6_setup_cork+0xca6/0x12b0 [ 368.273183] ip6_append_data+0x1c3/0x300 [ 368.273192] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.273204] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.273217] rawv6_sendmsg+0x107c/0x2d10 16:45:00 executing program 3 (fault-call:7 fault-nth:6): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 368.273236] ? rawv6_bind+0x850/0x850 [ 368.273254] ? __lock_acquire+0x5f7/0x4620 [ 368.273283] ? sock_has_perm+0x1c0/0x230 [ 368.273294] ? selinux_tun_dev_create+0xc0/0xc0 [ 368.273303] ? __lock_acquire+0x5f7/0x4620 [ 368.273327] ? inet_sendmsg+0x116/0x4d0 [ 368.273334] inet_sendmsg+0x116/0x4d0 [ 368.273343] ? inet_recvmsg+0x4c0/0x4c0 [ 368.273353] sock_sendmsg+0xc5/0x100 [ 368.273364] sock_no_sendpage+0xe5/0x110 [ 368.273373] ? sock_kzfree_s+0x50/0x50 [ 368.273397] ? sock_kzfree_s+0x50/0x50 [ 368.273404] kernel_sendpage+0x82/0xd0 [ 368.273416] sock_sendpage+0x84/0xa0 [ 368.273429] pipe_to_sendpage+0x226/0x2d0 [ 368.273436] ? kernel_sendpage+0xd0/0xd0 [ 368.273446] ? direct_splice_actor+0x160/0x160 [ 368.273457] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.273470] __splice_from_pipe+0x332/0x740 [ 368.273484] ? direct_splice_actor+0x160/0x160 [ 368.273495] ? direct_splice_actor+0x160/0x160 [ 368.273505] splice_from_pipe+0xc6/0x120 [ 368.273517] ? splice_shrink_spd+0xb0/0xb0 [ 368.273535] ? rw_verify_area+0xe1/0x2a0 [ 368.273545] ? splice_from_pipe+0x120/0x120 [ 368.273554] SyS_splice+0xca0/0x1230 [ 368.273570] ? SyS_write+0x14d/0x210 [ 368.273581] ? compat_SyS_vmsplice+0x250/0x250 [ 368.273591] ? SyS_clock_settime+0x1a0/0x1a0 [ 368.273602] ? do_syscall_64+0x4c/0x640 [ 368.273611] ? compat_SyS_vmsplice+0x250/0x250 [ 368.273623] do_syscall_64+0x1d5/0x640 [ 368.273639] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.273648] RIP: 0033:0x45c829 [ 368.273653] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.273663] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.273669] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.273674] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.273680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.273686] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 368.358073] print_req_error: I/O error, dev loop5, sector 0 [ 368.405938] FAULT_INJECTION: forcing a failure. [ 368.405938] name failslab, interval 1, probability 0, space 0, times 0 [ 368.405960] CPU: 0 PID: 20679 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.405970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.405974] Call Trace: [ 368.405991] dump_stack+0x13e/0x194 [ 368.406009] should_fail.cold+0x10a/0x14b [ 368.406024] should_failslab+0xd6/0x130 [ 368.406038] kmem_cache_alloc_node+0x288/0x7a0 [ 368.406049] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.406068] __alloc_skb+0x9a/0x4c0 [ 368.406079] ? skb_trim+0x160/0x160 [ 368.406094] sock_wmalloc+0xa5/0xf0 [ 368.406106] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 368.406130] ? ip6_setup_cork+0x12b0/0x12b0 [ 368.406142] ? ip6_mtu+0x13c/0x410 [ 368.406153] ? ip6_setup_cork+0xca6/0x12b0 [ 368.406165] ip6_append_data+0x1c3/0x300 [ 368.406173] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.406184] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.406196] rawv6_sendmsg+0x107c/0x2d10 [ 368.406212] ? rawv6_bind+0x850/0x850 [ 368.406229] ? __lock_acquire+0x5f7/0x4620 [ 368.406247] ? mark_held_locks+0xa6/0xf0 [ 368.406257] ? retint_kernel+0x2d/0x2d [ 368.406268] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.406279] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 368.406296] ? inet_recvmsg+0x4c0/0x4c0 [ 368.406306] ? inet_sendmsg+0x116/0x4d0 [ 368.406314] inet_sendmsg+0x116/0x4d0 [ 368.406323] ? inet_recvmsg+0x4c0/0x4c0 [ 368.406332] sock_sendmsg+0xc5/0x100 [ 368.406342] sock_no_sendpage+0xe5/0x110 [ 368.406350] ? sock_kzfree_s+0x50/0x50 [ 368.406368] ? check_preemption_disabled+0x35/0x240 [ 368.406377] ? retint_kernel+0x2d/0x2d [ 368.406388] ? sock_kzfree_s+0x50/0x50 [ 368.406395] kernel_sendpage+0x82/0xd0 [ 368.406406] sock_sendpage+0x84/0xa0 [ 368.406419] pipe_to_sendpage+0x226/0x2d0 [ 368.406427] ? kernel_sendpage+0xd0/0xd0 [ 368.406436] ? direct_splice_actor+0x160/0x160 [ 368.406447] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.406459] __splice_from_pipe+0x332/0x740 [ 368.406472] ? direct_splice_actor+0x160/0x160 [ 368.406482] ? direct_splice_actor+0x160/0x160 [ 368.406493] splice_from_pipe+0xc6/0x120 [ 368.406503] ? splice_shrink_spd+0xb0/0xb0 [ 368.406519] ? rw_verify_area+0xe1/0x2a0 [ 368.406529] ? splice_from_pipe+0x120/0x120 [ 368.406538] SyS_splice+0xca0/0x1230 [ 368.406554] ? SyS_write+0x14d/0x210 [ 368.406564] ? compat_SyS_vmsplice+0x250/0x250 [ 368.406575] ? do_syscall_64+0x4c/0x640 [ 368.406585] ? compat_SyS_vmsplice+0x250/0x250 [ 368.406596] do_syscall_64+0x1d5/0x640 [ 368.406608] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.406616] RIP: 0033:0x45c829 [ 368.406621] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.406632] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.406638] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.406643] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.406649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.406654] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 368.478952] FAULT_INJECTION: forcing a failure. [ 368.478952] name failslab, interval 1, probability 0, space 0, times 0 [ 368.478980] CPU: 0 PID: 20693 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.478986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.478990] Call Trace: [ 368.479006] dump_stack+0x13e/0x194 [ 368.479025] should_fail.cold+0x10a/0x14b [ 368.479040] should_failslab+0xd6/0x130 [ 368.479051] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 368.479062] ? lock_is_held_type+0x17a/0x210 [ 368.479074] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 368.479086] ? __alloc_skb+0x9a/0x4c0 [ 368.479098] __kmalloc_node_track_caller+0x38/0x70 [ 368.479110] __kmalloc_reserve.isra.0+0x35/0xd0 [ 368.479123] __alloc_skb+0xca/0x4c0 [ 368.479134] ? skb_trim+0x160/0x160 [ 368.479150] sock_wmalloc+0xa5/0xf0 [ 368.479162] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 368.479188] ? ip6_setup_cork+0x12b0/0x12b0 [ 368.479198] ? ip6_mtu+0x13c/0x410 [ 368.479208] ? ip6_setup_cork+0xca6/0x12b0 [ 368.479220] ip6_append_data+0x1c3/0x300 [ 368.479229] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.479241] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.479254] rawv6_sendmsg+0x107c/0x2d10 [ 368.479273] ? rawv6_bind+0x850/0x850 [ 368.479283] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.479294] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 368.479307] ? check_preemption_disabled+0x35/0x240 [ 368.479326] ? sock_has_perm+0x6d/0x230 [ 368.479335] ? sock_has_perm+0xca/0x230 [ 368.479345] ? sock_has_perm+0x1c0/0x230 [ 368.479355] ? selinux_tun_dev_create+0xc0/0xc0 [ 368.479364] ? __lock_acquire+0x5f7/0x4620 [ 368.479389] ? inet_sendmsg+0x116/0x4d0 [ 368.479396] inet_sendmsg+0x116/0x4d0 [ 368.479405] ? inet_recvmsg+0x4c0/0x4c0 [ 368.479413] sock_sendmsg+0xc5/0x100 [ 368.479423] sock_no_sendpage+0xe5/0x110 [ 368.479432] ? sock_kzfree_s+0x50/0x50 [ 368.479456] ? sock_kzfree_s+0x50/0x50 [ 368.479461] kernel_sendpage+0x82/0xd0 [ 368.479471] sock_sendpage+0x84/0xa0 [ 368.479484] pipe_to_sendpage+0x226/0x2d0 [ 368.479490] ? kernel_sendpage+0xd0/0xd0 [ 368.479499] ? direct_splice_actor+0x160/0x160 [ 368.479509] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.479521] __splice_from_pipe+0x332/0x740 [ 368.479534] ? direct_splice_actor+0x160/0x160 [ 368.479543] ? direct_splice_actor+0x160/0x160 [ 368.479552] splice_from_pipe+0xc6/0x120 [ 368.479561] ? splice_shrink_spd+0xb0/0xb0 [ 368.479576] ? rw_verify_area+0xe1/0x2a0 [ 368.479585] ? splice_from_pipe+0x120/0x120 [ 368.479593] SyS_splice+0xca0/0x1230 [ 368.479607] ? retint_kernel+0x2d/0x2d [ 368.479620] ? compat_SyS_vmsplice+0x250/0x250 [ 368.479633] ? do_syscall_64+0x7a/0x640 [ 368.479641] ? compat_SyS_vmsplice+0x250/0x250 [ 368.479653] do_syscall_64+0x1d5/0x640 [ 368.479666] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.479673] RIP: 0033:0x45c829 [ 368.479677] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.479687] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.479691] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.479696] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.479700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.479706] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 368.549481] print_req_error: I/O error, dev loop5, sector 0 [ 368.568531] FAULT_INJECTION: forcing a failure. [ 368.568531] name failslab, interval 1, probability 0, space 0, times 0 [ 368.568560] CPU: 0 PID: 20701 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.568566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.568569] Call Trace: [ 368.568586] dump_stack+0x13e/0x194 [ 368.568603] should_fail.cold+0x10a/0x14b [ 368.568617] should_failslab+0xd6/0x130 [ 368.568632] kmem_cache_alloc_node+0x288/0x7a0 [ 368.568644] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.568656] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 368.568674] __alloc_skb+0x9a/0x4c0 [ 368.568685] ? skb_trim+0x160/0x160 [ 368.568702] sock_wmalloc+0xa5/0xf0 [ 368.568716] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 368.568741] ? ip6_setup_cork+0x12b0/0x12b0 [ 368.568753] ? ip6_mtu+0x13c/0x410 [ 368.568772] ? ip6_setup_cork+0xca6/0x12b0 [ 368.568785] ip6_append_data+0x1c3/0x300 [ 368.568794] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.568807] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.568822] rawv6_sendmsg+0x107c/0x2d10 [ 368.568849] ? trace_hardirqs_on+0x10/0x10 [ 368.568866] ? rawv6_bind+0x850/0x850 [ 368.568875] ? lock_downgrade+0x6e0/0x6e0 [ 368.568886] ? save_trace+0x290/0x290 [ 368.568896] ? save_trace+0x290/0x290 [ 368.568925] ? sock_has_perm+0x1c0/0x230 [ 368.568936] ? selinux_tun_dev_create+0xc0/0xc0 [ 368.568945] ? __lock_acquire+0x5f7/0x4620 [ 368.568970] ? inet_sendmsg+0x116/0x4d0 [ 368.568978] inet_sendmsg+0x116/0x4d0 [ 368.568987] ? inet_recvmsg+0x4c0/0x4c0 [ 368.568997] sock_sendmsg+0xc5/0x100 [ 368.569009] sock_no_sendpage+0xe5/0x110 [ 368.569019] ? sock_kzfree_s+0x50/0x50 [ 368.569031] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.569048] ? retint_kernel+0x2d/0x2d [ 368.569061] ? sock_kzfree_s+0x50/0x50 [ 368.569068] kernel_sendpage+0x82/0xd0 [ 368.569080] sock_sendpage+0x84/0xa0 [ 368.569094] pipe_to_sendpage+0x226/0x2d0 [ 368.569101] ? kernel_sendpage+0xd0/0xd0 [ 368.569111] ? direct_splice_actor+0x160/0x160 [ 368.569122] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.569135] __splice_from_pipe+0x332/0x740 [ 368.569149] ? direct_splice_actor+0x160/0x160 [ 368.569160] ? direct_splice_actor+0x160/0x160 [ 368.569170] splice_from_pipe+0xc6/0x120 [ 368.569181] ? splice_shrink_spd+0xb0/0xb0 [ 368.569189] ? splice_from_pipe+0x120/0x120 [ 368.569207] ? splice_from_pipe+0x120/0x120 [ 368.569217] SyS_splice+0xca0/0x1230 [ 368.569233] ? SyS_write+0x14d/0x210 [ 368.569244] ? compat_SyS_vmsplice+0x250/0x250 [ 368.569255] ? SyS_clock_settime+0x1a0/0x1a0 [ 368.569264] ? do_syscall_64+0x4c/0x640 [ 368.569273] ? compat_SyS_vmsplice+0x250/0x250 [ 368.569284] do_syscall_64+0x1d5/0x640 [ 368.569299] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.569308] RIP: 0033:0x45c829 [ 368.569313] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.569323] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.569328] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.569333] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.569339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.569345] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 368.622290] FAULT_INJECTION: forcing a failure. [ 368.622290] name failslab, interval 1, probability 0, space 0, times 0 [ 368.622319] CPU: 0 PID: 20709 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.622325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.622329] Call Trace: [ 368.622345] dump_stack+0x13e/0x194 [ 368.622363] should_fail.cold+0x10a/0x14b [ 368.622379] should_failslab+0xd6/0x130 [ 368.622391] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 368.622405] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 368.622417] ? __alloc_skb+0x9a/0x4c0 [ 368.622429] __kmalloc_node_track_caller+0x38/0x70 [ 368.622441] __kmalloc_reserve.isra.0+0x35/0xd0 [ 368.622453] __alloc_skb+0xca/0x4c0 [ 368.622464] ? skb_trim+0x160/0x160 [ 368.622478] sock_wmalloc+0xa5/0xf0 [ 368.622491] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 368.622517] ? ip6_setup_cork+0x12b0/0x12b0 [ 368.622528] ? ip6_mtu+0x13c/0x410 [ 368.622538] ? ip6_setup_cork+0xca6/0x12b0 [ 368.622551] ip6_append_data+0x1c3/0x300 [ 368.622561] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.622575] ? rawv6_mh_filter_unregister+0x20/0x20 [ 368.622588] rawv6_sendmsg+0x107c/0x2d10 [ 368.622606] ? rawv6_bind+0x850/0x850 [ 368.622625] ? __lock_acquire+0x5f7/0x4620 [ 368.622638] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 368.622655] ? sock_has_perm+0x1c0/0x230 [ 368.622664] ? selinux_tun_dev_create+0xc0/0xc0 [ 368.622683] ? retint_kernel+0x2d/0x2d [ 368.622697] ? inet_sendmsg+0x116/0x4d0 [ 368.622704] inet_sendmsg+0x116/0x4d0 [ 368.622713] ? inet_recvmsg+0x4c0/0x4c0 [ 368.622723] sock_sendmsg+0xc5/0x100 [ 368.622733] sock_no_sendpage+0xe5/0x110 [ 368.622743] ? sock_kzfree_s+0x50/0x50 [ 368.622775] ? sock_kzfree_s+0x50/0x50 [ 368.622782] kernel_sendpage+0x82/0xd0 [ 368.622795] sock_sendpage+0x84/0xa0 [ 368.622807] pipe_to_sendpage+0x226/0x2d0 [ 368.622814] ? kernel_sendpage+0xd0/0xd0 [ 368.622825] ? direct_splice_actor+0x160/0x160 [ 368.622835] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 368.622848] __splice_from_pipe+0x332/0x740 [ 368.622862] ? direct_splice_actor+0x160/0x160 [ 368.622873] ? direct_splice_actor+0x160/0x160 [ 368.622882] splice_from_pipe+0xc6/0x120 [ 368.622893] ? splice_shrink_spd+0xb0/0xb0 [ 368.622902] ? splice_from_pipe+0x120/0x120 [ 368.622919] ? splice_from_pipe+0x120/0x120 [ 368.622928] SyS_splice+0xca0/0x1230 [ 368.622945] ? SyS_write+0x14d/0x210 [ 368.622955] ? compat_SyS_vmsplice+0x250/0x250 [ 368.622964] ? SyS_clock_settime+0x1a0/0x1a0 [ 368.622974] ? do_syscall_64+0x4c/0x640 [ 368.622982] ? compat_SyS_vmsplice+0x250/0x250 [ 368.622992] do_syscall_64+0x1d5/0x640 [ 368.623007] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.623015] RIP: 0033:0x45c829 [ 368.623020] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.623031] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.623036] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.623042] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.623047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.623053] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 368.675230] FAULT_INJECTION: forcing a failure. [ 368.675230] name failslab, interval 1, probability 0, space 0, times 0 [ 368.675257] CPU: 0 PID: 20713 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 368.675264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 368.675268] Call Trace: [ 368.675284] dump_stack+0x13e/0x194 [ 368.675302] should_fail.cold+0x10a/0x14b [ 368.675318] should_failslab+0xd6/0x130 [ 368.675329] __kmalloc_track_caller+0x69/0x7b0 [ 368.675428] ? ip6_find_1stfragopt+0x260/0x260 [ 368.675439] ? ip6_fragment+0x1d55/0x3150 [ 368.675451] ? lock_downgrade+0x6e0/0x6e0 [ 368.675467] kmemdup+0x23/0x50 [ 368.675479] ip6_fragment+0x1d55/0x3150 [ 368.675498] ? ip6_forward_finish+0x470/0x470 [ 368.675513] ? ip6_forward+0x3040/0x3040 [ 368.675528] ip6_finish_output+0x4fb/0xaf0 [ 368.675542] ip6_output+0x1c9/0x650 [ 368.675552] ? ip6_finish_output+0xaf0/0xaf0 [ 368.675566] ? ip6_fragment+0x3150/0x3150 [ 368.675580] ip6_local_out+0x93/0x170 [ 368.675592] ip6_send_skb+0x9b/0x2f0 [ 368.675605] ip6_push_pending_frames+0xaf/0xd0 [ 368.675615] rawv6_sendmsg+0x227b/0x2d10 [ 368.675632] ? rawv6_bind+0x850/0x850 [ 368.675641] ? mark_lock+0x149/0x10b0 [ 368.675653] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 368.675666] ? check_preemption_disabled+0x35/0x240 [ 368.675686] ? sock_has_perm+0x5a/0x230 [ 368.675696] ? sock_has_perm+0x1c0/0x230 [ 368.675706] ? selinux_tun_dev_create+0xc0/0xc0 [ 368.675715] ? __lock_acquire+0x5f7/0x4620 [ 368.675739] ? inet_sendmsg+0x116/0x4d0 [ 368.675752] inet_sendmsg+0x116/0x4d0 [ 368.675762] ? inet_recvmsg+0x4c0/0x4c0 [ 368.675772] sock_sendmsg+0xc5/0x100 [ 368.675784] sock_no_sendpage+0xe5/0x110 [ 368.675794] ? sock_kzfree_s+0x50/0x50 [ 368.675815] ? retint_kernel+0x2d/0x2d [ 368.675828] ? sock_kzfree_s+0x50/0x50 [ 368.675836] kernel_sendpage+0x82/0xd0 [ 368.675847] sock_sendpage+0x84/0xa0 [ 368.675861] pipe_to_sendpage+0x226/0x2d0 [ 368.675869] ? kernel_sendpage+0xd0/0xd0 [ 368.675879] ? direct_splice_actor+0x160/0x160 [ 368.675889] ? __splice_from_pipe+0x20c/0x740 [ 368.675902] __splice_from_pipe+0x332/0x740 [ 368.675916] ? direct_splice_actor+0x160/0x160 [ 368.675927] ? direct_splice_actor+0x160/0x160 [ 368.675937] splice_from_pipe+0xc6/0x120 [ 368.675948] ? splice_shrink_spd+0xb0/0xb0 [ 368.675964] ? rw_verify_area+0xe1/0x2a0 [ 368.675973] ? splice_from_pipe+0x120/0x120 [ 368.675981] SyS_splice+0xca0/0x1230 [ 368.675995] ? SyS_write+0x14d/0x210 [ 368.676004] ? compat_SyS_vmsplice+0x250/0x250 [ 368.676013] ? SyS_clock_settime+0x1a0/0x1a0 [ 368.676023] ? do_syscall_64+0x4c/0x640 [ 368.676032] ? compat_SyS_vmsplice+0x250/0x250 [ 368.676043] do_syscall_64+0x1d5/0x640 [ 368.676058] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 368.676065] RIP: 0033:0x45c829 16:45:02 executing program 3 (fault-call:7 fault-nth:7): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, &(0x7f0000000200)="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", &(0x7f0000000080)=""/138}, 0x20) 16:45:02 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$TIOCL_BLANKSCREEN(r0, 0x541c, &(0x7f0000000080)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:02 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000080)={0x0, 0xf, "83d76bb9a962d40d183a58f458a82b"}, &(0x7f00000000c0)=0x17) 16:45:02 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_init_net_socket$ax25(0x3, 0x5, 0x1) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x101001, 0x0) sendmsg$NFT_MSG_GETSET(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x90, 0xa, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_SET_DESC={0x24, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xe1}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x1ff}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x28}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x2}]}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x2}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x1f}, @NFTA_SET_DATA_TYPE={0x8}]}, 0x90}, 0x1, 0x0, 0x0, 0x800}, 0x800) 16:45:02 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg\x00', 0x20000, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000400)={&(0x7f0000000280), 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xa8, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'team_slave_1\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_macvtap\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'macvlan0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_logind_var_run_t:s0\x00'}]}, 0xa8}, 0x1, 0x0, 0x0, 0x20004040}, 0x4800) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x101202, 0x0) r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000500)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICLIST(r4, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'rose0\x00'}]}, 0x4c}}, 0x4) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r6, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r6, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r6, 0x81e6c000) fcntl$F_SET_FILE_RW_HINT(r6, 0x40e, &(0x7f0000000300)=0x4) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x8c, r3, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:tty_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3c}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010102}]}, 0x8c}, 0x1, 0x0, 0x0, 0x24000800}, 0x4800) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 368.676070] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 368.676080] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 368.676086] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 368.676091] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 368.676097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 368.676102] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 369.067390] NOHZ: local_softirq_pending 08 [ 370.343857] NOHZ: local_softirq_pending 08 [ 370.518353] FAULT_INJECTION: forcing a failure. [ 370.518353] name failslab, interval 1, probability 0, space 0, times 0 [ 370.532377] CPU: 1 PID: 20738 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 370.540291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 370.540298] Call Trace: [ 370.540317] dump_stack+0x13e/0x194 [ 370.540334] should_fail.cold+0x10a/0x14b [ 370.540349] should_failslab+0xd6/0x130 [ 370.540362] kmem_cache_alloc+0x44/0x770 [ 370.568512] skb_clone+0x11c/0x310 [ 370.572280] ip6_finish_output2+0x15d5/0x2150 [ 370.572292] ? __lock_is_held+0xad/0x140 [ 370.572312] ? ip6_forward_finish+0x470/0x470 [ 370.585855] ? __kmalloc_track_caller+0x366/0x7b0 [ 370.590801] ? ip6_fragment+0x1d55/0x3150 [ 370.590814] ? lock_downgrade+0x6e0/0x6e0 [ 370.590829] ? ip6_fragment+0x2563/0x3150 [ 370.590839] ip6_fragment+0x2563/0x3150 [ 370.607349] ? ip6_forward_finish+0x470/0x470 [ 370.612097] ? ip6_forward+0x3040/0x3040 [ 370.616165] ip6_finish_output+0x4fb/0xaf0 [ 370.616179] ip6_output+0x1c9/0x650 [ 370.616192] ? ip6_finish_output+0xaf0/0xaf0 [ 370.628447] ? ip6_mtu+0x13c/0x410 [ 370.628461] ? ip6_fragment+0x3150/0x3150 [ 370.628477] ip6_local_out+0x93/0x170 [ 370.628487] ip6_send_skb+0x9b/0x2f0 [ 370.628498] ip6_push_pending_frames+0xaf/0xd0 [ 370.628509] rawv6_sendmsg+0x227b/0x2d10 [ 370.648585] ? rawv6_bind+0x850/0x850 [ 370.648610] ? __lock_acquire+0x5f7/0x4620 [ 370.648630] ? sock_has_perm+0x1c0/0x230 [ 370.656474] ? selinux_tun_dev_create+0xc0/0xc0 [ 370.669449] ? __lock_acquire+0x5f7/0x4620 [ 370.669476] ? inet_sendmsg+0x116/0x4d0 [ 370.669484] inet_sendmsg+0x116/0x4d0 [ 370.669493] ? inet_recvmsg+0x4c0/0x4c0 [ 370.669502] sock_sendmsg+0xc5/0x100 [ 370.669514] sock_no_sendpage+0xe5/0x110 [ 370.689352] ? sock_kzfree_s+0x50/0x50 [ 370.689378] ? sock_kzfree_s+0x50/0x50 [ 370.689389] kernel_sendpage+0x82/0xd0 [ 370.705098] sock_sendpage+0x84/0xa0 [ 370.705114] pipe_to_sendpage+0x226/0x2d0 [ 370.705122] ? kernel_sendpage+0xd0/0xd0 [ 370.705131] ? direct_splice_actor+0x160/0x160 [ 370.705143] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 370.727440] __splice_from_pipe+0x332/0x740 [ 370.727454] ? direct_splice_actor+0x160/0x160 [ 370.736377] ? direct_splice_actor+0x160/0x160 [ 370.741135] splice_from_pipe+0xc6/0x120 [ 370.745197] ? splice_shrink_spd+0xb0/0xb0 [ 370.749433] ? rw_verify_area+0xe1/0x2a0 [ 370.753605] ? splice_from_pipe+0x120/0x120 [ 370.757975] SyS_splice+0xca0/0x1230 [ 370.761687] ? SyS_write+0x14d/0x210 [ 370.765396] ? compat_SyS_vmsplice+0x250/0x250 [ 370.769974] ? SyS_clock_settime+0x1a0/0x1a0 [ 370.775246] ? do_syscall_64+0x4c/0x640 [ 370.779212] ? compat_SyS_vmsplice+0x250/0x250 [ 370.783786] do_syscall_64+0x1d5/0x640 [ 370.787698] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 370.792878] RIP: 0033:0x45c829 [ 370.796058] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 370.803759] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 370.811018] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 16:45:02 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a22997481f80000000b10efd9a0000e6ffffffffff00fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 370.818284] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 370.825542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 370.832802] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:02 executing program 3 (fault-call:7 fault-nth:8): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:02 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = socket$inet_sctp(0x2, 0x5, 0x84) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008041}, 0x80) fremovexattr(r1, &(0x7f00000002c0)=@random={'security.', 'btrfs\x00'}) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r4}, 0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={r4, 0x401}, 0x8) signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0x100000000]}, 0x8, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 371.014522] FAULT_INJECTION: forcing a failure. [ 371.014522] name failslab, interval 1, probability 0, space 0, times 0 [ 371.026200] CPU: 1 PID: 20772 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 371.034099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.043464] Call Trace: [ 371.046072] dump_stack+0x13e/0x194 [ 371.049720] should_fail.cold+0x10a/0x14b [ 371.053877] should_failslab+0xd6/0x130 [ 371.057847] kmem_cache_alloc+0x44/0x770 [ 371.061921] skb_clone+0x11c/0x310 [ 371.065471] ip6_finish_output2+0x15d5/0x2150 [ 371.069979] ? __lock_is_held+0xad/0x140 [ 371.074172] ? ip6_forward_finish+0x470/0x470 [ 371.078701] ? __kmalloc_track_caller+0x366/0x7b0 [ 371.083712] ? netif_rx_ni+0x310/0x310 [ 371.087619] ? ip6_fragment+0x2563/0x3150 [ 371.091779] ip6_fragment+0x2563/0x3150 [ 371.095774] ? ip6_forward_finish+0x470/0x470 [ 371.100279] ? ip6_forward+0x3040/0x3040 [ 371.104337] ip6_finish_output+0x4fb/0xaf0 [ 371.108569] ip6_output+0x1c9/0x650 [ 371.112187] ? ip6_finish_output+0xaf0/0xaf0 [ 371.116589] ? ip6_mtu+0x13c/0x410 [ 371.120255] ? ip6_fragment+0x3150/0x3150 [ 371.124410] ip6_local_out+0x93/0x170 [ 371.128214] ip6_send_skb+0x9b/0x2f0 [ 371.131925] ip6_push_pending_frames+0xaf/0xd0 [ 371.136654] rawv6_sendmsg+0x227b/0x2d10 [ 371.140711] ? rawv6_bind+0x850/0x850 [ 371.144512] ? __lock_acquire+0x5f7/0x4620 [ 371.148747] ? sock_has_perm+0x1c0/0x230 [ 371.152802] ? selinux_tun_dev_create+0xc0/0xc0 [ 371.157467] ? __lock_acquire+0x5f7/0x4620 [ 371.161705] ? inet_sendmsg+0x116/0x4d0 [ 371.165675] inet_sendmsg+0x116/0x4d0 [ 371.169615] ? inet_recvmsg+0x4c0/0x4c0 [ 371.173585] sock_sendmsg+0xc5/0x100 [ 371.177304] sock_no_sendpage+0xe5/0x110 [ 371.181365] ? sock_kzfree_s+0x50/0x50 [ 371.185269] ? sock_kzfree_s+0x50/0x50 [ 371.189225] kernel_sendpage+0x82/0xd0 [ 371.193117] sock_sendpage+0x84/0xa0 [ 371.196839] pipe_to_sendpage+0x226/0x2d0 [ 371.201028] ? kernel_sendpage+0xd0/0xd0 [ 371.205198] ? direct_splice_actor+0x160/0x160 [ 371.209773] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 371.215131] __splice_from_pipe+0x332/0x740 [ 371.219462] ? direct_splice_actor+0x160/0x160 [ 371.224089] ? direct_splice_actor+0x160/0x160 [ 371.228682] splice_from_pipe+0xc6/0x120 [ 371.232746] ? splice_shrink_spd+0xb0/0xb0 [ 371.236988] ? rw_verify_area+0xe1/0x2a0 [ 371.241048] ? splice_from_pipe+0x120/0x120 [ 371.245363] SyS_splice+0xca0/0x1230 [ 371.249160] ? SyS_write+0x14d/0x210 [ 371.252876] ? compat_SyS_vmsplice+0x250/0x250 [ 371.257483] ? SyS_clock_settime+0x1a0/0x1a0 [ 371.261895] ? do_syscall_64+0x4c/0x640 [ 371.265874] ? compat_SyS_vmsplice+0x250/0x250 [ 371.270570] do_syscall_64+0x1d5/0x640 [ 371.274475] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 371.279659] RIP: 0033:0x45c829 [ 371.283114] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 371.290822] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 371.298156] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 371.305682] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 16:45:02 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file1\x00', 0x40000000069, 0x0, &(0x7f0000000040), 0x30002, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001240)={&(0x7f0000000080)="d7e8fb50a9c22714d9fead3287117efe6a3aefa5d37930b0f423dc7dbdd7884059a0711f55e9a95265f73ebc9fe017c7fa8556c036cc39e58bc2af09a5effe6dd802bf03b0833eadbd0f20db68d988aa8503b69934178c91a237e816c3de8ba765d825603386be1df42b0a25e830b0483461391d2b91eb5767105bbbf164ab7ab4faca8e31f22b41f1c963aaddba2b3379a140900f940149b4d82dc4361f30", &(0x7f0000000140)=""/189, &(0x7f0000000200)="bb17b69d5400edf71a82b408155e4ebdf767cf6f9cdb9bc9bf", &(0x7f0000000240)="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", 0x0, r0}, 0x38) 16:45:02 executing program 3 (fault-call:7 fault-nth:9): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 371.313082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 371.320357] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x34a, 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0]) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000240)={0x0, 0x11d000}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3e7) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = socket$inet6(0xa, 0x3, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0xa0, &(0x7f0000000000)="6546e09a7c0d79bbccc700e5bf54aba0faf87874aee7a3b4acbe63cae3c72259ab8d8a32d525d014dfd261bf16d781f9f2f1200b72f180edf2d4e85deb454c1f298e6628951f57e959d6accfeacba2e6ba2c671071738f0229265c55d9653857e665add35f80cdf77a0c76ad083af477a2e1d35b5c310b635b553d51ab49e00bef7865bb3af14a8c327755ada8a9a70d514e4fe8f8649bf869dc067a844806f0", 0x0, 0x0, 0x0}) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)={0xd, 0x7, 0x2, {{}, 0x7f7}}, 0xd) 16:45:03 executing program 5: getxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='security.apparmor\x00', &(0x7f0000000100)=""/14, 0xe) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 371.506772] FAULT_INJECTION: forcing a failure. [ 371.506772] name failslab, interval 1, probability 0, space 0, times 0 [ 371.523955] print_req_error: I/O error, dev loop2, sector 0 [ 371.537638] CPU: 0 PID: 20788 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 371.545553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 371.555006] Call Trace: [ 371.557617] dump_stack+0x13e/0x194 [ 371.561268] should_fail.cold+0x10a/0x14b [ 371.565434] should_failslab+0xd6/0x130 [ 371.569503] kmem_cache_alloc+0x44/0x770 [ 371.573871] skb_clone+0x11c/0x310 [ 371.577630] ip6_finish_output2+0x15d5/0x2150 [ 371.582129] ? ip6_forward_finish+0x470/0x470 [ 371.586795] ? netif_rx_ni+0x310/0x310 [ 371.590687] ? check_memory_region+0x108/0x180 [ 371.595359] ? ip6_fragment+0x2563/0x3150 [ 371.599529] ip6_fragment+0x2563/0x3150 [ 371.603598] ? ip6_forward_finish+0x470/0x470 [ 371.608095] ? ip6_forward+0x3040/0x3040 [ 371.612189] ip6_finish_output+0x4fb/0xaf0 [ 371.616474] ip6_output+0x1c9/0x650 [ 371.620102] ? ip6_finish_output+0xaf0/0xaf0 [ 371.624509] ? ip6_fragment+0x3150/0x3150 [ 371.628656] ip6_local_out+0x93/0x170 [ 371.632496] ip6_send_skb+0x9b/0x2f0 [ 371.636212] ip6_push_pending_frames+0xaf/0xd0 [ 371.640792] rawv6_sendmsg+0x227b/0x2d10 [ 371.645048] ? rawv6_bind+0x850/0x850 [ 371.648850] ? __lock_acquire+0x5f7/0x4620 [ 371.653171] ? mark_held_locks+0xa6/0xf0 [ 371.657226] ? retint_kernel+0x2d/0x2d [ 371.661174] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 371.666307] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 371.671076] ? inet_recvmsg+0x4c0/0x4c0 [ 371.675056] ? inet_sendmsg+0x116/0x4d0 [ 371.679149] inet_sendmsg+0x116/0x4d0 [ 371.682983] ? inet_recvmsg+0x4c0/0x4c0 [ 371.686952] sock_sendmsg+0xc5/0x100 [ 371.690660] sock_no_sendpage+0xe5/0x110 [ 371.694776] ? sock_kzfree_s+0x50/0x50 [ 371.698662] ? retint_kernel+0x2d/0x2d [ 371.702546] ? sock_kzfree_s+0x50/0x50 [ 371.706427] kernel_sendpage+0x82/0xd0 [ 371.710313] sock_sendpage+0x84/0xa0 [ 371.714021] pipe_to_sendpage+0x226/0x2d0 [ 371.718159] ? kernel_sendpage+0xd0/0xd0 [ 371.722216] ? direct_splice_actor+0x160/0x160 [ 371.726793] ? __splice_from_pipe+0x20c/0x740 [ 371.731285] __splice_from_pipe+0x332/0x740 [ 371.735603] ? direct_splice_actor+0x160/0x160 [ 371.740179] ? direct_splice_actor+0x160/0x160 [ 371.744757] splice_from_pipe+0xc6/0x120 [ 371.748995] ? splice_shrink_spd+0xb0/0xb0 [ 371.753442] ? rw_verify_area+0xe1/0x2a0 [ 371.757497] ? splice_from_pipe+0x120/0x120 [ 371.761815] SyS_splice+0xca0/0x1230 [ 371.765540] ? compat_SyS_vmsplice+0x250/0x250 [ 371.770119] ? compat_SyS_vmsplice+0x250/0x250 [ 371.774717] ? compat_SyS_vmsplice+0x250/0x250 [ 371.779307] do_syscall_64+0x1d5/0x640 [ 371.783197] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 371.788389] RIP: 0033:0x45c829 [ 371.791578] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 371.799385] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 16:45:03 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = shmget(0x0, 0x3000, 0x40, &(0x7f0000ffb000/0x3000)=nil) epoll_create(0x3) shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000200)=""/4096) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f0000000100)={0x3, 0x6, [{0x9, 0x0, 0xfffffffffffffffc}, {0x5, 0x0, 0x4532}, {0x3f, 0x0, 0x100000001}]}) 16:45:03 executing program 2: openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x2801, 0x0) [ 371.806651] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 371.813915] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 371.821181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 371.828444] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:03 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x200, 0x80) 16:45:03 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x82818, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:03 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000280), &(0x7f00000002c0)=0x2) r1 = request_key(&(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='%wlan0\xb7\x00', 0xfffffffffffffff8) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='id_legacy\x00', &(0x7f0000000240)=@secondary='builtin_and_secondary_trusted\x00') pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, &(0x7f0000000340)={{0x0, 0x1, 0x0, 0x3, 0x2}, 0x7ff, 0x3ff, 'id1\x00', 'timer1\x00', 0x0, 0x80000001, 0xfffffffffffffffc, 0x0, 0x8e64d1}) 16:45:03 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = eventfd(0x1) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) openat$cgroup(r2, &(0x7f00000002c0)='syz1\x00', 0x200002, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000100)=r1) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r0, &(0x7f0000000080)="0faea17b0c0387", &(0x7f0000000200)=""/187}, 0x20) 16:45:03 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) recvfrom$ax25(r0, &(0x7f0000000080)=""/132, 0x84, 0xa0, &(0x7f0000000200)={{0x3, @bcast, 0x6}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:03 executing program 5: r0 = socket$tipc(0x1e, 0x2, 0x0) r1 = socket(0x11, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r5, @ANYBLOB="00000000ffffffff000000000d00010066715f636f64656c00000000140002000800010000000000916a477600000000"], 0x48}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg2\x00', r5}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:03 executing program 3 (fault-call:7 fault-nth:10): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x34a, 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0]) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000240)={0x0, 0x11d000}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3e7) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = socket$inet6(0xa, 0x3, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0xa0, &(0x7f0000000000)="6546e09a7c0d79bbccc700e5bf54aba0faf87874aee7a3b4acbe63cae3c72259ab8d8a32d525d014dfd261bf16d781f9f2f1200b72f180edf2d4e85deb454c1f298e6628951f57e959d6accfeacba2e6ba2c671071738f0229265c55d9653857e665add35f80cdf77a0c76ad083af477a2e1d35b5c310b635b553d51ab49e00bef7865bb3af14a8c327755ada8a9a70d514e4fe8f8649bf869dc067a844806f0", 0x0, 0x0, 0x0}) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)={0xd, 0x7, 0x2, {{}, 0x7f7}}, 0xd) [ 372.362485] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 372.372374] print_req_error: I/O error, dev loop2, sector 0 [ 372.392233] FAULT_INJECTION: forcing a failure. [ 372.392233] name failslab, interval 1, probability 0, space 0, times 0 [ 372.418483] CPU: 0 PID: 20859 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 372.426402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.435770] Call Trace: [ 372.438384] dump_stack+0x13e/0x194 [ 372.442035] should_fail.cold+0x10a/0x14b [ 372.446208] should_failslab+0xd6/0x130 [ 372.450201] kmem_cache_alloc_node+0x288/0x7a0 [ 372.454807] ? check_preemption_disabled+0x35/0x240 [ 372.459837] ? retint_kernel+0x2d/0x2d [ 372.463773] __alloc_skb+0x9a/0x4c0 [ 372.467414] ? skb_trim+0x160/0x160 [ 372.471062] sock_wmalloc+0xa5/0xf0 [ 372.474705] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 372.480062] ? check_preemption_disabled+0x35/0x240 [ 372.480081] ? ip6_setup_cork+0x12b0/0x12b0 [ 372.480148] ? __sanitizer_cov_trace_pc+0x23/0x50 [ 372.480159] ? ip6_setup_cork+0xca6/0x12b0 [ 372.498580] ip6_append_data+0x1c3/0x300 [ 372.502654] ? rawv6_mh_filter_unregister+0x20/0x20 [ 372.507685] ? rawv6_mh_filter_unregister+0x20/0x20 [ 372.512721] rawv6_sendmsg+0x107c/0x2d10 [ 372.516805] ? rawv6_bind+0x850/0x850 [ 372.520627] ? __lock_acquire+0x5f7/0x4620 [ 372.525006] ? mark_held_locks+0xa6/0xf0 [ 372.529079] ? retint_kernel+0x2d/0x2d [ 372.532975] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 372.538003] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 372.542767] ? sock_has_perm+0x1c0/0x230 [ 372.546928] ? selinux_tun_dev_create+0xc0/0xc0 [ 372.551871] ? check_preemption_disabled+0x35/0x240 [ 372.556912] ? inet_sendmsg+0x116/0x4d0 [ 372.561071] inet_sendmsg+0x116/0x4d0 [ 372.564883] ? inet_recvmsg+0x4c0/0x4c0 [ 372.568869] sock_sendmsg+0xc5/0x100 [ 372.572594] sock_no_sendpage+0xe5/0x110 [ 372.576661] ? sock_kzfree_s+0x50/0x50 [ 372.580694] ? retint_kernel+0x2d/0x2d [ 372.584595] ? sock_kzfree_s+0x50/0x50 [ 372.588484] kernel_sendpage+0x82/0xd0 [ 372.592378] sock_sendpage+0x84/0xa0 [ 372.596099] pipe_to_sendpage+0x226/0x2d0 [ 372.600290] ? kernel_sendpage+0xd0/0xd0 [ 372.604357] ? direct_splice_actor+0x160/0x160 [ 372.608941] ? __splice_from_pipe+0x322/0x740 [ 372.613589] __splice_from_pipe+0x332/0x740 [ 372.618058] ? direct_splice_actor+0x160/0x160 [ 372.622732] ? direct_splice_actor+0x160/0x160 [ 372.627324] splice_from_pipe+0xc6/0x120 [ 372.631395] ? splice_shrink_spd+0xb0/0xb0 [ 372.635643] ? rw_verify_area+0xe1/0x2a0 [ 372.639715] ? splice_from_pipe+0x120/0x120 [ 372.644044] SyS_splice+0xca0/0x1230 [ 372.647772] ? SyS_write+0x14d/0x210 [ 372.651492] ? compat_SyS_vmsplice+0x250/0x250 [ 372.656083] ? SyS_clock_settime+0x1a0/0x1a0 [ 372.660510] ? do_syscall_64+0x4c/0x640 [ 372.664493] ? compat_SyS_vmsplice+0x250/0x250 [ 372.669082] do_syscall_64+0x1d5/0x640 [ 372.673145] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 372.678349] RIP: 0033:0x45c829 [ 372.681542] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 372.689263] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 372.696537] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 372.704044] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 372.711325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 372.718607] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:04 executing program 3 (fault-call:7 fault-nth:11): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x34a, 0x0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB, @ANYRESDEC=0x0]) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000240)={0x0, 0x11d000}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x3e7) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = socket$inet6(0xa, 0x3, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0xa0, &(0x7f0000000000)="6546e09a7c0d79bbccc700e5bf54aba0faf87874aee7a3b4acbe63cae3c72259ab8d8a32d525d014dfd261bf16d781f9f2f1200b72f180edf2d4e85deb454c1f298e6628951f57e959d6accfeacba2e6ba2c671071738f0229265c55d9653857e665add35f80cdf77a0c76ad083af477a2e1d35b5c310b635b553d51ab49e00bef7865bb3af14a8c327755ada8a9a70d514e4fe8f8649bf869dc067a844806f0", 0x0, 0x0, 0x0}) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)={0xd, 0x7, 0x2, {{}, 0x7f7}}, 0xd) [ 372.865709] FAULT_INJECTION: forcing a failure. [ 372.865709] name failslab, interval 1, probability 0, space 0, times 0 [ 372.917388] CPU: 0 PID: 20883 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 372.925478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 372.934842] Call Trace: [ 372.937446] dump_stack+0x13e/0x194 [ 372.941098] should_fail.cold+0x10a/0x14b [ 372.945430] should_failslab+0xd6/0x130 [ 372.949417] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 372.954540] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 372.960097] ? __alloc_skb+0x9a/0x4c0 [ 372.964079] __kmalloc_node_track_caller+0x38/0x70 [ 372.969025] __kmalloc_reserve.isra.0+0x35/0xd0 [ 372.973713] __alloc_skb+0xca/0x4c0 [ 372.977359] ? skb_trim+0x160/0x160 [ 372.981094] ? mark_held_locks+0xa6/0xf0 [ 372.985328] sock_wmalloc+0xa5/0xf0 [ 372.988970] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 372.994017] ? ip6_setup_cork+0x12b0/0x12b0 [ 372.998357] ? ip6_mtu+0x13c/0x410 [ 373.001914] ? ip6_setup_cork+0xca6/0x12b0 [ 373.006175] ip6_append_data+0x1c3/0x300 [ 373.006187] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.006200] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.006211] rawv6_sendmsg+0x107c/0x2d10 [ 373.006228] ? rawv6_bind+0x850/0x850 [ 373.028307] ? __lock_acquire+0x5f7/0x4620 [ 373.032733] ? sock_has_perm+0x1c0/0x230 [ 373.036809] ? selinux_tun_dev_create+0xc0/0xc0 [ 373.041491] ? __lock_acquire+0x5f7/0x4620 [ 373.045806] ? inet_sendmsg+0x116/0x4d0 [ 373.049906] inet_sendmsg+0x116/0x4d0 [ 373.053718] ? inet_recvmsg+0x4c0/0x4c0 [ 373.057709] sock_sendmsg+0xc5/0x100 [ 373.061438] sock_no_sendpage+0xe5/0x110 [ 373.065675] ? sock_kzfree_s+0x50/0x50 [ 373.069573] ? retint_kernel+0x2d/0x2d [ 373.073483] ? sock_no_sendpage+0x1b/0x110 [ 373.078067] ? sock_kzfree_s+0x50/0x50 [ 373.081963] kernel_sendpage+0x82/0xd0 [ 373.085887] sock_sendpage+0x84/0xa0 [ 373.089616] pipe_to_sendpage+0x226/0x2d0 [ 373.093789] ? kernel_sendpage+0xd0/0xd0 [ 373.098005] ? direct_splice_actor+0x160/0x160 [ 373.102613] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 373.107992] __splice_from_pipe+0x332/0x740 [ 373.112418] ? direct_splice_actor+0x160/0x160 16:45:04 executing program 1: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0xbd) write(r1, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write$P9_RLERROR(r0, &(0x7f00000003c0)={0xa, 0x7, 0x1, {0x1, '}'}}, 0xa) setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000380)={@empty, @remote, @empty}, 0xc) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r1, r2, 0xa}, 0x10) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cachefiles\x00', 0x300, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) clone(0x8000000, &(0x7f0000000400)="77b5253fc552f1574fd54776681698aaa76eb3a3d87200a63272d6648b7b62452e521f4cf1884f82905e1edcfc5afc91ab0f4e8b318c5e2fea37f498d8a0c34d34342be3532d510077c62fc178d4d66dde4127fb2374a6071180b7e9f9aa2d33228aed2efad96e5daddc78fcd00c9eb0cca01a91b96d89501896df5ff96e14de028f786b1bfe767d5570c40d35166dfbd9c9f396e93f2a52641c4356cc9d02b68ce20e4d00a34c408bfa424700c8b50efe6f21e575f9d6b1ab9fb2f0f170be7fe5d440595aa0a52930c4f8", &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="56476e25d2b77629f814b3d7a4ede544a1b11f") syz_genetlink_get_family_id$gtp(&(0x7f0000000100)='gtp\x00') sendmsg$GTP_CMD_NEWPDP(r4, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @private=0xa050100}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010) r5 = getuid() ioctl$SIOCAX25DELUID(r3, 0x89e2, &(0x7f0000000280)={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, r5}) 16:45:04 executing program 0: r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0x10}, 0x10) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0406618, &(0x7f0000000100)={{0x0, 0x0, @identifier="2d85aae8807d7b962e3faebcaaeb1566"}}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r3, 0xc0406619, &(0x7f0000000480)={{0x1, 0x0, @descriptor="0b8609eec6a244f3"}}) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000280)=0x4, 0x4) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000340)={0x80000000, 0x9, 0x1, 'queue0\x00', 0x1bc64e6}) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f00000002c0)=0x5, 0x4) ioctl$VIDIOC_SUBDEV_S_EDID(r1, 0xc0285629, &(0x7f0000000240)={0x0, 0x24, 0x3, [], &(0x7f0000000200)=0x6c}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) ioctl$SIOCAX25GETINFOOLD(0xffffffffffffffff, 0x89e9, &(0x7f0000000440)) 16:45:04 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0031821b46fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x20004, 0x0) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x40100, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETPROPERTY(r1, 0xc04064aa, &(0x7f00000002c0)={&(0x7f0000000100)=[0x0], &(0x7f0000000200)=[{}, {}, {}, {}], 0x101, 0x0, [], 0x1, 0x4}) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f00000000c0)) [ 373.117189] ? direct_splice_actor+0x160/0x160 [ 373.121784] splice_from_pipe+0xc6/0x120 [ 373.125860] ? splice_shrink_spd+0xb0/0xb0 [ 373.130125] ? rw_verify_area+0xe1/0x2a0 [ 373.134199] ? splice_from_pipe+0x120/0x120 [ 373.138561] SyS_splice+0xca0/0x1230 [ 373.142294] ? SyS_write+0x14d/0x210 [ 373.146019] ? compat_SyS_vmsplice+0x250/0x250 [ 373.150800] ? SyS_clock_settime+0x1a0/0x1a0 [ 373.156278] ? do_syscall_64+0x4c/0x640 [ 373.160264] ? compat_SyS_vmsplice+0x250/0x250 [ 373.164873] do_syscall_64+0x1d5/0x640 [ 373.168777] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 373.173973] RIP: 0033:0x45c829 [ 373.177172] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 373.185016] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 373.192410] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 373.199717] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 373.206996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 16:45:04 executing program 3 (fault-call:7 fault-nth:12): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 373.214280] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:04 executing program 5: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_getattr(r0, &(0x7f0000000080)={0x38}, 0x38, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 373.336218] print_req_error: I/O error, dev loop4, sector 0 [ 373.338573] FAULT_INJECTION: forcing a failure. [ 373.338573] name failslab, interval 1, probability 0, space 0, times 0 [ 373.358813] CPU: 0 PID: 20924 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 373.366726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.376154] Call Trace: [ 373.378995] dump_stack+0x13e/0x194 [ 373.382654] should_fail.cold+0x10a/0x14b [ 373.386807] should_failslab+0xd6/0x130 [ 373.390790] kmem_cache_alloc_node+0x288/0x7a0 [ 373.395387] ? check_preemption_disabled+0x35/0x240 [ 373.400406] __alloc_skb+0x9a/0x4c0 [ 373.404031] ? skb_trim+0x160/0x160 [ 373.407653] sock_wmalloc+0xa5/0xf0 [ 373.411281] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 373.416302] ? ip6_setup_cork+0x12b0/0x12b0 [ 373.420623] ? ip6_mtu+0x13c/0x410 [ 373.424163] ? ip6_setup_cork+0xca6/0x12b0 [ 373.428392] ip6_append_data+0x1c3/0x300 [ 373.432449] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.437460] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.442470] rawv6_sendmsg+0x107c/0x2d10 [ 373.446535] ? rawv6_bind+0x850/0x850 [ 373.450389] ? __lock_acquire+0x5f7/0x4620 [ 373.454622] ? mark_held_locks+0xa6/0xf0 [ 373.458675] ? retint_kernel+0x2d/0x2d [ 373.462577] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 373.467597] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 373.472347] ? sock_has_perm+0x1c0/0x230 [ 373.476404] ? selinux_tun_dev_create+0xc0/0xc0 [ 373.481078] ? check_preemption_disabled+0x35/0x240 [ 373.486101] ? inet_sendmsg+0x116/0x4d0 [ 373.490069] inet_sendmsg+0x116/0x4d0 [ 373.493870] ? inet_recvmsg+0x4c0/0x4c0 [ 373.497834] sock_sendmsg+0xc5/0x100 [ 373.501548] sock_no_sendpage+0xe5/0x110 [ 373.505652] ? sock_kzfree_s+0x50/0x50 [ 373.509542] ? retint_kernel+0x2d/0x2d [ 373.513421] ? sock_kzfree_s+0x50/0x50 [ 373.517341] kernel_sendpage+0x82/0xd0 [ 373.521221] sock_sendpage+0x84/0xa0 [ 373.524935] pipe_to_sendpage+0x226/0x2d0 [ 373.529074] ? kernel_sendpage+0xd0/0xd0 [ 373.533143] ? direct_splice_actor+0x160/0x160 [ 373.537812] __splice_from_pipe+0x332/0x740 [ 373.542129] ? direct_splice_actor+0x160/0x160 [ 373.546709] ? direct_splice_actor+0x160/0x160 [ 373.551316] splice_from_pipe+0xc6/0x120 [ 373.555371] ? splice_shrink_spd+0xb0/0xb0 [ 373.559640] ? rw_verify_area+0xe1/0x2a0 [ 373.563696] ? splice_from_pipe+0x120/0x120 [ 373.568040] SyS_splice+0xca0/0x1230 [ 373.571812] ? SyS_write+0x14d/0x210 [ 373.575534] ? compat_SyS_vmsplice+0x250/0x250 [ 373.580142] ? SyS_clock_settime+0x1a0/0x1a0 [ 373.584542] ? do_syscall_64+0x4c/0x640 [ 373.588513] ? compat_SyS_vmsplice+0x250/0x250 [ 373.593089] do_syscall_64+0x1d5/0x640 [ 373.596983] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 373.602165] RIP: 0033:0x45c829 [ 373.605393] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 373.613107] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 373.620502] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 373.627911] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 373.635193] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 373.642472] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:05 executing program 3 (fault-call:7 fault-nth:13): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:05 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) statfs(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)=""/188) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4d372cc9d5a3745f}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x108, 0x9, 0x6, 0x0, 0x0, 0x0, {0xa, 0x0, 0x3}, [@IPSET_ATTR_DATA={0x50, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_IFACE={0x14, 0x17, 'macvlan1\x00'}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x8}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x8}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}]}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}]}, @IPSET_ATTR_DATA={0x4c, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0xe8}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x13}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x8}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x1}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x100000001}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}]}, @IPSET_ATTR_ADT={0x3c, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xe5}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz2\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5, 0x7, 0x89}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x9}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x108}}, 0x20000080) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000002c0)=0x1, 0x4) [ 373.766307] FAULT_INJECTION: forcing a failure. [ 373.766307] name failslab, interval 1, probability 0, space 0, times 0 [ 373.787837] CPU: 0 PID: 20940 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 373.795769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 373.805269] Call Trace: [ 373.807884] dump_stack+0x13e/0x194 [ 373.811545] should_fail.cold+0x10a/0x14b [ 373.815809] should_failslab+0xd6/0x130 [ 373.819891] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 373.825173] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 373.830933] ? __alloc_skb+0x9a/0x4c0 [ 373.834935] __kmalloc_node_track_caller+0x38/0x70 [ 373.840072] __kmalloc_reserve.isra.0+0x35/0xd0 [ 373.844774] __alloc_skb+0xca/0x4c0 [ 373.848432] ? skb_trim+0x160/0x160 [ 373.852087] sock_wmalloc+0xa5/0xf0 [ 373.855867] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 373.860924] ? ip6_setup_cork+0x12b0/0x12b0 [ 373.865356] ? ip6_mtu+0x13c/0x410 [ 373.869208] ? ip6_setup_cork+0xca6/0x12b0 [ 373.873468] ip6_append_data+0x1c3/0x300 [ 373.877558] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.882712] ? rawv6_mh_filter_unregister+0x20/0x20 [ 373.887744] rawv6_sendmsg+0x107c/0x2d10 [ 373.891814] ? rawv6_bind+0x850/0x850 [ 373.895775] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 373.900790] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 373.905547] ? check_preemption_disabled+0x35/0x240 [ 373.910729] ? sock_has_perm+0x6d/0x230 [ 373.914703] ? sock_has_perm+0x1bb/0x230 [ 373.918760] ? sock_has_perm+0x1c0/0x230 [ 373.922818] ? selinux_tun_dev_create+0xc0/0xc0 [ 373.927655] ? inet_sendmsg+0x116/0x4d0 [ 373.931628] inet_sendmsg+0x116/0x4d0 [ 373.935434] ? inet_recvmsg+0x4c0/0x4c0 [ 373.939413] sock_sendmsg+0xc5/0x100 [ 373.943124] sock_no_sendpage+0xe5/0x110 [ 373.947177] ? sock_kzfree_s+0x50/0x50 [ 373.951066] ? retint_kernel+0x2d/0x2d [ 373.954981] ? sock_kzfree_s+0x50/0x50 [ 373.958946] kernel_sendpage+0x82/0xd0 [ 373.962828] sock_sendpage+0x84/0xa0 [ 373.966580] pipe_to_sendpage+0x226/0x2d0 [ 373.970754] ? kernel_sendpage+0xd0/0xd0 [ 373.974808] ? direct_splice_actor+0x160/0x160 [ 373.979385] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 373.984745] __splice_from_pipe+0x332/0x740 [ 373.989109] ? direct_splice_actor+0x160/0x160 [ 373.993686] ? direct_splice_actor+0x160/0x160 [ 373.998273] splice_from_pipe+0xc6/0x120 [ 374.002379] ? splice_shrink_spd+0xb0/0xb0 [ 374.006659] ? rw_verify_area+0xe1/0x2a0 [ 374.010711] ? splice_from_pipe+0x120/0x120 [ 374.015025] SyS_splice+0xca0/0x1230 [ 374.018736] ? SyS_write+0x14d/0x210 [ 374.022444] ? compat_SyS_vmsplice+0x250/0x250 [ 374.027019] ? SyS_clock_settime+0x1a0/0x1a0 [ 374.031453] ? do_syscall_64+0x4c/0x640 [ 374.035426] ? compat_SyS_vmsplice+0x250/0x250 [ 374.040010] do_syscall_64+0x1d5/0x640 [ 374.043902] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 374.049118] RIP: 0033:0x45c829 [ 374.052304] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 374.060187] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 374.067450] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 374.074712] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 374.081972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 374.089235] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:05 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r4 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) r5 = socket(0x11, 0x800000003, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r5, &(0x7f0000000040)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000a80)=[{{&(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000000580)=[{&(0x7f00000000c0)="6242d270c1ea24aec2e804297dd7d8d42ecf4719fa47c404cd53c8b2193ff64d072da3356f39c856821eacd8b50b98592b40bdd7c972c1506ac442ff9a18fe8663c3f03443b54c7c433242a0b65760249dbda9a19235a3256e73", 0x5a}, {&(0x7f0000000200)="0de3864e11af19fcf7ecdeb6d1a55ca6e4980ea95c695a65c6b9f418b27f921129caee8b825e9c5043e57c53b9d0d2d1e346173b998bfa4d0d698e9de7626ee03a9209ca7724f66e13713d8c238d4fbfbc72764eb706e6a0f6cc4293701be5b5c50e6dcfcf29ea2443db4c1275401431fbc7b398dd48189dfa13d65850cb1cc7ea085029e6a3ca244b999d83d7f247dccd7bfe9c2525ddef0d6a93a22cd83e1ca445f41dcb63f5bf33c0a095a098c5fbea2e701544fb2e0ffd863315a7998559c4ed26cd3ae3bcfa847ecf6717efa076960967134c7f", 0xd6}, {&(0x7f0000000300)="33cb9bb9ab68763f31c7b63ae2a162465189095cf26b081e89890165d53d2b00f729c849a64097e29dacec64407307cdcb341e05282ceb736fdd6b01cc17a900880ac371682a8d996d39cee2fa7a8138cf594eff8e059eb70f79a5d8656cadee5ad80f6a09f7b7b9798ffaec36037c12b7b5037816e7f3e02b0b3fa4f893fa", 0x7f}, {&(0x7f0000000380)="f8c28e99aa689083afcfa259eb94fe01cf7fdaa2", 0x14}, {&(0x7f00000003c0)="b64ea50f9af8fdb557c37e7152ecbe8f5cd083a322995125080bada31817e5f36860bdabd8e02be3485d6a2de1ba97e21ff2f5662be928c1680c2475cb93258ddfe9b3ee8e5277383582f7b38329e73d57ffe204f9fd7d8723a53d6706a5e9fdf0d34ffe2fb433bd3a983ebf8a3b7839e365a2f359b18fa7ff42fffbeb", 0x7d}, {&(0x7f0000000440)="440cb7888ea4fb6f51aa177e490eae79ebcbd3d6962850aeba12cd7324176fb6cb7c337e3abaccd19988e6b7426ce2c0760a0e363b5172570b2970491e3526f398798bb9c3ec4288391d91fe281d9c3d723d960ca921f96a9d0a510abf4f17dd174da48ec9392038252929b7ecf5d7677a1defbef58be79860e69e1f347d43773adf1929081fa58817b34f12eccbe7a30939ad4260dedd7908", 0x99}, {&(0x7f0000000500)="423533d6caf65c7ef13003dfc3f06d1b8452aaeebde084b41aeb52696f6bebbaec9e2c0e31d7f9dc0621b56b54d927092b90a1935daf129e13d22dc34aabc30ce57ff19ad53547fba1f41154df74705a", 0x50}], 0x7, &(0x7f0000000b40)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414bbac1e0101000000001c00000000000000008d72e1cbda678ee6715200f4000800000047c0915c0c322edd839da7eba8d8d5e467bfd999ff7ff67ee94af1ce5b056823a99b8d8ef3ab2844b41ded723eac0d4f9fccda59930b30bf3909f6c25ac3240ae75aa699416833bf16", @ANYRES32=r3, @ANYBLOB="ffffffffac1414aa0000000058000000000000000000000007000000008317f1ac1414bbac1414aaffffffffac14142a7f000001861d00000003020e8fab0b23a188a35a186474d40307180ccde0e4000201440c9200000000050000010194040100010014000000000000000000000001000000ff0f000000000000140000000000000000000000020000000200000000000000140000000000000000000000020000000700000000000000"], 0xe0}}, {{&(0x7f0000000700)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000740)="2275764980", 0x5}, {&(0x7f0000000780)="aaff1f9b651e34f73c76cb9d2342769ad39c7457a5fac160d3641cfe51d712a6ed73d1dc285e5c42bccd26c1", 0x2c}], 0x2, &(0x7f0000000800)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}}}}], 0x20}}, {{&(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000880)="97a0a8b0420fc33752b561cf67dbf5cc4d23821a0091eb29fc1e0f2a8e01a7f26ff427ad44e5450b5bd9a97ded0cf4c63a277cea269faffc657e583135446f6e1bad13d78c57c80e9d6c90bd8bf39f91a2eb6cf6116f84035c3e893e5f3eff7f654c19e8e90627e155a93194c6750af1ff9606455c46291c753c6f6e422c48c32897d4629f98444cd08a3cd845869c6a3a84c21bbbbea3084c5ef33747d3bee21f0b949c3ad5c3c823048fa45a09bf8788ddc23105ebb1ceceedf0b67d0c1c8acd92cf585244fb3234dcaa2ef64e00e757d15737", 0xd4}], 0x1, &(0x7f00000009c0)=[@ip_retopts={{0x2c, 0x0, 0x7, {[@rr={0x7, 0x1b, 0x61, [@dev={0xac, 0x14, 0x14, 0xc}, @multicast2, @remote, @local, @remote, @local]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1ff}}, @ip_tos_u8={{0x11}}, @ip_retopts={{0x14, 0x0, 0x7, {[@end]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3ee3}}], 0x90}}], 0x3, 0x4000000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:05 executing program 2: lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='security.ima\x00', &(0x7f0000000100)=@v1={0x2, "80142114010c0a20b82a5d34281aaf6c84acb7"}, 0x14, 0x2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file1\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r3) setresgid(0x0, r3, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0}, &(0x7f0000cab000)=0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) getsockname$packet(r7, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) ioctl$DRM_IOCTL_GET_CLIENT(r7, 0xc0286405, &(0x7f0000000000)={0x7, 0xffffffff, {r5}, {r2}, 0x9, 0xffff}) r9 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setfsgid(r10) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000040)={{0x2, r2, r3, r8, r10, 0x100, 0x2}, 0x6, 0x81, 0x4, 0x7, r5, r1, 0xcddc}) fchownat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x0, r3, 0x1000) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) recvfrom$unix(r0, &(0x7f0000000200)=""/80, 0x50, 0x2000, 0x0, 0x0) 16:45:05 executing program 4 (fault-call:0 fault-nth:0): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:05 executing program 0: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket(0x11, 0x800000003, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x48850}, 0x4008885) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @multicast}, 0x14) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team0\x00', r3}) r5 = socket(0x11, 0x800000003, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r5, &(0x7f0000000040)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r10 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r10, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r9, @ANYBLOB="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"], 0x48}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x1}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r9}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x45, 0x4}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x7, 0x3}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x400c1) 16:45:05 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TUNSETVNETBE(r0, 0x400454de, &(0x7f0000000080)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 374.330230] FAULT_INJECTION: forcing a failure. [ 374.330230] name failslab, interval 1, probability 0, space 0, times 0 16:45:06 executing program 3 (fault-call:7 fault-nth:14): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 374.397413] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 374.403791] CPU: 0 PID: 20975 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 374.414310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.423684] Call Trace: [ 374.426296] dump_stack+0x13e/0x194 [ 374.430089] should_fail.cold+0x10a/0x14b [ 374.434266] should_failslab+0xd6/0x130 [ 374.438262] __kmalloc+0x2e9/0x7c0 [ 374.441908] ? SyS_memfd_create+0xb9/0x3a0 [ 374.446162] ? wait_for_completion+0x390/0x390 [ 374.450795] ? strnlen_user+0x130/0x1a0 [ 374.454906] SyS_memfd_create+0xb9/0x3a0 [ 374.459518] ? shmem_fcntl+0x120/0x120 [ 374.463426] ? SyS_clock_settime+0x1a0/0x1a0 [ 374.467849] ? do_syscall_64+0x4c/0x640 [ 374.471841] ? shmem_fcntl+0x120/0x120 [ 374.476026] do_syscall_64+0x1d5/0x640 [ 374.479938] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 374.485146] RIP: 0033:0x45c829 [ 374.488341] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 374.496062] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 374.496137] FAULT_INJECTION: forcing a failure. [ 374.496137] name failslab, interval 1, probability 0, space 0, times 0 [ 374.503336] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 374.503342] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 374.503347] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 374.503353] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:06 executing program 4 (fault-call:0 fault-nth:1): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 374.548249] FAULT_INJECTION: forcing a failure. [ 374.548249] name failslab, interval 1, probability 0, space 0, times 0 [ 374.569818] CPU: 1 PID: 20997 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 374.577722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.587330] Call Trace: [ 374.589932] dump_stack+0x13e/0x194 [ 374.593578] should_fail.cold+0x10a/0x14b [ 374.597734] should_failslab+0xd6/0x130 [ 374.601730] kmem_cache_alloc_node+0x288/0x7a0 [ 374.606342] __alloc_skb+0x9a/0x4c0 [ 374.609981] ? skb_trim+0x160/0x160 [ 374.613643] sock_wmalloc+0xa5/0xf0 [ 374.617284] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 374.622319] ? ip6_setup_cork+0x12b0/0x12b0 [ 374.626647] ? ip6_mtu+0x13c/0x410 [ 374.630181] ? ip6_setup_cork+0xca6/0x12b0 [ 374.634409] ip6_append_data+0x1c3/0x300 [ 374.638463] ? rawv6_mh_filter_unregister+0x20/0x20 [ 374.643629] ? rawv6_mh_filter_unregister+0x20/0x20 [ 374.648712] rawv6_sendmsg+0x107c/0x2d10 [ 374.652782] ? rawv6_bind+0x850/0x850 [ 374.656628] ? __lock_acquire+0x5f7/0x4620 [ 374.660874] ? sock_has_perm+0x1c0/0x230 [ 374.664965] ? selinux_tun_dev_create+0xc0/0xc0 [ 374.669634] ? __lock_acquire+0x5f7/0x4620 [ 374.673963] ? inet_sendmsg+0x116/0x4d0 [ 374.677936] inet_sendmsg+0x116/0x4d0 [ 374.681737] ? inet_recvmsg+0x4c0/0x4c0 [ 374.685707] sock_sendmsg+0xc5/0x100 [ 374.689414] sock_no_sendpage+0xe5/0x110 [ 374.693467] ? sock_kzfree_s+0x50/0x50 [ 374.697355] ? sock_kzfree_s+0x50/0x50 [ 374.701232] kernel_sendpage+0x82/0xd0 [ 374.705229] sock_sendpage+0x84/0xa0 [ 374.709135] pipe_to_sendpage+0x226/0x2d0 [ 374.713282] ? kernel_sendpage+0xd0/0xd0 [ 374.717348] ? direct_splice_actor+0x160/0x160 [ 374.721940] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 374.727481] __splice_from_pipe+0x332/0x740 [ 374.731820] ? direct_splice_actor+0x160/0x160 [ 374.736611] ? direct_splice_actor+0x160/0x160 [ 374.741192] splice_from_pipe+0xc6/0x120 [ 374.745272] ? splice_shrink_spd+0xb0/0xb0 [ 374.749537] ? rw_verify_area+0xe1/0x2a0 [ 374.753594] ? splice_from_pipe+0x120/0x120 [ 374.758056] SyS_splice+0xca0/0x1230 [ 374.761771] ? SyS_write+0x14d/0x210 [ 374.765479] ? compat_SyS_vmsplice+0x250/0x250 [ 374.770147] ? SyS_clock_settime+0x1a0/0x1a0 [ 374.774725] ? do_syscall_64+0x4c/0x640 [ 374.778703] ? compat_SyS_vmsplice+0x250/0x250 [ 374.783284] do_syscall_64+0x1d5/0x640 [ 374.787177] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 374.792364] RIP: 0033:0x45c829 16:45:06 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x3c, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}]}, 0x3c}}, 0x0) sendmsg$L2TP_CMD_SESSION_MODIFY(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r1, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@L2TP_ATTR_MRU={0x6, 0x1d, 0x9}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x81}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x3}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e23}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 374.795549] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 374.803253] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 374.810525] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 374.817910] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 374.825173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 374.832617] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 [ 374.839905] CPU: 0 PID: 21001 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 374.847799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 374.857266] Call Trace: [ 374.859869] dump_stack+0x13e/0x194 [ 374.863545] should_fail.cold+0x10a/0x14b [ 374.867713] should_failslab+0xd6/0x130 [ 374.871702] kmem_cache_alloc+0x2b5/0x770 [ 374.875870] ? find_held_lock+0x2d/0x110 [ 374.879943] ? __alloc_fd+0x1bf/0x490 [ 374.883760] __d_alloc+0x2a/0x9b0 [ 374.887224] ? lock_downgrade+0x6e0/0x6e0 [ 374.891384] __shmem_file_setup.part.0+0xcb/0x3c0 [ 374.896458] ? shmem_fill_super+0x8a0/0x8a0 [ 374.900814] ? __alloc_fd+0x1bf/0x490 [ 374.904636] SyS_memfd_create+0x1f6/0x3a0 [ 374.908973] ? shmem_fcntl+0x120/0x120 [ 374.912965] ? SyS_clock_settime+0x1a0/0x1a0 [ 374.917557] ? do_syscall_64+0x4c/0x640 [ 374.921541] ? shmem_fcntl+0x120/0x120 [ 374.925666] do_syscall_64+0x1d5/0x640 [ 374.929556] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 374.934744] RIP: 0033:0x45c829 [ 374.937926] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 374.945649] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 374.952913] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 374.960175] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 374.967440] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 374.974743] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:06 executing program 4 (fault-call:0 fault-nth:2): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:06 executing program 3 (fault-call:7 fault-nth:15): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 375.090883] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 375.091965] FAULT_INJECTION: forcing a failure. [ 375.091965] name failslab, interval 1, probability 0, space 0, times 0 [ 375.145624] FAULT_INJECTION: forcing a failure. [ 375.145624] name failslab, interval 1, probability 0, space 0, times 0 [ 375.181870] CPU: 1 PID: 21028 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 16:45:06 executing program 5: creat(&(0x7f0000000080)='./file0\x00', 0x44) pipe(&(0x7f0000000040)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f00000000c0)={0xfe, 0x0, "422e9a6d25921ae08b977130e233961115b9361a4e9d280122c3228a8da763130e71608986598fdd4989ddc824d845343371350ee40979e6bebf46806df94ac7b49707b9194c8e4a706eb62f2a98244b53e40909d353f1ece42300e4755e87d76f4f01a6822c49a6280b0b0f840effeb3627507e735e8c37862d0097130941f0fc609c7517ca678d69ece4ced139f2d22aa37fa603c0c88681b6631ec41f0a109e2ef6eb5e1ddbcce6be501bb3d3d658e14ff04b6c0ccb5366b15dadd7a783c07d2874e24442c0cb92c2124512297ba4c8ac5c3356e5268aa5c553158729e9016837b112c27a75af156bc3fcaaf868f307b1deaa34d28507ce8543a14b5c00"}) socket$pppoe(0x18, 0x1, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0xe5d0d2cf40d23488, 0x0) ioctl$FBIOBLANK(r1, 0x4611, 0x0) [ 375.189805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.199388] Call Trace: [ 375.202085] dump_stack+0x13e/0x194 [ 375.205829] should_fail.cold+0x10a/0x14b [ 375.210292] ? shmem_destroy_callback+0xa0/0xa0 [ 375.214977] should_failslab+0xd6/0x130 [ 375.218964] ? shmem_destroy_callback+0xa0/0xa0 [ 375.223893] kmem_cache_alloc+0x2b5/0x770 [ 375.228058] ? __d_alloc+0x2a/0x9b0 [ 375.231764] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 375.237320] ? shmem_destroy_callback+0xa0/0xa0 [ 375.242295] shmem_alloc_inode+0x18/0x40 16:45:06 executing program 2: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x5e0998483387b7ca, 0x0) r1 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000003c0)) keyctl$chown(0x4, r1, 0x0, 0x0) r2 = add_key(&(0x7f0000000400)='cifs.spnego\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000180)="9bb3495734d4c7956ed74715f0", 0xd, 0xffffffffffffffff) keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000280)={r2, 0x15, 0x78}, 0x0, &(0x7f00000002c0)="5ec0b9adedc716ca963c3964e4ba12f4f916a28416", &(0x7f0000000300)=""/120) setsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, &(0x7f00000000c0)=0x1, 0x4) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r3, 0x4010ae74, &(0x7f0000000380)={0x7, 0x9, 0x3}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f0000000200)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000ffdad7159ce0440500175b7065163cf6fea2299748aeb81e1b00b10efd9a000001000000000001ff309aab6f4fe7c6cd2161ab5e76467f115490b653559441e143de8a4f8a60c2f615043a7bd6dd26fb", 0x70, 0xfffe}], 0x800, 0x0) [ 375.246368] ? shmem_destroy_callback+0xa0/0xa0 [ 375.251073] alloc_inode+0x5d/0x170 [ 375.254718] new_inode_pseudo+0x14/0xe0 [ 375.258707] new_inode+0x1b/0x40 [ 375.262085] shmem_get_inode+0x75/0x750 [ 375.266064] ? __d_alloc+0x5bb/0x9b0 [ 375.269796] __shmem_file_setup.part.0+0x104/0x3c0 [ 375.274734] ? shmem_fill_super+0x8a0/0x8a0 [ 375.279062] ? __alloc_fd+0x1bf/0x490 [ 375.283003] SyS_memfd_create+0x1f6/0x3a0 [ 375.287168] ? shmem_fcntl+0x120/0x120 [ 375.291074] ? SyS_clock_settime+0x1a0/0x1a0 [ 375.295680] ? do_syscall_64+0x4c/0x640 [ 375.299663] ? shmem_fcntl+0x120/0x120 [ 375.303663] do_syscall_64+0x1d5/0x640 [ 375.307585] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 375.312945] RIP: 0033:0x45c829 [ 375.316145] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 375.323872] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 375.331152] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 375.338435] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 375.345708] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 375.353073] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 375.360385] CPU: 0 PID: 21034 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 375.368289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.377651] Call Trace: [ 375.380331] dump_stack+0x13e/0x194 [ 375.384016] should_fail.cold+0x10a/0x14b [ 375.388196] should_failslab+0xd6/0x130 [ 375.392194] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 375.397437] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 375.402900] ? __alloc_skb+0x9a/0x4c0 [ 375.406715] __kmalloc_node_track_caller+0x38/0x70 [ 375.411745] __kmalloc_reserve.isra.0+0x35/0xd0 [ 375.416675] __alloc_skb+0xca/0x4c0 [ 375.420324] ? skb_trim+0x160/0x160 [ 375.423968] sock_wmalloc+0xa5/0xf0 [ 375.427623] __ip6_append_data.isra.0+0x1fc1/0x2940 [ 375.432663] ? ip6_setup_cork+0x12b0/0x12b0 [ 375.436996] ? ip6_mtu+0x13c/0x410 [ 375.440546] ? ip6_setup_cork+0xca6/0x12b0 [ 375.444810] ip6_append_data+0x1c3/0x300 [ 375.449029] ? rawv6_mh_filter_unregister+0x20/0x20 [ 375.454058] ? rawv6_mh_filter_unregister+0x20/0x20 [ 375.459090] rawv6_sendmsg+0x107c/0x2d10 [ 375.463167] ? rawv6_bind+0x850/0x850 [ 375.466990] ? __lock_acquire+0x5f7/0x4620 [ 375.471248] ? sock_has_perm+0x1c0/0x230 [ 375.475467] ? selinux_tun_dev_create+0xc0/0xc0 [ 375.480345] ? inet_sendmsg+0x116/0x4d0 [ 375.484341] inet_sendmsg+0x116/0x4d0 [ 375.488162] ? inet_recvmsg+0x4c0/0x4c0 [ 375.492300] sock_sendmsg+0xc5/0x100 [ 375.496023] sock_no_sendpage+0xe5/0x110 [ 375.500095] ? sock_kzfree_s+0x50/0x50 [ 375.504213] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 375.509246] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 375.514133] ? sock_kzfree_s+0x50/0x50 [ 375.518029] kernel_sendpage+0x82/0xd0 [ 375.521929] sock_sendpage+0x84/0xa0 [ 375.525656] pipe_to_sendpage+0x226/0x2d0 [ 375.529808] ? kernel_sendpage+0xd0/0xd0 [ 375.533883] ? direct_splice_actor+0x160/0x160 [ 375.538565] ? ___might_sleep+0x192/0x2b0 [ 375.542729] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 375.548244] __splice_from_pipe+0x332/0x740 [ 375.552600] ? direct_splice_actor+0x160/0x160 [ 375.557284] ? direct_splice_actor+0x160/0x160 [ 375.561898] splice_from_pipe+0xc6/0x120 [ 375.566170] ? splice_shrink_spd+0xb0/0xb0 [ 375.570427] ? rw_verify_area+0xe1/0x2a0 [ 375.574499] ? splice_from_pipe+0x120/0x120 [ 375.578831] SyS_splice+0xca0/0x1230 [ 375.582569] ? SyS_write+0x14d/0x210 [ 375.586299] ? compat_SyS_vmsplice+0x250/0x250 [ 375.590894] ? SyS_clock_settime+0x1a0/0x1a0 [ 375.595317] ? do_syscall_64+0x4c/0x640 [ 375.599296] ? compat_SyS_vmsplice+0x250/0x250 [ 375.603889] do_syscall_64+0x1d5/0x640 [ 375.607799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 375.613000] RIP: 0033:0x45c829 [ 375.616363] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 375.624083] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 375.631359] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 375.638637] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 375.645923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 375.653311] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000200), &(0x7f0000000240)=0x8) 16:45:07 executing program 4 (fault-call:0 fault-nth:3): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:07 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$RTC_IRQP_READ(0xffffffffffffffff, 0x8008700b, &(0x7f0000000080)) 16:45:07 executing program 3 (fault-call:7 fault-nth:16): pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 375.787356] FAULT_INJECTION: forcing a failure. [ 375.787356] name failslab, interval 1, probability 0, space 0, times 0 [ 375.807781] FAULT_INJECTION: forcing a failure. [ 375.807781] name failslab, interval 1, probability 0, space 0, times 0 [ 375.849232] CPU: 1 PID: 21060 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 375.857259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 375.866742] Call Trace: [ 375.869357] dump_stack+0x13e/0x194 [ 375.873007] should_fail.cold+0x10a/0x14b [ 375.877180] should_failslab+0xd6/0x130 [ 375.881366] kmem_cache_alloc+0x2b5/0x770 [ 375.885540] ? shmem_alloc_inode+0x18/0x40 [ 375.889794] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 375.895446] selinux_inode_alloc_security+0xb1/0x2a0 [ 375.900641] security_inode_alloc+0x8f/0xd0 [ 375.905013] inode_init_always+0x576/0xb20 [ 375.909466] alloc_inode+0x7a/0x170 [ 375.913111] new_inode_pseudo+0x14/0xe0 [ 375.917099] new_inode+0x1b/0x40 [ 375.920477] shmem_get_inode+0x75/0x750 [ 375.924547] ? __d_alloc+0x5bb/0x9b0 [ 375.928276] __shmem_file_setup.part.0+0x104/0x3c0 [ 375.933223] ? shmem_fill_super+0x8a0/0x8a0 [ 375.937553] ? __alloc_fd+0x1bf/0x490 [ 375.941496] SyS_memfd_create+0x1f6/0x3a0 [ 375.945662] ? shmem_fcntl+0x120/0x120 [ 375.949563] ? SyS_clock_settime+0x1a0/0x1a0 [ 375.954113] ? do_syscall_64+0x4c/0x640 [ 375.958097] ? shmem_fcntl+0x120/0x120 [ 375.961998] do_syscall_64+0x1d5/0x640 [ 375.965908] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 375.971108] RIP: 0033:0x45c829 [ 375.974299] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 375.982017] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 375.989426] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 375.996706] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 376.004305] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 376.011591] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 376.019732] CPU: 0 PID: 21059 Comm: syz-executor.3 Not tainted 4.14.176-syzkaller #0 [ 376.027658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.037009] Call Trace: [ 376.039603] dump_stack+0x13e/0x194 [ 376.043275] should_fail.cold+0x10a/0x14b [ 376.047423] should_failslab+0xd6/0x130 [ 376.051388] __kmalloc_track_caller+0x69/0x7b0 [ 376.055997] ? ip6_find_1stfragopt+0x260/0x260 [ 376.060570] ? ip6_fragment+0x1d55/0x3150 [ 376.064717] ? lock_downgrade+0x6e0/0x6e0 [ 376.068902] kmemdup+0x23/0x50 [ 376.072177] ip6_fragment+0x1d55/0x3150 [ 376.076155] ? ip6_forward_finish+0x470/0x470 [ 376.080777] ? ip6_forward+0x3040/0x3040 [ 376.085150] ip6_finish_output+0x4fb/0xaf0 [ 376.089385] ip6_output+0x1c9/0x650 [ 376.093009] ? ip6_finish_output+0xaf0/0xaf0 [ 376.097411] ? ip6_mtu+0x13c/0x410 [ 376.101092] ? ip6_fragment+0x3150/0x3150 [ 376.105305] ip6_local_out+0x93/0x170 [ 376.109139] ip6_send_skb+0x9b/0x2f0 [ 376.112863] ip6_push_pending_frames+0xaf/0xd0 [ 376.117444] rawv6_sendmsg+0x227b/0x2d10 [ 376.121502] ? rawv6_bind+0x850/0x850 [ 376.125318] ? __lock_acquire+0x5f7/0x4620 [ 376.129596] ? sock_has_perm+0x1c0/0x230 [ 376.133682] ? selinux_tun_dev_create+0xc0/0xc0 [ 376.138343] ? __lock_acquire+0x5f7/0x4620 [ 376.142620] ? inet_sendmsg+0x116/0x4d0 [ 376.146591] inet_sendmsg+0x116/0x4d0 [ 376.150381] ? inet_recvmsg+0x4c0/0x4c0 [ 376.154348] sock_sendmsg+0xc5/0x100 [ 376.158056] sock_no_sendpage+0xe5/0x110 [ 376.162107] ? sock_kzfree_s+0x50/0x50 [ 376.165999] ? sock_kzfree_s+0x50/0x50 [ 376.169881] kernel_sendpage+0x82/0xd0 [ 376.173846] sock_sendpage+0x84/0xa0 [ 376.177551] pipe_to_sendpage+0x226/0x2d0 [ 376.181689] ? kernel_sendpage+0xd0/0xd0 [ 376.185743] ? direct_splice_actor+0x160/0x160 [ 376.190367] ? splice_from_pipe_next.part.0+0x1e4/0x290 [ 376.195809] __splice_from_pipe+0x332/0x740 [ 376.200124] ? direct_splice_actor+0x160/0x160 [ 376.204702] ? direct_splice_actor+0x160/0x160 [ 376.209276] splice_from_pipe+0xc6/0x120 [ 376.213328] ? splice_shrink_spd+0xb0/0xb0 [ 376.217562] ? rw_verify_area+0xe1/0x2a0 [ 376.221720] ? splice_from_pipe+0x120/0x120 [ 376.226034] SyS_splice+0xca0/0x1230 [ 376.229746] ? SyS_write+0x14d/0x210 [ 376.233452] ? compat_SyS_vmsplice+0x250/0x250 [ 376.238045] ? SyS_clock_settime+0x1a0/0x1a0 [ 376.242477] ? do_syscall_64+0x4c/0x640 [ 376.246443] ? compat_SyS_vmsplice+0x250/0x250 [ 376.251017] do_syscall_64+0x1d5/0x640 [ 376.254961] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 376.260155] RIP: 0033:0x45c829 [ 376.263335] RSP: 002b:00007f1c3c735c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 376.271092] RAX: ffffffffffffffda RBX: 00000000005073c0 RCX: 000000000045c829 [ 376.278354] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003 [ 376.285620] RBP: 000000000078bf00 R08: 0000000000010005 R09: 0000000000000000 [ 376.293000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 16:45:07 executing program 0: setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.evm\x00', &(0x7f0000000100)=@md5={0x1, "9061815775dcb1c13b04217dba5399bd"}, 0x11, 0x1) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:07 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3fad, 0x0, &(0x7f0000000040), 0x20080, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) dup2(r2, r1) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0xa, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @loopback={0xff00000000000000}}, r3}}, 0x48) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000180), 0x4, {0xa, 0x4e22, 0x0, @remote, 0x7fff}, r3}}, 0x38) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmstat\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000100)={0x12, 0x10, 0xfa00, {&(0x7f0000000080), r3, r4}}, 0x18) ioctl$KDGETKEYCODE(0xffffffffffffffff, 0x4b4c, &(0x7f0000000000)={0x8000, 0x10000}) [ 376.300265] R13: 0000000000000ba4 R14: 00000000004ce710 R15: 00007f1c3c7366d4 16:45:08 executing program 4 (fault-call:0 fault-nth:4): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 376.394055] print_req_error: I/O error, dev loop2, sector 0 16:45:08 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(0xffffffffffffffff, &(0x7f00000009c0)={0x2, 0x4e20, @loopback}, 0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) sendto$inet(r0, 0x0, 0x0, 0x44041, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r2, 0x0, 0xffffffffffffffad) recvmmsg(r2, &(0x7f0000007f40)=[{{&(0x7f0000000200)=@pppoe, 0x80, &(0x7f0000000780)=[{&(0x7f0000000340)=""/253, 0xfd}, {&(0x7f0000000440)=""/142, 0x8e}, {&(0x7f0000000500)=""/83, 0x53}, {&(0x7f0000000280)=""/23, 0x17}, {&(0x7f0000000580)=""/140, 0x8c}, {&(0x7f0000000640)=""/193, 0xc1}, {&(0x7f0000000740)=""/25, 0x19}], 0x7, &(0x7f0000000800)=""/69, 0x45}, 0x7}, {{&(0x7f0000000880)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000001d40)=[{&(0x7f0000000900)=""/134, 0x86}, {&(0x7f00000009c0)}, {&(0x7f0000000a00)=""/65, 0x41}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/225, 0xe1}, {&(0x7f0000001b80)=""/192, 0xc0}, {&(0x7f0000001c40)=""/208, 0xd0}], 0x7}, 0x7}, {{&(0x7f0000001dc0)=@nfc_llcp, 0x80, &(0x7f0000002180)=[{&(0x7f0000001e40)=""/213, 0xd5}, {&(0x7f0000001f40)=""/101, 0x65}, {&(0x7f0000001fc0)=""/150, 0x96}, {&(0x7f0000002080)=""/147, 0x93}, {&(0x7f0000002140)=""/55, 0x37}], 0x5, &(0x7f0000002200)=""/233, 0xe9}, 0x1}, {{&(0x7f0000002300)=@sco, 0x80, &(0x7f00000025c0)=[{&(0x7f0000002380)=""/58, 0x3a}, {&(0x7f00000023c0)=""/233, 0xe9}, {&(0x7f00000024c0)=""/83, 0x53}, {&(0x7f0000002540)=""/124, 0x7c}], 0x4, &(0x7f0000002600)=""/243, 0xf3}, 0xbcd}, {{&(0x7f0000002700)=@tipc=@name, 0x80, &(0x7f0000002940)=[{&(0x7f0000002780)=""/104, 0x68}, {&(0x7f0000002800)=""/4, 0x4}, {&(0x7f0000002840)=""/207, 0xcf}], 0x3, &(0x7f0000002980)=""/42, 0x2a}, 0x1}, {{&(0x7f00000029c0)=@rc, 0x80, &(0x7f0000002ac0)=[{&(0x7f0000002a40)=""/114, 0x72}], 0x1, &(0x7f0000002b00)=""/227, 0xe3}, 0x40}, {{&(0x7f0000002c00)=@sco={0x1f, @none}, 0x80, &(0x7f0000003f00)=[{&(0x7f0000002c80)=""/4096, 0x1000}, {&(0x7f0000003c80)=""/25, 0x19}, {&(0x7f0000003cc0)=""/158, 0x9e}, {&(0x7f0000003d80)=""/109, 0x6d}, {&(0x7f0000003e00)=""/164, 0xa4}, {&(0x7f0000003ec0)=""/29, 0x1d}], 0x6}, 0x1}, {{&(0x7f0000003f80)=@nl=@proc, 0x80, &(0x7f00000063c0)=[{&(0x7f0000004000)=""/4096, 0x1000}, {&(0x7f0000005000)=""/165, 0xa5}, {&(0x7f00000050c0)=""/82, 0x52}, {&(0x7f0000005140)=""/227, 0xe3}, {&(0x7f0000005240)=""/58, 0x3a}, {&(0x7f0000005280)=""/239, 0xef}, {&(0x7f0000005380)=""/4096, 0x1000}, {&(0x7f0000006380)=""/28, 0x1c}], 0x8, &(0x7f0000006440)=""/198, 0xc6}, 0x63}, {{&(0x7f0000006540)=@can, 0x80, &(0x7f00000079c0)=[{&(0x7f00000065c0)=""/51, 0x33}, {&(0x7f0000006600)=""/104, 0x68}, {&(0x7f0000006680)=""/15, 0xf}, {&(0x7f00000066c0)=""/120, 0x78}, {&(0x7f0000006740)=""/4096, 0x1000}, {&(0x7f0000007740)=""/242, 0xf2}, {&(0x7f0000007840)=""/20, 0x14}, {&(0x7f0000007880)=""/120, 0x78}, {&(0x7f0000007900)=""/179, 0xb3}], 0x9, &(0x7f0000007a80)=""/134, 0x86}, 0x80000000}, {{&(0x7f0000007b40)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f0000007e00)=[{&(0x7f0000007bc0)=""/11, 0xb}, {&(0x7f0000007c00)=""/244, 0xf4}, {&(0x7f0000007d00)=""/127, 0x7f}, {&(0x7f0000007d80)=""/79, 0x4f}], 0x4, &(0x7f0000007e40)=""/238, 0xee}, 0x3f}], 0xa, 0x40002000, &(0x7f00000081c0)={0x0, 0x3938700}) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f00000000c0)={r3, r4/1000+60000}, 0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) ioctl$RTC_EPOCH_READ(r5, 0x8008700d, &(0x7f0000000100)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001184d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10002}], 0x0, 0x0) [ 376.480864] FAULT_INJECTION: forcing a failure. [ 376.480864] name failslab, interval 1, probability 0, space 0, times 0 [ 376.518660] CPU: 1 PID: 21087 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 376.526753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.536124] Call Trace: [ 376.538738] dump_stack+0x13e/0x194 [ 376.542490] should_fail.cold+0x10a/0x14b [ 376.546792] should_failslab+0xd6/0x130 [ 376.550786] kmem_cache_alloc+0x2b5/0x770 [ 376.554963] get_empty_filp+0x86/0x3e0 [ 376.558866] alloc_file+0x23/0x440 [ 376.562514] __shmem_file_setup.part.0+0x198/0x3c0 [ 376.567730] ? shmem_fill_super+0x8a0/0x8a0 [ 376.572066] ? __alloc_fd+0x1bf/0x490 [ 376.575886] SyS_memfd_create+0x1f6/0x3a0 [ 376.580043] ? shmem_fcntl+0x120/0x120 [ 376.584107] ? SyS_clock_settime+0x1a0/0x1a0 [ 376.588533] ? do_syscall_64+0x4c/0x640 [ 376.592519] ? shmem_fcntl+0x120/0x120 [ 376.596418] do_syscall_64+0x1d5/0x640 [ 376.600321] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 376.605519] RIP: 0033:0x45c829 [ 376.608715] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 376.616435] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 376.623805] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 376.631221] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 376.638500] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 376.646172] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:08 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='\x00') 16:45:08 executing program 4 (fault-call:0 fault-nth:5): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:08 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363a81ed02000a0000000001004d010000ffffffee0000007a0000000000fff6f2a229974800000001fffffff60000005f42485266535f4d", 0x3a, 0xfffb}], 0xa0005, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/vcsa\x00', 0x181002, 0x0) recvmmsg(r0, &(0x7f0000001480)=[{{&(0x7f0000001300)=@tipc=@name, 0x80, &(0x7f00000013c0)=[{&(0x7f0000001380)=""/60, 0x3c}], 0x1, &(0x7f0000001400)=""/94, 0x5e}, 0x2}], 0x1, 0x4041, &(0x7f00000014c0)={0x77359400}) [ 376.737765] FAULT_INJECTION: forcing a failure. [ 376.737765] name failslab, interval 1, probability 0, space 0, times 0 [ 376.766798] CPU: 1 PID: 21096 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 376.774890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 376.784371] Call Trace: [ 376.786979] dump_stack+0x13e/0x194 [ 376.790636] should_fail.cold+0x10a/0x14b [ 376.794805] should_failslab+0xd6/0x130 [ 376.798797] kmem_cache_alloc+0x2b5/0x770 [ 376.802962] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 376.808430] ? rcu_read_lock_sched_held+0x10a/0x130 [ 376.813551] selinux_file_alloc_security+0xaf/0x190 [ 376.818589] security_file_alloc+0x66/0xa0 [ 376.822840] ? selinux_is_enabled+0x5/0x50 [ 376.827090] get_empty_filp+0x15c/0x3e0 [ 376.831197] alloc_file+0x23/0x440 [ 376.834758] __shmem_file_setup.part.0+0x198/0x3c0 [ 376.839715] ? shmem_fill_super+0x8a0/0x8a0 [ 376.844048] ? __alloc_fd+0x1bf/0x490 [ 376.847874] SyS_memfd_create+0x1f6/0x3a0 [ 376.852036] ? shmem_fcntl+0x120/0x120 [ 376.855935] ? SyS_clock_settime+0x1a0/0x1a0 [ 376.860375] ? do_syscall_64+0x4c/0x640 [ 376.864370] ? shmem_fcntl+0x120/0x120 [ 376.868557] do_syscall_64+0x1d5/0x640 [ 376.872475] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 376.877680] RIP: 0033:0x45c829 [ 376.880884] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 376.888738] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c829 [ 376.896019] RDX: 0000000020000058 RSI: 0000000000000000 RDI: 00000000004c1991 [ 376.903405] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 376.910767] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000003 [ 376.918048] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:08 executing program 4 (fault-call:0 fault-nth:6): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 377.057839] print_req_error: I/O error, dev loop5, sector 0 [ 377.082477] FAULT_INJECTION: forcing a failure. [ 377.082477] name fail_page_alloc, interval 1, probability 0, space 0, times 0 16:45:08 executing program 5: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x4, &(0x7f0000000380)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000080)="38d7d961adf3e982b302816fb71a9450df88695512754b9d8bf9a47dac5b2f98266bc3c54924ee7df4b6033e694aee8fbe77edc940cb8f820f6798873a608f1853b704bbaba686fc8cc30de14ea5f848377403edfa4fc0ca", 0x58, 0x6}, {&(0x7f0000000200)="0867e5d2449ebc15e387669d448edbff72fdfb370e28dd02d0b224d67c55be96e53a696e5ad84b5530f45fac8829c65a218aec8f4943275ba963c9884cb526b205123076a562a5fab839a444268d1af21610460a84b6de8d5bed863ed09bfcb0ec406a8d59d5916dc8a6466df0848c8453acf4104d86b0ac53259e131a94fa69f0460f4a6469b9653294104949524c88004cde9d8696be1ebafcfe995373a52ff71a1de7c73c34e9c8c36584e86c6a819b1483bff534f93cf41da6b5e8eb808eaa94969ccc8961d2390467dacc0cb61c2884b4ac46c4c54529f359ed66f1645681291dc719540b6b01812834d76480", 0xef, 0x8}, {&(0x7f0000000300)="4147701724ba12a885d56bb2ef58e9004528d07d8915306552fe36b8e00e1ba7848b086ac08d292e6592156f4e5fd0318544a200c270728c02b473da2b414af7401ff74cb2b048d74ccd1db6e7a9f27d31d20e6621e8fb85f039200551ef1a460c384104190424404788340980f073b28215cab63c9926a5440577f2", 0x7c, 0x8a90}], 0x0, 0x0) [ 377.118603] CPU: 1 PID: 21119 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 377.126680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.136158] Call Trace: [ 377.138779] dump_stack+0x13e/0x194 [ 377.142440] should_fail.cold+0x10a/0x14b [ 377.146704] __alloc_pages_nodemask+0x1bf/0x700 [ 377.151693] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 377.156731] ? lock_downgrade+0x6e0/0x6e0 [ 377.160905] ? avc_has_perm_noaudit+0x297/0x400 [ 377.166007] alloc_pages_vma+0xc2/0x4a0 [ 377.170006] shmem_alloc_page+0xe1/0x180 [ 377.174084] ? shmem_swapin+0x180/0x180 [ 377.178211] ? cred_has_capability+0x121/0x230 [ 377.182815] ? selinux_ipv4_output+0x40/0x40 [ 377.187239] ? find_get_entry+0x21d/0x690 [ 377.191411] ? check_preemption_disabled+0x35/0x240 [ 377.196720] ? __vm_enough_memory+0x261/0x460 [ 377.201233] shmem_alloc_and_acct_page+0x126/0x680 [ 377.206186] shmem_getpage_gfp+0x388/0x2790 [ 377.210544] ? shmem_mfill_atomic_pte+0x1790/0x1790 [ 377.215596] shmem_write_begin+0xf4/0x190 [ 377.219760] generic_perform_write+0x1c9/0x420 [ 377.224488] ? page_endio+0x540/0x540 [ 377.228395] ? current_time+0xb0/0xb0 [ 377.232208] ? lock_acquire+0x170/0x3f0 [ 377.236226] __generic_file_write_iter+0x227/0x590 [ 377.241331] generic_file_write_iter+0x2fa/0x650 [ 377.246109] __vfs_write+0x44e/0x630 [ 377.249836] ? kernel_read+0x110/0x110 [ 377.254116] ? rcu_read_lock_sched_held+0x10a/0x130 [ 377.259147] ? rcu_sync_lockdep_assert+0x69/0xa0 [ 377.263916] vfs_write+0x192/0x4e0 [ 377.267493] SyS_pwrite64+0x116/0x140 [ 377.271311] ? SyS_pread64+0x140/0x140 [ 377.275209] ? fput+0xb/0x140 [ 377.278336] ? do_syscall_64+0x4c/0x640 [ 377.282468] ? SyS_pread64+0x140/0x140 [ 377.286367] do_syscall_64+0x1d5/0x640 [ 377.290272] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 377.295470] RIP: 0033:0x416687 [ 377.298665] RSP: 002b:00007f29c1d16a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 377.306385] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 0000000000416687 [ 377.313802] RDX: 0000000000000048 RSI: 0000000020000140 RDI: 0000000000000004 [ 377.321247] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 377.328817] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 377.336107] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:09 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = gettid() syz_open_procfs$namespace(r0, &(0x7f0000000080)='ns/net\x00') getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r2) syz_mount_image$f2fs(&(0x7f00000000c0)='f2fs\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x5, &(0x7f00000013c0)=[{&(0x7f0000000200)="e97875a38a64300b366d94669e61a23d92238655fc725ea21457ff31202c1ca9ee460dd7ec4f0307d9017f15b64823", 0x2f, 0x80000000}, {&(0x7f0000000240)="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", 0x1000, 0x200}, {&(0x7f0000001240)="43eb02149e75be010438d2fbb46f2b12998961c6ed57fe465257e73260cd5cf8801043ba7ce08de5424649d694711b43026a2097cb5af802842327c6", 0x3c, 0x2}, {&(0x7f0000001280)="01c063d68723f4285fea256e5eb09f64343b3d99fc9c1ec566c3820fcc34f62c6ab68f58aaac792fa9a44d15e15054be0c308b7a1771c9355c017e6f447c70d680ef0b04971ea179793a466b18afc4b1bad65ef21de3dbc2793643233bde4c7b76fb16d06a8eac13310642281f72c43415f799204e667ff1c60a2578cc65251f015ada0617ca560ede4008fe0558b3fa3f5cefeb4ca4e390fda0b35be1b39f59bd0994", 0xa3, 0x80000000000000}, {&(0x7f0000001340)="fab9199191bf7c8155b01049a523c407815bff39d7a21e6a99c452bec8c9793fee928e0e3de3af0afc8bfd042f45196bd0c760b0793e7fd78e67f4885ec01d2449d91f2ab1cf37d3d7671062b12a19f937c1557c3797785d4bafe12e6c056c2b85", 0x61, 0x7ff}], 0x808c0, &(0x7f0000001440)=ANY=[@ANYBLOB='noinline_xattr,heap,uid>', @ANYRESDEC=r2, @ANYBLOB='5\x00']) [ 377.424641] print_req_error: I/O error, dev loop4, sector 0 16:45:09 executing program 4 (fault-call:0 fault-nth:7): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 377.554343] FAULT_INJECTION: forcing a failure. [ 377.554343] name failslab, interval 1, probability 0, space 0, times 0 [ 377.566222] CPU: 0 PID: 21142 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 377.574394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 377.583940] Call Trace: [ 377.586659] dump_stack+0x13e/0x194 [ 377.590316] should_fail.cold+0x10a/0x14b [ 377.594497] should_failslab+0xd6/0x130 [ 377.598507] kmem_cache_alloc+0x44/0x770 [ 377.602767] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 377.607799] ? lock_downgrade+0x6e0/0x6e0 [ 377.611968] radix_tree_node_alloc.constprop.0+0x1b4/0x300 [ 377.617617] __radix_tree_create+0x339/0x4c0 [ 377.622290] __radix_tree_insert+0x98/0x4f0 [ 377.626810] ? __radix_tree_create+0x4c0/0x4c0 [ 377.631624] ? shmem_add_to_page_cache+0x236/0x7f0 [ 377.636599] shmem_add_to_page_cache+0x552/0x7f0 [ 377.641376] ? shmem_unused_huge_scan+0xa0/0xa0 [ 377.646252] ? __radix_tree_preload+0x1c3/0x250 [ 377.650942] shmem_getpage_gfp+0x1710/0x2790 [ 377.655380] ? shmem_mfill_atomic_pte+0x1790/0x1790 [ 377.660421] shmem_write_begin+0xf4/0x190 [ 377.664587] generic_perform_write+0x1c9/0x420 [ 377.669186] ? page_endio+0x540/0x540 [ 377.673009] ? current_time+0xb0/0xb0 [ 377.676825] ? lock_acquire+0x170/0x3f0 [ 377.680814] __generic_file_write_iter+0x227/0x590 [ 377.685899] generic_file_write_iter+0x2fa/0x650 [ 377.690764] __vfs_write+0x44e/0x630 [ 377.694492] ? kernel_read+0x110/0x110 [ 377.698404] ? rcu_read_lock_sched_held+0x10a/0x130 [ 377.703550] ? rcu_sync_lockdep_assert+0x69/0xa0 [ 377.708412] vfs_write+0x192/0x4e0 [ 377.711975] SyS_pwrite64+0x116/0x140 [ 377.715966] ? SyS_pread64+0x140/0x140 [ 377.719870] ? fput+0xb/0x140 [ 377.723003] ? do_syscall_64+0x4c/0x640 [ 377.726991] ? SyS_pread64+0x140/0x140 [ 377.730891] do_syscall_64+0x1d5/0x640 [ 377.734795] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 377.740138] RIP: 0033:0x416687 [ 377.743338] RSP: 002b:00007f29c1d16a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 16:45:09 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$VT_DISALLOCATE(r0, 0x5608) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:09 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x7, 0x4882c0) [ 377.751058] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 0000000000416687 [ 377.758427] RDX: 0000000000000048 RSI: 0000000020000140 RDI: 0000000000000004 [ 377.765902] RBP: 000000000078bf00 R08: fe03f80fe03f80ff R09: 0000000000000001 [ 377.773184] R10: 0000000000010000 R11: 0000000000000293 R12: 0000000000000003 [ 377.780638] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:09 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:09 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x20, 0x1, 0x8, 0x301, 0x0, 0x0, {}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0x9ed3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x840}, 0x4010) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000080)) 16:45:09 executing program 4 (fault-call:0 fault-nth:8): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 378.283492] FAULT_INJECTION: forcing a failure. [ 378.283492] name failslab, interval 1, probability 0, space 0, times 0 [ 378.298982] CPU: 1 PID: 21176 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 378.307253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.316740] Call Trace: [ 378.319357] dump_stack+0x13e/0x194 [ 378.323011] should_fail.cold+0x10a/0x14b [ 378.327188] should_failslab+0xd6/0x130 [ 378.331277] kmem_cache_alloc+0x2b5/0x770 [ 378.335448] getname_flags+0xc8/0x560 [ 378.339272] do_sys_open+0x1c4/0x3f0 [ 378.342998] ? filp_open+0x60/0x60 [ 378.346547] ? SyS_pwrite64+0xca/0x140 [ 378.350444] ? fput+0xb/0x140 [ 378.353563] ? do_syscall_64+0x4c/0x640 [ 378.357642] ? do_sys_open+0x3f0/0x3f0 [ 378.361724] do_syscall_64+0x1d5/0x640 [ 378.365753] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 378.371101] RIP: 0033:0x416621 [ 378.374298] RSP: 002b:00007f29c1d16a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 378.382023] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 0000000000416621 [ 378.389307] RDX: 00007f29c1d16b0a RSI: 0000000000000002 RDI: 00007f29c1d16b00 [ 378.396590] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 378.403873] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 378.411175] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:10 executing program 4 (fault-call:0 fault-nth:9): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:10 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) r2 = socket(0x10, 0x803, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={0xffffffffffffffff, 0x28, &(0x7f0000000000)={0x0, 0x0}}, 0x10) r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={r3}, 0xc) bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000400)={r4, &(0x7f0000000340), &(0x7f0000000380)}, 0x20) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$inet6(0xa, 0x80003, 0xff) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) bind$packet(r5, &(0x7f0000000640)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="3093b34e1938"}, 0x14) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f0000001880)={@ipx={0x4, 0x7, 0x6, "1bf4a501c945", 0xff}, {&(0x7f0000000240)=""/62, 0x3e}, &(0x7f0000000280), 0x69392ffac853ee31}, 0xa0) r9 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x13, 0x4, &(0x7f0000001800)=ANY=[@ANYBLOB="8500000022000000350000000000000085000000080000009500000000000000baf43a7714998b71b36355c674aa4de21dff0b0da436337b8999bf7cb0f0fdc5aa70d894f8cd84f0b718c711c8042b7459b596746e00"], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x64deb09e3732d498}, 0x64) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r9, 0x0, 0xe, 0x0, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x8000}, 0x28) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r9, 0xc0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001700)=0x1, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x6, 0x3}, 0x0, 0x0, &(0x7f0000000440)={0xfffffffe, 0x0, 0xfffffffb, 0x7}, &(0x7f0000000480)=0x1000020, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)}}, 0x10) pipe(&(0x7f0000000600)={0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f0000001680)={0xe, 0xb, &(0x7f0000001780)=ANY=[@ANYRESHEX=0x0, @ANYRES32=r4, @ANYBLOB="00000000ff0300009500000000002cfe5f09636ac21fedc09a7aa91020024e4ee9293ff67c07bf4d2d743082dcfeab0fc88ab50d2d6ff7f91b0643353fcfbc2e2b13f61e31ada71df7"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x1000, &(0x7f0000000680)=""/4096, 0x41000, 0x8, [], r8, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000380)={0x1, 0x2, 0x6, 0x8}, 0x10, r10, r11}, 0x78) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003b00)={r2, 0x10, &(0x7f0000003ac0)={&(0x7f0000003a40)=""/90, 0x5a, r10}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200)=r10, 0x4) clock_nanosleep(0x7, 0x1, &(0x7f0000000080)={r0, r1+10000000}, &(0x7f00000000c0)) [ 378.490659] FAULT_INJECTION: forcing a failure. [ 378.490659] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 378.502852] CPU: 1 PID: 21178 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 378.510856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.520311] Call Trace: [ 378.522925] dump_stack+0x13e/0x194 [ 378.526699] should_fail.cold+0x10a/0x14b [ 378.530955] __alloc_pages_nodemask+0x1bf/0x700 [ 378.535741] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 378.541060] ? find_held_lock+0x2d/0x110 [ 378.545154] cache_grow_begin+0x7b/0x410 [ 378.549241] kmem_cache_alloc+0x695/0x770 [ 378.553420] getname_flags+0xc8/0x560 [ 378.557435] do_sys_open+0x1c4/0x3f0 [ 378.561170] ? filp_open+0x60/0x60 [ 378.564730] ? SyS_pwrite64+0xca/0x140 [ 378.568632] ? fput+0xb/0x140 [ 378.571753] ? do_syscall_64+0x4c/0x640 [ 378.575742] ? do_sys_open+0x3f0/0x3f0 [ 378.579741] do_syscall_64+0x1d5/0x640 [ 378.583651] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 378.589023] RIP: 0033:0x416621 [ 378.592221] RSP: 002b:00007f29c1d16a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 378.600049] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 0000000000416621 [ 378.607326] RDX: 00007f29c1d16b0a RSI: 0000000000000002 RDI: 00007f29c1d16b00 [ 378.614606] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 378.622041] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 378.629321] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:10 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000080)={0x0, 0xfffffffffffffffe}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:10 executing program 4 (fault-call:0 fault-nth:10): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 378.808528] FAULT_INJECTION: forcing a failure. [ 378.808528] name failslab, interval 1, probability 0, space 0, times 0 [ 378.847867] CPU: 0 PID: 21198 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 378.855785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 378.865151] Call Trace: [ 378.867761] dump_stack+0x13e/0x194 [ 378.871718] should_fail.cold+0x10a/0x14b [ 378.875889] should_failslab+0xd6/0x130 [ 378.879895] kmem_cache_alloc+0x2b5/0x770 [ 378.884066] ? depot_save_stack+0x10d/0x401 [ 378.888405] get_empty_filp+0x86/0x3e0 [ 378.892307] path_openat+0x8d/0x3c50 [ 378.896037] ? __lock_acquire+0x5f7/0x4620 [ 378.900282] ? trace_hardirqs_on+0x10/0x10 [ 378.904535] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 378.909231] ? __lock_is_held+0xad/0x140 [ 378.913314] do_filp_open+0x18e/0x250 [ 378.917128] ? may_open_dev+0xe0/0xe0 [ 378.920940] ? find_held_lock+0x2d/0x110 [ 378.925010] ? __alloc_fd+0x1bf/0x490 [ 378.928830] ? lock_downgrade+0x6e0/0x6e0 [ 378.932992] ? do_raw_spin_unlock+0x164/0x250 [ 378.937501] ? __alloc_fd+0x1bf/0x490 [ 378.941329] do_sys_open+0x29d/0x3f0 [ 378.945055] ? filp_open+0x60/0x60 [ 378.948604] ? SyS_pwrite64+0xca/0x140 [ 378.952499] ? fput+0xb/0x140 [ 378.955618] ? do_syscall_64+0x4c/0x640 [ 378.959604] ? do_sys_open+0x3f0/0x3f0 [ 378.963632] do_syscall_64+0x1d5/0x640 [ 378.967542] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 378.972740] RIP: 0033:0x416621 [ 378.975932] RSP: 002b:00007f29c1d16a60 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 378.983650] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 0000000000416621 [ 378.990932] RDX: 00007f29c1d16b0a RSI: 0000000000000002 RDI: 00007f29c1d16b00 [ 378.998217] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 379.005613] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000003 [ 379.012902] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:10 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r1, 0x81e6c000) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000340)) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) write(r2, &(0x7f0000000380)="cd8db2e464b41d74bcdf5fe0333770186cf583aaf9879d4ec86003e7db62427fce915113769a905bc3eee23304f809b24ceb238eb0d41a3298bb3e81b2bc9e7a19cbd720738b8caa9ee580b8c1d5175ad4e065c8f9d911983a50d8da9b2153c435b41502d55a53b078bf3516873e81d5d99a935094fd4ce0e59d3d47421cf343f08315a6db6b545ad5b71fcb495609eac167740b447527a9c0e4904c2277f59316bb46258c3671a67fec15b1fcec7958273916484fc3ebdfcf6edb84ae437b121f89995604327165bddc6e691e344d03f86caf469e3cc3e2d9aafb43657bd9ebc8e2", 0xe2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205649, &(0x7f00000000c0)={0xa20000, 0x1, 0xcb, r1, 0x0, &(0x7f0000000080)={0x9c090c, 0x9ba4, [], @value64=0x3}}) openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x200000, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000480)={{{@in6=@loopback, @in6=@mcast1}}, {{@in6=@dev}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f0000000240)=0xe8) 16:45:10 executing program 4 (fault-call:0 fault-nth:11): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 379.209299] FAULT_INJECTION: forcing a failure. [ 379.209299] name failslab, interval 1, probability 0, space 0, times 0 [ 379.242837] CPU: 0 PID: 21217 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 379.250758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.260112] Call Trace: [ 379.262704] dump_stack+0x13e/0x194 [ 379.266336] should_fail.cold+0x10a/0x14b [ 379.270496] ? loop_get_status64+0x100/0x100 [ 379.274989] should_failslab+0xd6/0x130 [ 379.278959] kmem_cache_alloc_trace+0x2db/0x7b0 [ 379.283629] ? __lockdep_init_map+0x100/0x560 [ 379.288119] ? __lockdep_init_map+0x100/0x560 [ 379.292617] ? loop_get_status64+0x100/0x100 [ 379.297017] __kthread_create_on_node+0xbe/0x3a0 [ 379.301768] ? kthread_park+0x130/0x130 [ 379.305795] ? save_trace+0x290/0x290 [ 379.309591] ? __mutex_lock+0x36a/0x1470 [ 379.313650] ? __fget+0x201/0x360 [ 379.317216] ? loop_get_status64+0x100/0x100 [ 379.321634] kthread_create_on_node+0xa8/0xd0 [ 379.326140] ? __kthread_create_on_node+0x3a0/0x3a0 [ 379.331333] ? __lockdep_init_map+0x100/0x560 [ 379.335897] ? __lockdep_init_map+0x100/0x560 [ 379.340447] lo_ioctl+0xcb2/0x1c40 [ 379.343991] ? loop_probe+0x160/0x160 [ 379.347786] blkdev_ioctl+0x91d/0x17d0 [ 379.351713] ? blkpg_ioctl+0x8e0/0x8e0 [ 379.355598] ? trace_hardirqs_on+0x10/0x10 [ 379.359837] block_ioctl+0xd9/0x120 [ 379.363463] ? blkdev_fallocate+0x3a0/0x3a0 [ 379.367780] do_vfs_ioctl+0x75a/0xfe0 [ 379.371572] ? selinux_file_mprotect+0x5c0/0x5c0 [ 379.376321] ? ioctl_preallocate+0x1a0/0x1a0 [ 379.380730] ? security_file_ioctl+0x76/0xb0 [ 379.385169] ? security_file_ioctl+0x83/0xb0 [ 379.389660] SyS_ioctl+0x7f/0xb0 [ 379.393020] ? do_vfs_ioctl+0xfe0/0xfe0 [ 379.396988] do_syscall_64+0x1d5/0x640 [ 379.400901] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 379.406123] RIP: 0033:0x45c6f7 [ 379.409305] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 379.417003] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 379.424265] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 379.431689] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 379.438964] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 379.446249] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:11 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x3, 0x0) r1 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000128bd7000fcdbdf251d0000001c00238006000c0001040000080014002bffff847b07fe0b64b5ff0817770ac0a094ae918a27447f7d7d48fa92e2c23fb10fb1238c909f13f316ad8428f55d6d414aaf263af04ac80889629e4ea3eab2477287ababbf324fe84944928fe69f83abc3003145dc6f5dd2019227a0e03955fd094ebe0fe14ff34b3f924dda66c23f8376994a80660f645ef91140059ac2512643e14d34ed8f9d6e5b0b8aa1648e1ccb477bc37e5833a2893baee6170f00"/201], 0x30}, 0x1, 0x0, 0x0, 0x24000091}, 0x8080) sendmsg$NL80211_CMD_GET_INTERFACE(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x14, r2, 0x800, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x40040) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000500)={0x9, 0x1700, "aa76725f748764aad10748961677efc3d85b340d2c2a9273", {0x6, 0xfffffe01}, 0x9}) write$FUSE_BMAP(0xffffffffffffffff, &(0x7f00000003c0)={0x18, 0x0, 0x4, {0x5}}, 0x18) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r5 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, r4, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_MESH_CONFIG(r5, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x30, r6, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x401}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff2b}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0x70}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000091}, 0x8080) sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="0002af0000000000000021000000"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x4000) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000280)=0x5) 16:45:11 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SIOCRSACCEPT(r0, 0x89e3) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:11 executing program 4 (fault-call:0 fault-nth:12): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:11 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000000)=0x7ff, 0x8) [ 379.935380] FAULT_INJECTION: forcing a failure. [ 379.935380] name failslab, interval 1, probability 0, space 0, times 0 [ 379.973684] CPU: 1 PID: 21248 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 379.981848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 379.991214] Call Trace: [ 379.993924] dump_stack+0x13e/0x194 [ 379.997673] should_fail.cold+0x10a/0x14b [ 380.001851] ? loop_get_status64+0x100/0x100 [ 380.006637] should_failslab+0xd6/0x130 [ 380.010856] kmem_cache_alloc_trace+0x2db/0x7b0 [ 380.015696] ? __lockdep_init_map+0x100/0x560 [ 380.020214] ? __lockdep_init_map+0x100/0x560 [ 380.024762] ? loop_get_status64+0x100/0x100 [ 380.029316] __kthread_create_on_node+0xbe/0x3a0 [ 380.034094] ? kthread_park+0x130/0x130 [ 380.038082] ? save_trace+0x290/0x290 [ 380.041894] ? __mutex_lock+0x36a/0x1470 [ 380.045975] ? __fget+0x201/0x360 [ 380.049441] ? loop_get_status64+0x100/0x100 [ 380.053862] kthread_create_on_node+0xa8/0xd0 [ 380.058379] ? __kthread_create_on_node+0x3a0/0x3a0 [ 380.063416] ? __lockdep_init_map+0x100/0x560 [ 380.067922] ? __lockdep_init_map+0x100/0x560 [ 380.072450] lo_ioctl+0xcb2/0x1c40 [ 380.076007] ? loop_probe+0x160/0x160 [ 380.079829] blkdev_ioctl+0x91d/0x17d0 [ 380.083726] ? blkpg_ioctl+0x8e0/0x8e0 [ 380.087625] ? trace_hardirqs_on+0x10/0x10 [ 380.091885] block_ioctl+0xd9/0x120 [ 380.095533] ? blkdev_fallocate+0x3a0/0x3a0 [ 380.099866] do_vfs_ioctl+0x75a/0xfe0 [ 380.103685] ? selinux_file_mprotect+0x5c0/0x5c0 [ 380.108453] ? ioctl_preallocate+0x1a0/0x1a0 [ 380.112888] ? security_file_ioctl+0x76/0xb0 [ 380.117507] ? security_file_ioctl+0x83/0xb0 [ 380.122361] SyS_ioctl+0x7f/0xb0 [ 380.125756] ? do_vfs_ioctl+0xfe0/0xfe0 [ 380.129751] do_syscall_64+0x1d5/0x640 [ 380.133662] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 380.138996] RIP: 0033:0x45c6f7 [ 380.142363] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 380.150087] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 380.157612] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 380.164898] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 380.172490] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 380.179944] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:12 executing program 4 (fault-call:0 fault-nth:13): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:12 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x5, 0x8, 0x7, 0x6}, {0x7f, 0x6, 0x2}, {0x7, 0x0, 0x3f, 0x4}]}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x5}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 380.548439] FAULT_INJECTION: forcing a failure. [ 380.548439] name failslab, interval 1, probability 0, space 0, times 0 [ 380.572266] CPU: 0 PID: 21259 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 380.580204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 380.589649] Call Trace: [ 380.592252] dump_stack+0x13e/0x194 [ 380.595901] should_fail.cold+0x10a/0x14b [ 380.600065] should_failslab+0xd6/0x130 [ 380.604046] kmem_cache_alloc+0x2b5/0x770 [ 380.608217] ? save_trace+0x290/0x290 [ 380.612054] __kernfs_new_node+0x6f/0x470 [ 380.616207] kernfs_new_node+0x7b/0xe0 [ 380.620102] kernfs_create_dir_ns+0x3c/0x130 [ 380.624515] internal_create_group+0xea/0x7e0 [ 380.629024] lo_ioctl+0x1123/0x1c40 [ 380.632666] ? loop_probe+0x160/0x160 [ 380.636473] blkdev_ioctl+0x91d/0x17d0 [ 380.640365] ? blkpg_ioctl+0x8e0/0x8e0 [ 380.644263] ? trace_hardirqs_on+0x10/0x10 [ 380.648513] block_ioctl+0xd9/0x120 [ 380.652140] ? blkdev_fallocate+0x3a0/0x3a0 [ 380.656465] do_vfs_ioctl+0x75a/0xfe0 [ 380.660276] ? selinux_file_mprotect+0x5c0/0x5c0 [ 380.665036] ? ioctl_preallocate+0x1a0/0x1a0 [ 380.669465] ? security_file_ioctl+0x76/0xb0 [ 380.673879] ? security_file_ioctl+0x83/0xb0 [ 380.678294] SyS_ioctl+0x7f/0xb0 [ 380.681658] ? do_vfs_ioctl+0xfe0/0xfe0 [ 380.685627] do_syscall_64+0x1d5/0x640 [ 380.689520] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 380.694719] RIP: 0033:0x45c6f7 16:45:12 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001200050700"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e64000000000400040008000a00", @ANYRES32, @ANYBLOB], 0x3c}}, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 380.697900] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 380.705718] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 380.712974] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 380.720239] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 380.727504] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 380.734768] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 380.760971] print_req_error: I/O error, dev loop4, sector 0 [ 380.788733] print_req_error: I/O error, dev loop4, sector 0 [ 380.794559] Buffer I/O error on dev loop4, logical block 0, async page read 16:45:12 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000240)={0x0, 0x1, &(0x7f0000000080)=[0xfffffff9], &(0x7f00000000c0)=[0x9, 0x36fd, 0xfff, 0x0, 0x6], &(0x7f0000000100)=[0x8, 0x7f, 0x4010000, 0x3, 0xfffffffc, 0x5], &(0x7f0000000200)=[0x5, 0x5], 0x0, 0x9}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 380.808004] print_req_error: I/O error, dev loop4, sector 0 [ 380.813847] Buffer I/O error on dev loop4, logical block 0, async page read [ 380.821160] print_req_error: I/O error, dev loop4, sector 0 [ 380.827028] Buffer I/O error on dev loop4, logical block 0, async page read [ 380.837530] print_req_error: I/O error, dev loop4, sector 0 [ 380.843371] Buffer I/O error on dev loop4, logical block 0, async page read [ 380.851697] print_req_error: I/O error, dev loop4, sector 0 [ 380.857950] Buffer I/O error on dev loop4, logical block 0, async page read [ 380.866238] print_req_error: I/O error, dev loop4, sector 0 [ 380.872049] Buffer I/O error on dev loop4, logical block 0, async page read [ 380.880316] print_req_error: I/O error, dev loop4, sector 24 [ 380.886342] Buffer I/O error on dev loop4, logical block 3, async page read 16:45:12 executing program 4 (fault-call:0 fault-nth:14): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 381.069001] FAULT_INJECTION: forcing a failure. [ 381.069001] name failslab, interval 1, probability 0, space 0, times 0 [ 381.094041] CPU: 1 PID: 21290 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 381.101957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.111317] Call Trace: [ 381.113916] dump_stack+0x13e/0x194 [ 381.117562] should_fail.cold+0x10a/0x14b [ 381.121733] should_failslab+0xd6/0x130 [ 381.125714] kmem_cache_alloc+0x2b5/0x770 [ 381.129718] Buffer I/O error on dev loop4, logical block 0, async page read [ 381.129871] ? __mutex_unlock_slowpath+0x268/0x780 [ 381.137249] Buffer I/O error on dev loop4, logical block 0, async page read [ 381.141874] __kernfs_new_node+0x6f/0x470 [ 381.141888] kernfs_new_node+0x7b/0xe0 [ 381.152840] Buffer I/O error on dev loop4, logical block 0, async page read [ 381.153124] __kernfs_create_file+0x3d/0x319 16:45:12 executing program 2: r0 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_sctp_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000440)=0xa45c, 0x4) openat$vhci(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhci\x00', 0x40880) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x8) keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000080)={r0, 0xaf, 0xe1}, &(0x7f00000000c0)=ANY=[@ANYBLOB="656e633d706b637331207617d3ae5a6e9a9d9252eb31eaf900010000683d7368613235362d67656e657269630000000000000000000000000019000000000000000000000000000000000000008eda"], &(0x7f0000000200)="53b60c581a57e04951bf13f1a1fa1bb6a704197e9db651cffe9ee360410f3a8a4aedbb9aa9af2646b949bead623b30ce3e155631b31c27d841957bad13511ba517cdff3eec771acc69730a4619464c705bb5750a333e1d2b417890dabdef29e7d5254448e19309e9643ac1e2d136475b416de91cf254f78d61248f5176afefc13f760a546878f361f4b20ca1ccc2bbd76987a677793cc5c7d990a64ca9d42dc7b0e2c899979c1affdcf633f070deee", &(0x7f00000002c0)=""/225) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000400)={0x8}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 381.168502] sysfs_add_file_mode_ns+0x1e1/0x450 [ 381.173178] internal_create_group+0x23b/0x7e0 [ 381.177770] lo_ioctl+0x1123/0x1c40 [ 381.181406] ? loop_probe+0x160/0x160 [ 381.185207] blkdev_ioctl+0x91d/0x17d0 [ 381.189093] ? blkpg_ioctl+0x8e0/0x8e0 [ 381.192980] ? trace_hardirqs_on+0x10/0x10 [ 381.197228] block_ioctl+0xd9/0x120 [ 381.200855] ? blkdev_fallocate+0x3a0/0x3a0 [ 381.205180] do_vfs_ioctl+0x75a/0xfe0 [ 381.208991] ? selinux_file_mprotect+0x5c0/0x5c0 [ 381.213766] ? ioctl_preallocate+0x1a0/0x1a0 [ 381.218196] ? security_file_ioctl+0x76/0xb0 [ 381.222609] ? security_file_ioctl+0x83/0xb0 [ 381.227025] SyS_ioctl+0x7f/0xb0 [ 381.230388] ? do_vfs_ioctl+0xfe0/0xfe0 [ 381.234363] do_syscall_64+0x1d5/0x640 [ 381.238259] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 381.243446] RIP: 0033:0x45c6f7 [ 381.246636] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 381.254348] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 381.261616] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 381.268912] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 381.276180] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 381.283444] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:13 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3f7, 0x800, 0x70bd2c, 0x25dfdbfe, {0x7, 0x7, './file0', './file0'}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TCGETX(r1, 0x5432, &(0x7f0000000080)) 16:45:13 executing program 4 (fault-call:0 fault-nth:15): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 381.553483] FAULT_INJECTION: forcing a failure. [ 381.553483] name failslab, interval 1, probability 0, space 0, times 0 [ 381.587698] CPU: 0 PID: 21312 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 381.595617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 381.604976] Call Trace: [ 381.607591] dump_stack+0x13e/0x194 [ 381.611239] should_fail.cold+0x10a/0x14b [ 381.615397] should_failslab+0xd6/0x130 [ 381.619382] kmem_cache_alloc+0x2b5/0x770 [ 381.623537] ? lock_downgrade+0x6e0/0x6e0 [ 381.627703] __kernfs_new_node+0x6f/0x470 [ 381.631855] kernfs_new_node+0x7b/0xe0 [ 381.635779] __kernfs_create_file+0x3d/0x319 [ 381.640223] sysfs_add_file_mode_ns+0x1e1/0x450 [ 381.644902] internal_create_group+0x23b/0x7e0 [ 381.650190] lo_ioctl+0x1123/0x1c40 [ 381.653826] ? loop_probe+0x160/0x160 [ 381.657636] blkdev_ioctl+0x91d/0x17d0 [ 381.661529] ? blkpg_ioctl+0x8e0/0x8e0 [ 381.665438] ? trace_hardirqs_on+0x10/0x10 [ 381.669688] block_ioctl+0xd9/0x120 [ 381.673315] ? blkdev_fallocate+0x3a0/0x3a0 [ 381.677644] do_vfs_ioctl+0x75a/0xfe0 [ 381.681454] ? selinux_file_mprotect+0x5c0/0x5c0 [ 381.686223] ? ioctl_preallocate+0x1a0/0x1a0 [ 381.690652] ? security_file_ioctl+0x76/0xb0 [ 381.695067] ? security_file_ioctl+0x83/0xb0 [ 381.699486] SyS_ioctl+0x7f/0xb0 [ 381.702855] ? do_vfs_ioctl+0xfe0/0xfe0 [ 381.706838] do_syscall_64+0x1d5/0x640 [ 381.710740] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 381.715938] RIP: 0033:0x45c6f7 [ 381.719125] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 381.726840] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 381.734110] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 381.741382] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 381.748650] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 381.755922] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:13 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = accept$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, &(0x7f00000000c0)=0x1c) getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f0000000100)={@private2}, &(0x7f0000000200)=0x14) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:13 executing program 4 (fault-call:0 fault-nth:16): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 381.979493] FAULT_INJECTION: forcing a failure. [ 381.979493] name failslab, interval 1, probability 0, space 0, times 0 [ 382.016839] CPU: 0 PID: 21331 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 382.024755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.034112] Call Trace: [ 382.036706] dump_stack+0x13e/0x194 [ 382.040344] should_fail.cold+0x10a/0x14b [ 382.044552] should_failslab+0xd6/0x130 [ 382.048531] kmem_cache_alloc+0x2b5/0x770 [ 382.052686] ? __mutex_unlock_slowpath+0x75/0x780 [ 382.057535] __kernfs_new_node+0x6f/0x470 [ 382.061689] kernfs_new_node+0x7b/0xe0 [ 382.065580] __kernfs_create_file+0x3d/0x319 [ 382.069995] sysfs_add_file_mode_ns+0x1e1/0x450 [ 382.074674] internal_create_group+0x23b/0x7e0 [ 382.079267] lo_ioctl+0x1123/0x1c40 [ 382.082916] ? loop_probe+0x160/0x160 [ 382.086725] blkdev_ioctl+0x91d/0x17d0 [ 382.091571] ? blkpg_ioctl+0x8e0/0x8e0 [ 382.095463] ? trace_hardirqs_on+0x10/0x10 [ 382.099709] block_ioctl+0xd9/0x120 [ 382.103334] ? blkdev_fallocate+0x3a0/0x3a0 [ 382.107661] do_vfs_ioctl+0x75a/0xfe0 [ 382.111464] ? selinux_file_mprotect+0x5c0/0x5c0 [ 382.116225] ? ioctl_preallocate+0x1a0/0x1a0 [ 382.120654] ? security_file_ioctl+0x76/0xb0 [ 382.125061] ? security_file_ioctl+0x83/0xb0 [ 382.129473] SyS_ioctl+0x7f/0xb0 [ 382.132845] ? do_vfs_ioctl+0xfe0/0xfe0 [ 382.136817] do_syscall_64+0x1d5/0x640 [ 382.140705] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 382.145914] RIP: 0033:0x45c6f7 [ 382.149100] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 382.156807] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 382.164072] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 382.171339] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a 16:45:13 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0xfffffffffffffff5, 0x10000}], 0x0, 0x0) [ 382.178607] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 382.185875] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:13 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) write$FUSE_DIRENT(r0, &(0x7f0000000200)={0x148, 0xffffffffffffffda, 0x2, [{0x2, 0x7fff, 0x6, 0x3, 'btrfs\x00'}, {0x2, 0x100, 0x6, 0xdb, 'btrfs\x00'}, {0x4, 0xff, 0x9, 0x6, 'ppp1wlan0'}, {0x6, 0x10000, 0x6, 0xfffffff9, 'btrfs\x00'}, {0x1, 0x9de, 0x6, 0x7fff, 'btrfs\x00'}, {0x0, 0x8, 0x14, 0x9, './bdevtrustedkeyring'}, {0x5, 0x87, 0x21, 0x6, 'nodevselfposix_acl_access\\vmnet0*'}, {0x5, 0x1, 0x6, 0x101, 'btrfs\x00'}]}, 0x148) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:14 executing program 4 (fault-call:0 fault-nth:17): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 382.507427] FAULT_INJECTION: forcing a failure. [ 382.507427] name failslab, interval 1, probability 0, space 0, times 0 [ 382.534768] CPU: 0 PID: 21355 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 382.542777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.552131] Call Trace: [ 382.554733] dump_stack+0x13e/0x194 [ 382.558375] should_fail.cold+0x10a/0x14b [ 382.562536] should_failslab+0xd6/0x130 [ 382.566519] kmem_cache_alloc+0x2b5/0x770 [ 382.570698] ? __mutex_unlock_slowpath+0x75/0x780 [ 382.575549] __kernfs_new_node+0x6f/0x470 [ 382.579711] kernfs_new_node+0x7b/0xe0 [ 382.583602] __kernfs_create_file+0x3d/0x319 [ 382.588020] sysfs_add_file_mode_ns+0x1e1/0x450 [ 382.592697] internal_create_group+0x23b/0x7e0 [ 382.597291] lo_ioctl+0x1123/0x1c40 [ 382.600921] ? loop_probe+0x160/0x160 [ 382.604729] blkdev_ioctl+0x91d/0x17d0 [ 382.608617] ? blkpg_ioctl+0x8e0/0x8e0 [ 382.612515] ? trace_hardirqs_on+0x10/0x10 [ 382.616762] block_ioctl+0xd9/0x120 [ 382.620387] ? blkdev_fallocate+0x3a0/0x3a0 [ 382.624713] do_vfs_ioctl+0x75a/0xfe0 [ 382.628518] ? selinux_file_mprotect+0x5c0/0x5c0 [ 382.633279] ? ioctl_preallocate+0x1a0/0x1a0 [ 382.637694] ? security_file_ioctl+0x76/0xb0 [ 382.642105] ? security_file_ioctl+0x83/0xb0 [ 382.646514] SyS_ioctl+0x7f/0xb0 [ 382.649877] ? do_vfs_ioctl+0xfe0/0xfe0 [ 382.653859] do_syscall_64+0x1d5/0x640 [ 382.657754] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 382.662940] RIP: 0033:0x45c6f7 [ 382.666124] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 382.673832] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 382.681100] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 382.688887] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 382.696157] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 382.703424] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:14 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000200)={0x6}) llistxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=""/71, 0x47) 16:45:14 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000080)={0x7, 0x2, 'client1\x00', 0x80000001, "b54f622b74c39213", "3a8d567b019e22d8cf028eede548e87e122eabe4a38fb421f31802af80ae9041", 0x19, 0x9}) [ 382.821153] print_req_error: 25 callbacks suppressed [ 382.821159] print_req_error: I/O error, dev loop5, sector 0 16:45:14 executing program 4 (fault-call:0 fault-nth:18): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 382.918436] FAULT_INJECTION: forcing a failure. [ 382.918436] name failslab, interval 1, probability 0, space 0, times 0 [ 382.941760] CPU: 0 PID: 21379 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 382.949667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 382.959215] Call Trace: [ 382.964941] dump_stack+0x13e/0x194 [ 382.968582] should_fail.cold+0x10a/0x14b [ 382.972739] should_failslab+0xd6/0x130 [ 382.976729] kmem_cache_alloc+0x2b5/0x770 [ 382.980884] ? __mutex_unlock_slowpath+0x75/0x780 [ 382.985740] __kernfs_new_node+0x6f/0x470 [ 382.990003] kernfs_new_node+0x7b/0xe0 [ 382.993901] __kernfs_create_file+0x3d/0x319 [ 382.998325] sysfs_add_file_mode_ns+0x1e1/0x450 [ 383.002994] internal_create_group+0x23b/0x7e0 [ 383.007586] lo_ioctl+0x1123/0x1c40 [ 383.011220] ? loop_probe+0x160/0x160 [ 383.015023] blkdev_ioctl+0x91d/0x17d0 [ 383.018920] ? blkpg_ioctl+0x8e0/0x8e0 [ 383.022823] ? trace_hardirqs_on+0x10/0x10 [ 383.027079] block_ioctl+0xd9/0x120 [ 383.030707] ? blkdev_fallocate+0x3a0/0x3a0 [ 383.035033] do_vfs_ioctl+0x75a/0xfe0 [ 383.038844] ? selinux_file_mprotect+0x5c0/0x5c0 [ 383.043607] ? ioctl_preallocate+0x1a0/0x1a0 [ 383.048034] ? security_file_ioctl+0x76/0xb0 [ 383.052445] ? security_file_ioctl+0x83/0xb0 [ 383.056860] SyS_ioctl+0x7f/0xb0 [ 383.060231] ? do_vfs_ioctl+0xfe0/0xfe0 [ 383.064212] do_syscall_64+0x1d5/0x640 [ 383.068107] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 383.073296] RIP: 0033:0x45c6f7 [ 383.076480] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.084189] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 383.091456] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 383.098725] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 383.105995] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 383.113262] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 383.162526] print_req_error: I/O error, dev loop2, sector 128 16:45:14 executing program 4 (fault-call:0 fault-nth:19): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:14 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, &(0x7f0000000080)=""/50, &(0x7f0000000200)=""/225, &(0x7f0000000300)=""/171, 0xd000}) [ 383.280149] FAULT_INJECTION: forcing a failure. [ 383.280149] name failslab, interval 1, probability 0, space 0, times 0 [ 383.297421] print_req_error: I/O error, dev loop4, sector 0 [ 383.316294] print_req_error: I/O error, dev loop4, sector 0 [ 383.322427] print_req_error: I/O error, dev loop4, sector 0 [ 383.328250] print_req_error: I/O error, dev loop4, sector 0 [ 383.338101] print_req_error: I/O error, dev loop4, sector 0 [ 383.344005] print_req_error: I/O error, dev loop4, sector 0 [ 383.349825] print_req_error: I/O error, dev loop4, sector 0 [ 383.356480] print_req_error: I/O error, dev loop4, sector 24 [ 383.366555] CPU: 0 PID: 21395 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 383.374452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.383807] Call Trace: [ 383.386409] dump_stack+0x13e/0x194 [ 383.390061] should_fail.cold+0x10a/0x14b [ 383.394222] should_failslab+0xd6/0x130 [ 383.398199] kmem_cache_alloc+0x2b5/0x770 [ 383.402355] ? __mutex_unlock_slowpath+0x75/0x780 [ 383.407208] __kernfs_new_node+0x6f/0x470 [ 383.411369] kernfs_new_node+0x7b/0xe0 [ 383.415269] __kernfs_create_file+0x3d/0x319 [ 383.419682] sysfs_add_file_mode_ns+0x1e1/0x450 [ 383.424355] internal_create_group+0x23b/0x7e0 [ 383.428947] lo_ioctl+0x1123/0x1c40 [ 383.432579] ? loop_probe+0x160/0x160 [ 383.436380] blkdev_ioctl+0x91d/0x17d0 [ 383.440268] ? blkpg_ioctl+0x8e0/0x8e0 [ 383.444169] ? trace_hardirqs_on+0x10/0x10 [ 383.448415] block_ioctl+0xd9/0x120 [ 383.452038] ? blkdev_fallocate+0x3a0/0x3a0 [ 383.456374] do_vfs_ioctl+0x75a/0xfe0 [ 383.460179] ? selinux_file_mprotect+0x5c0/0x5c0 [ 383.464941] ? ioctl_preallocate+0x1a0/0x1a0 [ 383.469360] ? security_file_ioctl+0x76/0xb0 [ 383.473766] ? security_file_ioctl+0x83/0xb0 [ 383.478288] SyS_ioctl+0x7f/0xb0 [ 383.481657] ? do_vfs_ioctl+0xfe0/0xfe0 [ 383.485639] do_syscall_64+0x1d5/0x640 [ 383.489538] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 383.494729] RIP: 0033:0x45c6f7 [ 383.497913] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.505621] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 383.512887] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 383.520159] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 383.527423] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 383.534870] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:15 executing program 4 (fault-call:0 fault-nth:20): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:15 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x280400, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x18000, 0x0) [ 383.705593] FAULT_INJECTION: forcing a failure. [ 383.705593] name failslab, interval 1, probability 0, space 0, times 0 [ 383.748190] CPU: 1 PID: 21416 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 383.756105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 383.765461] Call Trace: [ 383.768056] dump_stack+0x13e/0x194 [ 383.771703] should_fail.cold+0x10a/0x14b [ 383.775953] should_failslab+0xd6/0x130 [ 383.779935] kmem_cache_alloc+0x2b5/0x770 [ 383.784099] ? __mutex_unlock_slowpath+0x75/0x780 [ 383.788949] __kernfs_new_node+0x6f/0x470 [ 383.793104] kernfs_new_node+0x7b/0xe0 [ 383.797001] __kernfs_create_file+0x3d/0x319 [ 383.801411] sysfs_add_file_mode_ns+0x1e1/0x450 [ 383.806089] internal_create_group+0x23b/0x7e0 [ 383.810676] lo_ioctl+0x1123/0x1c40 [ 383.814314] ? loop_probe+0x160/0x160 [ 383.818117] blkdev_ioctl+0x91d/0x17d0 [ 383.822005] ? blkpg_ioctl+0x8e0/0x8e0 [ 383.825902] ? trace_hardirqs_on+0x10/0x10 [ 383.830151] block_ioctl+0xd9/0x120 [ 383.833783] ? blkdev_fallocate+0x3a0/0x3a0 [ 383.838111] do_vfs_ioctl+0x75a/0xfe0 [ 383.841919] ? selinux_file_mprotect+0x5c0/0x5c0 [ 383.846678] ? ioctl_preallocate+0x1a0/0x1a0 [ 383.851109] ? security_file_ioctl+0x76/0xb0 [ 383.855521] ? security_file_ioctl+0x83/0xb0 [ 383.859932] SyS_ioctl+0x7f/0xb0 [ 383.863316] ? do_vfs_ioctl+0xfe0/0xfe0 [ 383.867299] do_syscall_64+0x1d5/0x640 [ 383.871201] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 383.876396] RIP: 0033:0x45c6f7 [ 383.879588] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.887295] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 16:45:15 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000040)="42cbaf5e8b173dbcabc6903ad14b79d19422c7873e7b406c3ee964f1b981e976e70f3e22b283d2d119b1b08a9f7702686eb44acb62bcfe2e1837e2d9f8cf7591181da0055fe08aa755256830e285a3622d02ab561a4c962c33e609b81c77f1048403ec3f9e6d9ad9d3c2bf4bcbd8882e54a4f0fc9182fd4466f2ac200f", 0x7d, 0x2}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r0, 0xc058534b, &(0x7f0000000100)={0x1ff, 0x7f, 0x400, 0x5, 0x8, 0x3}) [ 383.894560] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 383.901825] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 383.909094] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 383.916365] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:15 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x82b400, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x7fff, 0x400) r2 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x7fff, 0x191402) r3 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) r4 = dup3(r2, r3, 0x80000) write$midi(r4, &(0x7f0000000240)="db77b7ab185671b3b375212a6675749ea6fa30f3b93bcfd248d0e46c8fb89d3288b38a3c5fa05feaa8f56e9de8f927cd7e578534589c3028a7c95aae3b014ff34bb4ad0f904294576c42f364318d857dc260973765803cb88714b8471304eeec62f9720a3f875ad4", 0x68) ioctl$KDDELIO(r1, 0x4b35, 0x82cc) openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VT_WAITACTIVE(r5, 0x5607) setxattr$security_capability(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.capability\x00', &(0x7f0000000200)=@v2={0x2000000, [{0x401, 0x5}, {0x9, 0x101}]}, 0x14, 0x2) 16:45:15 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, @in={{0x2, 0x4e24, @loopback}}}}, 0x0) r1 = socket$kcm(0x10, 0x3, 0x0) sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="23000000420081aee405e9a4000000000000c6ff07d800400300"/35, 0x23}], 0x1}, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$kcm(r1, &(0x7f0000001740)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)=""/101, 0x65}], 0x1}, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000019c0)='/dev/sequencer\x00', 0x1, 0x0) write$sndseq(r2, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}], 0xff33) recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002ec0)=""/130, 0x82}, {&(0x7f0000000200)=""/178, 0xb2}, {&(0x7f00000002c0)=""/188, 0xbc}], 0x3}, 0x1000}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)=""/158, 0x9e}, {&(0x7f0000000140)=""/115, 0x73}, {&(0x7f0000000440)=""/20, 0x14}, {&(0x7f0000000480)=""/251, 0xfb}, {&(0x7f0000000580)=""/133, 0x85}], 0x5, &(0x7f00000006c0)=""/3, 0x3}, 0xc57}, {{&(0x7f0000000700)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000002940)=[{&(0x7f0000000780)}, {&(0x7f00000007c0)=""/198, 0xc6}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000001900)=""/33, 0x21}, {&(0x7f0000001940)=""/4096, 0x1000}], 0x5, &(0x7f00000029c0)=""/234, 0xea}, 0x80000001}, {{&(0x7f0000002ac0)=@sco, 0x80, &(0x7f0000002c80)=[{&(0x7f0000002b40)=""/114, 0x72}, {&(0x7f0000002bc0)=""/134, 0x86}, {&(0x7f0000003d00)=""/4096, 0x1000}], 0x3, &(0x7f0000002cc0)=""/161, 0xa1}, 0x8}], 0x5, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x40, @local, 0x100}, 0x1c) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x6, 0x2, 0x3, 0x2, 0xa0, 0x4}, &(0x7f0000000100)=0x20) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:15 executing program 4 (fault-call:0 fault-nth:21): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 384.427899] FAULT_INJECTION: forcing a failure. [ 384.427899] name failslab, interval 1, probability 0, space 0, times 0 [ 384.456564] CPU: 0 PID: 21456 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 384.464478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 384.473837] Call Trace: [ 384.476442] dump_stack+0x13e/0x194 [ 384.480089] should_fail.cold+0x10a/0x14b [ 384.484252] should_failslab+0xd6/0x130 [ 384.488235] kmem_cache_alloc_trace+0x2db/0x7b0 [ 384.492907] ? __kernfs_create_file+0x285/0x319 [ 384.497582] ? kernfs_put+0x24/0x480 [ 384.501301] ? sysfs_add_file_mode_ns+0x1e1/0x450 [ 384.506217] ? devm_device_remove_groups+0x50/0x50 [ 384.511154] kobject_uevent_env+0x1fa/0xc50 [ 384.515490] lo_ioctl+0x1192/0x1c40 [ 384.519127] ? loop_probe+0x160/0x160 [ 384.522930] blkdev_ioctl+0x91d/0x17d0 [ 384.526822] ? blkpg_ioctl+0x8e0/0x8e0 [ 384.530713] ? trace_hardirqs_on+0x10/0x10 [ 384.534987] block_ioctl+0xd9/0x120 [ 384.538619] ? blkdev_fallocate+0x3a0/0x3a0 [ 384.542948] do_vfs_ioctl+0x75a/0xfe0 [ 384.546754] ? selinux_file_mprotect+0x5c0/0x5c0 [ 384.551517] ? ioctl_preallocate+0x1a0/0x1a0 [ 384.555953] ? security_file_ioctl+0x76/0xb0 [ 384.560365] ? security_file_ioctl+0x83/0xb0 [ 384.565131] SyS_ioctl+0x7f/0xb0 [ 384.568504] ? do_vfs_ioctl+0xfe0/0xfe0 [ 384.572486] do_syscall_64+0x1d5/0x640 [ 384.576384] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 384.581575] RIP: 0033:0x45c6f7 [ 384.584764] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.592473] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 384.599740] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 384.607535] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 384.614807] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 384.622077] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:16 executing program 4 (fault-call:0 fault-nth:22): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 384.795120] FAULT_INJECTION: forcing a failure. [ 384.795120] name failslab, interval 1, probability 0, space 0, times 0 [ 384.827292] CPU: 0 PID: 21464 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 384.835204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 384.844564] Call Trace: [ 384.847164] dump_stack+0x13e/0x194 [ 384.850810] should_fail.cold+0x10a/0x14b [ 384.854970] should_failslab+0xd6/0x130 [ 384.858954] __kmalloc+0x2e9/0x7c0 [ 384.862497] ? kobject_get_path+0xb0/0x180 [ 384.866735] ? kobject_uevent_env+0x1fa/0xc50 [ 384.871236] ? rcu_read_lock_sched_held+0x10a/0x130 [ 384.876254] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 384.881101] kobject_get_path+0xb0/0x180 [ 384.885166] kobject_uevent_env+0x21e/0xc50 [ 384.889498] lo_ioctl+0x1192/0x1c40 [ 384.893129] ? loop_probe+0x160/0x160 [ 384.897107] blkdev_ioctl+0x91d/0x17d0 [ 384.901000] ? blkpg_ioctl+0x8e0/0x8e0 [ 384.904890] ? trace_hardirqs_on+0x10/0x10 [ 384.909145] block_ioctl+0xd9/0x120 [ 384.912771] ? blkdev_fallocate+0x3a0/0x3a0 [ 384.917096] do_vfs_ioctl+0x75a/0xfe0 [ 384.920898] ? selinux_file_mprotect+0x5c0/0x5c0 [ 384.925671] ? ioctl_preallocate+0x1a0/0x1a0 [ 384.930099] ? security_file_ioctl+0x76/0xb0 [ 384.934509] ? security_file_ioctl+0x83/0xb0 [ 384.939006] SyS_ioctl+0x7f/0xb0 [ 384.942401] ? do_vfs_ioctl+0xfe0/0xfe0 [ 384.946386] do_syscall_64+0x1d5/0x640 [ 384.950291] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 384.955483] RIP: 0033:0x45c6f7 [ 384.958676] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.966390] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 384.973686] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 384.980955] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 384.988225] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 384.995580] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:16 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_getaffinity(r0, 0x8, &(0x7f0000000200)) newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0) 16:45:16 executing program 4 (fault-call:0 fault-nth:23): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:16 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x8000, 0x0) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f00000000c0)=0x400) [ 385.239875] FAULT_INJECTION: forcing a failure. [ 385.239875] name failslab, interval 1, probability 0, space 0, times 0 [ 385.264330] CPU: 0 PID: 21489 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 385.272228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.281585] Call Trace: [ 385.284179] dump_stack+0x13e/0x194 [ 385.287818] should_fail.cold+0x10a/0x14b [ 385.291975] should_failslab+0xd6/0x130 [ 385.296004] kmem_cache_alloc_node+0x288/0x7a0 [ 385.300748] ? netlink_has_listeners+0x1d8/0x310 [ 385.305522] __alloc_skb+0x9a/0x4c0 [ 385.309156] ? skb_trim+0x160/0x160 [ 385.312791] ? netlink_has_listeners+0x1ff/0x310 [ 385.317557] kobject_uevent_env+0x6d1/0xc50 [ 385.321893] lo_ioctl+0x1192/0x1c40 [ 385.325524] ? loop_probe+0x160/0x160 [ 385.329326] blkdev_ioctl+0x91d/0x17d0 [ 385.333216] ? blkpg_ioctl+0x8e0/0x8e0 [ 385.337104] ? trace_hardirqs_on+0x10/0x10 [ 385.341351] block_ioctl+0xd9/0x120 [ 385.344986] ? blkdev_fallocate+0x3a0/0x3a0 [ 385.349322] do_vfs_ioctl+0x75a/0xfe0 [ 385.353124] ? selinux_file_mprotect+0x5c0/0x5c0 [ 385.357986] ? ioctl_preallocate+0x1a0/0x1a0 [ 385.362505] ? security_file_ioctl+0x76/0xb0 [ 385.367358] ? security_file_ioctl+0x83/0xb0 [ 385.371774] SyS_ioctl+0x7f/0xb0 [ 385.375142] ? do_vfs_ioctl+0xfe0/0xfe0 [ 385.379122] do_syscall_64+0x1d5/0x640 [ 385.383022] entry_SYSCALL_64_after_hwframe+0x42/0xb7 16:45:16 executing program 5: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r3, 0x1}, 0x1c}}, 0x0) sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r3, 0x200, 0x70bd2d, 0x25dfdbfc, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f00000000c0), &(0x7f0000000100)=0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:17 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) write(r0, &(0x7f0000000080)="962d93139ff5578a38549b33d937dde6ab00a999bdb8b10b0d3e9b5b5b616028e541efdaaebe783ef4759e2fd8adb1f80f060b87fb9dbba3c51dff3e62dc24ea70f4aad38f3b2c4f78e8fede5935840f2bc7135f5a4ccc626d96e8a71f40ad9867243a1400b882bae80b08f683ec00d0e4c2f56859ed0daaf14d1038fbe186f2bd663928ddd5ab406854d857dbcf40b3835a0f84a88635fd10805dcd5de0f7d2c0a9fbb4191201df5718b66b22e744fb", 0xb0) syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000340)="8da4363ac0ed02000a0000000001004d010000000200000000007a0000000000ffe5f2a2299748aeb81e1b00b10efd9a000001000000000001ffff13320000005f42485266535f4d9d7c754a3c83fdc7b771e64fcfa57812ca7ab91298101b3dd686de336d7b7b3cf13e212e8f3c1a29bcb52f7958b5b2eb928abeb257939d27a1338f24783c44cd1d48d4f829f7ce2b336858e67176e94c8a5e8756a21a23adbce4d5563ba110b9a2b5d63901a6a57dc79a", 0xfffffffffffffffa, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 385.388210] RIP: 0033:0x45c6f7 [ 385.391395] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 385.399197] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 385.406472] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 385.413750] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 385.421031] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 385.428305] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:17 executing program 4 (fault-call:0 fault-nth:24): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 385.684145] FAULT_INJECTION: forcing a failure. [ 385.684145] name failslab, interval 1, probability 0, space 0, times 0 [ 385.726887] CPU: 0 PID: 21515 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 385.734804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 385.744156] Call Trace: [ 385.746755] dump_stack+0x13e/0x194 [ 385.750392] should_fail.cold+0x10a/0x14b [ 385.754549] should_failslab+0xd6/0x130 [ 385.758530] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 385.763640] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 385.769094] ? __alloc_skb+0x9a/0x4c0 [ 385.772898] __kmalloc_node_track_caller+0x38/0x70 [ 385.777833] __kmalloc_reserve.isra.0+0x35/0xd0 [ 385.782506] __alloc_skb+0xca/0x4c0 [ 385.786136] ? skb_trim+0x160/0x160 [ 385.789771] ? netlink_has_listeners+0x1ff/0x310 [ 385.794528] kobject_uevent_env+0x6d1/0xc50 [ 385.798918] lo_ioctl+0x1192/0x1c40 [ 385.802587] ? loop_probe+0x160/0x160 [ 385.806393] blkdev_ioctl+0x91d/0x17d0 [ 385.810282] ? blkpg_ioctl+0x8e0/0x8e0 [ 385.814168] ? trace_hardirqs_on+0x10/0x10 [ 385.818412] block_ioctl+0xd9/0x120 [ 385.822037] ? blkdev_fallocate+0x3a0/0x3a0 [ 385.826366] do_vfs_ioctl+0x75a/0xfe0 [ 385.830166] ? selinux_file_mprotect+0x5c0/0x5c0 [ 385.834923] ? ioctl_preallocate+0x1a0/0x1a0 [ 385.839348] ? security_file_ioctl+0x76/0xb0 [ 385.843759] ? security_file_ioctl+0x83/0xb0 [ 385.848169] SyS_ioctl+0x7f/0xb0 [ 385.851533] ? do_vfs_ioctl+0xfe0/0xfe0 [ 385.855508] do_syscall_64+0x1d5/0x640 [ 385.859504] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 385.864690] RIP: 0033:0x45c6f7 [ 385.867875] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 16:45:17 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r1, 0x1707, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x58, r1, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x31}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x800}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20008080}, 0x48004) syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x100) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x14, r4, 0x1707, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000400)={0x144, r4, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x4}, @TIPC_NLA_BEARER={0x98, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfff}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7f}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xaaa}]}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_MEDIA={0x94, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) [ 385.875587] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 385.882854] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 385.890126] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 385.897405] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 385.904674] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:17 executing program 4 (fault-call:0 fault-nth:25): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 386.164656] FAULT_INJECTION: forcing a failure. [ 386.164656] name failslab, interval 1, probability 0, space 0, times 0 [ 386.197152] buffer_io_error: 54 callbacks suppressed [ 386.197159] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.197797] CPU: 0 PID: 21532 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 386.202688] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.209399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.209404] Call Trace: [ 386.209425] dump_stack+0x13e/0x194 [ 386.209443] should_fail.cold+0x10a/0x14b [ 386.209458] should_failslab+0xd6/0x130 [ 386.209474] kmem_cache_alloc_node+0x288/0x7a0 [ 386.218785] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.224450] ? netlink_has_listeners+0x1d8/0x310 [ 386.224472] __alloc_skb+0x9a/0x4c0 [ 386.224483] ? skb_trim+0x160/0x160 [ 386.224492] ? netlink_has_listeners+0x1ff/0x310 [ 386.224504] kobject_uevent_env+0x6d1/0xc50 [ 386.224522] lo_ioctl+0x1192/0x1c40 [ 386.224534] ? loop_probe+0x160/0x160 [ 386.224545] blkdev_ioctl+0x91d/0x17d0 [ 386.224555] ? blkpg_ioctl+0x8e0/0x8e0 [ 386.234233] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.236489] ? trace_hardirqs_on+0x10/0x10 [ 386.236513] block_ioctl+0xd9/0x120 [ 386.236522] ? blkdev_fallocate+0x3a0/0x3a0 [ 386.236533] do_vfs_ioctl+0x75a/0xfe0 [ 386.236545] ? selinux_file_mprotect+0x5c0/0x5c0 [ 386.240495] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.244457] ? ioctl_preallocate+0x1a0/0x1a0 [ 386.244480] ? security_file_ioctl+0x76/0xb0 [ 386.244490] ? security_file_ioctl+0x83/0xb0 [ 386.244501] SyS_ioctl+0x7f/0xb0 [ 386.244509] ? do_vfs_ioctl+0xfe0/0xfe0 [ 386.244522] do_syscall_64+0x1d5/0x640 [ 386.244537] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 386.244545] RIP: 0033:0x45c6f7 [ 386.244549] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 386.244559] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 386.244566] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 386.248695] Buffer I/O error on dev loop4, logical block 0, async page read [ 386.253102] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 386.253107] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 16:45:17 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) vmsplice(r0, &(0x7f00000032c0)=[{&(0x7f0000000080)="700ad5ceb4df83760717bd67f8a886955e562ca686fba425f146e3a238cc95e439775eaf3143b7e2de8cc6446ee71cf7140f6da7aef37c1dff6a9ee6a6659433dc0825047b8c8b2d241652f1d1a7f5ed4c342f260872b593a129f9fe761c766d4f76933c2d303bb8216fd42430be49cc7c034fcaa11c397e83986daac2932fd31bde2ce56df4a90aee39da48709cbab9be", 0x91}, {&(0x7f0000000200)="cf02940f4f103d195081b92f95318ccbf038f517f8f5e110e88b6596fd56ad0887e93ada52859b2c7f95966a43592c6f6668a5e8f4c9f6901cc10224c6de6185a7cb21bdb9d84f82b146c813d447ea4aca15c2c619ea285a27579146e4943171c143e254182c9f6d2d2b09845c85abb940b614852d678b4ef97570c3b345ba939150059390d559a5440df8b8b1229f7170527e66066879ab635a75d335da46b10002b20d649418adf09d502403851d0f622b23e726", 0xb5}, {&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="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", 0x1000}, {&(0x7f00000022c0)="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", 0x1000}], 0x5, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f00000033c0)=0xce11, 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000003400)={0xffffffffffffffff}) getsockname$netlink(r3, &(0x7f0000003340), &(0x7f0000003380)=0xc) 16:45:18 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x4, &(0x7f00000000c0)=[{&(0x7f0000001300)="8da4363ac0ed02000a000000000162699f3c5bbb00004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efdfff60000005f42485266535f4da56734f4b5e435e9921e017b7aff236bdec0d33c553c3a8680e248326c0157c40e3f6f6555c3b547382941e79039b28b5472ed7461760458f89c39063412c936d976e252f7aedca63c636eef518f2431e32cf422a4163e5f35c95fbbca55110d808e62d6f9994c2a0023000000", 0xb0, 0x6}, {&(0x7f0000000200)="6faab541fa32ab47ae44b69bc536101b677697e0a8d87977be295d75e6f6d0ee43a62b81e67e8136790f65cde86cfdee99825402155a23c83ad73c63e093d5e310fb1418d5f6952a4356ddbcfcce6f7669f9ad642882dd048405b658c22383b5127b4c9be0cb9ca8306e2884768ac29129d276c2adec8b2affc14528e01e26fc052dfb0a603c1d373063a43e16907f422c015084e01cbd2871ca3d7973abd2cc12eafdb3dd1cabdd9c1b117679be6857de6b2e74a389780f0d694e1be0fcd0da80263178d982d57f878d39c056c90f1e", 0xd0, 0xffffffffffffffff}, {&(0x7f0000000080)="6114aa0178943843b92abe5b731df1a53995d2dc2ac4", 0x16, 0x8}, {&(0x7f0000000300)="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", 0x1000, 0x2}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000013c0)={&(0x7f0000000140)={0x60, 0x4, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) mmap$dsp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x40010, r0, 0x0) [ 386.253113] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 386.420308] Buffer I/O error on dev loop4, logical block 3, async page read [ 386.497423] Buffer I/O error on dev loop5, logical block 0, async page read 16:45:18 executing program 4 (fault-call:0 fault-nth:26): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 386.622104] FAULT_INJECTION: forcing a failure. [ 386.622104] name failslab, interval 1, probability 0, space 0, times 0 [ 386.655317] CPU: 1 PID: 21554 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 386.663221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 386.672583] Call Trace: [ 386.675182] dump_stack+0x13e/0x194 [ 386.678826] should_fail.cold+0x10a/0x14b [ 386.682987] should_failslab+0xd6/0x130 [ 386.686966] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 386.692075] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 386.697541] ? __alloc_skb+0x9a/0x4c0 [ 386.701358] __kmalloc_node_track_caller+0x38/0x70 [ 386.706292] __kmalloc_reserve.isra.0+0x35/0xd0 [ 386.710972] __alloc_skb+0xca/0x4c0 [ 386.714602] ? skb_trim+0x160/0x160 [ 386.718231] ? netlink_has_listeners+0x1ff/0x310 [ 386.722996] kobject_uevent_env+0x6d1/0xc50 [ 386.727328] lo_ioctl+0x1192/0x1c40 [ 386.730960] ? loop_probe+0x160/0x160 [ 386.734772] blkdev_ioctl+0x91d/0x17d0 [ 386.738659] ? blkpg_ioctl+0x8e0/0x8e0 [ 386.742547] ? trace_hardirqs_on+0x10/0x10 [ 386.746798] block_ioctl+0xd9/0x120 [ 386.750422] ? blkdev_fallocate+0x3a0/0x3a0 [ 386.754749] do_vfs_ioctl+0x75a/0xfe0 [ 386.758557] ? selinux_file_mprotect+0x5c0/0x5c0 [ 386.763316] ? ioctl_preallocate+0x1a0/0x1a0 [ 386.767749] ? security_file_ioctl+0x76/0xb0 [ 386.772166] ? security_file_ioctl+0x83/0xb0 [ 386.776582] SyS_ioctl+0x7f/0xb0 [ 386.779964] ? do_vfs_ioctl+0xfe0/0xfe0 [ 386.784047] do_syscall_64+0x1d5/0x640 [ 386.788120] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 386.793315] RIP: 0033:0x45c6f7 [ 386.796506] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 386.804212] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 386.811481] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 16:45:18 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000200)={0x2, 0x1, 0x4, 0x70000, 0x7f, {r1, r2/1000+10000}, {0x3, 0xe, 0x5, 0x3, 0x7f, 0x50, "062eecca"}, 0x9, 0x2, @planes=&(0x7f00000000c0)={0xfffffffe, 0x800, @userptr=0x8, 0xdd2}, 0x2, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_AGP_RELEASE(r3, 0x6431) syz_init_net_socket$x25(0x9, 0x5, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x800000000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x8000, 0x0) [ 386.818748] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 386.826015] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 386.833383] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:18 executing program 4 (fault-call:0 fault-nth:27): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 387.075520] FAULT_INJECTION: forcing a failure. [ 387.075520] name failslab, interval 1, probability 0, space 0, times 0 [ 387.088896] Buffer I/O error on dev loop4, logical block 0, async page read [ 387.095467] CPU: 1 PID: 21568 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 387.103890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.113253] Call Trace: [ 387.115849] dump_stack+0x13e/0x194 [ 387.119487] should_fail.cold+0x10a/0x14b [ 387.123646] should_failslab+0xd6/0x130 [ 387.127626] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 387.132730] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 387.138187] ? __alloc_skb+0x9a/0x4c0 [ 387.142004] __kmalloc_node_track_caller+0x38/0x70 [ 387.146940] __kmalloc_reserve.isra.0+0x35/0xd0 [ 387.151623] __alloc_skb+0xca/0x4c0 [ 387.155249] ? skb_trim+0x160/0x160 [ 387.158877] ? netlink_has_listeners+0x1ff/0x310 [ 387.163637] kobject_uevent_env+0x6d1/0xc50 [ 387.167973] lo_ioctl+0x1192/0x1c40 [ 387.171611] ? loop_probe+0x160/0x160 [ 387.175439] blkdev_ioctl+0x91d/0x17d0 [ 387.179329] ? blkpg_ioctl+0x8e0/0x8e0 [ 387.183218] ? trace_hardirqs_on+0x10/0x10 [ 387.187469] block_ioctl+0xd9/0x120 [ 387.191098] ? blkdev_fallocate+0x3a0/0x3a0 [ 387.195421] do_vfs_ioctl+0x75a/0xfe0 [ 387.199228] ? selinux_file_mprotect+0x5c0/0x5c0 [ 387.203990] ? ioctl_preallocate+0x1a0/0x1a0 [ 387.208412] ? security_file_ioctl+0x76/0xb0 [ 387.212824] ? security_file_ioctl+0x83/0xb0 [ 387.217242] SyS_ioctl+0x7f/0xb0 [ 387.220608] ? do_vfs_ioctl+0xfe0/0xfe0 [ 387.224585] do_syscall_64+0x1d5/0x640 [ 387.228482] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 387.233668] RIP: 0033:0x45c6f7 [ 387.236854] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 387.244559] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 387.251825] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 387.259093] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 387.266362] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 16:45:18 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_MODE_GETFB(r0, 0xc01c64ad, &(0x7f0000000040)={0x4, 0xffff0000, 0x80000000, 0xffffffff, 0x0, 0x6}) [ 387.273638] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 387.283103] Buffer I/O error on dev loop4, logical block 0, async page read 16:45:18 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000000c0)={0x1, 0xb1, &(0x7f0000000000)="25b8a9326a5a2944abb0ba85a757a21b936b55db876493d8b2fef0bd3441e69089bd7b24eb86a41e470cc6ea7bf0716fa3c4091d601b3aebf30ddbdfbffc0c6ed13dc9bf7420603139e79a3e7842ce780c360cac351955a894e9b95c1d485eb92b8c4fb9be2d8a7e6847a3727505c03b0efe2285e9a4d5148ea202bee992968058d74cbee92c8af7c496964b93b8ae47802665f242eb4b27724563390db6a128ffe8389253651aa11dfc2f80ff76680e3a"}) 16:45:19 executing program 4 (fault-call:0 fault-nth:28): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 387.601702] FAULT_INJECTION: forcing a failure. [ 387.601702] name failslab, interval 1, probability 0, space 0, times 0 [ 387.631976] CPU: 1 PID: 21585 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 387.639886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 387.649237] Call Trace: [ 387.651836] dump_stack+0x13e/0x194 [ 387.655479] should_fail.cold+0x10a/0x14b [ 387.659639] should_failslab+0xd6/0x130 [ 387.663619] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 387.668726] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 387.674180] ? __alloc_skb+0x9a/0x4c0 [ 387.677991] __kmalloc_node_track_caller+0x38/0x70 [ 387.683187] __kmalloc_reserve.isra.0+0x35/0xd0 [ 387.687863] __alloc_skb+0xca/0x4c0 [ 387.691498] ? skb_trim+0x160/0x160 [ 387.695133] ? netlink_has_listeners+0x1ff/0x310 [ 387.699902] kobject_uevent_env+0x6d1/0xc50 [ 387.704233] lo_ioctl+0x1192/0x1c40 [ 387.707865] ? loop_probe+0x160/0x160 [ 387.711663] blkdev_ioctl+0x91d/0x17d0 [ 387.715550] ? blkpg_ioctl+0x8e0/0x8e0 [ 387.719437] ? trace_hardirqs_on+0x10/0x10 [ 387.723678] block_ioctl+0xd9/0x120 [ 387.727305] ? blkdev_fallocate+0x3a0/0x3a0 [ 387.731641] do_vfs_ioctl+0x75a/0xfe0 [ 387.735450] ? selinux_file_mprotect+0x5c0/0x5c0 [ 387.740209] ? ioctl_preallocate+0x1a0/0x1a0 [ 387.744631] ? security_file_ioctl+0x76/0xb0 [ 387.749048] ? security_file_ioctl+0x83/0xb0 [ 387.753460] SyS_ioctl+0x7f/0xb0 [ 387.756831] ? do_vfs_ioctl+0xfe0/0xfe0 [ 387.760809] do_syscall_64+0x1d5/0x640 [ 387.764710] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 387.769901] RIP: 0033:0x45c6f7 [ 387.773093] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 387.780808] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 387.788082] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 387.795356] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 387.802627] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 387.809900] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:19 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$sock_x25_SIOCDELRT(r0, 0x890c, &(0x7f0000000200)={@null=' \x00', 0x4, 'vcan0\x00'}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:19 executing program 4 (fault-call:0 fault-nth:29): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 388.087065] FAULT_INJECTION: forcing a failure. [ 388.087065] name failslab, interval 1, probability 0, space 0, times 0 [ 388.107883] CPU: 0 PID: 21604 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 388.115791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.125145] Call Trace: [ 388.127754] dump_stack+0x13e/0x194 [ 388.131483] should_fail.cold+0x10a/0x14b [ 388.135640] should_failslab+0xd6/0x130 [ 388.139624] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 388.144733] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 388.150185] ? __alloc_skb+0x9a/0x4c0 [ 388.153988] __kmalloc_node_track_caller+0x38/0x70 [ 388.158921] __kmalloc_reserve.isra.0+0x35/0xd0 [ 388.163600] __alloc_skb+0xca/0x4c0 [ 388.167236] ? skb_trim+0x160/0x160 [ 388.170872] ? netlink_has_listeners+0x1ff/0x310 [ 388.175633] kobject_uevent_env+0x6d1/0xc50 [ 388.179971] lo_ioctl+0x1192/0x1c40 [ 388.183603] ? loop_probe+0x160/0x160 [ 388.187406] blkdev_ioctl+0x91d/0x17d0 [ 388.191295] ? blkpg_ioctl+0x8e0/0x8e0 [ 388.195182] ? trace_hardirqs_on+0x10/0x10 [ 388.199427] block_ioctl+0xd9/0x120 [ 388.203057] ? blkdev_fallocate+0x3a0/0x3a0 [ 388.207385] do_vfs_ioctl+0x75a/0xfe0 [ 388.211192] ? selinux_file_mprotect+0x5c0/0x5c0 [ 388.215952] ? ioctl_preallocate+0x1a0/0x1a0 [ 388.220374] ? security_file_ioctl+0x76/0xb0 [ 388.224785] ? security_file_ioctl+0x83/0xb0 [ 388.229196] SyS_ioctl+0x7f/0xb0 [ 388.232567] ? do_vfs_ioctl+0xfe0/0xfe0 [ 388.236549] do_syscall_64+0x1d5/0x640 [ 388.240448] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 388.245636] RIP: 0033:0x45c6f7 [ 388.248828] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 388.256678] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 388.263951] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 388.271220] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 388.278487] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 388.285758] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 388.351746] print_req_error: 60 callbacks suppressed [ 388.351752] print_req_error: I/O error, dev loop2, sector 128 [ 388.407353] print_req_error: I/O error, dev loop4, sector 0 16:45:20 executing program 4 (fault-call:0 fault-nth:30): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 388.510634] FAULT_INJECTION: forcing a failure. [ 388.510634] name failslab, interval 1, probability 0, space 0, times 0 [ 388.531407] print_req_error: I/O error, dev loop4, sector 0 [ 388.537392] print_req_error: I/O error, dev loop4, sector 0 [ 388.548662] print_req_error: I/O error, dev loop4, sector 0 [ 388.555218] print_req_error: I/O error, dev loop4, sector 0 [ 388.561121] print_req_error: I/O error, dev loop4, sector 0 [ 388.571222] print_req_error: I/O error, dev loop4, sector 0 [ 388.577900] print_req_error: I/O error, dev loop4, sector 0 [ 388.584543] print_req_error: I/O error, dev loop4, sector 24 [ 388.592796] CPU: 0 PID: 21617 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 388.600692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.610044] Call Trace: [ 388.612646] dump_stack+0x13e/0x194 [ 388.616287] should_fail.cold+0x10a/0x14b [ 388.620444] should_failslab+0xd6/0x130 [ 388.624427] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 388.629538] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 388.634993] ? __alloc_skb+0x9a/0x4c0 [ 388.638804] __kmalloc_node_track_caller+0x38/0x70 [ 388.643741] __kmalloc_reserve.isra.0+0x35/0xd0 [ 388.648422] __alloc_skb+0xca/0x4c0 [ 388.652051] ? skb_trim+0x160/0x160 [ 388.655677] ? netlink_has_listeners+0x1ff/0x310 [ 388.660436] kobject_uevent_env+0x6d1/0xc50 [ 388.664770] lo_ioctl+0x1192/0x1c40 [ 388.668403] ? loop_probe+0x160/0x160 [ 388.672208] blkdev_ioctl+0x91d/0x17d0 [ 388.676100] ? blkpg_ioctl+0x8e0/0x8e0 [ 388.680001] ? trace_hardirqs_on+0x10/0x10 [ 388.684258] block_ioctl+0xd9/0x120 [ 388.687889] ? blkdev_fallocate+0x3a0/0x3a0 [ 388.692217] do_vfs_ioctl+0x75a/0xfe0 [ 388.696018] ? selinux_file_mprotect+0x5c0/0x5c0 [ 388.700780] ? ioctl_preallocate+0x1a0/0x1a0 [ 388.705201] ? security_file_ioctl+0x76/0xb0 [ 388.709638] ? security_file_ioctl+0x83/0xb0 [ 388.714053] SyS_ioctl+0x7f/0xb0 [ 388.717418] ? do_vfs_ioctl+0xfe0/0xfe0 [ 388.721393] do_syscall_64+0x1d5/0x640 [ 388.725294] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 388.730494] RIP: 0033:0x45c6f7 [ 388.733686] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 388.741397] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 388.748792] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 388.756059] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 388.763328] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 388.770598] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:20 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000380)={0x6c, 0x0, &(0x7f0000000280)=[@clear_death={0x400c630f, 0x1}, @register_looper, @reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000200)={@ptr={0x70742a85, 0x0, &(0x7f0000000080)=""/128, 0x80, 0x1, 0x30}, @fda={0x66646185, 0x0, 0x2, 0x3e}, @flat=@handle={0x73682a85, 0x1101}}, &(0x7f0000000100)={0x0, 0x28, 0x48}}}, @acquire_done={0x40106309, 0x1}], 0x60, 0x0, &(0x7f0000000300)="2147384a3010be93039573497d8be95d6f2690d56e6a5aa537beaeed96e27a7487a34841b669674872f2e7ee72d78b52de8a0865e3e93171ec9b94f86c3fc6092169cbc66b5639bb1e242e49a073ef0e782865761123e59cb25f38aed56f3472"}) 16:45:20 executing program 4 (fault-call:0 fault-nth:31): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 388.970670] FAULT_INJECTION: forcing a failure. [ 388.970670] name failslab, interval 1, probability 0, space 0, times 0 [ 388.982507] CPU: 1 PID: 21630 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 388.990406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 388.999762] Call Trace: [ 389.002374] dump_stack+0x13e/0x194 [ 389.006012] should_fail.cold+0x10a/0x14b [ 389.010174] should_failslab+0xd6/0x130 [ 389.014280] kmem_cache_alloc_node+0x288/0x7a0 16:45:20 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000340)={0x4, r1}) fchmod(0xffffffffffffffff, 0xa0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)) socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x1}, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x881) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @mcast1}, {0xa, 0x0, 0x0, @loopback={0xff00000000000000}}}}, 0x48) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x30, 0xfa00, {&(0x7f0000000180), 0x4, {0xa, 0x4e22, 0x0, @remote, 0x7fff}}}, 0x38) write$RDMA_USER_CM_CMD_REJECT(0xffffffffffffffff, &(0x7f0000000540)={0x9, 0x108, 0xfa00, {0xffffffffffffffff, 0xcd, "5b64a3", "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"}}, 0x110) write(r4, &(0x7f0000000340), 0x41395527) bind$bt_rfcomm(r4, &(0x7f0000000380)={0x1f, @fixed={[], 0x10}, 0x4}, 0xa) [ 389.018874] ? netlink_has_listeners+0x1d8/0x310 [ 389.023637] __alloc_skb+0x9a/0x4c0 [ 389.027267] ? skb_trim+0x160/0x160 [ 389.030900] ? netlink_has_listeners+0x1ff/0x310 [ 389.035665] kobject_uevent_env+0x6d1/0xc50 [ 389.039997] lo_ioctl+0x1192/0x1c40 [ 389.043632] ? loop_probe+0x160/0x160 [ 389.047433] blkdev_ioctl+0x91d/0x17d0 [ 389.051328] ? blkpg_ioctl+0x8e0/0x8e0 [ 389.055259] ? trace_hardirqs_on+0x10/0x10 [ 389.059519] block_ioctl+0xd9/0x120 [ 389.063154] ? blkdev_fallocate+0x3a0/0x3a0 [ 389.067484] do_vfs_ioctl+0x75a/0xfe0 [ 389.071292] ? selinux_file_mprotect+0x5c0/0x5c0 [ 389.076069] ? ioctl_preallocate+0x1a0/0x1a0 [ 389.080492] ? security_file_ioctl+0x76/0xb0 [ 389.084905] ? security_file_ioctl+0x83/0xb0 [ 389.089322] SyS_ioctl+0x7f/0xb0 [ 389.092690] ? do_vfs_ioctl+0xfe0/0xfe0 [ 389.096670] do_syscall_64+0x1d5/0x640 [ 389.100569] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.105783] RIP: 0033:0x45c6f7 [ 389.108976] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 389.116691] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 389.123969] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 389.131251] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 389.138545] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 389.145822] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:20 executing program 4 (fault-call:0 fault-nth:32): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:20 executing program 2: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={[], 0x2, 0xb3, 0x9, 0xffff, 0x80, r1}) [ 389.395538] FAULT_INJECTION: forcing a failure. [ 389.395538] name failslab, interval 1, probability 0, space 0, times 0 [ 389.430769] CPU: 1 PID: 21651 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 389.438830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.448196] Call Trace: [ 389.450905] dump_stack+0x13e/0x194 [ 389.455520] should_fail.cold+0x10a/0x14b [ 389.459686] should_failslab+0xd6/0x130 [ 389.463682] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 389.468809] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 389.474391] ? __alloc_skb+0x9a/0x4c0 [ 389.478206] __kmalloc_node_track_caller+0x38/0x70 [ 389.483159] __kmalloc_reserve.isra.0+0x35/0xd0 [ 389.487841] __alloc_skb+0xca/0x4c0 [ 389.491477] ? skb_trim+0x160/0x160 [ 389.495118] ? netlink_has_listeners+0x1ff/0x310 [ 389.499888] kobject_uevent_env+0x6d1/0xc50 [ 389.504227] lo_ioctl+0x1192/0x1c40 [ 389.507863] ? loop_probe+0x160/0x160 [ 389.511675] blkdev_ioctl+0x91d/0x17d0 [ 389.515704] ? blkpg_ioctl+0x8e0/0x8e0 [ 389.519601] ? trace_hardirqs_on+0x10/0x10 [ 389.523855] block_ioctl+0xd9/0x120 [ 389.527665] ? blkdev_fallocate+0x3a0/0x3a0 [ 389.531998] do_vfs_ioctl+0x75a/0xfe0 [ 389.535817] ? selinux_file_mprotect+0x5c0/0x5c0 [ 389.540688] ? ioctl_preallocate+0x1a0/0x1a0 [ 389.545547] ? security_file_ioctl+0x76/0xb0 [ 389.549970] ? security_file_ioctl+0x83/0xb0 [ 389.554393] SyS_ioctl+0x7f/0xb0 [ 389.557769] ? do_vfs_ioctl+0xfe0/0xfe0 [ 389.561756] do_syscall_64+0x1d5/0x640 [ 389.565657] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.570851] RIP: 0033:0x45c6f7 [ 389.574147] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 389.581858] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 389.589136] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 389.596410] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 389.603840] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 389.611116] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:21 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r2, 0x4, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x5, 0xffffffffffffffff}}]}, 0x20}, 0x1, 0x0, 0x0, 0x8050}, 0x40000) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{0x304}, "971737ae410d1864", "acf8608a3a4ea7913cfbbfbb645f8ef21a9800442b99b3e74fd360434ff2556d", "fff286b2", "0769bf24416e6de7"}, 0x38) 16:45:21 executing program 4 (fault-call:0 fault-nth:33): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 389.795389] FAULT_INJECTION: forcing a failure. [ 389.795389] name failslab, interval 1, probability 0, space 0, times 0 [ 389.821703] CPU: 0 PID: 21671 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 389.829806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 389.839292] Call Trace: [ 389.841896] dump_stack+0x13e/0x194 [ 389.845548] should_fail.cold+0x10a/0x14b [ 389.849716] should_failslab+0xd6/0x130 [ 389.853702] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 389.858820] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 389.864287] ? __alloc_skb+0x9a/0x4c0 [ 389.868107] __kmalloc_node_track_caller+0x38/0x70 [ 389.873054] __kmalloc_reserve.isra.0+0x35/0xd0 [ 389.877738] __alloc_skb+0xca/0x4c0 [ 389.881377] ? skb_trim+0x160/0x160 [ 389.885103] ? netlink_has_listeners+0x1ff/0x310 [ 389.889886] kobject_uevent_env+0x6d1/0xc50 [ 389.894486] lo_ioctl+0x1192/0x1c40 [ 389.898175] ? loop_probe+0x160/0x160 [ 389.901993] blkdev_ioctl+0x91d/0x17d0 [ 389.905896] ? blkpg_ioctl+0x8e0/0x8e0 [ 389.909792] ? trace_hardirqs_on+0x10/0x10 [ 389.914050] block_ioctl+0xd9/0x120 [ 389.917823] ? blkdev_fallocate+0x3a0/0x3a0 [ 389.922157] do_vfs_ioctl+0x75a/0xfe0 [ 389.925970] ? selinux_file_mprotect+0x5c0/0x5c0 [ 389.930881] ? ioctl_preallocate+0x1a0/0x1a0 [ 389.935308] ? security_file_ioctl+0x76/0xb0 [ 389.939724] ? security_file_ioctl+0x83/0xb0 [ 389.944142] SyS_ioctl+0x7f/0xb0 [ 389.947518] ? do_vfs_ioctl+0xfe0/0xfe0 [ 389.951511] do_syscall_64+0x1d5/0x640 [ 389.955427] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 389.960626] RIP: 0033:0x45c6f7 [ 389.963974] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 389.971691] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 389.978965] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 389.986249] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 389.993526] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 390.000925] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:21 executing program 4 (fault-call:0 fault-nth:34): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:21 executing program 5: r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/mice\x00', 0x8000) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-monitor\x00', 0x40a00, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000000180)=""/50) timerfd_gettime(r1, &(0x7f00000002c0)) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r4 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, r3, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_MESH_CONFIG(r4, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000140)={0x1c, r5, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2000c091}, 0x88011) sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x24, r5, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000841}, 0x4000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{&(0x7f0000000300)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb801000000000001fffffff60000005f42485266535f4d000000000000000000", 0x48, 0x10000}], 0x0, 0x0) [ 390.282613] FAULT_INJECTION: forcing a failure. [ 390.282613] name failslab, interval 1, probability 0, space 0, times 0 [ 390.302067] CPU: 1 PID: 21683 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 390.309980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.319476] Call Trace: [ 390.322258] dump_stack+0x13e/0x194 [ 390.325915] should_fail.cold+0x10a/0x14b [ 390.330233] should_failslab+0xd6/0x130 [ 390.334231] kmem_cache_alloc_node+0x288/0x7a0 [ 390.338833] ? netlink_has_listeners+0x1d8/0x310 [ 390.343614] __alloc_skb+0x9a/0x4c0 [ 390.347259] ? skb_trim+0x160/0x160 [ 390.350896] ? netlink_has_listeners+0x1ff/0x310 [ 390.355660] kobject_uevent_env+0x6d1/0xc50 [ 390.359999] lo_ioctl+0x1192/0x1c40 [ 390.363733] ? loop_probe+0x160/0x160 [ 390.367542] blkdev_ioctl+0x91d/0x17d0 [ 390.371439] ? blkpg_ioctl+0x8e0/0x8e0 [ 390.375337] ? trace_hardirqs_on+0x10/0x10 [ 390.379595] block_ioctl+0xd9/0x120 [ 390.383234] ? blkdev_fallocate+0x3a0/0x3a0 [ 390.387580] do_vfs_ioctl+0x75a/0xfe0 [ 390.391393] ? selinux_file_mprotect+0x5c0/0x5c0 [ 390.396161] ? ioctl_preallocate+0x1a0/0x1a0 [ 390.400590] ? security_file_ioctl+0x76/0xb0 [ 390.405009] ? security_file_ioctl+0x83/0xb0 [ 390.409438] SyS_ioctl+0x7f/0xb0 [ 390.412817] ? do_vfs_ioctl+0xfe0/0xfe0 [ 390.416807] do_syscall_64+0x1d5/0x640 [ 390.420716] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 390.425921] RIP: 0033:0x45c6f7 [ 390.429243] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 390.436963] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 390.444243] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 390.451522] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 390.458796] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 390.466071] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:22 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff}) write$binfmt_elf64(r0, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x4, 0x5, 0x38, 0x7, 0x3, 0x3, 0x3e, 0x7fffffff, 0x372, 0x40, 0xf3, 0xffffffe1, 0x412d, 0x38, 0x2, 0x2, 0x40, 0xeb}, [{0x5, 0x72, 0x1f, 0x5, 0x4, 0x8000, 0x100000001, 0x1}], "a6ae33da987d57a5911d9e97d9bbd3d1b093c5ebe6788e04706a2b68a100c9e6eff2a4b88cd78780d4a627e916a8cf0f6872aa8482ff752ccaaa8a41c9c74ed511b709616418cad216d58bed988af8d0076011da5ecd56098673d2633ab4ab23d7de70634efac8a39e0e7ebfe1bcd379c0eb3813fd44ae10f093512daa22497c0a22fba0d7c5004ee4074c06b5b792b33957622ad04fe33c84119b8c31523c2b6e7817990896b16a30645f293d630e7e35e5991c08828151c06a5c9ed426785742ca9730efb46dab37de0fef688d75bb92ec6eb6c7ed6d13e3a3f67d", [[]]}, 0x254) ioctl$SNDRV_PCM_IOCTL_DROP(r0, 0x4143, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:22 executing program 2: pipe(&(0x7f0000001300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) setsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, &(0x7f0000000100), 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x6, &(0x7f0000001600)=[{&(0x7f0000001340)="2244a1f3b32456d013bd1e9fa8749737fe0d963a3448ed692fdf2134cdea408bc67f665aa20e72cefb6844c246ca8955b20e8648ea9803dc9bc0b5a19ea084adcb4b19c28fee9e02c611877ce94c3f6401edc81a888b2dc765e42e643a586212efe8470932841dcfa8f7a30e9a5b5891095c0c204fef56a6f38afafc258edaabe107867e4f40d757245e4328ec43ca41cb6e7a540e2535647cca07373f82c6572e0c8cd333c83dcb16cc9a702ef8387f467f23c0653945a378b84c96b5f8a29ec8fac52e78f7e4beb172242f101331a6eff8df6e334f736b8e6a5404a3bd19803aafe5d83ca0d02188", 0xe9, 0x1}, {&(0x7f0000001440)="66cadc9af2eaa1f2872f810986a1c0f2e7c195600e0a9548a3f95e364b8c03f8fa584874a8220cf8a79969a0e48b99bf2315d8774bdbeaf8255cb113ead62862e433a7e9f90c7f77b0eb7429188f90439caf290f8895e5a978e7fe6ffbb668f0a952d76944aec30359cbdaad7637c0bc942ab6c9ab192fa416d08c68c153f74dc46aeb2e0c14c72f81eaf7403d859c574e6736167abb8efe484d32703ba8944136ea5244eebfb45062c69aa59b49c2f6d47f40ac562f6f5dc40c429a62f04e281fa853a3e0324f72dffeccd19b63bb3165f5538648aefdcebedff72851af64166f8b08ef5fe73d150ff64feed7ab37e33144cd", 0xf3, 0x8001}, {&(0x7f0000000140)="c8eccdb9c887c7e6b62ddc68384a280b0a605ba0f8ad99f202053485ef6ecac397238aa7ba2a44c0599e8f3efd0ebcf08817e3fb216fe1e75ff6cefe277bea86e76d3152a86b26b5872f37330492b1bf9509c9940b9a514f13c34a541123a47bdd21ae0bb8d8f7bd245e801db155d1daa109a08b344a458b8e9a7ed7c0776a83220d6ebfc92a64eb1298835e83", 0x8d, 0x1e}, {&(0x7f0000001540)="c48e3c7fe3c297c6ac3d0bc7da4f66d4b021af7d9729befdefd111c0555f8c50ade2328cc17b61e94284", 0x2a, 0x101}, {&(0x7f0000001580)="83f7d541f3707df2c4033d1167b28628fd01f76a820d662df4f5c48d7216a3759f55f059b8db1cb62c5b451ef60a5830373f6273521e3c", 0x37, 0x1f}, {&(0x7f00000015c0)="ef13c6915380f4108e", 0x9, 0xfffffffffffffff8}], 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x2a02, 0x0) write$UHID_INPUT(r1, &(0x7f0000000200)={0x8, {"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", 0x1000}}, 0x1006) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) connect$bt_rfcomm(r2, &(0x7f00000012c0)={0x1f, @none, 0x4}, 0xa) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000001240)={0x80000001, 0x5, 0x4, 0x4, 0xf5bb, {0x77359400}, {0x1, 0x8, 0x9, 0x1, 0x65, 0x2, "c5063129"}, 0x101, 0x1, @planes=&(0x7f00000000c0)={0x2, 0x2, @userptr=0x2b33}, 0x800, 0x0, r1}) 16:45:22 executing program 4 (fault-call:0 fault-nth:35): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 390.867877] FAULT_INJECTION: forcing a failure. [ 390.867877] name failslab, interval 1, probability 0, space 0, times 0 [ 390.895955] CPU: 1 PID: 21708 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 390.903858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.913360] Call Trace: [ 390.915981] dump_stack+0x13e/0x194 [ 390.919630] should_fail.cold+0x10a/0x14b [ 390.923802] should_failslab+0xd6/0x130 [ 390.927796] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 390.932924] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 390.938513] ? __alloc_skb+0x9a/0x4c0 [ 390.942327] __kmalloc_node_track_caller+0x38/0x70 [ 390.947267] __kmalloc_reserve.isra.0+0x35/0xd0 [ 390.951953] __alloc_skb+0xca/0x4c0 [ 390.955589] ? skb_trim+0x160/0x160 [ 390.959225] ? netlink_has_listeners+0x1ff/0x310 [ 390.963993] kobject_uevent_env+0x6d1/0xc50 [ 390.968332] lo_ioctl+0x1192/0x1c40 [ 390.971968] ? loop_probe+0x160/0x160 [ 390.975778] blkdev_ioctl+0x91d/0x17d0 [ 390.979673] ? blkpg_ioctl+0x8e0/0x8e0 [ 390.983570] ? trace_hardirqs_on+0x10/0x10 [ 390.987828] block_ioctl+0xd9/0x120 [ 390.991461] ? blkdev_fallocate+0x3a0/0x3a0 [ 390.995793] do_vfs_ioctl+0x75a/0xfe0 [ 390.999608] ? selinux_file_mprotect+0x5c0/0x5c0 [ 391.004377] ? ioctl_preallocate+0x1a0/0x1a0 [ 391.008818] ? security_file_ioctl+0x76/0xb0 [ 391.013233] ? security_file_ioctl+0x83/0xb0 [ 391.017769] SyS_ioctl+0x7f/0xb0 [ 391.021145] ? do_vfs_ioctl+0xfe0/0xfe0 [ 391.025132] do_syscall_64+0x1d5/0x640 [ 391.029044] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 391.034241] RIP: 0033:0x45c6f7 [ 391.037436] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 391.045157] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 391.052441] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 391.059719] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 391.066996] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 391.074275] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:22 executing program 4 (fault-call:0 fault-nth:36): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:22 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f00000001c0)=""/4096) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 391.217557] FAULT_INJECTION: forcing a failure. [ 391.217557] name failslab, interval 1, probability 0, space 0, times 0 [ 391.245257] CPU: 0 PID: 21722 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 391.253175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 391.262537] Call Trace: [ 391.265141] dump_stack+0x13e/0x194 [ 391.268790] should_fail.cold+0x10a/0x14b [ 391.272970] should_failslab+0xd6/0x130 [ 391.276962] kmem_cache_alloc_node+0x288/0x7a0 [ 391.281560] ? netlink_has_listeners+0x1d8/0x310 [ 391.286333] __alloc_skb+0x9a/0x4c0 [ 391.289977] ? skb_trim+0x160/0x160 [ 391.293618] ? netlink_has_listeners+0x1ff/0x310 [ 391.298385] kobject_uevent_env+0x6d1/0xc50 [ 391.302864] lo_ioctl+0x1192/0x1c40 [ 391.306505] ? loop_probe+0x160/0x160 [ 391.310317] blkdev_ioctl+0x91d/0x17d0 [ 391.314213] ? blkpg_ioctl+0x8e0/0x8e0 [ 391.318258] ? trace_hardirqs_on+0x10/0x10 [ 391.322519] block_ioctl+0xd9/0x120 [ 391.326154] ? blkdev_fallocate+0x3a0/0x3a0 [ 391.330483] do_vfs_ioctl+0x75a/0xfe0 [ 391.334416] ? selinux_file_mprotect+0x5c0/0x5c0 [ 391.339182] ? ioctl_preallocate+0x1a0/0x1a0 [ 391.343620] ? security_file_ioctl+0x76/0xb0 [ 391.348040] ? security_file_ioctl+0x83/0xb0 [ 391.352463] SyS_ioctl+0x7f/0xb0 [ 391.355849] ? do_vfs_ioctl+0xfe0/0xfe0 [ 391.359836] do_syscall_64+0x1d5/0x640 [ 391.363740] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 391.368938] RIP: 0033:0x45c6f7 [ 391.372136] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 391.379851] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 391.387127] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 391.394410] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 391.401700] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 391.408974] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:23 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETPROPBLOB(r0, 0xc01064ac, &(0x7f0000000080)={0x1, 0xfc, &(0x7f0000000200)=""/252}) 16:45:23 executing program 4 (fault-call:0 fault-nth:37): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 391.598683] FAULT_INJECTION: forcing a failure. [ 391.598683] name failslab, interval 1, probability 0, space 0, times 0 [ 391.617583] buffer_io_error: 54 callbacks suppressed [ 391.617590] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.630192] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.638726] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.646062] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.653592] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.660973] Buffer I/O error on dev loop4, logical block 0, async page read [ 391.668476] Buffer I/O error on dev loop4, logical block 3, async page read [ 391.680041] CPU: 1 PID: 21738 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 391.687949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 16:45:23 executing program 2: r0 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r0) keyctl$assume_authority(0x10, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a1000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266000000000000000002701cfc6d659161c76f9ca62e8f3138635466f4c027d434aadf257adf5ac3d3e4d36c755e6e1316e7aba10e7677a7f81320dbcc4f50ed5ac3f7efe90f4a30618d468301897d70a769a3a313a8b17874c15238f84cb6cd2bdb4511", 0xa8, 0xfffd}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) setsockopt$RXRPC_UPGRADEABLE_SERVICE(r1, 0x110, 0x5, &(0x7f0000000140)=[0x0, 0x4], 0x2) r2 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000180)=ANY=[@ANYBLOB="ac1e00010300000000000000ac1414bb7f000001"], 0x1c) [ 391.697313] Call Trace: [ 391.699920] dump_stack+0x13e/0x194 [ 391.703567] should_fail.cold+0x10a/0x14b [ 391.707741] should_failslab+0xd6/0x130 [ 391.711730] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 391.716879] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 391.722344] ? __alloc_skb+0x9a/0x4c0 [ 391.726156] __kmalloc_node_track_caller+0x38/0x70 [ 391.731098] __kmalloc_reserve.isra.0+0x35/0xd0 [ 391.735780] __alloc_skb+0xca/0x4c0 [ 391.739422] ? skb_trim+0x160/0x160 [ 391.743058] ? netlink_has_listeners+0x1ff/0x310 [ 391.747824] kobject_uevent_env+0x6d1/0xc50 [ 391.752190] lo_ioctl+0x1192/0x1c40 [ 391.755834] ? loop_probe+0x160/0x160 [ 391.759788] blkdev_ioctl+0x91d/0x17d0 [ 391.763811] ? blkpg_ioctl+0x8e0/0x8e0 [ 391.767839] ? trace_hardirqs_on+0x10/0x10 [ 391.772100] block_ioctl+0xd9/0x120 [ 391.775735] ? blkdev_fallocate+0x3a0/0x3a0 [ 391.780160] do_vfs_ioctl+0x75a/0xfe0 [ 391.783976] ? selinux_file_mprotect+0x5c0/0x5c0 [ 391.788740] ? ioctl_preallocate+0x1a0/0x1a0 [ 391.793162] ? security_file_ioctl+0x76/0xb0 [ 391.797582] ? security_file_ioctl+0x83/0xb0 [ 391.801998] SyS_ioctl+0x7f/0xb0 [ 391.805381] ? do_vfs_ioctl+0xfe0/0xfe0 [ 391.809370] do_syscall_64+0x1d5/0x640 [ 391.813282] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 391.818483] RIP: 0033:0x45c6f7 [ 391.821685] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 391.829550] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045c6f7 [ 391.836829] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 391.844107] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 391.851386] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 391.858667] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:23 executing program 4 (fault-call:0 fault-nth:38): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 392.027643] FAULT_INJECTION: forcing a failure. [ 392.027643] name failslab, interval 1, probability 0, space 0, times 0 [ 392.056688] CPU: 1 PID: 21756 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 392.064612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.073981] Call Trace: 16:45:23 executing program 5: r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) sendmsg$AUDIT_SET_FEATURE(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x20, 0x3fa, 0x1, 0x70bd25, 0x25dfdbfb, {0x1, 0x0, 0x1, 0x1}, ["", ""]}, 0x20}}, 0x4000) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000140)='./file0\x00', 0x4, 0x1, &(0x7f0000000040)=[{&(0x7f0000000440)="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", 0x201, 0x100}], 0x10000, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x100, 0x0) write(r2, &(0x7f0000000340)="016ad1bcf0238a0396dca8b3c6e7b64c4a74f12e0f1cd9930400000000000000004b3c5e65cd4e610af1fd73da3330e8b1ea3f314b59c02f8c7dffd852beafc190b51cfa6395f830225e72798c52878f0c82484003b0530872de7a9300d87f4c25b91a17dba14f9c6217ed6464d4ff", 0x6f) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68) membarrier(0x1, 0x0) [ 392.076588] dump_stack+0x13e/0x194 [ 392.080255] should_fail.cold+0x10a/0x14b [ 392.084421] should_failslab+0xd6/0x130 [ 392.088411] kmem_cache_alloc+0x2b5/0x770 [ 392.092575] ? __d_lookup+0x3b4/0x670 [ 392.096398] __d_alloc+0x2a/0x9b0 [ 392.099868] d_alloc+0x46/0x250 [ 392.103170] __lookup_hash+0x51/0x180 [ 392.107008] filename_create+0x156/0x400 [ 392.111087] ? kern_path_mountpoint+0x40/0x40 [ 392.115599] SyS_mkdir+0x90/0x210 [ 392.119064] ? SyS_mkdirat+0x210/0x210 [ 392.122966] ? do_syscall_64+0x4c/0x640 [ 392.126949] ? SyS_mkdirat+0x210/0x210 [ 392.130851] do_syscall_64+0x1d5/0x640 [ 392.134767] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.140103] RIP: 0033:0x45bca7 [ 392.143303] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 392.151020] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 392.158299] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 392.165577] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 392.173106] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 392.180390] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:23 executing program 4 (fault-call:0 fault-nth:39): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 392.308784] FAULT_INJECTION: forcing a failure. [ 392.308784] name failslab, interval 1, probability 0, space 0, times 0 [ 392.329314] CPU: 1 PID: 21773 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 392.337252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.346618] Call Trace: [ 392.349225] dump_stack+0x13e/0x194 [ 392.352873] should_fail.cold+0x10a/0x14b [ 392.357091] ? ext4_sync_fs+0x7e0/0x7e0 [ 392.361077] should_failslab+0xd6/0x130 [ 392.365059] ? ext4_sync_fs+0x7e0/0x7e0 [ 392.369043] kmem_cache_alloc+0x2b5/0x770 [ 392.373210] ? ext4_sync_fs+0x7e0/0x7e0 [ 392.377195] ext4_alloc_inode+0x19/0x610 [ 392.381334] ? ext4_sync_fs+0x7e0/0x7e0 [ 392.385322] alloc_inode+0x5d/0x170 [ 392.388964] new_inode_pseudo+0x14/0xe0 [ 392.392950] new_inode+0x1b/0x40 [ 392.396384] __ext4_new_inode+0x363/0x4e90 [ 392.400636] ? lock_acquire+0x170/0x3f0 [ 392.404628] ? ext4_free_inode+0x1480/0x1480 [ 392.409044] ? avc_has_perm+0x2bb/0x480 [ 392.413077] ? __dquot_initialize+0x3f4/0x980 [ 392.417587] ? avc_has_perm_noaudit+0x400/0x400 [ 392.422284] ? __split_and_process_bio+0x2f0/0x940 [ 392.427242] ? dquot_get_next_dqblk+0x160/0x160 [ 392.431964] ? security_transition_sid+0xcb/0x120 [ 392.436821] ? security_transition_sid+0x9d/0x120 [ 392.441681] ext4_mkdir+0x2e4/0xb60 [ 392.445330] ? selinux_dentry_init_security+0x220/0x220 [ 392.450713] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 392.455395] ? security_inode_mkdir+0xcc/0x100 [ 392.459987] vfs_mkdir+0x3af/0x620 [ 392.463539] SyS_mkdir+0x1bc/0x210 [ 392.467092] ? SyS_mkdirat+0x210/0x210 [ 392.470988] ? do_syscall_64+0x4c/0x640 [ 392.474974] ? SyS_mkdirat+0x210/0x210 [ 392.478872] do_syscall_64+0x1d5/0x640 [ 392.482775] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.487971] RIP: 0033:0x45bca7 [ 392.491309] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 392.499028] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 392.506370] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 392.513651] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 392.521063] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 392.528352] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000000007a00000077bbfff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x3d, 0x10000}], 0x40, 0x0) 16:45:24 executing program 0: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) getsockopt$IP_SET_OP_VERSION(r0, 0x1, 0x53, &(0x7f0000000100), &(0x7f0000000200)=0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCSISO7816(r1, 0xc0285443, &(0x7f0000000080)={0x5, 0x0, 0x4, 0xfffffcde, 0xfff}) 16:45:24 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x21, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0) 16:45:24 executing program 5: syz_mount_image$btrfs(&(0x7f0000000200)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000240)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='security.capability\x00', &(0x7f0000000100)=@v1={0x1000000, [{0x8, 0xb8}]}, 0xc, 0x2) 16:45:24 executing program 4 (fault-call:0 fault-nth:40): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 392.862821] FAULT_INJECTION: forcing a failure. [ 392.862821] name failslab, interval 1, probability 0, space 0, times 0 [ 392.898225] CPU: 0 PID: 21808 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 392.906297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 392.915822] Call Trace: [ 392.918436] dump_stack+0x13e/0x194 [ 392.922086] should_fail.cold+0x10a/0x14b [ 392.926254] should_failslab+0xd6/0x130 [ 392.930331] kmem_cache_alloc+0x2b5/0x770 [ 392.934488] ? __d_lookup+0x3b4/0x670 [ 392.938310] ? mark_held_locks+0xa6/0xf0 [ 392.942387] __d_alloc+0x2a/0x9b0 [ 392.945858] d_alloc+0x46/0x250 [ 392.949153] __lookup_hash+0x51/0x180 [ 392.952973] filename_create+0x156/0x400 [ 392.957048] ? kern_path_mountpoint+0x40/0x40 [ 392.961564] SyS_mkdir+0x90/0x210 [ 392.965035] ? SyS_mkdirat+0x210/0x210 [ 392.968951] ? do_syscall_64+0x4c/0x640 [ 392.973049] ? SyS_mkdirat+0x210/0x210 [ 392.976955] do_syscall_64+0x1d5/0x640 [ 392.980869] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 392.986079] RIP: 0033:0x45bca7 [ 392.989409] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 392.997128] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 393.004410] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 16:45:24 executing program 2: r0 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x1, 0x131a01) sendmsg$can_raw(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=@canfd={{0x4, 0x1, 0x1}, 0x36, 0x1, 0x0, 0x0, "bbafdd1a5dcf08e0c8c6df840e81a91ed586ac05e305344107d5558b162be41560e44565725eaae3dbe26433715a511cfeef7147bab9109630d759b35074a782"}, 0x48}, 0x1, 0x0, 0x0, 0x24000004}, 0x0) getpeername$unix(r0, &(0x7f0000000340)=@abs, &(0x7f00000003c0)=0x6e) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) symlinkat(&(0x7f0000000080)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00') [ 393.011693] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 393.018972] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 393.026257] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:24 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000080)={[0x1ff, 0x5, 0x7, 0x3a43, 0x8, 0x0, 0x6b, 0x8, 0x8, 0x7, 0x6, 0x1, 0x3a, 0x7, 0x8, 0x4], 0xd000, 0x229000}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:24 executing program 4 (fault-call:0 fault-nth:41): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 393.296220] FAULT_INJECTION: forcing a failure. [ 393.296220] name failslab, interval 1, probability 0, space 0, times 0 [ 393.339169] CPU: 1 PID: 21833 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 393.347253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.356624] Call Trace: [ 393.359344] dump_stack+0x13e/0x194 [ 393.362998] should_fail.cold+0x10a/0x14b [ 393.367169] should_failslab+0xd6/0x130 [ 393.371149] kmem_cache_alloc+0x2b5/0x770 [ 393.375305] ? __debug_object_init+0x167/0x830 [ 393.379904] selinux_inode_alloc_security+0xb1/0x2a0 [ 393.385019] security_inode_alloc+0x8f/0xd0 [ 393.389357] inode_init_always+0x576/0xb20 [ 393.393603] alloc_inode+0x7a/0x170 [ 393.397246] new_inode_pseudo+0x14/0xe0 [ 393.401232] new_inode+0x1b/0x40 [ 393.404646] __ext4_new_inode+0x363/0x4e90 [ 393.408899] ? lock_acquire+0x170/0x3f0 [ 393.412896] ? ext4_free_inode+0x1480/0x1480 [ 393.417313] ? avc_has_perm+0x2bb/0x480 [ 393.421302] ? __dquot_initialize+0x3f4/0x980 [ 393.425804] ? avc_has_perm_noaudit+0x400/0x400 [ 393.430491] ? dquot_get_next_dqblk+0x160/0x160 [ 393.435174] ? security_transition_sid+0xcb/0x120 [ 393.440157] ? security_transition_sid+0x9d/0x120 [ 393.445024] ext4_mkdir+0x2e4/0xb60 [ 393.448666] ? selinux_dentry_init_security+0x220/0x220 [ 393.454199] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 393.458883] ? security_inode_mkdir+0xcc/0x100 [ 393.463598] vfs_mkdir+0x3af/0x620 [ 393.467331] SyS_mkdir+0x1bc/0x210 [ 393.471012] ? SyS_mkdirat+0x210/0x210 [ 393.474914] ? do_syscall_64+0x4c/0x640 [ 393.478900] ? SyS_mkdirat+0x210/0x210 [ 393.482887] do_syscall_64+0x1d5/0x640 [ 393.486802] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 393.492001] RIP: 0033:0x45bca7 [ 393.495201] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 393.502916] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 393.510201] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 393.517480] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 393.524755] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 393.532035] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:25 executing program 4 (fault-call:0 fault-nth:42): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:25 executing program 0: r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000240)) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) r2 = socket$inet_sctp(0x2, 0x5, 0x84) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000180)={r4}, 0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000200)=@assoc_id=r4, 0x4) io_setup(0xb, &(0x7f0000000280)=0x0) r6 = socket$caif_seqpacket(0x25, 0x5, 0x0) io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r6}]) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 393.675099] FAULT_INJECTION: forcing a failure. [ 393.675099] name failslab, interval 1, probability 0, space 0, times 0 [ 393.729397] CPU: 0 PID: 21844 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 393.737567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 393.747099] Call Trace: [ 393.749891] dump_stack+0x13e/0x194 [ 393.753541] should_fail.cold+0x10a/0x14b [ 393.757734] should_failslab+0xd6/0x130 [ 393.761713] kmem_cache_alloc+0x2b5/0x770 [ 393.765876] ? __debug_object_init+0x167/0x830 [ 393.770478] selinux_inode_alloc_security+0xb1/0x2a0 [ 393.775586] security_inode_alloc+0x8f/0xd0 [ 393.779908] inode_init_always+0x576/0xb20 [ 393.784143] alloc_inode+0x7a/0x170 [ 393.787789] new_inode_pseudo+0x14/0xe0 [ 393.791767] new_inode+0x1b/0x40 [ 393.795136] __ext4_new_inode+0x363/0x4e90 [ 393.799393] ? lock_acquire+0x170/0x3f0 [ 393.803416] ? ext4_free_inode+0x1480/0x1480 [ 393.807824] ? avc_has_perm+0x2bb/0x480 [ 393.811962] ? __dquot_initialize+0x3f4/0x980 [ 393.816508] ? avc_has_perm_noaudit+0x400/0x400 [ 393.821189] ? __split_and_process_bio+0x8f0/0x940 [ 393.826134] ? dquot_get_next_dqblk+0x160/0x160 [ 393.830806] ? security_transition_sid+0xcb/0x120 [ 393.835656] ? security_transition_sid+0x9d/0x120 [ 393.840644] ext4_mkdir+0x2e4/0xb60 [ 393.844279] ? selinux_dentry_init_security+0x220/0x220 [ 393.849644] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 393.854318] ? security_inode_mkdir+0xcc/0x100 [ 393.858904] vfs_mkdir+0x3af/0x620 [ 393.862581] SyS_mkdir+0x1bc/0x210 [ 393.866129] ? SyS_mkdirat+0x210/0x210 [ 393.870016] ? do_syscall_64+0x4c/0x640 [ 393.873990] ? SyS_mkdirat+0x210/0x210 [ 393.877894] do_syscall_64+0x1d5/0x640 [ 393.881803] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 393.886997] RIP: 0033:0x45bca7 [ 393.890182] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 393.897904] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 393.905171] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 393.912443] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 393.919721] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 393.926999] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:25 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x80000001]}, 0x8, 0x0) 16:45:25 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) getsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000280), &(0x7f00000002c0)=0x6) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000240)={r4, &(0x7f0000000200)}, 0x20) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000200)={r3, r2, 0x7, 0x6, r2}, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x4000}, 0x8010) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:25 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080), 0x2) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:26 executing program 4 (fault-call:0 fault-nth:43): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 394.517650] FAULT_INJECTION: forcing a failure. [ 394.517650] name failslab, interval 1, probability 0, space 0, times 0 [ 394.529510] CPU: 0 PID: 21888 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 394.537402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 394.546785] Call Trace: [ 394.549427] dump_stack+0x13e/0x194 [ 394.553066] should_fail.cold+0x10a/0x14b [ 394.557222] ? save_trace+0x290/0x290 [ 394.561028] should_failslab+0xd6/0x130 [ 394.565009] __kmalloc+0x71/0x7c0 [ 394.568466] ? context_struct_to_string+0x323/0x610 [ 394.573484] ? mls_compute_context_len+0x3dc/0x5c0 [ 394.578495] ? flex_array_get+0x1b2/0x230 [ 394.582666] context_struct_to_string+0x323/0x610 [ 394.587521] ? security_load_policycaps+0x310/0x310 [ 394.592548] ? sidtab_search_core+0x17f/0x2a0 [ 394.597051] security_sid_to_context_core+0x187/0x200 [ 394.602260] selinux_inode_init_security+0x45a/0x680 [ 394.607368] ? ext4_get_acl+0xcb/0x500 [ 394.611278] ? selinux_inode_create+0x30/0x30 [ 394.615806] ? ext4_get_acl+0xd0/0x500 [ 394.619705] security_inode_init_security+0x15f/0x320 [ 394.624898] ? ext4_init_acl+0x190/0x190 [ 394.628964] ? security_kernel_post_read_file+0xd0/0xd0 [ 394.634338] ? insert_inode_locked+0x39e/0x4b0 [ 394.638937] __ext4_new_inode+0x353a/0x4e90 [ 394.643304] ? lock_acquire+0x170/0x3f0 [ 394.647290] ? ext4_free_inode+0x1480/0x1480 [ 394.651704] ? avc_has_perm+0x2bb/0x480 [ 394.655796] ? __dquot_initialize+0x3f4/0x980 [ 394.660299] ? avc_has_perm_noaudit+0x400/0x400 [ 394.664979] ? dquot_get_next_dqblk+0x160/0x160 [ 394.669660] ? security_transition_sid+0xcb/0x120 [ 394.674509] ? security_transition_sid+0x9d/0x120 [ 394.679377] ext4_mkdir+0x2e4/0xb60 [ 394.683018] ? selinux_dentry_init_security+0x220/0x220 [ 394.688510] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 394.693191] ? security_inode_mkdir+0xcc/0x100 [ 394.697788] vfs_mkdir+0x3af/0x620 [ 394.701357] SyS_mkdir+0x1bc/0x210 [ 394.704912] ? SyS_mkdirat+0x210/0x210 [ 394.708812] ? do_syscall_64+0x4c/0x640 [ 394.712795] ? SyS_mkdirat+0x210/0x210 [ 394.716687] do_syscall_64+0x1d5/0x640 [ 394.720585] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 394.725768] RIP: 0033:0x45bca7 [ 394.728984] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 394.736700] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 394.743992] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 394.751267] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 394.758537] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 16:45:26 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000100)={0x0, &(0x7f0000001540)}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x7, &(0x7f0000001480)=[{&(0x7f0000000040), 0x0, 0xfff}, {&(0x7f0000000200)="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", 0x1000, 0x9}, {&(0x7f0000000000)="9dc101dacd14b6c793f7170e1938d63c37f5aae9a203023a5bb98639101fb2dbc98fce", 0x23, 0xfffffffffffffffe}, {&(0x7f0000001200)="93e3337c43fe2a0dd9dc2b76a8e3a73c959b34eb72671b4884de34bdfb469382379dfedb5e13038874612320a66b7f961124e229214a05d92c57025bff3c8c0b11eb63097a147442e0919a62492325fba233cb64c98b11755651bedaf01609a1389e4f07a5d44963aa23c2c308ee16b10ba2bea3b9823c02fe142819028f644eaa9db7592e444c6ee142a77b5b539700ea2c937cc7b7a03e2d21a26a11031f603ab3138657ca485fa9e7321cdded6d5e64a75101658f43", 0xb7, 0x4a63}, {&(0x7f00000012c0)="1f14348030999eeefa0f83a9462622f5e175d22883d674a1a5833faffdf5cce583f30f3e1d9904ea564a0fca100928d4d3677f3431131ff18211d9d053be478fb422bf4816137637a737f340c18311d7c1d2096b79fd68007e53eb8d216833fa0620ac5ec9b5519678adab59bd90e15e2c5563770e49cb2ffea359ed664a4cfc10d000aab6e26c9cb2e319f3750d7d47453086cc87a76e8dcab21da2861e4a1d1ea4966b", 0xa4, 0x3}, {&(0x7f0000000140)="ac384f5f88fee83db738e75968d0c6b509", 0x11, 0x5}, {&(0x7f0000001380)="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", 0xfa, 0x6523}], 0x0, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000001740)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001700)={&(0x7f0000001780)=ANY=[@ANYBLOB="5400000003080300001100010073aacb7cb100003ad5d3600c6b8b0000240004800800024000000003080040000004000800af180670fed4305794b302400000007f0500030006000000000000000000000000fe9cbcf830ccc0f840e5108c6613e143f313712db4a4d6203da44e5035f72dc8e4b390e6f1d193e88d97f7c773e4c777335360acea404340bcd7db7f79411fa66d3c9b117bf7b76b7ef884c5375cfb"], 0x54}, 0x1, 0x0, 0x0, 0x4004094}, 0x40000) lremovexattr(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)=@known='trusted.overlay.impure\x00') [ 394.765819] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:26 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, 0xffffffffffffffff, 0x81e6c000) ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611) 16:45:26 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x1000, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:26 executing program 4 (fault-call:0 fault-nth:44): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 395.246828] FAULT_INJECTION: forcing a failure. [ 395.246828] name failslab, interval 1, probability 0, space 0, times 0 [ 395.290572] CPU: 0 PID: 21919 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 395.298500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.307861] Call Trace: [ 395.310470] dump_stack+0x13e/0x194 [ 395.314120] should_fail.cold+0x10a/0x14b [ 395.318287] should_failslab+0xd6/0x130 [ 395.322272] __kmalloc+0x2e9/0x7c0 [ 395.325818] ? ext4_find_extent+0x71a/0x990 [ 395.330147] ? __lock_acquire+0x5f7/0x4620 [ 395.334396] ext4_find_extent+0x71a/0x990 [ 395.338579] ext4_ext_map_blocks+0x16f/0x4b80 [ 395.343100] ? save_trace+0x290/0x290 [ 395.346904] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 395.352007] ? save_trace+0x290/0x290 [ 395.355819] ? lock_acquire+0x170/0x3f0 [ 395.359794] ? ext4_map_blocks+0x798/0x1610 [ 395.364140] ext4_map_blocks+0x7ea/0x1610 [ 395.368299] ? ext4_issue_zeroout+0x150/0x150 [ 395.372883] ? __ext4_new_inode+0x27c/0x4e90 [ 395.377307] ext4_getblk+0x98/0x3f0 [ 395.380944] ? ext4_iomap_begin+0x7f0/0x7f0 [ 395.385277] ? __dquot_initialize+0x3f4/0x980 16:45:26 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) pipe(&(0x7f0000000b80)) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000780)=0xffffffffffffffc7) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x3c, 0x0, 0x0, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}]}, 0x3c}}, 0x8000) setreuid(0x0, r1) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r4) syz_mount_image$jfs(&(0x7f0000000080)='jfs\x00', &(0x7f00000000c0)='./file0\x00', 0x9, 0x8, &(0x7f0000000680)=[{&(0x7f0000000200)="de8c19dc303ab13357080632d631af475d4324b295bb1dee8b464b8b5b2556bb598dd408b207f5fa883db329ddcebbc86538527ff9ecd82f1f8e4b98eb29d181284a69d9d0f58d05b91a81e5a2cc1487e38362a9f64957e02381da16efb775ae9d138422d9cc2849087934e731374891905e7ce7c77fe037bb2bdba761dec4531ee312ec75635acab9d0f8cb3dcd2b3f137f154e5ee674ced93ed3802646b9ce818ee9e2e384c2", 0xa7, 0x2}, {&(0x7f0000000100), 0x0, 0x2}, {&(0x7f00000002c0)="3d3979ca1cc5b6cb459336436fd111", 0xf, 0x71}, {&(0x7f0000000300)="8621c08b68a890c62f906cc4395891ebb5e5bdf5a222434baecf1af703a1f3dd3a76478554a62228f055ce879afe93ea2bb7ce506bb86bbff4d9d79d1fcb3fadeea92ea3884ff8a7be1505b4c7a999804b509b2093d324afb10f8c81041d3a5661043552873aa93e10dff6309539afead4cfd4a55a953f81452d2ef1b08b0f2d956442ac7290ef2f5adf5ed43c5d2baf8941017bb471c8da89153bf6b2614083f0", 0xa1}, {&(0x7f00000003c0)="8f25d45d5b3c7d97c6ca8dd4ae5ef622984fbf86548bd5d66004c7921db8804ab9f18f69f61ac8020dd1b0af0cd638219315f9b9ccefdcb764c7fe610438d146f3413caee46baf4d6180c4fce8ecf739290de6b2a0712ed356950d2e6d3aef581f68f1ad3b154c24e826ae792527a60f21a708655280d74588b08fbc5fd8b8c184ebd34c7df19e9c414b19a8fda56fedc2a21d34e405176bdd6d813e3258c3ab2d21ded40af575e978c34fb91f3755b0b60739834fa6b8b1e355a21d262ff09bcaebc65d824044cfe7a6943dd512c23a4d2d4bcc6c026234783338928ee60c192afafc", 0xe3}, {&(0x7f00000004c0)="cfc54fc12ae18e3667da6f345d5fd19e44a0670783f878a181423dcb66daac89fe29133e93d88aae121084194c538f30c5262e57e2fac86e4dd2ed76fea8e12c12fbf6", 0x43, 0xffffffffffffaaeb}, {&(0x7f0000000540)="b53411b5cd817974397b93e2df132d136512e627119e6f3c4ab6e3cb9ce696f2102278cfb4771a61c9118d7f21c2a506001a50283a2d8f73858d84ef814639d2a71eff57391da642bb3c8425e23e1621e3fe4ca4c9762e24b4ad263c6c39fa9ad15cfe14b0f10f436a67b28c4976a17a96fb0b384f05000000844022cb72dce0916e96a14b44406a7b", 0x89, 0x5}, {&(0x7f0000000600)="1d7e462e2be8e3f73ab38f1bb4e5caffec8dec4783a44af9584a7715ea09a2591d6097fbe0cb1ebef67f3fe742fe1073ef7faefaf13117c517b89285f9a59e7c942c6a0fff2a38d3524e73cfba444bc06fee1b28348a5b66af9c1029c6d157a5b610e44a51d244980bf99c4fb91fd9e11a0b63ea8e", 0x75, 0x267b}], 0x40, &(0x7f0000000a00)=ANY=[@ANYBLOB='nodiscard,resize,nodiscard,quota,resize=0x0000000000000064,resize=0x0000000000000004,context=sysadm_u,dont_measure,appraise,fowner=', @ANYRESDEC=r1, @ANYBLOB="2c6673ee616d653d7c47504cc8bb4b", @ANYRESDEC=r4, @ANYBLOB="e0b320591b4b2bef8544f56bb0154d0faf8fb0e6525dc1a6a8d3f07451aa5f024580cdd79e3d7e51f6bc7dd28ed1e6b9e32b723b2b4ab551c891aa331be50bcb536050a5814f6f0d30574b9fdace4d1578e7290d6c2700"/98]) setxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0\x00', &(0x7f0000000800)='trusted.overlay.upper\x00', &(0x7f0000000840)=ANY=[@ANYBLOB="00fbf20800195185f4feb6c541cf44673a13efedf6febdc7e5bcaee19375149f8d0c658e8e63af346a9ae94310e4627833d604b8d58f1f32be1bd6a5632c0a8a16f181f270bc51062c71bf8c6e1aaae4f564a4c4bb4950a12a6bc522580a95ee2a3d12a84902d4b6a3ee379a8eec83515123443d891d5a41e601b7a819abce00e8eb14dadd068a2efe15a1893722d2ff096a8fe5c95b1d6a184dd3bddd807b29746f58548b6ec055570b3a57e22651407e54f0afbc4a9235ef323885970bbeddc1d8ee57c5dffa3af0663e3353462397d31bc33fe91a5181e48893952ad8770df746af8c488b45a81ce31ae8a7309456e1e04b022d50e9bed7df6acb85ce47fd4f3ebb14ef5d754953aa5030dbaec25c5e3c698d1b3151ab7fe83683a2"], 0xf2, 0x1) [ 395.389782] ext4_bread+0x6c/0x1a0 [ 395.393330] ? ext4_getblk+0x3f0/0x3f0 [ 395.397220] ? dquot_get_next_dqblk+0x160/0x160 [ 395.401891] ? security_transition_sid+0xcb/0x120 [ 395.406746] ? security_transition_sid+0x9d/0x120 [ 395.411595] ext4_append+0x143/0x350 [ 395.415318] ext4_mkdir+0x4c9/0xb60 [ 395.418968] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 395.423654] ? security_inode_mkdir+0xcc/0x100 [ 395.428250] vfs_mkdir+0x3af/0x620 [ 395.431796] SyS_mkdir+0x1bc/0x210 [ 395.435342] ? SyS_mkdirat+0x210/0x210 [ 395.439238] ? do_syscall_64+0x4c/0x640 [ 395.443215] ? SyS_mkdirat+0x210/0x210 [ 395.447118] do_syscall_64+0x1d5/0x640 [ 395.451018] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 395.456206] RIP: 0033:0x45bca7 [ 395.459759] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 395.467470] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 395.474738] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 395.482007] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 395.489286] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 395.496558] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 395.518520] print_req_error: 53 callbacks suppressed [ 395.523921] print_req_error: I/O error, dev loop5, sector 0 16:45:27 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x119840, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000740)=0x3ff, 0x4) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000280)=@llc={0x1a, 0x7, 0x4, 0xff, 0x7, 0x1, @dev={[], 0x31}}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000340)="1b38f577cd22e3fc45807841c8f76eef", 0x10}, {&(0x7f0000000380)="c86102b298fb14982e99a16a100feb0563bc64dcd1f15e15fb1a7e5b6f95b30e3a8f5f1ffc14456cb5e8f8bd064d783512b54dfaef7d066cacaa43601ee18142926d44625fb9087c9919213f0d2eb510516f0d0fcbe139", 0x57}, {&(0x7f0000000400)="b3e058887f81e83d106db9fe73d0be5c5926b916387334c20a7b0f40a4a026d1f50159475fe34aef2d78b72a22be5c5353d167cc94d90cb66bbadb8d70a9f8800c87f33f32d54526d15a1199df2239bd5034c72fd3055eeda128cc6bae6da04f9f0b59cf5914c8a5942eafbdff56ef6242c331894ef5d2d75b7d0bdec8a4fbca04bfd9b53e2e29d31ca637a07d6de89d495d10fa40466755df79a99a7477c615378d7bd48ede5d5ede0b53df2005d3d807c7fdf2071c768c0203e4f6c8f772a1d076d062d5dd3fb4b2ccca0e03c80fbaa93b4802b8f84554e2ab4d6f14415828c668a5bd90", 0xe5}, {&(0x7f0000000500)="70abc831232e716b5c5530078b786abdd056300727c97e57957c328fc4e329c6187504cec0102e0fe8649946b8640aa057b7cd24d14793f58e7b5cd001fe1a61a274a6c4e128706f47c842fd1abcfc1e34e36847a95d85ba6f423893233168293edccc885d4eb3942c448707d14b74628ff23385cf73441b8e00c6945662ea9a78fb49a2a61d483a94faead1e402", 0x8e}, {&(0x7f00000005c0)="74309acebe42683e70b8c505ba33c121c705cb92a7a2e50e60bc49de1afef4eb13c5f45ba2b65792817f1e666d973692bd", 0x31}], 0x5, &(0x7f0000000680)=[@timestamping={{0x14, 0x1, 0x25, 0xfffffe00}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x81}}], 0x60}, 0x1) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x30, 0x1405, 0x100, 0x70bd2b, 0x25dfdbff, "", [{{0x8}, {0x8, 0x3, 0x3}}, {{0x8, 0x1, 0x2}, {0x8, 0x3, 0x3}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000085) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r2, 0xc0406619, &(0x7f0000000240)={{0x3, 0x0, @reserved="6ef438220d6b2c50cf3cde55cdc3c00823225b169f334638c45c506ea0253c6c"}}) sendto$l2tp(r0, &(0x7f0000000080)="c08a38a9c4ad4c8845405bfc0251dc9cab62ca732b7e2cdadcea202cd8c1245cc02091dc1901849a62066f472af192c19c44e99d488102324cee94a716eae217dc5cbc5edcadfb32a5fa7d73cd2b584e54276037134f56925a333b6171f8db976ad433748b5f50051504b0022b97aada29026055855ccc5984cefef018feecaeebe4602384bb147aae52b5743ef7908a8ea3cbdc7b3bb982f9dfd7992c", 0x9d, 0x20000055, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:27 executing program 0: utime(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x3f, 0x8}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x800, 0x0, &(0x7f0000000040), 0x21000, 0x0) 16:45:27 executing program 4 (fault-call:0 fault-nth:45): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:27 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getpeername$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @initdev}, &(0x7f0000000100)=0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r2 = socket(0x11, 0x800000003, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de83a7635c0bcd280063c657d6d37000200008cdaa4402ad7374f49128dd6ee0f57e5a61e6d4e60c0ea441876d68f9a0b8c5b619458a7951f02d0479a4227875bc094f3a7ba03de8dde6aef64503027d2a08d8c4b45984c56ceef3fb51b91b66343961bee868d0b0a9e6a4228017e664a7dc6d1"], 0x48}}, 0x0) bind$packet(r2, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r2, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r7 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=ANY=[@ANYBLOB="4800000024000b0e00"/20, @ANYRES32=r6, @ANYBLOB="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"], 0x48}}, 0x0) r8 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0xc51, 0x2080c0) set_robust_list(&(0x7f0000000700)={&(0x7f00000006c0)={&(0x7f0000000680)}, 0x1ff, 0xfffffffffffffffd}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f0000000440)={0x17, 0x87fd, 0x10001, 0x4, 0x8, r1, 0x5, [], r6, r8, 0x0, 0x2, 0x4}, 0x40) write$UHID_CREATE(r0, &(0x7f0000000300)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000200)=""/204, 0xcc, 0xfff, 0x6, 0x6, 0x6, 0x4}}, 0x120) 16:45:27 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x80000, 0x0) [ 395.714401] FAULT_INJECTION: forcing a failure. [ 395.714401] name failslab, interval 1, probability 0, space 0, times 0 [ 395.746822] CPU: 1 PID: 21946 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 395.754735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 395.764093] Call Trace: [ 395.766729] dump_stack+0x13e/0x194 [ 395.770376] should_fail.cold+0x10a/0x14b [ 395.774537] should_failslab+0xd6/0x130 [ 395.779215] __kmalloc+0x2e9/0x7c0 [ 395.782775] ? ext4_find_extent+0x71a/0x990 [ 395.787103] ? __lock_acquire+0x5f7/0x4620 [ 395.791348] ext4_find_extent+0x71a/0x990 [ 395.795504] ext4_ext_map_blocks+0x16f/0x4b80 [ 395.800011] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 395.805031] ? save_trace+0x290/0x290 [ 395.808851] ? lock_acquire+0x170/0x3f0 [ 395.812836] ? ext4_map_blocks+0x3c7/0x1610 [ 395.817173] ext4_map_blocks+0xc6b/0x1610 [ 395.821330] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 395.826818] ? ext4_issue_zeroout+0x150/0x150 [ 395.831322] ? __ext4_new_inode+0x27c/0x4e90 [ 395.835753] ext4_getblk+0x98/0x3f0 [ 395.839392] ? ext4_iomap_begin+0x7f0/0x7f0 [ 395.843722] ? __dquot_initialize+0x3f4/0x980 [ 395.848226] ext4_bread+0x6c/0x1a0 [ 395.851770] ? ext4_getblk+0x3f0/0x3f0 [ 395.855659] ? dquot_get_next_dqblk+0x160/0x160 [ 395.860329] ? security_transition_sid+0xcb/0x120 [ 395.865173] ? security_transition_sid+0x9d/0x120 [ 395.870044] ext4_append+0x143/0x350 [ 395.873765] ext4_mkdir+0x4c9/0xb60 [ 395.877406] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 395.882081] ? security_inode_mkdir+0xcc/0x100 [ 395.886673] vfs_mkdir+0x3af/0x620 [ 395.890222] SyS_mkdir+0x1bc/0x210 [ 395.893768] ? SyS_mkdirat+0x210/0x210 [ 395.897659] ? do_syscall_64+0x4c/0x640 [ 395.901633] ? SyS_mkdirat+0x210/0x210 [ 395.905534] do_syscall_64+0x1d5/0x640 [ 395.907892] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 395.909429] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 395.923224] RIP: 0033:0x45bca7 [ 395.926415] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 395.934129] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 395.941401] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 395.948672] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 395.955946] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 395.963218] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:27 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000180)) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x240, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f00000000c0)={0x9, 0x32314d54, 0x4, 0xfd0, 0x3, @discrete={0x5, 0x9}}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:27 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x88200, 0x0) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={r3, @in6={{0xa, 0x4e22, 0x5, @dev={0xfe, 0x80, [], 0x28}}}, 0x4, 0x5}, &(0x7f00000000c0)=0x90) 16:45:27 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x60005, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000200)) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000100)=0x3) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) syz_open_dev$media(&(0x7f00000002c0)='/dev/media#\x00', 0x7, 0x46300) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x440840, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f0000000380)=0x1) accept$phonet_pipe(r3, &(0x7f0000000340), &(0x7f0000000280)=0x10) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x80, 0x0) 16:45:28 executing program 4 (fault-call:0 fault-nth:46): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 396.438617] FAULT_INJECTION: forcing a failure. [ 396.438617] name failslab, interval 1, probability 0, space 0, times 0 [ 396.483675] CPU: 0 PID: 21986 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 396.492559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.501921] Call Trace: [ 396.504524] dump_stack+0x13e/0x194 [ 396.508171] should_fail.cold+0x10a/0x14b [ 396.512331] should_failslab+0xd6/0x130 [ 396.516421] kmem_cache_alloc+0x2b5/0x770 [ 396.520600] ? rcu_read_lock_sched_held+0x10a/0x130 [ 396.525628] ? __mark_inode_dirty+0xbf7/0x1020 [ 396.530224] ext4_mb_new_blocks+0x520/0x35f0 [ 396.534650] ? ext4_ext_search_right+0x2bc/0xaa0 [ 396.539419] ? ext4_inode_to_goal_block+0x2a6/0x3b0 [ 396.544450] ext4_ext_map_blocks+0x24cd/0x4b80 [ 396.549057] ? ext4_find_delalloc_cluster+0xb0/0xb0 [ 396.554108] ? save_trace+0x290/0x290 [ 396.557966] ext4_map_blocks+0x7ea/0x1610 [ 396.562155] ? ext4_issue_zeroout+0x150/0x150 [ 396.566667] ? __ext4_new_inode+0x27c/0x4e90 [ 396.571122] ext4_getblk+0x98/0x3f0 [ 396.574759] ? ext4_iomap_begin+0x7f0/0x7f0 [ 396.579091] ? __dquot_initialize+0x3f4/0x980 [ 396.583610] ext4_bread+0x6c/0x1a0 [ 396.587163] ? ext4_getblk+0x3f0/0x3f0 [ 396.591058] ? dquot_get_next_dqblk+0x160/0x160 [ 396.595746] ? security_transition_sid+0xcb/0x120 [ 396.600601] ? security_transition_sid+0x9d/0x120 [ 396.605458] ext4_append+0x143/0x350 [ 396.609191] ext4_mkdir+0x4c9/0xb60 [ 396.612838] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 396.617523] ? security_inode_mkdir+0xcc/0x100 [ 396.622119] vfs_mkdir+0x3af/0x620 [ 396.625672] SyS_mkdir+0x1bc/0x210 [ 396.629223] ? SyS_mkdirat+0x210/0x210 [ 396.633130] ? do_syscall_64+0x4c/0x640 [ 396.637126] ? SyS_mkdirat+0x210/0x210 [ 396.641023] do_syscall_64+0x1d5/0x640 [ 396.644923] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 396.650119] RIP: 0033:0x45bca7 [ 396.653314] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 396.661025] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 396.668307] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 396.675581] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 396.682866] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 396.690147] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:28 executing program 5: syz_mount_image$btrfs(&(0x7f00000001c0)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x3, &(0x7f00000000c0)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000200)="a35d96ad5daa83a19a1e536e8db4cfaffacfc28d395bc4d718b00f3d18217fa926025bc679f1afe943d7f545bb22dcafeccd375a18af4968f012bfceb6ba8c2db05c82b141871d998c2fc2cd46b18065110d2a81c55241261b7bd2e393020ea96d4f90b71df61b0f30f34a749f50107464878056cc5ebb8c64d80f439cff28c6df414ae8d165c92f814d0c701621be8cb3098fe9a85fe2adc3ce92bc57c458cc1731e3ec1414eaaf438b390fb9969c9c2141189f7053337f4478b421638bd3d819fbff358cc642efdaa7748dd9802740c3fb849f373bec75fca7e064cd88f41d926889b08e6063d02e0de8e46767", 0x112, 0xa5}, {&(0x7f0000000080)="160aac83e4dacbfcd9f68ecaf1e5288e492092a8ba", 0x15, 0x5}], 0x8, 0x0) 16:45:28 executing program 4 (fault-call:0 fault-nth:47): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 396.804552] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'. [ 396.856667] FAULT_INJECTION: forcing a failure. [ 396.856667] name failslab, interval 1, probability 0, space 0, times 0 [ 396.868303] CPU: 1 PID: 22007 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 396.876190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 396.885547] Call Trace: [ 396.888144] dump_stack+0x13e/0x194 [ 396.891792] should_fail.cold+0x10a/0x14b [ 396.895954] ? find_held_lock+0x2d/0x110 [ 396.900033] should_failslab+0xd6/0x130 [ 396.904022] kmem_cache_alloc+0x44/0x770 [ 396.908095] ? lock_downgrade+0x6e0/0x6e0 [ 396.912320] __sigqueue_alloc+0x1b8/0x3e0 [ 396.916482] __send_signal+0x194/0x1280 [ 396.920468] force_sig_info+0x240/0x340 [ 396.924452] force_sig_info_fault.constprop.0+0x185/0x260 [ 396.929999] ? is_prefetch.isra.0+0x310/0x310 [ 396.934498] ? is_prefetch.isra.0+0x6c/0x310 [ 396.938917] ? trace_raw_output_x86_exceptions+0x130/0x130 [ 396.944563] ? lock_downgrade+0x6e0/0x6e0 [ 396.948719] __bad_area_nosemaphore+0x1d9/0x2a0 [ 396.953393] ? up_read+0x17/0x30 16:45:28 executing program 2: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x6, 0x9}, 0x0) r1 = pkey_alloc(0x0, 0x6) pkey_free(r1) getpriority(0x0, r0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x20000000010000}], 0x0, 0x0) [ 396.956764] __do_page_fault+0x859/0xb40 [ 396.960831] ? vmalloc_fault+0xdf0/0xdf0 [ 396.964893] ? do_page_fault+0x60/0x4f2 [ 396.968869] ? page_fault+0x2f/0x50 [ 396.972499] page_fault+0x45/0x50 [ 396.975952] RIP: 0bd9:0x4cdf51 [ 396.979136] RSP: 508100:000000000078bf00 EFLAGS: 00000003 [ 397.045675] print_req_error: I/O error, dev loop2, sector 128 [ 397.059406] print_req_error: I/O error, dev loop5, sector 0 16:45:28 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_mount_image$nfs4(&(0x7f0000000080)='nfs4\x00', &(0x7f00000000c0)='./file0\x00', 0x2, 0x2, &(0x7f0000000100)=[{&(0x7f0000000200)="09e0c9d2feea4a8503113fdd6101ec00c949517ff06a2a7717cdbfe72414e73df36acfc03d5f180166d97ba75f07f2b27ac9451f34aaa6bfa5535042de166d48c1ec97d0d857ae81d5166bf90f6de79c65e297", 0x53, 0xfffffffffffffffc}, {&(0x7f0000000280)="a3f91c03606df77960be2bf790d34e4ac2ddfe4782a8262fa91acedc0e30573f863898644053968af4e87b861ad3503ded12e40ab7d814eeba33f605a4d37d3faae4e16f937db6b1b3a771c40d7bd865f97098c7432af105a99284a33f12fdc122737069e0587b0cab41e3de8405a8ec32dbdb6033f34ce2d4f0f6581a3bfed2cff89582e2f5a3271b031bd5d96d2ff1a06f1fa8c65df2fe81c4da5e396b8cbe11d7b6774b7d924288eda7d3f90c5f524c226f2682ccc2c2744038f2fa345f9c03763d43fb027e6626c4774618a6ea9a2071ccb416b0adaa54d6385035952f93eaa5423c52798806e6a694f257099698fbe90e8d4e2ebd", 0xf7, 0x7fffffff}], 0x100000, &(0x7f0000000380)='btrfs\x00') 16:45:28 executing program 4 (fault-call:0 fault-nth:48): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:28 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000080)={'veth1_virt_wifi\x00', {0x2, 0x4e20, @multicast2}}) [ 397.226683] FAULT_INJECTION: forcing a failure. [ 397.226683] name failslab, interval 1, probability 0, space 0, times 0 [ 397.238482] CPU: 0 PID: 22030 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 397.246379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.250632] print_req_error: I/O error, dev loop5, sector 0 [ 397.255743] Call Trace: [ 397.255837] dump_stack+0x13e/0x194 [ 397.255853] should_fail.cold+0x10a/0x14b [ 397.271911] should_failslab+0xd6/0x130 [ 397.275896] kmem_cache_alloc+0x44/0x770 [ 397.279965] ? ext4_es_can_be_merged+0x164/0x220 [ 397.284717] __es_insert_extent+0x241/0xe20 [ 397.289039] ext4_es_insert_extent+0x1b9/0x530 [ 397.293607] ? ext4_es_find_delayed_extent_range+0x930/0x930 [ 397.299407] ext4_map_blocks+0x9f6/0x1610 [ 397.303557] ? ext4_issue_zeroout+0x150/0x150 [ 397.308053] ? __ext4_new_inode+0x27c/0x4e90 [ 397.312448] ext4_getblk+0x98/0x3f0 [ 397.316058] ? ext4_iomap_begin+0x7f0/0x7f0 [ 397.320363] ? __dquot_initialize+0x3f4/0x980 [ 397.324842] ext4_bread+0x6c/0x1a0 [ 397.328362] ? ext4_getblk+0x3f0/0x3f0 [ 397.332242] ? dquot_get_next_dqblk+0x160/0x160 [ 397.336893] ? security_transition_sid+0xcb/0x120 [ 397.341718] ? security_transition_sid+0x9d/0x120 [ 397.346545] ext4_append+0x143/0x350 [ 397.350255] ext4_mkdir+0x4c9/0xb60 [ 397.353871] ? ext4_init_dot_dotdot+0x4b0/0x4b0 [ 397.358527] ? security_inode_mkdir+0xcc/0x100 [ 397.363092] vfs_mkdir+0x3af/0x620 [ 397.366613] SyS_mkdir+0x1bc/0x210 [ 397.370147] ? SyS_mkdirat+0x210/0x210 [ 397.374018] ? do_syscall_64+0x4c/0x640 [ 397.378010] ? SyS_mkdirat+0x210/0x210 [ 397.381929] do_syscall_64+0x1d5/0x640 [ 397.385818] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 397.390998] RIP: 0033:0x45bca7 [ 397.394183] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 397.401908] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045bca7 [ 397.409166] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200001c0 [ 397.416423] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 397.423676] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 397.430926] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:29 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) 16:45:29 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02007a0a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x49, 0x10000}], 0x200000, 0x0) 16:45:29 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fcntl$addseals(r0, 0x409, 0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:29 executing program 4 (fault-call:0 fault-nth:49): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 397.789747] FAULT_INJECTION: forcing a failure. [ 397.789747] name failslab, interval 1, probability 0, space 0, times 0 [ 397.800991] CPU: 0 PID: 22055 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 397.808878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 397.818238] Call Trace: [ 397.820870] dump_stack+0x13e/0x194 [ 397.824509] should_fail.cold+0x10a/0x14b [ 397.828665] ? find_held_lock+0x2d/0x110 [ 397.832733] should_failslab+0xd6/0x130 [ 397.836717] kmem_cache_alloc+0x44/0x770 [ 397.840784] ? lock_downgrade+0x6e0/0x6e0 [ 397.844952] __sigqueue_alloc+0x1b8/0x3e0 [ 397.849112] __send_signal+0x194/0x1280 [ 397.853096] force_sig_info+0x240/0x340 [ 397.857080] force_sig_info_fault.constprop.0+0x185/0x260 [ 397.862626] ? is_prefetch.isra.0+0x310/0x310 [ 397.867131] ? is_prefetch.isra.0+0x6c/0x310 [ 397.871573] ? trace_raw_output_x86_exceptions+0x130/0x130 [ 397.877212] ? lock_downgrade+0x6e0/0x6e0 [ 397.881371] __bad_area_nosemaphore+0x1d9/0x2a0 [ 397.886056] ? up_read+0x17/0x30 [ 397.889431] __do_page_fault+0x859/0xb40 [ 397.893535] ? vmalloc_fault+0xdf0/0xdf0 [ 397.897609] ? do_page_fault+0x60/0x4f2 [ 397.901614] ? page_fault+0x2f/0x50 [ 397.905253] page_fault+0x45/0x50 [ 397.908739] RIP: 0bd9:0x4cdf51 16:45:29 executing program 5: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x5, &(0x7f0000002280)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}, {&(0x7f0000000200)="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", 0x1000, 0xfffffffffffffffd}, {&(0x7f00000000c0)="17a5b9d5f8ea3ccb723aec12b30c3c734e7d4c2df259fc13bae7a5de252e0c84e3f1dd58c82865184023e2c3ae1ed9bbafffeafc7e9edbc3742f8b5a3d99f681820a43", 0x43, 0x8}, {&(0x7f0000002300)="a0fef37ceca4329ac023c67efa9168d23b504421e014b4b6e48d53feeb0b8f4f831a389111e9298169a0d9c3a330010fb9f1cb61c3add76212f25b62d3e142cc50b001e698b4d383df387afc45b6980653a3ea7c49a65f8350113922b1f0a8773cd48df897b729a05008638b10d9e06bf6c75b7f634e7c4b559f7f6d47efec065f94c8bb8cea91c550cff23078c4741349818ab588182d7097f744d12e1aa823760389009aae3c9c39e004d645b2a63367b7ca515acddf863b4e08804f235143a1f509537ad998040b21491186e2213fe9d1895379a77b2785b8250718be3e83faed4b06ea7b5e54899c997868487cc2e9ce1cf11314c58ed46f19507ca00c66ea422dad2d22a5727e195af0364083ae2b5225822c5e56cfef5764f24a25d9fdd8559a46e1477e569a89e12950af0c437a0ea0b0d633c50ad1dc281fe6743de932be2ea3f18326d9ff67cfef5fab1ae9fbf937584f62da91b1fe86239c161c5c71687ba343357d0372ca07c1c2cf61846a03df2e913e0595e211654d93c9e5109429e9956b3e72e32934cc7fa5f61020407844c78a2dea7c0b4f2d0d32fcfe8ed59f0b00276eb456c03d0698285f7aa3e937be587313b194e6687e685e1b585aeea1b3163238d967340c77806fec2ffbbfcecffec47252edd9f168628ef2c376200d4645bb72b23b8fb8cdd49864d8f57dad3ccf35d4a5e6a217045e3a32b7d6dcc54d9ea208332990cb5462f51a97bedfafd128f144c75f48770497bba97a6fc1df5f62f67bdca2fde2b06005040c7fdcfd83a6cac4395baf63b2474190d3ee06282d7a6c8633af064f7b03e25ba3c9436f572524748d6a7c1301795e6da3bbe8ef7623fd81fd9bb4777d81b505e958adb6895cb7f8eb6290c5c8f2cd511ee49ea295f017bbbf6f35bcd5087d94d99f025f8aad4342a184d68496a061e7c261d0415edc7c5eb0c9b4864c72c3cb025231c01c55a686f10467fa60b888d1d7b677763055109cb3029c4af48e423f864e214a201664ae842f06b37abf6f5cf28e8f888a5be85637a3bdcb22e12702050cf7aac3cf5ee9e24a32d38afcee40874ff907add77e7170dfc6a7ed4910e0661f8da617a76c818f6e77994ca386465e38b3e9024c028948d28091888a79dde864414b32d80a71a2615b22e9c91f4487076d28046d222919c2f848db1a90be53bdbc2319408e321407711d8447cae70c83d70437b9e11ccf0d0e72a2825351edf3196ac7a78f03c1ad47fc6ba3354e86eb72ee19a2da9499f33e536b23ddc5904c5ddcbb7dbb7d0b5e30027c316a1ba1eca674f64b7bd1be5b089aae3f57ef62c83ba9e989e02873bbad635f8a248a64ce6ebc2287ea5541ba56a5c193163296140197885727501b780be08b55d792ad63d3331fb5807c3307d3501489d3d243f2ead854dd2691dbac02abea3d123fa388396cb25b68e37186b76021ea30055748440f4b64693b54c041bc49df45e9c37bef19bc90b5421e0682e7c6be557722c4e8f4167c3c5308728891ee4bbcad311a28f6822ef73904b4aaf73942c80fbcd9fca7164d489430820ac1bc49c25ba5d3738395133bada03ddd990ec90e292f83876ec0e03451ddaf6c70681e5ef54ecfa47970cbb30edfbf31eec730dc90fdea9eba30aa76c89bc120b9c0f1578cccdfc861be162084c17bb65527f0bfd498b4ed1fd263ef36b9add12c972f3df2a4da45bd5fee7238d52a45091a5876861b2997618a73a5cff3e45047bd7d53866752e90a151d30c7527a03b823cdf65c6831fa74940678e24d7565b0cc733a9d87c93f5c9c20df79c39bc85851712e16a69ee8f1f484321f5be7b60c70bd9e32a2a13dd2518bebb85d9fe15821f86374f076f5ae89188344d1a791ded01df6f835ede6ca1b1982494ab33557efd82d07df05a424e5c2b647320c628176abb3a7d563c746b8f6b36722d699b12d3dd830d33e1f1709dc7174608a40299b9811e1a9c10b12e89dc8989328e2457adac0c05071b86d99b552ba7b07c39e10f0499f8946c6b94aeefe3385bedb6148f2065eabec7fc005aed8ae9032983a9cf2d8cb586fb925d9b380be44c81f74aeea812ae5bd450d64eef133e61d26b0ad50a7fd728d18b00464083ec23237bb6b9a42e3d2c42ea488d09b3c25837d7fea8ee997480ea5f0bf0fd7363d550f13f023639c65c37328e57d48533471ff28e276fb92e5155a0a78ded974dab28d78a086ef3446a439c52a79db0630687f6cadf88a10d8c4aa15640a95b64ca5f7a568a4ef39ea1fc63ba741ab5df54d5e1f950217d18f1871577f4ea627cdea6c836ca6b10af0197313ab213208286493e39073279cacc357dba7bf1e907be37107e7f01034a592b5228f24f1d10a1bb9d0903787f2db79683a9b90ee576f26fffde1d8ff057985eddc0692832eb68f8097ab0a4eab311e6f14d4415b79ec6dcba703ab1b074ee0de79060d055d6eb13888920de0d0f98937b5d818fcd1f3170beee08ae1a5e71048495b7a2da400e3ecf8adc2260ec39b26edbba8555cb7dbd8a570a963824c362e7854ae4691e40f81a6432d160777ab80d21658b61e7e7a7b1a8059fc16bc7d76e57e1eadcd582afa4af5f30d578630af4ee35a412d813321a33aa355f242d2383e1bdcece32bb155c419a24177022a7c625b87ba6ff9bda5b091c319be6f770a66dbb26d010f84f6dc410ad953ac2decc59e96da8fa709bcb4dbf4e71712a272e1f42b04f0370cc24224dee945218c5cd03c116e3c853f73a9a8be3f67f87f9d4dfd51d82163d1a775a89480d56940cca5d3bafaa6045041aed5833b22e9513679f045b5bc032c976740158cc5c85af2c617cfa5988650f7b36353ce3142b2f7d06a2bd378d9b6b61cde2a296aebadc9923859aeb363db4534eab421d1fb425c2c9b9357e68e501675974874bbf2055c072cd46d8b5904833091c558fcc5bcb8e5c0088c9c3ba42a286a27566ea4d52e7b49875d700090e665e438d7e01cb5d4371e7e9767b0ffb30b32233a9e01e8c3f74ef3132a383bc546e77c3fa73a755262e0a4dbefe0f8e588268d56fed4ca828244b42747b49cfc9763313e1ff8e5f2163e799d0af7277569ad6604bfdbbdb7d6eb89e150952eb22be61417d465e7c70412e76f648ae35f08abc08fce806ad61d9ba379a50bcf55141b599f70eedc5377c705c2220a9733d122fc20e7e5412cde380fd530a075347e58504932587e7c82eb09a0b0b4402088ebea46a9aaaaed92615982429ed8b397f5de30a2efd989cf25bc876443e373f03e395f53f06b57306df70c43545af71a21b350c29cd07e62153132db3c928c163e71965185fc7191fdbdda7fb446930bb24bcc3d7eec1f89f5772b5d53ec8894280a479a7b42a290e074db4e4389a523b495a587d4306017a69484f739bae20974fe84b653bb4869ba96c259695b1366e122a4137c4baf00a0f2827f72aee6f28b7088c54fa833d57180a61f3e18cbb00d0259479213fbd3b2d86c0d02eaf3cbcd288b1afee14a238bcd5668223094f1ccc47fff468ad0b2cf09a5882a02ac961ff4ac4c9edaa1f20ea1946a2bc64c0fc509143389572321093dff0d3c63b7585d41966bbeb54fb9935a4526f028eac9462b523f2947f8ebe4397be614464e5c2c76b399e3bc7f5c891f628cb484924874795b49a427e4487622b3106febc13730ae79191d8f969631bacab92b3446ef690ca3d8047dcddcbcd036b3366a637135dbb5b8eb477f57e2a42a8e399921724849dc42ddd76e3e23375b699f59ff3c6c2851978c30378cec1420ddfbbdea73cfccfa49720ca008714632fdfe94837d8d389148e9aac6f888fe63820f5813ca2a6250a47a24e0525408e7571ff223fdd348a05a2f550b49c6c503a549c831db480dd0c59050432ac766bd376108b8ba7e23c353c9c90d1567f6515924269a10c75e14a53190f0e06bacac8b91a130f975cac9f0f0412e0faaea8d943cef8e9e6c7515fb5386b961a102becf094f30958ad6f9d3a90064938e5edf87b6695b6ab5cbe7a275363346614c416c24e855b4459461418bd1051d574c535485a46a19887ae0d1979911829fd26b7efa4cbc31dab0b64d83f2102e363f12d58cea025850657ea5917417a41369086d72ad895faca89dcdae3508db35307aafc4967420f0bcebed680b934cbe1eef5d6f88d328e5651e8046e49d9dc64cc5e744919f36c959750f350833bc6fb35bb66f97ec3cd571fdcce71db4c0c72f572ae0c416d89279cf758a906db1de4abd3c5f2bd2a5d9ccc32381d8b9fdc18abf2792746e9add22363f9e78caae08e976c3070b1825815023644e6566626012cbeaa45c513dfcce125c04eb14e0e817f8907f2fba5cc6f88f13dc9ea9442ff76be0ff9e40fd5a09d6405e7ab2349d34e6098a62007a5f6217857c162942e8f6b66d3370f71bbe5ac7eb99af5b575990b73dfcc75a1ee59f86e652a4dce4f85ba6e416035d2defdf957bddf568b125271cdb462fcf03ff616111d1a1c475f6bdf104f5fed907f141f5937e7efee840ea9b85cea4ce69d6087cffa1c40788d81b91b5773d35893d22fd13c15a6efcfffc51a702d5117f116157b56015609a419550900a3586b2b3dba4555bd8f72299f684df018201e3115ba6c21d59c5fe27b8fa4a9fa171d316363021e12b44f388bebb15f2fbd26e6b1fe9647152ac6b6c861c1bd54288d2f49e892eb8bb6a4869ebddc85a25859c2942b10f35daa6ebbd4158b00a036997be20631fc871abed2ecde9b859bf201d5c9f096b90192bee8e0a302473c7d9740749166df794ee9481470f646a6de6884ab72cc7be9df9e8eb957f45db693c6f1a39254048f3a79ab402abd77aa0da570099dffa0f6c534738db907745fbfab6a57598955833ee05e21aa547b93b923b497d13fab0d6ca513cc68e059f571faf3b6da28d8140967306d2684de752edebd6c1140d42f79a80d28ce65400533b9025a3d66f59737f6907b342d9f0b6dd23806110ac31900872d25d8df8fff13fecd17966390fdb78b55b9740cd7385078f535c1bcdbfa8770adacc4f5b4bbb55487ea1281c21e1050822dc1e0958abb4859edcbc3eee7febc2724aaff3a0ed9f5411b4d21ec1132463271c6d2a56e3cf2dba3ff91c1d89fc6b14c141575336e1565dfb18d31a9903a2b295154949f417fdd955af7dcf57a7ba7f25a461a1663cf9e44ea340a7a6b5f2786bc43aa2a261cc82f6d7cf8477eb137bb4a0ebd4d4aab0975f14922faca03951c23e90f2a45d123b228cc1d74029a473168b9d6377955926e22c05090c2d24e1f4038bcdf975054ec253f5325d258eceadb67e50447fddcb6c3cf202aaa9bfa7ee672d83cf563bf187b4a7111ee97526f8b838d7cabecf6575f48e2b3079495d6de35b9dce5b15f54d7808fd176350d1ec4db80ba80e45b25070dc282da576062c7452315d3b67a9d6568831817b479e726d293ede5d676142311716e6a284b8f629b175a1d1b0b0b877ef7887124c1b22670dccc7b7e563ea61da47617d8429cfd7335325a54d76465f8925c6057028ceb1eb8cd2c60c9c628467383a9f11a55ceeff862703653b965ed81a4e917234d11ccf3d0b391fece616a04130641ae0646df9aaf5f2074fa1caa4ac5a9a2e4382e7b158cc19655c518f8356c6d5abec837bf50a4a00e01152a9eba303f419ba613adff40a69903e74029be9d9f7da907985311f2a9b8076ab664b5e55f2e19b3866ad287e86fcb0891c0cdbff23cc8fcc40000000000000000000125b554f8eec257c151a0eb51fec3fb1b98ea1fb72b20c39f45ee50334293d9b78db21bcc0308c4b4f026875e43eaffd4dc459cc31a670c9f2bb0bce5fdafd8054d191e41c5c4743e52eb493519258f56d847f9bdc8155d7ec8615448613d4ed738e31655905c9da33df8a3d95f7ff8e44a4dac959518691c11e3c4bf44c05a497e31b69a3e909c32bea797e79b1921a63aa1377417c28c2cc58d68d0d576f225818d9b88a798ad65f5142b9605c7c8256666a1a0445fba8dfe7bf2757cee526107bb31924289eeb6753be001a932269b60000", 0x10d1, 0x3}, {&(0x7f0000002200)="6fa564f581b60fec7382b2bd7d968297dbfa49938a6a23393a350af894e506c75eb2d3c2ae7703ed8175a56ded600a7f45b0fbb1ea82fbe04c5de01b02dec972ef63a81f5975e245ef29a3b58ea22a17f186cbf03c6ee45cefda92d3570a427eb82083bf6b5851782b23efa96e24ee9e63816b2bcf284c46", 0x78, 0x5}], 0x0, 0x0) 16:45:29 executing program 4 (fault-call:0 fault-nth:50): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 397.911947] RSP: 508100:000000000078bf00 EFLAGS: 00000003 [ 398.126545] FAULT_INJECTION: forcing a failure. [ 398.126545] name failslab, interval 1, probability 0, space 0, times 0 [ 398.143323] CPU: 1 PID: 22064 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 398.151207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.160685] Call Trace: [ 398.163387] dump_stack+0x13e/0x194 [ 398.167027] should_fail.cold+0x10a/0x14b [ 398.171177] ? find_held_lock+0x2d/0x110 [ 398.175244] should_failslab+0xd6/0x130 [ 398.179230] kmem_cache_alloc+0x44/0x770 [ 398.183303] ? lock_downgrade+0x6e0/0x6e0 [ 398.187472] __sigqueue_alloc+0x1b8/0x3e0 [ 398.191639] __send_signal+0x194/0x1280 [ 398.195638] force_sig_info+0x240/0x340 [ 398.199636] force_sig_info_fault.constprop.0+0x185/0x260 [ 398.205192] ? is_prefetch.isra.0+0x310/0x310 [ 398.209702] ? is_prefetch.isra.0+0x6c/0x310 [ 398.214155] ? trace_raw_output_x86_exceptions+0x130/0x130 [ 398.219804] ? lock_downgrade+0x6e0/0x6e0 [ 398.223961] __bad_area_nosemaphore+0x1d9/0x2a0 [ 398.228649] ? up_read+0x17/0x30 [ 398.232022] __do_page_fault+0x859/0xb40 [ 398.236098] ? vmalloc_fault+0xdf0/0xdf0 [ 398.240164] ? do_page_fault+0x60/0x4f2 [ 398.244146] ? page_fault+0x2f/0x50 [ 398.247779] page_fault+0x45/0x50 [ 398.251235] RIP: 0bd9:0x4cdf51 16:45:30 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket(0x11, 0x800000003, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000080)={'wg1\x00', r4}) 16:45:30 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x3, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x4, 0x0) 16:45:30 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') creat(&(0x7f0000000100)='./file0\x00', 0xb4) 16:45:30 executing program 4 (fault-call:0 fault-nth:51): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:30 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) stat(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)) [ 398.254422] RSP: 508100:000000000078bf00 EFLAGS: 00000003 [ 398.598253] FAULT_INJECTION: forcing a failure. [ 398.598253] name failslab, interval 1, probability 0, space 0, times 0 [ 398.650500] print_req_error: I/O error, dev loop5, sector 0 [ 398.687579] CPU: 0 PID: 22089 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 398.695503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.704871] Call Trace: [ 398.707470] dump_stack+0x13e/0x194 [ 398.711114] should_fail.cold+0x10a/0x14b [ 398.715280] should_failslab+0xd6/0x130 [ 398.719266] kmem_cache_alloc+0x2b5/0x770 [ 398.723424] ? save_trace+0x290/0x290 [ 398.727229] getname_flags+0xc8/0x560 [ 398.731041] user_path_at_empty+0x2a/0x50 [ 398.735195] do_mount+0x10b/0x24f0 [ 398.738740] ? copy_mount_options+0x59/0x2e0 [ 398.743153] ? rcu_read_lock_sched_held+0x10a/0x130 [ 398.748175] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 398.753028] ? copy_mount_string+0x40/0x40 [ 398.757341] ? __might_fault+0x177/0x1b0 [ 398.761407] ? _copy_from_user+0x94/0x100 [ 398.765567] ? copy_mnt_ns+0x8a0/0x8a0 [ 398.769464] ? copy_mount_options+0x1ec/0x2e0 [ 398.773963] ? copy_mnt_ns+0x8a0/0x8a0 [ 398.777864] SyS_mount+0xa8/0x120 [ 398.781326] ? copy_mnt_ns+0x8a0/0x8a0 [ 398.785224] do_syscall_64+0x1d5/0x640 [ 398.789123] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 398.794315] RIP: 0033:0x45f27a [ 398.797497] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 398.805205] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 398.812470] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 398.819739] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 398.827025] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 398.834295] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:30 executing program 4 (fault-call:0 fault-nth:52): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 399.199316] FAULT_INJECTION: forcing a failure. [ 399.199316] name failslab, interval 1, probability 0, space 0, times 0 [ 399.234797] CPU: 1 PID: 22107 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 399.242731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.252096] Call Trace: [ 399.254698] dump_stack+0x13e/0x194 [ 399.258336] should_fail.cold+0x10a/0x14b [ 399.262492] should_failslab+0xd6/0x130 [ 399.266471] kmem_cache_alloc_trace+0x2db/0x7b0 [ 399.271149] ? __might_fault+0x177/0x1b0 [ 399.275228] ? _copy_from_user+0x94/0x100 [ 399.279378] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.283280] copy_mount_options+0x59/0x2e0 [ 399.287534] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.291433] SyS_mount+0x84/0x120 [ 399.294894] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.298794] do_syscall_64+0x1d5/0x640 [ 399.302702] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.307894] RIP: 0033:0x45f27a [ 399.311083] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 399.318796] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 399.326067] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 399.333339] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 399.340616] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 16:45:30 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0xff, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8d6e453ac0ed02000a0000005868a86638aff0510000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x50022, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000540)=0x31) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, r0, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) r3 = socket(0x11, 0x800000003, 0x0) socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r6, 0x407, 0x0) write(r6, &(0x7f0000000340), 0x41395527) getsockopt$inet_mreqn(r6, 0x0, 0x20, &(0x7f0000000100)={@multicast2, @multicast2}, &(0x7f00000001c0)=0xc) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="48020000", @ANYRES16=0x0, @ANYBLOB="010025bd7000fcdbdf25010000004c000180140002006d6163766c616e31000000000000000008000100", @ANYRES32=r1, @ANYBLOB="0800010086908a661cb960aa23af8ac4dcc5a9f3bc6ee94317e4a87521ad8c905a9bd58fcb8d9b67295e939fd12922cec3e6b0c9d9e2715d9d0cf5333c8f88822a30c12b6257550712efbe5a9e39d9f28f32ca341ce9f25e", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="1400020074756e6c30000000000000000000000008000100", @ANYRES64=r7, @ANYBLOB="9001028014000180080001000500000008000100080000002c000180080001000700000008000100040000000800010004000000080001000700000008000100010000002400018008000100000000000800010000000000080001000700000008000100000000002c000180080001000400000008000100060000000800010003000000080001000300000008000100060000003c00018008000100000000000800010005000000080001000300000008000100050000000800010001000000080001000000000008000100050000005400018008000100030000000800010006000000080001000000000008000100070000000800010002000000080001000300000008000100040000000800010005000000080001000c00000008000100040000004c0001800800010000000000080001000100000008000100080000000800010004000000080001000000000008000100000000000800010004000000080001000400000008000100540b63ad0c0001800800010007000000140001800800010002000000080001000800000038000280340001800800010003000000080001000600000008000100070000000800010003000000080001000a00000008000100000000001800018014000200726f73653000000000000000000000000400030004000300"], 0xb}, 0x1, 0x0, 0x0, 0x1}, 0x4c890) [ 399.347887] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 399.395005] print_req_error: I/O error, dev loop2, sector 128 [ 399.395531] print_req_error: I/O error, dev loop2, sector 0 16:45:31 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x3) 16:45:31 executing program 4 (fault-call:0 fault-nth:53): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 399.703847] FAULT_INJECTION: forcing a failure. [ 399.703847] name failslab, interval 1, probability 0, space 0, times 0 [ 399.725987] CPU: 0 PID: 22136 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 399.733915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.743381] Call Trace: [ 399.745984] dump_stack+0x13e/0x194 [ 399.749633] should_fail.cold+0x10a/0x14b [ 399.753797] should_failslab+0xd6/0x130 [ 399.757799] kmem_cache_alloc+0x2b5/0x770 [ 399.761955] ? __alloc_pages_nodemask+0x5e0/0x700 [ 399.766821] getname_flags+0xc8/0x560 [ 399.770636] user_path_at_empty+0x2a/0x50 [ 399.774802] do_mount+0x10b/0x24f0 [ 399.778350] ? copy_mount_options+0x59/0x2e0 [ 399.782789] ? rcu_read_lock_sched_held+0x10a/0x130 [ 399.787847] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 399.792721] ? copy_mount_string+0x40/0x40 [ 399.796960] ? _copy_from_user+0x94/0x100 [ 399.801104] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.804999] ? copy_mount_options+0x1ec/0x2e0 [ 399.809495] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.813397] SyS_mount+0xa8/0x120 [ 399.816849] ? copy_mnt_ns+0x8a0/0x8a0 [ 399.820741] do_syscall_64+0x1d5/0x640 [ 399.824640] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 399.829831] RIP: 0033:0x45f27a [ 399.833017] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 399.840730] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 399.848009] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 399.855280] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 399.862767] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 399.870133] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:31 executing program 4 (fault-call:0 fault-nth:54): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 400.020678] FAULT_INJECTION: forcing a failure. [ 400.020678] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 400.032554] CPU: 1 PID: 22149 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 400.040440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.049803] Call Trace: [ 400.052402] dump_stack+0x13e/0x194 [ 400.056043] should_fail.cold+0x10a/0x14b [ 400.060202] __alloc_pages_nodemask+0x1bf/0x700 [ 400.064880] ? save_trace+0x290/0x290 [ 400.068693] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 400.073716] ? find_held_lock+0x2d/0x110 [ 400.077793] cache_grow_begin+0x7b/0x410 [ 400.081880] kmem_cache_alloc_trace+0x6cf/0x7b0 [ 400.086647] ? _copy_from_user+0x94/0x100 [ 400.090804] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.094701] copy_mount_options+0x59/0x2e0 [ 400.098943] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.102842] SyS_mount+0x84/0x120 [ 400.106294] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.110181] do_syscall_64+0x1d5/0x640 [ 400.114079] entry_SYSCALL_64_after_hwframe+0x42/0xb7 16:45:31 executing program 5: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bind$pptp(r1, &(0x7f0000000100)={0x18, 0x2, {0x2, @multicast2}}, 0x1e) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000200)=0x2, 0x4) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f00000000c0)=0x93c) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffffffffffffe, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x4}], 0x82000, 0x0) 16:45:31 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) r0 = socket$tipc(0x1e, 0x5, 0x0) r1 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r1, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) r2 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r2, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000002080)='/proc/self/net/pfkey\x00', 0x2, 0x0) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f00000020c0)='/dev/vsock\x00', 0x82, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000003640)=[{&(0x7f0000000080)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000580)=[{&(0x7f0000000200)="9da86cada7746e4e0310fbad186dcd776a2bc4f7dc8a732fcdd1e2e1e800846bb521b102962bc383297b12921e3fc190d5c30550cfa77938bf43c8acb205b80d34e2b725a97a1fe054f2da916277fff22e19d387524fd11c645ef167bed6b44084f8edad64a08a93464c2b009581912d74727b48954552a1fcb2d3503a3817d59ef144a4f1e4c955c82f04feb3e9b1b0b4b93f5e3c7d8ca7073d90bdcfd3965458cc74e25d33c433a10c180005445e9cd9009e0be976902cf6d4d4c6eacef5d2679f534d056b8f3786efade8", 0xcc}, {&(0x7f0000000100)="5d8aa499cd0ca64892a4868f4a1bbb520a0202c18eb25fadd4cca26231f3ea558bb6cfa7a615ea72a5f2126943c852fb61ac64b98c64354f2fc5dbeafce475", 0x3f}, {&(0x7f0000000300)="089ed9ba7e3e15100155ff202e631775c6597dedcf5ba71bfbfbc7045db7170b3d4b5e460ca4a570675fd42509c562bd994622bf4d1b01eb49442f175b02c826fd580350ea637601e06c815ae27389d34f3741210929770aaf70f405f399936901e33c4c281bbd3d1f51928b65996062a69fbfd320a29c131042f5c9e396ac149cb69608c0d2", 0x86}, {&(0x7f00000003c0)="df1e0c95599f64941301e52ae34ea968dde60226c3c0ee8657fec136313dad11828f760bbd1ac1053d6c2abb79e83c00610fac618329efaac456990db921a1ad9a19d0eb4aa33d74bdc0dc479e06df3d3bc2cce7785233fd014d183ca6ee17eeee3ea57c298a1d0236ca60d5fa3712593159aa654a", 0x75}, {&(0x7f0000000440)="630be7c06bc7e20813949501f0a7fe5f495b897042b172e00097bf9ea321a08cc8d05af8d74968e1dd8f04de7913828227a151bbfac445edd379d9c027e5c0520c791461556dc8cc635850", 0x4b}, {&(0x7f00000004c0)="7093ab0078bf386686fc8e85ef275adeb4974613cc9438f749ed9058f48a5f4eb41a04796810ac45384fb270d24df56f2467f66f664d5861e0dbbcf5fb81f0cb8eccc15f1128a02788950742960b8788b8371b6650b64648ad9ad09cbcb66647b8db34bc9f4bca7889d91117100839318d3d4dd2b17c5c769a10519c48c436211b334fb53a62638150a6ab4e03819bff5c7cd2fa3d68eea64470fa0a96633cd1", 0xa0}], 0x6, &(0x7f0000000640)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0, 0x8000}, {&(0x7f0000000700)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000780)="04229e6e1ffaedee5e98e22764ed161a884b7235f7a5db7de7aeca6d3d085e26828a935d00f2c2204a2a5f4650b6c8bf617cae2aac1bf4c047d17451c012d8aa5db1798a65833bca8ff6e5", 0x4b}, {&(0x7f0000000800)="1f9d914930d4db005e5ac06e916f39de19a9a16f099e0579c7c9256f77906b25ba6e6e24c59a762f4a618dec117dae8f3d783f16650f5b", 0x37}, {&(0x7f0000000840)="78d92948d954802387ce57aa80b511038a4fcc17e6540b3efd100142c199233114ca78d2e268593859cbbc0216d20855f63758dfd632d02bb0b505d36bbed38b19d27553115e471b5fb898cc00360bbf099ce437cfa73024b07fbccd29e930be9ce48b8d6b8f176f47dbae1c05e311c9eef353685dc0d0454e4f4d6350a73e7868bed15f7ca0a8ad9d6cf246b25cc7c282898f69b8e4f625eee407973dce39576f06ed8680d9de03cffdf339e5a54d0c700a0d22f5a8cbe66f8fe279375095ac30d27f17e137e63a79ef48c566c48c29cf9340e4040d8d8687d68230712ce70e14ec505325f71e450853367f01fe2b550e996a387f75", 0xf6}, {&(0x7f0000000940)="d05a24790f54546b09c3943eee2ba1594f52cb074530839f03ec8526ef1eb7cb051dd3707fdcafa00dc41513cfbf6cc138f833b874123420921d4afd80e8c26f3171a9cba9179c1e6af45aaa019d966156a6c22495437a9bd8d8c73d317ea5b5742508ad82dbb3afca32cbb6d98c81187afb2d523468bc8d98ac6c12de12f9344700ba752b452aa9a52cdf21b6016ab272ca4c217a37d5c5a093ded2a02026f9fd63b491629666c5f22144092700c46811340b1f8a75c1f7bac7844e945befb0", 0xc0}, {&(0x7f0000000a00)="6704b2b7436567809212cd321b9b3207885bea6334fac53fa1a882ea5c185d68c053b3ea", 0x24}, {&(0x7f0000000a40)="a4d11a2716d2fa0b79d54daacfbcde5a8d5c841ea0cf9bb13772c41f767f6de0baee47356f196ffa07406dd09b26e05a84a616998952d3d9b84f4210bf798594cbbd458daf00fbdaf9d4cfd99d1e317cfdf42d7961dbcbd7feac803e38a39822896fb7ef57e634cbe7d9160aa5882fe8a3eae879dcadc66502346d8cbc54c520b11cbe5506740d1ea6bdbe8665037ce2181fc217899119bdbcc775667d86066a8ed56c176bc5f149178d7d803c6101850212f2e2b220b745350af4", 0xbb}, {&(0x7f0000000b00)="3af4a43c1abb80df91c963ea9c229f02a92af1eb394bb04425df5ef44f4811a6824733146603a3cb5e379e0878cea1aa96cec54063571b8269fe82aec6d45322065a42e04a5520574f5f10c488163573501b7388c84016fada9249480ea419d5aa65db673b87ed9ec2d596ddc0d18f808d90d563ba2da5fefce93257d61a006ea5f73bbc8d5012789b983f7cdb6cdf53b96998d94acc1486822c4b26bbdded8a6e85a2f5127281", 0xa7}], 0x7, 0x0, 0x0, 0x4040004}, {&(0x7f0000000c40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000cc0)="2cc0404b47a13a75200c92e18e259a6e2672c791f6e8df2ed9c18a4d7631daaa860fa451670fbe2f869d369a15c0a51a9ea7565c3004af894308c67a6acb4e6ea1297f0231d6bbbf70f5059976e6c550d16a3575e0ca77ba632b3f5332925d0bd6aa52ef5a12266038eacb19acc94ea37746d675ef7c41ce0a8d4cb51ffce69b99f3b6e52de201704f1dbb03f0725beedb289595249a898ca8282fe5b1d3bdd09cd39d2eb46fc32a380836e73c9b8f7714f5e80d23e830ec49403103718d42394ffb34e499e43f77ad2bd50359932fc52d910e5e3bb201619e0f92fc0199d08b9acce4fce12714b3421d6649bd9d1c4e55", 0xf1}, {&(0x7f0000000dc0)="bfea34ec6e1f224899b3c7c8915609d16a3d2a9fdba604b7e0af59246ab1540c088c2eea761ce68bb55eff388d58efc5862362400aa49888faf670124d1f322dc01ffe1515bb681e742ccb4aa3ce8ffa47187e8b360a6ec9afd7570bc3664a311eef2bc1337e13ab57356c2b534d4c4d94a2e2004c7de9fc1aa8f9da92dd15e0c5c72992252934e2a62a498a0579cbd988e25ff4eec2d382bf13013743d4e75a21479d814fe0e61fee8d95faf1855286805ee63ad0ce078dda001ccf771e1bd0431a7266f5963fd4f0", 0xc9}, {&(0x7f0000000ec0)="21abc3ad4d87404c6fb23eb3b23861955b555676c5e33a5fcffc8ae6c8e1a965397eac82e703f2175c79a1db45103dea60", 0x31}], 0x3, 0x0, 0x0, 0x24008000}, {&(0x7f0000000f40)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000fc0), 0x0, 0x0, 0x0, 0x24060000}, {&(0x7f0000001000)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000001080)="74ae3d5714ae15a19741f9ef93b68b5ea151b7369cdb1214c984cb03b192d359654ccec55fa2d1f1a4929d1bdf433674d0bbc2d6ca5f2df5527fe9362e", 0x3d}, {&(0x7f00000010c0)="f6af2f5bc449a34c44e8315cd6fbde376ba3fdb53c3d4d0e82a361c3d61930dd060e7654795d05b4de676426fa3350f8194a660f223920370cf379c90e76e2697baa51c1afec9e3e59e177f821b3298f554adabb675db098d4fb88113a8358c653897c8a007b5923cf858dce13d11d70909b408b5f52af02e1d9befe73e62f2847e70a", 0x83}, {&(0x7f0000001180)="97b6f583a1b6f06e6f5d6661191c6d7ae2e2a81dc46b1be729cd703b68ee7a98d7648149ca8782569fe7b4f85202f6", 0x2f}, {&(0x7f00000011c0)="fcd5baa7f9bfb9cf4bd9025c66ad0fa12122779525afbe612ae3ce5fa0ad61dd6a289702c1fdf3b6fe7df8bcee7c8b6b3833352010b91f0243dc68b4511400d12931ea8ce1656799b5db605b5ec5569d07a09f1b64ef9dee990c6a987a38756e96e8b6c1561d135cc3a2ad6b7feb15a5194509acf5f5095c9e398c8a00d09271df32", 0x82}, {&(0x7f0000001280)="8fd533f865c74f0b3de119119ed08eaad33e0bfca0d485a45617e7c95e5a43d2a9968883440cad3d2771b1d017d0706c5ccbf648a36963a9ef08ee1ec10bdf54943004ab606a47193953ccd159f8daceb601a28f3d7d4a5ddde401e7172f65643df5afa9d51458d01fb3447704721be1e0cb632c", 0x74}, {&(0x7f0000001300)="d4437981c9bbc7770a695a92ff1071f4de3b5b096d5d1aec675ddc68d19ddff5598d2a7e4def05c11c5129d73a154dd7b4401c2fa5a15fe5474ff682f416f337002238a7a4b157500df60d7845b4d6b1e703863cbfec2ec81f9cfefd7dabf74fcde397225aebfc8ff0902c129dd6637f468fda0caf90d84977e27cb5ae7ad8494791ffde29e549bb3fc84e6fa86dffeb2dd1c236047c4d95f4aa03a6efbb3b92af39323399fbd4ff0c9a5634bb2cfc99ce47a35ccffabb313fb0e0022b80f948eb8b36f35532dba68a9d39d104bef7e2c0afa3e75582e70512a58c4a4e11708c81397160bf4b220751b1207c4de0ff2d37fb1c", 0xf3}, {&(0x7f0000001400)="0f50198ecc4af984907cb680b887400016ad9f3aa71feca9ca396e2d664907568adb4928daea2e3f9cd0478e3e3de32c5b8dd297862450dc25cc24f0442001eea6f52f8caf8f385432bb529723c54c6a0d7acd701c66be5d046ecfd887baf1", 0x5f}, {&(0x7f0000001480)="a7acddc17098b7ccfcb386831279932787d86c49d780075efddc84b845d280213eaff157f56b36042ca76d4535469299476b997a32a636c7c6d3fc38125f0559755ecb924b102250002ea3eb68ee092ffb5c44b88150169a5706d739d4381738eea988ef4026c476d144b63a4486bc124f530ca3a4d9ec7834013050395fdfd09c93f9d80b9049f8b3532082190b345b95e8d985af15617cc9635383fe90dacdda8fbd1d1c2165a4844ee3e59c3da3e1f9af17508e0632cea42732899f107183096a30efc2560c7328771b840b1236de6f7a2c854b9887b50a9a", 0xda}, {&(0x7f0000001580)="db062a44d4391562ce2782aa09f12c3730540b32253c59654dac02db06dc9bcabf85ee5b98d348a5f650d8b1495a5075b8e64243013fdcd2e28c960857bcf4e02c65fb8564413ee7b67560eb285ad2a84a939d7367862c6c4343eb4549d713e6942cd9e83ded8d9126dd37eaff7ba0e96ab0125082d6104722c20954866a62d796b629ccf95ac264799fe37eee293224d0c808c91bbb", 0x96}], 0x9, &(0x7f0000001940)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xb8, 0x40}, {&(0x7f0000001a00)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001e80)=[{&(0x7f0000001a80)="f1cf365fb4e974f601d870931ee690cec8838a006c75e60c527a470b54338ecee86bb28b764e4282d26e9fbad0141e96efe37baaa67bbae2cd30924e16a3941eba62e1bd59b3baa5e8cfb14b944cbe2e0c36f66eeeae7f119d1a4aafe36ad9588023c8584e3962ec70be7f9b8dc3475a89ab685f3b09066f7d76e49bac18c5f7c2a3c13eff91de6d24f7cfa28b65220157ae66702fb415a5ed5d76d5cbb959ba910e3774ece3333f2918fc8a9df8943f6c5e8001aefc64ba2cec3e546ecaaee2f0ce8c1de1", 0xc5}, {&(0x7f0000001b80)="fd35c0503885568818e18376", 0xc}, {&(0x7f0000001bc0)="e31d689d5f69bc27b02e47c8e064ef318bbdea8ddf815176818dc1d89b0d7012e8f362dad4a8252c7edf0b02afffd1143dbdd567005de747e21d611a03cc71140c39968b38d74fd7ccfc1f5216f317e0109c6ea3cc12cecb436fbcc20ced9101dcfd62292db7a7f51e4147b7da7e6c325fa2533b2e201fcbbf7d95a6f49ae0ade2c406b4183d7edc4bbfb53be051537c4fe33557de4c531297c4e69f44059e01e10a09eb3fb52342e8f08daa56", 0xad}, {&(0x7f0000001c80)="a7f74cd10473574e4564b6be360372a975eaf23860fbf0f63dcc7baf18151172433cd2064d12a6dc21cc9128c80e837ae54175eff413ad9b0fde2f02613c8ddf09d01d94c6d2f04bb47c84ab81e2b14c89c40a47b1400a9446eaf9", 0x5b}, {&(0x7f0000001d00)="83d2207999ad9ddd4d77b28bca7a7ca5adfd19838a5a68e6e2cb946aed8ebd7b30924e2f426b146c36f35615c7f98c5da5c101a890de96645e2123e3afb599d587290f375250ddb667cabde99a63ed351f51135feb82753486c76cfba0438adff328b5f7e9ecb413e93743806481a41ac84c6ee6c1ac52ed01e4bc8fb3f45bdd0fd7afba359ad2fece4ca5cf4ab6a8563860ceca2b40ac12db22fb03777215924720d350a9c4bc54d3ba31cc6c3751d1c36c28d789", 0xb5}, {&(0x7f0000001dc0)="087509a8467318eabe1791449c3ecdacba1e0374c2e99ec79423105e8681e9b8ecff5d4594e97701716feaa3c1107cb85a0724bb468e3e6b43fc5d7fb4b941df98e80d573dc2aa12c01e718094acd316630becf451691e13ca29bf7df06f7856360809c1c23f675fd8ec26317f15f8607a2238f2eaee3db9dfebbe3a6e97d9de1b19e325a1e5db183db1be3668e1171bbbe639056726af3b826b4778d5b2b99ade18f804b27ac8dd", 0xa8}], 0x6, &(0x7f0000002100)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r1, r2, r3, r4, r5, r6]}}], 0x98, 0x4004080}, {&(0x7f00000021c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000035c0)=[{&(0x7f0000002240)="8f509a2ea7bc236a4b14800f2bca0686ce65e7758ba7c7d6d97e3b6d3eb07e4609b63ab95022a075e3cb417873013331f9c46e0ae1da7e02bf4a96a7018b6726402bee09a06f68c746d4e8b512729af3313bc67e126795edb22a3951bd66a393ed6a3ca555ba1d8e65dab6a75363083d58f71cdf728745ccf2578d89476a083bc81f66a11cd8f2297907ad944661e9841e651986271b3fefbbe2b9b54d97620249423e59ec96ae4d95188bf63b3ff377574e0ef159d2f84e352dfa385558b2beeb50", 0xc2}, {&(0x7f0000002340)="cb9a0dcea072814cf5c4adb9619864e22df7e30c2bd58a235ad05b752adf4c9951027be8b5e930b5397cfea0b4fe65c45b0475d49684d7309d8120d208aec887d82c1ec83da7aa7464f55ca67f05f78be64bf13355cc17c78023315dd2b56c36b0fee4811c34bcdd65f91f91c8fd4a9592effbb63e892a29f3fce3afc8e1f6b310974be7a5a2280cf0bad780e3150ee4265a205d2e5d63ccdac4e932ae2e2997ee69207ecacd30d1e15455667354a20f5b87eaf4279fe1b258fe93f3beff5c373f28f4b7c3c1c3e67605e657ef8c6dc5da2cff5305532916e50d7956c510bde01e40333f8382e9574eb5c0955f951e9af552ff", 0xf3}, {&(0x7f0000002440)="ac47dcca2c9b6b51bb8fed67c7812edc4112e409ea14d839124ab40a1886662827e888d843545df523d484ab51858866120cb35c298bd9946de22292482848988c9c56c7a0f25a711f958edaaf252f91e51241388f50e55c4e8d77a60232856465900d8904fa5d240c4891", 0x6b}, {&(0x7f00000024c0)}, {&(0x7f0000002500)="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", 0x1000}, {&(0x7f0000003500)="e57372cfb1e484f24fb010ce8baf8be2fe8d44e76f1f224f78f5360ccd3f56fa1dcf3a9de4b6a620", 0x28}, {&(0x7f0000003540)="5e35575cc7bd7b72f0b40d9594dc007d20510491d3378325593e7b8098732fca315db6b4fea2cc8edbb65846cfdd5f7d4e3c867bf770c037fb475733996ed953956f95760168a094c3a2f18e6ac29b3f06e209d2254d1532591cb19064784228192a338593ee16d624443b2c6fcdb3db4b", 0x71}], 0x7, 0x0, 0x0, 0x44051}], 0x7, 0x1) [ 400.119272] RIP: 0033:0x45f27a [ 400.122459] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 400.130169] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 400.137440] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 400.144731] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 400.152005] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 400.159275] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:31 executing program 2: r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x2000c1, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x5) bind$rxrpc(r0, &(0x7f0000000100)=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x7}}, 0x24) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') 16:45:31 executing program 4 (fault-call:0 fault-nth:55): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 400.337961] FAULT_INJECTION: forcing a failure. [ 400.337961] name failslab, interval 1, probability 0, space 0, times 0 [ 400.365994] CPU: 1 PID: 22168 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 400.373922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.383286] Call Trace: [ 400.385897] dump_stack+0x13e/0x194 [ 400.389543] should_fail.cold+0x10a/0x14b [ 400.393709] should_failslab+0xd6/0x130 [ 400.397697] __kmalloc_track_caller+0x2e1/0x7b0 [ 400.402377] ? kstrdup_const+0x35/0x60 [ 400.406276] ? lock_acquire+0x170/0x3f0 [ 400.410259] ? lock_downgrade+0x6e0/0x6e0 [ 400.414411] kstrdup+0x36/0x70 [ 400.417606] kstrdup_const+0x35/0x60 [ 400.421323] alloc_vfsmnt+0xe0/0x7c0 [ 400.425037] vfs_kern_mount.part.0+0x27/0x3c0 [ 400.429536] do_mount+0x3c9/0x24f0 [ 400.433078] ? rcu_read_lock_sched_held+0x10a/0x130 [ 400.438097] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 400.442943] ? copy_mount_string+0x40/0x40 [ 400.447182] ? __might_fault+0x177/0x1b0 [ 400.451249] ? _copy_from_user+0x94/0x100 [ 400.455399] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.459293] ? copy_mount_options+0x1ec/0x2e0 [ 400.463794] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.467686] SyS_mount+0xa8/0x120 [ 400.471139] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.475029] do_syscall_64+0x1d5/0x640 [ 400.478929] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 400.484122] RIP: 0033:0x45f27a [ 400.487313] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 400.495025] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 400.502298] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 400.509572] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 400.516845] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 400.524115] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:32 executing program 2: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x222040, 0x0) [ 400.712660] print_req_error: I/O error, dev loop2, sector 0 16:45:32 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) mmap$fb(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x11, r1, 0x56000) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/consoles\x00', 0x0, 0x0) getsockopt$packet_int(r2, 0x107, 0x7, &(0x7f0000000300), &(0x7f0000000340)=0x4) r3 = getpid() sched_setattr(r3, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r4 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg\x00', 0x800, 0x0) r5 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x100, 0x8000) r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000002fc0)='/dev/nullb0\x00', 0x1d1082, 0x0) kcmp$KCMP_EPOLL_TFD(r0, r3, 0x7, r4, &(0x7f0000003000)={r5, r6, 0xfffffffe}) sendto(r4, &(0x7f0000000200)="10742764e3cdba8c9e5f38f0f8619fd3ccdd51a3", 0x14, 0x1, &(0x7f0000000240)=@llc={0x1a, 0x0, 0x20, 0x2, 0x7f, 0x2, @remote}, 0x80) 16:45:32 executing program 4 (fault-call:0 fault-nth:56): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 400.881206] FAULT_INJECTION: forcing a failure. [ 400.881206] name failslab, interval 1, probability 0, space 0, times 0 [ 400.911601] CPU: 1 PID: 22196 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 400.919704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.929064] Call Trace: [ 400.931648] dump_stack+0x13e/0x194 [ 400.935268] should_fail.cold+0x10a/0x14b [ 400.939423] should_failslab+0xd6/0x130 [ 400.943387] kmem_cache_alloc+0x2b5/0x770 [ 400.947525] ? lock_acquire+0x170/0x3f0 [ 400.951489] ? lock_downgrade+0x6e0/0x6e0 [ 400.955633] alloc_vfsmnt+0x23/0x7c0 [ 400.959336] vfs_kern_mount.part.0+0x27/0x3c0 [ 400.963826] do_mount+0x3c9/0x24f0 [ 400.967355] ? rcu_read_lock_sched_held+0x10a/0x130 [ 400.972354] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 400.977292] ? copy_mount_string+0x40/0x40 [ 400.981531] ? _copy_from_user+0x94/0x100 [ 400.985662] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.989533] ? copy_mount_options+0x1ec/0x2e0 [ 400.994008] ? copy_mnt_ns+0x8a0/0x8a0 [ 400.997875] SyS_mount+0xa8/0x120 [ 401.001308] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.005188] do_syscall_64+0x1d5/0x640 [ 401.009062] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 401.014248] RIP: 0033:0x45f27a [ 401.017417] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 401.025107] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 401.032357] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 401.039610] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 401.046864] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 401.054116] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:32 executing program 0: get_thread_area(&(0x7f0000000080)={0x3, 0xffffffffffffffff, 0x2000, 0x1}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f00000000c0)={0x1, 0x2, 0x1000, 0xe6, &(0x7f0000000200)="0e50c5afe92cac3382619aee9c50bc09c174951ff77e81c9481eede2a628d67b86a2bdd0eeb29d76938c37cf0b8fe66d01fba48e1cbb2b6aff58e9d5d987b56498b474a410edcae5687d146f782042f921da3f4eb8485e1d5bd31b3c883f4f9054435b13003c7a1e333ba85a1be60507227fdd9ea971d20ecb3750f184cbf81db743b0ccc85cd004af26372742eed187694de1e162c67c94c83cf05f6f9a9312250db7cd566da185dc2d451f2468a28c2e9baa7d9cf7b0fba7772807fb5a929ae332bb6e8b50544fe78f53a33f22b2583056633da30f664dc2db27ea9ccabc9988aeabdac2ed", 0xa0, 0x0, &(0x7f0000000300)="cc91d40175532c6e44ba60ffed4df9f92ca9fcf7d74b9e3a377d37530d2aa35543059e4d4d8cb352e36bb648c7896824aecf91b015ade43453ca0f48b933d459b26e96cb29e6a7479d7a8280adb4578389e1b8df8e9a7e58699a64093a8afac64bd8c47a2cede24989bdc920741ec1435b5652cf4deeae816c40c806c4b044f70ac81e72b63ebd8d04e527b4e43e9664b2a708cadf24083a31627c9eaa51655c"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:32 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) prlimit64(r0, 0x5, &(0x7f0000000080)={0x200, 0x3f}, &(0x7f00000000c0)) [ 401.195512] print_req_error: I/O error, dev loop5, sector 0 [ 401.201414] print_req_error: I/O error, dev loop5, sector 0 [ 401.207270] Buffer I/O error on dev loop5, logical block 0, async page read [ 401.215599] print_req_error: I/O error, dev loop5, sector 0 [ 401.221381] Buffer I/O error on dev loop5, logical block 0, async page read 16:45:32 executing program 4 (fault-call:0 fault-nth:57): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 401.365181] FAULT_INJECTION: forcing a failure. [ 401.365181] name failslab, interval 1, probability 0, space 0, times 0 [ 401.411094] CPU: 0 PID: 22217 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 401.419024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.428381] Call Trace: [ 401.430977] dump_stack+0x13e/0x194 [ 401.434622] should_fail.cold+0x10a/0x14b [ 401.438783] should_failslab+0xd6/0x130 [ 401.442764] __kmalloc+0x2e9/0x7c0 [ 401.446368] ? btrfs_mount+0x18a/0x282d [ 401.450353] btrfs_mount+0x18a/0x282d [ 401.454164] ? pcpu_alloc+0x37d/0xf70 [ 401.457966] ? btrfs_remount+0x1100/0x1100 [ 401.462208] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.467661] ? rcu_read_lock_sched_held+0x10a/0x130 [ 401.472679] ? pcpu_alloc+0xe1/0xf70 [ 401.476401] ? pcpu_balance_workfn+0xff0/0xff0 [ 401.480984] ? __lockdep_init_map+0x100/0x560 [ 401.485478] ? __lockdep_init_map+0x100/0x560 [ 401.489976] mount_fs+0x92/0x2a0 [ 401.493348] vfs_kern_mount.part.0+0x5b/0x3c0 [ 401.498103] do_mount+0x3c9/0x24f0 [ 401.501666] ? copy_mount_string+0x40/0x40 [ 401.505899] ? copy_mount_options+0x17d/0x2e0 [ 401.510403] ? __sanitizer_cov_trace_pc+0x2d/0x50 [ 401.515252] ? copy_mount_options+0x1ec/0x2e0 [ 401.519773] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.523679] SyS_mount+0xa8/0x120 [ 401.527137] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.531035] do_syscall_64+0x1d5/0x640 [ 401.534936] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 401.540127] RIP: 0033:0x45f27a [ 401.543318] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 401.551031] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a 16:45:33 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000020000000000007a0000000000fff6f2a2299748aeb8f3086835731e1b00b10efd9a000001000000000001fffffff60000005f4248", 0xffffff2d, 0x10000}], 0x0, 0x0) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x1) [ 401.558302] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 401.565672] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 401.572942] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 401.580212] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:33 executing program 4 (fault-call:0 fault-nth:58): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 401.638798] print_req_error: I/O error, dev loop5, sector 0 [ 401.720177] FAULT_INJECTION: forcing a failure. [ 401.720177] name failslab, interval 1, probability 0, space 0, times 0 [ 401.758978] CPU: 1 PID: 22233 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 401.766906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.776262] Call Trace: [ 401.778859] dump_stack+0x13e/0x194 [ 401.782503] should_fail.cold+0x10a/0x14b [ 401.786669] should_failslab+0xd6/0x130 [ 401.790658] __kmalloc_track_caller+0x2e1/0x7b0 [ 401.795336] ? kstrdup_const+0x35/0x60 [ 401.799235] ? lock_acquire+0x170/0x3f0 [ 401.803216] ? lock_downgrade+0x6e0/0x6e0 [ 401.807366] kstrdup+0x36/0x70 [ 401.810562] kstrdup_const+0x35/0x60 [ 401.814286] alloc_vfsmnt+0xe0/0x7c0 [ 401.818011] ? rcu_read_lock_sched_held+0x10a/0x130 [ 401.823033] vfs_kern_mount.part.0+0x27/0x3c0 [ 401.827548] vfs_kern_mount+0x3c/0x60 [ 401.831364] btrfs_mount+0x3cc/0x282d [ 401.835173] ? pcpu_alloc+0x37d/0xf70 [ 401.838979] ? btrfs_remount+0x1100/0x1100 [ 401.843220] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 401.848682] ? rcu_read_lock_sched_held+0x10a/0x130 [ 401.853703] ? pcpu_alloc+0xe1/0xf70 [ 401.857428] ? pcpu_balance_workfn+0xff0/0xff0 [ 401.862019] ? __lockdep_init_map+0x100/0x560 [ 401.866516] ? __lockdep_init_map+0x100/0x560 [ 401.871009] mount_fs+0x92/0x2a0 [ 401.874374] vfs_kern_mount.part.0+0x5b/0x3c0 [ 401.878854] do_mount+0x3c9/0x24f0 [ 401.882394] ? rcu_read_lock_sched_held+0x10a/0x130 [ 401.887397] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 401.892225] ? copy_mount_string+0x40/0x40 [ 401.896447] ? _copy_from_user+0x94/0x100 [ 401.900659] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.904550] ? copy_mount_options+0x1ec/0x2e0 [ 401.909047] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.912928] SyS_mount+0xa8/0x120 [ 401.916370] ? copy_mnt_ns+0x8a0/0x8a0 [ 401.920267] do_syscall_64+0x1d5/0x640 [ 401.924148] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 401.929325] RIP: 0033:0x45f27a [ 401.932499] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 401.940201] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 401.947459] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 401.954713] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 401.961967] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 401.969226] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:33 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = shmget$private(0x0, 0x2000, 0x8, &(0x7f000000b000/0x2000)=nil) shmctl$SHM_LOCK(r0, 0xb) shmctl$IPC_RMID(r0, 0x0) shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000080)=""/137) 16:45:33 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = open(&(0x7f0000000080)='./file0\x00', 0x20000, 0xd8) lsetxattr(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)=@known='trusted.overlay.impure\x00', &(0x7f00000003c0)='{\x00', 0x2, 0x2) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) setsockopt$pppl2tp_PPPOL2TP_SO_REORDERTO(r3, 0x111, 0x5, 0x5, 0x4) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f0000000400)='./file0\x00', 0x0, 0x10}, 0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r4, 0xae44, 0x33ce) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCGWINSZ(r2, 0x5413, &(0x7f0000000100)) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r0, 0xc1105518, &(0x7f0000000200)={{0x4, 0x3, 0x2, 0x7fffffff, 'syz0\x00', 0x6}, 0x1, 0x20, 0xfff, r1, 0x2, 0x2, 'syz0\x00', &(0x7f00000000c0)=['btrfs\x00', '{\x00'], 0x8, [], [0x7, 0x3f, 0x1f, 0x3]}) 16:45:33 executing program 4 (fault-call:0 fault-nth:59): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:33 executing program 0: syz_mount_image$btrfs(&(0x7f00000000c0)='btrfs\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000280)="8da4000a0000000001004d010000000000003e2bc7c619d972eee6c977000300000000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4f000000ecff471bce1e96690f9c", 0x5b, 0x10000}], 0x2010800, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240)='/dev/hwrng\x00', 0x204740, 0x0) modify_ldt$write2(0x11, &(0x7f00000001c0)={0x316c5f21, 0x20001000, 0x2000, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1}, 0x10) ioctl$DRM_IOCTL_FREE_BUFS(r0, 0x4010641a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[0x1000, 0x0]}) socket$inet6(0xa, 0x2, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x3, 0x7) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net\x00') ioctl$VIDIOC_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000340)={0xfffffdfe, 0x0, [], {0x0, @bt={0x0, 0x40, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x6, 0x400, 0x0, 0x1, 0x0, 0xffffffff, 0x19, 0x20, {0x8}, 0x9, 0xfe}}}) recvmmsg(r2, &(0x7f0000001c40)=[{{0x0, 0x0, &(0x7f00000008c0)=[{0x0}, {&(0x7f0000000b00)=""/126, 0x7e}, {0x0}], 0x3}}], 0x1, 0x0, 0x0) getpeername$inet6(0xffffffffffffffff, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) [ 402.212227] FAULT_INJECTION: forcing a failure. [ 402.212227] name failslab, interval 1, probability 0, space 0, times 0 [ 402.224903] CPU: 0 PID: 22256 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 402.232809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.242169] Call Trace: [ 402.244770] dump_stack+0x13e/0x194 [ 402.248413] should_fail.cold+0x10a/0x14b [ 402.252575] should_failslab+0xd6/0x130 [ 402.256646] kmem_cache_alloc+0x2b5/0x770 [ 402.260813] alloc_vfsmnt+0x23/0x7c0 [ 402.264534] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.269556] vfs_kern_mount.part.0+0x27/0x3c0 [ 402.274060] vfs_kern_mount+0x3c/0x60 [ 402.277868] btrfs_mount+0x3cc/0x282d [ 402.281681] ? pcpu_alloc+0x37d/0xf70 [ 402.285484] ? btrfs_remount+0x1100/0x1100 [ 402.289737] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 402.295201] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.300216] ? pcpu_alloc+0xe1/0xf70 [ 402.303941] ? pcpu_balance_workfn+0xff0/0xff0 [ 402.308525] ? __lockdep_init_map+0x100/0x560 [ 402.313021] ? __lockdep_init_map+0x100/0x560 [ 402.317524] mount_fs+0x92/0x2a0 [ 402.320905] vfs_kern_mount.part.0+0x5b/0x3c0 [ 402.325412] do_mount+0x3c9/0x24f0 [ 402.328959] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.333981] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 402.338830] ? copy_mount_string+0x40/0x40 [ 402.343075] ? _copy_from_user+0x94/0x100 [ 402.347222] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.351119] ? copy_mount_options+0x1ec/0x2e0 [ 402.355616] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.359507] SyS_mount+0xa8/0x120 [ 402.362971] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.366862] do_syscall_64+0x1d5/0x640 [ 402.370758] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.375955] RIP: 0033:0x45f27a [ 402.379143] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 402.386853] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 402.394136] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 402.401411] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 402.409878] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 402.417148] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:34 executing program 4 (fault-call:0 fault-nth:60): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 402.670795] FAULT_INJECTION: forcing a failure. [ 402.670795] name failslab, interval 1, probability 0, space 0, times 0 [ 402.694698] CPU: 1 PID: 22273 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 402.702614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.711971] Call Trace: [ 402.714572] dump_stack+0x13e/0x194 [ 402.718219] should_fail.cold+0x10a/0x14b [ 402.722378] should_failslab+0xd6/0x130 [ 402.726359] __kmalloc+0x2e9/0x7c0 [ 402.729905] ? match_strdup+0x58/0xa0 [ 402.733715] ? match_wildcard+0x2c0/0x2c0 [ 402.737886] match_strdup+0x58/0xa0 [ 402.741595] btrfs_parse_early_options+0x241/0x310 [ 402.746541] ? __lock_acquire+0x5f7/0x4620 [ 402.750791] ? btrfs_freeze+0xb0/0xb0 [ 402.754601] ? lock_acquire+0x170/0x3f0 [ 402.758590] btrfs_mount+0x11a/0x282d [ 402.762403] ? lock_downgrade+0x6e0/0x6e0 [ 402.766555] ? pcpu_alloc+0x37d/0xf70 [ 402.770377] ? btrfs_remount+0x1100/0x1100 [ 402.774623] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 402.780078] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.785109] ? pcpu_alloc+0xe1/0xf70 [ 402.788833] ? pcpu_balance_workfn+0xff0/0xff0 [ 402.793421] ? __lockdep_init_map+0x100/0x560 [ 402.797920] ? __lockdep_init_map+0x100/0x560 [ 402.802419] mount_fs+0x92/0x2a0 [ 402.805799] vfs_kern_mount.part.0+0x5b/0x3c0 [ 402.810305] vfs_kern_mount+0x3c/0x60 [ 402.814112] btrfs_mount+0x3cc/0x282d [ 402.817921] ? pcpu_alloc+0x37d/0xf70 [ 402.821729] ? btrfs_remount+0x1100/0x1100 [ 402.825973] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 402.831429] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.836470] ? pcpu_alloc+0xe1/0xf70 [ 402.840192] ? pcpu_balance_workfn+0xff0/0xff0 [ 402.844777] ? __lockdep_init_map+0x100/0x560 [ 402.849280] ? __lockdep_init_map+0x100/0x560 [ 402.853778] mount_fs+0x92/0x2a0 [ 402.857148] vfs_kern_mount.part.0+0x5b/0x3c0 [ 402.861650] do_mount+0x3c9/0x24f0 [ 402.865196] ? rcu_read_lock_sched_held+0x10a/0x130 [ 402.870213] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 402.875056] ? copy_mount_string+0x40/0x40 [ 402.879297] ? __might_fault+0x177/0x1b0 [ 402.883361] ? _copy_from_user+0x94/0x100 [ 402.887624] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.891517] ? copy_mount_options+0x1ec/0x2e0 [ 402.896027] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.899922] SyS_mount+0xa8/0x120 [ 402.903378] ? copy_mnt_ns+0x8a0/0x8a0 [ 402.907272] do_syscall_64+0x1d5/0x640 [ 402.911169] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 402.916361] RIP: 0033:0x45f27a [ 402.919551] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 402.927263] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 402.934556] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 402.941828] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 402.949104] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 402.956372] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:34 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffffffffffffd, 0x0, &(0x7f0000000040), 0x400, 0x0) getpeername(0xffffffffffffffff, &(0x7f00000000c0)=@nfc_llcp, &(0x7f0000000040)=0x80) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$RNDZAPENTCNT(r0, 0x5204, &(0x7f0000000080)=0x4) 16:45:34 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000000c0)={r3, 0x5c, "fa8e0bd866308cb29d748a5d15d9ef62f5f1337f5e78d1108327a38eb26052ac035dbf57c1696579a1453ffff4e85f1cdb95a8f0fa69ee09cd680dc97902258b11d3f33254b69cbdb27f82be313c78bd8e53e88b92373e46cc052205"}, &(0x7f0000000000)=0x64) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:34 executing program 1: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$TIOCEXCL(r0, 0x540c) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000000340)={[], 0x3f, 0x7320, 0x5, 0x0, 0xcb8, 0x4, 0x4, [], 0x2b}) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000080)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000500)={{{@in6=@mcast2, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@loopback}}, &(0x7f00000002c0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000600)={'vxcan0\x00', r4}) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f00000000c0)) r5 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ocfs2_control\x00', 0x40402, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000240)={&(0x7f0000000200)=[0x0, 0x0], 0x2}) ioctl$DRM_IOCTL_MODE_SETPLANE(r5, 0xc03064b7, &(0x7f0000000280)={r6, 0x9, 0x6, 0x0, 0x200000fa, 0x100, 0x4d80cc19, 0x4, 0x3f, 0xfff, 0x79a44b45}) 16:45:34 executing program 4 (fault-call:0 fault-nth:61): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 403.416927] FAULT_INJECTION: forcing a failure. [ 403.416927] name failslab, interval 1, probability 0, space 0, times 0 [ 403.428374] CPU: 0 PID: 22298 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 403.436263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.445617] Call Trace: [ 403.448213] dump_stack+0x13e/0x194 [ 403.451853] should_fail.cold+0x10a/0x14b [ 403.456016] should_failslab+0xd6/0x130 [ 403.459995] __kmalloc_track_caller+0x2e1/0x7b0 [ 403.464670] ? btrfs_parse_early_options+0xa3/0x310 [ 403.469692] ? kernel_text_address+0x6e/0xe0 [ 403.474102] ? __kernel_text_address+0x9/0x30 [ 403.478715] ? unwind_get_return_address+0x5a/0xa0 [ 403.483648] kstrdup+0x36/0x70 [ 403.486844] btrfs_parse_early_options+0xa3/0x310 [ 403.491690] ? __lock_acquire+0x5f7/0x4620 [ 403.495939] ? btrfs_freeze+0xb0/0xb0 [ 403.499742] ? lock_acquire+0x170/0x3f0 [ 403.503716] ? pcpu_alloc+0x86f/0xf70 [ 403.507517] ? save_trace+0x290/0x290 [ 403.511331] btrfs_mount+0x11a/0x282d [ 403.515140] ? lock_downgrade+0x6e0/0x6e0 [ 403.519301] ? pcpu_alloc+0x37d/0xf70 [ 403.523104] ? btrfs_remount+0x1100/0x1100 [ 403.527349] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 403.532799] ? rcu_read_lock_sched_held+0x10a/0x130 [ 403.537926] ? pcpu_alloc+0xe1/0xf70 [ 403.541653] ? pcpu_balance_workfn+0xff0/0xff0 [ 403.546234] ? __lockdep_init_map+0x100/0x560 [ 403.550731] ? __lockdep_init_map+0x100/0x560 [ 403.555576] mount_fs+0x92/0x2a0 [ 403.559029] vfs_kern_mount.part.0+0x5b/0x3c0 [ 403.563535] vfs_kern_mount+0x3c/0x60 [ 403.567343] btrfs_mount+0x3cc/0x282d [ 403.571153] ? pcpu_alloc+0x37d/0xf70 [ 403.574958] ? btrfs_remount+0x1100/0x1100 [ 403.579197] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 403.584649] ? rcu_read_lock_sched_held+0x10a/0x130 [ 403.589666] ? pcpu_alloc+0xe1/0xf70 [ 403.593388] ? pcpu_balance_workfn+0xff0/0xff0 [ 403.597968] ? __lockdep_init_map+0x100/0x560 [ 403.602464] ? __lockdep_init_map+0x100/0x560 [ 403.606962] mount_fs+0x92/0x2a0 [ 403.610330] vfs_kern_mount.part.0+0x5b/0x3c0 [ 403.614828] do_mount+0x3c9/0x24f0 [ 403.618375] ? rcu_read_lock_sched_held+0x10a/0x130 [ 403.623390] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 403.628234] ? copy_mount_string+0x40/0x40 [ 403.632468] ? __might_fault+0x177/0x1b0 [ 403.636535] ? _copy_from_user+0x94/0x100 [ 403.640678] ? copy_mnt_ns+0x8a0/0x8a0 [ 403.644565] ? copy_mount_options+0x1ec/0x2e0 [ 403.649057] ? copy_mnt_ns+0x8a0/0x8a0 [ 403.652947] SyS_mount+0xa8/0x120 [ 403.656394] ? copy_mnt_ns+0x8a0/0x8a0 [ 403.660287] do_syscall_64+0x1d5/0x640 [ 403.664186] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 403.669376] RIP: 0033:0x45f27a [ 403.672566] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 403.680277] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 403.687551] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 403.694825] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 403.702095] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 403.709382] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:35 executing program 4 (fault-call:0 fault-nth:62): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 403.867312] FAULT_INJECTION: forcing a failure. [ 403.867312] name failslab, interval 1, probability 0, space 0, times 0 [ 403.910714] CPU: 1 PID: 22312 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 403.918622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.927973] Call Trace: [ 403.930564] dump_stack+0x13e/0x194 [ 403.934200] should_fail.cold+0x10a/0x14b [ 403.938358] should_failslab+0xd6/0x130 [ 403.942338] __kmalloc+0x2e9/0x7c0 [ 403.945881] ? match_strdup+0x58/0xa0 [ 403.949691] ? match_wildcard+0x2c0/0x2c0 [ 403.953841] match_strdup+0x58/0xa0 [ 403.957474] btrfs_parse_early_options+0x241/0x310 [ 403.962406] ? __lock_acquire+0x5f7/0x4620 [ 403.966646] ? btrfs_freeze+0xb0/0xb0 [ 403.970450] ? lock_acquire+0x170/0x3f0 [ 403.974440] btrfs_mount+0x11a/0x282d [ 403.978247] ? lock_downgrade+0x6e0/0x6e0 [ 403.984392] ? pcpu_alloc+0x37d/0xf70 [ 403.988193] ? btrfs_remount+0x1100/0x1100 [ 403.992431] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 403.997891] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.002909] ? pcpu_alloc+0xe1/0xf70 [ 404.006633] ? pcpu_balance_workfn+0xff0/0xff0 [ 404.011219] ? __lockdep_init_map+0x100/0x560 [ 404.015721] ? __lockdep_init_map+0x100/0x560 [ 404.020224] mount_fs+0x92/0x2a0 [ 404.023594] vfs_kern_mount.part.0+0x5b/0x3c0 [ 404.028098] vfs_kern_mount+0x3c/0x60 [ 404.031906] btrfs_mount+0x3cc/0x282d [ 404.035720] ? pcpu_alloc+0x37d/0xf70 [ 404.039522] ? btrfs_remount+0x1100/0x1100 [ 404.043764] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.049216] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.054234] ? pcpu_alloc+0xe1/0xf70 [ 404.057957] ? pcpu_balance_workfn+0xff0/0xff0 [ 404.062544] ? __lockdep_init_map+0x100/0x560 [ 404.067044] ? __lockdep_init_map+0x100/0x560 [ 404.071542] mount_fs+0x92/0x2a0 [ 404.074927] vfs_kern_mount.part.0+0x5b/0x3c0 [ 404.079434] do_mount+0x3c9/0x24f0 [ 404.082980] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.087994] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 404.092832] ? copy_mount_string+0x40/0x40 [ 404.097064] ? __might_fault+0x177/0x1b0 [ 404.101130] ? _copy_from_user+0x94/0x100 [ 404.105277] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.109167] ? copy_mount_options+0x1ec/0x2e0 [ 404.113661] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.117551] SyS_mount+0xa8/0x120 [ 404.121001] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.124891] do_syscall_64+0x1d5/0x640 [ 404.129484] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 404.134673] RIP: 0033:0x45f27a [ 404.137858] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 404.145562] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 404.152830] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 16:45:35 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000080)={0x0, 'rose0\x00', {0x4}, 0x9}) 16:45:35 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f00000000c0)={0x54, &(0x7f0000000080)=[{0x0}, {}]}) ioctl$DRM_IOCTL_RM_CTX(r0, 0xc0086421, &(0x7f0000000100)={r2, 0x1}) [ 404.160098] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 404.167366] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 404.174634] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:35 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000100)={&(0x7f0000000040)="272828ccc9667a0502606c19dd30ddbcf24f56621aa19dbee7aca19a0630381554a72c5920c1117345ebd438ff57f8f08aed36c85cddf6e2ba7bd88b1d9a638909c3ea0548f94ced25017436ff9a139ca320b7af5f9bf909c626046b2f002688b209afad9ccc397c1b0467aff5e3f0214d36ffd5c75bb00bf7941b67a81dc2d5c647d196cf4e5ae45047699d84a194b0", 0x90, 0x0}) ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r3, 0xc00464be, &(0x7f0000000140)={r4}) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r5 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:35 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000080)={r1, 0xffffffffffffffff, 0x4, r2}, 0x10) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x8, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) r5 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r5) ioctl$DRM_IOCTL_GET_CTX(r0, 0xc0086423, &(0x7f0000000100)={0x0, 0x1}) keyctl$invalidate(0x15, r5) setreuid(0x0, r4) setuid(r4) setxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000400)=@random={'osx.', 'btrfs\x00'}, &(0x7f0000000440)='-\xf8\x10\x02=\xcc\x17\xfcL7K\xf8\x0f\xf3\xdb\x95\x04\xed[\x02%\xa9*K\x14\xd9\x91\x18\\,=\xfaI\x1a\xf7&\xb2\x1b\xf6?J\xe6\xa6\xcet\xd7*.)\xa1\xdc\x99\xb9%\xd5\x9d\f\x1e\xdd7\\\xcf3;\xe25\xbbY\x1dP\xba\x9d\xdb\x9d\x85\v9\x8f;K\xe7\xc2~\xe7\xcf\xe8\xdcU\ai\xb5\xf7\x1dBc\x1e\v\x19\xf3\xffX\x80\xd7qT\xef\xd3_\xc6\xeb\xb7\xf1Zh\xa3\xd4v2\xd4\\F\x81E\x86\xc3\xc27u\xca\x89\x1dJ=\v\xeb)\xf9w\xc49\x9a\xb3c.\x9b\xa3\xd8\x8a\x85\x9b\xd8q\xd5\xe6n7\xccc\xd3\xe4t&cQ\v\xe7\xbc\xeaG1\xe8\x1aI@\xab\x1f\x06g$\xb1\x93\xcd\xab\fO\xcf\x81\xbf\x97\b\x914\x1e\x1e\x18', 0xc3, 0x0) 16:45:36 executing program 4 (fault-call:0 fault-nth:63): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 404.561552] FAULT_INJECTION: forcing a failure. [ 404.561552] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 404.585350] CPU: 0 PID: 22347 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 404.593258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 404.602623] Call Trace: [ 404.605216] dump_stack+0x13e/0x194 [ 404.608856] should_fail.cold+0x10a/0x14b [ 404.613016] __alloc_pages_nodemask+0x1bf/0x700 [ 404.617696] ? btrfs_parse_early_options+0x1a2/0x310 [ 404.622809] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 404.627845] ? lock_acquire+0x170/0x3f0 [ 404.631835] alloc_pages_current+0xe7/0x1e0 [ 404.636169] __get_free_pages+0xb/0x40 [ 404.640063] parse_security_options+0x1a/0x90 [ 404.644560] btrfs_mount+0x2af/0x282d [ 404.648368] ? pcpu_alloc+0x37d/0xf70 [ 404.652173] ? btrfs_remount+0x1100/0x1100 [ 404.656416] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.661874] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.666891] ? pcpu_alloc+0xe1/0xf70 [ 404.670628] ? __lockdep_init_map+0x100/0x560 [ 404.675123] ? __lockdep_init_map+0x100/0x560 [ 404.679625] mount_fs+0x92/0x2a0 [ 404.682999] vfs_kern_mount.part.0+0x5b/0x3c0 [ 404.687509] vfs_kern_mount+0x3c/0x60 [ 404.691318] btrfs_mount+0x3cc/0x282d [ 404.695125] ? pcpu_alloc+0x37d/0xf70 [ 404.698930] ? btrfs_remount+0x1100/0x1100 [ 404.703172] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 404.708629] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.713646] ? pcpu_alloc+0xe1/0xf70 [ 404.717377] ? pcpu_balance_workfn+0xff0/0xff0 [ 404.721963] ? __lockdep_init_map+0x100/0x560 [ 404.726457] ? __lockdep_init_map+0x100/0x560 [ 404.730954] mount_fs+0x92/0x2a0 [ 404.734324] vfs_kern_mount.part.0+0x5b/0x3c0 [ 404.738821] do_mount+0x3c9/0x24f0 [ 404.742370] ? rcu_read_lock_sched_held+0x10a/0x130 [ 404.747386] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 404.752234] ? copy_mount_string+0x40/0x40 [ 404.756476] ? _copy_from_user+0x94/0x100 [ 404.760623] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.764516] ? copy_mount_options+0x1ec/0x2e0 [ 404.769011] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.772901] SyS_mount+0xa8/0x120 [ 404.776355] ? copy_mnt_ns+0x8a0/0x8a0 [ 404.780247] do_syscall_64+0x1d5/0x640 [ 404.784144] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 404.789336] RIP: 0033:0x45f27a [ 404.792529] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 404.800235] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 404.807504] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 404.814782] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 404.822052] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 404.829321] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:36 executing program 4 (fault-call:0 fault-nth:64): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:36 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_LIST_LESSEES(0xffffffffffffffff, 0xc01064c7, &(0x7f00000001c0)={0x3, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0]}) r3 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x10001, 0x201242) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000240)={&(0x7f0000000040)=[0x6, 0x0], 0x2, 0x80000, r2, r3}) ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r1, 0xc00464c9, &(0x7f0000000080)={r2}) ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r0, 0xc00464c9, &(0x7f00000000c0)={r2}) openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x10180, 0x0) [ 404.973958] FAULT_INJECTION: forcing a failure. [ 404.973958] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 405.007718] CPU: 0 PID: 22357 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 405.015631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.024983] Call Trace: [ 405.027575] dump_stack+0x13e/0x194 [ 405.031208] should_fail.cold+0x10a/0x14b [ 405.035363] __alloc_pages_nodemask+0x1bf/0x700 [ 405.040033] ? btrfs_parse_early_options+0x1a2/0x310 [ 405.045137] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 405.050166] ? lock_acquire+0x170/0x3f0 [ 405.054144] alloc_pages_current+0xe7/0x1e0 [ 405.058466] __get_free_pages+0xb/0x40 [ 405.062353] parse_security_options+0x1a/0x90 [ 405.066846] btrfs_mount+0x2af/0x282d [ 405.070647] ? pcpu_alloc+0x37d/0xf70 [ 405.074550] ? btrfs_remount+0x1100/0x1100 [ 405.078876] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.084466] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.089499] ? pcpu_alloc+0xe1/0xf70 [ 405.093226] ? __lockdep_init_map+0x100/0x560 [ 405.097724] ? __lockdep_init_map+0x100/0x560 [ 405.102223] mount_fs+0x92/0x2a0 [ 405.105596] vfs_kern_mount.part.0+0x5b/0x3c0 [ 405.110091] vfs_kern_mount+0x3c/0x60 [ 405.113894] btrfs_mount+0x3cc/0x282d [ 405.117701] ? pcpu_alloc+0x37d/0xf70 [ 405.121505] ? btrfs_remount+0x1100/0x1100 [ 405.125743] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.131198] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.136216] ? pcpu_alloc+0xe1/0xf70 [ 405.139940] ? pcpu_balance_workfn+0xff0/0xff0 [ 405.144528] ? __lockdep_init_map+0x100/0x560 [ 405.149029] ? __lockdep_init_map+0x100/0x560 [ 405.153531] mount_fs+0x92/0x2a0 [ 405.156899] vfs_kern_mount.part.0+0x5b/0x3c0 [ 405.161396] do_mount+0x3c9/0x24f0 [ 405.164938] ? copy_mount_string+0x40/0x40 [ 405.169173] ? copy_mount_options+0x17d/0x2e0 [ 405.173668] ? copy_mount_options+0x187/0x2e0 [ 405.178166] ? copy_mount_options+0x1ec/0x2e0 [ 405.182660] ? copy_mnt_ns+0x8a0/0x8a0 [ 405.186547] SyS_mount+0xa8/0x120 [ 405.189997] ? copy_mnt_ns+0x8a0/0x8a0 [ 405.193888] do_syscall_64+0x1d5/0x640 [ 405.197775] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.202956] RIP: 0033:0x45f27a [ 405.206139] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 405.213844] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 405.221106] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 405.228373] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 405.235641] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 405.242906] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:36 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x10000, 0x0) close(0xffffffffffffffff) ioctl$KVM_DEASSIGN_PCI_DEVICE(r0, 0x4040ae72, &(0x7f00000000c0)={0x9, 0x1, 0x9, 0x0, 0x1b}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1000001, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0) 16:45:36 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x4, 0x1, &(0x7f0000000100)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x480, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={r0, 0x28, &(0x7f0000000080)}, 0x10) 16:45:36 executing program 4 (fault-call:0 fault-nth:65): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:36 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000200)={'raw\x00', 0x1000, "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"}, &(0x7f0000000080)=0x1024) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:36 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$tipc(0x1e, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$NBD_DO_IT(r0, 0xab03) 16:45:37 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x0) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={0xffffffffffffffff}, 0x13f, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f00000000c0)={0x15, 0x110, 0xfa00, {r5, 0x3ff, 0x0, 0x0, 0x0, @ib={0x1b, 0x8001, 0xffffffff, {"63a2e6091f64efa08f6728bf1a5f2639"}, 0x7, 0x9, 0x87c}, @in6={0xa, 0x4e23, 0x5, @private2, 0x6}}}, 0x118) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:37 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) setfsuid(r1) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 405.461001] FAULT_INJECTION: forcing a failure. [ 405.461001] name failslab, interval 1, probability 0, space 0, times 0 [ 405.484121] CPU: 0 PID: 22393 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 405.492035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.501393] Call Trace: [ 405.503984] dump_stack+0x13e/0x194 [ 405.507627] should_fail.cold+0x10a/0x14b [ 405.511787] should_failslab+0xd6/0x130 [ 405.515767] kmem_cache_alloc_trace+0x2db/0x7b0 [ 405.520445] ? _raw_spin_unlock_irqrestore+0xa0/0xe0 [ 405.525552] ? debug_check_no_obj_freed+0x28e/0x6e4 [ 405.530578] selinux_parse_opts_str+0x3ba/0xa30 [ 405.535251] ? free_obj_work+0x600/0x600 [ 405.539322] ? selinux_sb_show_options+0xca0/0xca0 [ 405.544265] ? selinux_sb_copy_data+0x213/0x380 [ 405.548938] security_sb_parse_opts_str+0x6e/0xa0 [ 405.553786] parse_security_options+0x49/0x90 [ 405.558311] btrfs_mount+0x2af/0x282d [ 405.562121] ? pcpu_alloc+0x37d/0xf70 [ 405.565923] ? btrfs_remount+0x1100/0x1100 [ 405.570168] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.575627] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.580764] ? pcpu_alloc+0xe1/0xf70 [ 405.584497] ? __lockdep_init_map+0x100/0x560 [ 405.589000] ? __lockdep_init_map+0x100/0x560 [ 405.593503] mount_fs+0x92/0x2a0 [ 405.596875] vfs_kern_mount.part.0+0x5b/0x3c0 [ 405.601368] vfs_kern_mount+0x3c/0x60 [ 405.605159] btrfs_mount+0x3cc/0x282d [ 405.608957] ? pcpu_alloc+0x37d/0xf70 [ 405.612748] ? btrfs_remount+0x1100/0x1100 [ 405.616970] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.622408] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.627409] ? pcpu_alloc+0xe1/0xf70 [ 405.631110] ? pcpu_balance_workfn+0xff0/0xff0 [ 405.635684] ? __lockdep_init_map+0x100/0x560 [ 405.640183] ? __lockdep_init_map+0x100/0x560 [ 405.644669] mount_fs+0x92/0x2a0 [ 405.648021] vfs_kern_mount.part.0+0x5b/0x3c0 [ 405.652526] do_mount+0x3c9/0x24f0 [ 405.656057] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.661058] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 405.665884] ? copy_mount_string+0x40/0x40 [ 405.670104] ? __might_fault+0x177/0x1b0 [ 405.674157] ? _copy_from_user+0x94/0x100 [ 405.678300] ? copy_mnt_ns+0x8a0/0x8a0 [ 405.682177] ? copy_mount_options+0x1ec/0x2e0 [ 405.686653] ? copy_mnt_ns+0x8a0/0x8a0 [ 405.690523] SyS_mount+0xa8/0x120 [ 405.693959] ? copy_mnt_ns+0x8a0/0x8a0 [ 405.697842] do_syscall_64+0x1d5/0x640 [ 405.701719] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 405.706895] RIP: 0033:0x45f27a 16:45:37 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f00000000c0)=0x7) [ 405.710067] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 405.717770] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 405.725039] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 405.732315] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 405.739573] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 405.746834] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:37 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000080)) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:37 executing program 4 (fault-call:0 fault-nth:66): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 405.879618] FAULT_INJECTION: forcing a failure. [ 405.879618] name failslab, interval 1, probability 0, space 0, times 0 [ 405.897543] CPU: 0 PID: 22428 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 405.905448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 405.914805] Call Trace: [ 405.917398] dump_stack+0x13e/0x194 [ 405.921038] should_fail.cold+0x10a/0x14b [ 405.925193] should_failslab+0xd6/0x130 [ 405.929175] kmem_cache_alloc_trace+0x2db/0x7b0 [ 405.933846] ? _raw_spin_unlock_irqrestore+0xa0/0xe0 [ 405.938953] ? debug_check_no_obj_freed+0x28e/0x6e4 [ 405.943984] selinux_parse_opts_str+0x425/0xa30 [ 405.948654] ? free_obj_work+0x600/0x600 [ 405.952726] ? selinux_sb_show_options+0xca0/0xca0 [ 405.957666] ? selinux_sb_copy_data+0x213/0x380 [ 405.962350] security_sb_parse_opts_str+0x6e/0xa0 [ 405.967197] parse_security_options+0x49/0x90 [ 405.971701] btrfs_mount+0x2af/0x282d [ 405.975502] ? pcpu_alloc+0x37d/0xf70 [ 405.979289] ? btrfs_remount+0x1100/0x1100 [ 405.983519] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 405.988971] ? rcu_read_lock_sched_held+0x10a/0x130 [ 405.993988] ? pcpu_alloc+0xe1/0xf70 [ 405.997723] ? __lockdep_init_map+0x100/0x560 [ 406.002219] ? __lockdep_init_map+0x100/0x560 [ 406.006725] mount_fs+0x92/0x2a0 [ 406.010096] vfs_kern_mount.part.0+0x5b/0x3c0 [ 406.014587] vfs_kern_mount+0x3c/0x60 [ 406.018371] btrfs_mount+0x3cc/0x282d [ 406.022181] ? pcpu_alloc+0x37d/0xf70 [ 406.025973] ? btrfs_remount+0x1100/0x1100 [ 406.030194] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.035629] ? rcu_read_lock_sched_held+0x10a/0x130 [ 406.040627] ? pcpu_alloc+0xe1/0xf70 [ 406.044334] ? pcpu_balance_workfn+0xff0/0xff0 [ 406.048923] ? __lockdep_init_map+0x100/0x560 [ 406.053398] ? __lockdep_init_map+0x100/0x560 [ 406.057878] mount_fs+0x92/0x2a0 [ 406.061227] vfs_kern_mount.part.0+0x5b/0x3c0 [ 406.065709] do_mount+0x3c9/0x24f0 [ 406.069236] ? rcu_read_lock_sched_held+0x10a/0x130 [ 406.074234] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 406.079066] ? copy_mount_string+0x40/0x40 [ 406.083295] ? _copy_from_user+0x94/0x100 [ 406.087434] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.091309] ? copy_mount_options+0x1ec/0x2e0 [ 406.095797] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.099675] SyS_mount+0xa8/0x120 [ 406.103115] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.106997] do_syscall_64+0x1d5/0x640 [ 406.110871] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 406.116041] RIP: 0033:0x45f27a [ 406.119214] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 406.126913] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 406.134163] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 406.141420] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 406.148854] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 406.156288] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:37 executing program 0: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000580)=""/143, &(0x7f0000000340)=0xfee5) setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000480)={{0xa, 0x0, 0x0, @dev}, {0xa, 0x0, 0x0, @loopback}}, 0x5c) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[]}}, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:37 executing program 4 (fault-call:0 fault-nth:67): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:37 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) 16:45:37 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000580)='/dev/ocfs2_control\x00', 0x40, 0x0) sendmsg$kcm(r0, &(0x7f0000000740)={&(0x7f00000005c0)=@un=@abs={0x1, 0x0, 0x4e24}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000640)="08418443948821cb52557051ec76946dfb21de55ef1f2f2385e8f99bca9ec6e637ca00177215a71c16803f94cb8b64f1c7fc7f2b965b225d31f28f609f15987706945ac59d6039bd8c", 0x49}, {&(0x7f00000006c0)="3fad0583845dfdf3c8224226e8ab6063609a821378e0f40963588c5fa80f74dc7f75ac3de09ca31cfcbd0ed57f46ba115a", 0x31}], 0x2}, 0x40000) r1 = syz_open_dev$usbmon(&(0x7f00000004c0)='/dev/usbmon#\x00', 0x2, 0x84040) write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0', [{0x20, 'cifs\x00'}, {0x20, 'btrfs\x00'}, {0x20, '}ppp0*eth1+bdev'}, {0x20, '[ppp0]'}, {0x20, 'eth0%cgroupnodevmime_type'}], 0xa, "84495af3c1d34646c30c1d55b5e35c175dfda03c7c94c174d4bbbba7bef134b6e939973b54b704e1d2f9a8f6ada288"}, 0x78) syz_open_dev$vivid(&(0x7f0000000480)='/dev/video#\x00', 0x0, 0x2) syz_mount_image$cifs(&(0x7f0000000080)='cifs\x00', &(0x7f00000000c0)='./file0\x00', 0x76a5, 0x4, &(0x7f00000003c0)=[{&(0x7f0000000200)="03110544ffbfb633bebec623a04614cd2c2decf7bf4b4febdddbfd34929d936fa53ad569de8d18b9b42def7074cedc602d48ddb41bb1253aa2cab2678b2c8376b1196d4487472eaa3b3a6d6ea73911bbb5", 0x51, 0x9}, {&(0x7f0000000280)="0b102b39b85246e814e7f6bce336a0c7de332a1b94be7247899eaf92d3dc7ed1ec0e4d53619ebd020ad2d4298250a78f4eb94a9e9446025646bb3b133929ee36a61aa8ddea6fdc24af3f", 0x4a, 0x4}, {&(0x7f0000000100)="d06f00a2e8f5331b4ac540f6db29ada122001c84416694ed75", 0x19, 0x8}, {&(0x7f0000000300)="6176f7dcbe730a95bd3b4728faec053e392266c93371182511691ab28829581de90ee4ea38e6ad412561ce30f51c5a568fd4cac15b537432a6177ada6179dd419df86447734c703127b0a9a97adb8fa6359094d169690c24e2f2cfb22a00818db4bde167d8f7f954fca411bf52c23644c70623644f55de161e0880a837da49452b6c9d5faa4ad0d1b34d11a58b411ee4fd7fbaf59e665db1069d8ab691fded4bb85caf89e9af7f1b0eb1e512b9475a8c4995b479d338cb24e2a551c1271595f3", 0xc0, 0x6e}], 0x101020, &(0x7f0000000440)='btrfs\x00') 16:45:37 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x80000001, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed020b0a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b234ce1f24d4900b10efd9a000001000001fffffff60000005f42", 0x45, 0x71}], 0x198042c, 0x0) llistxattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)=""/190, 0xbe) [ 406.279218] FAULT_INJECTION: forcing a failure. [ 406.279218] name failslab, interval 1, probability 0, space 0, times 0 [ 406.321167] CPU: 0 PID: 22448 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 406.329092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 406.338537] Call Trace: [ 406.341137] dump_stack+0x13e/0x194 [ 406.346347] should_fail.cold+0x10a/0x14b [ 406.350513] should_failslab+0xd6/0x130 [ 406.354497] kmem_cache_alloc+0x2b5/0x770 [ 406.358740] ? btrfs_scan_one_device+0x77/0x4b0 [ 406.363425] ? lock_acquire+0x170/0x3f0 [ 406.367396] getname_kernel+0x4e/0x340 [ 406.371271] kern_path+0x1b/0x40 [ 406.374629] lookup_bdev.part.0+0x60/0x160 [ 406.378845] ? blkdev_open+0x250/0x250 [ 406.382715] ? selinux_sb_show_options+0xca0/0xca0 [ 406.387653] blkdev_get_by_path+0x70/0xf0 [ 406.391793] btrfs_scan_one_device+0x84/0x4b0 [ 406.396275] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 406.401275] ? device_list_add+0x8e0/0x8e0 [ 406.405499] btrfs_mount+0x2d5/0x282d [ 406.409290] ? pcpu_alloc+0x37d/0xf70 [ 406.413071] ? btrfs_remount+0x1100/0x1100 [ 406.417293] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.422725] ? rcu_read_lock_sched_held+0x10a/0x130 [ 406.427740] ? pcpu_alloc+0xe1/0xf70 [ 406.431452] ? __lockdep_init_map+0x100/0x560 [ 406.435928] ? __lockdep_init_map+0x100/0x560 [ 406.440415] mount_fs+0x92/0x2a0 [ 406.443767] vfs_kern_mount.part.0+0x5b/0x3c0 [ 406.448244] vfs_kern_mount+0x3c/0x60 [ 406.452028] btrfs_mount+0x3cc/0x282d [ 406.455812] ? pcpu_alloc+0x37d/0xf70 [ 406.459596] ? btrfs_remount+0x1100/0x1100 [ 406.463818] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 406.469249] ? rcu_read_lock_sched_held+0x10a/0x130 [ 406.474246] ? pcpu_alloc+0xe1/0xf70 [ 406.477944] ? pcpu_balance_workfn+0xff0/0xff0 [ 406.482508] ? __lockdep_init_map+0x100/0x560 [ 406.486984] ? __lockdep_init_map+0x100/0x560 [ 406.491461] mount_fs+0x92/0x2a0 [ 406.494811] vfs_kern_mount.part.0+0x5b/0x3c0 [ 406.499292] do_mount+0x3c9/0x24f0 [ 406.502816] ? rcu_read_lock_sched_held+0x10a/0x130 [ 406.507811] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 406.512655] ? copy_mount_string+0x40/0x40 [ 406.516879] ? __might_fault+0x177/0x1b0 [ 406.520930] ? _copy_from_user+0x94/0x100 [ 406.525073] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.528948] ? copy_mount_options+0x1ec/0x2e0 [ 406.533426] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.537293] SyS_mount+0xa8/0x120 [ 406.540729] ? copy_mnt_ns+0x8a0/0x8a0 [ 406.544610] do_syscall_64+0x1d5/0x640 [ 406.548504] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 406.553694] RIP: 0033:0x45f27a [ 406.556898] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 406.564591] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 406.571853] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 406.579107] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 406.586361] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 406.593614] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:38 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000040)) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r4 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:38 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x1000, 0xd3e8, 0xfff, 0x5, 0x401}, &(0x7f00000000c0)=0x14) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={r2, 0x10000}, 0x8) 16:45:38 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$KVM_SET_PIT2(r0, 0x4070aea0, &(0x7f0000000080)={[{0x0, 0x98ce, 0x5, 0x8, 0x81, 0x1, 0x7, 0x4, 0xa2, 0x1, 0x9, 0x42, 0x100}, {0x30, 0x3, 0x3f, 0x6, 0x4c, 0x6, 0x50, 0x80, 0x6, 0x3, 0x43, 0x4a, 0x101}, {0x5, 0x2529, 0x1, 0x2, 0xf8, 0x80, 0x1, 0x5, 0x7f, 0x3, 0x81, 0x1, 0x81}]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r1 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r1, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000100)=[@in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e20, @rand_addr=0x64010102}], 0x30) 16:45:38 executing program 4 (fault-call:0 fault-nth:68): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:38 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) write$input_event(r0, &(0x7f00000000c0)={{r2, r3/1000+10000}, 0x16, 0x32c}, 0x18) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f0000000340)) 16:45:38 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) sendmmsg$sock(r1, &(0x7f0000008e80)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000240)="85bb0f881cab9ca80ac39452d71df9b62f", 0xff00}], 0x1}}], 0x1, 0x40048010) recvmmsg(r1, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000400)=""/39, 0x27}, {&(0x7f0000001800)=""/4096, 0x1000}], 0x2}}], 0x1, 0x0, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0xf3, 0x3, &(0x7f0000000240)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x7}, {&(0x7f0000000080)="58c4961837d058e398de72c5cd7ecbadc01a8a67935d78c3bdbc61dafaf4c924bb6827015ea9a56e6a8d0a2a169205928cc052cb952ef8595c06704dbd8a9629ddf464feddbe75908c2f5217c70d0e881c163bd3ee77c57b1c7f20f3f03dd21815fdf12ef035484004177615faafdfbfbcc7172877828d0b5a1c60fc2afed1247bc16a86323488c03d0366ae37f3691c8a41a6f32fe540a0062a57b75b0414", 0x9f}, {&(0x7f0000000200)="b8e7d1abf2cf3cb9ad7db1d2c141f65d", 0x10, 0x9}], 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) getsockname$unix(r2, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e) [ 406.893605] FAULT_INJECTION: forcing a failure. [ 406.893605] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 406.913613] CPU: 1 PID: 22506 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 406.921513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 406.930870] Call Trace: [ 406.933462] dump_stack+0x13e/0x194 [ 406.937103] should_fail.cold+0x10a/0x14b [ 406.941277] __alloc_pages_nodemask+0x1bf/0x700 [ 406.945961] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 406.950987] ? lock_downgrade+0x6e0/0x6e0 [ 406.955262] alloc_pages_current+0xe7/0x1e0 [ 406.959606] __page_cache_alloc+0x245/0x3d0 [ 406.963937] do_read_cache_page+0x6b0/0x12a0 [ 406.968353] ? _atomic_dec_and_lock+0x61/0xb0 [ 406.972857] ? blkdev_writepages+0xd0/0xd0 [ 406.977121] ? find_get_pages_contig+0xc40/0xc40 [ 406.981884] ? bd_may_claim+0xd0/0xd0 [ 406.985689] ? mntput+0x5c/0x80 [ 406.988982] ? lookup_bdev.part.0+0xde/0x160 [ 406.993390] ? blkdev_open+0x250/0x250 [ 406.997389] btrfs_read_disk_super+0xd0/0x510 [ 407.001898] btrfs_scan_one_device+0xb5/0x4b0 [ 407.006397] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 407.011420] ? device_list_add+0x8e0/0x8e0 [ 407.015668] btrfs_mount+0x2d5/0x282d [ 407.019468] ? pcpu_alloc+0x37d/0xf70 [ 407.023263] ? btrfs_remount+0x1100/0x1100 [ 407.027500] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 407.032949] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.037991] ? pcpu_alloc+0xe1/0xf70 [ 407.041720] ? __lockdep_init_map+0x100/0x560 [ 407.046220] ? __lockdep_init_map+0x100/0x560 [ 407.050808] mount_fs+0x92/0x2a0 [ 407.054182] vfs_kern_mount.part.0+0x5b/0x3c0 [ 407.058682] vfs_kern_mount+0x3c/0x60 [ 407.062490] btrfs_mount+0x3cc/0x282d [ 407.066302] ? pcpu_alloc+0x37d/0xf70 [ 407.070104] ? btrfs_remount+0x1100/0x1100 [ 407.074345] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 407.079907] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.084933] ? pcpu_alloc+0xe1/0xf70 [ 407.088670] ? pcpu_balance_workfn+0xff0/0xff0 [ 407.093250] ? __lockdep_init_map+0x100/0x560 [ 407.097748] ? __lockdep_init_map+0x100/0x560 [ 407.102277] mount_fs+0x92/0x2a0 [ 407.105650] vfs_kern_mount.part.0+0x5b/0x3c0 [ 407.110146] do_mount+0x3c9/0x24f0 [ 407.113688] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.118690] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 407.123525] ? copy_mount_string+0x40/0x40 [ 407.127796] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.131676] ? copy_mount_options+0x1ec/0x2e0 [ 407.136154] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.140027] SyS_mount+0xa8/0x120 [ 407.143516] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.147402] do_syscall_64+0x1d5/0x640 [ 407.151291] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 407.156490] RIP: 0033:0x45f27a [ 407.159661] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 407.167360] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 407.174615] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 407.181914] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 16:45:38 executing program 4 (fault-call:0 fault-nth:69): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 407.189169] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 407.196425] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 407.260049] FAULT_INJECTION: forcing a failure. [ 407.260049] name failslab, interval 1, probability 0, space 0, times 0 [ 407.281106] CPU: 1 PID: 22531 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 407.289030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 407.298391] Call Trace: [ 407.300996] dump_stack+0x13e/0x194 [ 407.304637] should_fail.cold+0x10a/0x14b [ 407.308795] should_failslab+0xd6/0x130 [ 407.312775] kmem_cache_alloc+0x2b5/0x770 [ 407.316931] ? delete_node+0x1ed/0x680 [ 407.320839] ? save_trace+0x290/0x290 [ 407.324656] alloc_buffer_head+0x20/0xd0 [ 407.328730] alloc_page_buffers+0xb3/0x1f0 [ 407.332965] create_empty_buffers+0x36/0x470 [ 407.337364] ? __lock_is_held+0xad/0x140 [ 407.341411] create_page_buffers+0x14d/0x1c0 [ 407.345806] block_read_full_page+0xb9/0x920 [ 407.350203] ? __add_to_page_cache_locked+0x3ac/0x870 [ 407.355387] ? set_init_blocksize+0x210/0x210 [ 407.359867] ? __lru_cache_add+0x17b/0x250 [ 407.364084] ? __bread_gfp+0x290/0x290 [ 407.367966] ? add_to_page_cache_lru+0x150/0x300 [ 407.372715] ? add_to_page_cache_locked+0x40/0x40 [ 407.377560] ? __page_cache_alloc+0xd9/0x3d0 [ 407.381963] do_read_cache_page+0x6f3/0x12a0 [ 407.386366] ? _atomic_dec_and_lock+0x61/0xb0 [ 407.390961] ? blkdev_writepages+0xd0/0xd0 [ 407.395181] ? find_get_pages_contig+0xc40/0xc40 [ 407.399926] ? bd_may_claim+0xd0/0xd0 [ 407.403717] ? mntput+0x5c/0x80 [ 407.406993] ? lookup_bdev.part.0+0xde/0x160 [ 407.411404] ? blkdev_open+0x250/0x250 [ 407.415332] btrfs_read_disk_super+0xd0/0x510 [ 407.419855] btrfs_scan_one_device+0xb5/0x4b0 [ 407.424344] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 407.429341] ? device_list_add+0x8e0/0x8e0 [ 407.433567] btrfs_mount+0x2d5/0x282d [ 407.437356] ? pcpu_alloc+0x37d/0xf70 [ 407.441137] ? btrfs_remount+0x1100/0x1100 [ 407.445366] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 407.450804] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.455807] ? pcpu_alloc+0xe1/0xf70 [ 407.459523] ? __lockdep_init_map+0x100/0x560 [ 407.464004] ? __lockdep_init_map+0x100/0x560 [ 407.468493] mount_fs+0x92/0x2a0 [ 407.471850] vfs_kern_mount.part.0+0x5b/0x3c0 [ 407.476386] vfs_kern_mount+0x3c/0x60 [ 407.480200] btrfs_mount+0x3cc/0x282d [ 407.483989] ? pcpu_alloc+0x37d/0xf70 [ 407.487771] ? btrfs_remount+0x1100/0x1100 [ 407.491998] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 407.497449] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.502514] ? pcpu_alloc+0xe1/0xf70 [ 407.506217] ? pcpu_balance_workfn+0xff0/0xff0 [ 407.510790] ? __lockdep_init_map+0x100/0x560 [ 407.515280] ? __lockdep_init_map+0x100/0x560 [ 407.519800] mount_fs+0x92/0x2a0 [ 407.523154] vfs_kern_mount.part.0+0x5b/0x3c0 [ 407.527646] do_mount+0x3c9/0x24f0 [ 407.531185] ? rcu_read_lock_sched_held+0x10a/0x130 [ 407.536235] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 407.541080] ? copy_mount_string+0x40/0x40 [ 407.545315] ? __might_fault+0x177/0x1b0 [ 407.549366] ? _copy_from_user+0x94/0x100 [ 407.553508] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.557407] ? copy_mount_options+0x1ec/0x2e0 [ 407.561906] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.565795] SyS_mount+0xa8/0x120 [ 407.569243] ? copy_mnt_ns+0x8a0/0x8a0 [ 407.573126] do_syscall_64+0x1d5/0x640 [ 407.577004] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 407.582174] RIP: 0033:0x45f27a [ 407.585353] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 407.593068] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 407.600322] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 407.607588] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 407.614857] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 407.622110] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:39 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x10000) mknod(0x0, 0x0, 0x0) dup(0xffffffffffffffff) openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x541001, 0x4) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000740)=ANY=[], 0x0) sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe) getsockopt$inet_int(r1, 0x0, 0xb, &(0x7f00006ed000), &(0x7f0000000000)=0xfffffffffffffcfd) readv(0xffffffffffffffff, &(0x7f0000000140), 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000700), 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x80401, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000080)}, 0x2287, 0x3fffffffc00, 0x0, 0x0, 0x6978}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 16:45:39 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) ioctl$RTC_UIE_OFF(r0, 0x7004) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_S_JPEGCOMP(r3, 0x408c563e, &(0x7f0000000040)={0x9, 0xc, 0x11, "5511611a0b3dffea2761abe76d410c6b87da9569105f6af0bdfb814c098bcba2f855c9b4840148f3256891ad8be49688a4713334525c1e1c312c16d1", 0x23, "9772dff8055427b79c02aa94ed58468bc9f7a5fbc7429b911b57be4e8717e539b4f9aa83e1669082afe1613c6a6effc2f9e9b228aef022d2d2441b66", 0xc0}) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r4 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:39 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) link(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)='./file0\x00') setxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='trusted.overlay.nlink\x00', &(0x7f0000000240)={'U-', 0xfffffffffffffffd}, 0x16, 0x1) 16:45:39 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={r3, 0x2}, 0x8) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:39 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x295, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:39 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000ffc000/0x4000)=nil) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x15}}, 0x65) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000080)=0x3) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:39 executing program 4 (fault-call:0 fault-nth:70): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 407.982991] FAULT_INJECTION: forcing a failure. [ 407.982991] name failslab, interval 1, probability 0, space 0, times 0 [ 408.003385] CPU: 1 PID: 22579 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 408.011301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.020660] Call Trace: [ 408.023273] dump_stack+0x13e/0x194 [ 408.026915] should_fail.cold+0x10a/0x14b [ 408.031069] ? save_trace+0x290/0x290 [ 408.034878] should_failslab+0xd6/0x130 [ 408.038860] kmem_cache_alloc_node+0x55/0x7a0 [ 408.043358] ? __lock_is_held+0xad/0x140 [ 408.047503] create_task_io_context+0x2a/0x3c0 [ 408.052148] generic_make_request_checks+0x14a0/0x1a40 [ 408.057436] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 408.062893] ? blk_cleanup_queue+0x610/0x610 [ 408.067309] ? trace_hardirqs_on+0x10/0x10 [ 408.071560] generic_make_request+0x7d/0xa40 [ 408.075982] ? blk_queue_enter+0x4d0/0x4d0 16:45:39 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f00000006c0)="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", 0xfffffffffffffdf9) ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b41, &(0x7f0000000000)="9afabd837c4592092d95ce8bd56aabb9c0f95b1ba28932428df34024321b5057714aa2202cb7dddb89eafa66f6e30b69d270c852918b4ae32f75da961a2ca3a5303119446da2527d7daa292bb52381e51788f252758dda26c5043fda5d8a53627ef483b073e862bcd5fbe269564cf68e87b6144bf9206d3982ba16c53bcfd316b532bc80d304561ab524458c3470bc2c568c64e13ec6a2c8c2dc7c21b7a61382bb2b1a45a7f7081e054613541925adaa991c366b") getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r2, 0x1}, 0x1c}}, 0x0) sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r2, 0x300, 0x70bd26, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x9f93}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000051}, 0x0) [ 408.080219] ? find_held_lock+0x2d/0x110 [ 408.084289] ? guard_bio_eod+0x15c/0x520 [ 408.088359] ? submit_bio+0x18f/0x3a0 [ 408.092161] submit_bio+0x18f/0x3a0 [ 408.095796] ? generic_make_request+0xa40/0xa40 [ 408.100468] ? guard_bio_eod+0x1ba/0x520 [ 408.104595] ? bio_add_page+0x9f/0xe0 [ 408.108403] submit_bh_wbc+0x52e/0x700 [ 408.112300] block_read_full_page+0x722/0x920 [ 408.116802] ? set_init_blocksize+0x210/0x210 [ 408.121313] ? __lru_cache_add+0x17b/0x250 [ 408.125554] ? __bread_gfp+0x290/0x290 [ 408.129443] ? add_to_page_cache_lru+0x150/0x300 [ 408.134214] ? add_to_page_cache_locked+0x40/0x40 [ 408.139992] ? __page_cache_alloc+0xd9/0x3d0 [ 408.144384] do_read_cache_page+0x6f3/0x12a0 [ 408.148800] ? _atomic_dec_and_lock+0x61/0xb0 [ 408.153403] ? blkdev_writepages+0xd0/0xd0 [ 408.157637] ? find_get_pages_contig+0xc40/0xc40 [ 408.162388] ? bd_may_claim+0xd0/0xd0 [ 408.166180] ? mntput+0x5c/0x80 [ 408.169445] ? lookup_bdev.part.0+0xde/0x160 [ 408.173835] ? blkdev_open+0x250/0x250 [ 408.177753] btrfs_read_disk_super+0xd0/0x510 [ 408.182241] btrfs_scan_one_device+0xb5/0x4b0 [ 408.186723] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 408.191772] ? device_list_add+0x8e0/0x8e0 [ 408.196031] btrfs_mount+0x2d5/0x282d [ 408.199817] ? pcpu_alloc+0x37d/0xf70 [ 408.203600] ? btrfs_remount+0x1100/0x1100 [ 408.207830] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 408.213269] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.218272] ? pcpu_alloc+0xe1/0xf70 [ 408.221976] ? __lockdep_init_map+0x100/0x560 [ 408.226455] ? __lockdep_init_map+0x100/0x560 [ 408.230933] mount_fs+0x92/0x2a0 [ 408.234288] vfs_kern_mount.part.0+0x5b/0x3c0 [ 408.238779] vfs_kern_mount+0x3c/0x60 [ 408.242568] btrfs_mount+0x3cc/0x282d [ 408.246352] ? pcpu_alloc+0x37d/0xf70 [ 408.250164] ? btrfs_remount+0x1100/0x1100 [ 408.254407] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 408.280014] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.285035] ? pcpu_alloc+0xe1/0xf70 [ 408.288735] ? pcpu_balance_workfn+0xff0/0xff0 [ 408.293301] ? __lockdep_init_map+0x100/0x560 [ 408.297792] ? __lockdep_init_map+0x100/0x560 [ 408.302285] mount_fs+0x92/0x2a0 [ 408.305639] vfs_kern_mount.part.0+0x5b/0x3c0 [ 408.310136] do_mount+0x3c9/0x24f0 [ 408.313700] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.318813] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 408.323643] ? copy_mount_string+0x40/0x40 [ 408.327869] ? __might_fault+0x177/0x1b0 [ 408.331966] ? _copy_from_user+0x94/0x100 [ 408.336096] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.339968] ? copy_mount_options+0x1ec/0x2e0 [ 408.344449] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.348324] SyS_mount+0xa8/0x120 [ 408.351812] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.355725] do_syscall_64+0x1d5/0x640 [ 408.359635] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.364809] RIP: 0033:0x45f27a [ 408.367992] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 408.375724] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a 16:45:40 executing program 5: getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000140)=""/54, &(0x7f0000000180)=0x36) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) tkill(r1, 0x3f) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000200)) [ 408.383945] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 408.391202] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 408.398456] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 408.405710] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 408.427556] print_req_error: I/O error, dev loop5, sector 0 16:45:40 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r0) r1 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) keyctl$chown(0x4, r1, 0x0, r3) r4 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)="0cbeed3d9a2c26feedc0df358481c3ad4c3266121028264b9a5d4a1339635264aa685becfbcf96fdf787bb15e6564aa90c7a9e57fa9c1abb36", 0x39, r1) r5 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) keyctl$revoke(0x3, r5) keyctl$dh_compute(0x17, &(0x7f0000000200)={r0, r4, r5}, &(0x7f0000000240)=""/19, 0x13, &(0x7f0000000300)={&(0x7f0000000280)={'xxhash64-generic\x00'}, &(0x7f00000002c0)="d90eca", 0x3}) 16:45:40 executing program 4 (fault-call:0 fault-nth:71): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:40 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) ioctl$DRM_IOCTL_SET_UNIQUE(r0, 0x40106410, &(0x7f0000000080)={0xcc, &(0x7f0000000200)="e63e51cd5547a0793f24615817ca4b2f8e98fe4d14b8f327e56b1c43cdcb1645821b9120363d0d91f833092bf0e8c8c92f6a027c63f680f21cdad27a7d00172d2f0d1a6d61cabdc20be6848217b69a160090cfa64e66128681c763a46e0ec7b09d33ec5cbf715f4269979b1c61cb54c2800e6e0ae0bfca58e56f50e97d8d2fe8b07e872c57d6a96518d98e84f7106b9e6232e14c221607e003059eb5ca3b94f33b05e48cb00c23e5fa18437824e0d829dc10b32521c0fcf79fdb9715a7355b75571ea474fdf19f7187b266af"}) 16:45:40 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0) setsockopt$inet6_MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, &(0x7f0000000040)={{0xa, 0x4e22, 0x9, @mcast1, 0x8}, {0xa, 0x4e20, 0x800, @mcast2, 0xffff05c4}, 0xfffb, [0x1000, 0x9, 0x6, 0x4, 0x80000001, 0x18, 0x9, 0x7]}, 0x5c) 16:45:40 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000080)=0xd266, 0x2) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) accept$netrom(r4, 0x0, &(0x7f0000000040)) [ 408.597306] FAULT_INJECTION: forcing a failure. [ 408.597306] name failslab, interval 1, probability 0, space 0, times 0 [ 408.643599] CPU: 1 PID: 22610 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 408.651551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 408.660911] Call Trace: [ 408.663509] dump_stack+0x13e/0x194 [ 408.667148] should_fail.cold+0x10a/0x14b [ 408.671307] should_failslab+0xd6/0x130 [ 408.675292] kmem_cache_alloc+0x44/0x770 [ 408.679366] ? mempool_free+0x1d0/0x1d0 [ 408.683348] mempool_alloc+0x111/0x2d0 [ 408.687249] ? remove_element.isra.0+0x1b0/0x1b0 [ 408.692009] ? save_trace+0x290/0x290 [ 408.695815] ? check_preemption_disabled+0x35/0x240 [ 408.698121] could not allocate digest TFM handle xxhash64-generic [ 408.700845] bio_alloc_bioset+0x352/0x640 [ 408.700869] ? bvec_alloc+0x2d0/0x2d0 [ 408.700882] ? __lock_is_held+0xad/0x140 [ 408.719097] submit_bh_wbc+0xf4/0x700 [ 408.722906] block_read_full_page+0x722/0x920 [ 408.727406] ? set_init_blocksize+0x210/0x210 [ 408.731907] ? __lru_cache_add+0x17b/0x250 [ 408.736146] ? __bread_gfp+0x290/0x290 [ 408.740040] ? add_to_page_cache_lru+0x150/0x300 [ 408.744803] ? add_to_page_cache_locked+0x40/0x40 [ 408.749648] ? __page_cache_alloc+0xd9/0x3d0 [ 408.754148] do_read_cache_page+0x6f3/0x12a0 [ 408.758557] ? _atomic_dec_and_lock+0x61/0xb0 [ 408.763059] ? blkdev_writepages+0xd0/0xd0 [ 408.767295] ? find_get_pages_contig+0xc40/0xc40 [ 408.772060] ? bd_may_claim+0xd0/0xd0 [ 408.775862] ? mntput+0x5c/0x80 [ 408.779153] ? lookup_bdev.part.0+0xde/0x160 [ 408.783554] ? blkdev_open+0x250/0x250 [ 408.787426] btrfs_read_disk_super+0xd0/0x510 [ 408.791907] btrfs_scan_one_device+0xb5/0x4b0 [ 408.796385] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 408.801387] ? device_list_add+0x8e0/0x8e0 [ 408.805619] btrfs_mount+0x2d5/0x282d [ 408.809418] ? pcpu_alloc+0x37d/0xf70 [ 408.813199] ? btrfs_remount+0x1100/0x1100 [ 408.817474] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 408.822915] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.827925] ? pcpu_alloc+0xe1/0xf70 [ 408.831650] ? __lockdep_init_map+0x100/0x560 [ 408.836149] ? __lockdep_init_map+0x100/0x560 [ 408.837310] could not allocate digest TFM handle xxhash64-generic [ 408.840645] mount_fs+0x92/0x2a0 [ 408.840661] vfs_kern_mount.part.0+0x5b/0x3c0 [ 408.840674] vfs_kern_mount+0x3c/0x60 [ 408.840685] btrfs_mount+0x3cc/0x282d [ 408.840715] ? pcpu_alloc+0x37d/0xf70 [ 408.866211] ? btrfs_remount+0x1100/0x1100 [ 408.870451] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 408.875946] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.880954] ? pcpu_alloc+0xe1/0xf70 [ 408.884654] ? pcpu_balance_workfn+0xff0/0xff0 [ 408.889216] ? __lockdep_init_map+0x100/0x560 [ 408.893691] ? __lockdep_init_map+0x100/0x560 [ 408.898170] mount_fs+0x92/0x2a0 [ 408.901520] vfs_kern_mount.part.0+0x5b/0x3c0 [ 408.905997] do_mount+0x3c9/0x24f0 [ 408.909524] ? rcu_read_lock_sched_held+0x10a/0x130 [ 408.914521] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 408.919343] ? copy_mount_string+0x40/0x40 [ 408.923560] ? __might_fault+0x177/0x1b0 [ 408.927606] ? _copy_from_user+0x94/0x100 [ 408.931743] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.935627] ? copy_mount_options+0x1ec/0x2e0 [ 408.940113] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.943985] SyS_mount+0xa8/0x120 [ 408.947420] ? copy_mnt_ns+0x8a0/0x8a0 [ 408.951290] do_syscall_64+0x1d5/0x640 [ 408.955160] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 408.960330] RIP: 0033:0x45f27a [ 408.963500] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 408.971193] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 408.978446] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 408.985743] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 16:45:40 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x81, 0x0, &(0x7f0000000040), 0x212005, 0x0) 16:45:40 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VIDIOC_SUBDEV_G_FMT(r0, 0xc0585604, &(0x7f0000000080)={0x1, 0x0, {0x80000001, 0x34eb, 0x2019, 0x7, 0x1a, 0x8, 0x1, 0x4}}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 408.992996] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 409.000247] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:40 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10e169a000001000000000001fffffff60000005f42485266535f4d0762f51c317be91ab9b2e637263bf088c3c229df8de00196d87215641a20b7", 0x67, 0x10000}, {&(0x7f0000000200)="afaeab3359cb68c9e5b6e73aa5dc014409f2c4b41bbf016553905e78dc03acc3bb90ed9497a6904ec5be78186560b2dbf6554aa34cde724c0f60d3390c913441851fe66b5dbd3f61cdc3856a367b0fd7771167c5f1a9cf61f1dc02c03d0fce1525cbf2226e66ec474631037fbc3f0fc9572a7f22b5a403aca8b6d66d75a11850020eb224bac9046b84580cb3c4735175205e05741ff6e919f86317255d26597733a94f55f5d20b35f5a51c7fc8902c626ab655f216e1716d0eed093221f169163503644e397cb7e27e85039299a01d00f060534ba2db7429aa5c3e80f5741824e55378107a3c38447f423fbb54291751d012f6db0aae7b2474dbd8070ead", 0x83, 0xb06}], 0x0, 0x0) r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ocfs2_control\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000140)={0x0, 0xfe000000}, 0xc) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=""/220, 0xdc}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r1, 0x0, 0xffffffffffffffad) ioctl$int_in(r1, 0x5421, &(0x7f0000000180)=0x4) 16:45:40 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r2, 0x1}, 0x1c}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="e961ad4c4ba038ee5aa60eceed410da0daab86", @ANYRES16=r2, @ANYBLOB="04002dbd7000ffdbdf25010000000000000009410000004c00180000000065746800"/98], 0x68}, 0x1, 0x0, 0x0, 0x8840}, 0x1) 16:45:40 executing program 4 (fault-call:0 fault-nth:72): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 409.245565] FAULT_INJECTION: forcing a failure. [ 409.245565] name failslab, interval 1, probability 0, space 0, times 0 [ 409.257206] CPU: 0 PID: 22654 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 409.265091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.274442] Call Trace: [ 409.277034] dump_stack+0x13e/0x194 [ 409.280690] should_fail.cold+0x10a/0x14b [ 409.284847] should_failslab+0xd6/0x130 [ 409.288825] kmem_cache_alloc+0x44/0x770 [ 409.292897] ? mempool_free+0x1d0/0x1d0 [ 409.296875] mempool_alloc+0x111/0x2d0 [ 409.300761] ? remove_element.isra.0+0x1b0/0x1b0 [ 409.305517] ? save_trace+0x290/0x290 [ 409.309321] ? check_preemption_disabled+0x35/0x240 [ 409.314345] bio_alloc_bioset+0x352/0x640 [ 409.318497] ? bvec_alloc+0x2d0/0x2d0 [ 409.322303] ? __lock_is_held+0xad/0x140 [ 409.326370] submit_bh_wbc+0xf4/0x700 [ 409.330165] block_read_full_page+0x722/0x920 [ 409.334654] ? set_init_blocksize+0x210/0x210 [ 409.339145] ? __lru_cache_add+0x17b/0x250 [ 409.343369] ? __bread_gfp+0x290/0x290 [ 409.347342] ? add_to_page_cache_lru+0x150/0x300 [ 409.352104] ? add_to_page_cache_locked+0x40/0x40 [ 409.356950] ? __page_cache_alloc+0xd9/0x3d0 [ 409.361359] do_read_cache_page+0x6f3/0x12a0 [ 409.365764] ? _atomic_dec_and_lock+0x61/0xb0 [ 409.370292] ? blkdev_writepages+0xd0/0xd0 [ 409.374516] ? find_get_pages_contig+0xc40/0xc40 [ 409.379265] ? bd_may_claim+0xd0/0xd0 [ 409.383058] ? mntput+0x5c/0x80 [ 409.386330] ? lookup_bdev.part.0+0xde/0x160 [ 409.390719] ? blkdev_open+0x250/0x250 [ 409.394603] btrfs_read_disk_super+0xd0/0x510 [ 409.399100] btrfs_scan_one_device+0xb5/0x4b0 [ 409.403582] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 409.408591] ? device_list_add+0x8e0/0x8e0 [ 409.412829] btrfs_mount+0x2d5/0x282d [ 409.416629] ? pcpu_alloc+0x37d/0xf70 [ 409.420415] ? btrfs_remount+0x1100/0x1100 [ 409.424640] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 409.430092] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.435093] ? pcpu_alloc+0xe1/0xf70 [ 409.438795] ? __lockdep_init_map+0x100/0x560 [ 409.443384] ? __lockdep_init_map+0x100/0x560 [ 409.447869] mount_fs+0x92/0x2a0 [ 409.451228] vfs_kern_mount.part.0+0x5b/0x3c0 [ 409.455713] vfs_kern_mount+0x3c/0x60 [ 409.459504] btrfs_mount+0x3cc/0x282d [ 409.463298] ? pcpu_alloc+0x37d/0xf70 [ 409.467111] ? btrfs_remount+0x1100/0x1100 [ 409.471336] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 409.476773] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.481782] ? pcpu_alloc+0xe1/0xf70 [ 409.485491] ? pcpu_balance_workfn+0xff0/0xff0 [ 409.490068] ? __lockdep_init_map+0x100/0x560 [ 409.494553] ? __lockdep_init_map+0x100/0x560 [ 409.499052] mount_fs+0x92/0x2a0 [ 409.502409] vfs_kern_mount.part.0+0x5b/0x3c0 [ 409.506891] do_mount+0x3c9/0x24f0 [ 409.510416] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.515414] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 409.520238] ? copy_mount_string+0x40/0x40 [ 409.524456] ? __might_fault+0x177/0x1b0 [ 409.528645] ? _copy_from_user+0x94/0x100 [ 409.532784] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.536684] ? copy_mount_options+0x1ec/0x2e0 [ 409.541175] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.545053] SyS_mount+0xa8/0x120 [ 409.548491] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.552364] do_syscall_64+0x1d5/0x640 [ 409.556246] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 409.561417] RIP: 0033:0x45f27a [ 409.564588] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 409.572291] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 409.579545] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 409.586804] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 16:45:41 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f0000000080)) [ 409.594059] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 409.601317] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:41 executing program 4 (fault-call:0 fault-nth:73): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:41 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet_udp(0x2, 0x2, 0x0) close(r0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x80000007) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r4, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r4, 0x0, 0xffffffffffffffad) splice(r3, 0x0, r4, 0x0, 0x10004, 0x0) sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="f8000000", @ANYRES16=0x0, @ANYBLOB="38022abd7000fddbdf250e0000000800050000040000180001800c000700210000000400000008000b00736970000c00038008000500ac1414aa2c00018014000300ac1414aa00000000000000000000000008000500040000000c000700fe00000010000000080006000100000008000600040000007800018008000800f9ffffff090006006e6f6e65000000000c8be3bb0007000a000000040000000c0007000b000000250000000c0007002200000033000000080008000100000014000300e0000002000000000000000000000000060001000a000000060004004e240000060004004e220000080005000000000004000180"], 0xf8}, 0x1, 0x0, 0x0, 0x10044844}, 0x4004) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$VHOST_RESET_OWNER(r5, 0xaf02, 0x0) [ 409.763115] FAULT_INJECTION: forcing a failure. [ 409.763115] name failslab, interval 1, probability 0, space 0, times 0 [ 409.787905] CPU: 0 PID: 22676 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 409.795829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 409.805187] Call Trace: [ 409.807786] dump_stack+0x13e/0x194 [ 409.811434] should_fail.cold+0x10a/0x14b [ 409.815590] should_failslab+0xd6/0x130 [ 409.819569] __kmalloc+0x2e9/0x7c0 [ 409.823115] ? device_list_add+0x5d7/0x8e0 [ 409.827361] ? __lock_is_held+0xad/0x140 [ 409.831437] device_list_add+0x5d7/0x8e0 [ 409.835507] ? btrfs_rm_dev_replace_free_srcdev+0x2d0/0x2d0 [ 409.841230] btrfs_scan_one_device+0x24a/0x4b0 [ 409.845817] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 409.850837] ? device_list_add+0x8e0/0x8e0 [ 409.855083] btrfs_mount+0x2d5/0x282d [ 409.858893] ? pcpu_alloc+0x37d/0xf70 [ 409.862713] ? btrfs_remount+0x1100/0x1100 [ 409.866961] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 409.872423] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.877444] ? pcpu_alloc+0xe1/0xf70 [ 409.881298] ? __lockdep_init_map+0x100/0x560 [ 409.885800] ? __lockdep_init_map+0x100/0x560 [ 409.890306] mount_fs+0x92/0x2a0 [ 409.893682] vfs_kern_mount.part.0+0x5b/0x3c0 [ 409.898182] vfs_kern_mount+0x3c/0x60 [ 409.901987] btrfs_mount+0x3cc/0x282d [ 409.905797] ? pcpu_alloc+0x37d/0xf70 [ 409.909608] ? btrfs_remount+0x1100/0x1100 [ 409.913846] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 409.919288] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.924286] ? pcpu_alloc+0xe1/0xf70 [ 409.928037] ? pcpu_balance_workfn+0xff0/0xff0 [ 409.932618] ? __lockdep_init_map+0x100/0x560 [ 409.937119] ? __lockdep_init_map+0x100/0x560 [ 409.941606] mount_fs+0x92/0x2a0 [ 409.945092] vfs_kern_mount.part.0+0x5b/0x3c0 [ 409.949595] do_mount+0x3c9/0x24f0 [ 409.953143] ? rcu_read_lock_sched_held+0x10a/0x130 [ 409.958159] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 409.963009] ? copy_mount_string+0x40/0x40 [ 409.967244] ? __might_fault+0x177/0x1b0 [ 409.971311] ? _copy_from_user+0x94/0x100 [ 409.975457] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.979356] ? copy_mount_options+0x1ec/0x2e0 [ 409.983854] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.987745] SyS_mount+0xa8/0x120 [ 409.991198] ? copy_mnt_ns+0x8a0/0x8a0 [ 409.995085] do_syscall_64+0x1d5/0x640 [ 409.998996] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 410.004188] RIP: 0033:0x45f27a 16:45:41 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000200)={{{@in6, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@private0}}, &(0x7f0000000100)=0xe8) ioctl$TUNSETOWNER(r1, 0x400454cc, r2) setsockopt$inet6_buf(r0, 0x29, 0x20, &(0x7f0000000080)="2345cbbaf3a30eb9b8b190824798537a901a25a0aae8992aeaa76cbddb82e8acc439b4f605ccb974f9d745919551afe37101287b44bc53dd04491d44cc8a060e206c40e482317ebfb10213331b44778293350cb1614025d9bc2caf8e6653", 0x5e) r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ttyprintk\x00', 0x80, 0x0) ioctl$KDADDIO(r3, 0x4b34, 0x5) 16:45:41 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000140)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000200)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r2, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) read$alg(r3, &(0x7f00000000c0)=""/86, 0x56) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x10000, 0x0, &(0x7f0000ffb000/0x2000)=nil}) write(r0, &(0x7f0000000340), 0x41395527) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2ce800000206010100000000000000000700000505000100b4000004"], 0x2c}}, 0x20000040) 16:45:41 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000080), &(0x7f00000000c0)=0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) r5 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$sock_timeval(r5, 0x1, 0x14, &(0x7f0000000100)={0x0, 0xea60}, 0x10) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 410.007377] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 410.015085] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 410.022355] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 410.029615] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 410.036873] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 410.044143] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:41 executing program 4 (fault-call:0 fault-nth:74): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:41 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r2, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) write(r2, &(0x7f00000003c0)="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", 0x1000) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r4 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r3, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 410.189940] FAULT_INJECTION: forcing a failure. [ 410.189940] name failslab, interval 1, probability 0, space 0, times 0 [ 410.240530] CPU: 0 PID: 22712 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 410.248485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 410.257850] Call Trace: [ 410.260454] dump_stack+0x13e/0x194 [ 410.264097] should_fail.cold+0x10a/0x14b [ 410.268259] should_failslab+0xd6/0x130 [ 410.272248] kmem_cache_alloc+0x2b5/0x770 [ 410.276397] ? mount_fs+0x92/0x2a0 [ 410.279948] ? vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.284625] ? vfs_kern_mount+0x3c/0x60 [ 410.288605] ? btrfs_mount+0x3cc/0x282d [ 410.292580] ? mount_fs+0x92/0x2a0 [ 410.296119] ? vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.300788] ? do_mount+0x3c9/0x24f0 [ 410.304505] ? SyS_mount+0xa8/0x120 [ 410.308136] getname_kernel+0x4e/0x340 [ 410.312037] kern_path+0x1b/0x40 [ 410.315410] lookup_bdev.part.0+0x60/0x160 [ 410.319646] ? blkdev_open+0x250/0x250 [ 410.323650] ? btrfs_open_devices+0x22/0xb0 [ 410.327976] blkdev_get_by_path+0x70/0xf0 [ 410.332130] btrfs_get_bdev_and_sb+0x33/0x2d0 [ 410.336631] ? find_held_lock+0x2d/0x110 16:45:41 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x800, 0x89) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000900)=@raw={'raw\x00', 0x2, 0x3, 0x308, 0x0, 0x0, 0x0, 0x0, 0x148, 0x270, 0x270, 0x270, 0x270, 0x270, 0x3, 0x0, {[{{@ip={@empty, @local, 0x0, 0x0, 'erspan0\x00', 'veth0_to_team\x00', {}, {}, 0x88, 0x0, 0x48}, 0x0, 0xe0, 0x148, 0x0, {}, [@common=@socket0={{0x20, 'socket\x00'}}, @common=@inet=@multiport={{0x50, 'multiport\x00'}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xc0, 0x128, 0x0, {}, [@common=@osf={{0x50, 'osf\x00'}, {'syz1\x00'}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz0\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x368) r5 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000001440)='/dev/nvme-fabrics\x00', 0x400, 0x0) waitid$P_PIDFD(0x3, r5, &(0x7f0000001480), 0x1000000, &(0x7f0000001500)) perf_event_open(&(0x7f000001d000)={0x5, 0xfffffe8b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) writev(r3, &(0x7f00000013c0)=[{&(0x7f0000001040)="ef1c4739c9c4ff2d8afab718bcba49011d418f87aee3946926b740c7d63bf5253f4383bfb50036bc8d6ae908245e", 0x2e}, {&(0x7f0000001080)="3b116fe037fe2dd52bc66759832b8bc34bf0b9efe3955afeee5e9d9de379e3b3c03b3f55a817044ef3b4609d998df12d0c26d46a2f5ccb2c06cc27d4ca03d83b2568ae00890b07691e8c6d5ccd2230de065174ebabe71180a3c64d63c8ed915fddf2f8a3369bd7", 0x67}, {&(0x7f0000001100)="1e20b4c6aa6d010c19940173851e2aa92145bff36a8754e679adcab3290edde50af7d7a0d4b02056b912a9c24dac96ad2d629436092c35b0f08a2e7a1363bfcdd189d9033c2ad9df4be94c3f200b38da4332e0d2a4fc86b0ab4ff324a7f0819c409080678b72c5e950f6843a78e80b98f16c793357be6c31ca667a0fe14867d7315bdff285efc8d3647cdf9ebfea1a5c1f39a40c43a0512496265698742769ae0efc8b8b45bec73c4e4da7f699aba2426af21aabdf0cc7d7dd612fda2057a30c8ad5be792665254339a96e825017957a4243d7c0853d8c07234627", 0xdb}, {&(0x7f0000001200)="e2a2d3d63af8939932102087bd96756683119ef55170f628760e16716eeec0163f36a155d7e6d6b1a39455d036e69ddec8f31e7090c01758dacec8a2f4ed0cf3deddc46a31d288bd3a060679908d790b7461b6408992d0cb12a111d73aadfddbc139cf1af9f35f5f86c996d5a7710d5321b47583ce9cdf5a5adaa8e0581a5435332d274ca6725f21964535", 0x8b}, {&(0x7f00000012c0)="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", 0xfc}], 0x5) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) sendmmsg$inet6(r0, &(0x7f0000000f80)=[{{&(0x7f0000000080)={0xa, 0x4e20, 0xffb0, @private0, 0x7}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)="fe1323b39424b2d987c15e9b63911137dd272238f93d2882b0668e935f92a29749e290", 0x23}], 0x1, &(0x7f00000003c0)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x8, 0x2, 0x0, 0x20, 0x0, [@remote]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x87, 0xc, [], [@ra={0x5, 0x2, 0x3}]}}}, @rthdr={{0xa8, 0x29, 0x39, {0x2f, 0x12, 0xff8be0adfe8f8c84, 0x0, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, [], 0x0, 0x0}, @private1={0xfc, 0x1, [], 0x1}, @empty, @ipv4={[], [], @private=0xa010101}, @private0]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x8}}, @dstopts={{0x68, 0x29, 0x37, {0x1, 0x9, [], [@enc_lim, @calipso={0x7, 0x30, {0x1, 0xa, 0x0, 0xa51, [0x7, 0x40000000000, 0xffffffffffff8001, 0x80, 0x397f]}}, @ra={0x5, 0x2, 0x5}, @hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0x4}]}}}, @rthdr_2292={{0x48, 0x29, 0x39, {0xff, 0x6, 0x1, 0xfa, 0x0, [@mcast1, @dev={0xfe, 0x80, [], 0x3c}, @private1={0xfc, 0x1, [], 0x1}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x7571}}], 0x1d0}}, {{&(0x7f0000000140)={0xa, 0x4e23, 0x1, @private0, 0x400}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000180)="af05b8f12d3c229e8917d45435ca99350496401970034e95a9314573affc9a2fce80d3fc38f8183312e669fdd76aa33e22e387419cce6fb3863eeab9a1423de9d4d0e207e63a52652e89412b2524b6df7cc05f7cd1740a596eceab86e246fccc89893e3c", 0x64}, {&(0x7f00000005c0)="b5c9fb3d35548e55cb7d5e920a0287891d953fcd908dadacaf9ad584a915a69d9e418bacf6e72fe98a3cab52b702d1a56e679dba3a9c319130fe02bfc5e95d8d2ca259c0b3f324824f825eaa0994ccf839bf0df18ba93ea02e1d074bef580a0743f898f7341863f3190d1b5f3a74b3479c05d60af42cd99aeb913afc4e3c0269ff853f05b75d028c3ad8c7d312bfb554a92de8a1fa81114037f2e61c0471dd2eb30b9bf79986606971e8a58ef7f0933c340c9629fb98d4bba482c61204f8a490d66ccc4747b3251be407b52c54b6471221f5e0", 0xd3}, {&(0x7f0000000200)="6767f36221f6aaf431f3218c0dff495404d34f21b2f80540df777be8dff0d0be84b65976c5a3f067d5445145f67176f0ebf4d3912d9dbb9cb368b8e5c37c02e209540416cb55a29c9837cbef6dd37b11a22deac779a454704ed3eb8fd17713e3615a1bb60897ed0215006e27c754425f463e803ac6afee7b5df6b0293728005f5c1bfcb8888d1d0a99f21ee069b75417c8824ea83e28aea4cfa5d5f0b2baa2e4", 0xa0}], 0x3, &(0x7f00000006c0)=[@flowinfo={{0x14, 0x29, 0xb, 0x4}}, @hopopts={{0xf0, 0x29, 0x36, {0x2c, 0x1a, [], [@generic={0xe3, 0x9d, "9254a25a944513dccd56010ea37c9c55fb70325e44e8f716444c82f236a6708f7e18091acc14fe500da655dea54b8fb99991ef2843eaea724028a8caa183d24458eea3251ac3596a71b3066ce36d11be8b22ce25c4822411a6698073bb385f2b0ce1f010668daeee6c698355d9a32541627e0193bc33269b57b9bbefb7de14f3b56aee838a6921738a1bc354652ad6b4b4e77a9f4ec1546c864877e89e"}, @jumbo={0xc2, 0x4, 0x365}, @hao={0xc9, 0x10, @remote}, @hao={0xc9, 0x10, @loopback}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x3}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x16, 0x2, [], [@hao={0xc9, 0x10, @empty}]}}}, @rthdr_2292={{0x68, 0x29, 0x39, {0x63aa0a61bf947f56, 0xa, 0x1, 0xda, 0x0, [@loopback, @private2, @local, @private0, @empty]}}}, @hopopts={{0xa8, 0x29, 0x36, {0xff, 0x11, [], [@calipso={0x7, 0x58, {0x1, 0x14, 0xfd, 0x8000, [0x3, 0x3c2, 0x7ff, 0x10000, 0x2d9, 0x7f, 0x4, 0xffffffff, 0x7, 0x400]}}, @pad1, @calipso={0x7, 0x30, {0x1, 0xa, 0x20, 0x0, [0xef7c, 0x7, 0x0, 0x9, 0x2]}}]}}}], 0x260}}, {{&(0x7f0000000340)={0xa, 0x4e24, 0x7f, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x9}, 0x1c, &(0x7f0000000bc0)=[{&(0x7f0000000940)="968b97bdb7cbfa56fc3c8102bbd7b8848bd7bacbd21d478e6f227980bae01ec6d5dd5baffc62bcd479aa99de480023642cd8cb08227b79919eadb4b3afc16a063e9ce166a1ba20eff3b79b7f06ec3ea65eb465af493e227d2fa5f5a7339f8db307f88328694f86e4b93e63b1ec2f28dc5ea6f531290be72fae3f96c781", 0x7d}, {&(0x7f00000009c0)="2dfdb8d9b08c032ce923fef7e9408196691ff5c6b4edafe0c227c8d96f075bdddbe82f241ca795", 0x27}, {&(0x7f0000000a00)="61edd6b8a95b6c1598f7a4e75bb7051ba9b2eccacd206cb2c35cb4e60f1bf8d03adb01364908d5edea92a3e9d4c834ed82f7508e522951b208273daeeeb2f8ba2f4adc4b2837469394a0bed54882d5d0920c004f295562dabaa0055021b5adbcf774738a2e4a6dbfcf82a82a0c23fec6de04d4002fa727b0f17e243d8efa95db05e692786b4095fba1ddd40e092655ed65d13e740d05553d3e59b711e8e314f38658d9f123e807d159158c3c12daaae36e7a94f9a2a994e13ecfd0bcc83e40830a1f7de753742da747457dd6d5ce5ba1dd6fa45d", 0xd4}, {&(0x7f0000000b00)="67801ba6e65a73326ae917520f1b4129a2cfb475e8274302c539835f4b4ef005a7f143fe3d48c2a7cc9fccb3ba566f9d874f9ca1ab5cbdeab71ff57d7b4b61e3cac3923ca6abd3d4284891f0400b3b07ce4f6cfd87b37b1058cc784897314036465f78fb452cc1ca5e6f0ef537b811214dce4f60740c0b8b5873dd5a45995c6686e36433f38dbaed600eb70b7be6eb6604ecbbcd689448691efa", 0x9a}], 0x4, &(0x7f0000000c00)=[@flowinfo={{0x14, 0x29, 0xb, 0x7f}}, @hopopts_2292={{0x20, 0x29, 0x36, {0x2c, 0x0, [], [@enc_lim={0x4, 0x1, 0x4}]}}}, @tclass={{0x14, 0x29, 0x43, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}, @dstopts={{0x20, 0x29, 0x37, {0x11, 0x0, [], [@enc_lim={0x4, 0x1, 0x8}]}}}, @dstopts={{0x108, 0x29, 0x37, {0x32, 0x1d, [], [@calipso={0x7, 0x40, {0x2, 0xe, 0x5, 0x800, [0x80000001, 0x10001, 0xfffffffffffffb24, 0x80, 0x1, 0xd77, 0x1]}}, @generic={0x41, 0x97, "2077f821e71e99d8bc1559de0b08706f96d71afb9e453f709ef1aca46a563b8221ba78679d74d36b406d5e6721afb9eb288f15fb4e690c24a658aa07d8fcec9d23d65a126bf0c9e97d683839bfa700f900b49d9f0f50b6b9ca2d9b5f2b0d1465aa25eee99338de16501593f95071eaf6f5c768dfed454a9504a10672ff7e884b8eab92d59612fa81d89b529d2a60a1a1dd838d18a4fafc"}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}}}, @rthdrdstopts={{0x70, 0x29, 0x37, {0x8, 0xa, [], [@calipso={0x7, 0x40, {0x0, 0xe, 0x0, 0x200, [0x7, 0xffffffff, 0x351, 0x7, 0xffffffff, 0xeee1, 0x8bd9]}}, @ra={0x5, 0x2, 0x2}, @ra={0x5, 0x2, 0x3d4}, @jumbo={0xc2, 0x4, 0xa853}, @pad1]}}}, @rthdrdstopts={{0x28, 0x29, 0x37, {0x1d, 0x1, [], [@jumbo={0xc2, 0x4, 0x5}, @pad1]}}}, @hopopts_2292={{0x120, 0x29, 0x36, {0x0, 0x20, [], [@padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x38, {0x0, 0xc, 0x1, 0xfffb, [0x4, 0x1, 0x8, 0x8894, 0xffffffff, 0x585]}}, @ra={0x5, 0x2, 0xb2f}, @generic={0x9, 0xbd, "0d695f1af31288f4a3d3f89708c4fc8242d904be92db08741de82044b762d893b00107bb3243516f0b51ae6ccdbb8960eb986dbfb21b49ec139553b2b120ffe3c3c6e16684d13592ba2ff76280bb1d28033b8d14a321ed975e29555994e6e51d43933fbef4a7b144c2db1d3000c9956ece151527f44d0973928d7d99bf856993093cdf98f75918882174c4e47b96c7cbd3fa5a90373494674fb222d7e5337e05e5006d7fbd126d4bbba47325897362c3f564da090fafb9346d5283b599"}, @jumbo={0xc2, 0x4, 0x8}]}}}], 0x348}}], 0x3, 0x4080) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 410.340698] __btrfs_open_devices+0x175/0xa40 [ 410.345201] ? find_device+0x100/0x100 [ 410.349089] ? btrfs_mount+0xf82/0x282d [ 410.353065] ? rcu_read_lock_sched_held+0x10a/0x130 [ 410.358082] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 410.362933] btrfs_open_devices+0x98/0xb0 [ 410.367088] btrfs_mount+0x10a6/0x282d [ 410.370983] ? pcpu_alloc+0x37d/0xf70 [ 410.374784] ? btrfs_remount+0x1100/0x1100 [ 410.379026] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 410.384484] ? rcu_read_lock_sched_held+0x10a/0x130 16:45:42 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)) 16:45:42 executing program 2: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x100, 0x0) r1 = socket$inet_sctp(0x2, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r3}, 0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={r3, 0xfffffffa, 0x9}, &(0x7f0000000100)=0xc) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 410.389505] ? pcpu_alloc+0xe1/0xf70 [ 410.393233] ? __lockdep_init_map+0x100/0x560 [ 410.397729] ? __lockdep_init_map+0x100/0x560 [ 410.402318] mount_fs+0x92/0x2a0 [ 410.405688] vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.410186] vfs_kern_mount+0x3c/0x60 [ 410.413985] btrfs_mount+0x3cc/0x282d [ 410.417793] ? pcpu_alloc+0x37d/0xf70 [ 410.421596] ? btrfs_remount+0x1100/0x1100 [ 410.425845] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 410.431303] ? rcu_read_lock_sched_held+0x10a/0x130 [ 410.436315] ? pcpu_alloc+0xe1/0xf70 [ 410.440039] ? pcpu_balance_workfn+0xff0/0xff0 [ 410.444625] ? __lockdep_init_map+0x100/0x560 [ 410.449129] ? __lockdep_init_map+0x100/0x560 [ 410.453639] mount_fs+0x92/0x2a0 [ 410.457015] vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.461705] do_mount+0x3c9/0x24f0 [ 410.465270] ? rcu_read_lock_sched_held+0x10a/0x130 [ 410.470292] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 410.475155] ? copy_mount_string+0x40/0x40 [ 410.479396] ? __might_fault+0x177/0x1b0 [ 410.483462] ? _copy_from_user+0x94/0x100 [ 410.487619] ? copy_mnt_ns+0x8a0/0x8a0 [ 410.491688] ? copy_mount_options+0x1ec/0x2e0 [ 410.496179] ? copy_mnt_ns+0x8a0/0x8a0 [ 410.500071] SyS_mount+0xa8/0x120 [ 410.503532] ? copy_mnt_ns+0x8a0/0x8a0 [ 410.507423] do_syscall_64+0x1d5/0x640 [ 410.511328] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 410.516515] RIP: 0033:0x45f27a [ 410.519700] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 410.527409] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 410.534679] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 410.541949] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 410.549226] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 410.556502] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:42 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000440)) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r3, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r3, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r3, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r3, 0x81e6c000) r4 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861, 0x0, 0x0, 0x4000000000000001}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) write$binfmt_misc(r1, &(0x7f0000001a00)=ANY=[@ANYRES64=r2, @ANYRESDEC, @ANYBLOB="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", @ANYPTR=&(0x7f0000000080)=ANY=[@ANYRESOCT=0x0], @ANYPTR64=&(0x7f0000000140)=ANY=[@ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYRESDEC, @ANYRESOCT=r3, @ANYRESHEX=0x0, @ANYRESHEX=r4, @ANYRES16, @ANYPTR64, @ANYPTR], @ANYRESDEC, @ANYRESDEC, @ANYRES64=0x0], @ANYRESDEC, @ANYPTR=&(0x7f0000000300)=ANY=[@ANYRES64, @ANYPTR=&(0x7f00000001c0)=ANY=[@ANYPTR64, @ANYPTR, @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYPTR], @ANYPTR64=&(0x7f0000000240)=ANY=[@ANYPTR, @ANYRESDEC, @ANYRES16, @ANYRESOCT, @ANYRESDEC=0x0, @ANYPTR, @ANYPTR]], @ANYRES16], 0x104a) r5 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:42 executing program 4 (fault-call:0 fault-nth:75): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:42 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) socket$inet6(0xa, 0x200000000003, 0x87) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x80000, 0x0) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast1, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:42 executing program 5: r0 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {0xfffffffffffffffc, 0x0, 0x0, 0x861}, {}, 0x1, 0x0, 0x80000000000001}, {{@in=@broadcast, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x100000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}}, 0xe8) sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000080)=@srh={0x1d, 0x6, 0x4, 0x3, 0x5, 0x20, 0x101, [@loopback, @dev={0xfe, 0x80, [], 0x10}, @initdev={0xfe, 0x88, [], 0x1, 0x0}]}, 0x38) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 410.778899] FAULT_INJECTION: forcing a failure. [ 410.778899] name failslab, interval 1, probability 0, space 0, times 0 [ 410.801876] CPU: 1 PID: 22761 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 410.802206] print_req_error: I/O error, dev loop2, sector 0 [ 410.809899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 410.809904] Call Trace: [ 410.809924] dump_stack+0x13e/0x194 [ 410.809942] should_fail.cold+0x10a/0x14b [ 410.809958] should_failslab+0xd6/0x130 [ 410.809968] __kmalloc+0x2e9/0x7c0 [ 410.809982] ? device_list_add+0x5d7/0x8e0 [ 410.847342] ? __lock_is_held+0xad/0x140 [ 410.851412] device_list_add+0x5d7/0x8e0 [ 410.855483] ? btrfs_rm_dev_replace_free_srcdev+0x2d0/0x2d0 [ 410.861204] btrfs_scan_one_device+0x24a/0x4b0 [ 410.865794] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 410.870807] ? device_list_add+0x8e0/0x8e0 [ 410.875057] btrfs_mount+0x2d5/0x282d [ 410.878870] ? pcpu_alloc+0x37d/0xf70 [ 410.882676] ? btrfs_remount+0x1100/0x1100 [ 410.886923] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 410.892381] ? rcu_read_lock_sched_held+0x10a/0x130 [ 410.897396] ? pcpu_alloc+0xe1/0xf70 [ 410.901119] ? __lockdep_init_map+0x100/0x560 [ 410.905618] ? __lockdep_init_map+0x100/0x560 [ 410.910117] mount_fs+0x92/0x2a0 [ 410.913490] vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.917987] vfs_kern_mount+0x3c/0x60 [ 410.921787] btrfs_mount+0x3cc/0x282d [ 410.925599] ? pcpu_alloc+0x37d/0xf70 [ 410.929405] ? btrfs_remount+0x1100/0x1100 [ 410.933647] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 410.939101] ? rcu_read_lock_sched_held+0x10a/0x130 [ 410.944119] ? pcpu_alloc+0xe1/0xf70 [ 410.947843] ? pcpu_balance_workfn+0xff0/0xff0 [ 410.952429] ? __lockdep_init_map+0x100/0x560 [ 410.956931] ? __lockdep_init_map+0x100/0x560 [ 410.961434] mount_fs+0x92/0x2a0 [ 410.964815] vfs_kern_mount.part.0+0x5b/0x3c0 [ 410.969316] do_mount+0x3c9/0x24f0 [ 410.972864] ? copy_mount_string+0x40/0x40 [ 410.977098] ? copy_mount_options+0x17d/0x2e0 [ 410.981597] ? __sanitizer_cov_trace_pc+0x4a/0x50 [ 410.986441] ? copy_mount_options+0x1ec/0x2e0 [ 410.990934] ? copy_mnt_ns+0x8a0/0x8a0 [ 410.994828] SyS_mount+0xa8/0x120 [ 410.998282] ? copy_mnt_ns+0x8a0/0x8a0 [ 411.002177] do_syscall_64+0x1d5/0x640 [ 411.006075] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 411.011266] RIP: 0033:0x45f27a [ 411.014453] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 411.022350] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a 16:45:42 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000001c0)={0x4, 0x3, 0x8009, 0x8c, 0x3e, 0x4, 0x169, 0x6, 0x0}, &(0x7f0000000200)=0x20) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000240)=r6, 0x4) r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000000c0)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_REMOVE(r5, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="040025a67000fbdbdf250200000008000200020000e90000020002000000"], 0x24}, 0x1, 0x0, 0x0, 0x24000000}, 0x48040) write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000040)={0x2e, 0x4, 0x0, {0x4, 0x4, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x2e) close(r2) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x0) r8 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r8, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x4}, 0x0, 0x0, r4, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:42 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x8000, 0x0, &(0x7f0000000040), 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 16:45:42 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000100)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0xaaaaaaaaaaaabe4, &(0x7f0000000040)=[{&(0x7f0000000200)="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", 0x104, 0xfffffffffffffff8}], 0x4800, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x2a0200, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f00000000c0)=0x7) 16:45:42 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8d677240cb58b5f06ebe0c9cd467bda4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001ff", 0x48, 0x10000}], 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r0, 0x0, 0xffffffffffffffad) r1 = perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x30, r2, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x401}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff2b}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0x70}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000091}, 0x8080) r3 = socket(0x11, 0x800000003, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="ffffffffffffffff280012000c00010076658f6800000000140001000000000000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @multicast}, 0x14) getsockname$packet(r3, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r8 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x14, 0x2, [@TCA_FQ_CODEL_TARGET={0x8}, @TCA_FQ_CODEL_ECN={0x8}]}}]}, 0x48}}, 0x0) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, r2, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x2}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @remote}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x30}, 0x1, 0x0, 0x0, 0x1000408c}, 0x1) getsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000100), &(0x7f0000000200)=0x4) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080), &(0x7f00000000c0)=0xc) [ 411.029618] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 411.036891] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 411.044158] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 411.051427] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:42 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00') sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010300000000000000000900000008000300", @ANYRES32=0x0, @ANYBLOB="fed34e8b90abb7bbb131ad57697640b4d2a6db428988bc11a620d2b5c28ab081222fbbe634d494d83ab813b613890f4af8e4a1f2e745c4ed3f854050c59aeca9"], 0x1c}}, 0x0) r4 = socket(0x11, 0x800000003, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x2, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={0x0, 0xffdd}, 0x1, 0x0, 0x0, 0x8440}, 0x24008080) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c0001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="00004de800000000"], 0x48}}, 0x0) bind$packet(r4, &(0x7f0000000040)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @multicast}, 0x14) sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r3, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4048004}, 0x804) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:42 executing program 4 (fault-call:0 fault-nth:76): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 411.172787] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 411.276450] FAULT_INJECTION: forcing a failure. [ 411.276450] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 411.288291] CPU: 0 PID: 22798 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 411.296180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.305555] Call Trace: [ 411.308139] dump_stack+0x13e/0x194 [ 411.311757] should_fail.cold+0x10a/0x14b [ 411.315909] __alloc_pages_nodemask+0x1bf/0x700 [ 411.320564] ? fs_reclaim_acquire+0x10/0x10 [ 411.324876] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 411.329873] ? find_held_lock+0x2d/0x110 [ 411.333923] cache_grow_begin+0x7b/0x410 [ 411.337969] kmem_cache_alloc_trace+0x6cf/0x7b0 [ 411.342619] ? __kmalloc_node+0x4c/0x70 [ 411.346578] btrfs_mount+0xf23/0x282d [ 411.350374] ? pcpu_alloc+0x37d/0xf70 [ 411.354157] ? btrfs_remount+0x1100/0x1100 [ 411.358391] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 411.363878] ? rcu_read_lock_sched_held+0x10a/0x130 [ 411.368892] ? pcpu_alloc+0xe1/0xf70 [ 411.372600] ? __lockdep_init_map+0x100/0x560 [ 411.377076] ? __lockdep_init_map+0x100/0x560 [ 411.381563] mount_fs+0x92/0x2a0 [ 411.384936] vfs_kern_mount.part.0+0x5b/0x3c0 [ 411.389433] vfs_kern_mount+0x3c/0x60 [ 411.393226] btrfs_mount+0x3cc/0x282d [ 411.397031] ? pcpu_alloc+0x37d/0xf70 [ 411.400824] ? btrfs_remount+0x1100/0x1100 [ 411.405048] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 411.410491] ? rcu_read_lock_sched_held+0x10a/0x130 [ 411.415493] ? pcpu_alloc+0xe1/0xf70 [ 411.419206] ? pcpu_balance_workfn+0xff0/0xff0 [ 411.423785] ? __lockdep_init_map+0x100/0x560 [ 411.428276] ? __lockdep_init_map+0x100/0x560 [ 411.432866] mount_fs+0x92/0x2a0 [ 411.436220] vfs_kern_mount.part.0+0x5b/0x3c0 [ 411.440711] do_mount+0x3c9/0x24f0 [ 411.444239] ? rcu_read_lock_sched_held+0x10a/0x130 [ 411.449251] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 411.454096] ? copy_mount_string+0x40/0x40 [ 411.458317] ? __might_fault+0x177/0x1b0 [ 411.462379] ? _copy_from_user+0x94/0x100 [ 411.466514] ? copy_mnt_ns+0x8a0/0x8a0 [ 411.470397] ? copy_mount_options+0x1ec/0x2e0 [ 411.474888] ? copy_mnt_ns+0x8a0/0x8a0 [ 411.478760] SyS_mount+0xa8/0x120 [ 411.482200] ? copy_mnt_ns+0x8a0/0x8a0 [ 411.486087] do_syscall_64+0x1d5/0x640 [ 411.489977] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 411.495163] RIP: 0033:0x45f27a [ 411.498363] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 411.506058] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 411.513316] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 411.520578] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 411.527831] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 411.535096] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:43 executing program 5: r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000080)=0x4, 0x4) socket$l2tp6(0xa, 0x2, 0x73) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x607) close(r4) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) ioctl$ASHMEM_SET_NAME(r2, 0x41007701, &(0x7f0000000200)='/posix_acl_accesssystemvmnet1:md5sum}Jwlan0em1\x00.|\x16N\xd6\x11\f-\xe5\x87\xe2\xb2@\x16\xdc\xba\xe8\xdb?\x81{(\x1cO\x10\xa0\xa77\xfa\xf3\xcfcL\x81\xab\xdc\xfd\xf60\xb3\"\x05\xacF\xcb\x00\xbf\xc7_\x95\xc6\x92\xa3$h\xa3\x87bBW=:\xee') setsockopt$inet6_dccp_int(r1, 0x21, 0x6, &(0x7f0000000100)=0x8001, 0x4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:43 executing program 4 (fault-call:0 fault-nth:77): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 411.759042] print_req_error: I/O error, dev loop5, sector 0 16:45:43 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$FUSE_OPEN(r1, &(0x7f0000000100)={0x20, 0x0, 0x3}, 0x20) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000000c0)=0x14) [ 411.849244] FAULT_INJECTION: forcing a failure. [ 411.849244] name failslab, interval 1, probability 0, space 0, times 0 [ 411.869744] CPU: 1 PID: 22819 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 411.877656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 411.887014] Call Trace: [ 411.889612] dump_stack+0x13e/0x194 [ 411.893251] should_fail.cold+0x10a/0x14b [ 411.897411] should_failslab+0xd6/0x130 [ 411.901391] kmem_cache_alloc_trace+0x2db/0x7b0 [ 411.906065] ? __kmalloc_node+0x4c/0x70 [ 411.910050] btrfs_mount+0xf23/0x282d [ 411.913859] ? pcpu_alloc+0x37d/0xf70 [ 411.917664] ? btrfs_remount+0x1100/0x1100 [ 411.921910] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 411.927365] ? rcu_read_lock_sched_held+0x10a/0x130 [ 411.932386] ? pcpu_alloc+0xe1/0xf70 [ 411.936116] ? __lockdep_init_map+0x100/0x560 [ 411.940621] ? __lockdep_init_map+0x100/0x560 [ 411.945126] mount_fs+0x92/0x2a0 [ 411.948500] vfs_kern_mount.part.0+0x5b/0x3c0 [ 411.953001] vfs_kern_mount+0x3c/0x60 [ 411.956805] btrfs_mount+0x3cc/0x282d [ 411.960615] ? pcpu_alloc+0x37d/0xf70 [ 411.964415] ? btrfs_remount+0x1100/0x1100 [ 411.968651] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 411.974100] ? rcu_read_lock_sched_held+0x10a/0x130 [ 411.979102] ? pcpu_alloc+0xe1/0xf70 [ 411.982808] ? pcpu_balance_workfn+0xff0/0xff0 [ 411.987387] ? __lockdep_init_map+0x100/0x560 [ 411.991883] ? __lockdep_init_map+0x100/0x560 [ 411.996367] mount_fs+0x92/0x2a0 [ 411.999722] vfs_kern_mount.part.0+0x5b/0x3c0 [ 412.004203] do_mount+0x3c9/0x24f0 [ 412.007731] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.012730] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 412.017655] ? copy_mount_string+0x40/0x40 [ 412.021880] ? _copy_from_user+0x94/0x100 [ 412.026011] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.029900] ? copy_mount_options+0x1ec/0x2e0 [ 412.034387] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.038273] SyS_mount+0xa8/0x120 [ 412.041712] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.045584] do_syscall_64+0x1d5/0x640 [ 412.049475] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 412.054650] RIP: 0033:0x45f27a [ 412.057823] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 412.065519] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 412.072773] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 412.080039] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 412.087303] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 16:45:43 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r3, 0x0, 0xffffffffffffffad) r4 = socket$inet_sctp(0x2, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000180)={r6}, 0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={r6, 0x58, &(0x7f0000000040)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e21, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7fffffff}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e21, 0x81, @private0, 0x3f}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000140)={r7, 0x8}, &(0x7f0000000180)=0x8) r8 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r8, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 412.094555] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:43 executing program 4 (fault-call:0 fault-nth:78): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 412.194492] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 16:45:43 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='trusted.overlay.nlink\x00', &(0x7f00000000c0)={'L-', 0x55ce}, 0x16, 0x1) 16:45:43 executing program 2: syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x3, &(0x7f00000012c0)=[{&(0x7f0000000080)="8da4363ac0ed02000a0000000001004d01005f2130e82253280bd400000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4dd45bca91088afe0926b45fad1533d4808bfa072e99f896e35159a6b0742bef2fb3bd7e0d6a5ef843003371ebcc6327d2e7900d", 0x84, 0x80000000000007fb}, {&(0x7f0000000200)="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", 0x1000, 0x8}, {&(0x7f0000001340)="a8a3410498f43fd41a9f0342b4922e97f0716282fb7c0459c66613ca65884f3637827f199a2d4393a4b1755c6df0d431b811e7467476c1ffe23bf4e8eab6e8ab1cba4f7632ff3a9bb9428b84e276272cc4ef51e6cb091058e872f5b161cdfa0f4de112beb7c8a1aa0b9f4762c18d9a783c5abd2e6c24bad6885a7d6ed1d2e6de24fcb34ed88a6eca7b30189b63c58e1f6c5cdf2cfc49ed2a", 0x98, 0xfffffffffffffffb}], 0x0, 0x0) [ 412.281690] FAULT_INJECTION: forcing a failure. [ 412.281690] name failslab, interval 1, probability 0, space 0, times 0 [ 412.316616] CPU: 0 PID: 22851 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 16:45:43 executing program 0: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x2002, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r1, 0x0, 0xffffffffffffffad) r2 = geteuid() fsetxattr$security_capability(r1, &(0x7f00000000c0)='security.capability\x00', &(0x7f0000000100)=@v3={0x3000000, [{0x4, 0x746f}, {0x8, 0x3}], r2}, 0x18, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000200)={{0x3, 0x1, 0x6, 0x4, 'syz1\x00', 0x4}, 0x0, [0x8001, 0xfffffffffffffffb, 0x3, 0x4286, 0x8, 0xfffffffffffffeff, 0x6, 0x3, 0x100000000, 0x80000001, 0x4f5, 0x40, 0x5, 0x2, 0x1, 0x0, 0xffffffff80000000, 0x2, 0x3, 0x2, 0x1, 0x478, 0x8, 0x2655, 0x7, 0x5, 0x1f, 0x0, 0x2, 0x6, 0x4, 0xfffffffffffffffc, 0x4, 0xfffffffffffffffa, 0x20, 0x7ff, 0x5, 0x100000001, 0x5, 0xfff, 0x6, 0x5, 0xc9b6, 0xfffffffffffffff8, 0x6, 0x1, 0xdd, 0x8, 0x207, 0x5, 0x7f, 0x9, 0x2, 0x7, 0x4, 0x5, 0xffffffffffffffff, 0x0, 0x2, 0x29, 0x0, 0x5, 0x4, 0x6, 0xda, 0x10001, 0x1, 0x9, 0x2, 0x1ef, 0xffffffffffffffff, 0x1000, 0x2, 0x100, 0x0, 0x1, 0x5, 0x7, 0x4, 0xb6, 0x2, 0x8001, 0x9, 0x3, 0xffffffffffffffc0, 0x3f, 0x6, 0x80000001, 0xc0000000, 0x3, 0x4, 0x3, 0x8, 0x10001, 0x8, 0xbad, 0x9, 0x2ba1, 0x100000001, 0x9, 0x40, 0x3, 0xb7, 0x1ff, 0x5, 0xffffffff, 0x1, 0x1686, 0x26, 0x7, 0x3, 0x2, 0x2, 0x101, 0x5, 0x9, 0x5, 0xa26, 0x53a6, 0x2, 0x34, 0x4, 0x5, 0x7, 0x5, 0x80, 0x7f, 0x6]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:43 executing program 2: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsa\x00', 0x105800, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000200)={0x200, 0x3, "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"}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x1900000, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f00000000c0)={0xdb2, 0x1, 0x6, 0x6, 0x8, 0xb1}) [ 412.324517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 412.333873] Call Trace: [ 412.336464] dump_stack+0x13e/0x194 [ 412.340104] should_fail.cold+0x10a/0x14b [ 412.344259] should_failslab+0xd6/0x130 [ 412.348277] kmem_cache_alloc+0x44/0x770 [ 412.352343] ? mempool_free+0x1d0/0x1d0 [ 412.356317] mempool_alloc+0x111/0x2d0 [ 412.360214] ? remove_element.isra.0+0x1b0/0x1b0 [ 412.364974] ? mark_held_locks+0xa6/0xf0 [ 412.369033] ? pagecache_get_page+0x12c/0xa10 [ 412.373530] ? __find_get_block+0x792/0xbf0 [ 412.377858] bio_alloc_bioset+0x352/0x640 [ 412.382011] ? bvec_alloc+0x2d0/0x2d0 [ 412.385813] ? __lock_is_held+0xad/0x140 [ 412.390372] ? hdmi_print_sad_info.isra.0+0x280/0x4e0 [ 412.390389] submit_bh_wbc+0xf4/0x700 [ 412.399366] __bread_gfp+0xff/0x290 [ 412.403048] btrfs_read_dev_one_super+0x98/0x260 [ 412.407809] btrfs_read_dev_super+0x5a/0xa0 [ 412.412132] ? btrfs_read_dev_one_super+0x260/0x260 [ 412.417162] btrfs_get_bdev_and_sb+0xd7/0x2d0 [ 412.417180] ? find_held_lock+0x2d/0x110 [ 412.417194] __btrfs_open_devices+0x175/0xa40 [ 412.430208] ? find_device+0x100/0x100 [ 412.434099] ? btrfs_mount+0xf82/0x282d [ 412.438076] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.443087] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 412.447938] btrfs_open_devices+0x98/0xb0 [ 412.452082] btrfs_mount+0x10a6/0x282d [ 412.455980] ? pcpu_alloc+0x37d/0xf70 [ 412.459779] ? btrfs_remount+0x1100/0x1100 [ 412.464012] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 412.469453] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.474466] ? pcpu_alloc+0xe1/0xf70 [ 412.478180] ? __lockdep_init_map+0x100/0x560 [ 412.482669] ? __lockdep_init_map+0x100/0x560 [ 412.487159] mount_fs+0x92/0x2a0 [ 412.490515] vfs_kern_mount.part.0+0x5b/0x3c0 [ 412.494997] vfs_kern_mount+0x3c/0x60 [ 412.498784] btrfs_mount+0x3cc/0x282d [ 412.502615] ? pcpu_alloc+0x37d/0xf70 [ 412.506416] ? btrfs_remount+0x1100/0x1100 [ 412.510659] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 412.516096] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.521240] ? pcpu_alloc+0xe1/0xf70 [ 412.524950] ? pcpu_balance_workfn+0xff0/0xff0 [ 412.529517] ? __lockdep_init_map+0x100/0x560 [ 412.534022] ? __lockdep_init_map+0x100/0x560 [ 412.538533] mount_fs+0x92/0x2a0 [ 412.541907] vfs_kern_mount.part.0+0x5b/0x3c0 [ 412.546397] do_mount+0x3c9/0x24f0 [ 412.549950] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.554975] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 412.559813] ? copy_mount_string+0x40/0x40 [ 412.564039] ? __might_fault+0x177/0x1b0 [ 412.568095] ? _copy_from_user+0x94/0x100 [ 412.572232] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.576119] ? copy_mount_options+0x1ec/0x2e0 [ 412.580601] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.584482] SyS_mount+0xa8/0x120 [ 412.587921] ? copy_mnt_ns+0x8a0/0x8a0 [ 412.591807] do_syscall_64+0x1d5/0x640 [ 412.595694] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 412.600867] RIP: 0033:0x45f27a [ 412.604040] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 412.611745] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 412.619019] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 16:45:44 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x18, 0x1407, 0x4, 0x70bd2a, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_DIM={0x5, 0x54, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x40040) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x4) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r1, 0x0, 0xffffffffffffffad) sendmsg$sock(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)="d1f7fff49726c33d30952effb0810d105e8c21707e9525b4265cda11d9856c894461ecbdfc901dd5de924db49abfba7653ecf19b7c2dffbbc3f769bc49f59c7b28ecbd06b73d9d1906f5f29c860730c34a303aa90ed88ebbe9fc04098fc5def768341a61001b666f26a12fc47e35f5865e8b5bac7a30a26d341a7898b5cdd2a1843edc9ef3d6a2439c6116008420", 0x8e}], 0x1, &(0x7f0000000240)=[@timestamping={{0x14, 0x1, 0x25, 0x9}}, @mark={{0x14, 0x1, 0x24, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x7fff}}, @mark={{0x14, 0x1, 0x24, 0x1}}], 0x60}, 0x4000000) r2 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) accept(r2, &(0x7f0000000300)=@sco, &(0x7f0000000380)=0x80) [ 412.626291] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 412.633562] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 412.640830] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:44 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000040), 0x3528a9c0}], 0x100000000000001c, 0x0) 16:45:44 executing program 4 (fault-call:0 fault-nth:79): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:44 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$EVIOCSKEYCODE(r3, 0x40084504, &(0x7f0000000040)=[0x20, 0x49f]) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r4 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 412.810452] FAULT_INJECTION: forcing a failure. [ 412.810452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 412.822280] CPU: 1 PID: 22886 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 412.830168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 412.839519] Call Trace: [ 412.842110] dump_stack+0x13e/0x194 [ 412.845748] should_fail.cold+0x10a/0x14b [ 412.849910] __alloc_pages_nodemask+0x1bf/0x700 [ 412.854651] ? save_trace+0x290/0x290 [ 412.858453] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 412.863481] cache_grow_begin+0x7b/0x410 [ 412.867553] kmem_cache_alloc+0x695/0x770 [ 412.871706] ? iput+0xad/0x8d0 [ 412.874902] getname_kernel+0x4e/0x340 [ 412.878788] kern_path+0x1b/0x40 [ 412.882160] lookup_bdev.part.0+0x60/0x160 [ 412.886398] ? blkdev_open+0x250/0x250 [ 412.890290] blkdev_get_by_path+0x70/0xf0 [ 412.894443] btrfs_get_bdev_and_sb+0x33/0x2d0 [ 412.898940] __btrfs_open_devices+0x175/0xa40 [ 412.903443] ? find_device+0x100/0x100 [ 412.907333] ? btrfs_mount+0xf82/0x282d [ 412.911309] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.916326] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 412.921175] btrfs_open_devices+0x98/0xb0 [ 412.925330] btrfs_mount+0x10a6/0x282d [ 412.929229] ? pcpu_alloc+0x37d/0xf70 [ 412.933037] ? btrfs_remount+0x1100/0x1100 [ 412.937282] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 412.942733] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.947777] ? pcpu_alloc+0xe1/0xf70 [ 412.951510] ? __lockdep_init_map+0x100/0x560 [ 412.956020] ? __lockdep_init_map+0x100/0x560 [ 412.960526] mount_fs+0x92/0x2a0 [ 412.963905] vfs_kern_mount.part.0+0x5b/0x3c0 [ 412.968411] vfs_kern_mount+0x3c/0x60 [ 412.972217] btrfs_mount+0x3cc/0x282d [ 412.976031] ? pcpu_alloc+0x37d/0xf70 [ 412.979837] ? btrfs_remount+0x1100/0x1100 [ 412.984075] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 412.989511] ? rcu_read_lock_sched_held+0x10a/0x130 [ 412.994517] ? pcpu_alloc+0xe1/0xf70 [ 412.998227] ? pcpu_balance_workfn+0xff0/0xff0 [ 413.002792] ? __lockdep_init_map+0x100/0x560 [ 413.007281] ? __lockdep_init_map+0x100/0x560 [ 413.011806] mount_fs+0x92/0x2a0 [ 413.015164] vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.019648] do_mount+0x3c9/0x24f0 [ 413.023173] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.028183] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 413.033055] ? copy_mount_string+0x40/0x40 [ 413.037280] ? __might_fault+0x177/0x1b0 [ 413.041329] ? _copy_from_user+0x94/0x100 [ 413.045504] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.049382] ? copy_mount_options+0x1ec/0x2e0 [ 413.053876] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.057749] SyS_mount+0xa8/0x120 [ 413.061290] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.065165] do_syscall_64+0x1d5/0x640 [ 413.069092] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 413.074295] RIP: 0033:0x45f27a [ 413.077470] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 413.085165] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 413.092467] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 413.099719] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 16:45:44 executing program 1: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) recvfrom$inet(r0, &(0x7f0000000100)=""/149, 0x95, 0x3022, &(0x7f00000001c0)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000200)=@filter={'filter\x00', 0xe, 0x4, 0x3c8, 0xffffffff, 0x168, 0x98, 0x98, 0xffffffff, 0xffffffff, 0x330, 0x330, 0x330, 0xffffffff, 0x4, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x3}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x3, 0x0, 0x5, 0x0, 0x6, 0x7], 0x2, 0x2}, {0x4, [0x1, 0x4, 0x1, 0x0, 0x2], 0x1}}}}, {{@uncond, 0x0, 0x168, 0x1c8, 0x0, {}, [@common=@inet=@recent0={{0xf8, 'recent\x00'}, {0x1f, 0x8, 0x5de84413a3042407, 0x1, 'syz1\x00'}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@local, [0xffffff00, 0xffffffff, 0xffffffff], 0x4e21, 0x4e22, 0x4e20, 0x4e24, 0x9, 0x7fff, 0x81, 0x3, 0x3ff}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x428) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f0000000080)={0x6, 0xa28, 0x5}) syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x64, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) ioctl$VIDIOC_DV_TIMINGS_CAP(r1, 0xc0905664, &(0x7f0000000640)={0x0, 0x0, [], @bt={0x10001, 0x3a6a, 0x7, 0x1ff, 0x401, 0x100000000, 0x8, 0x4}}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 413.106972] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 413.114228] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:44 executing program 4 (fault-call:0 fault-nth:80): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:44 executing program 0: pipe(&(0x7f0000000300)={0xffffffffffffffff}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cpuinfo\x00', 0x0, 0x0) getsockopt$packet_buf(r1, 0x107, 0x5, &(0x7f00000000c0)=""/49, &(0x7f0000000100)=0x31) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000540)="3db35d2de3aacc79366509a965be9353e821beec9e57c8fe1ec059ad5abc8a8320bb545c589782fc2aeb58af85e05f9982dadb3183fd029882d6b2df24e99f4f192d172c2f316dbaaf4339384d774aa118f2497fb29a8ae411d169f6bfbdebdfbf571e7d09d71846c9fe8a41db9459adb5d38361b246f2ce579d965725e3c33807855c34569b0e11fab5e7f50c4618b9c200e0bdfbf5ad1374d3b91b9af8142b4af812927c892d66836d72038e4481c806c3d3b0b7f7cf31d9", 0xb9}], 0x1, 0x0) r2 = getpid() sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r3 = getpid() sched_setattr(r3, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r4, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r4, 0x0, 0xffffffffffffffad) r5 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r5, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x20000}], 0x1, 0x10003, 0x0) connect$inet6(r5, 0x0, 0xffffffffffffffad) kcmp(r2, r3, 0x1, r4, r5) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000200)={0xfffffff9, [[0x4, 0xc4, 0x5, 0x8, 0x40, 0x3, 0x8000, 0x5], [0x202, 0x34ef, 0x9, 0x3, 0x101, 0x0, 0x1], [0x9, 0x2, 0x7fff, 0xbe, 0x100, 0x400, 0x3ff, 0x7]], [], [{0xbbc6, 0x81, 0x1, 0x1, 0x1, 0x1}, {0x3f, 0x2, 0x1, 0x1, 0x1}, {0x5, 0xbd, 0x0, 0x0, 0x1, 0x1}, {0x8, 0x2, 0x1}, {0x10001, 0xfff, 0x1, 0x1}, {0x289e, 0xfffffff7, 0x1}, {0x0, 0x2, 0x0, 0x1, 0x1}, {0x100, 0x1, 0x1, 0x1, 0x1, 0x1}, {0x0, 0x7fffffff, 0x1, 0x1, 0x0, 0x1}, {0x5, 0x7, 0x1, 0x1}, {0x5, 0x7fff, 0x0, 0x1, 0x1}, {0x401, 0x6, 0x0, 0x0, 0x1, 0x1}], [], 0xa2}) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000ac0)='/proc/schedstat\x00', 0x0, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vcsa\x00', 0x80, 0x0) ioctl$IMCLEAR_L2(r6, 0x80044946, &(0x7f0000000b00)=0x7) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x101, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 413.279017] FAULT_INJECTION: forcing a failure. [ 413.279017] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 413.290858] CPU: 1 PID: 22915 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 413.298740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 413.308096] Call Trace: [ 413.310683] dump_stack+0x13e/0x194 [ 413.314315] should_fail.cold+0x10a/0x14b [ 413.318491] __alloc_pages_nodemask+0x1bf/0x700 [ 413.323234] ? save_trace+0x290/0x290 [ 413.327014] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 413.332018] cache_grow_begin+0x7b/0x410 [ 413.336190] kmem_cache_alloc+0x695/0x770 [ 413.340359] ? iput+0xad/0x8d0 [ 413.343536] getname_kernel+0x4e/0x340 [ 413.347432] kern_path+0x1b/0x40 [ 413.350808] lookup_bdev.part.0+0x60/0x160 [ 413.355032] ? blkdev_open+0x250/0x250 [ 413.358915] blkdev_get_by_path+0x70/0xf0 [ 413.363050] btrfs_get_bdev_and_sb+0x33/0x2d0 [ 413.367530] __btrfs_open_devices+0x175/0xa40 [ 413.372018] ? find_device+0x100/0x100 [ 413.375886] ? btrfs_mount+0xf82/0x282d [ 413.379840] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.384835] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 413.389663] btrfs_open_devices+0x98/0xb0 [ 413.393802] btrfs_mount+0x10a6/0x282d [ 413.397678] ? pcpu_alloc+0x37d/0xf70 [ 413.401464] ? btrfs_remount+0x1100/0x1100 [ 413.405691] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 413.411139] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.416166] ? pcpu_alloc+0xe1/0xf70 [ 413.419911] ? __lockdep_init_map+0x100/0x560 [ 413.424410] ? __lockdep_init_map+0x100/0x560 [ 413.428898] mount_fs+0x92/0x2a0 [ 413.432254] vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.436770] vfs_kern_mount+0x3c/0x60 [ 413.440557] btrfs_mount+0x3cc/0x282d [ 413.444345] ? pcpu_alloc+0x37d/0xf70 [ 413.448129] ? btrfs_remount+0x1100/0x1100 [ 413.452417] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 413.452430] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.462879] ? pcpu_alloc+0xe1/0xf70 [ 413.466598] ? pcpu_balance_workfn+0xff0/0xff0 [ 413.471180] ? __lockdep_init_map+0x100/0x560 [ 413.475682] ? __lockdep_init_map+0x100/0x560 [ 413.480186] mount_fs+0x92/0x2a0 [ 413.483559] vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.488050] do_mount+0x3c9/0x24f0 [ 413.491598] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.496604] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 413.501430] ? copy_mount_string+0x40/0x40 [ 413.505646] ? __might_fault+0x177/0x1b0 [ 413.510042] ? _copy_from_user+0x94/0x100 [ 413.514169] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.518040] ? copy_mount_options+0x1ec/0x2e0 [ 413.522515] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.526392] SyS_mount+0xa8/0x120 [ 413.529831] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.533706] do_syscall_64+0x1d5/0x640 [ 413.537589] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 413.542836] RIP: 0033:0x45f27a [ 413.546019] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 413.553709] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 413.560968] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 413.568231] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 16:45:45 executing program 2: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_buf(r1, 0x0, 0x23, &(0x7f0000001380)=""/176, &(0x7f0000001440)=0xb0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000001340)={0x1, &(0x7f0000001300)=[{0x4, 0x4, 0x80, 0x9}]}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001280)=[{&(0x7f0000000040)="743ef82f32ee242c0c0bb7aeae2e30188a0bc77eda794ca2b4ef65330b88c315f0c84ab37fbe628a530abac26e08a6bce5087f5f5d223525a1bf017019477c91210619648872bd13c9e1abe19efb9e3b09e85198e640699d7133997342c9f93ad2db775c2fcf8c707bb8c05c115617149100d0db67b13561b9f275e9ba5ae387fde8a461816a6ce4c27172a68705fee054f9589a49845206", 0x98, 0x7}, {&(0x7f0000000200)="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", 0x1000, 0x7}, {&(0x7f0000000100)="bc7a9cd01e69e7a0ae5fa130fa5e779d7187d1ac6392ede3c762c3bda642ff4c0213c93c42922b3814d8fc454c144a83c246fbf8b68967a1fce31efe27cd6f5707d4264a51eea3bd52baa6b7b73f3f3535b7ad53ac9e008cb93e5309390a8be17dafca84f5fc6921bcc4be13196d610876efc6d868253249b023e9af00ad99c98a07dc94452c4e05cd8ddc79a2bf0cb5c1a4a4844fb4349dbb0bf06d0c3c8f69af44f0fce04c615257dbe3", 0xab, 0x9}, {&(0x7f0000001200)="4ffc37932895c9952e240f78214bc06696ee5030dbd18e936ba88a9a381fc622bdad02692b4e781025c191445e756e8d67171db2fda49adc682e1e2a9d22d9ad68845cca", 0x44, 0x1f}], 0x400, 0x0) ioctl$SNDRV_PCM_IOCTL_RESUME(r1, 0x4147, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000001480)='/dev/vsock\x00', 0x2c42, 0x0) 16:45:45 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r1) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, &(0x7f0000000240)={0x1ff, 0x80000001, {}, {0xffffffffffffffff}, 0x3ff, 0x8000}) setreuid(r1, r4) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x402, 0x3, &(0x7f0000001280)=[{&(0x7f0000000080)="e50275809150c56fb2a5dc5cbc95c704e1ed46080dd30a52df8e922ad8ec914dfcb889712f3230564adb3e0db05be17ad2dd4c515806101906950a4f8df697e02d8c34413864da8f00ed877c9dfffbfc8f6d302c587d64be118ef824dc79d8685fa6eec9e990086780d18b387405beb28ae41440fd56d45d5b3dd179ff34a73abe82986b7de35474f97fdf4643787f7b7acaa4ef74c34288e2e1d538448559647bd368e891e93a80f80eca3ed6", 0xad, 0x800}, {&(0x7f0000000140)="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", 0xfc, 0x20}, {&(0x7f0000000280)="dad33397b71a184ff668abae3c1fd53f1fdbd016a5b8a4193c198811a8caac6f886dfd8d55a292c7e5df82250240c7799814ef00ce8fc8daabc84c3c96195fd1a611d76d458107b19862e133f88855a03ba762d145daf42c802e6339972cb1f2cce9a322b2501cfa6471662fc1542a99c935cd025f8571ebaacb8cfdee351d3a3420da83d046359190efdcf8d4ce84dccf99891843d60e58f694d77423b048e8fb8541b2998d90a193389f5644bdfeb0d7275ef9dae59a07520cf9e449947c48bada358eee56634aeacf39dc3f395b4f9dcab169b0c24260b92283cf93e2218c5c735cdbba06edcb6950e78fd6abbdb46863ddd280938eb0528233a15a1ee4f666bb696fe885f3f1f7242c67d49d9b4075ef1331ed8c78738dc8e2abe2e35a93c2b8474dfafa2c9d981b60cc8a284527392c5d7151972b74a8bb17c6ab5ca4424d00fc81e9080fc0e97507226835623e8d0117ba6ac1e7cc6cbce2843c8648f0923326ab8c8dc6480ccd15fdd37ee6c89b2ddcb3b76e261fadaff3ccc04e414aa23ad6d0b062238e0319e545e99498634c12dfa03a2a41ccad550e7b25a1c96a2146894017acb67d6f119b706495fb5fca826453cc78feab78ff9f209dc524ad1528087adba089eea310843e08315d81dfdbce502749406d0552f6a89333f03de585ba65f3303bf2a7f0e0ce6b95db324d7dbb24fca9f44a0d03ffdd89a5959e09546ab81aa957087f5ee037d0a62136bac5788f7ce894841c24088448515c199f869ac55a47b090a6cf642dec41b398ae650e72abc577f5088bf2108dae2278d8b4308c41f05bb5836e9c5d43421d72e2d4587a0d5a2fa8b4db44e60b1ec63d11c198cfd58210de35176a1fa311c668cc6349cc6330a6036195dfbdc77fed6f3698ba325649360cfe2fd4f60d87c8da5e923aa55f783dcf564f557c5e49663e74237f242242dcda2e8e8807037b4105128318ce1a0bd837abd34a339c1687c7486da517a4e973621dde2f6074c75eede2e32b67004d8b34b92f0e7273266b92a1ba5e9e975ddbd15de14acb76180fbfd66f9efd3c028931867e65037fb37ed7b78f3054b18c4b8883ac5a439b88566cc5684d449eb5b0aa14784229cb4deedb11f05366e6e0327f54560047bda4a1f9e450f04b879da86ab2299ff80f0ece100b0a40c8799990e045ef1ac9bc4a638bdcb686b01fcfa0ae37b70ff77c2838842e4c434100004c27cde0431884a75e3b2c25f3855b4df59da617c34c03fda4892014b143c690cd3f1ec16269e50da6279b940a0bca81bedec716f68052b2c916da5a1324ad6e3926445e72beb1c188f43f8cdeeae50a0f48961113c48e4c6cd438382fa45ce153e505c1d11db183df22f525215c85cb08201211abefafb6110128b9b3dbca23db8f4e9e74f7070c89b7a4805a99c9d82988266c5c706c408331065fafb5a9f380f84221eeca997a13485a1ce2fcccaf38c38722cdf709bf366b95cee228e428a354bb98b64a5b29ceceb6e0417bb0264e38d24afe947baee2877f9fb6e47bc38f505b93f80a8deb401c8dc72f3d726de39ee445cda46e51e86cdf466fa15977d7200c18eee09d9d5ff349a7dbc0299485684bd6648b69e1c1fec2c6ea4ecd0cde9c6d0b45af8eb79652ef2e865d083d85d5ca11d2ef1808857fdbcb204bfb2536414d64733ac26f25acea32d5217fdd17ed0188447edc78fe9ab6d85bb36cf5e844600130b6d654b53838810492d402e4b57be47e999d9ef316bbaf5877a5bcd70750e707b97778907093635e135307f331dfa31bd3416e4afddb24a57ddba5b25817af7360ebad4595b51e2ecac0822a2ccc8c558be020425cb6ff3387e6401256a1b78341bf67ad184fc035e276705c5c83c90b2a71c6bb7088157ed8d88bf7ab191d1574ac8b6db8f61d9cf2e704f415cfc09777be0bc2f8abbe1be1cabdf5664b3e89682cc4bdaed52d8b0d560a22eb984f41ba2d8c7870e49d0dc1a15c14d9bf4c1e22300bdaa64fb31172eb767790c60c0355be5dc7a15d30f7fff6991ecbc5e5da8e3a7b936236617c401a9cd46ef95c5bef62fbf354f82d74d522cb05e5ce45a1c8263bb42abfaa5db70062938f5c234e34b47bded54ce9c5cb23a2410377dd4d64a643c58eaac6bb22f9639a9f1d47675a6b418f6acba7870c828c2d37905261cd94c9628a8ab90e8a87eaee49692b7401ac57827dcde4c38aab14682fed9eaa060fc0433781d75bb952ee6125674da733f8d168d5d2039bff0651ffaafbf8c11336fa7e60f1e3ae48b101141d17758d82b530bc7318a6d246e567fd3737bd8a30f2d1541c148ebbe89002807d89183692286330527cb8567035f95edd844f9a9ce4fc5a2f502518bee8ef94e624bde199d012925a4505988d357ac6d224be169140ff7955698c6d6a6dda380211928949e023e873a9a502d6b8f2bce086e83cf98cc1ee3dfbd4ee9e6aa73450bb32d10aa9e73977f1a9f82bc3dffe019ba1d3dceb4acecd04d346ce09a8780c1449cd666d2cc3a15aca11b74830a5e70390812ac991ee799da0c807ea997a2fc0d4d03d4592631962e56c7b80702e4e4a9ae14a566190baffd177988d8fc9e3146c3747a502d6ffe6d94f01752af5b10c6f061eac8941fb393016ee07fa83de4e16cb028181f85a8596608aee645a2bcd8ad67830fac57192477093c91094cac48c496b51342d0a1b4815a128a35922340d5af5f9d67c8012b29bcce09255e2a7907a0b63a06de344cffef149df9aae0439328d243dcb8877e2f87f9229909593bb36d59d03f72413846d3727634184419afbb60e9ed1bda134b359e0dade5530c8a36a850532d2da09968ffa7f80f39dda540116848d882a031be3a23b70c50d9ff69139b2ec2bfdfcd33d6827743df1efd807e1018ef902d60b2c531c9e9e445f80e325bde5e6a71276ebd3ef7f4874619cf679f9bd23c3c09d6ddd13008b7198ce96c53437dda4c49d9a3acf9240c162d1dd8b6b9180c5a2fc496410ca13f873c971603bf30ca3c13d987b34311330b0e360cce40b82139421e774dcadc356418c82d0b277925655d11ba8314081686e93582c946bafe2770168908ac8c170dc4153c762ab4e83aeb2a21de03d50db68a4b106e2005ec6f317aff35efdb12491bce7bee1b1e32e4a28dee79061c8531deb28a6f21f0cb2ce6dfe3aa8e0cb9d772c231a3ff04d75f7a4e8523fb862a5ca658766e03482f8f3c77e7e8f66a4b17e732514a8ded28ec291505e690d948424313790b30755b86b664118a02a85d07b39b82ac975379f05adc31e10fd258781580da514fbe0bb95b0e09208403b7b456c46deb270afccbbeb614cdc149c2c4475b9e193023cb0eb92a643b3dba78a8ec83e0a4e0ceb4bd75944790af8cea4799d92034eb491ac6cc82732f563f2e701ee29f330fd6e68800fa157a32af85e388ce2e4606d7764ceee5fab711554ee9fb5395b0294528932787693853bd53076faeddc085ee57f9a9db99ca0be8b67a76a2532fe3c86f5267d06134d89ca3cfa0aece18353442a9fddf2ee7b5a25559d893c5dd4fc3b54c87096a293cb15d8f76d25f996bf030011c3857ba7225ff31fd5c927d3c37952f6e4115d193d6adee30c9863df3155b48642237aefffa14fbbf9cf3a88d71bda26a28ea45a256b1fcb324756fb87166c535e8d9efc662dee2aecdd12d7e7d6e95125ab5f13fcdd15d04782cb6c3b9bb2e89f8d9cbca2223b23d6af6ccdbfff388429fbcdb8f0cd976295a93f99480fc25603ad6118a93c2d245dc350e8355ca323579c16b13ed75484f86722b053c02e05eeecb4582e9b902ccf52171c3d113b0169282e3eb2d6b6bf7d40a4ec8359f4857bdc865e993448f9e85b28d01501a6bc3318edceb4ef3c4b07370a3e81501a160ef1e2c111e00cc87dda9f5916a99afcbb85242efdc393e8f6b5d1c883dfb2553100206b553bf21a4a3488a5e443b2b2b3e065b8f8fdc797d0dbab2832896c69a5d76f5aca62fc9acaca7914c360a0dd6429b4dbb752be3be49fc15a958aea4725dd378525c2e34cef4c874749fd0d103bb1cd565f0bf753b152be475adfc9b0d0a43ac5b7ad5b89f55b2ba93ec95e4339fdf7aa5126466d5a67627423786a9fc5419bf83dc148d11abf73b4d1e7156f1921bd5f3d30be853103d74bc8f0f25303e9a457ecb91dc0cbd6199360207c1a663ac9c9f45be005e6b0e61958eefdcea8addb09e63c657efe888fb1d8ce314dc9f4e77e2c3dade68ceba9dd62c26d6ee4650e51c09cf12a74fa6707acead129b765950cb96f1999aa613b0cd07b78885b66f73983eb63492251b7661b0d112acbc5865b4085b1ed07273ce68a63de4f6c4f81244460a432bd02dae8ae28b0ea6fb925f925065c0687ac4dcc59eeff7dd053a40f010cf048784174be95e9535addc870039bfeba5071e9e2464b490ed096b658efb6522acd1cd92681c0acd5aec12dbd783096906722583b5cfff350a067b4ecf64ba0e13f3c95ef3a8ffd9e0d2e6a9bc1645d8d7b1871bbfbca3d3b74fdb71e238c2b5aaa6343dbbf21b24217ff63fca034028964439642542e12081ba803f76bec307fb6b4537ea519917326c97665ccd67d9ffa283e21d7c19a2434fa2b0c90bb59620ba9dcd3de3a05e5c40bfb174d281520e99197abbbc8dbefbf166cbdc4a8499be8ebc17e781e0c7de1b18aa4aa1039abe18ac73e3bc010928c0752231f8f897e9a4830f751e731201168591d351480abab6ac7415b39c83fbedb527a36d932ced9e126066376f3eaba03f482a2d294f5e6fd490af89d483f845afd34c63f8d180584fa8fc78afdfcc1b1fb6f51ed7eeafaa8c802590b2d167b86318887da2c305b329b6dffbd9fd1b5ca1c8fa4480adbc5dffeef84c47944c4ea65efc18347a97cc79fb804f8d84e7625ca0e7d2e847f0bfd218b359eeb6312bb3929b44e908c7fc06e40811e8c5642199fad4892329dd91d17c7a11d84303868656ea38d1f4eb9ba9cf3f2bfd6093e56b88a4ac079df930f81289ccf2c59e8aeb052040646d5ecc0ab2a0cdb44f656fae036b21f884f8299d1dbd6671bdb258e8d938ae775b8a96919781609f15e5c81eed14f5d3d700a85f10e5913549f057776abded105aa1fa6d1ceee450af2f724715e34a5f3cb793b1c32d7deef7b4621fa2d058d36de1738b5b02505af730b49e059754bf07a1f2cc0e01a2b684c6810331fb3b191b1a7fd82b0b082bc178635ab2aae8e3732b7087f68c6edbc1da1086f2b90b13952540754bc856e18d4228c5b688abf3d971b66aae6034e06a8e42d7ebac5d058529be524a34ce17499254078b2594adff8aed7fbcb3f756e2dbef60695f8e97372da6f0d51579fbc925ea30326d2001b9a672a7597be30fa4a06f674dc16751a2442d7ea404a4e1143584bab51860690aa19820200591ee45f9e59f14b22e29e3f04d51777f567da41a49bf4596a08866fe1e88bf039b02e2559878d7f8ca9bf491ae759d0485ff819ab008ec3d4f3f2ee3cb6528c96ca35c90964e235077e41dcb73ab99551e35bd12cd0c6a53e3f391768df76f07036973c7b5d6d00e9fec98bc2502312c74b4c7ab4c22e6834345c3d1b6e3edee979c27af3d8b0e103e05c1014de0ee3dfbad87720958a11fe25a71f4f9e114c5acdad9c2f1fc021a718d7421c15f67171004bc85adf9dcfa743ba53fa63e77eae79f8f01f56c9008d857b3b2a4a45fb88df4623f8da86aade02c53951d85e9216d0e3807cc492c5a919aa986207e37a90967e", 0x1000, 0x4}], 0x20000, 0x0) ioctl$PPPIOCSNPMODE(r3, 0x4008744b, &(0x7f0000001300)={0x2b, 0x2}) getegid() [ 413.575498] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 413.582747] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:45 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000040)="2c97a474ec6578d28ff625a082d1c54e4de3e7512712219d9bc34561362db107b2413d2853ccac35812ad071a3f934282b96cee855b19ff2815977616a80c24d2df91a2a148febc801fc7d13e14b03af5b25203984a297f0bc1429c8c0ed642420ed87bebb656fbd77267065066d90f1dcb41d507e7dced889e940ed79dcf22a45616dcd6346026e769ef5373fe91ea1866d672a098d8e610ab0738d24461cfdeaa654c03b9c430cb61ba534e532c38cd140bbdc8d42140f9dc0f0d709ae43b68cdf9934598a7b8e982fc2e1e4c392eb36e74c7119871aef", 0xd8}, {&(0x7f0000000140)="2355eeab3d01b78f8abf704008ac3d92a8858d256d85fd88332a31eb71395642f9d5d11a4d80afb95383b4736b3c9d9e0bf1791d833791f3fded54f98d995fa20751a932b9754eb9c7b58e8c3994003c637545f7bd14f70238bc2202f12d8d34167c188eb25322329b22461f9e5127628b888adc2ce47ca87505b083e4de1a9c", 0x80}, {&(0x7f00000001c0)="7b0cc15f4b035f79e4f0476aee5311630d7fdd9d7b9206be7b05671f0590ca7dd6f20b9bfcaa5740129be43ff6049c762f464917fe46ac09db8c8694723208f5abcabee211f0513b5ee0be0525fd256f40c3a55b2d35c99556cc9433ba22b8b94101d17de0ccb57b0059de0ee0", 0x6d}, {&(0x7f0000000240)="59d6b99519618ef291de1cf59bdc3dbda86a763737c34ade499dba9b3a7d4dca0398cca08b61e95ca28a084fa45fd8ac72e9c9199b2ef7e39dcb4ce35013e7306c5f2f25e1e278b0468d7e844ac56f7354bdc786c7f74bed4b965096f2ea5b505be22051770eb5d1562d7e5394d3970bea9979f064838f06", 0x78}, {&(0x7f0000000300)="dd677d1114d2264cb8b44923534cb893c46ea5ed856209c489f194da7d8312db04bb1e0823bcc9f0a8b17215801780b3", 0x30}], 0x5) 16:45:45 executing program 4 (fault-call:0 fault-nth:81): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 413.718281] FAULT_INJECTION: forcing a failure. [ 413.718281] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 413.730121] CPU: 1 PID: 22943 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 413.738006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 413.747366] Call Trace: [ 413.749963] dump_stack+0x13e/0x194 [ 413.754403] should_fail.cold+0x10a/0x14b [ 413.758578] __alloc_pages_nodemask+0x1bf/0x700 [ 413.763255] ? save_trace+0x290/0x290 [ 413.767058] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 413.772091] cache_grow_begin+0x7b/0x410 [ 413.776155] kmem_cache_alloc+0x695/0x770 [ 413.780303] ? vfs_kern_mount+0x3c/0x60 [ 413.784300] ? mount_fs+0x92/0x2a0 [ 413.787822] ? vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.792513] ? do_mount+0x3c9/0x24f0 [ 413.796208] ? SyS_mount+0xa8/0x120 [ 413.799833] getname_kernel+0x4e/0x340 [ 413.803703] kern_path+0x1b/0x40 [ 413.807105] lookup_bdev.part.0+0x60/0x160 [ 413.811339] ? blkdev_open+0x250/0x250 [ 413.815218] ? btrfs_open_devices+0x22/0xb0 [ 413.819535] blkdev_get_by_path+0x70/0xf0 [ 413.823683] btrfs_get_bdev_and_sb+0x33/0x2d0 [ 413.828162] __btrfs_open_devices+0x175/0xa40 [ 413.832642] ? find_device+0x100/0x100 [ 413.836532] ? btrfs_mount+0xf82/0x282d [ 413.840536] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.845538] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 413.850368] btrfs_open_devices+0x98/0xb0 [ 413.854541] btrfs_mount+0x10a6/0x282d [ 413.858425] ? pcpu_alloc+0x37d/0xf70 [ 413.862244] ? btrfs_remount+0x1100/0x1100 [ 413.866467] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 413.871911] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.876908] ? pcpu_alloc+0xe1/0xf70 [ 413.880617] ? __lockdep_init_map+0x100/0x560 [ 413.885112] ? __lockdep_init_map+0x100/0x560 [ 413.889607] mount_fs+0x92/0x2a0 [ 413.892975] vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.897457] vfs_kern_mount+0x3c/0x60 [ 413.901240] btrfs_mount+0x3cc/0x282d [ 413.905035] ? pcpu_alloc+0x37d/0xf70 [ 413.908839] ? btrfs_remount+0x1100/0x1100 [ 413.913058] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 413.918498] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.923511] ? pcpu_alloc+0xe1/0xf70 [ 413.927208] ? pcpu_balance_workfn+0xff0/0xff0 [ 413.931781] ? __lockdep_init_map+0x100/0x560 [ 413.936272] ? __lockdep_init_map+0x100/0x560 [ 413.940755] mount_fs+0x92/0x2a0 [ 413.944115] vfs_kern_mount.part.0+0x5b/0x3c0 [ 413.948589] do_mount+0x3c9/0x24f0 [ 413.952111] ? rcu_read_lock_sched_held+0x10a/0x130 [ 413.957119] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 413.961942] ? copy_mount_string+0x40/0x40 16:45:45 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x8800, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000200)={0x4d3, 0xb, 0x4, 0x20000, 0x9, {r1, r2/1000+10000}, {0x5, 0xc, 0x5, 0x9, 0x7, 0x9, "36bb1d21"}, 0x5, 0x2, @fd, 0x0, 0x0, r3}) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 413.966159] ? _copy_from_user+0x94/0x100 [ 413.970286] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.974178] ? copy_mount_options+0x1ec/0x2e0 [ 413.978673] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.982567] SyS_mount+0xa8/0x120 [ 413.986017] ? copy_mnt_ns+0x8a0/0x8a0 [ 413.989908] do_syscall_64+0x1d5/0x640 [ 413.993802] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 413.998987] RIP: 0033:0x45f27a [ 414.002171] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 414.009878] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 414.017141] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 414.024403] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 414.031671] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 414.038932] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:45 executing program 4 (fault-call:0 fault-nth:82): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 414.081762] print_req_error: I/O error, dev loop5, sector 0 16:45:45 executing program 0: syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x8, &(0x7f0000000440)=[{&(0x7f00000000c0)="07642a7dfe921b15c71e0e679d6efabf19307b8c19f3c07e45f621270d43a39f6d229907a6d1415bcffe85e64b18aa66150384b61edf879333ae29904b9d5a766098b6dca54afd394402efcea77db0240673d47da016b7f41581cd59a1cfb62ec574b0e078bc4d1324b72e4be7cba18708bfe918e220d5d34b0115e6952f4146aaa93c08cfebd6425cff274206e738293bdb041d0f2d696e274ee53a526133056d1eaf1cd9683eb7c296caf22870abad78af8f8598890035bd2e7e3a6480b9fc5061d32663c01291c908b7c50e913ec9971fcbe13c638e9ac3aefc5f30e861ef9b27e5e3d7b43686a0ebdc26fe7dd7170a12", 0xf2}, {&(0x7f00000001c0)="9cfeb81333a1cb7894e24874f31775fd7fe612a05d5e7702c453da4533a642b4c89ea306bc145ddf29b87ffe5572dc4242af08e85a5904b776c11b5f53756ea0d36dec815ae17cd9da8cb8bb15ea490800642222a3", 0x55, 0x7fff}, {&(0x7f0000000000)="49165b7bf3bb5b6e", 0x8, 0x7}, {&(0x7f0000000240)="345ffc8bdb6209f438ab8a532354073d35e7579b88dada7e5a39b717e5fecdbb8700051f4657b5592f59f8fe441ead6d151aeeeb397e0931703b24b295bb5e086c2d0df6366252df226eeef4a80e305deab9e4b1edbe5bb554668e70508a210667711192f616ac3a834ae898647771d2", 0x70, 0x2}, {&(0x7f00000002c0)="9c6f8a45bd2fdcdaf0a7716d36ffc1795ada8a4913134918b564c891cb25e0bbad7aa390d432d5c4f4e1e9495b8cce38acac443b4151b18677cfec5238390b4e4c", 0x41, 0xfff}, {&(0x7f0000000340)="026d501d13d7ca84dead9783d2fcb8a81fa5134dfe3b856cb3b3d73018c68070a04281ca3bf4332f37761a8ebdabdf7dbb62975e4af8979601a4a680ec0aa2e3d06825c31861b51b88cff135d48381ee7a551eb2e8a5ad94a5cd245aca25499805e5", 0x62, 0xa7}, {&(0x7f00000003c0)="ce03de544fbbaf2eaf92f510cf90f2afdbe969aaa7591cdebae1fbb95677aef82f35d216fd82afda4fd731080ee8e29fd420cb7d710f7013fdd489", 0x3b, 0x8}, {&(0x7f0000000400)="aaf6dab27227788b46ed802df425a1346348155b47841fd59f7ac6ab654ada3f0a435fcfc053705123ac6048a9f92fedb257", 0x32, 0x1f}], 0x1040400, 0x0) [ 414.164423] FAULT_INJECTION: forcing a failure. [ 414.164423] name failslab, interval 1, probability 0, space 0, times 0 [ 414.185206] CPU: 0 PID: 22963 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 414.193129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.202481] Call Trace: [ 414.205092] dump_stack+0x13e/0x194 [ 414.208718] should_fail.cold+0x10a/0x14b [ 414.212871] should_failslab+0xd6/0x130 [ 414.216837] kmem_cache_alloc+0x2b5/0x770 [ 414.220981] ? add_to_page_cache_lru+0x150/0x300 [ 414.225737] ? add_to_page_cache_locked+0x40/0x40 [ 414.230570] alloc_buffer_head+0x20/0xd0 [ 414.234694] alloc_page_buffers+0xb3/0x1f0 [ 414.238936] __getblk_gfp+0x335/0x7c0 [ 414.242735] __bread_gfp+0x29/0x290 [ 414.246365] btrfs_read_dev_one_super+0x98/0x260 [ 414.251110] btrfs_read_dev_super+0x5a/0xa0 [ 414.258366] ? btrfs_read_dev_one_super+0x260/0x260 [ 414.263369] btrfs_get_bdev_and_sb+0xd7/0x2d0 [ 414.267849] __btrfs_open_devices+0x175/0xa40 [ 414.272332] ? find_device+0x100/0x100 [ 414.276209] ? btrfs_mount+0xf82/0x282d [ 414.280175] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.285193] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 414.290020] btrfs_open_devices+0x98/0xb0 [ 414.294151] btrfs_mount+0x10a6/0x282d [ 414.298022] ? pcpu_alloc+0x37d/0xf70 [ 414.301803] ? btrfs_remount+0x1100/0x1100 [ 414.306083] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 414.311525] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.316538] ? pcpu_alloc+0xe1/0xf70 [ 414.320239] ? __lockdep_init_map+0x100/0x560 [ 414.324724] ? __lockdep_init_map+0x100/0x560 [ 414.329202] mount_fs+0x92/0x2a0 [ 414.332557] vfs_kern_mount.part.0+0x5b/0x3c0 [ 414.337034] vfs_kern_mount+0x3c/0x60 [ 414.340815] btrfs_mount+0x3cc/0x282d [ 414.344618] ? pcpu_alloc+0x37d/0xf70 [ 414.348407] ? btrfs_remount+0x1100/0x1100 [ 414.352662] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 414.358095] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.363090] ? pcpu_alloc+0xe1/0xf70 [ 414.366789] ? pcpu_balance_workfn+0xff0/0xff0 [ 414.371353] ? __lockdep_init_map+0x100/0x560 [ 414.375830] ? __lockdep_init_map+0x100/0x560 [ 414.380307] mount_fs+0x92/0x2a0 [ 414.383657] vfs_kern_mount.part.0+0x5b/0x3c0 [ 414.388133] do_mount+0x3c9/0x24f0 [ 414.391661] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.396678] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 414.401512] ? copy_mount_string+0x40/0x40 [ 414.405737] ? __might_fault+0x177/0x1b0 [ 414.409788] ? _copy_from_user+0x94/0x100 [ 414.413919] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.417790] ? copy_mount_options+0x1ec/0x2e0 [ 414.422276] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.426164] SyS_mount+0xa8/0x120 [ 414.429613] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.433528] do_syscall_64+0x1d5/0x640 [ 414.437403] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 414.442599] RIP: 0033:0x45f27a [ 414.445768] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 414.453468] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a 16:45:46 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2, 0x0) ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f00000000c0)) [ 414.460719] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 414.467972] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 414.475229] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 414.482491] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:46 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0xb8840, 0x198) 16:45:46 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x200000000003, 0x87) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) write$UHID_INPUT(r4, &(0x7f00000003c0)={0x8, {"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", 0x1000}}, 0x1006) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:46 executing program 2: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write(r0, &(0x7f0000000340), 0x41395527) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 16:45:46 executing program 4 (fault-call:0 fault-nth:83): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:46 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00') sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x1c, r2, 0x301, 0x0, 0x0, {0x9}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x48, r2, 0x300, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xba84}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x200}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000081}, 0x24000010) [ 414.677796] FAULT_INJECTION: forcing a failure. [ 414.677796] name failslab, interval 1, probability 0, space 0, times 0 [ 414.689384] CPU: 1 PID: 22996 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 414.697257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 414.706610] Call Trace: [ 414.709214] dump_stack+0x13e/0x194 [ 414.712859] should_fail.cold+0x10a/0x14b [ 414.717023] should_failslab+0xd6/0x130 [ 414.720996] kmem_cache_alloc+0x44/0x770 [ 414.725047] radix_tree_node_alloc.constprop.0+0x1b4/0x300 [ 414.730690] __radix_tree_create+0x339/0x4c0 [ 414.735084] page_cache_tree_insert+0x98/0x2a0 [ 414.739644] ? file_check_and_advance_wb_err+0x370/0x370 [ 414.745074] ? __add_to_page_cache_locked+0x286/0x870 [ 414.750265] __add_to_page_cache_locked+0x296/0x870 [ 414.755275] ? find_lock_entry+0x4a0/0x4a0 [ 414.759493] ? lock_downgrade+0x6e0/0x6e0 [ 414.763623] add_to_page_cache_lru+0xe9/0x300 [ 414.768144] ? add_to_page_cache_locked+0x40/0x40 [ 414.772968] ? __page_cache_alloc+0xd9/0x3d0 [ 414.777372] pagecache_get_page+0x1ed/0xa10 [ 414.781697] __getblk_gfp+0x23d/0x7c0 [ 414.785486] ? blkdev_get+0x8c/0x8a0 [ 414.789182] __bread_gfp+0x29/0x290 [ 414.792811] btrfs_read_dev_one_super+0x98/0x260 [ 414.797553] btrfs_read_dev_super+0x5a/0xa0 [ 414.801859] ? btrfs_read_dev_one_super+0x260/0x260 [ 414.806857] ? bdev_read_only+0x6a/0x90 [ 414.810808] ? set_blocksize+0x24b/0x2e0 [ 414.814852] btrfs_get_bdev_and_sb+0xd7/0x2d0 [ 414.819327] __btrfs_open_devices+0x175/0xa40 [ 414.823804] ? find_device+0x100/0x100 [ 414.827668] ? btrfs_mount+0xf82/0x282d [ 414.831620] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.836613] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 414.841434] btrfs_open_devices+0x98/0xb0 [ 414.845559] btrfs_mount+0x10a6/0x282d [ 414.849426] ? pcpu_alloc+0x37d/0xf70 [ 414.853204] ? btrfs_remount+0x1100/0x1100 [ 414.857440] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 414.862867] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.867868] ? pcpu_alloc+0xe1/0xf70 [ 414.871566] ? __lockdep_init_map+0x100/0x560 [ 414.876038] ? __lockdep_init_map+0x100/0x560 [ 414.880530] mount_fs+0x92/0x2a0 [ 414.883937] vfs_kern_mount.part.0+0x5b/0x3c0 [ 414.888438] vfs_kern_mount+0x3c/0x60 [ 414.892221] btrfs_mount+0x3cc/0x282d [ 414.896034] ? pcpu_alloc+0x37d/0xf70 [ 414.899821] ? btrfs_remount+0x1100/0x1100 [ 414.904040] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 414.909491] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.914489] ? pcpu_alloc+0xe1/0xf70 [ 414.918187] ? pcpu_balance_workfn+0xff0/0xff0 [ 414.922757] ? __lockdep_init_map+0x100/0x560 [ 414.927230] ? __lockdep_init_map+0x100/0x560 [ 414.931706] mount_fs+0x92/0x2a0 [ 414.935053] vfs_kern_mount.part.0+0x5b/0x3c0 [ 414.939562] do_mount+0x3c9/0x24f0 [ 414.943083] ? rcu_read_lock_sched_held+0x10a/0x130 [ 414.948089] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 414.952908] ? copy_mount_string+0x40/0x40 [ 414.957124] ? _copy_from_user+0x94/0x100 [ 414.961246] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.965111] ? copy_mount_options+0x1ec/0x2e0 [ 414.969593] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.973470] SyS_mount+0xa8/0x120 [ 414.976908] ? copy_mnt_ns+0x8a0/0x8a0 [ 414.980776] do_syscall_64+0x1d5/0x640 [ 414.984646] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 414.989824] RIP: 0033:0x45f27a [ 414.992992] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 415.000678] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 415.007928] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 415.015176] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 415.022423] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 16:45:46 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 415.029681] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 16:45:46 executing program 1: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value, &(0x7f0000000100)=0x8) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) ioctl$BLKTRACESTOP(r0, 0x1275, 0x0) 16:45:46 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000480)='/dev/nvram\x00', 0x0, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f00000004c0)=0x93f4) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x20}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000006900)=[{{&(0x7f0000000380)=@hci, 0x80, 0x0, 0x0, &(0x7f0000000500)=""/251, 0xfb}}], 0x1, 0x10002, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3}, 0x0) creat(0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x4, 0x8001, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x1000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2}, 0x0, 0x80000000c, 0xffffffffffffffff, 0x9) mkdir(&(0x7f0000000740)='./file0\x00', 0x1a7) io_submit(0x0, 0x0, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 16:45:46 executing program 4 (fault-call:0 fault-nth:84): syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 16:45:46 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cachefiles\x00', 0x8400, 0x0) setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000280)=0x60, 0x2) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00') sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x20, r4, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x40011}, 0x40) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 415.254952] FAULT_INJECTION: forcing a failure. [ 415.254952] name failslab, interval 1, probability 0, space 0, times 0 [ 415.267794] CPU: 0 PID: 23032 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 415.275689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 415.285042] Call Trace: [ 415.287618] dump_stack+0x13e/0x194 [ 415.291357] should_fail.cold+0x10a/0x14b [ 415.295522] should_failslab+0xd6/0x130 [ 415.299504] kmem_cache_alloc_trace+0x2db/0x7b0 [ 415.304228] btrfs_alloc_device+0xa4/0x6a0 [ 415.308472] ? __btrfs_close_devices+0x315/0xa30 [ 415.313234] ? btrfs_find_device_by_devspec+0xf0/0xf0 [ 415.318437] __btrfs_close_devices+0x2bb/0xa30 [ 415.323032] ? find_device+0x100/0x100 [ 415.326921] ? btrfs_mount+0xf82/0x282d [ 415.330895] ? btrfs_alloc_device+0x6a0/0x6a0 [ 415.335385] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 415.340222] btrfs_close_devices+0x24/0x140 [ 415.344536] btrfs_mount+0x1de5/0x282d [ 415.348408] ? pcpu_alloc+0x37d/0xf70 [ 415.352195] ? btrfs_remount+0x1100/0x1100 [ 415.356414] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 415.361859] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.366863] ? pcpu_alloc+0xe1/0xf70 [ 415.370564] ? __lockdep_init_map+0x100/0x560 [ 415.375041] ? __lockdep_init_map+0x100/0x560 [ 415.379529] mount_fs+0x92/0x2a0 [ 415.382895] vfs_kern_mount.part.0+0x5b/0x3c0 [ 415.387387] vfs_kern_mount+0x3c/0x60 [ 415.391183] btrfs_mount+0x3cc/0x282d [ 415.394973] ? pcpu_alloc+0x37d/0xf70 [ 415.398760] ? btrfs_remount+0x1100/0x1100 [ 415.402995] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 415.408439] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.413455] ? pcpu_alloc+0xe1/0xf70 [ 415.417154] ? pcpu_balance_workfn+0xff0/0xff0 [ 415.421731] ? __lockdep_init_map+0x100/0x560 [ 415.426244] ? __lockdep_init_map+0x100/0x560 [ 415.430736] mount_fs+0x92/0x2a0 [ 415.434086] vfs_kern_mount.part.0+0x5b/0x3c0 [ 415.438561] do_mount+0x3c9/0x24f0 [ 415.442097] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.447103] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 415.451937] ? copy_mount_string+0x40/0x40 [ 415.456154] ? __might_fault+0x177/0x1b0 [ 415.460202] ? _copy_from_user+0x94/0x100 [ 415.464343] ? copy_mnt_ns+0x8a0/0x8a0 [ 415.468220] ? copy_mount_options+0x1ec/0x2e0 [ 415.472704] ? copy_mnt_ns+0x8a0/0x8a0 [ 415.476580] SyS_mount+0xa8/0x120 [ 415.480017] ? copy_mnt_ns+0x8a0/0x8a0 [ 415.483896] do_syscall_64+0x1d5/0x640 [ 415.487779] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 415.492999] RIP: 0033:0x45f27a [ 415.496172] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 415.503872] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 415.511139] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 415.518406] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 415.525671] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 415.532927] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 415.566305] ------------[ cut here ]------------ [ 415.571100] kernel BUG at fs/btrfs/volumes.c:890! 16:45:47 executing program 3: pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xfec8) r3 = socket$inet6(0xa, 0x1, 0x4) connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) perf_event_open(&(0x7f000001d000)={0x3, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000000040)=0x5) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 16:45:47 executing program 2: syz_mount_image$minix(&(0x7f0000000080)='minix\x00', &(0x7f00000000c0)='./file0/file0\x00', 0xfffffffffffffff8, 0x1, &(0x7f0000000100)=[{&(0x7f0000000200)="c92b84d52f4b928f58f770b5ddb1f7588efaa49185eea66fd05c2463af095f659581b8614196ccf5102ad241aa9d40088306618e759f4d8d2f98674fad7498850a79ddb80daf1f767a0a60ffd1edf80ced", 0xffa1, 0xffffffff}], 0xb496, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000180)=0x7fffffff, 0x4) connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e20, @loopback}, 0x10) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) sendto$inet(r1, 0x0, 0xffffffffffffffe7, 0x44041, 0x0, 0xfffffee6) lsetxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000140)='trusted.overlay.origin\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x1) recvmmsg(r0, &(0x7f0000003c80), 0x38e, 0x62, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x30, r0, 0x81e6c000) setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={0x0, 0xfa, 0x1dc, 0xb5}, 0x10) [ 415.731449] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 415.736846] Modules linked in: [ 415.740059] CPU: 0 PID: 23032 Comm: syz-executor.4 Not tainted 4.14.176-syzkaller #0 [ 415.747933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 415.757282] task: ffff888036d7c380 task.stack: ffff888036228000 [ 415.763341] RIP: 0010:__btrfs_close_devices+0x798/0xa30 [ 415.768696] RSP: 0018:ffff88803622f748 EFLAGS: 00010246 [ 415.774056] RAX: 0000000000040000 RBX: ffff88809bdc8d80 RCX: ffffc90005d5f000 [ 415.781335] RDX: 0000000000040000 RSI: ffffffff828d8178 RDI: 0000000000000282 [ 415.788598] RBP: dffffc0000000000 R08: 0000000000000001 R09: 0000000000000000 [ 415.795862] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888094b675c0 [ 415.803130] R13: ffff88809bdc8e48 R14: fffffffffffffff4 R15: ffff88809bdc8d80 [ 415.810400] FS: 00007f29c1d17700(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 415.818711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 415.824591] CR2: 000000c41f3943f7 CR3: 00000000a0258000 CR4: 00000000001406f0 [ 415.831859] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 415.839129] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 415.846387] Call Trace: [ 415.848980] ? find_device+0x100/0x100 [ 415.853205] ? btrfs_mount+0xf82/0x282d [ 415.857185] ? btrfs_alloc_device+0x6a0/0x6a0 [ 415.861679] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 415.866551] btrfs_close_devices+0x24/0x140 [ 415.870874] btrfs_mount+0x1de5/0x282d [ 415.874767] ? pcpu_alloc+0x37d/0xf70 16:45:47 executing program 0: syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x430, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000200)={0x0, 0xa, 0x2, [0x200, 0xfffe]}, &(0x7f0000000240)=0xc) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={r1, 0x3}, 0x8) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) getsockopt$inet_dccp_buf(r2, 0x21, 0xc0, &(0x7f0000000080)=""/8, &(0x7f00000000c0)=0x8) 16:45:47 executing program 1: ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000140)="8da4363ac0ed02000a0000000001004d010000000000000000007a0000000000fff6f2a2299748aeb81e1b00b10efd9a000001000000000001fffffff60000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) [ 415.878571] ? btrfs_remount+0x1100/0x1100 [ 415.882807] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 415.888262] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.893278] ? pcpu_alloc+0xe1/0xf70 [ 415.896998] ? __lockdep_init_map+0x100/0x560 [ 415.901493] ? __lockdep_init_map+0x100/0x560 [ 415.905991] mount_fs+0x92/0x2a0 [ 415.909356] vfs_kern_mount.part.0+0x5b/0x3c0 [ 415.913853] vfs_kern_mount+0x3c/0x60 [ 415.917654] btrfs_mount+0x3cc/0x282d [ 415.921463] ? pcpu_alloc+0x37d/0xf70 [ 415.925267] ? btrfs_remount+0x1100/0x1100 [ 415.929508] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 415.934961] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.939975] ? pcpu_alloc+0xe1/0xf70 [ 415.943696] ? pcpu_balance_workfn+0xff0/0xff0 [ 415.948276] ? __lockdep_init_map+0x100/0x560 [ 415.952772] ? __lockdep_init_map+0x100/0x560 [ 415.957268] mount_fs+0x92/0x2a0 [ 415.960632] vfs_kern_mount.part.0+0x5b/0x3c0 [ 415.965121] do_mount+0x3c9/0x24f0 [ 415.968663] ? rcu_read_lock_sched_held+0x10a/0x130 [ 415.973677] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 415.978517] ? copy_mount_string+0x40/0x40 [ 415.982749] ? __might_fault+0x177/0x1b0 [ 415.986811] ? _copy_from_user+0x94/0x100 [ 415.990954] ? copy_mnt_ns+0x8a0/0x8a0 [ 415.994840] ? copy_mount_options+0x1ec/0x2e0 [ 415.999327] ? copy_mnt_ns+0x8a0/0x8a0 [ 416.003211] SyS_mount+0xa8/0x120 [ 416.006663] ? copy_mnt_ns+0x8a0/0x8a0 [ 416.010561] do_syscall_64+0x1d5/0x640 [ 416.014451] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 416.019632] RIP: 0033:0x45f27a [ 416.022818] RSP: 002b:00007f29c1d16a68 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 416.030520] RAX: ffffffffffffffda RBX: 0000000000508100 RCX: 000000000045f27a [ 416.037786] RDX: 00007f29c1d16ae0 RSI: 00000000200001c0 RDI: 00007f29c1d16b00 [ 416.045048] RBP: 000000000078bf00 R08: 00007f29c1d16b40 R09: 00007f29c1d16ae0 [ 416.052326] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000003 [ 416.059577] R13: 0000000000000bd9 R14: 00000000004cdf51 R15: 00007f29c1d176d4 [ 416.067007] Code: ea 03 0f b6 04 02 84 c0 74 08 3c 03 0f 8e 40 02 00 00 48 8b 44 24 08 c7 80 10 01 00 00 00 00 00 00 e9 27 f9 ff ff e8 28 c5 cc fe <0f> 0b e8 21 c5 cc fe 0f 0b 48 89 cf e8 77 17 f6 fe e9 f1 f8 ff [ 416.086121] RIP: __btrfs_close_devices+0x798/0xa30 RSP: ffff88803622f748 [ 416.119838] ---[ end trace 5732310cb00bccd8 ]--- [ 416.126418] Kernel panic - not syncing: Fatal exception [ 416.133044] Kernel Offset: disabled [ 416.136660] Rebooting in 86400 seconds..