}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 280.514344] FAULT_INJECTION: forcing a failure. [ 280.514344] name failslab, interval 1, probability 0, space 0, times 0 [ 280.568708] CPU: 1 PID: 13520 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 280.575942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.585296] Call Trace: [ 280.587893] dump_stack+0x1db/0x2d0 [ 280.591630] ? dump_stack_print_info.cold+0x20/0x20 [ 280.596649] ? add_lock_to_list.isra.0+0x450/0x450 [ 280.596667] ? kernfs_activate+0x8f/0x2c0 [ 280.596689] should_fail.cold+0xa/0x15 [ 280.605737] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 280.605777] ? ___might_sleep+0x1e7/0x310 15:16:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x200000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:41 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') linkat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x400) ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f00000001c0)={0x8000, 0xd004}) lseek(r0, 0x0, 0x3) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x4, 0x0) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000140)={{0x3, 0x1, 0x400, 0x0, 0x495}, 0x8, 0x800100000000}) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x5) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$int_out(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @local, 0x2000000006}, 0x1c) connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e1f, 0x0, @ipv4={[], [], @loopback}}, 0x1c) sendmmsg(r2, &(0x7f00000002c0), 0x400000000000027, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000080)={0x8, 0x100, 0x9be, 0x200, 0xfffffffffffffffb, 0x100000001, 0x7fffffff, 0xffff, 0x0, 0x20, 0x9}, 0xb) [ 280.614733] ? arch_local_save_flags+0x50/0x50 [ 280.623437] __should_failslab+0x121/0x190 [ 280.623456] should_failslab+0x9/0x14 [ 280.623471] kmem_cache_alloc+0x2be/0x710 [ 280.623487] ? __mutex_unlock_slowpath+0x195/0x870 [ 280.640532] __kernfs_new_node+0xfe/0x8a0 [ 280.644681] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 280.649459] ? mutex_unlock+0xd/0x10 [ 280.653173] ? kernfs_activate+0x21c/0x2c0 [ 280.657425] ? kernfs_walk_and_get_ns+0x340/0x340 [ 280.662279] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 280.667839] ? kernfs_link_sibling+0x210/0x420 [ 280.672435] kernfs_new_node+0x99/0x130 [ 280.676517] __kernfs_create_file+0x51/0x340 [ 280.680937] sysfs_add_file_mode_ns+0x222/0x560 [ 280.685623] sysfs_merge_group+0x21f/0x400 [ 280.689863] ? sysfs_mount+0x240/0x240 [ 280.693785] dpm_sysfs_add+0x164/0x210 [ 280.697679] device_add+0xa07/0x1800 [ 280.701411] ? get_device_parent.isra.0+0x570/0x570 [ 280.706436] ? simple_release_fs+0xa1/0xd0 [ 280.710680] ? start_creating+0x163/0x1e0 [ 280.714834] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.720380] hci_register_dev+0x3b9/0x9d0 [ 280.724556] ? kfree_skb+0x1a6/0x580 [ 280.728279] ? hci_conn_params_free+0x840/0x840 [ 280.732965] __vhci_create_device+0x2d0/0x5a0 [ 280.737471] vhci_write+0x2d0/0x470 [ 280.741103] __vfs_write+0x764/0xb40 [ 280.744824] ? kernel_read+0x120/0x120 [ 280.748716] ? __mutex_unlock_slowpath+0x195/0x870 [ 280.753676] ? apparmor_file_permission+0x25/0x30 [ 280.758531] ? rw_verify_area+0x118/0x360 [ 280.762686] vfs_write+0x20c/0x580 [ 280.766230] ksys_write+0x105/0x260 [ 280.769863] ? __ia32_sys_read+0xb0/0xb0 [ 280.773931] ? trace_hardirqs_off_caller+0x300/0x300 [ 280.779038] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 280.783798] __x64_sys_write+0x73/0xb0 [ 280.787690] do_syscall_64+0x1a3/0x800 [ 280.791580] ? syscall_return_slowpath+0x5f0/0x5f0 [ 280.796511] ? prepare_exit_to_usermode+0x232/0x3b0 [ 280.801526] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 280.806370] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.811555] RIP: 0033:0x457e39 [ 280.814753] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.833637] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 280.841335] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 280.848590] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 280.855844] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:16:42 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x500, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:42 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000000c0)={0x1f000, &(0x7f0000000080), 0x8, r0, 0x2}) lseek(r0, 0x0, 0x3) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) [ 280.863099] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 280.870359] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:42 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x500, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x800000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:42 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, &(0x7f0000000080)=0x8) ioctl$DRM_IOCTL_AGP_ENABLE(r0, 0x40086432, &(0x7f0000000140)=0x3) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x1, 0x20}, &(0x7f0000000100)=0xc) lseek(r0, 0x800000000000000, 0x3) 15:16:42 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000000c0)={0x1f000, &(0x7f0000000080), 0x8, r0, 0x2}) lseek(r0, 0x0, 0x3) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) [ 281.091741] Bluetooth: Can't register HCI device 15:16:42 executing program 3 (fault-call:3 fault-nth:33): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:42 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x1000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:42 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:42 executing program 5: r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) fcntl$setlease(r0, 0x400, 0x800002) lseek(0xffffffffffffffff, 0x0, 0x3) syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x5, 0x200000) 15:16:42 executing program 2: r0 = socket(0xa, 0x9, 0x1000) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x32, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00005befdc)) r2 = syz_open_pts(r1, 0x0) fcntl$setstatus(r2, 0x4, 0x2800) ioctl$TCXONC(r2, 0x540a, 0x0) write(r2, &(0x7f0000fd6000)='z', 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000698000)=0x3) ioctl$TCFLSH(r1, 0x540b, 0x0) 15:16:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x3000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 281.348865] FAULT_INJECTION: forcing a failure. [ 281.348865] name failslab, interval 1, probability 0, space 0, times 0 [ 281.407520] CPU: 0 PID: 13578 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 281.414737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.424089] Call Trace: [ 281.426683] dump_stack+0x1db/0x2d0 [ 281.430320] ? dump_stack_print_info.cold+0x20/0x20 [ 281.435381] ? add_lock_to_list.isra.0+0x450/0x450 [ 281.440335] ? kernfs_activate+0x8f/0x2c0 [ 281.444525] should_fail.cold+0xa/0x15 [ 281.444547] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 281.453528] ? ___might_sleep+0x1e7/0x310 [ 281.453545] ? arch_local_save_flags+0x50/0x50 [ 281.453572] __should_failslab+0x121/0x190 [ 281.453591] should_failslab+0x9/0x14 [ 281.470283] kmem_cache_alloc+0x2be/0x710 [ 281.474438] ? __mutex_unlock_slowpath+0x195/0x870 [ 281.479380] __kernfs_new_node+0xfe/0x8a0 [ 281.479400] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 281.479422] ? mutex_unlock+0xd/0x10 [ 281.491992] ? kernfs_activate+0x21c/0x2c0 [ 281.496246] ? kernfs_walk_and_get_ns+0x340/0x340 [ 281.496264] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 15:16:42 executing program 4: r0 = socket(0xa, 0x9, 0x1000) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x32, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00005befdc)) r2 = syz_open_pts(r1, 0x0) fcntl$setstatus(r2, 0x4, 0x2800) ioctl$TCXONC(r2, 0x540a, 0x0) write(r2, &(0x7f0000fd6000)='z', 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000698000)=0x3) ioctl$TCFLSH(r1, 0x540b, 0x0) 15:16:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x4000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x5000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 281.496278] ? kernfs_link_sibling+0x210/0x420 [ 281.496298] kernfs_new_node+0x99/0x130 [ 281.515180] __kernfs_create_file+0x51/0x340 [ 281.519619] sysfs_add_file_mode_ns+0x222/0x560 [ 281.524304] sysfs_merge_group+0x21f/0x400 [ 281.528570] ? sysfs_mount+0x240/0x240 [ 281.532476] dpm_sysfs_add+0x164/0x210 [ 281.536381] device_add+0xa07/0x1800 [ 281.540107] ? get_device_parent.isra.0+0x570/0x570 [ 281.545126] ? simple_release_fs+0xa1/0xd0 [ 281.549401] ? start_creating+0x163/0x1e0 [ 281.553547] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.553567] hci_register_dev+0x3b9/0x9d0 [ 281.553583] ? kfree_skb+0x1a6/0x580 [ 281.553598] ? hci_conn_params_free+0x840/0x840 [ 281.563253] __vhci_create_device+0x2d0/0x5a0 [ 281.563273] vhci_write+0x2d0/0x470 [ 281.563303] __vfs_write+0x764/0xb40 [ 281.563321] ? kernel_read+0x120/0x120 [ 281.587423] ? __mutex_unlock_slowpath+0x195/0x870 [ 281.592384] ? apparmor_file_permission+0x25/0x30 [ 281.597234] ? rw_verify_area+0x118/0x360 [ 281.601393] vfs_write+0x20c/0x580 [ 281.604942] ksys_write+0x105/0x260 15:16:42 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) r5 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r6, 0x0, 0x3) [ 281.608589] ? __ia32_sys_read+0xb0/0xb0 [ 281.612656] ? trace_hardirqs_off_caller+0x300/0x300 [ 281.617763] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 281.622524] __x64_sys_write+0x73/0xb0 [ 281.626413] do_syscall_64+0x1a3/0x800 [ 281.630309] ? syscall_return_slowpath+0x5f0/0x5f0 [ 281.635370] ? prepare_exit_to_usermode+0x232/0x3b0 [ 281.640388] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 281.645245] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.650432] RIP: 0033:0x457e39 15:16:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x8000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 281.653628] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 281.672530] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 281.680240] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 281.687513] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 281.694786] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.702052] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 281.709340] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 281.763123] Bluetooth: Can't register HCI device 15:16:43 executing program 3 (fault-call:3 fault-nth:34): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:43 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) r5 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) sendmsg$nl_generic(r5, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r6, 0x0, 0x3) 15:16:43 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) r5 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) sendmsg$nl_generic(r5, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r6, 0x0, 0x3) 15:16:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x9000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:43 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:43 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) r5 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r6, 0x0, 0x3) 15:16:43 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xd000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:43 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) [ 282.074929] FAULT_INJECTION: forcing a failure. [ 282.074929] name failslab, interval 1, probability 0, space 0, times 0 15:16:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x10000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 282.154780] CPU: 1 PID: 13626 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 282.162042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.171398] Call Trace: [ 282.174002] dump_stack+0x1db/0x2d0 [ 282.177647] ? dump_stack_print_info.cold+0x20/0x20 [ 282.177668] ? kernfs_activate+0x8f/0x2c0 [ 282.177691] should_fail.cold+0xa/0x15 [ 282.177726] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 282.186870] ? ___might_sleep+0x1e7/0x310 [ 282.186887] ? arch_local_save_flags+0x50/0x50 [ 282.186912] __should_failslab+0x121/0x190 [ 282.186946] should_failslab+0x9/0x14 [ 282.195898] kmem_cache_alloc+0x2be/0x710 [ 282.195929] ? __mutex_unlock_slowpath+0x195/0x870 [ 282.195954] __kernfs_new_node+0xfe/0x8a0 [ 282.195973] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 282.204670] ? mutex_unlock+0xd/0x10 [ 282.204685] ? kernfs_activate+0x21c/0x2c0 [ 282.204704] ? kernfs_walk_and_get_ns+0x340/0x340 [ 282.204721] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 282.204735] ? kernfs_link_sibling+0x210/0x420 15:16:43 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) r5 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r6, 0x0, 0x3) [ 282.204758] kernfs_new_node+0x99/0x130 [ 282.204784] __kernfs_create_file+0x51/0x340 [ 282.204806] sysfs_add_file_mode_ns+0x222/0x560 [ 282.204832] sysfs_merge_group+0x21f/0x400 [ 282.204855] ? sysfs_mount+0x240/0x240 [ 282.204888] dpm_sysfs_add+0x164/0x210 [ 282.204903] device_add+0xa07/0x1800 [ 282.204926] ? get_device_parent.isra.0+0x570/0x570 [ 282.234548] ? simple_release_fs+0xa1/0xd0 [ 282.234571] ? start_creating+0x163/0x1e0 [ 282.234590] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 282.234614] hci_register_dev+0x3b9/0x9d0 [ 282.234633] ? kfree_skb+0x1a6/0x580 [ 282.234652] ? hci_conn_params_free+0x840/0x840 [ 282.234683] __vhci_create_device+0x2d0/0x5a0 [ 282.234704] vhci_write+0x2d0/0x470 [ 282.234724] __vfs_write+0x764/0xb40 [ 282.249312] ? kernel_read+0x120/0x120 [ 282.249331] ? __mutex_unlock_slowpath+0x195/0x870 [ 282.249359] ? apparmor_file_permission+0x25/0x30 [ 282.249385] ? rw_verify_area+0x118/0x360 [ 282.249406] vfs_write+0x20c/0x580 [ 282.249429] ksys_write+0x105/0x260 [ 282.249448] ? __ia32_sys_read+0xb0/0xb0 [ 282.249466] ? trace_hardirqs_off_caller+0x300/0x300 [ 282.262384] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 282.262408] __x64_sys_write+0x73/0xb0 [ 282.262427] do_syscall_64+0x1a3/0x800 [ 282.262447] ? syscall_return_slowpath+0x5f0/0x5f0 [ 282.262466] ? prepare_exit_to_usermode+0x232/0x3b0 [ 282.262490] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.262517] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.262529] RIP: 0033:0x457e39 [ 282.262545] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.262554] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 282.262568] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 282.262578] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 282.262587] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 282.262597] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 282.262606] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 282.472227] Bluetooth: Can't register HCI device 15:16:43 executing program 3 (fault-call:3 fault-nth:35): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 282.594302] FAULT_INJECTION: forcing a failure. [ 282.594302] name failslab, interval 1, probability 0, space 0, times 0 [ 282.628419] CPU: 0 PID: 13645 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 282.635629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.635637] Call Trace: [ 282.635660] dump_stack+0x1db/0x2d0 [ 282.635682] ? dump_stack_print_info.cold+0x20/0x20 [ 282.635699] ? hci_register_dev+0x3b9/0x9d0 [ 282.635719] ? __vhci_create_device+0x2d0/0x5a0 [ 282.647638] ? vhci_write+0x2d0/0x470 [ 282.647654] ? __vfs_write+0x764/0xb40 [ 282.647668] ? ksys_write+0x105/0x260 [ 282.647690] should_fail.cold+0xa/0x15 [ 282.665286] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 282.665312] ? ___might_sleep+0x1e7/0x310 15:16:44 executing program 4: r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x1b9, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000080)={0x2, 0x2, 0x1, {}, 0x6, 0x80000001}) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000100)="674e05f8c62547607ecf2c87ad9554a65e5a0e0c952f0caca174fe5f98c2f4c37e502c7b574121d3c36c318aceece2") r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000d00)={{{@in=@empty, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@ipv4={[], [], @multicast1}}}, &(0x7f0000000bc0)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000440)={{{@in6=@initdev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@mcast1}}, &(0x7f0000000540)=0xe8) r6 = geteuid() getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000580)={{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}}}, &(0x7f0000000680)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000006c0)={0x0, 0x0, 0x0}, &(0x7f0000000700)=0xc) getresgid(&(0x7f0000000740)=0x0, &(0x7f0000000780), &(0x7f00000007c0)) getresgid(&(0x7f0000000800)=0x0, &(0x7f0000000840), &(0x7f0000000880)) lstat(&(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r14 = getgid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000b00)={0x0, 0x0, 0x0}, &(0x7f0000000b40)=0xc) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010001000000000002000700", @ANYRES32=r2, @ANYBLOB="02000100", @ANYRES32=r3, @ANYBLOB="02000700", @ANYRES32=r4, @ANYBLOB="02000000", @ANYRES32=r5, @ANYBLOB="02000700", @ANYRES32=r6, @ANYBLOB="02000200", @ANYRES32=r7, @ANYBLOB="040007000000000008000200", @ANYRES32=r8, @ANYBLOB="08000500", @ANYRES32=r9, @ANYBLOB="08000100", @ANYRES32=r10, @ANYBLOB="08057d0601158163a5f83495dd0087", @ANYRES32=r11, @ANYBLOB="08000400", @ANYRES32=r12, @ANYBLOB="08000500", @ANYRES32=r13, @ANYBLOB="08000100", @ANYRES32=r14, @ANYBLOB="0800040043781a0ffe5989f1149c0e7d237072516403f6b6885a190b7389fb237c5a5c9fa9d1480f396d17fb79f5964d800da57c75", @ANYRES32=r15, @ANYBLOB="1000070000a95c002000050000000000"], 0x94, 0x1) ioctl$VT_DISALLOCATE(r1, 0x5608) lseek(r1, 0x0, 0x80000000000003) ioctl$VIDIOC_ENUMAUDIO(r1, 0xc0345641, &(0x7f0000000b80)={0x9e, "68a431065d078fbca8c713bd93c06c5512a5f966cbb2b6d66559f88f9ee04f4b", 0x3}) [ 282.665330] ? arch_local_save_flags+0x50/0x50 [ 282.665359] __should_failslab+0x121/0x190 [ 282.665378] should_failslab+0x9/0x14 [ 282.665393] __kmalloc+0x2dc/0x740 [ 282.665413] ? rcu_read_lock_sched_held+0x110/0x130 [ 282.665433] ? kobject_get_path+0xc4/0x1b0 [ 282.673108] kobject_get_path+0xc4/0x1b0 [ 282.673130] kobject_uevent_env+0x31f/0x102b [ 282.673193] ? device_pm_add+0x22a/0x340 [ 282.673211] ? device_pm_check_callbacks+0x3f0/0x3f0 [ 282.685965] kobject_uevent+0x20/0x26 [ 282.685984] device_add+0xafa/0x1800 [ 282.686009] ? get_device_parent.isra.0+0x570/0x570 [ 282.686025] ? simple_release_fs+0xa1/0xd0 [ 282.686046] ? start_creating+0x163/0x1e0 [ 282.686064] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 282.686088] hci_register_dev+0x3b9/0x9d0 [ 282.686106] ? kfree_skb+0x1a6/0x580 [ 282.686124] ? hci_conn_params_free+0x840/0x840 [ 282.686154] __vhci_create_device+0x2d0/0x5a0 [ 282.686174] vhci_write+0x2d0/0x470 [ 282.686195] __vfs_write+0x764/0xb40 [ 282.686217] ? kernel_read+0x120/0x120 [ 282.686248] ? __mutex_unlock_slowpath+0x195/0x870 [ 282.686274] ? apparmor_file_permission+0x25/0x30 [ 282.686301] ? rw_verify_area+0x118/0x360 [ 282.686321] vfs_write+0x20c/0x580 [ 282.686344] ksys_write+0x105/0x260 [ 282.686364] ? __ia32_sys_read+0xb0/0xb0 [ 282.686383] ? trace_hardirqs_off_caller+0x300/0x300 [ 282.686401] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 282.686422] __x64_sys_write+0x73/0xb0 [ 282.695121] do_syscall_64+0x1a3/0x800 [ 282.695141] ? syscall_return_slowpath+0x5f0/0x5f0 [ 282.695159] ? prepare_exit_to_usermode+0x232/0x3b0 [ 282.695181] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.695207] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.695219] RIP: 0033:0x457e39 [ 282.695247] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.695256] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 282.695272] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 282.695281] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 282.695290] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 282.695299] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 282.695308] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:44 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x5385, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x29000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:44 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:44 executing program 5: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000040)=0x2428, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0x0, r0, 0x0, 0x1, &(0x7f00000001c0)='\x00'}, 0x30) r2 = syz_open_procfs(r1, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r2, 0x0, 0x3) ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f00000002c0)={0x1, 0x9ff, &(0x7f0000000080)="6385bc7196c80fb9ea09e92969d8de4f68275aac70d440f06b09e411951252297dcded9df8a2c64ecc2bf98ce87a1eb745ab29eaad75b0bcfb78", &(0x7f00000000c0)="5a6602d63c0b7b2aae5d1de59a3135e3435c2dcace0da91728612108e7a47962a249c1cd2a720ae664b34dcf661298a83eb7551c53300640d29986a8bcb139d79e6247155f430365eba5261c35ce53300ee1b0945148d2b0dd8b377c9cf4c7701b1e87bd39755d1a3cfee367f78e4470e85b6368c1c5e476cd50f88ad902e81d15c40eb7c828ad75bbdc3a339c6e67f29981edafc2baad58e179c9fe549aed0280fa4d", 0x3a, 0xa3}) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000180)=0x1) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UFFDIO_WAKE(r2, 0x8010aa02, &(0x7f0000000240)={&(0x7f0000ff9000/0x4000)=nil, 0x4000}) 15:16:44 executing program 3 (fault-call:3 fault-nth:36): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:44 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)) r1 = syz_open_pts(r0, 0x200800) fcntl$setstatus(r1, 0x4, 0x2800) ioctl$TCXONC(r1, 0x540a, 0x0) splice(r0, &(0x7f0000000000)=0x54, r1, &(0x7f0000000040), 0x8f14, 0x0) write(r1, &(0x7f0000fd6000)='z', 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000698000)=0x3) ioctl$TCFLSH(r0, 0x540b, 0x0) [ 283.073565] FAULT_INJECTION: forcing a failure. [ 283.073565] name failslab, interval 1, probability 0, space 0, times 0 15:16:44 executing program 2: getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000000)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f0000000100)=0xe8) ioprio_set$uid(0x3, r0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000140)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00', 0xffffffffffffffff}, 0x30) getpid() r1 = fcntl$getown(0xffffffffffffffff, 0x9) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='net/ptype\x00') lseek(r2, 0x0, 0x3) [ 283.127791] CPU: 0 PID: 13663 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 283.135012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.144366] Call Trace: [ 283.146958] dump_stack+0x1db/0x2d0 [ 283.150597] ? dump_stack_print_info.cold+0x20/0x20 [ 283.155633] should_fail.cold+0xa/0x15 [ 283.159530] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 283.164653] ? ___might_sleep+0x1e7/0x310 [ 283.168806] ? arch_local_save_flags+0x50/0x50 [ 283.173393] ? vprintk_default+0x28/0x30 15:16:44 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)) r1 = syz_open_pts(r0, 0x200800) fcntl$setstatus(r1, 0x4, 0x2800) ioctl$TCXONC(r1, 0x540a, 0x0) splice(r0, &(0x7f0000000000)=0x54, r1, &(0x7f0000000040), 0x8f14, 0x0) write(r1, &(0x7f0000fd6000)='z', 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000698000)=0x3) ioctl$TCFLSH(r0, 0x540b, 0x0) 15:16:44 executing program 2: getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000000)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f0000000100)=0xe8) ioprio_set$uid(0x3, r0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000140)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00', 0xffffffffffffffff}, 0x30) getpid() r1 = fcntl$getown(0xffffffffffffffff, 0x9) r2 = syz_open_procfs(r1, &(0x7f00000001c0)='net/ptype\x00') lseek(r2, 0x0, 0x3) [ 283.177462] ? vprintk_func+0x86/0x189 [ 283.181359] __should_failslab+0x121/0x190 [ 283.185599] should_failslab+0x9/0x14 [ 283.189417] kmem_cache_alloc_trace+0x2d1/0x760 [ 283.194102] kobject_uevent_env+0x2fb/0x102b [ 283.198515] ? device_pm_add+0x22a/0x340 [ 283.202582] ? device_pm_check_callbacks+0x3f0/0x3f0 [ 283.207702] kobject_uevent+0x20/0x26 [ 283.211506] device_add+0xafa/0x1800 [ 283.215233] ? get_device_parent.isra.0+0x570/0x570 [ 283.220258] ? simple_release_fs+0xa1/0xd0 [ 283.224494] ? start_creating+0x163/0x1e0 [ 283.228640] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.234202] hci_register_dev+0x3b9/0x9d0 [ 283.238359] ? kfree_skb+0x1a6/0x580 [ 283.242079] ? hci_conn_params_free+0x840/0x840 [ 283.246761] __vhci_create_device+0x2d0/0x5a0 [ 283.251267] vhci_write+0x2d0/0x470 [ 283.254907] __vfs_write+0x764/0xb40 [ 283.258638] ? kernel_read+0x120/0x120 [ 283.262540] ? __mutex_unlock_slowpath+0x195/0x870 [ 283.267486] ? apparmor_file_permission+0x25/0x30 [ 283.272374] ? rw_verify_area+0x118/0x360 15:16:44 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x200004, 0x0) [ 283.276527] vfs_write+0x20c/0x580 [ 283.280078] ksys_write+0x105/0x260 [ 283.283708] ? __ia32_sys_read+0xb0/0xb0 [ 283.287772] ? trace_hardirqs_off_caller+0x300/0x300 [ 283.292877] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 283.292897] __x64_sys_write+0x73/0xb0 [ 283.292914] do_syscall_64+0x1a3/0x800 [ 283.292932] ? syscall_return_slowpath+0x5f0/0x5f0 [ 283.292949] ? prepare_exit_to_usermode+0x232/0x3b0 [ 283.292968] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.292991] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.293003] RIP: 0033:0x457e39 15:16:44 executing program 2 (fault-call:1 fault-nth:0): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:16:44 executing program 5: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000040)=0x2428, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0x0, r0, 0x0, 0x1, &(0x7f00000001c0)='\x00'}, 0x30) r2 = syz_open_procfs(r1, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r2, 0x0, 0x3) ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f00000002c0)={0x1, 0x9ff, &(0x7f0000000080)="6385bc7196c80fb9ea09e92969d8de4f68275aac70d440f06b09e411951252297dcded9df8a2c64ecc2bf98ce87a1eb745ab29eaad75b0bcfb78", &(0x7f00000000c0)="5a6602d63c0b7b2aae5d1de59a3135e3435c2dcace0da91728612108e7a47962a249c1cd2a720ae664b34dcf661298a83eb7551c53300640d29986a8bcb139d79e6247155f430365eba5261c35ce53300ee1b0945148d2b0dd8b377c9cf4c7701b1e87bd39755d1a3cfee367f78e4470e85b6368c1c5e476cd50f88ad902e81d15c40eb7c828ad75bbdc3a339c6e67f29981edafc2baad58e179c9fe549aed0280fa4d", 0x3a, 0xa3}) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000180)=0x1) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UFFDIO_WAKE(r2, 0x8010aa02, &(0x7f0000000240)={&(0x7f0000ff9000/0x4000)=nil, 0x4000}) 15:16:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x30000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 283.293017] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.293026] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 283.293039] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 283.293047] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 283.293055] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:16:44 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)={0x0, 0x3}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) [ 283.293064] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 283.293072] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x3f000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:44 executing program 5: r0 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x8, 0x400841) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e23, @multicast1}}, [0x2, 0x256, 0x104, 0xa0000, 0x0, 0xffffffff, 0x401, 0x3, 0x3ff, 0xfff, 0x5, 0x8, 0x6, 0x6, 0x1000]}, &(0x7f0000000300)=0x100) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={r1, @in={{0x2, 0x4e23, @multicast2}}, 0x8000, 0x1, 0x7, 0x3, 0x1}, 0x98) ioctl$PIO_FONTX(r0, 0x4b6c, &(0x7f0000000400)="05689091b9bebf4de45465aa829b1fa5b833c4da810b3099253a143fb650c00de2f0b85aa6d24b74ca857ea885e4234551f239d9622d7e8dd27bd6a3f1cd4efada131ea26111cf640c11849c8224cf24fc75c73032db773095ee40f5f2771950cfa3e418c749ff8d111321f5d259cb5142fb2e4e349dde0c3fad8ee6fc2aeb55e1e9979e9d81ba945bdf13e295c3a0b250b7f36551546c08d299d95c0981321d07ced40269521ff67bd1ba7ae47c299507c53d0a505f783a4f1d5b14f022e4a2164aa5a3181e2525968f050369ad230c1010842d5ce0922dae09ef31c01ac913956506179e4449ce684ebc4255764abf237996") readv(r0, &(0x7f0000001940)=[{&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/229, 0xe5}, {&(0x7f0000000000)=""/30, 0x1e}, {&(0x7f00000016c0)=""/99, 0x63}, {&(0x7f0000001740)=""/106, 0x6a}, {&(0x7f00000017c0)=""/119, 0x77}, {&(0x7f0000001840)=""/6, 0x6}, {&(0x7f0000001880)=""/114, 0x72}, {&(0x7f0000001900)}], 0x9) syz_emit_ethernet(0x1, &(0x7f0000001900)=ANY=[@ANYBLOB="0180c200b200b42d87402ec82a91568dbed0926cfba7a13ba046f44673ec09f756bce56187e95a6f72c5aac1d38f538a8e49cf"], 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r2, 0x28, 0x6, &(0x7f0000000040), 0x1be) syz_emit_ethernet(0x10a, &(0x7f0000000080)={@link_local, @broadcast, [{[{0x9100, 0x3, 0x4, 0x4}], {0x8100, 0x40, 0x8001, 0x1}}], {@ipv6={0x86dd, {0x40, 0x6, "929d7b", 0xcc, 0x3b, 0x7, @ipv4={[], [], @broadcast}, @loopback, {[], @icmpv6=@ni={0x8f, 0x0, 0x0, 0x0, 0x0, 0x1, "41685f279b3f5ca62b08070c4b5e1ee74e3cd1f52d5ec3070c95ca590de43bfa15f4c107692c782320e8428db43f2863189ea6e1854715e0b7d21adf180b490604e02abb8494c66e3101bc687a2d134a565fc833913ec4f23dd7f6545d66c11f2e94f9776fe14dfeea948eabec5d1baa7603f071581a61512f3d7d0a398230739f7c16f41d9c4ee69504906f24da997422b704de5909aad482a353339b623dcf786f0b3979cfeb96962999feb002964d79ebf86c7c4d4b267fb59b01"}}}}}}, 0x0) ioctl$VIDIOC_DQEVENT(r0, 0x80885659, &(0x7f0000000500)={0x0, @motion_det}) socket$inet(0x2, 0x0, 0x101) 15:16:45 executing program 3 (fault-call:3 fault-nth:37): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:45 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:16:45 executing program 4: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x200040, 0x0) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000380)={0x54, 0x8001, 0x7, {0x9, 0x7fffffff}, {0x6, 0x18}, @cond=[{0xfffffffffffffe9f, 0x8, 0x3, 0x9, 0xe2a, 0x63a5627c}, {0x4, 0x320, 0x10000, 0xfffffffffffffffa, 0x7fff, 0x4}]}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/net/pfkey\x00', 0x7ff, 0x0) ioctl$VIDIOC_DQEVENT(r1, 0x80885659, &(0x7f00000008c0)={0x0, @motion_det}) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000480)=[@in6={0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, [], 0x2a}, 0x8}, @in6={0xa, 0x4e24, 0x69, @dev={0xfe, 0x80, [], 0xb}, 0x1f}, @in={0x2, 0x4e23, @remote}, @in6={0xa, 0x4e24, 0x8000, @empty, 0x8dbb}, @in6={0xa, 0x4e22, 0x8, @ipv4={[], [], @local}, 0xc5ce}, @in={0x2, 0x4e21, @remote}], 0x90) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x804) r3 = socket$inet_udp(0x2, 0x2, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGSKNS(r3, 0x894c, &(0x7f00000003c0)=0x4) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) r4 = open(&(0x7f0000000040)='./file0\x00', 0x2, 0x20) ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000100)) setsockopt$sock_int(r3, 0x1, 0x29, &(0x7f0000000180)=0x32, 0x4) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2) ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000640)='/proc/self/attr/exec\x00', 0x2, 0x0) connect$inet(r3, &(0x7f0000000440)={0x2, 0x0, @broadcast}, 0x10) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x16000, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$BINDER_SET_MAX_THREADS(r5, 0x40046205, 0x2000002) ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000080)={0x750, {0x2, 0x0, @loopback}, {0x2, 0x0, @local}, {0x2, 0x4e24, @broadcast}, 0x100, 0x0, 0x2, 0x46a, 0x0, 0x0, 0x1000, 0x0, 0x5}) lseek(r2, 0x0, 0x6) getsockopt$packet_buf(r5, 0x107, 0x6, &(0x7f0000000540)=""/202, &(0x7f0000000400)=0xca) ioctl$DRM_IOCTL_AGP_RELEASE(r5, 0x6431) sendmmsg(r3, &(0x7f0000007fc0), 0x40000000000002f, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000700)='\x00', 0x1, 0x1) ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1) socket$key(0xf, 0x3, 0x2) 15:16:45 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x40000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:45 executing program 5: r0 = syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0xc0505405) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r1, 0x204, 0x70bd28, 0x25dfdbff, {{}, 0x0, 0x4109, 0x0, {0x4c, 0x18, {0x401, @media='eth\x00'}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000) 15:16:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xd4000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 283.775092] FAULT_INJECTION: forcing a failure. [ 283.775092] name failslab, interval 1, probability 0, space 0, times 0 [ 283.807765] CPU: 1 PID: 13719 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 283.814975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.824326] Call Trace: [ 283.826925] dump_stack+0x1db/0x2d0 [ 283.830559] ? dump_stack_print_info.cold+0x20/0x20 [ 283.835586] ? mark_held_locks+0x100/0x100 [ 283.839843] should_fail.cold+0xa/0x15 [ 283.843750] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 283.848867] ? ___might_sleep+0x1e7/0x310 [ 283.853028] ? arch_local_save_flags+0x50/0x50 [ 283.857616] ? enable_ptr_key_workfn+0x30/0x30 [ 283.862217] __should_failslab+0x121/0x190 [ 283.866456] should_failslab+0x9/0x14 [ 283.870250] kmem_cache_alloc_node+0x265/0x710 [ 283.874828] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.880383] __alloc_skb+0xf4/0x730 [ 283.884009] ? skb_scrub_packet+0x440/0x440 [ 283.888400] ? netlink_has_listeners+0x2e7/0x4a0 [ 283.893161] ? netlink_tap_init_net+0x3e0/0x3e0 [ 283.897827] alloc_uevent_skb+0x83/0x1e2 [ 283.901882] kobject_uevent_env+0xa63/0x102b [ 283.906280] ? device_pm_add+0x22a/0x340 [ 283.910331] ? device_pm_check_callbacks+0x3f0/0x3f0 [ 283.915433] kobject_uevent+0x20/0x26 [ 283.919227] device_add+0xafa/0x1800 [ 283.922944] ? get_device_parent.isra.0+0x570/0x570 [ 283.927955] ? simple_release_fs+0xa1/0xd0 [ 283.932184] ? start_creating+0x163/0x1e0 [ 283.936323] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.941856] hci_register_dev+0x3b9/0x9d0 [ 283.945995] ? kfree_skb+0x1a6/0x580 [ 283.949700] ? hci_conn_params_free+0x840/0x840 [ 283.954373] __vhci_create_device+0x2d0/0x5a0 [ 283.958865] vhci_write+0x2d0/0x470 [ 283.962486] __vfs_write+0x764/0xb40 [ 283.966192] ? kernel_read+0x120/0x120 [ 283.970071] ? __mutex_unlock_slowpath+0x195/0x870 [ 283.975002] ? apparmor_file_permission+0x25/0x30 [ 283.980094] ? rw_verify_area+0x118/0x360 [ 283.984247] vfs_write+0x20c/0x580 [ 283.987781] ksys_write+0x105/0x260 [ 283.991404] ? __ia32_sys_read+0xb0/0xb0 [ 283.995461] ? trace_hardirqs_off_caller+0x300/0x300 [ 284.000553] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 284.005303] __x64_sys_write+0x73/0xb0 [ 284.009197] do_syscall_64+0x1a3/0x800 [ 284.013078] ? syscall_return_slowpath+0x5f0/0x5f0 [ 284.018003] ? prepare_exit_to_usermode+0x232/0x3b0 [ 284.023014] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.027855] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.033035] RIP: 0033:0x457e39 [ 284.036222] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.055120] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 284.062819] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 15:16:45 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r4}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r5, 0x0, 0x3) 15:16:45 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x2, &(0x7f0000000040)) 15:16:45 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) splice(r1, &(0x7f0000000040), r1, &(0x7f0000000080), 0x1, 0xa) dup2(r1, r0) bind$alg(r2, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="d3ab07191a01464490b2d9d5e03eba60a786765c2756df62e7ca1e369e253324", 0x20) [ 284.070084] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 284.077351] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 284.084610] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 284.091871] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:45 executing program 3 (fault-call:3 fault-nth:38): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xf6ffffff, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:45 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x541b, &(0x7f0000000040)) 15:16:45 executing program 4: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x200040, 0x0) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000380)={0x54, 0x8001, 0x7, {0x9, 0x7fffffff}, {0x6, 0x18}, @cond=[{0xfffffffffffffe9f, 0x8, 0x3, 0x9, 0xe2a, 0x63a5627c}, {0x4, 0x320, 0x10000, 0xfffffffffffffffa, 0x7fff, 0x4}]}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/net/pfkey\x00', 0x7ff, 0x0) ioctl$VIDIOC_DQEVENT(r1, 0x80885659, &(0x7f00000008c0)={0x0, @motion_det}) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000480)=[@in6={0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, [], 0x2a}, 0x8}, @in6={0xa, 0x4e24, 0x69, @dev={0xfe, 0x80, [], 0xb}, 0x1f}, @in={0x2, 0x4e23, @remote}, @in6={0xa, 0x4e24, 0x8000, @empty, 0x8dbb}, @in6={0xa, 0x4e22, 0x8, @ipv4={[], [], @local}, 0xc5ce}, @in={0x2, 0x4e21, @remote}], 0x90) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x804) r3 = socket$inet_udp(0x2, 0x2, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGSKNS(r3, 0x894c, &(0x7f00000003c0)=0x4) bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) r4 = open(&(0x7f0000000040)='./file0\x00', 0x2, 0x20) ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000100)) setsockopt$sock_int(r3, 0x1, 0x29, &(0x7f0000000180)=0x32, 0x4) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2) ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000640)='/proc/self/attr/exec\x00', 0x2, 0x0) connect$inet(r3, &(0x7f0000000440)={0x2, 0x0, @broadcast}, 0x10) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x16000, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) ioctl$BINDER_SET_MAX_THREADS(r5, 0x40046205, 0x2000002) ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000080)={0x750, {0x2, 0x0, @loopback}, {0x2, 0x0, @local}, {0x2, 0x4e24, @broadcast}, 0x100, 0x0, 0x2, 0x46a, 0x0, 0x0, 0x1000, 0x0, 0x5}) lseek(r2, 0x0, 0x6) getsockopt$packet_buf(r5, 0x107, 0x6, &(0x7f0000000540)=""/202, &(0x7f0000000400)=0xca) ioctl$DRM_IOCTL_AGP_RELEASE(r5, 0x6431) sendmmsg(r3, &(0x7f0000007fc0), 0x40000000000002f, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000700)='\x00', 0x1, 0x1) ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1) socket$key(0xf, 0x3, 0x2) 15:16:45 executing program 5: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0) ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) splice(r1, &(0x7f0000000040), r1, &(0x7f0000000080), 0x1, 0xa) dup2(r1, r0) bind$alg(r2, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="d3ab07191a01464490b2d9d5e03eba60a786765c2756df62e7ca1e369e253324", 0x20) [ 284.307391] FAULT_INJECTION: forcing a failure. [ 284.307391] name failslab, interval 1, probability 0, space 0, times 0 15:16:45 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x5421, &(0x7f0000000040)) [ 284.399261] CPU: 1 PID: 13743 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 284.406488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.415950] Call Trace: [ 284.418543] dump_stack+0x1db/0x2d0 [ 284.422179] ? dump_stack_print_info.cold+0x20/0x20 [ 284.427215] should_fail.cold+0xa/0x15 [ 284.431127] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 284.436249] ? ___might_sleep+0x1e7/0x310 [ 284.440409] ? arch_local_save_flags+0x50/0x50 [ 284.444999] ? save_stack+0x45/0xd0 [ 284.448631] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 284.453736] ? __kmalloc_reserve.isra.0+0x40/0xe0 [ 284.458573] ? __alloc_skb+0x12d/0x730 [ 284.462464] __should_failslab+0x121/0x190 [ 284.466691] should_failslab+0x9/0x14 [ 284.470486] kmem_cache_alloc+0x2be/0x710 [ 284.474641] skb_clone+0x1c5/0x510 [ 284.478191] ? refcount_add_not_zero_checked+0x2f0/0x330 [ 284.483631] ? skb_split+0x1210/0x1210 [ 284.487513] ? netlink_skb_destructor+0x210/0x210 [ 284.492368] netlink_broadcast_filtered+0x107b/0x16f0 [ 284.497569] ? __netlink_sendskb+0xd0/0xd0 [ 284.501795] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.507333] ? refcount_inc_not_zero_checked+0x1d9/0x2e0 [ 284.512791] ? refcount_add_not_zero_checked+0x330/0x330 [ 284.518233] ? netlink_has_listeners+0x2e7/0x4a0 [ 284.522987] netlink_broadcast+0x3a/0x50 [ 284.527045] kobject_uevent_env+0xa94/0x102b [ 284.531451] ? device_pm_add+0x22a/0x340 [ 284.535503] ? device_pm_check_callbacks+0x3f0/0x3f0 [ 284.540606] kobject_uevent+0x20/0x26 [ 284.544402] device_add+0xafa/0x1800 [ 284.548116] ? get_device_parent.isra.0+0x570/0x570 [ 284.553124] ? simple_release_fs+0xa1/0xd0 [ 284.557353] ? start_creating+0x163/0x1e0 [ 284.561494] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 284.567028] hci_register_dev+0x3b9/0x9d0 [ 284.571177] ? kfree_skb+0x1a6/0x580 [ 284.574885] ? hci_conn_params_free+0x840/0x840 [ 284.579555] __vhci_create_device+0x2d0/0x5a0 [ 284.584051] vhci_write+0x2d0/0x470 [ 284.587681] __vfs_write+0x764/0xb40 [ 284.591393] ? kernel_read+0x120/0x120 [ 284.595270] ? __mutex_unlock_slowpath+0x195/0x870 [ 284.600202] ? apparmor_file_permission+0x25/0x30 [ 284.605044] ? rw_verify_area+0x118/0x360 [ 284.609192] vfs_write+0x20c/0x580 [ 284.612726] ksys_write+0x105/0x260 [ 284.616345] ? __ia32_sys_read+0xb0/0xb0 [ 284.620400] ? trace_hardirqs_off_caller+0x300/0x300 [ 284.625497] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 284.630249] __x64_sys_write+0x73/0xb0 [ 284.634217] do_syscall_64+0x1a3/0x800 [ 284.638100] ? syscall_return_slowpath+0x5f0/0x5f0 [ 284.643024] ? prepare_exit_to_usermode+0x232/0x3b0 [ 284.648036] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.652879] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.658065] RIP: 0033:0x457e39 [ 284.661247] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.680146] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 284.687842] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 15:16:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfbffffff, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:45 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x0, 0x0, 0x139, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000001240)='/dev/rfkill\x00', 0x440, 0x0) process_vm_writev(0x0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/176, 0xb0}], 0x1, &(0x7f0000001200)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x200, 0x0) ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000100)={0x2}) 15:16:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x5450, &(0x7f0000000040)) 15:16:46 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 284.695100] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 284.702356] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 284.709610] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 284.716883] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfcffffff, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x5451, &(0x7f0000000040)) 15:16:46 executing program 3 (fault-call:3 fault-nth:39): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:46 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x0, 0x0, 0x139, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000001240)='/dev/rfkill\x00', 0x440, 0x0) process_vm_writev(0x0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/176, 0xb0}], 0x1, &(0x7f0000001200)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x200, 0x0) ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000100)={0x2}) 15:16:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfdfdffff, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:46 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$int_out(r0, 0xc0804531, 0x0) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000040)) 15:16:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x5452, &(0x7f0000000040)) [ 284.950152] FAULT_INJECTION: forcing a failure. [ 284.950152] name failslab, interval 1, probability 0, space 0, times 0 [ 284.977416] CPU: 1 PID: 13780 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 284.984626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.993972] Call Trace: [ 284.996570] dump_stack+0x1db/0x2d0 15:16:46 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfeffffff, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 285.000215] ? dump_stack_print_info.cold+0x20/0x20 [ 285.005254] should_fail.cold+0xa/0x15 [ 285.009154] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 285.014273] ? ___might_sleep+0x1e7/0x310 [ 285.018422] ? arch_local_save_flags+0x50/0x50 [ 285.023007] ? save_stack+0x45/0xd0 [ 285.026655] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 285.031755] ? __kmalloc_reserve.isra.0+0x40/0xe0 [ 285.036577] ? __alloc_skb+0x12d/0x730 [ 285.040454] __should_failslab+0x121/0x190 [ 285.044679] should_failslab+0x9/0x14 [ 285.048469] kmem_cache_alloc+0x2be/0x710 [ 285.052633] skb_clone+0x1c5/0x510 [ 285.056159] ? refcount_add_not_zero_checked+0x2f0/0x330 [ 285.061591] ? skb_split+0x1210/0x1210 [ 285.065476] ? netlink_skb_destructor+0x210/0x210 [ 285.070333] netlink_broadcast_filtered+0x107b/0x16f0 [ 285.075538] ? __netlink_sendskb+0xd0/0xd0 [ 285.079764] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.085286] ? refcount_inc_not_zero_checked+0x1d9/0x2e0 [ 285.090721] ? refcount_add_not_zero_checked+0x330/0x330 [ 285.096157] ? netlink_has_listeners+0x2e7/0x4a0 [ 285.100907] netlink_broadcast+0x3a/0x50 [ 285.104974] kobject_uevent_env+0xa94/0x102b [ 285.109387] ? device_pm_add+0x22a/0x340 [ 285.113451] ? device_pm_check_callbacks+0x3f0/0x3f0 [ 285.118547] kobject_uevent+0x20/0x26 [ 285.122334] device_add+0xafa/0x1800 [ 285.126057] ? get_device_parent.isra.0+0x570/0x570 [ 285.131069] ? simple_release_fs+0xa1/0xd0 [ 285.135308] ? start_creating+0x163/0x1e0 [ 285.139448] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 285.144970] hci_register_dev+0x3b9/0x9d0 [ 285.149102] ? kfree_skb+0x1a6/0x580 [ 285.152809] ? hci_conn_params_free+0x840/0x840 [ 285.157476] __vhci_create_device+0x2d0/0x5a0 [ 285.161954] vhci_write+0x2d0/0x470 [ 285.165565] __vfs_write+0x764/0xb40 [ 285.169277] ? kernel_read+0x120/0x120 [ 285.173155] ? __mutex_unlock_slowpath+0x195/0x870 [ 285.178092] ? apparmor_file_permission+0x25/0x30 [ 285.182932] ? rw_verify_area+0x118/0x360 [ 285.187071] vfs_write+0x20c/0x580 [ 285.190599] ksys_write+0x105/0x260 [ 285.194211] ? __ia32_sys_read+0xb0/0xb0 [ 285.198262] ? trace_hardirqs_off_caller+0x300/0x300 [ 285.203360] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 285.208102] __x64_sys_write+0x73/0xb0 [ 285.211973] do_syscall_64+0x1a3/0x800 [ 285.215848] ? syscall_return_slowpath+0x5f0/0x5f0 [ 285.220762] ? prepare_exit_to_usermode+0x232/0x3b0 [ 285.225775] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.230615] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.235789] RIP: 0033:0x457e39 [ 285.238979] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.257907] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 285.265607] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 285.272859] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 285.280116] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 285.287376] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 285.294629] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x5460, &(0x7f0000000040)) 15:16:46 executing program 3 (fault-call:3 fault-nth:40): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:46 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x0, 0x0, 0x139, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000001240)='/dev/rfkill\x00', 0x440, 0x0) process_vm_writev(0x0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/176, 0xb0}], 0x1, &(0x7f0000001200)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x200, 0x0) ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000100)={0x2}) 15:16:46 executing program 4: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @remote, [], {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @random="a518bcabec63", @multicast1, @link_local, @loopback}}}}, &(0x7f0000000040)={0x0, 0x10, [0x19b]}) 15:16:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x6609, &(0x7f0000000040)) 15:16:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffdfd, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:46 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 285.422360] FAULT_INJECTION: forcing a failure. [ 285.422360] name failslab, interval 1, probability 0, space 0, times 0 [ 285.488319] CPU: 0 PID: 13795 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 285.495535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.504892] Call Trace: [ 285.507490] dump_stack+0x1db/0x2d0 [ 285.511127] ? dump_stack_print_info.cold+0x20/0x20 [ 285.516160] ? error_exit+0xb/0x20 [ 285.519709] should_fail.cold+0xa/0x15 [ 285.523595] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 285.528696] ? ___might_sleep+0x1e7/0x310 [ 285.532834] ? arch_local_save_flags+0x50/0x50 [ 285.537404] ? set_precision+0xf0/0xf0 [ 285.541291] __should_failslab+0x121/0x190 [ 285.545531] should_failslab+0x9/0x14 [ 285.549338] kmem_cache_alloc_node_trace+0x270/0x720 [ 285.554430] ? add_lock_to_list.isra.0+0x450/0x450 [ 285.559346] ? native_iret+0x7/0x7 [ 285.562886] __kmalloc_node_track_caller+0x3d/0x70 [ 285.567808] devm_kmalloc+0xfa/0x270 [ 285.571603] ? devm_add_action+0xc0/0xc0 [ 285.575657] ? mark_held_locks+0xb1/0x100 [ 285.579797] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 285.584890] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 285.590000] devm_kvasprintf+0xcd/0x140 [ 285.593965] ? devm_kmemdup+0x60/0x60 [ 285.597770] ? do_raw_spin_trylock+0x270/0x270 [ 285.602387] devm_kasprintf+0xbb/0xf0 [ 285.606192] ? devm_kvasprintf+0x140/0x140 [ 285.610421] ? devm_add_action+0xc0/0xc0 [ 285.614476] ? simple_release_fs+0xa1/0xd0 [ 285.618765] hci_leds_init+0xb3/0x1c0 [ 285.622577] hci_register_dev+0x3e3/0x9d0 [ 285.626721] ? hci_conn_params_free+0x840/0x840 [ 285.631410] __vhci_create_device+0x2d0/0x5a0 [ 285.635898] vhci_write+0x2d0/0x470 [ 285.639521] __vfs_write+0x764/0xb40 [ 285.643233] ? kernel_read+0x120/0x120 [ 285.647112] ? __mutex_unlock_slowpath+0x195/0x870 [ 285.652039] ? apparmor_file_permission+0x25/0x30 [ 285.656881] ? rw_verify_area+0x118/0x360 [ 285.661024] vfs_write+0x20c/0x580 [ 285.664560] ksys_write+0x105/0x260 [ 285.668176] ? __ia32_sys_read+0xb0/0xb0 [ 285.672237] ? trace_hardirqs_off_caller+0x300/0x300 [ 285.677329] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 285.682075] __x64_sys_write+0x73/0xb0 [ 285.685952] do_syscall_64+0x1a3/0x800 [ 285.689839] ? syscall_return_slowpath+0x5f0/0x5f0 [ 285.694760] ? prepare_exit_to_usermode+0x232/0x3b0 [ 285.699768] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.704620] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.709795] RIP: 0033:0x457e39 [ 285.713005] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.731893] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 15:16:47 executing program 4: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/autofs\x00', 0x20000, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r0, 0xc08c5334, &(0x7f0000000280)={0x0, 0x8, 0x4, 'queue1\x00', 0x100000000}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r2 = socket$alg(0x26, 0x5, 0x0) r3 = accept(r1, &(0x7f0000000000)=@ax25={{}, [@default, @remote, @bcast, @null, @rose, @netrom, @null, @default]}, &(0x7f0000000100)=0x80) ioctl$sock_bt_bnep_BNEPCONNDEL(r3, 0x400442c9, &(0x7f0000000180)={0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) prctl$PR_GET_KEEPCAPS(0x7) bind$alg(r2, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58) r4 = dup3(r1, r2, 0x0) epoll_pwait(r4, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], 0x5, 0xaa, &(0x7f0000000200)={0x1}, 0x8) 15:16:47 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x660c, &(0x7f0000000040)) [ 285.739592] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 285.746848] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 285.754105] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 285.761360] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 285.768618] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffff6, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:47 executing program 3 (fault-call:3 fault-nth:41): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:47 executing program 4: setrlimit(0x3, &(0x7f0000000000)={0xd1, 0x4}) r0 = socket$l2tp(0x18, 0x1, 0x1) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f00000001c0)={0x4, 0xfffffffffffffffc, 0x1, 0x0, 0x0, [{r0, 0x0, 0x3}]}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x810, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24008000}, 0x11) 15:16:47 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x6611, &(0x7f0000000040)) 15:16:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffb, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:47 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000240)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000000)={0x8}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x0, 0x0) write$P9_RRENAME(r1, &(0x7f0000000080)={0x7, 0x15, 0x1}, 0x7) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000000c0)=0x0) syz_open_procfs(r2, &(0x7f0000000100)='net/rt_cache\x00') ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f0000000140)=0x1000) [ 285.941922] FAULT_INJECTION: forcing a failure. [ 285.941922] name failslab, interval 1, probability 0, space 0, times 0 [ 285.985179] CPU: 0 PID: 13819 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 285.992385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.992393] Call Trace: [ 285.992414] dump_stack+0x1db/0x2d0 [ 285.992436] ? dump_stack_print_info.cold+0x20/0x20 [ 285.992465] should_fail.cold+0xa/0x15 [ 285.992485] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 285.992507] ? ___might_sleep+0x1e7/0x310 [ 286.026127] ? arch_local_save_flags+0x50/0x50 [ 286.030708] ? set_precision+0xf0/0xf0 [ 286.030733] __should_failslab+0x121/0x190 [ 286.030751] should_failslab+0x9/0x14 [ 286.030767] kmem_cache_alloc_node_trace+0x270/0x720 [ 286.042638] ? add_lock_to_list.isra.0+0x450/0x450 [ 286.042653] ? ksys_write+0x105/0x260 [ 286.042667] ? __x64_sys_write+0x73/0xb0 [ 286.042683] ? do_syscall_64+0x1a3/0x800 [ 286.042700] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.042723] __kmalloc_node_track_caller+0x3d/0x70 [ 286.042740] devm_kmalloc+0xfa/0x270 [ 286.042755] ? devm_add_action+0xc0/0xc0 [ 286.052755] ? mark_held_locks+0xb1/0x100 [ 286.052774] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 286.052790] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 286.052811] devm_kvasprintf+0xcd/0x140 [ 286.052827] ? devm_kmemdup+0x60/0x60 [ 286.052841] ? do_raw_spin_trylock+0x270/0x270 [ 286.052868] devm_kasprintf+0xbb/0xf0 [ 286.113230] ? devm_kvasprintf+0x140/0x140 [ 286.117470] ? devm_add_action+0xc0/0xc0 [ 286.121556] ? simple_release_fs+0xa1/0xd0 [ 286.125801] hci_leds_init+0xb3/0x1c0 [ 286.129604] hci_register_dev+0x3e3/0x9d0 [ 286.133754] ? hci_conn_params_free+0x840/0x840 [ 286.138435] __vhci_create_device+0x2d0/0x5a0 [ 286.142951] vhci_write+0x2d0/0x470 [ 286.146774] __vfs_write+0x764/0xb40 [ 286.150496] ? kernel_read+0x120/0x120 [ 286.154385] ? __mutex_unlock_slowpath+0x195/0x870 [ 286.159346] ? apparmor_file_permission+0x25/0x30 [ 286.164197] ? rw_verify_area+0x118/0x360 [ 286.168348] vfs_write+0x20c/0x580 [ 286.171895] ksys_write+0x105/0x260 [ 286.175531] ? __ia32_sys_read+0xb0/0xb0 [ 286.179612] ? trace_hardirqs_off_caller+0x300/0x300 [ 286.184804] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 286.189564] __x64_sys_write+0x73/0xb0 [ 286.193448] do_syscall_64+0x1a3/0x800 [ 286.197331] ? syscall_return_slowpath+0x5f0/0x5f0 [ 286.202259] ? prepare_exit_to_usermode+0x232/0x3b0 [ 286.207287] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.212142] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.217328] RIP: 0033:0x457e39 15:16:47 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x6612, &(0x7f0000000040)) 15:16:47 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffc, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:47 executing program 4: r0 = memfd_create(&(0x7f00000003c0)='/dev/snd/controlC#\x00', 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x2000, 0x0) ioctl$FIONREAD(0xffffffffffffffff, 0x541b, 0x0) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x101200, 0x2) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, 0x0) clock_gettime(0x0, &(0x7f0000000100)) write$UHID_INPUT2(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="0c0000003800ff030000000000000cf7884537a9a0cb7fea5d46798396513021febb9838d3389fcdb6c0dad736d9f61a246cbe0e50acce99a61998686fbc2dc1299dba703208c9c9b626087c6c2b9ab72dbce8560eab945ca8c7d3c764469614598b88"], 0x3e) r2 = accept$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000001c0)=0x14) getsockopt$IP_VS_SO_GET_TIMEOUT(r2, 0x0, 0x486, &(0x7f0000000240), &(0x7f0000000280)=0xc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000500)={0x7ff, {{0xa, 0x4e21, 0x3, @loopback, 0x9}}, {{0xa, 0x4e21, 0x9, @mcast1, 0x4}}}, 0x108) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x82) r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805) r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f00000002c0)={0xffff}, 0x4) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r5, 0x54a2) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) accept$unix(r5, &(0x7f0000000400), &(0x7f0000000180)=0x6e) sendfile(r3, r3, &(0x7f0000000000)=0x2000, 0x2000005) [ 286.220517] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.239411] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 286.247121] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 286.254385] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 286.261648] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 286.268910] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 286.276195] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:47 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40049409, &(0x7f0000000040)) 15:16:47 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000340)='map_files\x00') getdents(r0, &(0x7f0000000540)=""/4096, 0x1000) getdents(r0, 0x0, 0x1) 15:16:47 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:47 executing program 3 (fault-call:3 fault-nth:42): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffe, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:47 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40086602, &(0x7f0000000040)) 15:16:47 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000040)={'filter\x00'}, &(0x7f00000000c0)=0x44) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0xffffffb5}}, &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0x348, &(0x7f0000000480)=""/195, 0x0, 0x0, [0x42]}, 0x48) 15:16:47 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x1000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 286.681354] FAULT_INJECTION: forcing a failure. [ 286.681354] name failslab, interval 1, probability 0, space 0, times 0 15:16:48 executing program 4: r0 = memfd_create(&(0x7f00000003c0)='/dev/snd/controlC#\x00', 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x2000, 0x0) ioctl$FIONREAD(0xffffffffffffffff, 0x541b, 0x0) r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x101200, 0x2) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, 0x0) clock_gettime(0x0, &(0x7f0000000100)) write$UHID_INPUT2(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="0c0000003800ff030000000000000cf7884537a9a0cb7fea5d46798396513021febb9838d3389fcdb6c0dad736d9f61a246cbe0e50acce99a61998686fbc2dc1299dba703208c9c9b626087c6c2b9ab72dbce8560eab945ca8c7d3c764469614598b88"], 0x3e) r2 = accept$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000001c0)=0x14) getsockopt$IP_VS_SO_GET_TIMEOUT(r2, 0x0, 0x486, &(0x7f0000000240), &(0x7f0000000280)=0xc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000500)={0x7ff, {{0xa, 0x4e21, 0x3, @loopback, 0x9}}, {{0xa, 0x4e21, 0x9, @mcast1, 0x4}}}, 0x108) r3 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x82) r4 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805) r5 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f00000002c0)={0xffff}, 0x4) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r5, 0x54a2) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) accept$unix(r5, &(0x7f0000000400), &(0x7f0000000180)=0x6e) sendfile(r3, r3, &(0x7f0000000000)=0x2000, 0x2000005) 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40086604, &(0x7f0000000040)) [ 286.722764] CPU: 1 PID: 13859 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 286.729976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.739330] Call Trace: [ 286.741929] dump_stack+0x1db/0x2d0 [ 286.745578] ? dump_stack_print_info.cold+0x20/0x20 [ 286.750617] should_fail.cold+0xa/0x15 [ 286.754524] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 286.759647] ? ___might_sleep+0x1e7/0x310 [ 286.763808] ? arch_local_save_flags+0x50/0x50 [ 286.768405] ? set_precision+0xf0/0xf0 [ 286.772307] __should_failslab+0x121/0x190 [ 286.776559] should_failslab+0x9/0x14 [ 286.780367] kmem_cache_alloc_node_trace+0x270/0x720 [ 286.785484] ? add_lock_to_list.isra.0+0x450/0x450 [ 286.790420] ? ksys_write+0x105/0x260 [ 286.794226] ? __x64_sys_write+0x73/0xb0 [ 286.798310] ? do_syscall_64+0x1a3/0x800 [ 286.802372] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.802402] __kmalloc_node_track_caller+0x3d/0x70 [ 286.802423] devm_kmalloc+0xfa/0x270 [ 286.802439] ? devm_add_action+0xc0/0xc0 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40086607, &(0x7f0000000040)) [ 286.802453] ? mark_held_locks+0xb1/0x100 [ 286.802468] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 286.802480] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 286.802497] devm_kvasprintf+0xcd/0x140 [ 286.812911] ? devm_kmemdup+0x60/0x60 [ 286.812927] ? do_raw_spin_trylock+0x270/0x270 [ 286.812957] devm_kasprintf+0xbb/0xf0 [ 286.812972] ? devm_kvasprintf+0x140/0x140 [ 286.812992] ? devm_add_action+0xc0/0xc0 [ 286.813009] ? simple_release_fs+0xa1/0xd0 [ 286.813032] hci_leds_init+0xb3/0x1c0 [ 286.813051] hci_register_dev+0x3e3/0x9d0 [ 286.871654] ? hci_conn_params_free+0x840/0x840 [ 286.876348] __vhci_create_device+0x2d0/0x5a0 [ 286.880858] vhci_write+0x2d0/0x470 [ 286.884512] __vfs_write+0x764/0xb40 [ 286.888240] ? kernel_read+0x120/0x120 [ 286.892133] ? __mutex_unlock_slowpath+0x195/0x870 [ 286.897084] ? apparmor_file_permission+0x25/0x30 [ 286.901942] ? rw_verify_area+0x118/0x360 [ 286.906099] vfs_write+0x20c/0x580 [ 286.909649] ksys_write+0x105/0x260 [ 286.913285] ? __ia32_sys_read+0xb0/0xb0 [ 286.917358] ? trace_hardirqs_off_caller+0x300/0x300 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40086610, &(0x7f0000000040)) [ 286.922472] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 286.927241] __x64_sys_write+0x73/0xb0 [ 286.931142] do_syscall_64+0x1a3/0x800 [ 286.935044] ? syscall_return_slowpath+0x5f0/0x5f0 [ 286.939983] ? prepare_exit_to_usermode+0x232/0x3b0 [ 286.945011] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.949881] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.955073] RIP: 0033:0x457e39 [ 286.958273] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.977174] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 286.984891] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 286.992160] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 286.999434] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 287.006711] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 287.013985] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40087602, &(0x7f0000000040)) 15:16:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x10000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:48 executing program 3 (fault-call:3 fault-nth:43): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x400c6615, &(0x7f0000000040)) 15:16:48 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x20000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:48 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x3, 0xffffffffffffffff, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000200)={0x7, 0x42303159, 0x3, 0x4, 0x3, @stepwise={{0x8e5, 0x6}, {0x81, 0xfffffffffffeffff}, {0x0, 0x80}}}) r2 = memfd_create(&(0x7f0000000280)='\x00', 0x0) fcntl$setlease(r2, 0x400, 0x1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, r0, 0x0, 0x9, &(0x7f0000000040)='security\x00', 0xffffffffffffffff}, 0x30) ioctl$EVIOCGMTSLOTS(r4, 0x8040450a, &(0x7f00000000c0)=""/154) fcntl$setown(r2, 0x8, r3) execveat(r2, &(0x7f0000000000)='\x00', 0x0, &(0x7f0000000240), 0x1000) ioctl$SG_SET_COMMAND_Q(r2, 0x2271, &(0x7f00000002c0)=0x1) 15:16:48 executing program 5: r0 = syz_open_dev$video4linux(&(0x7f0000000040)='/dev/v4l-subdev#\x00', 0x0, 0x10000) r1 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x9, 0x40000040000) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f0000000100)={0x40, 0x200, 0x7a, 0x8, 0x0}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000180)={0x20, 0x200, 0x7fffffff, 0x1ff, r2}, &(0x7f00000001c0)=0x10) ioctl$VIDIOC_SUBDEV_G_FMT(r0, 0xc0585604, &(0x7f0000000080)={0x0, 0x9}) 15:16:48 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f00000013c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') r1 = creat(&(0x7f0000000100)='./bus\x00', 0x0) write$P9_RATTACH(r1, &(0x7f0000000140)={0x14}, 0x14) ftruncate(r1, 0xfffffffffffffffc) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) setsockopt$sock_timeval(0xffffffffffffff9c, 0x1, 0x0, &(0x7f00000000c0)={r2, r3/1000+10000}, 0x10) r4 = open(&(0x7f0000000040)='./bus/file0\x00', 0x40000, 0xffffffffffffdffe) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x12, r4, 0x0) readv(r4, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3) 15:16:48 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x80000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:48 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40106614, &(0x7f0000000040)) 15:16:48 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0af51f023c123f3188a070") r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x200000, 0x0) ioctl$VIDIOC_ENUM_FREQ_BANDS(r1, 0xc0405665, &(0x7f00000000c0)={0x6, 0x8, 0x4, 0x40, 0x80000000, 0x5, 0x4}) syz_emit_ethernet(0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x0) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000380)={'broute\x00', 0x0, 0x0, 0x0, [], 0xa, &(0x7f0000000000)=[{}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x118) 15:16:48 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:48 executing program 5: r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) mount(0x0, 0x0, 0x0, 0x0, &(0x7f000000a000)) read(r0, &(0x7f0000000040), 0x0) [ 287.582327] FAULT_INJECTION: forcing a failure. [ 287.582327] name failslab, interval 1, probability 0, space 0, times 0 [ 287.600230] CPU: 0 PID: 13908 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 287.607431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.616780] Call Trace: [ 287.619381] dump_stack+0x1db/0x2d0 [ 287.623015] ? dump_stack_print_info.cold+0x20/0x20 [ 287.628036] ? find_held_lock+0x35/0x120 [ 287.632109] should_fail.cold+0xa/0x15 [ 287.636001] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 287.641112] ? ___might_sleep+0x1e7/0x310 [ 287.645261] ? arch_local_save_flags+0x50/0x50 [ 287.649845] ? mark_held_locks+0xb1/0x100 [ 287.653998] __should_failslab+0x121/0x190 [ 287.658239] should_failslab+0x9/0x14 [ 287.662041] __kmalloc+0x2dc/0x740 [ 287.665582] ? trace_hardirqs_off_caller+0x300/0x300 [ 287.670686] ? do_raw_spin_trylock+0x270/0x270 [ 287.675313] ? rfkill_alloc+0x109/0x3c0 [ 287.679297] rfkill_alloc+0x109/0x3c0 [ 287.683100] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 287.688211] ? rfkill_fop_read+0x840/0x840 [ 287.692505] ? devm_led_trigger_register+0x8f/0xd0 [ 287.697433] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.702970] ? hci_leds_init+0x104/0x1c0 [ 287.707041] hci_register_dev+0x408/0x9d0 [ 287.711193] ? hci_conn_params_free+0x840/0x840 [ 287.715878] __vhci_create_device+0x2d0/0x5a0 [ 287.720384] vhci_write+0x2d0/0x470 [ 287.724016] __vfs_write+0x764/0xb40 [ 287.727737] ? kernel_read+0x120/0x120 [ 287.731630] ? __mutex_unlock_slowpath+0x195/0x870 [ 287.736579] ? apparmor_file_permission+0x25/0x30 [ 287.741425] ? rw_verify_area+0x118/0x360 [ 287.745576] vfs_write+0x20c/0x580 [ 287.749119] ksys_write+0x105/0x260 [ 287.752751] ? __ia32_sys_read+0xb0/0xb0 [ 287.756826] ? trace_hardirqs_off_caller+0x300/0x300 [ 287.761930] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 287.766687] __x64_sys_write+0x73/0xb0 [ 287.770578] do_syscall_64+0x1a3/0x800 [ 287.774469] ? syscall_return_slowpath+0x5f0/0x5f0 [ 287.779399] ? prepare_exit_to_usermode+0x232/0x3b0 [ 287.784424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.789273] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.794457] RIP: 0033:0x457e39 [ 287.797646] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.816546] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 287.824253] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 15:16:49 executing program 3 (fault-call:3 fault-nth:44): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x401c5820, &(0x7f0000000040)) 15:16:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x100000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:49 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x0, 0x2) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e23, 0x6, @loopback, 0x200}}, 0x2, 0x7}, &(0x7f0000000180)=0x90) setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f00000001c0)={r2}, 0x8) getsockopt$netlink(r0, 0x10e, 0xb, &(0x7f0000000000)=""/4, &(0x7f0000000140)=0x4) 15:16:49 executing program 4: r0 = socket(0x11, 0x2, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpgrp(0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0x3, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300)=0x7fff, 0x4) execve(0x0, &(0x7f0000000440), &(0x7f0000000700)=[&(0x7f0000000480)='\x00']) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000400)={@empty, @multicast2, 0x1, 0x1, [@loopback]}, 0x14) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r3, @ANYBLOB="00042bbd7000fbdbdf2507000000b800010044000400200001000a004e2400000001fe8000000000000000000000ebffff185b1b0000200002000a004e2300000008fe80000000000000000000000000001108000000380004001400010002004e20ac1e01010000000000000000200002000a004e2100000007fe8000000000000000000000000000bb0200000038000400200001000a004e2000000003ff020000000000000000000000000001010000001400020002004e22e00000010000000000000000180007000c00030000000000000000000800020001000000"], 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x800) bind(r0, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x7f\xff\xff\xe0\x00'}) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000004c0), 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00`\x00\x00 \x00', 0x101}) socket$key(0xf, 0x3, 0x2) 15:16:49 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x680040, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 287.831520] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 287.838796] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 287.846063] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 287.853331] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x4020940d, &(0x7f0000000040)) 15:16:49 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x4, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x80, 0x0, 0x0, 0x73d}, 0x29b) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000100)={r0, r0, 0x7ff, 0x31, &(0x7f00000000c0)="d16718dff80922261da1da13452d7d4ad26b8e9d541315f871e40767c663c2badedebce4a79348bceb70d865c3f69d69c5", 0x9, 0x5, 0x8001, 0x0, 0x10000, 0x3, 0x81, 'syz0\x00'}) ioctl$IMSETDEVNAME(0xffffffffffffffff, 0x80184947, 0x0) sendto$inet6(r0, &(0x7f0000000000), 0x101d0, 0x0, 0x0, 0x2) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x480000, 0x0) ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080)) 15:16:49 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40286608, &(0x7f0000000040)) [ 287.987321] FAULT_INJECTION: forcing a failure. [ 287.987321] name failslab, interval 1, probability 0, space 0, times 0 [ 288.071222] CPU: 1 PID: 13921 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 288.078462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.087815] Call Trace: [ 288.090408] dump_stack+0x1db/0x2d0 [ 288.094053] ? dump_stack_print_info.cold+0x20/0x20 [ 288.099094] should_fail.cold+0xa/0x15 [ 288.103257] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 288.108380] ? ___might_sleep+0x1e7/0x310 [ 288.112540] ? arch_local_save_flags+0x50/0x50 [ 288.117137] __should_failslab+0x121/0x190 [ 288.121374] should_failslab+0x9/0x14 [ 288.125185] __kmalloc_track_caller+0x2d8/0x740 [ 288.129871] ? pointer+0x930/0x930 [ 288.133420] ? kvasprintf_const+0x65/0x190 [ 288.137660] kvasprintf+0xc8/0x170 [ 288.141203] ? bust_spinlocks+0xe0/0xe0 [ 288.145700] ? init_wait_entry+0x1c0/0x1c0 [ 288.149953] kvasprintf_const+0x65/0x190 [ 288.154021] kobject_set_name_vargs+0x5b/0x150 [ 288.158613] dev_set_name+0xbd/0xf0 [ 288.162247] ? device_initialize+0x5c0/0x5c0 [ 288.166687] rfkill_register+0x1c8/0xe40 [ 288.170768] ? state_store+0x1e0/0x1e0 [ 288.174659] ? lockdep_init_map+0x10c/0x5b0 [ 288.178995] ? rfkill_alloc+0x2a2/0x3c0 [ 288.182973] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 288.188082] ? rfkill_fop_read+0x840/0x840 [ 288.192321] ? devm_led_trigger_register+0x8f/0xd0 [ 288.197257] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.202820] ? hci_leds_init+0x104/0x1c0 [ 288.206892] hci_register_dev+0x44a/0x9d0 [ 288.211050] ? hci_conn_params_free+0x840/0x840 [ 288.215737] __vhci_create_device+0x2d0/0x5a0 [ 288.220249] vhci_write+0x2d0/0x470 [ 288.223893] __vfs_write+0x764/0xb40 [ 288.227615] ? kernel_read+0x120/0x120 [ 288.231504] ? __mutex_unlock_slowpath+0x195/0x870 [ 288.236450] ? apparmor_file_permission+0x25/0x30 [ 288.241305] ? rw_verify_area+0x118/0x360 [ 288.245462] vfs_write+0x20c/0x580 [ 288.249011] ksys_write+0x105/0x260 [ 288.252645] ? __ia32_sys_read+0xb0/0xb0 [ 288.256708] ? trace_hardirqs_off_caller+0x300/0x300 [ 288.261812] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 288.266583] __x64_sys_write+0x73/0xb0 [ 288.270475] do_syscall_64+0x1a3/0x800 [ 288.274386] ? syscall_return_slowpath+0x5f0/0x5f0 [ 288.279320] ? prepare_exit_to_usermode+0x232/0x3b0 [ 288.284350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.289211] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.294399] RIP: 0033:0x457e39 [ 288.297594] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:16:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x300000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 288.316497] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 288.324205] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 288.331471] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 288.338750] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 288.346019] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 288.353291] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x40305828, &(0x7f0000000040)) 15:16:49 executing program 3 (fault-call:3 fault-nth:45): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:49 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x4, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req={0x80, 0x0, 0x0, 0x73d}, 0x29b) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000100)={r0, r0, 0x7ff, 0x31, &(0x7f00000000c0)="d16718dff80922261da1da13452d7d4ad26b8e9d541315f871e40767c663c2badedebce4a79348bceb70d865c3f69d69c5", 0x9, 0x5, 0x8001, 0x0, 0x10000, 0x3, 0x81, 'syz0\x00'}) ioctl$IMSETDEVNAME(0xffffffffffffffff, 0x80184947, 0x0) sendto$inet6(r0, &(0x7f0000000000), 0x101d0, 0x0, 0x0, 0x2) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x480000, 0x0) ioctl$UI_GET_VERSION(r1, 0x8004552d, &(0x7f0000000080)) 15:16:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x4030582a, &(0x7f0000000040)) [ 288.532881] device lo entered promiscuous mode 15:16:49 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x108, 0x4) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0x100, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'syz_tun\x00', 0x0}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x24000, 0x0) setsockopt$inet6_MRT6_ADD_MFC(r3, 0x29, 0xcc, &(0x7f0000000140)={{0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, [], 0x17}, 0x3}, {0xa, 0x4e24, 0x23, @dev={0xfe, 0x80, [], 0x22}, 0x3}, 0x4, [0x80000000, 0x3ff, 0x1f, 0x100000000, 0x620, 0x9, 0x0, 0xffffffff7fffffff]}, 0x5c) bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000200)="0af51f023c123f3188a070") syz_emit_ethernet(0x207843, &(0x7f0000000000)={@local, @empty=[0x2], [], {@ipv6={0x86dd, {0x0, 0x6, "b40900", 0x300003, 0x0, 0x0, @ipv4={[0x207835], [], @multicast2}, @mcast2, {[], @icmpv6=@time_exceed={0xffffff83, 0x0, 0x0, 0x0, [0x9, 0x4], {0x0, 0x6, "b680fa", 0x0, 0x0, 0x0, @ipv4={[], [], @broadcast}, @ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}}}}}}, 0x0) sendto$inet6(r3, &(0x7f00000002c0)="020400000300600000000000fff55b4202938207d9fb3780398d537500000600791f301ee616d5c01843e06590080053c0e385472da7222a2bb40100af5ba514d40000c3b542914c5e61eaa96fa9a1e8d1843e770afd6e9ef5837dbd", 0x5c, 0x0, 0x0, 0x0) [ 288.615300] FAULT_INJECTION: forcing a failure. [ 288.615300] name failslab, interval 1, probability 0, space 0, times 0 [ 288.634043] device lo left promiscuous mode [ 288.691387] CPU: 0 PID: 13947 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 288.698593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.707949] Call Trace: [ 288.710541] dump_stack+0x1db/0x2d0 [ 288.714182] ? dump_stack_print_info.cold+0x20/0x20 [ 288.719201] ? enable_ptr_key_workfn+0x30/0x30 [ 288.723800] should_fail.cold+0xa/0x15 [ 288.727698] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 288.732821] ? ___might_sleep+0x1e7/0x310 [ 288.736969] ? arch_local_save_flags+0x50/0x50 [ 288.741552] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.747100] __should_failslab+0x121/0x190 [ 288.751358] should_failslab+0x9/0x14 [ 288.755158] kmem_cache_alloc_trace+0x2d1/0x760 [ 288.759828] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.765377] ? refcount_inc_checked+0x2b/0x70 [ 288.769875] device_add+0xf51/0x1800 [ 288.773592] ? dev_set_name+0xbd/0xf0 [ 288.777399] ? get_device_parent.isra.0+0x570/0x570 [ 288.782443] rfkill_register+0x2d9/0xe40 [ 288.786523] ? state_store+0x1e0/0x1e0 [ 288.790409] ? lockdep_init_map+0x10c/0x5b0 [ 288.794770] ? rfkill_alloc+0x2a2/0x3c0 [ 288.798753] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 288.803869] ? rfkill_fop_read+0x840/0x840 [ 288.808110] ? devm_led_trigger_register+0x8f/0xd0 [ 288.813045] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.818579] ? hci_leds_init+0x104/0x1c0 [ 288.822643] hci_register_dev+0x44a/0x9d0 [ 288.826803] ? hci_conn_params_free+0x840/0x840 [ 288.831489] __vhci_create_device+0x2d0/0x5a0 [ 288.835992] vhci_write+0x2d0/0x470 [ 288.839627] __vfs_write+0x764/0xb40 [ 288.843349] ? kernel_read+0x120/0x120 [ 288.847241] ? __mutex_unlock_slowpath+0x195/0x870 [ 288.852188] ? apparmor_file_permission+0x25/0x30 [ 288.857043] ? rw_verify_area+0x118/0x360 [ 288.861208] vfs_write+0x20c/0x580 [ 288.864756] ksys_write+0x105/0x260 [ 288.868473] ? __ia32_sys_read+0xb0/0xb0 [ 288.872539] ? trace_hardirqs_off_caller+0x300/0x300 [ 288.877650] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 288.882412] __x64_sys_write+0x73/0xb0 [ 288.886310] do_syscall_64+0x1a3/0x800 [ 288.890202] ? syscall_return_slowpath+0x5f0/0x5f0 [ 288.895137] ? prepare_exit_to_usermode+0x232/0x3b0 [ 288.900163] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.905131] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.910315] RIP: 0033:0x457e39 [ 288.913507] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 288.932404] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 288.940115] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 288.947385] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 288.954654] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 288.961929] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 288.969197] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:50 executing program 4: r0 = socket(0x11, 0x2, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpgrp(0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0x3, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300)=0x7fff, 0x4) execve(0x0, &(0x7f0000000440), &(0x7f0000000700)=[&(0x7f0000000480)='\x00']) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000400)={@empty, @multicast2, 0x1, 0x1, [@loopback]}, 0x14) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r3, @ANYBLOB="00042bbd7000fbdbdf2507000000b800010044000400200001000a004e2400000001fe8000000000000000000000ebffff185b1b0000200002000a004e2300000008fe80000000000000000000000000001108000000380004001400010002004e20ac1e01010000000000000000200002000a004e2100000007fe8000000000000000000000000000bb0200000038000400200001000a004e2000000003ff020000000000000000000000000001010000001400020002004e22e00000010000000000000000180007000c00030000000000000000000800020001000000"], 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x800) bind(r0, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x7f\xff\xff\xe0\x00'}) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000004c0), 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00`\x00\x00 \x00', 0x101}) socket$key(0xf, 0x3, 0x2) 15:16:50 executing program 0: ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:16:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x400000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:50 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x6609, &(0x7f0000000040)) 15:16:50 executing program 3 (fault-call:3 fault-nth:46): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 289.080320] device lo entered promiscuous mode [ 289.143981] FAULT_INJECTION: forcing a failure. [ 289.143981] name failslab, interval 1, probability 0, space 0, times 0 [ 289.161288] CPU: 1 PID: 13962 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 289.168492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.177845] Call Trace: [ 289.180439] dump_stack+0x1db/0x2d0 [ 289.184076] ? dump_stack_print_info.cold+0x20/0x20 [ 289.189095] ? find_held_lock+0x35/0x120 [ 289.193170] ? add_lock_to_list.isra.0+0x450/0x450 [ 289.198114] should_fail.cold+0xa/0x15 [ 289.202010] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.207127] ? ___might_sleep+0x1e7/0x310 [ 289.211281] ? arch_local_save_flags+0x50/0x50 [ 289.215884] ? console_unlock+0x8ac/0x11e0 [ 289.220131] ? lockdep_hardirqs_on+0x415/0x5d0 [ 289.224723] __should_failslab+0x121/0x190 [ 289.228961] should_failslab+0x9/0x14 [ 289.232768] __kmalloc_track_caller+0x2d8/0x740 [ 289.237447] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 289.242458] ? kstrdup_const+0x66/0x80 [ 289.246350] kstrdup+0x3a/0x70 [ 289.249549] kstrdup_const+0x66/0x80 [ 289.253263] __kernfs_new_node+0xbe/0x8a0 [ 289.257412] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.262946] ? wake_up_klogd+0x11a/0x180 [ 289.267005] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 289.271769] ? vprintk_emit+0x27b/0x960 [ 289.275750] ? wake_up_klogd+0x180/0x180 [ 289.279811] ? __save_stack_trace+0x8a/0xf0 [ 289.284142] kernfs_new_node+0x99/0x130 [ 289.288130] kernfs_create_dir_ns+0x52/0x160 [ 289.292552] sysfs_create_dir_ns+0x192/0x340 [ 289.296968] ? sysfs_create_mount_point+0xa0/0xa0 [ 289.301811] ? do_raw_spin_trylock+0x270/0x270 [ 289.306407] kobject_add_internal.cold+0x129/0x6d8 [ 289.311346] ? kobj_ns_type_registered+0x60/0x60 [ 289.316115] ? device_add+0xf51/0x1800 [ 289.320009] kobject_add+0x150/0x1c0 [ 289.323826] ? kset_create_and_add+0x1a0/0x1a0 [ 289.328412] ? klist_init+0xfc/0x1e0 [ 289.332125] ? __device_link_free_srcu+0xa0/0xa0 [ 289.336884] ? klist_iter_init+0x70/0x70 [ 289.340953] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 289.346580] device_add+0x3d9/0x1800 [ 289.350302] ? get_device_parent.isra.0+0x570/0x570 [ 289.355340] rfkill_register+0x2d9/0xe40 [ 289.359404] ? state_store+0x1e0/0x1e0 [ 289.363291] ? lockdep_init_map+0x10c/0x5b0 [ 289.367643] ? rfkill_alloc+0x2a2/0x3c0 [ 289.371626] ? _raw_spin_unlock_irqrestore+0xbd/0xe0 [ 289.376740] ? rfkill_fop_read+0x840/0x840 [ 289.380976] ? devm_led_trigger_register+0x8f/0xd0 [ 289.385905] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.391441] ? hci_leds_init+0x104/0x1c0 [ 289.395524] hci_register_dev+0x44a/0x9d0 [ 289.399695] ? hci_conn_params_free+0x840/0x840 [ 289.404377] __vhci_create_device+0x2d0/0x5a0 [ 289.408879] vhci_write+0x2d0/0x470 [ 289.412516] __vfs_write+0x764/0xb40 [ 289.416237] ? kernel_read+0x120/0x120 [ 289.420130] ? __mutex_unlock_slowpath+0x195/0x870 [ 289.425070] ? apparmor_file_permission+0x25/0x30 [ 289.429920] ? rw_verify_area+0x118/0x360 [ 289.434083] vfs_write+0x20c/0x580 [ 289.437628] ksys_write+0x105/0x260 [ 289.441266] ? __ia32_sys_read+0xb0/0xb0 [ 289.445333] ? trace_hardirqs_off_caller+0x300/0x300 [ 289.450444] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 289.455203] __x64_sys_write+0x73/0xb0 [ 289.459099] do_syscall_64+0x1a3/0x800 [ 289.462993] ? syscall_return_slowpath+0x5f0/0x5f0 [ 289.467929] ? prepare_exit_to_usermode+0x232/0x3b0 [ 289.472949] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.477800] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.482985] RIP: 0033:0x457e39 [ 289.486182] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 289.505182] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 289.512910] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 289.520180] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 289.527446] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 289.534715] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 289.541987] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 289.549573] net_ratelimit: 2 callbacks suppressed [ 289.549582] protocol 88fb is buggy, dev hsr_slave_0 [ 289.550433] device lo left promiscuous mode [ 289.554532] protocol 88fb is buggy, dev hsr_slave_1 [ 289.555613] protocol 88fb is buggy, dev hsr_slave_0 [ 289.556525] protocol 88fb is buggy, dev hsr_slave_1 [ 289.557254] protocol 88fb is buggy, dev hsr_slave_0 [ 289.557534] protocol 88fb is buggy, dev hsr_slave_1 15:16:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x500000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:50 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x80086601, &(0x7f0000000040)) 15:16:50 executing program 0: ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) [ 289.600441] kobject_add_internal failed for rfkill65 (error: -12 parent: hci1) 15:16:51 executing program 3 (fault-call:3 fault-nth:47): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:51 executing program 5: r0 = socket(0x11, 0x2, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpgrp(0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0x3, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300)=0x7fff, 0x4) execve(0x0, &(0x7f0000000440), &(0x7f0000000700)=[&(0x7f0000000480)='\x00']) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000400)={@empty, @multicast2, 0x1, 0x1, [@loopback]}, 0x14) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r3, @ANYBLOB="00042bbd7000fbdbdf2507000000b800010044000400200001000a004e2400000001fe8000000000000000000000ebffff185b1b0000200002000a004e2300000008fe80000000000000000000000000001108000000380004001400010002004e20ac1e01010000000000000000200002000a004e2100000007fe8000000000000000000000000000bb0200000038000400200001000a004e2000000003ff020000000000000000000000000001010000001400020002004e22e00000010000000000000000180007000c00030000000000000000000800020001000000"], 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x800) bind(r0, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x7f\xff\xff\xe0\x00'}) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000004c0), 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00`\x00\x00 \x00', 0x101}) socket$key(0xf, 0x3, 0x2) 15:16:51 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x80086603, &(0x7f0000000040)) 15:16:51 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x80087601, &(0x7f0000000040)) [ 289.765539] FAULT_INJECTION: forcing a failure. [ 289.765539] name failslab, interval 1, probability 0, space 0, times 0 [ 289.824203] CPU: 1 PID: 13984 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 289.831415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.840906] Call Trace: [ 289.843505] dump_stack+0x1db/0x2d0 [ 289.847143] ? dump_stack_print_info.cold+0x20/0x20 [ 289.852165] ? __lock_is_held+0xb6/0x140 [ 289.856240] should_fail.cold+0xa/0x15 [ 289.860143] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.865255] ? ___might_sleep+0x1e7/0x310 [ 289.869419] ? arch_local_save_flags+0x50/0x50 [ 289.874013] __should_failslab+0x121/0x190 [ 289.878259] should_failslab+0x9/0x14 [ 289.882061] kmem_cache_alloc+0x2be/0x710 [ 289.886210] ? memcpy+0x46/0x50 [ 289.889494] ? kstrdup+0x5a/0x70 [ 289.892862] __kernfs_new_node+0xfe/0x8a0 [ 289.897006] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.902548] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 289.907316] ? vprintk_emit+0x27b/0x960 [ 289.911297] ? wake_up_klogd+0x180/0x180 [ 289.915357] ? __save_stack_trace+0x8a/0xf0 [ 289.919685] kernfs_new_node+0x99/0x130 [ 289.923667] kernfs_create_dir_ns+0x52/0x160 [ 289.928085] sysfs_create_dir_ns+0x192/0x340 [ 289.932502] ? sysfs_create_mount_point+0xa0/0xa0 [ 289.937346] ? do_raw_spin_trylock+0x270/0x270 [ 289.941944] kobject_add_internal.cold+0x129/0x6d8 [ 289.946887] ? kobj_ns_type_registered+0x60/0x60 [ 289.951646] ? device_add+0xf51/0x1800 [ 289.955543] kobject_add+0x150/0x1c0 [ 289.959262] ? kset_create_and_add+0x1a0/0x1a0 [ 289.963848] ? klist_init+0xfc/0x1e0 [ 289.967567] ? __device_link_free_srcu+0xa0/0xa0 [ 289.972333] ? klist_iter_init+0x70/0x70 [ 289.976398] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 289.982213] device_add+0x3d9/0x1800 [ 289.985939] ? get_device_parent.isra.0+0x570/0x570 [ 289.990979] rfkill_register+0x2d9/0xe40 [ 289.995047] ? state_store+0x1e0/0x1e0 [ 289.998936] ? lockdep_init_map+0x10c/0x5b0 [ 290.003271] ? rfkill_alloc+0x2a2/0x3c0 [ 290.007250] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 290.012357] ? rfkill_fop_read+0x840/0x840 [ 290.016604] ? devm_led_trigger_register+0x8f/0xd0 [ 290.021541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.027079] ? hci_leds_init+0x104/0x1c0 [ 290.031156] hci_register_dev+0x44a/0x9d0 [ 290.035309] ? hci_conn_params_free+0x840/0x840 [ 290.039995] __vhci_create_device+0x2d0/0x5a0 [ 290.044497] vhci_write+0x2d0/0x470 [ 290.048133] __vfs_write+0x764/0xb40 [ 290.051854] ? kernel_read+0x120/0x120 [ 290.055744] ? __mutex_unlock_slowpath+0x195/0x870 [ 290.060687] ? apparmor_file_permission+0x25/0x30 [ 290.065538] ? rw_verify_area+0x118/0x360 [ 290.069697] vfs_write+0x20c/0x580 [ 290.073242] ksys_write+0x105/0x260 [ 290.076873] ? __ia32_sys_read+0xb0/0xb0 [ 290.080941] ? trace_hardirqs_off_caller+0x300/0x300 [ 290.086048] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 290.090813] __x64_sys_write+0x73/0xb0 [ 290.094704] do_syscall_64+0x1a3/0x800 [ 290.098606] ? syscall_return_slowpath+0x5f0/0x5f0 [ 290.103537] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 290.108554] ? __switch_to_asm+0x34/0x70 [ 290.112632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.117481] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.122667] RIP: 0033:0x457e39 [ 290.125866] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.145334] RSP: 002b:00007fae63f98c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 290.153046] RAX: ffffffffffffffda RBX: 00007fae63f98c90 RCX: 0000000000457e39 [ 290.160317] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 290.167591] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 290.174858] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63f996d4 [ 290.182130] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 290.239964] kobject_add_internal failed for rfkill66 (error: -12 parent: hci1) [ 290.517708] device lo entered promiscuous mode 15:16:51 executing program 4: bind$alg(0xffffffffffffffff, 0x0, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x40000000013f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000640)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x400, @dev={0xfe, 0x80, [], 0xb}}}}, 0x48) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000002c0)={0x3, 0x40, 0xfa00, {{}, {0xa, 0x0, 0x0, @local}}}, 0x48) getpgrp(0xffffffffffffffff) 15:16:51 executing program 5: r0 = socket(0x11, 0x2, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpgrp(0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0x3, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300)=0x7fff, 0x4) execve(0x0, &(0x7f0000000440), &(0x7f0000000700)=[&(0x7f0000000480)='\x00']) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000400)={@empty, @multicast2, 0x1, 0x1, [@loopback]}, 0x14) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r3, @ANYBLOB="00042bbd7000fbdbdf2507000000b800010044000400200001000a004e2400000001fe8000000000000000000000ebffff185b1b0000200002000a004e2300000008fe80000000000000000000000000001108000000380004001400010002004e20ac1e01010000000000000000200002000a004e2100000007fe8000000000000000000000000000bb0200000038000400200001000a004e2000000003ff020000000000000000000000000001010000001400020002004e22e00000010000000000000000180007000c00030000000000000000000800020001000000"], 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x800) bind(r0, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x7f\xff\xff\xe0\x00'}) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000004c0), 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00`\x00\x00 \x00', 0x101}) socket$key(0xf, 0x3, 0x2) 15:16:51 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x800c6613, &(0x7f0000000040)) 15:16:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x800000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:51 executing program 0: ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:16:51 executing program 3 (fault-call:3 fault-nth:48): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:52 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc0045878, &(0x7f0000000040)) [ 290.634575] FAULT_INJECTION: forcing a failure. [ 290.634575] name failslab, interval 1, probability 0, space 0, times 0 15:16:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x900000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:52 executing program 0: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 290.718437] CPU: 1 PID: 13996 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 290.725689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.725696] Call Trace: [ 290.725715] dump_stack+0x1db/0x2d0 [ 290.725734] ? dump_stack_print_info.cold+0x20/0x20 [ 290.737653] ? __kmalloc_track_caller+0x577/0x740 [ 290.737680] should_fail.cold+0xa/0x15 [ 290.746293] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 290.746319] ? ___might_sleep+0x1e7/0x310 [ 290.755103] ? arch_local_save_flags+0x50/0x50 [ 290.755130] __should_failslab+0x121/0x190 [ 290.773150] should_failslab+0x9/0x14 [ 290.776955] kmem_cache_alloc+0x2be/0x710 [ 290.781100] ? memcpy+0x46/0x50 [ 290.784382] ? kstrdup+0x5a/0x70 [ 290.787751] __kernfs_new_node+0xfe/0x8a0 [ 290.791896] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.797433] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 290.802201] ? vprintk_emit+0x27b/0x960 [ 290.806179] ? wake_up_klogd+0x180/0x180 [ 290.810242] ? __save_stack_trace+0x8a/0xf0 [ 290.814587] kernfs_new_node+0x99/0x130 [ 290.818572] kernfs_create_dir_ns+0x52/0x160 [ 290.822989] sysfs_create_dir_ns+0x192/0x340 [ 290.827404] ? sysfs_create_mount_point+0xa0/0xa0 [ 290.832251] ? do_raw_spin_trylock+0x270/0x270 [ 290.836854] kobject_add_internal.cold+0x129/0x6d8 [ 290.841791] ? kobj_ns_type_registered+0x60/0x60 [ 290.846552] ? device_add+0xf51/0x1800 [ 290.850447] kobject_add+0x150/0x1c0 [ 290.854165] ? kset_create_and_add+0x1a0/0x1a0 [ 290.858751] ? klist_init+0xfc/0x1e0 [ 290.862462] ? __device_link_free_srcu+0xa0/0xa0 [ 290.867216] ? klist_iter_init+0x70/0x70 [ 290.871281] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.876821] device_add+0x3d9/0x1800 [ 290.880548] ? get_device_parent.isra.0+0x570/0x570 [ 290.885589] rfkill_register+0x2d9/0xe40 [ 290.889776] ? state_store+0x1e0/0x1e0 [ 290.893667] ? lockdep_init_map+0x10c/0x5b0 [ 290.897993] ? rfkill_alloc+0x2a2/0x3c0 [ 290.901967] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 290.907090] ? rfkill_fop_read+0x840/0x840 [ 290.911324] ? devm_led_trigger_register+0x8f/0xd0 [ 290.916252] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.921792] ? hci_leds_init+0x104/0x1c0 [ 290.925861] hci_register_dev+0x44a/0x9d0 [ 290.930028] ? hci_conn_params_free+0x840/0x840 [ 290.934712] __vhci_create_device+0x2d0/0x5a0 [ 290.939210] vhci_write+0x2d0/0x470 [ 290.942844] __vfs_write+0x764/0xb40 [ 290.946567] ? kernel_read+0x120/0x120 [ 290.950455] ? __mutex_unlock_slowpath+0x195/0x870 [ 290.955394] ? apparmor_file_permission+0x25/0x30 [ 290.960247] ? rw_verify_area+0x118/0x360 [ 290.964401] vfs_write+0x20c/0x580 [ 290.967950] ksys_write+0x105/0x260 [ 290.971578] ? __ia32_sys_read+0xb0/0xb0 [ 290.975643] ? trace_hardirqs_off_caller+0x300/0x300 [ 290.980754] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 290.985529] __x64_sys_write+0x73/0xb0 [ 290.989421] do_syscall_64+0x1a3/0x800 [ 290.993311] ? syscall_return_slowpath+0x5f0/0x5f0 [ 290.998253] ? prepare_exit_to_usermode+0x232/0x3b0 [ 291.003274] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 291.008129] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 291.013318] RIP: 0033:0x457e39 [ 291.016519] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 291.035414] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 291.043122] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 291.050385] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 291.057649] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:16:52 executing program 4: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptmx\x00', 0x0, 0x0) [ 291.064916] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 291.072183] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:52 executing program 4: timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) timer_settime(0x0, 0x0, 0x0, &(0x7f0000000080)) 15:16:52 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc0045878, &(0x7f0000000040)) 15:16:52 executing program 3 (fault-call:3 fault-nth:49): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 291.166251] kobject_add_internal failed for rfkill67 (error: -12 parent: hci1) [ 291.301627] FAULT_INJECTION: forcing a failure. [ 291.301627] name failslab, interval 1, probability 0, space 0, times 0 [ 291.362831] CPU: 0 PID: 14024 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 291.370042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.379391] Call Trace: [ 291.381982] dump_stack+0x1db/0x2d0 [ 291.385616] ? dump_stack_print_info.cold+0x20/0x20 [ 291.390637] ? lock_downgrade+0x910/0x910 [ 291.394801] should_fail.cold+0xa/0x15 [ 291.398702] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 291.403818] ? ___might_sleep+0x1e7/0x310 [ 291.407972] ? arch_local_save_flags+0x50/0x50 [ 291.412558] ? __lock_is_held+0xb6/0x140 [ 291.416630] __should_failslab+0x121/0x190 [ 291.420869] should_failslab+0x9/0x14 [ 291.424670] kmem_cache_alloc+0x2be/0x710 [ 291.428834] ? mutex_unlock+0xd/0x10 [ 291.432550] ? kernfs_activate+0x21c/0x2c0 [ 291.436806] __kernfs_new_node+0xfe/0x8a0 [ 291.440973] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 291.445736] ? add_lock_to_list.isra.0+0x450/0x450 [ 291.450676] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.456221] ? kernfs_create_dir_ns+0x113/0x160 [ 291.460898] ? acpi_get_bus_type+0xa0/0xd0 [ 291.465141] ? find_held_lock+0x35/0x120 [ 291.469206] ? acpi_get_bus_type+0xa0/0xd0 [ 291.473454] kernfs_new_node+0x99/0x130 [ 291.477452] __kernfs_create_file+0x51/0x340 [ 291.481879] sysfs_add_file_mode_ns+0x222/0x560 [ 291.486563] sysfs_create_file_ns+0x19e/0x2a0 [ 291.491060] ? __down_interruptible+0x740/0x740 [ 291.495740] ? sysfs_add_file_mode_ns+0x560/0x560 [ 291.500582] ? kset_create_and_add+0x1a0/0x1a0 [ 291.505175] ? dev_fwnode+0xd/0x40 [ 291.508726] device_create_file+0xfa/0x1e0 [ 291.512971] device_add+0x5d0/0x1800 [ 291.516693] ? get_device_parent.isra.0+0x570/0x570 [ 291.521728] rfkill_register+0x2d9/0xe40 [ 291.525793] ? state_store+0x1e0/0x1e0 [ 291.529682] ? lockdep_init_map+0x10c/0x5b0 [ 291.534015] ? rfkill_alloc+0x2a2/0x3c0 [ 291.537995] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 291.543105] ? rfkill_fop_read+0x840/0x840 [ 291.547342] ? devm_led_trigger_register+0x8f/0xd0 [ 291.552272] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.557812] ? hci_leds_init+0x104/0x1c0 [ 291.561890] hci_register_dev+0x44a/0x9d0 [ 291.566047] ? hci_conn_params_free+0x840/0x840 [ 291.570730] __vhci_create_device+0x2d0/0x5a0 [ 291.575237] vhci_write+0x2d0/0x470 [ 291.578873] __vfs_write+0x764/0xb40 [ 291.582591] ? kernel_read+0x120/0x120 [ 291.586490] ? __mutex_unlock_slowpath+0x195/0x870 [ 291.591429] ? apparmor_file_permission+0x25/0x30 [ 291.596303] ? rw_verify_area+0x118/0x360 [ 291.600485] vfs_write+0x20c/0x580 [ 291.604037] ksys_write+0x105/0x260 [ 291.607666] ? __ia32_sys_read+0xb0/0xb0 [ 291.611731] ? trace_hardirqs_off_caller+0x300/0x300 [ 291.616834] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 291.621610] __x64_sys_write+0x73/0xb0 [ 291.625507] do_syscall_64+0x1a3/0x800 [ 291.629399] ? syscall_return_slowpath+0x5f0/0x5f0 [ 291.634331] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 291.639348] ? __switch_to_asm+0x34/0x70 [ 291.643413] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 291.648270] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 291.653473] RIP: 0033:0x457e39 [ 291.656666] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 291.675570] RSP: 002b:00007fae63f98c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 291.683282] RAX: ffffffffffffffda RBX: 00007fae63f98c90 RCX: 0000000000457e39 [ 291.690550] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 291.697816] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 291.705089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63f996d4 [ 291.712355] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 291.998182] device lo entered promiscuous mode 15:16:53 executing program 5: r0 = socket(0x11, 0x2, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpgrp(0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0x3, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r1 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300)=0x7fff, 0x4) execve(0x0, &(0x7f0000000440), &(0x7f0000000700)=[&(0x7f0000000480)='\x00']) munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000400)={@empty, @multicast2, 0x1, 0x1, [@loopback]}, 0x14) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000000), 0x2) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x14000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="e4000000", @ANYRES16=r3, @ANYBLOB="00042bbd7000fbdbdf2507000000b800010044000400200001000a004e2400000001fe8000000000000000000000ebffff185b1b0000200002000a004e2300000008fe80000000000000000000000000001108000000380004001400010002004e20ac1e01010000000000000000200002000a004e2100000007fe8000000000000000000000000000bb0200000038000400200001000a004e2000000003ff020000000000000000000000000001010000001400020002004e22e00000010000000000000000180007000c00030000000000000000000800020001000000"], 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x800) bind(r0, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00\x00\x00\x00\x00\x7f\xff\xff\xe0\x00'}) setsockopt$inet_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f00000004c0), 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00\x00\x00`\x00\x00 \x00', 0x101}) socket$key(0xf, 0x3, 0x2) 15:16:53 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc0185879, &(0x7f0000000040)) 15:16:53 executing program 0: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:53 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc0189436, &(0x7f0000000040)) 15:16:53 executing program 0: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:53 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc020660b, &(0x7f0000000040)) [ 292.203444] device lo left promiscuous mode 15:16:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xd00000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:54 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc028660f, &(0x7f0000000040)) 15:16:54 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x6685) [ 293.131468] device lo entered promiscuous mode 15:16:54 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:54 executing program 3 (fault-call:3 fault-nth:50): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:54 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$kcm(0xa, 0x3, 0x11) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)='/group.stat\x00', 0x2761, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40086610, 0x400006) 15:16:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x1000000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:54 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0xc0c0583b, &(0x7f0000000040)) [ 293.271729] FAULT_INJECTION: forcing a failure. [ 293.271729] name failslab, interval 1, probability 0, space 0, times 0 15:16:54 executing program 5: syz_emit_ethernet(0x1d2, &(0x7f0000000000)={@local, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x223}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4032, 0x0, @local={0xac, 0x223}, @dev, {[@timestamp={0x8, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, 0x0) 15:16:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x2900000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 293.322741] CPU: 1 PID: 14054 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 293.329956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.339324] Call Trace: [ 293.341922] dump_stack+0x1db/0x2d0 [ 293.345565] ? dump_stack_print_info.cold+0x20/0x20 [ 293.350589] ? print_usage_bug+0xd0/0xd0 [ 293.354660] ? kernfs_activate+0x8f/0x2c0 [ 293.358831] should_fail.cold+0xa/0x15 [ 293.362730] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 293.367851] ? ___might_sleep+0x1e7/0x310 15:16:54 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='gid_map\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) write$sndseq(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_pts(r1, 0x4000000000000002) dup3(r2, r0, 0x0) write$P9_RLOPEN(r0, &(0x7f0000000180)={0x18}, 0xfffffefd) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) close(r1) [ 293.372004] ? arch_local_save_flags+0x50/0x50 [ 293.376594] ? mark_held_locks+0x100/0x100 [ 293.380841] __should_failslab+0x121/0x190 [ 293.385083] should_failslab+0x9/0x14 [ 293.388888] kmem_cache_alloc+0x2be/0x710 [ 293.393044] ? __mutex_unlock_slowpath+0x195/0x870 [ 293.397987] __kernfs_new_node+0xfe/0x8a0 [ 293.402145] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 293.406911] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 [ 293.412370] ? find_held_lock+0x35/0x120 [ 293.416440] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 15:16:54 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x6685) [ 293.421893] ? lock_acquire+0x1db/0x570 [ 293.425889] kernfs_new_node+0x99/0x130 [ 293.429851] kernfs_create_link+0xdd/0x250 [ 293.434090] sysfs_do_create_link_sd.isra.0+0x90/0x140 [ 293.439375] sysfs_create_link+0x65/0xc0 [ 293.443443] device_add+0x6ed/0x1800 [ 293.447167] ? get_device_parent.isra.0+0x570/0x570 [ 293.452211] rfkill_register+0x2d9/0xe40 [ 293.456281] ? state_store+0x1e0/0x1e0 [ 293.460177] ? lockdep_init_map+0x10c/0x5b0 [ 293.464510] ? rfkill_alloc+0x2a2/0x3c0 [ 293.468486] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 15:16:54 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x6685) 15:16:54 executing program 5: r0 = syz_open_dev$video(&(0x7f0000000280)='/dev/video#\x00', 0x9, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000000)={0x0, 0x34524742, 0x140, 0xb4}) [ 293.473595] ? rfkill_fop_read+0x840/0x840 [ 293.477843] ? devm_led_trigger_register+0x8f/0xd0 [ 293.482779] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 293.488335] ? hci_leds_init+0x104/0x1c0 [ 293.492410] hci_register_dev+0x44a/0x9d0 [ 293.496573] ? hci_conn_params_free+0x840/0x840 [ 293.501260] __vhci_create_device+0x2d0/0x5a0 [ 293.505777] vhci_write+0x2d0/0x470 [ 293.509413] __vfs_write+0x764/0xb40 [ 293.513134] ? kernel_read+0x120/0x120 [ 293.517031] ? __mutex_unlock_slowpath+0x195/0x870 15:16:54 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x6685) [ 293.521981] ? apparmor_file_permission+0x25/0x30 [ 293.526855] ? rw_verify_area+0x118/0x360 [ 293.531007] vfs_write+0x20c/0x580 [ 293.534556] ksys_write+0x105/0x260 [ 293.538204] ? __ia32_sys_read+0xb0/0xb0 [ 293.542273] ? trace_hardirqs_off_caller+0x300/0x300 [ 293.547478] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 293.552261] __x64_sys_write+0x73/0xb0 [ 293.556267] do_syscall_64+0x1a3/0x800 [ 293.560177] ? syscall_return_slowpath+0x5f0/0x5f0 [ 293.565112] ? prepare_exit_to_usermode+0x232/0x3b0 [ 293.570139] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 293.574997] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 293.580188] RIP: 0033:0x457e39 [ 293.583381] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 293.602282] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 293.609991] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 15:16:55 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 293.617241] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 293.624493] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 293.631741] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 293.638988] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:55 executing program 3 (fault-call:3 fault-nth:51): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:55 executing program 5: syz_emit_ethernet(0x1d2, &(0x7f0000000000)={@local, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x223}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0xb, 0x4, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4033, 0x0, @local={0xac, 0x223}, @dev, {[@timestamp={0x8, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, 0x0) 15:16:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0xfdfdffff}) 15:16:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x3000000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:55 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x3f00000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0xfffffdfd}) 15:16:55 executing program 5: r0 = socket$kcm(0x29, 0x1000000000002, 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f00000000c0)=0xffff, 0x4) 15:16:55 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 293.852866] FAULT_INJECTION: forcing a failure. [ 293.852866] name failslab, interval 1, probability 0, space 0, times 0 15:16:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0xfdfdffff00000000}) [ 294.067651] CPU: 0 PID: 14094 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 294.074950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.084311] Call Trace: [ 294.084334] dump_stack+0x1db/0x2d0 [ 294.084356] ? dump_stack_print_info.cold+0x20/0x20 [ 294.084376] ? __lock_is_held+0xb6/0x140 [ 294.084397] should_fail.cold+0xa/0x15 [ 294.103511] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 294.108626] ? ___might_sleep+0x1e7/0x310 [ 294.112778] ? arch_local_save_flags+0x50/0x50 [ 294.118279] __should_failslab+0x121/0x190 [ 294.122516] should_failslab+0x9/0x14 [ 294.126318] kmem_cache_alloc+0x2be/0x710 [ 294.130466] ? memcpy+0x46/0x50 [ 294.133749] ? kstrdup+0x5a/0x70 [ 294.137125] __kernfs_new_node+0xfe/0x8a0 [ 294.141284] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 294.146286] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 [ 294.151737] ? find_held_lock+0x35/0x120 [ 294.155800] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 [ 294.161267] ? lock_acquire+0x1db/0x570 [ 294.165274] kernfs_new_node+0x99/0x130 [ 294.169264] kernfs_create_link+0xdd/0x250 [ 294.173511] sysfs_do_create_link_sd.isra.0+0x90/0x140 [ 294.178876] sysfs_create_link+0x65/0xc0 [ 294.182937] device_add+0x78e/0x1800 [ 294.186662] ? get_device_parent.isra.0+0x570/0x570 [ 294.191697] rfkill_register+0x2d9/0xe40 [ 294.195760] ? state_store+0x1e0/0x1e0 [ 294.199644] ? lockdep_init_map+0x10c/0x5b0 [ 294.203973] ? rfkill_alloc+0x2a2/0x3c0 [ 294.207949] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 294.213066] ? rfkill_fop_read+0x840/0x840 [ 294.217302] ? devm_led_trigger_register+0x8f/0xd0 [ 294.222245] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.227788] ? hci_leds_init+0x104/0x1c0 [ 294.231859] hci_register_dev+0x44a/0x9d0 [ 294.236017] ? hci_conn_params_free+0x840/0x840 [ 294.240699] __vhci_create_device+0x2d0/0x5a0 [ 294.245213] vhci_write+0x2d0/0x470 [ 294.248852] __vfs_write+0x764/0xb40 [ 294.252571] ? kernel_read+0x120/0x120 [ 294.256463] ? __mutex_unlock_slowpath+0x195/0x870 [ 294.261414] ? apparmor_file_permission+0x25/0x30 [ 294.266284] ? rw_verify_area+0x118/0x360 [ 294.270435] vfs_write+0x20c/0x580 [ 294.273982] ksys_write+0x105/0x260 [ 294.277615] ? __ia32_sys_read+0xb0/0xb0 [ 294.281677] ? trace_hardirqs_off_caller+0x300/0x300 [ 294.286785] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 294.291548] __x64_sys_write+0x73/0xb0 [ 294.295443] do_syscall_64+0x1a3/0x800 [ 294.299333] ? syscall_return_slowpath+0x5f0/0x5f0 [ 294.304273] ? prepare_exit_to_usermode+0x232/0x3b0 [ 294.309293] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 294.314146] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.319334] RIP: 0033:0x457e39 [ 294.322529] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.341439] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 294.349143] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 294.356410] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 15:16:55 executing program 3 (fault-call:3 fault-nth:52): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:55 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x4000000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:55 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:55 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0xfdfdffff}) [ 294.363678] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 294.370942] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 294.378210] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0xfffffdfd}) 15:16:55 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 294.497600] FAULT_INJECTION: forcing a failure. [ 294.497600] name failslab, interval 1, probability 0, space 0, times 0 15:16:55 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 294.581313] CPU: 1 PID: 14120 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 294.588533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.597882] Call Trace: [ 294.600495] dump_stack+0x1db/0x2d0 [ 294.604135] ? dump_stack_print_info.cold+0x20/0x20 [ 294.609158] ? lock_release+0xc40/0xc40 [ 294.609181] should_fail.cold+0xa/0x15 [ 294.609209] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 294.609229] ? ___might_sleep+0x1e7/0x310 [ 294.622173] ? arch_local_save_flags+0x50/0x50 15:16:56 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 294.622207] __should_failslab+0x121/0x190 [ 294.622226] should_failslab+0x9/0x14 [ 294.622242] __kmalloc_track_caller+0x2d8/0x740 [ 294.622267] ? kstrdup_const+0x66/0x80 [ 294.647507] kstrdup+0x3a/0x70 [ 294.650709] kstrdup_const+0x66/0x80 [ 294.654429] __kernfs_new_node+0xbe/0x8a0 [ 294.658587] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 294.663353] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 [ 294.668802] ? find_held_lock+0x35/0x120 [ 294.668820] ? sysfs_do_create_link_sd.isra.0+0x82/0x140 [ 294.668837] ? lock_acquire+0x1db/0x570 [ 294.668862] kernfs_new_node+0x99/0x130 [ 294.686275] kernfs_create_link+0xdd/0x250 [ 294.686296] sysfs_do_create_link_sd.isra.0+0x90/0x140 [ 294.686313] sysfs_create_link+0x65/0xc0 [ 294.686330] device_add+0x78e/0x1800 [ 294.703563] ? get_device_parent.isra.0+0x570/0x570 [ 294.708596] rfkill_register+0x2d9/0xe40 [ 294.712670] ? state_store+0x1e0/0x1e0 [ 294.716572] ? lockdep_init_map+0x10c/0x5b0 [ 294.720905] ? rfkill_alloc+0x2a2/0x3c0 [ 294.724880] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 294.724901] ? rfkill_fop_read+0x840/0x840 [ 294.724920] ? devm_led_trigger_register+0x8f/0xd0 [ 294.724938] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.734241] ? hci_leds_init+0x104/0x1c0 [ 294.734262] hci_register_dev+0x44a/0x9d0 [ 294.734282] ? hci_conn_params_free+0x840/0x840 [ 294.757579] __vhci_create_device+0x2d0/0x5a0 [ 294.762079] vhci_write+0x2d0/0x470 [ 294.765714] __vfs_write+0x764/0xb40 [ 294.769432] ? kernel_read+0x120/0x120 [ 294.773321] ? __mutex_unlock_slowpath+0x195/0x870 [ 294.778264] ? apparmor_file_permission+0x25/0x30 [ 294.783115] ? rw_verify_area+0x118/0x360 [ 294.787264] vfs_write+0x20c/0x580 [ 294.790808] ksys_write+0x105/0x260 [ 294.794442] ? __ia32_sys_read+0xb0/0xb0 [ 294.798503] ? trace_hardirqs_off_caller+0x300/0x300 [ 294.803611] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 294.808371] __x64_sys_write+0x73/0xb0 [ 294.812261] do_syscall_64+0x1a3/0x800 [ 294.816152] ? syscall_return_slowpath+0x5f0/0x5f0 [ 294.821086] ? prepare_exit_to_usermode+0x232/0x3b0 [ 294.826106] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 294.830953] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.836136] RIP: 0033:0x457e39 [ 294.839343] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.858264] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 294.865973] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 294.873239] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 294.880505] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 294.887771] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 294.895039] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:56 executing program 3 (fault-call:3 fault-nth:53): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:56 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) pipe2(0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:56 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0xfdfdffff00000000}) 15:16:56 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xd400000000000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:56 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:56 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:56 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0xfdfdffff}) 15:16:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xf6ffffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 295.066939] FAULT_INJECTION: forcing a failure. [ 295.066939] name failslab, interval 1, probability 0, space 0, times 0 [ 295.121452] CPU: 0 PID: 14144 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 295.128668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.138021] Call Trace: [ 295.140612] dump_stack+0x1db/0x2d0 [ 295.144255] ? dump_stack_print_info.cold+0x20/0x20 [ 295.149276] ? add_lock_to_list.isra.0+0x450/0x450 [ 295.154246] ? kernfs_activate+0x8f/0x2c0 [ 295.158409] should_fail.cold+0xa/0x15 [ 295.162303] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 295.167418] ? ___might_sleep+0x1e7/0x310 [ 295.171571] ? arch_local_save_flags+0x50/0x50 [ 295.176176] __should_failslab+0x121/0x190 [ 295.180418] should_failslab+0x9/0x14 [ 295.184223] kmem_cache_alloc+0x2be/0x710 [ 295.188375] ? __mutex_unlock_slowpath+0x195/0x870 [ 295.193319] __kernfs_new_node+0xfe/0x8a0 [ 295.197471] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 295.202237] ? mutex_unlock+0xd/0x10 [ 295.205952] ? kernfs_activate+0x21c/0x2c0 [ 295.210194] ? kernfs_walk_and_get_ns+0x340/0x340 [ 295.215037] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 295.220615] ? kernfs_link_sibling+0x210/0x420 [ 295.225205] kernfs_new_node+0x99/0x130 [ 295.229194] __kernfs_create_file+0x51/0x340 [ 295.233606] sysfs_add_file_mode_ns+0x222/0x560 [ 295.238287] internal_create_group+0x3d2/0xd80 [ 295.242874] ? kernfs_link_sibling+0x210/0x420 [ 295.247483] ? remove_files.isra.0+0x190/0x190 [ 295.252067] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.252101] ? kernfs_create_link+0x1d2/0x250 [ 295.252126] sysfs_create_groups+0x9b/0x141 [ 295.252158] device_add+0x83e/0x1800 [ 295.252179] ? get_device_parent.isra.0+0x570/0x570 [ 295.252210] rfkill_register+0x2d9/0xe40 [ 295.262208] ? state_store+0x1e0/0x1e0 [ 295.262225] ? lockdep_init_map+0x10c/0x5b0 [ 295.262249] ? rfkill_alloc+0x2a2/0x3c0 [ 295.262264] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 295.262284] ? rfkill_fop_read+0x840/0x840 [ 295.262302] ? devm_led_trigger_register+0x8f/0xd0 [ 295.262317] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.262333] ? hci_leds_init+0x104/0x1c0 [ 295.315280] hci_register_dev+0x44a/0x9d0 [ 295.319433] ? hci_conn_params_free+0x840/0x840 [ 295.324121] __vhci_create_device+0x2d0/0x5a0 [ 295.328634] vhci_write+0x2d0/0x470 [ 295.332270] __vfs_write+0x764/0xb40 [ 295.336000] ? kernel_read+0x120/0x120 [ 295.339888] ? __mutex_unlock_slowpath+0x195/0x870 [ 295.344831] ? apparmor_file_permission+0x25/0x30 [ 295.349678] ? rw_verify_area+0x118/0x360 [ 295.353828] vfs_write+0x20c/0x580 [ 295.357380] ksys_write+0x105/0x260 [ 295.361016] ? __ia32_sys_read+0xb0/0xb0 [ 295.365081] ? trace_hardirqs_off_caller+0x300/0x300 [ 295.370187] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 295.374953] __x64_sys_write+0x73/0xb0 [ 295.378843] do_syscall_64+0x1a3/0x800 [ 295.382739] ? syscall_return_slowpath+0x5f0/0x5f0 [ 295.387677] ? prepare_exit_to_usermode+0x232/0x3b0 [ 295.392706] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 295.397563] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.402838] RIP: 0033:0x457e39 15:16:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfbffffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:56 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:56 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 295.406035] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 295.424929] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 295.424944] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 295.424953] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 295.424962] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 295.424972] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 295.424980] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:56 executing program 3 (fault-call:3 fault-nth:54): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:56 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:56 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0xfffffdfd}) 15:16:56 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfcffffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:56 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:56 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:57 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0xfdfdffff00000000}) 15:16:57 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:57 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 295.632616] FAULT_INJECTION: forcing a failure. [ 295.632616] name failslab, interval 1, probability 0, space 0, times 0 [ 295.675155] CPU: 0 PID: 14173 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 295.682382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.691736] Call Trace: [ 295.694333] dump_stack+0x1db/0x2d0 [ 295.697976] ? dump_stack_print_info.cold+0x20/0x20 [ 295.702998] ? add_lock_to_list.isra.0+0x450/0x450 [ 295.707939] ? kernfs_activate+0x8f/0x2c0 [ 295.712119] should_fail.cold+0xa/0x15 [ 295.716017] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 295.721145] ? ___might_sleep+0x1e7/0x310 [ 295.725289] ? arch_local_save_flags+0x50/0x50 [ 295.729875] __should_failslab+0x121/0x190 [ 295.734119] should_failslab+0x9/0x14 [ 295.737908] kmem_cache_alloc+0x2be/0x710 [ 295.742045] ? __mutex_unlock_slowpath+0x195/0x870 [ 295.746987] __kernfs_new_node+0xfe/0x8a0 [ 295.751133] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 295.755887] ? mutex_unlock+0xd/0x10 [ 295.759591] ? kernfs_activate+0x21c/0x2c0 [ 295.763821] ? kernfs_walk_and_get_ns+0x340/0x340 [ 295.768657] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 295.774182] ? kernfs_link_sibling+0x210/0x420 [ 295.778761] kernfs_new_node+0x99/0x130 [ 295.782733] __kernfs_create_file+0x51/0x340 [ 295.787138] sysfs_add_file_mode_ns+0x222/0x560 [ 295.791810] internal_create_group+0x3d2/0xd80 [ 295.796384] ? kernfs_link_sibling+0x210/0x420 [ 295.800965] ? remove_files.isra.0+0x190/0x190 [ 295.805541] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.811074] ? kernfs_create_link+0x1d2/0x250 [ 295.815585] sysfs_create_groups+0x9b/0x141 [ 295.819905] device_add+0x83e/0x1800 [ 295.823619] ? get_device_parent.isra.0+0x570/0x570 [ 295.828644] rfkill_register+0x2d9/0xe40 [ 295.832700] ? state_store+0x1e0/0x1e0 [ 295.836577] ? lockdep_init_map+0x10c/0x5b0 [ 295.840899] ? rfkill_alloc+0x2a2/0x3c0 [ 295.844864] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 295.849961] ? rfkill_fop_read+0x840/0x840 [ 295.854189] ? devm_led_trigger_register+0x8f/0xd0 [ 295.859117] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.864650] ? hci_leds_init+0x104/0x1c0 [ 295.868711] hci_register_dev+0x44a/0x9d0 [ 295.872855] ? hci_conn_params_free+0x840/0x840 [ 295.877527] __vhci_create_device+0x2d0/0x5a0 [ 295.882019] vhci_write+0x2d0/0x470 [ 295.885643] __vfs_write+0x764/0xb40 [ 295.889353] ? kernel_read+0x120/0x120 [ 295.893232] ? __mutex_unlock_slowpath+0x195/0x870 [ 295.898160] ? apparmor_file_permission+0x25/0x30 [ 295.903002] ? rw_verify_area+0x118/0x360 [ 295.907145] vfs_write+0x20c/0x580 [ 295.910699] ksys_write+0x105/0x260 [ 295.914330] ? __ia32_sys_read+0xb0/0xb0 [ 295.918385] ? trace_hardirqs_off_caller+0x300/0x300 [ 295.923489] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 295.928237] __x64_sys_write+0x73/0xb0 [ 295.932120] do_syscall_64+0x1a3/0x800 [ 295.936000] ? syscall_return_slowpath+0x5f0/0x5f0 [ 295.940921] ? prepare_exit_to_usermode+0x232/0x3b0 [ 295.945934] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 295.950863] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.956041] RIP: 0033:0x457e39 15:16:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfdfdffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 295.959223] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 295.978624] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 295.986322] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 295.993579] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 296.000840] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.008105] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 296.015361] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:57 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:57 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfdfdffff}) 15:16:57 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) 15:16:57 executing program 3 (fault-call:3 fault-nth:55): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:57 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfeffffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 296.250786] FAULT_INJECTION: forcing a failure. [ 296.250786] name failslab, interval 1, probability 0, space 0, times 0 [ 296.271900] CPU: 0 PID: 14199 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 296.279107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.288461] Call Trace: [ 296.291077] dump_stack+0x1db/0x2d0 [ 296.294727] ? dump_stack_print_info.cold+0x20/0x20 [ 296.299753] ? native_iret+0x7/0x7 [ 296.303321] should_fail.cold+0xa/0x15 [ 296.307223] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 296.312345] ? ___might_sleep+0x1e7/0x310 [ 296.316506] ? arch_local_save_flags+0x50/0x50 [ 296.321115] __should_failslab+0x121/0x190 [ 296.325367] should_failslab+0x9/0x14 [ 296.329177] kmem_cache_alloc+0x2be/0x710 [ 296.333332] ? __mutex_unlock_slowpath+0x195/0x870 [ 296.338276] __kernfs_new_node+0xfe/0x8a0 [ 296.342435] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 296.342465] ? mutex_unlock+0xd/0x10 [ 296.342480] ? kernfs_activate+0x21c/0x2c0 [ 296.342499] ? kernfs_walk_and_get_ns+0x340/0x340 [ 296.342517] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 296.365537] ? kernfs_link_sibling+0x210/0x420 [ 296.370126] kernfs_new_node+0x99/0x130 [ 296.370150] __kernfs_create_file+0x51/0x340 [ 296.378517] sysfs_add_file_mode_ns+0x222/0x560 [ 296.378549] internal_create_group+0x3d2/0xd80 [ 296.378564] ? kernfs_link_sibling+0x210/0x420 [ 296.378591] ? remove_files.isra.0+0x190/0x190 15:16:57 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfffffdfd}) 15:16:57 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:57 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) [ 296.387807] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.387823] ? kernfs_create_link+0x1d2/0x250 [ 296.387852] sysfs_create_groups+0x9b/0x141 [ 296.387876] device_add+0x83e/0x1800 [ 296.415113] ? get_device_parent.isra.0+0x570/0x570 [ 296.420156] rfkill_register+0x2d9/0xe40 [ 296.424247] ? state_store+0x1e0/0x1e0 [ 296.428146] ? lockdep_init_map+0x10c/0x5b0 [ 296.432520] ? rfkill_alloc+0x2a2/0x3c0 [ 296.436503] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 296.441616] ? rfkill_fop_read+0x840/0x840 [ 296.445859] ? devm_led_trigger_register+0x8f/0xd0 [ 296.450812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.456356] ? hci_leds_init+0x104/0x1c0 [ 296.460427] hci_register_dev+0x44a/0x9d0 [ 296.464589] ? hci_conn_params_free+0x840/0x840 [ 296.469273] __vhci_create_device+0x2d0/0x5a0 [ 296.473784] vhci_write+0x2d0/0x470 [ 296.477457] __vfs_write+0x764/0xb40 [ 296.481185] ? kernel_read+0x120/0x120 [ 296.485084] ? __mutex_unlock_slowpath+0x195/0x870 [ 296.490031] ? apparmor_file_permission+0x25/0x30 [ 296.494912] ? rw_verify_area+0x118/0x360 15:16:57 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 296.499084] vfs_write+0x20c/0x580 [ 296.502641] ksys_write+0x105/0x260 [ 296.506278] ? __ia32_sys_read+0xb0/0xb0 [ 296.510350] ? trace_hardirqs_off_caller+0x300/0x300 [ 296.515464] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 296.520234] __x64_sys_write+0x73/0xb0 [ 296.524134] do_syscall_64+0x1a3/0x800 [ 296.528046] ? syscall_return_slowpath+0x5f0/0x5f0 [ 296.532978] ? prepare_exit_to_usermode+0x232/0x3b0 [ 296.533003] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.533044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.533057] RIP: 0033:0x457e39 [ 296.533090] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 296.533098] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 296.548114] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 296.548125] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 296.548135] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.548146] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 296.548156] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:58 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xffffffff00000000, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:58 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) 15:16:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfdfdffff00000000}) 15:16:58 executing program 3 (fault-call:3 fault-nth:56): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:58 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 296.806642] FAULT_INJECTION: forcing a failure. [ 296.806642] name failslab, interval 1, probability 0, space 0, times 0 [ 296.867923] CPU: 1 PID: 14216 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 296.875137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.884491] Call Trace: [ 296.887090] dump_stack+0x1db/0x2d0 [ 296.890731] ? dump_stack_print_info.cold+0x20/0x20 [ 296.895751] ? add_lock_to_list.isra.0+0x450/0x450 [ 296.900692] ? kernfs_activate+0x8f/0x2c0 [ 296.904852] should_fail.cold+0xa/0x15 [ 296.908750] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 296.913869] ? ___might_sleep+0x1e7/0x310 [ 296.918037] ? arch_local_save_flags+0x50/0x50 [ 296.922636] __should_failslab+0x121/0x190 [ 296.926886] should_failslab+0x9/0x14 [ 296.930698] kmem_cache_alloc+0x2be/0x710 [ 296.934847] ? __mutex_unlock_slowpath+0x195/0x870 [ 296.939787] __kernfs_new_node+0xfe/0x8a0 [ 296.943947] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 296.948721] ? mutex_unlock+0xd/0x10 [ 296.952445] ? kernfs_activate+0x21c/0x2c0 [ 296.956691] ? kernfs_walk_and_get_ns+0x340/0x340 [ 296.961552] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 296.967102] ? kernfs_link_sibling+0x210/0x420 [ 296.971698] kernfs_new_node+0x99/0x130 [ 296.975684] __kernfs_create_file+0x51/0x340 [ 296.980113] sysfs_add_file_mode_ns+0x222/0x560 [ 296.984802] internal_create_group+0x3d2/0xd80 [ 296.989388] ? kernfs_link_sibling+0x210/0x420 [ 296.993987] ? remove_files.isra.0+0x190/0x190 [ 296.998588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.004129] ? kernfs_create_link+0x1d2/0x250 [ 297.008645] sysfs_create_groups+0x9b/0x141 [ 297.012975] device_add+0x83e/0x1800 [ 297.016704] ? get_device_parent.isra.0+0x570/0x570 [ 297.021738] rfkill_register+0x2d9/0xe40 [ 297.025810] ? state_store+0x1e0/0x1e0 [ 297.029700] ? lockdep_init_map+0x10c/0x5b0 [ 297.034035] ? rfkill_alloc+0x2a2/0x3c0 [ 297.034052] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 297.034072] ? rfkill_fop_read+0x840/0x840 [ 297.034089] ? devm_led_trigger_register+0x8f/0xd0 [ 297.034105] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.043156] ? hci_leds_init+0x104/0x1c0 [ 297.043175] hci_register_dev+0x44a/0x9d0 15:16:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x2, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 297.043196] ? hci_conn_params_free+0x840/0x840 [ 297.043221] __vhci_create_device+0x2d0/0x5a0 [ 297.043239] vhci_write+0x2d0/0x470 [ 297.052370] __vfs_write+0x764/0xb40 [ 297.052391] ? kernel_read+0x120/0x120 [ 297.052408] ? __mutex_unlock_slowpath+0x195/0x870 [ 297.052434] ? apparmor_file_permission+0x25/0x30 [ 297.061998] ? rw_verify_area+0x118/0x360 [ 297.062018] vfs_write+0x20c/0x580 [ 297.062039] ksys_write+0x105/0x260 [ 297.062057] ? __ia32_sys_read+0xb0/0xb0 [ 297.070832] ? trace_hardirqs_off_caller+0x300/0x300 [ 297.070849] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 297.070866] __x64_sys_write+0x73/0xb0 [ 297.070883] do_syscall_64+0x1a3/0x800 [ 297.078969] ? syscall_return_slowpath+0x5f0/0x5f0 [ 297.078993] ? prepare_exit_to_usermode+0x232/0x3b0 [ 297.079011] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.079033] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.086582] RIP: 0033:0x457e39 15:16:58 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:58 executing program 5: openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x4, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 15:16:58 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 297.086597] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 297.086606] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 297.086619] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 297.086629] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 297.096364] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 297.096373] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 297.096382] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:58 executing program 5: openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:58 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:58 executing program 4: r0 = add_key$keyring(0x0, &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xfdfdffff00000000}) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 3 (fault-call:3 fault-nth:57): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:58 executing program 5: openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:16:58 executing program 4: r0 = add_key$keyring(0x0, &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:58 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 297.447887] FAULT_INJECTION: forcing a failure. [ 297.447887] name failslab, interval 1, probability 0, space 0, times 0 [ 297.501280] CPU: 1 PID: 14262 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 297.508498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.517850] Call Trace: [ 297.520470] dump_stack+0x1db/0x2d0 [ 297.524110] ? dump_stack_print_info.cold+0x20/0x20 [ 297.529135] ? kernfs_activate+0x8f/0x2c0 [ 297.533300] should_fail.cold+0xa/0x15 [ 297.537200] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 297.542320] ? ___might_sleep+0x1e7/0x310 [ 297.546475] ? arch_local_save_flags+0x50/0x50 [ 297.551070] __should_failslab+0x121/0x190 [ 297.555306] should_failslab+0x9/0x14 [ 297.555323] kmem_cache_alloc+0x2be/0x710 [ 297.555336] ? __mutex_unlock_slowpath+0x195/0x870 [ 297.555356] __kernfs_new_node+0xfe/0x8a0 [ 297.563274] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 297.563298] ? mutex_unlock+0xd/0x10 [ 297.563310] ? kernfs_activate+0x21c/0x2c0 [ 297.563326] ? kernfs_walk_and_get_ns+0x340/0x340 [ 297.563342] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 297.563356] ? kernfs_link_sibling+0x210/0x420 [ 297.599977] kernfs_new_node+0x99/0x130 [ 297.603962] __kernfs_create_file+0x51/0x340 [ 297.608385] sysfs_add_file_mode_ns+0x222/0x560 [ 297.613062] internal_create_group+0x3d2/0xd80 [ 297.617645] ? kernfs_link_sibling+0x210/0x420 [ 297.622252] ? remove_files.isra.0+0x190/0x190 [ 297.626863] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.632396] ? kernfs_create_link+0x1d2/0x250 [ 297.636896] sysfs_create_groups+0x9b/0x141 [ 297.641222] device_add+0x83e/0x1800 [ 297.644981] ? get_device_parent.isra.0+0x570/0x570 [ 297.650016] rfkill_register+0x2d9/0xe40 [ 297.654081] ? state_store+0x1e0/0x1e0 [ 297.657971] ? lockdep_init_map+0x10c/0x5b0 [ 297.662303] ? rfkill_alloc+0x2a2/0x3c0 [ 297.666275] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 297.671382] ? rfkill_fop_read+0x840/0x840 [ 297.675617] ? devm_led_trigger_register+0x8f/0xd0 [ 297.680549] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.686103] ? hci_leds_init+0x104/0x1c0 [ 297.690167] hci_register_dev+0x44a/0x9d0 [ 297.694319] ? hci_conn_params_free+0x840/0x840 [ 297.699011] __vhci_create_device+0x2d0/0x5a0 [ 297.703508] vhci_write+0x2d0/0x470 [ 297.707138] __vfs_write+0x764/0xb40 [ 297.710853] ? kernel_read+0x120/0x120 [ 297.714779] ? __mutex_unlock_slowpath+0x195/0x870 [ 297.719726] ? apparmor_file_permission+0x25/0x30 [ 297.724577] ? rw_verify_area+0x118/0x360 [ 297.728733] vfs_write+0x20c/0x580 [ 297.732275] ksys_write+0x105/0x260 [ 297.735917] ? __ia32_sys_read+0xb0/0xb0 [ 297.739987] ? trace_hardirqs_off_caller+0x300/0x300 [ 297.745093] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 297.749854] __x64_sys_write+0x73/0xb0 [ 297.753742] do_syscall_64+0x1a3/0x800 [ 297.757632] ? syscall_return_slowpath+0x5f0/0x5f0 [ 297.762562] ? prepare_exit_to_usermode+0x232/0x3b0 [ 297.767600] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.772473] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.777656] RIP: 0033:0x457e39 [ 297.780844] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:16:59 executing program 4: r0 = add_key$keyring(0x0, &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:59 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) [ 297.799753] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 297.807461] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 297.814724] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 297.821993] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 297.829257] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 297.836523] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:59 executing program 3 (fault-call:3 fault-nth:58): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:59 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:59 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x29, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:59 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) 15:16:59 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:59 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:59 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, 0x0, 0x0) 15:16:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x30, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 298.008444] FAULT_INJECTION: forcing a failure. [ 298.008444] name failslab, interval 1, probability 0, space 0, times 0 [ 298.089955] CPU: 0 PID: 14286 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 298.097171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.106526] Call Trace: [ 298.109118] dump_stack+0x1db/0x2d0 [ 298.112773] ? dump_stack_print_info.cold+0x20/0x20 [ 298.118705] ? kernfs_activate+0x8f/0x2c0 [ 298.122861] should_fail.cold+0xa/0x15 [ 298.122882] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.122928] ? ___might_sleep+0x1e7/0x310 15:16:59 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 298.131881] ? arch_local_save_flags+0x50/0x50 [ 298.131930] __should_failslab+0x121/0x190 [ 298.131949] should_failslab+0x9/0x14 [ 298.131963] kmem_cache_alloc+0x2be/0x710 [ 298.131977] ? __mutex_unlock_slowpath+0x195/0x870 [ 298.131999] __kernfs_new_node+0xfe/0x8a0 [ 298.132018] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 298.166900] ? mutex_unlock+0xd/0x10 [ 298.170619] ? kernfs_activate+0x21c/0x2c0 [ 298.174861] ? kernfs_walk_and_get_ns+0x340/0x340 [ 298.179714] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 298.185255] ? kernfs_link_sibling+0x210/0x420 [ 298.189867] kernfs_new_node+0x99/0x130 [ 298.193906] __kernfs_create_file+0x51/0x340 [ 298.198320] sysfs_add_file_mode_ns+0x222/0x560 [ 298.202998] internal_create_group+0x3d2/0xd80 [ 298.207581] ? kernfs_link_sibling+0x210/0x420 [ 298.212174] ? remove_files.isra.0+0x190/0x190 [ 298.216759] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.222298] ? kernfs_create_link+0x1d2/0x250 [ 298.226800] sysfs_create_groups+0x9b/0x141 [ 298.231125] device_add+0x83e/0x1800 [ 298.234845] ? get_device_parent.isra.0+0x570/0x570 [ 298.239877] rfkill_register+0x2d9/0xe40 [ 298.243956] ? state_store+0x1e0/0x1e0 [ 298.247850] ? lockdep_init_map+0x10c/0x5b0 [ 298.252193] ? rfkill_alloc+0x2a2/0x3c0 [ 298.256176] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 298.261286] ? rfkill_fop_read+0x840/0x840 [ 298.265524] ? devm_led_trigger_register+0x8f/0xd0 [ 298.270458] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.276004] ? hci_leds_init+0x104/0x1c0 [ 298.280069] hci_register_dev+0x44a/0x9d0 [ 298.284220] ? hci_conn_params_free+0x840/0x840 [ 298.288914] __vhci_create_device+0x2d0/0x5a0 [ 298.293420] vhci_write+0x2d0/0x470 [ 298.297053] __vfs_write+0x764/0xb40 [ 298.300781] ? kernel_read+0x120/0x120 [ 298.304676] ? __mutex_unlock_slowpath+0x195/0x870 [ 298.309619] ? apparmor_file_permission+0x25/0x30 [ 298.314472] ? rw_verify_area+0x118/0x360 [ 298.318628] vfs_write+0x20c/0x580 [ 298.322174] ksys_write+0x105/0x260 [ 298.325823] ? __ia32_sys_read+0xb0/0xb0 [ 298.329900] ? trace_hardirqs_off_caller+0x300/0x300 [ 298.335006] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 298.339765] __x64_sys_write+0x73/0xb0 [ 298.343660] do_syscall_64+0x1a3/0x800 [ 298.347550] ? syscall_return_slowpath+0x5f0/0x5f0 [ 298.352481] ? prepare_exit_to_usermode+0x232/0x3b0 [ 298.357503] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 298.362455] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 298.367639] RIP: 0033:0x457e39 [ 298.370838] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:16:59 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:59 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 298.389754] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 298.397468] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 298.404737] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 298.412003] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 298.419272] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 298.426555] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:16:59 executing program 3 (fault-call:3 fault-nth:59): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:16:59 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() getpgid(r0) 15:16:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x20000586, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:16:59 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff}) 15:16:59 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(0x0, &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:16:59 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x0, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:16:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:00 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd}) 15:17:00 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(0x0, &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 298.703358] FAULT_INJECTION: forcing a failure. [ 298.703358] name failslab, interval 1, probability 0, space 0, times 0 [ 298.728974] CPU: 0 PID: 14318 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 298.736190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.745535] Call Trace: [ 298.745559] dump_stack+0x1db/0x2d0 [ 298.745579] ? dump_stack_print_info.cold+0x20/0x20 [ 298.745597] ? add_lock_to_list.isra.0+0x450/0x450 [ 298.745615] ? kernfs_activate+0x8f/0x2c0 [ 298.745637] should_fail.cold+0xa/0x15 [ 298.745659] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.774898] ? ___might_sleep+0x1e7/0x310 [ 298.779052] ? arch_local_save_flags+0x50/0x50 [ 298.783651] __should_failslab+0x121/0x190 [ 298.787889] should_failslab+0x9/0x14 [ 298.791691] kmem_cache_alloc+0x2be/0x710 [ 298.795853] ? __mutex_unlock_slowpath+0x195/0x870 [ 298.800792] __kernfs_new_node+0xfe/0x8a0 [ 298.804957] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 298.809722] ? mutex_unlock+0xd/0x10 [ 298.813437] ? kernfs_activate+0x21c/0x2c0 [ 298.817690] ? kernfs_walk_and_get_ns+0x340/0x340 [ 298.822540] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 298.828081] ? kernfs_link_sibling+0x210/0x420 [ 298.832668] kernfs_new_node+0x99/0x130 [ 298.836646] __kernfs_create_file+0x51/0x340 [ 298.841065] sysfs_add_file_mode_ns+0x222/0x560 [ 298.845752] internal_create_group+0x3d2/0xd80 [ 298.850339] ? kernfs_link_sibling+0x210/0x420 [ 298.854935] ? remove_files.isra.0+0x190/0x190 [ 298.859525] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.865067] ? kernfs_create_link+0x1d2/0x250 [ 298.869577] sysfs_create_groups+0x9b/0x141 [ 298.873916] device_add+0x83e/0x1800 [ 298.877636] ? get_device_parent.isra.0+0x570/0x570 [ 298.882669] rfkill_register+0x2d9/0xe40 [ 298.886741] ? state_store+0x1e0/0x1e0 [ 298.890632] ? lockdep_init_map+0x10c/0x5b0 [ 298.894974] ? rfkill_alloc+0x2a2/0x3c0 [ 298.898950] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 298.904062] ? rfkill_fop_read+0x840/0x840 [ 298.908300] ? devm_led_trigger_register+0x8f/0xd0 [ 298.913238] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.918777] ? hci_leds_init+0x104/0x1c0 [ 298.922856] hci_register_dev+0x44a/0x9d0 [ 298.927014] ? hci_conn_params_free+0x840/0x840 [ 298.931698] __vhci_create_device+0x2d0/0x5a0 [ 298.936205] vhci_write+0x2d0/0x470 [ 298.939853] __vfs_write+0x764/0xb40 [ 298.943574] ? kernel_read+0x120/0x120 [ 298.947467] ? __mutex_unlock_slowpath+0x195/0x870 [ 298.952411] ? apparmor_file_permission+0x25/0x30 [ 298.957268] ? rw_verify_area+0x118/0x360 [ 298.961425] vfs_write+0x20c/0x580 [ 298.964972] ksys_write+0x105/0x260 [ 298.968603] ? __ia32_sys_read+0xb0/0xb0 [ 298.972675] ? trace_hardirqs_off_caller+0x300/0x300 [ 298.978274] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 298.983044] __x64_sys_write+0x73/0xb0 [ 298.986938] do_syscall_64+0x1a3/0x800 [ 298.990847] ? syscall_return_slowpath+0x5f0/0x5f0 [ 298.995781] ? prepare_exit_to_usermode+0x232/0x3b0 [ 299.000809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.005689] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.010876] RIP: 0033:0x457e39 [ 299.014069] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 299.032972] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 299.040677] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 299.047942] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 15:17:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x4, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff00000000}) [ 299.055212] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.062483] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 299.069754] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:00 executing program 3 (fault-call:3 fault-nth:60): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:00 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(0x0, &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:00 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x0, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x5, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:00 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) setxattr$trusted_overlay_origin(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.origin\x00', &(0x7f0000000100)='y\x00', 0x2, 0x1) [ 299.268295] FAULT_INJECTION: forcing a failure. [ 299.268295] name failslab, interval 1, probability 0, space 0, times 0 [ 299.300278] CPU: 0 PID: 14344 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 299.307496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x440006, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0xd, 0x1, 0x7, 0x6, 0x0, r0, 0x3}, 0x2c) setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f0000000200)={@nl=@proc={0x10, 0x0, 0x25dfdbff, 0x80010010}, {&(0x7f0000000100)=""/135, 0x87}, &(0x7f00000001c0), 0x6c}, 0xa0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000080)=0x2, 0x8) [ 299.316847] Call Trace: [ 299.319441] dump_stack+0x1db/0x2d0 [ 299.323077] ? dump_stack_print_info.cold+0x20/0x20 [ 299.328106] ? add_lock_to_list.isra.0+0x450/0x450 [ 299.333040] ? add_lock_to_list.isra.0+0x450/0x450 [ 299.333064] should_fail.cold+0xa/0x15 [ 299.333084] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.333106] ? ___might_sleep+0x1e7/0x310 [ 299.346977] ? arch_local_save_flags+0x50/0x50 [ 299.346994] ? lock_release+0xc40/0xc40 [ 299.347015] __should_failslab+0x121/0x190 [ 299.363899] should_failslab+0x9/0x14 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfc}, 0xc) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) [ 299.367701] kmem_cache_alloc+0x2be/0x710 [ 299.371849] ? kernfs_find_and_get_ns+0x5a/0x70 [ 299.376525] __kernfs_new_node+0xfe/0x8a0 [ 299.380680] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 299.385459] ? kasan_check_write+0x14/0x20 [ 299.389697] ? __mutex_unlock_slowpath+0x195/0x870 [ 299.394625] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 299.400164] kernfs_new_node+0x99/0x130 [ 299.404150] __kernfs_create_file+0x51/0x340 [ 299.408560] sysfs_add_file_mode_ns+0x222/0x560 [ 299.413229] sysfs_merge_group+0x21f/0x400 [ 299.413250] ? sysfs_mount+0x240/0x240 [ 299.413280] dpm_sysfs_add+0x164/0x210 [ 299.413296] device_add+0xa07/0x1800 [ 299.413316] ? get_device_parent.isra.0+0x570/0x570 [ 299.413344] rfkill_register+0x2d9/0xe40 [ 299.438065] ? state_store+0x1e0/0x1e0 [ 299.441957] ? lockdep_init_map+0x10c/0x5b0 [ 299.446300] ? rfkill_alloc+0x2a2/0x3c0 [ 299.450285] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 299.455395] ? rfkill_fop_read+0x840/0x840 [ 299.459635] ? devm_led_trigger_register+0x8f/0xd0 15:17:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x8, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000100)=0x0) capset(&(0x7f0000000140)={0x20080522, r1}, &(0x7f0000000180)={0xc93, 0x8, 0x91, 0x6, 0x51, 0x10001}) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e20, 0x7, @empty, 0x12}, @in6={0xa, 0x4e24, 0xd6, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x24}}, 0x200}, @in6={0xa, 0x4e22, 0xe2, @remote, 0xff}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e21, 0x54, @mcast2, 0x5}], 0x80) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) [ 299.464566] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.470103] ? hci_leds_init+0x104/0x1c0 [ 299.474167] hci_register_dev+0x44a/0x9d0 [ 299.478322] ? hci_conn_params_free+0x840/0x840 [ 299.483002] __vhci_create_device+0x2d0/0x5a0 [ 299.483022] vhci_write+0x2d0/0x470 [ 299.483041] __vfs_write+0x764/0xb40 [ 299.483060] ? kernel_read+0x120/0x120 [ 299.491152] ? __mutex_unlock_slowpath+0x195/0x870 [ 299.491178] ? apparmor_file_permission+0x25/0x30 [ 299.491200] ? rw_verify_area+0x118/0x360 [ 299.491218] vfs_write+0x20c/0x580 [ 299.491241] ksys_write+0x105/0x260 [ 299.503734] ? __ia32_sys_read+0xb0/0xb0 [ 299.503753] ? trace_hardirqs_off_caller+0x300/0x300 [ 299.503769] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 299.503804] __x64_sys_write+0x73/0xb0 [ 299.503838] do_syscall_64+0x1a3/0x800 [ 299.503855] ? syscall_return_slowpath+0x5f0/0x5f0 [ 299.512815] ? prepare_exit_to_usermode+0x232/0x3b0 [ 299.512837] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.512862] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.561519] RIP: 0033:0x457e39 15:17:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) openat$vim2m(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video35\x00', 0x2, 0x0) syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x2, 0x800) [ 299.564713] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 299.583614] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 299.591331] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 299.591342] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 299.591351] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:17:00 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', 0x0, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 299.591360] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 299.591369] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:01 executing program 3 (fault-call:3 fault-nth:61): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:01 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x0, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x9, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:01 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', 0x0, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:01 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0xfff, 0x30}, &(0x7f0000000100)=0xc) connect$pptp(r0, &(0x7f0000000240)={0x18, 0x2, {0x1, @multicast1}}, 0x1e) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={r1, @in6={{0xa, 0x4e20, 0x1000, @local, 0x9}}, 0x2, 0x9, 0x3, 0xfc, 0x6}, 0x98) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x80, 0x0) ioctl$TCSBRK(r2, 0x5409, 0x6) ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000080)={0x18, 0x12, 0x13, 0x4, 0xb, 0x9, 0x4, 0xf7}) 15:17:01 executing program 5: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:01 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', 0x0, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) [ 299.802737] FAULT_INJECTION: forcing a failure. [ 299.802737] name failslab, interval 1, probability 0, space 0, times 0 15:17:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0xffffffffffffffff}) [ 299.846082] CPU: 0 PID: 14374 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 299.853291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.853298] Call Trace: [ 299.853319] dump_stack+0x1db/0x2d0 [ 299.853340] ? dump_stack_print_info.cold+0x20/0x20 [ 299.853361] ? perf_trace_lock+0x750/0x750 [ 299.853381] should_fail.cold+0xa/0x15 [ 299.882033] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.882057] ? ___might_sleep+0x1e7/0x310 [ 299.882074] ? arch_local_save_flags+0x50/0x50 [ 299.882092] ? lock_release+0xc40/0xc40 [ 299.882113] __should_failslab+0x121/0x190 [ 299.882130] should_failslab+0x9/0x14 [ 299.882146] kmem_cache_alloc+0x2be/0x710 [ 299.895937] ? kernfs_find_and_get_ns+0x5a/0x70 [ 299.895958] __kernfs_new_node+0xfe/0x8a0 [ 299.895977] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 299.904155] ? lockdep_hardirqs_on+0x415/0x5d0 [ 299.904172] ? retint_kernel+0x2d/0x2d [ 299.904188] ? trace_hardirqs_on_caller+0xc0/0x310 [ 299.904206] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 299.904222] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 299.904236] ? retint_kernel+0x1b/0x2d [ 299.904257] ? kasan_check_write+0x14/0x20 [ 299.912166] ? __mutex_unlock_slowpath+0x195/0x870 [ 299.912184] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 299.912204] kernfs_new_node+0x99/0x130 [ 299.912225] __kernfs_create_file+0x51/0x340 [ 299.912242] sysfs_add_file_mode_ns+0x222/0x560 [ 299.912266] sysfs_merge_group+0x21f/0x400 [ 299.921052] ? sysfs_mount+0x240/0x240 [ 299.921083] dpm_sysfs_add+0x164/0x210 [ 299.921101] device_add+0xa07/0x1800 15:17:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 299.921123] ? get_device_parent.isra.0+0x570/0x570 [ 299.921154] rfkill_register+0x2d9/0xe40 [ 300.005356] ? state_store+0x1e0/0x1e0 [ 300.009244] ? lockdep_init_map+0x10c/0x5b0 [ 300.013574] ? rfkill_alloc+0x2a2/0x3c0 [ 300.017551] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 300.017571] ? rfkill_fop_read+0x840/0x840 [ 300.017589] ? devm_led_trigger_register+0x8f/0xd0 [ 300.026896] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.026912] ? hci_leds_init+0x104/0x1c0 [ 300.026931] hci_register_dev+0x44a/0x9d0 [ 300.045551] ? hci_conn_params_free+0x840/0x840 [ 300.050233] __vhci_create_device+0x2d0/0x5a0 [ 300.054749] vhci_write+0x2d0/0x470 [ 300.058386] __vfs_write+0x764/0xb40 [ 300.062103] ? kernel_read+0x120/0x120 [ 300.066007] ? __mutex_unlock_slowpath+0x195/0x870 [ 300.070943] ? apparmor_file_permission+0x25/0x30 [ 300.075799] ? rw_verify_area+0x118/0x360 [ 300.079960] vfs_write+0x20c/0x580 [ 300.083513] ksys_write+0x105/0x260 [ 300.087148] ? __ia32_sys_read+0xb0/0xb0 [ 300.091221] ? trace_hardirqs_off_caller+0x300/0x300 [ 300.096329] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 300.101092] __x64_sys_write+0x73/0xb0 [ 300.104993] do_syscall_64+0x1a3/0x800 [ 300.108885] ? syscall_return_slowpath+0x5f0/0x5f0 [ 300.113821] ? prepare_exit_to_usermode+0x232/0x3b0 [ 300.118853] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.123745] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.128939] RIP: 0033:0x457e39 15:17:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000080)={'NETM\x00\x00\xea\x00\x00\x00\x01\x03\x00\x00\t\x00'}, &(0x7f0000000100)=0x1e) [ 300.132137] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.151934] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 300.151949] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 300.151958] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 300.151967] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.151977] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 300.151985] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:01 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:01 executing program 3 (fault-call:3 fault-nth:62): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:01 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x10, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:01 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x0, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:01 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x29, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:01 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) [ 300.423918] FAULT_INJECTION: forcing a failure. [ 300.423918] name failslab, interval 1, probability 0, space 0, times 0 [ 300.481368] CPU: 1 PID: 14410 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 300.488587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.497943] Call Trace: [ 300.500549] dump_stack+0x1db/0x2d0 [ 300.504199] ? dump_stack_print_info.cold+0x20/0x20 [ 300.509224] ? add_lock_to_list.isra.0+0x450/0x450 [ 300.514167] ? add_lock_to_list.isra.0+0x450/0x450 [ 300.519110] should_fail.cold+0xa/0x15 [ 300.523010] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 300.528124] ? ___might_sleep+0x1e7/0x310 [ 300.532281] ? arch_local_save_flags+0x50/0x50 [ 300.536873] ? lock_release+0xc40/0xc40 [ 300.540854] __should_failslab+0x121/0x190 [ 300.545096] should_failslab+0x9/0x14 [ 300.548908] kmem_cache_alloc+0x2be/0x710 [ 300.553059] ? kernfs_find_and_get_ns+0x5a/0x70 [ 300.553080] __kernfs_new_node+0xfe/0x8a0 [ 300.553099] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 300.553131] ? kasan_check_write+0x14/0x20 [ 300.561917] ? __mutex_unlock_slowpath+0x195/0x870 [ 300.561935] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 300.561953] kernfs_new_node+0x99/0x130 [ 300.561973] __kernfs_create_file+0x51/0x340 [ 300.561991] sysfs_add_file_mode_ns+0x222/0x560 [ 300.570953] sysfs_merge_group+0x21f/0x400 [ 300.570974] ? sysfs_mount+0x240/0x240 [ 300.581417] dpm_sysfs_add+0x164/0x210 [ 300.581435] device_add+0xa07/0x1800 [ 300.581458] ? get_device_parent.isra.0+0x570/0x570 [ 300.615142] rfkill_register+0x2d9/0xe40 [ 300.619216] ? state_store+0x1e0/0x1e0 [ 300.623117] ? lockdep_init_map+0x10c/0x5b0 [ 300.627447] ? rfkill_alloc+0x2a2/0x3c0 [ 300.631419] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 300.636530] ? rfkill_fop_read+0x840/0x840 [ 300.640771] ? devm_led_trigger_register+0x8f/0xd0 [ 300.645707] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.651244] ? hci_leds_init+0x104/0x1c0 [ 300.655310] hci_register_dev+0x44a/0x9d0 [ 300.659462] ? hci_conn_params_free+0x840/0x840 [ 300.664146] __vhci_create_device+0x2d0/0x5a0 [ 300.668644] vhci_write+0x2d0/0x470 [ 300.672287] __vfs_write+0x764/0xb40 [ 300.676008] ? kernel_read+0x120/0x120 [ 300.679901] ? __mutex_unlock_slowpath+0x195/0x870 [ 300.684841] ? apparmor_file_permission+0x25/0x30 [ 300.689696] ? rw_verify_area+0x118/0x360 [ 300.693848] vfs_write+0x20c/0x580 [ 300.697395] ksys_write+0x105/0x260 [ 300.701026] ? __ia32_sys_read+0xb0/0xb0 [ 300.705088] ? trace_hardirqs_off_caller+0x300/0x300 [ 300.710194] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 300.714950] __x64_sys_write+0x73/0xb0 [ 300.718843] do_syscall_64+0x1a3/0x800 [ 300.722735] ? syscall_return_slowpath+0x5f0/0x5f0 [ 300.727678] ? prepare_exit_to_usermode+0x232/0x3b0 [ 300.732704] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.737559] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.742745] RIP: 0033:0x457e39 [ 300.745935] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.764842] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 300.772551] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 300.779819] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 300.787084] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.794352] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 300.801618] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:02 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:02 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x0, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:02 executing program 3 (fault-call:3 fault-nth:63): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:02 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6}}, &(0x7f00000001c0)=0xe8) fstat(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000280)=0x0) sendmsg$nl_netfilter(r0, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4004020}, 0xc, &(0x7f0000000400)={&(0x7f00000002c0)={0x124, 0x7, 0x9, 0x10, 0x70bd2c, 0x25dfdbfd, {0xc, 0x0, 0x9}, [@generic="8c93812e04849cf4921b6ec4d58fea64bf902465936bad305a0e41c3b80371447165627be275efc29e7bc9e6", @nested={0x30, 0x92, [@typed={0x8, 0x42, @u32=0x558a5913}, @typed={0x8, 0x4c, @uid=r1}, @typed={0xc, 0x3, @u64=0x7}, @typed={0x8, 0x2a, @uid=r2}, @typed={0x8, 0x6c, @fd=r0}]}, @generic="4b00c2161a3f65ef8ecadcc930271fad567d7519ecde57f3fcd04ea27479cb77ddfc930398daf22ca0eb1ea5e62df52867e2429cd63296e4d30e2ad21ed36e982206db02ba14fb2659aa923165140ae3bac08dd74e3ea68071d3d2cf2237c8b081ceb191f04a4989c6aa201e0b5037a36794e48bc6126c6cd9e415991e8c4ecc6bebb18e86e967243e0c53022919b027663857351f1bdbb1d8bfe044a25ba862529a73efde8063462ff5", @typed={0x8, 0x87, @pid=r3}]}, 0x124}, 0x1, 0x0, 0x0, 0x14}, 0x40000) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:02 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:02 executing program 5: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:02 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x30, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:02 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:02 executing program 2: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x100, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)={0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000140)={{0xa, 0x7, 0x9, 0x100000000, '\x00', 0x9}, 0x2, 0x1, 0x80, r1, 0x6, 0x1, 'syz0\x00', &(0x7f0000000100)=['net/stat\x00', 'net/stat\x00', '\x00', 'selinuxvmnet0\x00', 'net/stat\x00', 'net/stat\x00'], 0x33, [], [0x31f9, 0x6, 0x3, 0x80000001]}) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000280)={'hsr0\x00', {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/stat\x00') ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000040)) 15:17:02 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x0, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:02 executing program 5 (fault-call:1 fault-nth:0): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:02 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:02 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd4, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:02 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000080)={0x0, 0x0, 0x201f}) [ 301.327211] FAULT_INJECTION: forcing a failure. [ 301.327211] name failslab, interval 1, probability 0, space 0, times 0 [ 301.345594] CPU: 0 PID: 14452 Comm: syz-executor3 Not tainted 5.0.0-rc4+ #54 [ 301.352808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 301.362160] Call Trace: [ 301.364756] dump_stack+0x1db/0x2d0 [ 301.368398] ? dump_stack_print_info.cold+0x20/0x20 [ 301.373432] ? add_lock_to_list.isra.0+0x450/0x450 [ 301.378385] should_fail.cold+0xa/0x15 [ 301.382284] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 301.387400] ? ___might_sleep+0x1e7/0x310 [ 301.391556] ? arch_local_save_flags+0x50/0x50 [ 301.396159] __should_failslab+0x121/0x190 [ 301.400412] should_failslab+0x9/0x14 [ 301.404221] kmem_cache_alloc+0x2be/0x710 [ 301.408389] ? __mutex_unlock_slowpath+0x195/0x870 [ 301.413350] __kernfs_new_node+0xfe/0x8a0 [ 301.417506] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 301.422280] ? mutex_unlock+0xd/0x10 [ 301.425993] ? kernfs_activate+0x21c/0x2c0 [ 301.430239] ? kernfs_walk_and_get_ns+0x340/0x340 [ 301.435092] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 301.440742] ? kernfs_link_sibling+0x210/0x420 [ 301.445330] kernfs_new_node+0x99/0x130 [ 301.449318] __kernfs_create_file+0x51/0x340 [ 301.453749] sysfs_add_file_mode_ns+0x222/0x560 [ 301.458435] sysfs_merge_group+0x21f/0x400 [ 301.462686] ? sysfs_mount+0x240/0x240 [ 301.466592] dpm_sysfs_add+0x164/0x210 [ 301.470496] device_add+0xa07/0x1800 [ 301.474246] ? get_device_parent.isra.0+0x570/0x570 [ 301.479280] rfkill_register+0x2d9/0xe40 [ 301.483384] ? state_store+0x1e0/0x1e0 [ 301.487274] ? lockdep_init_map+0x10c/0x5b0 [ 301.491626] ? rfkill_alloc+0x2a2/0x3c0 [ 301.495617] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 301.500736] ? rfkill_fop_read+0x840/0x840 [ 301.504981] ? devm_led_trigger_register+0x8f/0xd0 [ 301.509923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 301.515480] ? hci_leds_init+0x104/0x1c0 [ 301.519546] hci_register_dev+0x44a/0x9d0 [ 301.523704] ? hci_conn_params_free+0x840/0x840 [ 301.528393] __vhci_create_device+0x2d0/0x5a0 [ 301.532891] vhci_write+0x2d0/0x470 [ 301.536525] __vfs_write+0x764/0xb40 [ 301.540249] ? kernel_read+0x120/0x120 [ 301.544150] ? __mutex_unlock_slowpath+0x195/0x870 [ 301.549095] ? apparmor_file_permission+0x25/0x30 [ 301.553957] ? rw_verify_area+0x118/0x360 [ 301.558127] vfs_write+0x20c/0x580 [ 301.561682] ksys_write+0x105/0x260 [ 301.565318] ? __ia32_sys_read+0xb0/0xb0 [ 301.569388] ? trace_hardirqs_off_caller+0x300/0x300 [ 301.574506] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 301.579270] __x64_sys_write+0x73/0xb0 [ 301.583165] do_syscall_64+0x1a3/0x800 [ 301.587056] ? syscall_return_slowpath+0x5f0/0x5f0 [ 301.591993] ? prepare_exit_to_usermode+0x232/0x3b0 [ 301.597020] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 301.601880] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.607070] RIP: 0033:0x457e39 [ 301.610260] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.629156] RSP: 002b:00007fae63fb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.636861] RAX: ffffffffffffffda RBX: 00007fae63fb9c90 RCX: 0000000000457e39 [ 301.644127] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 301.651396] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 301.658662] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fae63fba6d4 [ 301.666039] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:03 executing program 3 (fault-call:3 fault-nth:64): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x300, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000180)={0xe5c2, 0x0, [], {0x0, @bt={0x20, 0xe7d, 0x0, 0x2, 0x621, 0xac14, 0x6, 0x1, 0xfffffffffffffff8, 0x7fffffff, 0x10000, 0x34a, 0x1, 0x1, 0x17, 0x8}}}) openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x121480, 0x0) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0xf, 0x4}, 0x28) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x500, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 2: r0 = userfaultfd(0x80000) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000080)={0x0, @aes256}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x20000028, 0x4}, 0x28) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x900, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 2: r0 = getgid() getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xc) fstat(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setresgid(r0, r1, r2) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x100, 0x400000) ioctl$DRM_IOCTL_FREE_BUFS(r3, 0x4010641a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[0x8001]}) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r4, 0x801c581f, &(0x7f0000000040)={0x0, 0x800}) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28}, 0x28) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) fsetxattr$security_smack_transmute(r0, &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x1) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd00, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x3) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x0, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x3}, 0x28) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) socket$kcm(0x29, 0x2, 0x0) ustat(0x7, &(0x7f0000000080)) 15:17:03 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x376) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x2000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) syz_execute_func(&(0x7f0000000080)="0f6e8f4b2600003636f20f70500009420f9ca200000020c4c189f42b44d0270f0fa300000000b43e0f7e27c4c2c1b664d8ffc443f9082200c46169ec8500000000") r1 = getuid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@ipv4={[], [], @loopback}, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in=@loopback}}, &(0x7f0000000240)=0xe8) ioctl$CAPI_SET_FLAGS(r0, 0x80044324, &(0x7f0000000580)) fstat(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r0, &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000500)={{}, {0x1, 0x7}, [{0x2, 0x4, r1}, {0x2, 0x1, r2}, {0x2, 0x7, r3}], {0x4, 0x4}, [{0x8, 0x2, r4}, {0x8, 0x1, r5}, {0x8, 0x2, r6}], {0x10, 0x7}, {0x20, 0x5}}, 0x54, 0x1) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x5}, 0x28) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x0, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x2900, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:03 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x380) 15:17:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000240)) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2080182}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r1, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x100}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x800) 15:17:03 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x6}, 0x28) 15:17:03 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:03 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x382) 15:17:03 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x0, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x8}, 0x28) 15:17:04 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:04 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000000080)={0xc, @broadcast, 0x4e23, 0x4, 'lc\x00', 0x24, 0x1ff, 0x53}, 0x2c) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0xffffffffffffa5c6, 0x0, 0x5}) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x10}, 0x28) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x383) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3f00, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:04 executing program 2: ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000080)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)={0x0, 0xfffffffffffff001, 0x0, 0x5}) setsockopt$RXRPC_SECURITY_KEY(r1, 0x110, 0x1, &(0x7f00000000c0)='!eth0!\x00', 0x7) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x8000000}, 0x28) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0xfdef) 15:17:04 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x0, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) 15:17:04 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x218000, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x10000000}, 0x28) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x4000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x200000c2) 15:17:04 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x800000000000000}, 0x28) 15:17:04 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x0, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00') recvfrom$rxrpc(r0, &(0x7f0000000000)=""/18, 0x12, 0x100, &(0x7f00000000c0)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x24) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd400, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0xfffffdef) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0xfffffffffffffdef) 15:17:04 executing program 4: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, 0x0, 0x0, 0x0) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x1000000000000000}, 0x28) 15:17:04 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$FUSE_INTERRUPT(r0, &(0x7f00000000c0)={0x10, 0x0, 0x6}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x100000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x0, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x2) r2 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x9, 0x2040) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x88, r3, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x14, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000001}]}, @TIPC_NLA_SOCK={0x2c, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xeaf801b}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x100000001}]}, @TIPC_NLA_SOCK={0x34, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x20}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x5) 15:17:04 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x0, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 2: ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000000c0)={0x4, 0xffffffffffffff9c, 0x1}) ioctl$int_in(r0, 0x5473, &(0x7f0000000100)=0x8) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @remote}, 0x10) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x8}}, 0x28) 15:17:04 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)) openat$uhid(0xffffffffffffff9c, &(0x7f0000000580)='/dev/uhid\x00', 0x0, 0x0) gettid() pipe(&(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x10000014c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, 0x0, &(0x7f0000000200)={0x0, r3+30000000}, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r4, &(0x7f0000000100)=ANY=[@ANYRES32=r4], 0xffffffffffffffd6) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x200000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x10}}, 0x28) 15:17:04 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video36\x00', 0x2, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:04 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:04 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x800000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:04 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x8000000}}, 0x28) 15:17:05 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:05 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x10000000}}, 0x28) 15:17:05 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x22c00, 0x0) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f00000000c0)={0x18, 0x0, {0x4, @random="6e8193625f78", 'team0\x00'}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:05 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x1000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:05 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) write$P9_RVERSION(r2, &(0x7f0000000180)={0xfffffffffffffd63, 0x65, 0xffff, 0x6, 0x8, '9P2000.u%I\xedn(\x14yin\x8d\xd5\x19\x82n\xb0\x9d-I\xd4\xb6\xfee\xd4\x16\xd6Y:^&;\x94\xd0r-,\"\x05\xea\x84\x15\x82\x11Z\x03r\x12 h\xad&\xb7\xb2;\f\xf6\xe7\xe7\x84@\x03\b=Y\x19yj!'}, 0x15) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000100)=0x2, 0x4) 15:17:05 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:05 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x800000000000000}}, 0x28) 15:17:05 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') socket$l2tp(0x18, 0x1, 0x1) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:05 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:05 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:05 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r0, r0}) 15:17:05 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:05 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x1000000000000000}}, 0x28) 15:17:05 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, 0x0) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:05 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x4000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x81, 0x100) ioctl$TIOCLINUX6(r2, 0x541c, &(0x7f0000000100)={0x6, 0x100}) write$P9_RLERRORu(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="000080b0753357df4c509823ead56429ab902a18c68743c84d214c59203576fa95040f0979d80be0fbe584bbcf571a7cf822c3c1966d8b6f0591f5ff700486e66779e49b38120ac17c8840393bf21b6c442b18224720eff07b0b97d25deaa266ed383a2e61d548297411a0271e8f0c095d0d3e"], 0x2) ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000000140)=""/52) 15:17:06 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000080)=0x400000001) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x8}}, 0x28) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x5000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:06 executing program 2: ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000040)) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x10}}, 0x28) 15:17:06 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, 0x0) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:06 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x4440, 0x0) getsockopt$inet_dccp_buf(r1, 0x21, 0xc, &(0x7f0000000100)=""/188, &(0x7f00000001c0)=0xbc) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:06 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:06 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) r1 = socket$can_bcm(0x1d, 0x2, 0x2) dup3(r1, r1, 0x80000) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x8000000}}, 0x28) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x8000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, 0x0) fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x10000000}}, 0x28) 15:17:06 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0xfffffffffffffffc, 0x202080) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:06 executing program 2: r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f00000000c0), 0x0, 0xfffffffffffffff8) keyctl$get_keyring_id(0x0, r0, 0xffffffffffffff90) r1 = syz_open_dev$audion(&(0x7f00000002c0)='/dev/audio#\x00', 0x57d, 0x200000) accept$packet(0xffffffffffffff9c, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000004c0)=0x14) recvfrom$packet(r1, &(0x7f0000000300)=""/57, 0x39, 0x40010001, &(0x7f0000000500)={0x11, 0x3, r2, 0x1, 0x9, 0x6, @local}, 0x14) keyctl$invalidate(0x15, r0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') openat$ipvs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) keyctl$dh_compute(0x17, &(0x7f00000000c0)={r0, r0, r0}, &(0x7f0000000100)=""/145, 0x91, &(0x7f0000000280)={&(0x7f00000001c0)={'wp256\x00'}, &(0x7f0000000200)="967191c9bb568311e5e1dfb28dc046ca0a29df144962adb8d28a717516d9fa5819813d9d409f34d0331a54acaa0aa3cfaaa5e3c9133ca2af62645f5db7c6411a9f", 0x41}) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x9000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x800000000000000}}, 0x28) 15:17:06 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:17:06 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0xa00, 0x0) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:06 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') fsetxattr$security_smack_entry(r0, &(0x7f00000001c0)='security.SMACK64EXEC\x00', &(0x7f0000000240)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00 \xd2\xa1\xf2N=\xd3\xa9/\xfe\x7f\xbc\f0\x8ao^;O\xb5\x95h!_C\xd2\xab\x94\xe1\x95\x04T\xd6QG\f\v\xce\xf8\xcc\t\xcf5\xf0\xfc,\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x69, 0x20000000003) syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x837, 0x200000) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x1000000000000000}}, 0x28) 15:17:06 executing program 2: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x600, 0x0) ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000100)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') mkdirat(r0, &(0x7f0000000140)='./file1\x00', 0x40) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:06 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x10000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x8}}, 0x28) 15:17:06 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:06 executing program 2: r0 = getpgrp(0x0) move_pages(r0, 0x2, &(0x7f0000000000)=[&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000100)=[0x10000], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4) r1 = syz_open_dev$audion(&(0x7f0000000180)='/dev/audio#\x00', 0x10000, 0x200) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000300)={0x8, 0x5, 0x8, 0xffffffffffffffe1, &(0x7f00000001c0)=[{}, {}, {}, {}, {}]}) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000080)=0x0) r3 = syz_open_procfs(r2, &(0x7f00000000c0)='loginuid\x00') ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f0000000040)) 15:17:06 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x10}}, 0x28) 15:17:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x29000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:06 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r2, 0x0, 0x3) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x30000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x8000000}}, 0x28) 15:17:07 executing program 2: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000000c0)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='limits\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)={0x0, 0x800}) mkdirat$cgroup(r1, &(0x7f0000000080)='syz1\x00', 0x1ff) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x3, 0x2) ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f00000001c0)) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RXATTRCREATE(r2, &(0x7f0000000180)={0x7, 0x21, 0x1}, 0x7) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:07 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(0xffffffffffffffff, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x10000000}}, 0x28) 15:17:07 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3f000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0x0, 0x4, 0x1002, 0x0, 0xfffffffffffffffc}) getsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000040), &(0x7f0000000080)=0x10) setsockopt$inet_dccp_buf(r0, 0x21, 0xf, &(0x7f0000000100)="7c12c4b1694dabfbc474b2d4181c9a9fb3e925adf23431408c831f1b39a884b6645c71ad5372cfdfdb8933c810e2ea77a222c633975658f986e85fa3ff11b9dccb096a8f2eb95690ec65bd819a79f3140752b974ed3af01c03faf0ea6eabd5e0118ff6749dbda6588b1fdc98fb7e94d968d01a78cfc4d928b28d4dab4b473450d6115c3576f684753fcd637b9db24603c7b06fa6eb1254d66729f8", 0x9b) ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f00000001c0)) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000200)=0x3) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000240)=0x5) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x800000000000000}}, 0x28) 15:17:07 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, 0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x2) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x40000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x1000000000000000}}, 0x28) 15:17:07 executing program 2: ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000080)=0x0) r1 = syz_open_procfs(r0, &(0x7f00000000c0)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000100)={{0xa, 0x4e23, 0x8, @rand_addr="e562fefc7258c7dabad412c26cf06c05", 0x80000001}, {0xa, 0x4e23, 0x100, @remote, 0x2}, 0x57, [0x5, 0xffffffffffffff01, 0x6, 0x3, 0x8, 0x73b4, 0x0, 0x8]}, 0x5c) 15:17:07 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:07 executing program 2: sysinfo(&(0x7f0000000180)=""/226) r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/btrfs-control\x00', 0x401, 0x0) ioctl$RTC_PIE_OFF(r0, 0x7006) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000003480)={'team0\x00', 0x0}) sendmsg$xdp(r0, &(0x7f00000046c0)={&(0x7f00000034c0)={0x2c, 0x4, r1, 0x38}, 0x10, &(0x7f0000004680)=[{&(0x7f0000003500)="f8270f67d6e15d10e57d4cd325031db6c5f723d8924041752164842285a0e8d0085b84e92d696f7df41ca0da3e3ea7b69e0d513448abf9aeae705aaa0b691f19e0ce38458b233ce8427ca0a835924b6ed57f1e08b2120e91a7b986bc8763d376276a109c910348bb989a374801221ee29a3bdf6444b2ea43da21fd3d1416d6af1697d1b2409b16837cbccf03a74269", 0x8f}, {&(0x7f00000035c0)="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", 0x1000}, {&(0x7f00000045c0)}, {&(0x7f0000004600)="ca2c5f94723be6c94c16b6ecaae036f95b4c77e8892f8a2d8698787109b0f39f58fe53bb33af4d0f170342cebd6b1bfe5696aa284c4fbe6fd9d1cc5b0e978bec1713b9c11fa70e8352401dcfee28beae657216c6bb2a375bd1e913d90e1c4d4a92d2b94edb3450", 0x67}], 0x4, 0x0, 0x0, 0x4000000}, 0x8001) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000080)=0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000004c0)={0xffffffffffffffff}, 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r2, &(0x7f0000000540)={0x5, 0x10, 0xfa00, {&(0x7f00000002c0), r4}}, 0x18) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x2, 0x0) capset(&(0x7f00000000c0)={0x20080522, r3}, &(0x7f0000000100)={0x5ae, 0x800, 0x5, 0x3f, 0x2, 0xffffffff8d5e132f}) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000040)) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0xf) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd4000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x4001fd) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="f766"], 0x2) 15:17:07 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, 0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x20000028) 15:17:07 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xf6ffffff, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') write$binfmt_aout(r0, &(0x7f0000000100)={{0x107, 0x3, 0xffff, 0x2e4, 0x13f, 0x7fff, 0x3cd, 0x5}, "595beb96557ff6879a97394f832caf9fc4227b577e17b9f4ec1b65e639c2e5d63397d9f2421bf417a195957a96a08ad68ac63519c1c75bf3a456c63f72ed60523ddc4f26202fe3cfb9c9fcb3534216ddb5f195296471d5d0153b52474a8da1b82afc33f29238b86a227606d79fde31894934296c5da4693d98a7dfa745156d35e0a7ad27c4e1b097ab0a634949f89bddf35cc9fe7cec9752eafc728d286227f6d964a487e65aa6dcd8a6696715a820d1eb6aee5b4bd13f0ec1382bfcab8ceccbf12cf6854c2ad40f2e6f2bead7b77375fdb3595ddcfbbe09b45989982f148ebb5f33541b80c57fd76a511f3b3171", [[], [], [], [], [], [], [], []]}, 0x90e) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{}]}) readv(r0, &(0x7f0000000c40)=[{&(0x7f0000000a40)=""/236, 0xec}, {&(0x7f0000000b40)=""/246, 0xf6}], 0x2) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$audion(&(0x7f00000006c0)='/dev/audio#\x00', 0x5, 0x121800) r3 = syz_open_dev$sndpcmc(&(0x7f0000000700)='/dev/snd/pcmC#D#c\x00', 0x401, 0x721000) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r4 = fcntl$dupfd(r1, 0x406, r1) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x8000, 0x0) r7 = dup2(r0, r1) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r6, 0x2405, r7) write$P9_RLERRORu(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff0f"], 0x2) r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') write$uinput_user_dev(r7, &(0x7f0000000240)={'syz0\x00', {0x4, 0x6bf, 0x100000001, 0x3}, 0x39, [0x2, 0x62f4, 0x0, 0x6, 0x100000000, 0x0, 0x0, 0xfff, 0x2, 0x401, 0x10001, 0x6, 0x3f, 0x536, 0x100000000, 0x3f, 0x5, 0xffff, 0x40, 0x5, 0x0, 0x3dcd, 0x5, 0x94, 0x3f, 0x1000, 0x8001, 0x5, 0x5, 0x1, 0x1ff, 0x4, 0x10000, 0x4, 0x9292, 0x10000, 0xf68a, 0x4, 0x6, 0x20, 0x4d, 0xbd630000000, 0x8, 0x8, 0xffffffff, 0x400, 0x9, 0x9, 0x9, 0x0, 0x7, 0xfffffffffffffffe, 0x1, 0x1, 0x40, 0x2, 0x2, 0x1000000000000000, 0x1, 0x4be, 0x5, 0xffff, 0x2, 0x4], [0x5, 0x0, 0x20, 0x3a, 0x3, 0x101, 0x5, 0xffffffffffffffc0, 0x10001, 0x8, 0xfffffffffffffffd, 0x5, 0x0, 0x6, 0x8, 0x0, 0x401, 0x9, 0x4, 0xda800000000000, 0x9, 0x0, 0x5, 0x4, 0xc179, 0x6, 0x3, 0x80000000, 0xff, 0x80000001, 0x1, 0x1e065c99, 0x7, 0xff, 0x4, 0x8, 0x9, 0x3, 0x2, 0x7f, 0x101, 0x3, 0xd3, 0x4, 0x4, 0x5, 0x9, 0x19, 0x6, 0x100000000, 0x80000000, 0xb14, 0x1, 0x1, 0x101, 0xff, 0x7fffffff, 0x2, 0x4689, 0x8, 0xffffffffffffffc5, 0x1, 0xc1, 0x3f], [0x8, 0x7fffffff, 0x6, 0x7, 0x1, 0x200, 0x101, 0x8, 0x0, 0x9, 0x8, 0x4, 0x1, 0x40, 0x5, 0x6, 0x4, 0x1, 0x9, 0xbaa4, 0xfff, 0x5, 0x8416, 0x5, 0x0, 0x0, 0xedfd, 0x2, 0x7, 0x81, 0x9, 0xbd, 0x6, 0x9, 0x13f6, 0x0, 0x7, 0x4, 0x5, 0x100000001, 0x9, 0x40, 0x2, 0x180000000, 0xfffffffffffffffd, 0x0, 0x8, 0x0, 0x74, 0x7, 0x0, 0x1, 0x5, 0x9, 0x5, 0x50d, 0x0, 0x401, 0x8, 0x10000, 0xb2, 0x800000010000, 0x100, 0x400], [0x6, 0x0, 0x1f, 0x3, 0x8001, 0x8, 0x50, 0x0, 0x0, 0x0, 0x7fff, 0x2, 0x2, 0x0, 0x3ff, 0x2, 0x6, 0x8, 0xa7c7, 0x100, 0x10001, 0xfff, 0x9bef, 0x9, 0x9e7, 0x9d, 0x200, 0x8, 0x10000, 0x7f, 0x987e, 0x0, 0x7, 0x2, 0x1, 0x2, 0x81, 0x8, 0x696, 0x1771, 0x525e000000000000, 0x5, 0x38000000000, 0x9, 0x8, 0x4, 0x5fcf, 0x0, 0x5, 0x400, 0x100000000, 0x2000000000000, 0x7fff, 0x2, 0x8, 0x800, 0x6, 0xc1e4, 0x7, 0x7, 0x3710, 0x80000001, 0x8, 0x9]}, 0x45c) sendmsg$IPVS_CMD_ZERO(r6, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r8, 0x410, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x400}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xff}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008000}, 0x48881) 15:17:07 executing program 2: getpgrp(0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x8000, 0x0) ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0x930) r2 = syz_open_procfs(r0, &(0x7f00000000c0)='net/stat\x00') ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000040)) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:07 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, 0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:07 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfbffffff, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.stat\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000080)={0x3, 0x1, 0xc688, 0x7, 0x0}, &(0x7f00000000c0)=0x10) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f00000002c0)={'filter\x00', 0x0, 0x0, 0x0, [], 0x3, &(0x7f0000000240)=[{}, {}, {}, {}, {}], 0x0, [{}, {}, {}]}, 0xa8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e20, 0x892, @mcast2, 0xfffffffffffffbff}}, 0x1ff, 0x20}, 0x90) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f00000001c0)) 15:17:07 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) fsetxattr$security_smack_transmute(r0, &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x2) 15:17:07 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = geteuid() getresuid(&(0x7f00000001c0)=0x0, &(0x7f0000000200), &(0x7f0000000240)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0}, &(0x7f00000002c0)=0xc) r4 = accept4(r0, &(0x7f0000000a40)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000ac0)=0x80, 0x800) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000b00)={{{@in6=@remote, @in6}}, {{@in6=@remote}, 0x0, @in6=@empty}}, &(0x7f0000000c00)=0xe8) fstat(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r7 = getuid() getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000440)={{{@in=@multicast2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0xe8) getresgid(&(0x7f0000000580)=0x0, &(0x7f00000005c0), &(0x7f0000000600)) lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x6, &(0x7f0000000700)=[0xee00, 0x0, 0xee01, 0x0, 0xee00, 0xee01]) r12 = getgid() lstat(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r15 = getegid() r16 = getegid() getresgid(&(0x7f00000008c0), &(0x7f0000000900), &(0x7f0000000940)=0x0) iopl(0xfffffffffffffffc) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f0000000980)={{}, {0x1, 0x4}, [{0x2, 0x5, r1}, {0x2, 0x2, r2}, {0x2, 0x4, r3}, {0x2, 0x1, r5}, {0x2, 0x2, r6}, {0x2, 0x0, r7}, {0x2, 0x2, r8}], {0x4, 0x1}, [{0x8, 0x5, r9}, {0x8, 0x2, r10}, {0x8, 0x2, r11}, {0x8, 0x6, r12}, {0x8, 0x1, r13}, {0x8, 0x5, r14}, {0x8, 0x7, r15}, {0x8, 0x7, r16}, {0x8, 0x6, r17}], {0x10, 0x2}, {0x20, 0x5}}, 0xa4, 0x2) r18 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r18, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r19 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x18100, 0x0) ioctl$TUNSETIFF(r19, 0x400454ca, &(0x7f0000000100)={'nlmon0\x00', 0x5703}) 15:17:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfcffffff, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:07 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', 0x0, 0x0, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:07 executing program 5: r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x80002, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f0000000240)) openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x90000, 0x0) setsockopt$CAIFSO_REQ_PARAM(r1, 0x116, 0x80, &(0x7f0000000080)="68b28fe2425ae9d03432b802088040748947ea0b9413c60a1a10aabe2e800f8ba8d5ef1a662ec937f8ca0dcb6e24edeaf934fad48dd50b0c05576ae01f0b41ebc897a8938eebfa4b7853540af4ceda617478bc4076ca00540b41130b83e352bd85388ea0051c7c045684dbfc686af8fa3d5da68e3218fc94ef83e9b4b2837a1b55", 0x81) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x800, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r2, 0x770a, 0x0) 15:17:07 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfd, 0x1000000}, 0xc) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f00000000c0)) 15:17:08 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000040)=0x0) ptrace$getregs(0xc, r1, 0x9b62, &(0x7f00000004c0)=""/4096) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x2) 15:17:08 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x80501, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfdfdffff, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x80080, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080)={0x0, 0xa1, "ce6e747909efa140b4be1cec66ba25416fd68c1cdacdc7f9068e552d84326deaa500dd23c75ef564e808536588893230219ef402f9c2af454651750b99126b24f31e8a547f3cae11f58f24343669c9ded341dde3eeb2e99032864a5d38783139fd3a4d5ff27cd6ebc1f3992f4af33e90466b31a1e808d6a609b8c5327afd46edfd149d947cf87f699838c4c5ce174bd8e562daeb80091047cac052372498852c03"}, &(0x7f0000000140)=0xa9) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r2, 0x8, 0x6}, &(0x7f0000000200)=0xc) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x2, 0x4, 0x0, {0x0, 0x6}}, 0x28) remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000000, 0x9640, 0x45100) 15:17:08 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', 0x0, 0x0, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0xc859) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="ff85297cb801aff6e4365107e3c48bed765bad1335e85d1383e5f5749b86bd33fb386ff979562bfdad"], 0x2) 15:17:08 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x9) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfeffffff, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x3f, 0x4000) r2 = dup3(r0, r0, 0x80000) ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000080)={0x7, 0x5, 0x8000, 0x84800, r2}) 15:17:08 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x0, 0x2) dup(r0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x200c00, 0x20) write$P9_RLERRORu(r2, &(0x7f0000000200)=ANY=[@ANYRESOCT=0x0], 0x17) r3 = semget$private(0x0, 0x2, 0x10) semctl$IPC_RMID(r3, 0x0, 0x0) 15:17:08 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', 0x0, 0x0, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:08 executing program 2: r0 = gettid() r1 = syz_open_procfs(r0, &(0x7f0000000080)='net/ip_tables_targets\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfffffdfd, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x10000, 0x0) ioctl$CAPI_MANUFACTURER_CMD(r1, 0xc0104320, &(0x7f0000000100)={0x3, &(0x7f0000000080)="9c99d20314eee069ec425ed988580f284f0d0810fa4b269e8ddcaa16df847f0846e0ba103b66068b0dce8eb3791ead34c3422b150a1088c21f83b8f2bcbde5ac9f7355cadbb50484bb560d35d7f6365e42b31678c3b3af087496e6f6322a05bcce3468cd8cf744184af7"}) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) prctl$PR_SVE_SET_VL(0x32, 0x3f255) 15:17:08 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x400302, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000001c0)=ANY=[@ANYRES32=r0], 0x1) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x40, 0x0) ioctl$VIDIOC_ENUMAUDIO(r2, 0xc0345641, &(0x7f0000000100)={0xb2, "f2c48de7eca21d9b26211149f81aa83966cb68fab10fa363088f052734a55ea4", 0x0, 0x1}) r3 = dup(r0) ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000200)={0xbf0000, 0x3, 0x3ff, [], &(0x7f0000000180)={0x990aff, 0x6, [], @value64=0x1}}) ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000080)={0x0, 0xd000, 0x401, 0xfffffffffffeffff, 0x1}) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfffffff6, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x2}) 15:17:08 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:08 executing program 5: r0 = syz_open_dev$midi(&(0x7f0000000240)='/dev/midi#\x00', 0x2, 0x80000) ioctl$VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000280)={0x7, 0x7, 0x4, 0x80000, {}, {0x2, 0x8, 0x6, 0x80000000, 0x40000000000, 0x8, "6adaedbd"}, 0x400, 0x2, @userptr=0x9, 0x4}) r1 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x7, 0x8100) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x3df2}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000180)={r2, 0x3e3}, 0x8) ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f00000001c0)=0xf6) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r3, &(0x7f0000000000)={0x28, 0x4}, 0x28) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) ioctl$BLKIOMIN(r4, 0x1278, &(0x7f0000000080)) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_G_OUTPUT(r1, 0x8004562e, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) dup(r2) ioctl$BLKPG(r2, 0x1269, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x5b, &(0x7f0000000080)="94b5cd54a84f82ba9421cd77e44f620dc2e4a6608d367edc5425c5565d0021d23f3f133c45e6aacf084eca8a30de93883578a38eb5c10c7ab3641202d2a7dd8f6ac41b60541b8d16f2bdb64b851bd655d966fa65ce861249d55d7e"}) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) setsockopt$inet6_tcp_int(r4, 0x6, 0x1b, &(0x7f0000000180)=0x3, 0x4) write$P9_RLERRORu(r3, &(0x7f0000000100)=ANY=[], 0x2) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfffffffb, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:08 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) write$P9_RLERRORu(r0, &(0x7f0000000080)={0xd, 0x7, 0x1, {{}, 0x400}}, 0xd) 15:17:08 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x709000) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:08 executing program 2: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x404000, 0x0) modify_ldt$write(0x1, &(0x7f00000013c0)={0xff, 0x0, 0x2400, 0xbb, 0x3f, 0xaebf, 0x4, 0x1, 0x9, 0x4}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) writev(r0, &(0x7f0000001380)=[{&(0x7f00000000c0)="5b9e956eff29ff85ad4738cf136e7aeaf881ea94cc493566f262b9247749be1b2d51134cb89d9ed1372458d6279152583a07a7fcb3c26e9bfea396ddb548e672d00fe224d438cb42d7a9075eacb923dc4d7243c0357bbc35fd3c4c08f0b07d4e5d9ca13db65949f470f7241100e690af1aa4dd91eb843318226e01aba55bd713964ee6697109401f0a3cc3a13f757d3cca8da1600755dd003c041003a29b2e1f1c5d75bdc5a0", 0xa6}, {&(0x7f0000000180)="0a6c47126017942f1f3705e2434747f8993eb6bb62aa7cd0437e8689e109aecb5b40219665b2c02a570769c7c2e53ea3e516dbde2ae3f5195d01dbf09e5c1d99683328c7286500ef3925a39cdf93b77a1d5fd41c8eba9f1fc6fa41c913cd6d04d2dfaf1207f69c01027a6e156890142ece19243a02cac6bb3790abccf745e0f3de2eaa516ecf0a46026141bce3877689ab9a558981ef2e53f8115b553d5b9db08c5ff6110963673850e64d75f473fcb4eb923e7ec6c790edd2233fab089b669f467f456e708d69026293fe0c3355d1a6273f79fa142bf3d8ea", 0xd9}, {&(0x7f0000000280)="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", 0x1000}, {&(0x7f0000001280)="e833e78cfd150e333d4904a9ee9f578156991f05d45181372ea967eea64edf17867821b4126e241e4852b02129133a18bdfc1a6c0b629794b5f86a2b1cdcc308e35085d67b913deab68afa374480656b770c7f994b839bece7595cc174b015eab0817f69246bb64cb34ff0bd71e1fd2e17edae6797805d6fd99723a7cf4bc32785b8a66faff435f4177cbb43a4d9d2f2a173303d91e8efd1a213b767a316181c99108216ccdf15d6f1a1dec0418cc67d9c6742bde97dc8d839e0895b6f908aa3a07681d3a03aa6cb379a0ac37b51192fdf383a1406d132da", 0xd8}], 0x4) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfffffffc, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 5: openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) 15:17:08 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:08 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfffffffe, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:08 executing program 2: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/exec\x00', 0x2, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x14) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:08 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x100000000, 0x1) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000100), &(0x7f0000000140)=0x14) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x4000) ioctl$sock_inet_SIOCSIFPFLAGS(r2, 0x8934, &(0x7f0000000080)={'erspan0\x00', 0x4}) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:08 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:08 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$VIDIOC_G_FBUF(r0, 0x8030560a, &(0x7f0000000080)={0x60, 0x1, &(0x7f0000000100)="52766c0aaa01ab7fdf495858172ed0d14edca9c442a2167d37414f488e38bb0e0c9090a2c84ee9be2f06bce08c7f39a157dbcf6113266a4734af32696f2d69717fa6306305d45ebf292cde25837d094459a856a0a9a1f9960b8357d3fa5ddcc68fae17194ae60442e48cc88c94ecf1e77024233376ee4f716cabf59673d77f181f6cf60ba39d2096a274e553bc109102ecdc5b1e4e920c10e0528cb714c61c76b786f054771f31c6cad0dd07e2b3797c8b3dd9d0737fb28c732aa9406dbadc7676947f50836c221c6162da4228aee7005e37a2837f58ee9641fc520c57dadbd3903c2d0caae4c8d06bb9325a1588", {0x401, 0x1ec, 0x7f775f5f, 0x0, 0xffffffffffffff81, 0x1, 0x0, 0xffffffff}}) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="dc81"], 0x2) 15:17:09 executing program 2: ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000100)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x00\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xc7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000000)={0x0, 0x4}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000140)={r2, 0xfcac, 0x30}, &(0x7f0000000180)=0xc) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r1, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r4, 0x8, 0x70bd27, 0x25dfdbff, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000004) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000001c0)={r3, @in6={{0xa, 0x4e24, 0x100000000, @mcast1, 0x7fff}}}, &(0x7f0000000280)=0x84) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x1000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x1c000) getsockopt$inet_tcp_int(r1, 0x6, 0x0, &(0x7f0000000000), &(0x7f00000000c0)=0x4) connect$tipc(r1, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x3, {0x43, 0x0, 0x4}}, 0x10) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000080)={0x28, 0x4}, 0x5c7) 15:17:09 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:09 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x4, 0x0, {0x20}}, 0x28) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x10000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000140)={0x5}, 0x4) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000080)=""/177) 15:17:09 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x40) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x6) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:09 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x2) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x101100, 0x0) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x10540, 0x0) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000140)='fou\x00') sendmsg$FOU_CMD_GET(r1, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r2, 0x610, 0x70bd29, 0x25dfdbfd, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e23}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x400c0) r3 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x1, 0xc000) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) readahead(r0, 0x95, 0x3f) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x20000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x842, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:09 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000080)={0x0, 0x7c, "8d4bdfddc1e5dc459bc8b5b4d25214bf59db027c089d40decf881575d838ff95c3cc71885a66c5d4a70d456c9b59049a10f388946b2e2d4b1472217cc8bdccd1d8a3694bfe594462a6f402ef03f808293063f7fc5f6245333b4a0225cd89f66321855edec2bd8fcf9ba3b79c6ed149ad208d189fae139fb5b5f53331"}, &(0x7f0000000140)=0x84) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={r1, 0x80000001}, &(0x7f00000001c0)=0x8) 15:17:09 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) socket$vsock_dgram(0x28, 0x2, 0x0) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl(r0, 0x812, &(0x7f0000000100)="95c1f433704c4e65acef370d0644789cd0c674dd15cf8c776a235203d89ae60489feb29d9272b030acf63793da31f712a5c9385d0cc2acd8701b40a67f86b8f5cc7f97cc1a9e8f488b0a943bc3d0b035b30f5f74296b89ce544e49b8b19dac042364f6f7ce79c89efb2cc8e75a4ac2b73f783309349f1eff68c8c57553b9d69e03a1") r1 = syz_open_dev$sndpcmp(&(0x7f00000002c0)='/dev/snd/pcmC#D#p\x00', 0xbec, 0x20000) ioctl$KVM_ARM_SET_DEVICE_ADDR(r1, 0x4010aeab, &(0x7f0000000300)={0x6, 0x2000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r3 = socket$bt_cmtp(0x1f, 0x3, 0x5) setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f0000000080)=0xffffffffffff7fff, 0x4) r4 = accept(r0, &(0x7f00000001c0)=@isdn, &(0x7f0000000240)=0x80) setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10) 15:17:09 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x80000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000080)=@generic={0x0, 0x8, 0x2}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:09 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x290000, 0x0) setsockopt$MISDN_TIME_STAMP(r1, 0x0, 0x1, &(0x7f00000000c0)=0xffffffffffffffff, 0x4) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x100000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x80000, 0x0) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0x400, 0x0) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="ff81ec9fe408928c2f48ff0f000000000000579d1065bcea1f4afcd51962782ab8d950b57737e6f0819ae27c2a2056cb4570dffec60365cb962d8b58680aef646dd1a2fbdbab26db1a10b61931eda6d27853c641a095e4abc65616b6c764afe968b69d4baeb20cf7c1e283d11b10853e381549ecb32531122c2075bfc208000006dc0a5b18a7978e528723116be80000000075704ed1a94c59db283873cc221b2e7072d3489269705ebf1f3f3774753922951d42cd83dd8a15131c64611285d35884c06909ae10bffa98e115d829b0d312cdc788"], 0x2) r3 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x0, 0x2) signalfd(r2, &(0x7f00000000c0)={0x100000001}, 0x8) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r3, 0x81785501, &(0x7f0000000240)=""/255) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x3f}) syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x8, 0x2) ioctl(r0, 0x3, &(0x7f0000000080)="6c5bae4e9bc8cf39d2f2ff9998e96519edd2e389cc666794179adcaccf80b95a0e96589382b1a75a2272cb8983b04087bf0f94eada1d644672d7716618f35f8ef2b17964056478431393f7098e1ee6cc0ebe32fe0c369b2954463b4f92f16867f50ee686b29ac11fa5e3b9d3fc072e0c25221dcfeecccd15b12433cc29639d474030dff144ebee478c3c46c63777204ad3008845c8a32dd45f324112c7ec5819a2daed0c6965cf87d8a529fc63a3eb315d5ae5a0cb506181a8074c0930f801526ce084beac25f04159817df91f43ef91dc189b968a14d893276c55c5c1e0c4cdd64de36d098ac5") getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@multicast2}}, &(0x7f0000000380)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1f, 0xc, &(0x7f0000000180)=@raw=[@map={0x18, 0x7, 0x1, 0x0, r0}, @exit, @call={0x85, 0x0, 0x0, 0x27}, @ldst={0x3, 0x2, 0x1, 0x0, 0xa, 0x1c, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, @ldst={0x0, 0x18a328eff524ec65, 0x1, 0xf, 0x2, 0x118}, @initr0={0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9}, @map={0x18, 0x5, 0x1, 0x0, r0}], &(0x7f0000000200)='GPL\x00', 0xfffffffffffffffa, 0x0, 0x0, 0x41100, 0x1, [], r1, 0xb}, 0x48) ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]) 15:17:09 executing program 4: perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0xfffffffffffffe52, 0x4, 0x0, {0xffffffffffffffff, 0x9}}, 0x36f) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r3 = fcntl$dupfd(r0, 0x0, r0) ioctl$sock_inet6_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000080)) 15:17:09 executing program 4: perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x300000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:09 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:09 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:09 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000001100)={0x59, 0x2, 0x1000, &(0x7f0000000100)="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"}) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="ff7c"], 0x2) 15:17:09 executing program 4: perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)) 15:17:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x400000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={0x0, 0x0, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1, 0x2c0368a598ce9066) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 2: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/ip6_tables_matches\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) socket$inet_smc(0x2b, 0x1, 0x0) fcntl$setstatus(r1, 0x4, 0x40800) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000080), &(0x7f0000000100)=0x4) 15:17:10 executing program 3: socketpair$unix(0x1, 0xfffffffffffffffe, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xb9\xb3\xf8h>\xcf\x89\xde\xe9\x01\xd2\xdau\xc0\x1f\x02\x00\xf5\x8d&\xd7\xa0q\xfb53\x1c\xe3\x9cZ\xee\xffP\x83\xcf\a\xddFE\\\x91MJ\xff\x1e|\xf7\xedW\xc0\xc2\x05o\\\xa9\xfc\xf0<\xbf\x82\xbd\x13SG73\x92E\xd3\xc7\x06A\xbeb\x81\xd7\xe1\xb4\xb7\t\x91\x14\xc5q\x87\"\x98\xdd\x7f! \xe2\xb6\xfa*.*,\x9cn\x004u\vya\xfa,\x15\x84\xc0\xb5\xa5\x00\xae\n\xc3\x9b\xc7jx\xd9\x15\x82fu\x9fvj>\x8c\x84\xc0\x9c\xf3\xad\x88\x82\x94\x7f\xfa\x1f\xb4\xc0Pr{\xeb\x12\xc5~\x06\xffY\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x89$W\x8a\xd4\x9e\xa1\x14LtH\xd6@\xaa\x88\xa6jq\xb7}s\xa9$\xff\x02\x7f\xdc\xb5P\x16\x16S\xd4\xcbW\b\x83\x85$\x82\x86\xf5\xbe\x9d\x87f\xc7\f)\xe6\xf5\x06=\xfet\xa1\xb0\xb5 y\x15\x90H!\vM\'\x1a\xc9L\x88\x9b\x06<\xa3J\tW\x9a\xf061\xf1(\xe6\xdd,\x96m\xae\xcd|o~\x0fN\xbc\xaf\x80%\f\xfa\xb0q\x84\x83\x80x\xc7\x1d\x80\x9d\x06\xdc\v\xacu\xdb\x81E%\xd1\xd1\xac\xafL\xb6\xf4\x89\x0f9s\x82\xaecf\x97\xf6\x88\tN8\xdb\\\"w\x0fS\alc\r\xf9\xbbL\x14\x91\x89\xff\xa9u\xf5 \x871\x1c[\xaa\xfc\x11\xc9\v\xdc%\xfc\x80;q\x15=\xdc9\x95\xb2\xdfI\xcd\xd7\x84\xbc[\xea@\x86\x10p\xda\xdb9^\x85\xc9<\xdf\xa0\x8e') mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) mlock(&(0x7f0000001000/0x1000)=nil, 0x1000) pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x200, 0x0) write$P9_RLERRORu(r2, &(0x7f0000000080)=ANY=[], 0x0) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x500000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = dup(r0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000014c0)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f0000001580)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001540)={&(0x7f0000001500)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x40) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x8000}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000240)={0x7, 0x8002, 0x8, 0x6, r4}, 0x10) r5 = accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @multicast1}, &(0x7f0000000080)=0x10) getsockopt$sock_timeval(r5, 0x1, 0x15, &(0x7f00000000c0), &(0x7f0000000100)=0x10) 15:17:10 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x800000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') fcntl$notify(r0, 0x402, 0x2) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:10 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="b91129965fba2b8da5ba1fa25c"], 0x2) rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x4, 0x0, {0x2}}, 0x5) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x900000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000080)={'ip6erspan0\x00', {0x2, 0x4e20, @loopback}}) 15:17:10 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x2, 0x0) ioctl$void(r0, 0x5451) r1 = dup3(r0, r0, 0x0) ioctl$UI_GET_SYSNAME(r1, 0x8040552c, &(0x7f0000000040)) ioctl$VIDIOC_G_FMT(r1, 0xc0d05604, &(0x7f0000000080)={0xa, @vbi={0x3e0000, 0x3, 0x7f, 0x38415261, [0x6], [0x1, 0x5]}}) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x1}) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd00000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001200)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200)="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", 0x1000, r1}, 0x68) sendmsg$TIPC_NL_BEARER_DISABLE(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800001}, 0xc, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="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", @ANYRES16=r2, @ANYRES32=r1], 0x3}, 0x1, 0x0, 0x0, 0x4001}, 0x40080) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x4}, 0xfffffffffffffdcd) prctl$PR_GET_TIMERSLACK(0x1e) socket$inet_sctp(0x2, 0x1, 0x84) 15:17:10 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x2) 15:17:10 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x8800, 0x0) ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f00000000c0)={0x2, 0x4}) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f00000001c0)) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='attr/curren\x84\x00\xda\xb0:\xe6\xf5x;\xb0G\xf1L\x9d\x06?L\x86\x85L!!z!_\xe6G\xa7\xaf\x8d\x13\xe4\xa1 \x16&\xef\x04\x1a[?\x18kR\xc6s\xb6{y\xad\xb7\x9f\xb5\xaf>\'\xbf:\x81\xd6\xb0\x13m\xf9\xa5s\xc9y\xcb\x85\x97\xd0\xaa\xd3^.\x9bX\xc7\xabXS%\xa7\xf2G\xd6z\xa0:\x01&K\xc6~g[\xf0\x00\xec\x1f\xd3eO\xe4\x19\xdaE~\"\x02\xd3g\xb6/F\xcd<|\xcf\x97\xb2\xe4Q\"\xe0\xc1\xf7\r\xbd') r2 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f00000002c0)="eb14e5683acc8e8e5b7c60c7f9d93801231b8d9e163b2455a24c68c98519d2031505ca5b58a9b2eb097f2f7841062feacd231643cc5a44842eeb8b6cda4c16a0b04658312fde639b31c36c7d766ec13a9f24258a339a29b6641acfc11c95abc8634671ab5d81da0a9b9636584abb91bc2f61f113fa2dbd5245e52762d9bb7e1b509829ef3c2a6a6437d8809f8ce3545a3799f26d1f315f52ad1478274eb175c970a655b19ebf5c2ed4bae68e50b648f41ea7ff717d5f08fb03b00d7ee75e0f53", 0xc0, 0xfffffffffffffff8) r3 = getuid() r4 = open(&(0x7f0000000500)='./file0\x00', 0x8ac0, 0x5a) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f0000000540), &(0x7f0000000580)=0x4) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) keyctl$chown(0x4, r2, r3, r5) epoll_create1(0x80000) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfffffffffffffffe}) set_robust_list(&(0x7f0000000940)={&(0x7f0000000880)={&(0x7f0000000840)}, 0xd0, &(0x7f0000000900)={&(0x7f00000008c0)}}, 0x18) setitimer(0x0, &(0x7f00000005c0)={{}, {0x77359400}}, 0x0) ioctl$EVIOCGBITKEY(r1, 0x80404521, &(0x7f0000000400)=""/227) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000380)={0x800, 0x20c, 0x27b, 0x8000, 0x0}, &(0x7f00000003c0)=0x10) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000980)={r6, 0x1, 0xff}, 0x8) ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000080)) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000740)={0x8, 0x2, 0x5, {0x7, @win={{0x1, 0x7f, 0x8fc, 0x1c5}, 0xb, 0x48, &(0x7f0000000680)={{0x4, 0x6, 0xd2f, 0x7fff}, &(0x7f0000000640)={{0x8001, 0x7, 0x1, 0xcf}, &(0x7f0000000600)={{0x4, 0x200, 0x4, 0x1}}}}, 0xa60, &(0x7f00000006c0)="32ef1625a7bb090e68d422781e34febeaa42d8ccb96935c067dbf339b47f770d741a6c008b970dce39eb069280961447cada34040f09323eb86dff8d7124ead9593cfd91cfeb9ed447da2e", 0x7a16}}}) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x1000000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="0381"], 0x2) 15:17:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000280)) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0xfffffffffffffe1f, 0x5, 0xfffffffffffffbfc, 0x3, 0x400}) getsockopt$EBT_SO_GET_INIT_ENTRIES(r1, 0x0, 0x83, &(0x7f00000001c0)={'filter\x00', 0x0, 0x3, 0x44, [], 0x2, &(0x7f0000000100)=[{}, {}], &(0x7f0000000140)=""/68}, &(0x7f0000000240)=0x78) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) 15:17:10 executing program 5: prctl$PR_SET_FPEXC(0xc, 0x2) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x20000, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x4b31, 0x329, 0x8}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={r1, 0x2}, 0x8) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x2900000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:10 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:10 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) tee(r0, r0, 0x100000001, 0x3) 15:17:10 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x800, 0x0) ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000240), &(0x7f0000000280)=0x4) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:10 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:10 executing program 5: write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x4}, 0x28) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000080)) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3000000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 5: openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x800) getsockname$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000140)=0x1c) socket$vsock_dgram(0x28, 0x2, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-monitor\x00', 0x10000, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r1, 0x800448d3, &(0x7f00000001c0)={{0x8, 0xfffffffffffffffd, 0x67, 0x24, 0x9, 0xf5db}, 0x3, 0x10000, 0x7, 0x7ff, 0x5, "0b52874fe0d9528c4ada2f88df6566f15e12c1d557ff32782695f657325e9e8fed1d5d5d68df956c9feb1b114cfd4101b7fdad32636d07fef76544bff2fd9130505f30850c09b01f399d100797ca4b526459cf3251c21913197ac2e6ae57e560ccee0505b7dde9a1eb707f2b3fe32db175de2139d669a821c58223ea6d8dc9a8"}) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) lseek(r0, 0x0, 0x3) 15:17:11 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x2, 0x1) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f00000000c0)=""/134) write$P9_RLERRORu(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x2) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000340)) 15:17:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@ipv4={[], [], @dev}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@multicast2}}, &(0x7f0000000240)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@loopback}}, {{@in=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000080)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000280)={'team0\x00', r1}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x3f00000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) lseek(r0, 0x0, 0x3) 15:17:11 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1d000000"], 0x2) 15:17:11 executing program 5: openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x420a03, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) fadvise64(r0, 0x0, 0x4, 0x4) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x4000000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 2: syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xd400000000000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, 0x0) lseek(r0, 0x0, 0x3) 15:17:11 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:11 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x80, 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0xfffffe5b) r2 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x60000) write$P9_RWRITE(r2, &(0x7f0000000100)={0xb, 0x77, 0x1, 0x100}, 0xb) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 2: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000200)) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000004c0)={0x0}, &(0x7f0000000500)=0xc) r1 = syz_open_procfs(r0, &(0x7f0000000380)='\x04\x00xe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xda5\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00|\x8a.\xd2Gf\x1d\x88lgi\xe0@j&\xf5\xeb\xbc\x01\xefxs\xa4\xe2;N\x10\f\x8b\x18]\fM\xe7\xaaq\f\x06\x93\xa9\x11=\x1e]\xee\xa0M\xd29\xda\x84x\xf3\xb3\x1e\x98*\t\xc3\x01\xb6<\xf1N\xd447\"`b@\'O\xc9\xbf+!\x83\x85\x91x;Mq\x8dF\xcd\xb0\xcc\x93\x1c\x01-u\x99]G>\xc4/\xdb6\xb0\x0f\x18\x0e\xaa)&p\x04\xf2R2\x19\x84\xaf\xaaer\nQ\'H\x91\x9e\xbfj\xe0:\x18\xfa\xce\x16\'$\xa4\x84\xfe\x12\xbe\xf9\x88[\x83\x1b\xfe\x9b\x8a\xd5l\x18\xfb\x12\xb2\x83\\\xc0\xef\xf2`\x89\x91k\x7f\xb3E\xfb\xb1\x82y\x01\\\x06\xf3\x99\x1f\xcb#\xb77\x8d\xa1\xb70\'\x06\xc3\x1f \xb2\x90*(\xea\x03R^\xc5\xdaUc\xe5\xfd\x9e~\x0fy\x00`i\tG;+\xad4vm\x99\xf0\xb3\"A1\xea-M\xd4\xff\xe7\v\xa5\x8e\xf4\xb8\xfe\xdb\xd9\xe5\xefD\x18\xde9dZ\xa4\x0f_\xfb\xa3\xa7') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xf6ffffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:11 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) connect$packet(r1, &(0x7f0000000280)={0x11, 0xf6, r2, 0x1, 0x2}, 0x14) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000000c0)={0x4, 0x6, 0x20, 0xfffffffffffffffe}) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="2b3b3d560675b04f224ec015068a8f3a9541777c29b5db97230e3820d1914082bfd417cf5fd2037d0000c7ac0b05eaa0016bd5"], 0x2) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:11 executing program 2: r0 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x5, 0x400) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f00000000c0)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfbffffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:11 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r2 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xffffffff, 0x4000) ioctl$TCSETA(r2, 0x5406, &(0x7f0000000100)={0x5, 0xa4, 0x0, 0x60, 0xb, 0x5, 0xffffffffffff0001, 0x2, 0x3, 0x5}) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000006000)) ioctl$UFFDIO_REGISTER(r1, 0x8010aa01, &(0x7f0000006ffc)={{&(0x7f0000009000/0x4000)=nil, 0x7ffffffef000}}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfcffffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000140)='/dev/swradio#\x00', 0x1, 0x2) ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000180)) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x40, 0x0) sendto$inet(r2, &(0x7f0000000080)="af276cb642f50aadcf61724979fae48f304bb07b967e15a83869a65bd40d8e6a864294317d3d6f45b3fae0756b389463de1556746b738d5997d8489f2e28c2ad82", 0x41, 0x4800, &(0x7f0000000100)={0x2, 0x4e24, @remote}, 0x10) 15:17:11 executing program 3: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x8000, 0x0) ioctl$KVM_XEN_HVM_CONFIG(r0, 0x4038ae7a, &(0x7f0000001240)={0xfffffffffffff801, 0x8c3, &(0x7f0000000140)="e67ebbccab8387d42ceb361316abac34c37be7f07ee6d52568926757a45a9769e1a5b4f6848d5f8f56201ba40faa92fc1065696c1d545abdb459b7d145ee6e3f8dbb2ae65902db045a9c38ec7131bf652507cfe1440603232bce1f046e38a9e96c4e8d568ad5825abecdc6d80b2d3c5054a1044b1ef3d6bae4e7bba461dc58724387f9f6f7cc6c8ad7d04a21e68c6097756e307c48321131627e854cb3fc66120ec579af20650b3afab7b8869ff73123dde4c80202df938233fe57f850302cecde0bf972a7bc5c61169ddf02aeb245e90bbe", &(0x7f0000000240)="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", 0xd2, 0x1000}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r3 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x100, 0x400) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000140)=""/205) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000340), &(0x7f0000000380)=0x4) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000080)={0x4, 0x3, 0x200007}) 15:17:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfdfdffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:11 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x8, 0x400) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:11 executing program 3: r0 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x0, 0x0) symlinkat(&(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00') socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setxattr$trusted_overlay_opaque(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.opaque\x00', &(0x7f0000000200)='y\x00', 0x2, 0x1) r3 = getegid() ioctl(r1, 0x5, &(0x7f0000000240)="db809c3dafca6564cbe0bcb2b1865e5049e8106fe46fa3c416e72f243deb2f1c37204d1fbd337046bb022326c267391ec25568b5e066c688cb4143a89958497063aa602182f40f9259f8853928afd5e1d9329fa772c16f1968d4239fe334e4c294ba") setgid(r3) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="ff815b60dd867430d37167aba08be358b835a5229a86580814052d748b0b2020d21e2d9267262d57241063b86b4263c5c6dff802f270a4de32b938e90dba32bd80bf7bab2e77c2502a9551994bb4381d1f632a6150ad2354d3c4037413be71decb5b4670918842664b71b817ccdd928af0bc047cde32c5619d9174af69d1124cf56922e8019ad4a6fbc4e553c8b008c06d9f69120c248b9c3a68f112547f97549b7ca0f050159729489cc1"], 0x2) 15:17:11 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)={0x0, @aes128, 0x3, "bf4458bc096efcee"}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @multicast1}], 0x10) syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x3, 0x2) 15:17:11 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x0) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x101000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xfeffffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x301300, 0x0) ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000140)) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x100000000, 0x0, 0x8}) 15:17:12 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x8002, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r2, &(0x7f0000000380)={&(0x7f0000000100), 0xc, &(0x7f0000000340)={&(0x7f0000000180)={0x18c, r3, 0x408, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xffff}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x4}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1ffc0000000}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x6d70}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x6}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x54, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller1\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xffffffff}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip_vti0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_bond\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipddp0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x3f}]}, @IPVS_CMD_ATTR_DEST={0x48, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x923}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x9}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x50b4}]}]}, 0x18c}}, 0x800) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) socket$inet6_udp(0xa, 0x2, 0x0) 15:17:12 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x0) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0xffffffff00000000, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x7) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10) 15:17:12 executing program 5: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x4000, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r1, 0x6, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x800}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:12 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x940, 0x0) bind$vsock_stream(r0, &(0x7f0000000100)={0x28, 0x0, 0x2710, @host}, 0x10) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400201) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x0) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x0, 0x1ff}) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0xfffffffffffffffd}}, 0x28) 15:17:12 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x2, 0x0) r1 = fcntl$getown(r0, 0x9) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) kcmp(r1, r2, 0x4000000007, r0, r0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, 0x2, {0x7, 0x1c, 0x81, 0x0, 0xee3, 0x0, 0xc}}, 0x50) 15:17:12 executing program 2: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x2002, 0x0) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f00000000c0)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:12 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x1) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x4, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x4, 0x2000) sendmsg$tipc(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="a1013e2a73e082", 0x7}, {&(0x7f00000000c0)="903fb8ce608f04d807beb9aee622b1d011a7f61dd89cbe8b42eadba89e8978c38d519f849282376b27ed7b17e1ed2b0d354b27373c36e0f58c6ae44ceaf39c26a4975d58dacc340e7d466da5e218fe9c85625a041bbab63b6f2b513d548820c3e60df0445a166a987c17d54624ab5ac01d59da99cd507cb6be7c0dddd0cf1f95b490fc541183977439f8a102cdbb6c6ac657818612b4cb689c39ddea268c77d6e1807e76e3292a59dcbd889bec393bfee46fe35fc3a6e33f0c77d5fae72476510271ddd4069469da1ca09336f6173ab99467c9fb6fce77264b7667c4fb198deb6c329c", 0xe3}, {&(0x7f00000001c0)="17014f37d7a9aff647de6d969b554d5b46e852d92d7ec887", 0x18}, {&(0x7f0000000240)="e2d2b6bfdbd8bac645cf601a16818c484c9da9ad5ddfab3503abf1f517d6090aea0759680020eb11248862a2c3117c148dcfdb42ebd00ba26a0039091963a36d93c043f8fc741870b62364f2693728e32dc8ffef04017420522e4ce60c75fe6906f31ce47ae6f456d0b3d31ce7ab6fc3ab77990b9564cdef273700bc050bc191734de15db9a6204ec6abe259c726bd26a83b01726c8bcdeef166313c43778046167be2f2e0bfcff83c65d73bb89f7f479b3113", 0xb3}], 0x4, &(0x7f0000000340)="b08d10ab677369a65db8ffc55c331a9e394b7630006cd977ce9c386df0d3f2cceb73e9e7379b4b89b4bc", 0x2a}, 0x40) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x5, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) setxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x1) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f00000000c0)={0xe6, ""/230}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)={0x0, 0x0, 0x679e}) 15:17:12 executing program 4: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0x0, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:12 executing program 5: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0) ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000440)={0x401, 0x80000000}) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000180)={0x0}) ioctl$DRM_IOCTL_NEW_CTX(r0, 0x40086425, &(0x7f0000000200)={r1, 0x2}) getpeername$netlink(r0, &(0x7f0000000340), &(0x7f0000000380)=0xc) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/cuse\x00', 0x2, 0x0) ioctl$DRM_IOCTL_RM_CTX(r0, 0xc0086421, &(0x7f00000003c0)={r1, 0x1}) r3 = syz_open_dev$adsp(&(0x7f0000000400)='/dev/adsp#\x00', 0x5, 0xa0001) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14) write$FUSE_NOTIFY_INVAL_INODE(r2, &(0x7f0000000000)={0x28, 0x4}, 0x28) r4 = add_key(&(0x7f0000000480)='encrypted\x00', &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)="cf7448f1679dfa93ac446954250f0e7b9c4b222454c4f91244b1bbc73695140645a9876f9f120cddcbf62c45a1e770adb88cccda8e174c67941a146e10bfc6913e72f4ec4ea3f6bba34832518b80d4cdfca3868d561feaae9705ff0d1ed2f81c83f11acf1a9b5b41a87c55bf384903d6bd0012839d72ffae1e96a10bca3f3103d1eb218f76bfe37986903a6383c5fa4c1aaf86bcf9389fc529820e26dd283642cc63b67d54371d2bbeb2fb1a254d285c1835feaf4245ec6c217c009ff13f515343563b23e235fe3075758ace37d82b74eff0d1ec12cc5605687307c178b3e744f8ce877e11ac8d2453ff96", 0xeb, 0xfffffffffffffff8) r5 = request_key(&(0x7f0000000100)='.request_key_auth\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f0000000600)='/dev-cuse\x00', r4) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000700)={{{@in=@remote, @in6=@mcast1}}, {{@in=@local}, 0x0, @in6=@empty}}, &(0x7f00000001c0)=0xe8) keyctl$update(0x2, r5, &(0x7f0000000240)="48dfc73cd00e73cbd702d15e0e0d842f31f4865ab37277bf251f882870fb507a27edaa7f4a21662e7be195225c2ba8e58b464b99feb342e397a545a94cc8689cfc298ff4dd0932da00146e97dc86a65f24cbb9a30628de3178515d94ab39c16230091c42008cba6a3f18eee712410db8ab89183eaf338a331296d6f6eecb54830115cda67a09135c9649493ae0fce3a01b979da91c2efa4a7ab95f5b7c868c37e08c2aa9d0bb4185d33457c13486ff3851cd15d9e9d91a462946ff1f028e07cbf049f187482bc48c76b7a3a40611e036421def734db00749", 0xd8) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x8}) ioctl(r0, 0x4, &(0x7f00000000c0)="5d75e63af6597520cad5ac280375824086e13d9a181305e3d4a106ce6ac25ba7e1ed9b43440243e7e555de221d3f0f60d4bc58b9c0f0d90212bff686530577358fd8da0bdd50c40e2c76617ea3236d2013664e7275012052fad0c0a4c2c550aa279c") 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x8, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$isdn(0x22, 0x3, 0x27) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000040)={{{@in6=@dev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f0000000140)=0xe8) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x0, 0x0) getsockopt$XDP_STATISTICS(r2, 0x11b, 0x7, &(0x7f0000000580), &(0x7f00000005c0)=0x18) getresgid(&(0x7f0000000180)=0x0, &(0x7f00000001c0), &(0x7f0000000240)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000280)={{{@in, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@local}}, &(0x7f0000000380)=0xe8) r5 = getgid() write$FUSE_DIRENTPLUS(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="60010000000000000600000000ea09f3a7064e90ce00000001000000000000000500000000000000000800000000000006000000d1070000010000000000000006d4300355d7b8a0f601000000000000930e000000000000030000000000000000100000000000000000008006000000a00d00000300000003000000", @ANYRES32=r1, @ANYRES32=r3, @ANYBLOB="800000000800000000000000010000000000000004000000000000000a000000060000002f6465762f637573650000000000000005000000000000000200000000000000810000000000000081000000000000000001000040000000030000000000000006000000000000000800000000000000a8dd000000000000ff0300000000000002000000000000003f0000000500000005000000000100000df20000", @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="ff00000000000000000000000500000000000000a3430000000000000a00000001000000766d6e657431405e827b000000000000"], 0x160) 15:17:12 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) write$P9_RVERSION(r2, &(0x7f0000000180)={0xfffffffffffffd63, 0x65, 0xffff, 0x6, 0x8, '9P2000.u%I\xedn(\x14yin\x8d\xd5\x19\x82n\xb0\x9d-I\xd4\xb6\xfee\xd4\x16\xd6Y:^&;\x94\xd0r-,\"\x05\xea\x84\x15\x82\x11Z\x03r\x12 h\xad&\xb7\xb2;\f\xf6\xe7\xe7\x84@\x03\b=Y\x19yj!'}, 0x15) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000100)=0x2, 0x4) 15:17:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000080)={@rand_addr, @initdev, 0x0}, &(0x7f00000000c0)=0xc) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r1, 0x1, 0x6, @random="2acd2e8168c0"}, 0x10) 15:17:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x9, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:12 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x3, 0x440000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x9) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:12 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x2, 0x0) ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f00000000c0)=0x25f2) sendmsg$nl_generic(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20120001}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c0000001d000800c3d8234ce2c5162d452178dd550400000010141f002f6465762f637573650000000800620000010000"], 0x2c}, 0x1, 0x0, 0x0, 0x4800}, 0x80) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) write$P9_RVERSION(r2, &(0x7f0000000180)={0xfffffffffffffd63, 0x65, 0xffff, 0x6, 0x8, '9P2000.u%I\xedn(\x14yin\x8d\xd5\x19\x82n\xb0\x9d-I\xd4\xb6\xfee\xd4\x16\xd6Y:^&;\x94\xd0r-,\"\x05\xea\x84\x15\x82\x11Z\x03r\x12 h\xad&\xb7\xb2;\f\xf6\xe7\xe7\x84@\x03\b=Y\x19yj!'}, 0x15) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000100)=0x2, 0x4) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x0, [], [{0x2, 0x6, 0x7, 0x0, 0x7, 0x7}, {0xffffffffffffffff, 0x7fff, 0x7, 0x6, 0x4, 0x8}], [[], [], []]}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x8000) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="fb81"], 0x2) 15:17:13 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) restart_syscall() modify_ldt$read(0x0, &(0x7f0000000040), 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000040)=0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x200000, 0x0) ioctl$CAPI_GET_ERRCODE(r2, 0x80024321, &(0x7f0000000140)) fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x1, r1}) fcntl$dupfd(r2, 0x406, r2) arch_prctl$ARCH_SET_GS(0x1001, 0x80000001) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) write$P9_RVERSION(r2, &(0x7f0000000180)={0xfffffffffffffd63, 0x65, 0xffff, 0x6, 0x8, '9P2000.u%I\xedn(\x14yin\x8d\xd5\x19\x82n\xb0\x9d-I\xd4\xb6\xfee\xd4\x16\xd6Y:^&;\x94\xd0r-,\"\x05\xea\x84\x15\x82\x11Z\x03r\x12 h\xad&\xb7\xb2;\f\xf6\xe7\xe7\x84@\x03\b=Y\x19yj!'}, 0x15) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000100)=0x2, 0x4) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x10, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 2: ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000040)) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$radio(&(0x7f0000000140)='/dev/radio#\x00', 0x3, 0x2) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000200)={0x1, 0x0, 0x10001, 0x5}) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000180)={0x5, r2, 0x2, 0x8}) ioctl$EVIOCGID(r1, 0x80084502, &(0x7f0000000400)=""/146) ioctl$DRM_IOCTL_AGP_UNBIND(r1, 0x40106437, &(0x7f00000001c0)={r3, 0xe2a}) r4 = semget$private(0x0, 0x4, 0x13) write$selinux_attr(r1, &(0x7f0000000240)='system_u:object_r:user_cron_spool_t:s0\x00', 0x27) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000340)={0x10000000}) semctl$GETNCNT(r4, 0x3, 0xe, &(0x7f0000000080)=""/192) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000280)={0x9, 0x80000001, 0x5}) ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f00000003c0)=0x1ff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000380)=0x4000080) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000500)={0xa00000, 0x2f3, 0x7fffffff, [], &(0x7f00000004c0)={0x980910, 0x5, [], @value=0x1ff}}) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f00000002c0)=""/88) 15:17:13 executing program 5: sysfs$3(0x3) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/current\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x247) write$P9_RLERRORu(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="7606aaa152e05eefb2aaa6166596e446d7331a923266fcdf16922994dae416854a3968fc3347ed0be284f2b6879d25196dec0881086cddbd05db2cc9be2be3424479563dbc0aa26dcf477359f22180512716a17a3128f4b88e964369121f9a537f42d6c8a9e9d9f3b59e042b68fc20b56a"], 0x2) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000000c0)={{{@in6=@ipv4={[], [], @broadcast}, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @local}}}}, &(0x7f00000001c0)=0xe8) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f00000002c0)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) getgroups(0x8, &(0x7f0000000200)=[0xffffffffffffffff, 0x0, 0xee00, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0]) lchown(&(0x7f0000000080)='./file0\x00', r1, r3) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) write$P9_RVERSION(r2, &(0x7f0000000180)={0xfffffffffffffd63, 0x65, 0xffff, 0x6, 0x8, '9P2000.u%I\xedn(\x14yin\x8d\xd5\x19\x82n\xb0\x9d-I\xd4\xb6\xfee\xd4\x16\xd6Y:^&;\x94\xd0r-,\"\x05\xea\x84\x15\x82\x11Z\x03r\x12 h\xad&\xb7\xb2;\f\xf6\xe7\xe7\x84@\x03\b=Y\x19yj!'}, 0x15) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x29, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe2(&(0x7f0000000080)={0xffffffffffffffff}, 0x800) ioctl$PPPIOCSMRU1(r1, 0x40047452, &(0x7f0000000100)=0x3) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:13 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0xfffffffffffffd98, 0x4, 0x0, {0x20000000, 0x0, 0x4}}, 0x28) r1 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x2, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x280061}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r2, 0x304, 0x70bd25, 0x25dfdbfc, {}, ["", ""]}, 0x1c}}, 0x4044) r3 = socket$netlink(0x10, 0x3, 0xc) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_PORTS(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r4, 0x0, 0x70bd29, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40004}, 0x40005) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080), 0x80000) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000080)=0x0) syz_open_procfs(r1, &(0x7f00000000c0)='net/psched\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x30, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) setsockopt$inet_mreqsrc(r1, 0x0, 0x2f, &(0x7f0000000080)={@empty, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xc) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0xfffffffffffffefe, 0x4000000000000}) openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x80, 0x0) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080), 0x80000) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd4, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x10000, 0x80400) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x5, 0x5, [0x4, 0x8b7f, 0x2, 0x9, 0xfffffffffffff2f1]}, &(0x7f0000000140)=0x12) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000180)={0x1, 0xffffffff00000000, 0x8000, 0x5, 0xfffffffffffff801, 0x424, 0x9, 0x2, r2}, 0x20) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socketpair(0x1f, 0x2, 0x10000, &(0x7f00000001c0)) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431) 15:17:13 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup3(r1, r0, 0x0) bind$rds(r2, &(0x7f00000000c0)={0x2, 0x4e20, @multicast2}, 0x10) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="ff759564393b694ef2"], 0x2) 15:17:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x300, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:13 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:13 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) pipe2(&(0x7f0000000080), 0x80000) 15:17:13 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000080)=0x7) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:14 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:14 executing program 5: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/capi20\x00', 0x40, 0x0) recvmsg(r0, &(0x7f0000001580)={&(0x7f0000000280)=@generic, 0x80, &(0x7f0000001480)=[{&(0x7f0000000300)=""/71, 0x47}, {&(0x7f0000000380)}, {&(0x7f00000003c0)=""/67, 0x43}, {&(0x7f0000000440)=""/30, 0x1e}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x5, &(0x7f0000001500)=""/80, 0x50}, 0x1) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x2000, 0x0) r3 = getuid() ioctl$TUNSETOWNER(r2, 0x400454cc, r3) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000140)='nbd\x00') sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x808000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r4, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x94}, 0x40000) setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f0000000240)={0x7ff, 0x10001, 0x20}, 0xc) 15:17:14 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) mremap(&(0x7f0000fef000/0x10000)=nil, 0x10000, 0x3000, 0x3, &(0x7f0000ffc000/0x3000)=nil) r2 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x100000001, 0x40000) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000140)={0x0, 0x2, 0x80000001, 0x10000000}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000001c0)={0xfffffffffffffff8, 0x6, 0x200, 0xffffffffffff0000, 0x8, 0x3ff, 0x6, 0x80000001, r3}, 0x20) setsockopt$IP_VS_SO_SET_DEL(r2, 0x0, 0x484, &(0x7f0000000100)={0x2c, @empty, 0x4e20, 0x2, 'lblcr\x00', 0x28, 0x45, 0x4b}, 0x2c) [ 312.706066] QAT: Invalid ioctl [ 312.722815] QAT: Invalid ioctl 15:17:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x6f3b, 0x400000) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2a0080}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x4, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x40080) 15:17:14 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x1, 0x0) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000100)={0x7, 0x3f}) getsockopt$inet_dccp_buf(r1, 0x21, 0xfffffffffffffffe, &(0x7f0000000240)=""/96, &(0x7f0000000300)=0xfffffffffffffd71) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x8000, 0x0) write$capi20(r2, &(0x7f0000000080)={0x10, 0x1ff, 0x83, 0x0, 0xffff, 0x400}, 0x10) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x208000, 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f00000001c0)) write(r1, &(0x7f0000000100)="87a71b461f2bf3fe4de8c58a933f6a0f095eaf631cd8be2c3f8cbef56ca53947d8998b5419c7ab75bffc210e631d0ea2bb615abbd7b8c4042fcf1619c268e1142c122109e82212a617015f9c6e716aa83996ce8d5670264033ddf5449488d143b7e45457567ae593e1318052baf17c23fd25d3d56587d04101d55f95eae58b0c5f1e5429b9939d25f7c97be6fd7b9b37991efd56070a68", 0x97) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x900, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:14 executing program 2: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x101, 0x0) ioctl$RTC_ALM_READ(r0, 0x80247008, &(0x7f0000000100)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$int_out(r1, 0x2, &(0x7f0000000080)) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x10001, 0x8000) openat$cgroup_procs(r1, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) eventfd(0x6) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:14 executing program 2: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cachefiles\x00', 0x101, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000380)={0x3, 0x81, 0x5, @empty, 'ifb0\x00'}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000040)) 15:17:14 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100, 0x2) write$P9_RWSTAT(r0, &(0x7f0000000080)={0x7, 0x7f, 0x2}, 0x7) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:14 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd00, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:14 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r3 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x2, 0x40) ioctl$BLKIOMIN(r3, 0x1278, &(0x7f0000000100)) dup3(r0, r2, 0x80000) r4 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x9, 0xc0000) write$P9_RLERRORu(r4, &(0x7f00000000c0)=ANY=[], 0x92) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x2f6) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000080)={0x2, 0x5}) write$FUSE_DIRENT(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0xc0) 15:17:14 executing program 3: r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x149400, 0x0) writev(r0, &(0x7f0000000740)=[{&(0x7f0000000200)="eee55acb98ed11162a3cfea1d38d90a36b96d4f1b475a0ac8ba8cdc43bbee2b0c852891e226ca2a6eea0ad1285c641baeade72ef408b27889daccd96aec1d1d1c66e0f69b413330e1460f30a8befc2dd8936700a2b1c7afb072b540e3d5d669a11fd16c0cf67acac6afe207d631b9ae7ad7c01", 0x73}, {&(0x7f0000000280)="4770848691563f71b3b27aa55c156e87ca82f0c9b6f64dac55b59e7e3cab7a02d8b5f24a1fb9a1a5f1885a0a667460e03b5621f4e2d85da6254c523ad16a70241ef25604215deb3208bc7b1fd735fb182d89cc4dc05346050a75aeb81ea1a029191af195cace6bf3fcb2b97940a9add2fbb246e8715d8c06d895de4ed54f0c2348d021b47c16c4e7112593e556bdf7f0f56635a2e15f7842a4b29319d9591980b39ba969a60eaa323cf4bf445501314133951830e2159cd44a36c98ffeffde1f8db10a0caf4fcde620fd92a2a2771e0fa2404b058ee2c3c1e3dbb9e881b581b573d07c86ca9c4322be", 0xe9}, {&(0x7f0000000380)="5cb03d0811be9090fd97c621b2bdf08be2a9a200e7ff665c7b447a88ef704c344c432a6749dc5b69129db65ec6dd6c0e43810c3803b0806c64ed906caaacbca8e6f514487e11dddccdbca2ca538e5673114aea9947c9362624e1237df1eb7a66fedc2562a0d77c2851152f57e3cf1f7d062793d7ca1812cbea3f9a67f2131b72b7cc56d0ac13c5b5c651b96a9f125552f53999f9b76980ad19835cb071b757ae82e8104d553fed895f06623dcd988ba80005021eee68e2acfe8d916fe9143a28c6a036534b268bd51bb880c0090f2f3476f0ae7510409a70e6a7fdefdae8e158bedbfb5d7bdb1bd9d566f16e61b13d816c939a3bfbd03d12f529", 0xfa}, {&(0x7f0000000480)="d1c114b419a292cc9d0c7a279e29d4c529e608ec1126ddb49d675d543956a8d17b0f7aaa051545a6d6a0146e000abc43d94ebf238d", 0x35}, {&(0x7f00000004c0)="e6882800c05e872f8c4c7b78f795404618117476f0dd524933e22cb212118f43863d31ea0a1a0964648b6c34e1b19745b2c857a387fcbe659e677c8e8fc66cd3255e0d7e9187e3095e757b9374af5e5abae2c9c238ecf01c9191581e32ce2f869f5ee56e68f7abf2fa1dbcc75519d450d95e6285762982fdc3f12818f30d2f3fac430ee64a396afa49b863defc1d30a7bab6a30044939be598cc59c967ca506d3cbc55a386ab7c73c28870de24c3a92756290bce73aed584b836b7a8cbfe442e9c9098ef9a4d0294f496943e648390a130721e726e6b10e0c8eb9a6dce99552e7607b288d1d166c8856e3b0a1d525972", 0xf0}, {&(0x7f00000005c0)="73f10da0df9b0a0d798925a3f6b0e24f633ce72bb9d57cf136429d71923beb170ac3824163e975cd30f9ad0811c29edc10ba129ba37d2d3fddf01a234dd4163ac8b12cccc655f06e16d7", 0x4a}, {&(0x7f0000000640)="ac0f439b1d10eb2eb1d3b4c0b9f710492e8e70ab34ef4dc0756cb8fda0adb30fda2747b653a4969dd83a784d337a4d41637b2ca211324a3a496d2f06b1ef619e86ff8243a9f41b6d7829ef053e56ad06bcd4952416a21c3919c7be8b72d3e748ba86a0e29bab86ae000b84252037766333f283a75cf14b8fc9157ea9771e7a13a704428e2a231f8cdc67b89fb91853831b25ef9e51d8", 0x96}, {&(0x7f0000000700)="9d9799418272f884dd70ac03de55251bf0b13ba322e57bb94b236b0892da75", 0x1f}], 0x8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="b5d0e752059d75"], 0x2) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0xc2000, 0x0) ioctl$EVIOCGBITKEY(r3, 0x80404521, &(0x7f0000000100)=""/167) 15:17:14 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:14 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x0, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x80) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) ioctl$VIDIOC_STREAMOFF(r0, 0x40045613, &(0x7f0000000500)=0x5) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/pfkey\x00', 0xc000, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000001c0)=0xf6) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000200)={r3, 0x1}, &(0x7f0000000240)=0x8) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2001004}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, r4, 0x320, 0x70bd2d, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfb}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x200}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4850) sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x50, r4, 0xc00, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x401}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_AF={0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x73}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x4880) bind$isdn(r0, &(0x7f0000000080)={0x22, 0x9, 0x12, 0x2, 0x99}, 0x6) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[], 0x0) 15:17:14 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000440)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) timer_create(0x0, 0x0, &(0x7f0000000240)) timer_getoverrun(0x0) write$FUSE_DIRENT(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x148) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000040)) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f0000000080)={{0x8caf, 0x100000000}, 'port0\x00', 0x10, 0x10, 0xd58d, 0xee36, 0x7, 0xfffffffffffff924, 0xfffffffffffffffa, 0x0, 0x2, 0x9}) ioctl$EVIOCSMASK(r2, 0x40104593, &(0x7f0000000240)={0x11, 0xfffffffffffffdfe, &(0x7f0000000140)="3f409bc568b74a4b738d7233809c4ba6f7ebc0af15be5495ce03526e7947c8bd5fd429fda5242cf5b1a2b0376fdd754b4fad97d8cfd453eba801520f46b323810d9dbee8287db5d38a09c01a348cd117d6fa72b86996c0272a721b415d751a831716e4dcf788394527e84b2b0c31ecfa24075f61a44f4262b8fb2757829d74edad04888b10b90a75931dcbb3aee95fc9836785b15c8e6f1b3e99632a685aa78e1babed0f7baab2aa2acc19a3d0a6eb24457edcfe1062782b41545c56209aea2393a9143d4a5f67071b4c50e3254a15f5fe71b24df76f38"}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e23, @multicast2}}, [0x8, 0xfffffffffffff001, 0x0, 0x0, 0x8, 0x280000000, 0x7, 0x1, 0xbb, 0x6, 0x8, 0x98, 0x591, 0x5e, 0x7]}, &(0x7f0000000380)=0x100) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000003c0)={0x9, 0x3, 0x204, 0x7fffffff, 0x4, 0x1, 0x44f, 0x5, r3}, &(0x7f0000000400)=0x20) uselib(&(0x7f0000000600)='./file0\x00') 15:17:14 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x101, 0x2300) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0xc7) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r1, 0x800443d2, &(0x7f00000001c0)={0x8, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}, {}, {}]}) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x2000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:14 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r3}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r4, 0x0, 0x3) 15:17:14 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x11e, 0x4, 0x0, {0x0, 0x7}}, 0x28) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x800, 0x0) ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f0000000140)=0xffffffff) r2 = dup(r0) getsockopt$inet6_tcp_buf(r2, 0x6, 0xd, &(0x7f0000000180)=""/123, &(0x7f0000000240)=0x7b) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000040)=@assoc_value={0x0, 0x17}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000000c0)={r3, 0x4}, 0x8) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x2900, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:14 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="ff81b47821775ecf3e5b3fcea6b22016167afdd9d440f65c3013d56018ea5c027172"], 0x2) 15:17:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='uid_map\x00') getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value={0x0}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000180)={r1, 0x2c, &(0x7f0000000140)=[@in={0x2, 0x4e23, @empty}, @in6={0xa, 0x4e24, 0x6, @dev={0xfe, 0x80, [], 0x18}, 0x5}]}, &(0x7f00000001c0)=0x10) ioctl$CAPI_GET_FLAGS(r0, 0x80044323, &(0x7f0000000000)) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:14 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') set_tid_address(&(0x7f0000000080)) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f00000000c0)={0x7, 0x7, [{0x100, 0x0, 0x669}, {0x4, 0x0, 0xfffffffffffffffc}, {0xa473, 0x0, 0x6}, {0x2, 0x0, 0x9d02}, {0x0, 0x0, 0x3}, {0x9, 0x0, 0x8}, {0x100000000, 0x0, 0x9}]}) 15:17:14 executing program 5: r0 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0x18}, 0x10) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x2, 0x0) r2 = dup(r0) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000240)=0x7ff, 0xfffffffffffffe96) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4, 0x0, {0xfffffffffffffffc}}, 0x28) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x30000, 0x0) ioctl$VIDIOC_DBG_G_CHIP_INFO(r3, 0xc0c85666, &(0x7f0000000100)={{0x3, @addr=0x2}, "efca0cae9ac575cb32fa462694d04f840c6c662b18de16ef65346e08c9103fc9"}) mmap$xdp(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x9, 0x110010, r3, 0x180000000) 15:17:14 executing program 3: socketpair$unix(0x1, 0x2000000000000003, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="62b3000000e20800000000000000000000570d148024379f9c0a58a297a5402dc82f48c27f5dd0bc30220a98e7c64096ac5b9de01f14459c602a165003dc7cf9468a13deba7b6d34fd06b0bd8d5947251e2c190e61a99215167ee9b055f144047a03df5a57d7fc38a18f9eb81960779b721f8889f17ad8b1000015fc06197a23"], 0x2) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x400840, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r3, 0x200, 0x70bd26, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048804}, 0x20040000) 15:17:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f, r2}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r3, 0x0, 0x3) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x5, 0x1}}, 0x28) syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x4, 0x4000) 15:17:15 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000080)={0x4001, 0x100000, 0x7, 0x6, 0x8000}) r1 = fcntl$getown(r0, 0x9) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r0, &(0x7f0000000100)={r0, r0}) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r3 = fcntl$dupfd(r2, 0x0, r1) epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r0) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3f00, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x0, 0x2) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0x5) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x4, 0x2, 0x9}}, 0x28) 15:17:15 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000240)) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r2, 0x0, 0x3) 15:17:15 executing program 2: uname(&(0x7f00000001c0)=""/10) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r0, 0xc008551b, &(0x7f0000000080)=ANY=[@ANYBLOB="0000000004000000ff040000"]) write$vnet(r0, &(0x7f0000000140)={0x1, {&(0x7f00000000c0)=""/47, 0x2f, &(0x7f0000000100)=""/35, 0x1, 0x3}}, 0x68) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) socketpair$unix(0x1, 0xaf745032f7370bda, 0x0, &(0x7f0000000180)) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_EDITDEST(r3, 0x0, 0x489, &(0x7f00000001c0)={{0x33, @empty, 0x4e22, 0x0, 'dh\x00', 0xc, 0x0, 0x57}, {@multicast1, 0x4e22, 0x10006, 0x6, 0x4}}, 0x44) setsockopt$bt_BT_SNDMTU(r3, 0x112, 0xc, &(0x7f0000000140)=0x100000001, 0x2) r4 = fcntl$dupfd(r2, 0x406, r0) setsockopt$kcm_KCM_RECV_DISABLE(r4, 0x119, 0x1, &(0x7f0000000080)=0x6, 0x4) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = open(&(0x7f0000000140)='./file0\x00', 0x80000, 0x37) accept4$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast2}, &(0x7f00000000c0)=0x10, 0x800) bind$inet(r1, &(0x7f0000000100)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) truncate(&(0x7f0000000040)='./file0\x00', 0x5) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x4000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="4b996cf3d35732c6ac6987d5fa83372d9f1e2f3c6edb22af674342636a779778f69ed47d47dc92258c18b1f11f3f8df4749eb974160c6842bece2fda747447000000"], 0x2) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x2) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd400, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in6=@remote, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6}}, &(0x7f00000001c0)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@dev}}, &(0x7f0000000300)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={0x0, 0x0, 0x0}, &(0x7f0000000380)=0xc) ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000b80)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0x0, 0x0}, &(0x7f0000000400)=0xc) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000b00)=@filter={'filter\x00', 0xe, 0x5, 0x6b0, [0x0, 0x20000440, 0x20000670, 0x20000770], 0x0, &(0x7f0000000080), &(0x7f0000000440)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x2, [{{{0x13, 0x20, 0x88f9, 'veth0_to_bridge\x00', 'erspan0\x00', 'team_slave_1\x00', 'nr0\x00', @dev={[], 0x1c}, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff], @broadcast, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0xe8, 0xe8, 0x130, [@mac={'mac\x00', 0x10, {{@broadcast}}}, @owner={'owner\x00', 0x18, {{r1, r2, r3, r4, 0x7, 0x5}}}]}}, @common=@ERROR={'ERROR\x00', 0x20, {"5072e022b5d6d54260470d44e49c39876c639cd1a58d88682c83de3d7070"}}}, {{{0xb, 0x20, 0xd, 'netdevsim0\x00', 'caif0\x00', 'team_slave_0\x00', 'erspan0\x00', @dev={[], 0x1b}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], @remote, [0x0, 0xff, 0xff, 0x0, 0x0, 0xff], 0xa0, 0xa0, 0xd0, [@state={'state\x00', 0x8, {{0x3}}}]}}, @common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x10000}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff, 0x1, [{{{0x11, 0x2, 0x8847, 'lapb0\x00', 'veth1_to_team\x00', 'ipddp0\x00', 'rose0\x00', @empty, [0xff, 0xff, 0xff, 0x0, 0x0, 0xff], @local, [0xff, 0x0, 0x0, 0x0, 0xff, 0xff], 0xa0, 0xa0, 0xd0, [@m802_3={'802_3\x00', 0x8, {{0x0, 0x10000, 0x1, 0x2}}}]}}, @common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x4}}}}]}, {0x0, '\x00', 0x3, 0xffffffffffffffff, 0x1, [{{{0x17, 0x40, 0x9300, 'netdevsim0\x00', 'veth0_to_hsr\x00', 'vlan0\x00', 'tunl0\x00', @empty, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], @link_local, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0xe8, 0xe8, 0x218, [@ip6={'ip6\x00', 0x50, {{@remote, @empty, [0x0, 0xffffff00, 0xffffffff, 0xffffffff], [0xffffffff, 0x0, 0xff000000, 0xffffff00], 0x400, 0x2c, 0x44, 0x4, 0x4e22, 0x4e21, 0x4e21, 0x4e24}}}]}}, @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x10000, 'system_u:object_r:apt_var_log_t:s0\x00'}}}}]}, {0x0, '\x00', 0x4, 0xfffffffffffffffc, 0x1, [{{{0x15, 0x2, 0x600e, 'hsr0\x00', 'team_slave_0\x00', 'ip_vti0\x00', 'bcsf0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, [0xff, 0xff, 0x0, 0xff, 0xff], @local, [0xff, 0xff, 0xff], 0x70, 0xb8, 0x108}, [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz1\x00', 0x7f, 0x7f, 0x4ac5}}}]}, @common=@log={'log\x00', 0x28, {{0x1f, "6b958103e381702ea02ef4b110ecf42286037131bf540595177da696e754", 0x4}}}}]}]}, 0x728) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) 15:17:15 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r2, 0x0, 0x3) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x6}}, 0x28) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x2000, 0x0) accept4$vsock_stream(r1, &(0x7f00000000c0)={0x28, 0x0, 0xffffffff, @hyper}, 0x10, 0x800) 15:17:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') io_setup(0xefd4, &(0x7f0000000100)=0x0) io_pgetevents(r1, 0x80000000, 0x6, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000200)={0x77359400}, &(0x7f0000000280)={&(0x7f0000000240)={0x4}, 0x8}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f00000002c0)={0x10000000}) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) fcntl$setsig(r0, 0xa, 0x3e) write$UHID_DESTROY(r0, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000080)="25d6f6cb7151730fe0015aff8308e363", 0x10) 15:17:15 executing program 3: r0 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x408000, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in6=@mcast2}}, &(0x7f0000000240)=0xe8) fstat(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r0, &(0x7f0000000100)='./file0\x00', r1, r2, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x100000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 4: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r2 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000100)={0x0}) ioctl$DRM_IOCTL_LOCK(r2, 0x4008642a, &(0x7f0000000140)={r3, 0x1}) 15:17:15 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 5: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x105000, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffff9c, 0x0, 0xf, &(0x7f0000000140)='eth1bdev**ppp0\x00'}, 0x30) r2 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) r3 = syz_open_dev$dspn(&(0x7f00000005c0)='/dev/dsp#\x00', 0x0, 0x28000) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000600)='/dev/cuse\x00', 0x2, 0x0) r5 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0xffffffffffffffff, 0xb4bb, 0x8}, 0xc) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000740)='./cgroup/syz1\x00', 0x200002, 0x0) r8 = socket$alg(0x26, 0x5, 0x0) r9 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) r10 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000780)='/dev/sequencer\x00', 0x7191ac22cb220e82, 0x0) r11 = syz_open_dev$vcsn(&(0x7f00000007c0)='/dev/vcs#\x00', 0x6, 0x20001) r12 = accept4$inet(0xffffffffffffffff, &(0x7f0000000800)={0x2, 0x0, @multicast2}, &(0x7f0000000840)=0x10, 0x80800) r13 = socket$inet6_tcp(0xa, 0x1, 0x0) r14 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000880)='ns/mnt\x00') ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f00000008c0)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000900)={{{@in=@initdev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@remote}}, &(0x7f0000000a00)=0xe8) r17 = getgid() r18 = getpgid(0xffffffffffffffff) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000a40)={{{@in=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast1}}, &(0x7f0000000b40)=0xe8) stat(&(0x7f0000000b80)='./file0\x00', &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r21 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000c40)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000c80)={{{@in6=@empty, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f0000000d80)=0xe8) getresgid(&(0x7f0000000dc0), &(0x7f0000000e00), &(0x7f0000000e40)=0x0) r25 = getpgid(0xffffffffffffffff) lstat(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000f40)='./file0\x00', &(0x7f0000000f80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff}) r29 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000001040)='/dev/loop-control\x00', 0x109400, 0x0) r30 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000001080), 0x80000) sendmsg$netlink(r0, &(0x7f0000001200)={&(0x7f0000000100)=@kern={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)=[{&(0x7f0000000240)={0x1ac, 0x2f, 0x0, 0x70bd2d, 0x25dfdbfb, "", [@nested={0x19c, 0x61, [@typed={0xec, 0x67, @binary="86f0aa2f37e7691a44258d0279f83de99f5090ddfa758e6b2d96c017be7c6d7096f9399ad25468f9a39b01507946f45dc49a0450c49f92b4853133f073c0f32fb832ff6d4be130139c7f2bfb0ebb32593afb76d4c991293e6e1a377115bffaed65152561ccdd029e2c2ef5ce08a1d734eef787a7d08591e16bf8549128a9c6ef99df51f8bd691f81dc7edb27c5f56c9ec21c5232f0583d7b1398ced19f8135e7d8c63d733f3ee7cab8bfb8828f829f92a44dbdbfdeddc7d999705f72e2ed9ab5312daa39a4406e102c5301b04da5a8099bce8df07a419954afc8c2a130a9ead6e4f009121a8a05"}, @typed={0x10, 0x91, @binary="048dcb46d83bc56da6bd"}, @generic="07214708ca606b30018b226cb1285c3598ad05145f66e26bdb0933eb1bf5ff44896c864f52fd6e0e6f71f0cb5060f959d25c379d0d14", @typed={0x14, 0x1, @ipv6=@mcast2}, @typed={0x14, 0x23, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @generic="9de40511032d71a8285746334dceaeffc25fcd872b7b6a024621f6785edac26164896e3976b7cc22f2c6cd2f5755381df72d37970210326096d6ae78"]}]}, 0x1ac}, {&(0x7f0000000400)={0x1b8, 0x26, 0x100, 0x70bd2d, 0x25dfdbfe, "", [@typed={0x8, 0x2f, @pid=r1}, @nested={0x1a0, 0xe, [@typed={0xc, 0xb, @u64=0x6}, @generic="fd8ec0ac280540f5eae5dd654b14efb56b4ac0d41d0dfbefab9e81faf3c11043c1516017f3764df8294c64f3a7ed1afb349a75a617ebd96a2b4b3a61f837642f05d39ed66489873c3d7f426a1b63c2273010e3c6bc7d1268e7dacd1c6e628a", @typed={0xc, 0x82, @u64=0x10000}, @generic="56a1e027e7369484dcf4648d2a6c33f6c7c0c64dbe6a3fc5927aaf540955c24e093dc77c6bb4a74bfe6247c8f91126e56a966f5b1490aa722ea45e1af4c0a4cd887365afb4500a00cd5893153040c3039eb549cf48a8f08a850c5d8ddc1188e057aff020f0ade83412a11c324ad4d054b31403c1978740f436043019bcebe343d96b84", @generic="66b9302cdc3d9212ba34e2817bea7b7649cf6bac2a9e7b7ff1a2db7e6c06e208cf83563cd72e028a6a9c776b0ec14d6a00d7f183aa4166b84d5d1fee086eb7e64cd9152795d89704d2198a7eb93276df8366ba15d734986f4332e7cae66f8d150883587d30880a80ccbe47eae80486dcc9530bcfa890cf3c2ce904f2e64b0d99f539b338c30f237d6f86c8df0d67773a3402934b6554597bcd2d50991dfeebcb"]}]}, 0x1b8}], 0x2, &(0x7f00000010c0)=[@rights={0x30, 0x1, 0x1, [r2, r3, r4, r5, r6, r7, r8]}, @rights={0x28, 0x1, 0x1, [r9, r10, r11, r12, r13, r14]}, @cred={0x20, 0x1, 0x2, r15, r16, r17}, @cred={0x20, 0x1, 0x2, r18, r19, r20}, @rights={0x18, 0x1, 0x1, [r21]}, @cred={0x20, 0x1, 0x2, r22, r23, r24}, @cred={0x20, 0x1, 0x2, r25, r26, r27}, @rights={0x20, 0x1, 0x1, [r28, r29, r30]}], 0x110, 0x20000000}, 0x1) r31 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r31, &(0x7f0000000000)={0x28, 0x4}, 0x28) r32 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x2, 0x2) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r32, 0x5386, &(0x7f0000000080)) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x200000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000003c0)={@rand_addr="5d90524043aa537909041b029b5cbe9a", 0x5f}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000080)={0x0, @reserved}) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x80040, 0x0) write$P9_RSTATFS(r3, &(0x7f0000000100)={0x43, 0x9, 0x2, {0x4, 0x7, 0xd1, 0x100000000, 0x3ff, 0x211, 0x4, 0x1, 0x80000001}}, 0x43) 15:17:15 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:15 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x800000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:15 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x3ffc) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0xd0) 15:17:15 executing program 4: socketpair$unix(0x1, 0x3, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:16 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) sysinfo(&(0x7f0000000040)=""/44) r1 = syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x9, 0x4001) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f0000000280)) syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x1) prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c) r2 = request_key(&(0x7f00000000c0)='trusted\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)='/dev/input/mice\x00', 0xfffffffffffffff8) keyctl$read(0xb, r2, &(0x7f0000000180)=""/93, 0x5d) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x0, 0x2}}, 0x28) keyctl$set_timeout(0xf, r2, 0x1) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x1000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff85"], 0x2) 15:17:16 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = getpgid(0x0) waitid(0x1, r1, &(0x7f0000000080), 0xe1000005, &(0x7f0000000100)) 15:17:16 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0xfffffffffffffd58, 0x4, 0x0, {0x0, 0x4}}, 0x28) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x4000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 3: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000100)=0x29a) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) accept(r2, &(0x7f00000001c0)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000240)=0x80) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000280)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000380)=0xe8) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@multicast2, @in6=@local, 0x4e20, 0x3, 0x4e22, 0x0, 0x2, 0x80, 0x20, 0x5e, r4, r5}, {0x7fff, 0x1, 0x10001, 0x6d8, 0x800, 0x1000, 0x77, 0x4}, {0x2, 0x5, 0x101, 0x8}, 0x6, 0x6e6bb0, 0x1, 0x0, 0x1, 0x1}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d4, 0xff}, 0xa, @in6=@empty, 0x3502, 0x7, 0x3, 0x8001, 0x0, 0x39, 0x4}}, 0xe8) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) 15:17:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='cgroup\x00') ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x2}, {0x5, 0x2}, {0x7, 0xffff}]}) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x5000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, 0x0) lseek(r1, 0x0, 0x3) 15:17:16 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x4001, 0x0) write$P9_RMKDIR(r1, &(0x7f0000000080)={0x14, 0x49, 0x2, {0x20, 0x3, 0x8}}, 0x14) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xf0, 0x90000) r2 = getpid() ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000180)={[], 0xfff, 0x3, 0x2, 0x3, 0x6, r2}) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000100), &(0x7f0000000140)=0x4) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x100000001, @loopback, 0x1000}], 0x1c) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x8000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x800, 0x0) write$P9_RLERRORu(r1, &(0x7f0000000080)=ANY=[], 0xfffffffffffffe48) 15:17:16 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:16 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, 0x0) lseek(r1, 0x0, 0x3) 15:17:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x9000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:16 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) 15:17:17 executing program 3: r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x7f, 0x101100) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000100)={0x0}) ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000240)={r1, 0x4, &(0x7f0000000140)=[0x6, 0x7, 0x7, 0x80], &(0x7f0000000180)=[0xd], 0x5, 0x7, 0x6, &(0x7f00000001c0)=[0x271, 0x8, 0x2, 0xae, 0x7, 0x4, 0xfffffffffffff801], &(0x7f0000000200)=[0x401, 0x690b1ad4, 0xd21c, 0x7f, 0x18ec, 0x4, 0x5]}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f00000002c0)={0x0, {0x2, 0x4e23, @broadcast}, {0x2, 0x4e20, @local}, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4, 0x0, 0x0, 0x0, 0x200, &(0x7f0000000280)='ip6erspan0\x00', 0x4bc9fec8, 0x7, 0xffffffff}) write$P9_RLERRORu(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="4ea2e0c894a505c0e290992b3a4b8f20a220ad"], 0x2) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 5: r0 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/current\x00', 0x2, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000080)={0x1000000000000, 0x4, 0x3, 0x9, 0x87c}) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000040)=r1) r2 = socket(0x7, 0x6, 0x853) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x7, 0xfffffffffffffffb, 0x5}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000140)={r3, 0x3168ae25}, 0x8) 15:17:17 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000200)={"c52c15a08c4bbe63952fead17ff694eb9f85cf92932d62cd85d64614a591633c34978982bbc6d1a25bf392b4e180b58e1ee8de666d516949b7bff16deed193a423ac0f8f48183ebf63f927f61792f37d6335d010a344f082aa4862304f7191efcc0c1c32d3c9d77d0d1b5118c2ad21febe90ebff6cb9efde47bd43ecd7f6325c26807280eca9faec425f5b0a000a0c30096fc2b313dc115a05dc1f784865d2570b567c34d0de6f3a36c5f787b7fa5201269e28f8970c99823cfd4168e24b64164cdf9f8611c0d9c38187afeaf5f41fc1037d2880b1a8f4159a9f7bbfcd49027f8bcae0d834ed4687c5cdf302b9e8cb006c9d3d0d94cbe5cf1951a15df3bca92c9195dff00db719f134e2258edb16dca3b2d629333c20248ccd845509d78f6460ce731ce83336b6f30ee086c386710c9df700999a36a47a15da39e85af720b3a562edebd661c816241919a2be8c05bcf0cb684b065dd03a87084cfbabf75d9f21822033cc3d6328c37a9b2e3d5e265fc68380cf2dc63cafea4057c5049f30d0c24d7d749271fb495b90413f0e2ed85c015bcc0976f2c3b36ca44cb5925d902bee6951208601a5f14afee2a8fff8a77e741bbd77c03cb3da24358f4fe40fff1613a1de68933905a385ef55577cca1236aedf79f908060a22aa3f905dfe01aacec664fc18a8bfdc3d07501ed39e25396c2ccae31d0fb7e09c955e2fcbc6ded113a3afe4de330d9bc800c08fed82e7b70a4c0cb138ff9e25e4046cfd77ca939cf86d3ddd1074c2a550f8d47f65d3b362758c321c6567c4e74514c6a4828fbbeb58cf84bf62dc100c95221c479a2ca5f7f6674d3710d5e76162925cb0bdbeea83b0811ce009d8511b33cfb7f21d7aa18c493fa752b2c6fa9f30ad9ac0b0d4cfc263935e0c038af398df0bddd20ca78555bfefab2ce3e2e3da44011a81af2edfc17c80ad6b5c528e31821766cb42cd25500d8f243a62c4caf2279b926112f77089964a8137ef4a8a1431e84086a7129230fed4a38cddd54d29e4ea4232422f73fc6f5d2e51fae5b101f665099b9a5e080edad73627af2b84d03742e46f971c04f79078834718eeed271bd25b56b682c131d23a41d7dd7640a61d04fd01f7cfcd4bcd572cac3749bf77e8658c1ce86cbfb35dfcea655ec21db6bbeb974f3f331db6e2015613f499540b6f0be2b9a73b7886ecc46dc2ccf7a7f5dbaf74bea58de84e2487fd2c281d8d00539774823e99d4c6276258461445f876a701540dfcf40a06ec17b2c33be6fcb0923f8e20833645db5f5b93f8a7392e6eadb944c52d04c738fa22dc970245aafaff5d1bbd403b339cb248e8f971b922c9b98b636177392ac57190af57069f27f2b5a237c09e701ed0501aca5064b58739fe7140068b474362f34b52181e4ed09784752c82407008d0fecb2a38c7eda8656d9ab1bf2ef8ef34fd44"}) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) lsetxattr$trusted_overlay_nlink(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000180)='trusted.overlay.nlink\x00', &(0x7f0000000140)={'L-', 0xfffffffffffffff9}, 0x28, 0x0) 15:17:17 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, 0x0) lseek(r1, 0x0, 0x3) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, 0x0, 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x10000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f0000000040)) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000080)={0x28, 0x2, 0x0, {0x2, 0x8001, 0xfffffffffffffffa}}, 0x28) r1 = fcntl$dupfd(r0, 0xcb27a9747d00c329, r0) ioctl$BLKIOOPT(r1, 0x1279, &(0x7f00000000c0)) 15:17:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x600, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_sys\x00', 0x0, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000001c0)=0x6, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000140), 0x111, 0x8}}, 0x20) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="7318aa6b167be32cef89"], 0x2) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x29000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, 0x0, 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = dup(r0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x1, 0x1}, &(0x7f0000000080)=0x18) setsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f00000000c0)={r2, 0x7}, 0x8) 15:17:17 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x7c340, 0x0) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100), &(0x7f0000000140)=0x14) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, 0x0, 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.events\x00', 0x0, 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000080)=0x9000, 0x4) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) socket$alg(0x26, 0x5, 0x0) r2 = gettid() getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, 0x0, &(0x7f0000000380)) r3 = memfd_create(&(0x7f0000000100)='!-\x00', 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f00000009c0)={0x0, @in6={{0xa, 0x4e24, 0x4, @ipv4={[], [], @local}, 0x4}}, 0x9}, 0x90) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940)='/dev/snapshot\x00', 0x20601, 0x0) r5 = socket$inet(0x2, 0x6, 0x0) r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) fcntl$getownex(r5, 0x10, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) kcmp(r2, r2, 0x0, r6, r4) ioctl$KIOCSOUND(r3, 0x4b2f, 0x3f) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000001940)={0x0, 0x0, 0xffffffff80000001}, 0x8) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000001c0)={0x0, 0xfed3, 0xfa00, {0x3, &(0x7f0000000000), 0x0, 0x82}}, 0x20) sendmsg$kcm(r4, &(0x7f0000001900)={&(0x7f0000000700)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000001840)=[{&(0x7f00000005c0)="4e90d771835fcfb308eb422c7e7772892356318766d374fe145cf35d5db97560cbfdecc3eed4b7a047027c29d6c987f5c9a11f03dfa7", 0x36}], 0x1}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, 0x0, 0x0) stat(0x0, &(0x7f0000000440)) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast1, @in6=@local}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f00000002c0)=0xe8) request_key(&(0x7f0000000140)='rxrpc_s\x00', &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)='!-\x00', 0xffffffffffffffff) wait4(r2, &(0x7f0000000300), 0x4, 0x0) close(r4) ioctl$UI_SET_KEYBIT(r5, 0x40045565, 0x74) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0xfffffffffffffdcd, 0x4}, 0x28) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x30000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x6, 0x800) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r2, 0x110, 0x4, &(0x7f00000000c0)=0x1, 0x4) write$P9_RLERRORu(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="ff80921f34182affce42c459e310b03f229dabe41bf6d4b745c491ca01def2d2fcbda0475aec6ce9a70d8d5b0dd87b2abee41dcf29f1d1c3d45699707d80dc18c5730419e3621e003f58a050"], 0x2) 15:17:17 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3f000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$int_in(r0, 0x5473, &(0x7f0000000100)=0x1) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x40000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:17 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:18 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(0xffffffffffffffff, 0x0, 0x3) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd4000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xaef, 0x0) getsockopt$inet_dccp_buf(r0, 0x21, 0xd, &(0x7f0000000100)=""/254, &(0x7f0000000200)=0xfe) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x101) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 2: socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r0, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) fstat(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r3) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xf6ffffff, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x1, 0x404500) fchmodat(r1, &(0x7f0000000100)='./file0\x00', 0x1000000000104) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000040)={0x3, 0x200, 0x0, 0x7f, 0x38000000000, 0x7}) openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x0) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 3: r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0xf80a, 0x2800) ioctl$IMDELTIMER(r0, 0x80044941, &(0x7f0000000100)=0x3) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x1, 0x2) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, r3, 0xb29, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x40001) write$P9_RLERRORu(r2, &(0x7f00000001c0)=ANY=[@ANYBLOB="7fa329c50e6219a6e8ed7cac21740588a66cdb2120459d74820af9eafba402de4c7250f1e54775153e37ca437c57ed7d7974e71fb28bb7dc1e491bb1d1982e70f61eda4992ddf7a6ce077ba4fd2872b35b0ac6fb208aa83fac1ed8b6df35dd2eb71aba8d7379852b436b599b4a6d34a9a2af6975983e48dacccc6646f19362510030eacbfe001f44504fc4d5faf1800c8dc2bd1d8c61c6b8b3ccace5f9ebf2893758f5368f079659ff09080bc32fea314b76c9a93860fc5106d81fe625a85fb6b318fb53de16de9d3d19adbdcf491cf91413d2bf1cec936054ce7bf767709a0055c21fd8bcca324cb23e72bb25598948e6665d54d52d70ab0b"], 0x2) rmdir(&(0x7f00000000c0)='./file0\x00') 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfbffffff, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x100, 0x4000) ioctl$IMCLEAR_L2(r1, 0x80044946, &(0x7f0000000040)=0x4) utimensat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={{}, {0x77359400}}, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, &(0x7f0000000140)={'vlan0\x00', 0x100}) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 3: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x145000, 0x0) write$binfmt_aout(r0, &(0x7f0000000100)={{0x107, 0x3, 0x3, 0x2e2, 0x2a, 0x2, 0x296, 0x8}, "4334fb216d65e862ccd6a2a03f12126a5412ec1cd7df48804bee7846d1341b16b41b220ffcf81bb5a2fbb3ca4aa644b78d5ca58ebada89acbe2f662cad33c4e354d49697dc9ee71cfd6bce0eb86675fcbee8f7faee1d168c185fc41b5f6200b03e6a4e6aa9a1d0ef2ee0faaf82578baeda63c065a8c334a82f7985d3c8387c5a1c9226d2433062965a"}, 0xa9) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000013c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f00000001c0)={0x2, 0x3, 'client1\x00', 0xffffffff80000000, "04e883872755ab1d", "49eb4fda0e1de0daf7326f445d4dc8d56e666d78875302249c4d1e578c62ccfe", 0x6, 0xfffffffffffff001}) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000300)=""/4096) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) getsockopt$inet6_dccp_int(r0, 0x21, 0x3, &(0x7f0000000280), &(0x7f00000002c0)=0x4) 15:17:18 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x0) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, 0x0, 0x0) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x0, 0x400000000000}}, 0x9918185e8ff64db3) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfcffffff, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x40, 0x0) setsockopt$inet_int(r1, 0x0, 0x21, &(0x7f0000000100)=0x6, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, 0x0, 0x0) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x8000, 0x0) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfdfdffff, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x0) 15:17:18 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r1, 0xc0045520, &(0x7f0000000100)=0x5) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="217b3f73e20d7d785bd0762081"], 0x2) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, 0x0, 0x0) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = openat(0xffffffffffffffff, &(0x7f0000001380)='./file0\x00', 0x4000, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001400)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_DISABLE(r1, &(0x7f00000014c0)={&(0x7f00000013c0), 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x30, r2, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x1c, 0x5, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x20000005) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x10200, 0x0) ioctl$BLKIOOPT(r3, 0x1279, &(0x7f0000000140)) ioctl$sock_inet_SIOCDELRT(r3, 0x890c, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @loopback}, {0x2, 0x4e22, @multicast1}, {0x2, 0x4, @rand_addr=0x400}, 0x110, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000080)='irlan0\x00', 0xfff, 0x8, 0xfff}) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfeffffff, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 3: socketpair$unix(0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000100)={0x0, 0x6}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000001c0)={r3, 0xff}, &(0x7f0000000200)=0x8) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x840) write$P9_RLERRORu(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000)) 15:17:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 5: syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x6, 0x200441) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfffffdfd, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:18 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[], 0x0) 15:17:18 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='pids.events\x00', 0x0, 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000080)=0x9000, 0x4) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) socket$alg(0x26, 0x5, 0x0) r2 = gettid() getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, 0x0, &(0x7f0000000380)) r3 = memfd_create(&(0x7f0000000100)='!-\x00', 0x1) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f00000009c0)={0x0, @in6={{0xa, 0x4e24, 0x4, @ipv4={[], [], @local}, 0x4}}, 0x9}, 0x90) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940)='/dev/snapshot\x00', 0x20601, 0x0) r5 = socket$inet(0x2, 0x6, 0x0) r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) fcntl$getownex(r5, 0x10, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) kcmp(r2, r2, 0x0, r6, r4) ioctl$KIOCSOUND(r3, 0x4b2f, 0x3f) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000001940)={0x0, 0x0, 0xffffffff80000001}, 0x8) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000001c0)={0x0, 0xfed3, 0xfa00, {0x3, &(0x7f0000000000), 0x0, 0x82}}, 0x20) sendmsg$kcm(r4, &(0x7f0000001900)={&(0x7f0000000700)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000001840)=[{&(0x7f00000005c0)="4e90d771835fcfb308eb422c7e7772892356318766d374fe145cf35d5db97560cbfdecc3eed4b7a047027c29d6c987f5c9a11f03dfa7", 0x36}], 0x1}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, 0x0, 0x0) stat(0x0, &(0x7f0000000440)) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast1, @in6=@local}}, {{@in=@loopback}, 0x0, @in=@dev}}, &(0x7f00000002c0)=0xe8) request_key(&(0x7f0000000140)='rxrpc_s\x00', &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)='!-\x00', 0xffffffffffffffff) wait4(r2, &(0x7f0000000300), 0x4, 0x0) close(r4) ioctl$UI_SET_KEYBIT(r5, 0x40045565, 0x74) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0xfffffffffffffdcd, 0x4}, 0x28) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x4, 0x400000) r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x641, 0x600000) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000140)=0x2, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x200000000400200) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f0000000080)=ANY=[@ANYRES32], 0x1ec) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000140)) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) io_getevents(0x0, 0x5, 0x0, &(0x7f0000000240)=[{}, {}, {}, {}], &(0x7f00000001c0)={r1, r2+30000000}) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[], 0x0) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfffffff6, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="4bfcffffffffffffffe3e0d8154aa0788a0f1b5bfeef51bb308f6b4dacdbe4c0468f674f8ed3e25cec6a048e20b3656fa1c8746889b7bbdd6cb0a8e02f07920c02d30ceb9dad859e1360da421f68bc8d427175e772c1ab7f19d356cf13af568c76abe0ab681b3141467286c6b2a3e11c7b3616789a8ce68b476b86e35eee064c57a7eee6ab80d4ec4cbf7249c2c68fe02eb918bf3742ee50a0fd51cde18368a549617d5f2a3ed48cbccba5b70484f7e12ff003dbd2b8a9eefe6d"], 0x2) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000180)={&(0x7f0000000080)=""/227, 0x100000, 0x0, 0x3}, 0x18) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfffffffb, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[], 0x0) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c12") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 0: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f0000000040)) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000080)={0x28, 0x2, 0x0, {0x2, 0x8001, 0xfffffffffffffffa}}, 0x28) r1 = fcntl$dupfd(r0, 0xcb27a9747d00c329, r0) ioctl$BLKIOOPT(r1, 0x1279, &(0x7f00000000c0)) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f00000000c0)={0x28, 0x2, 0x0, {0x2, 0x1f, 0x100}}, 0x28) poll(&(0x7f0000000180)=[{r0, 0x1000}, {r0, 0x408}], 0x2, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) write$P9_RWSTAT(r1, &(0x7f0000000140)={0x7, 0x7f, 0x2}, 0x7) r2 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffff001, 0x48003) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000080)={0x2}) 15:17:19 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r2 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) sendmsg$key(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0x14, 0x3, 0xb, 0x1a, 0x0, 0x70bd2d, 0x25dfdbfc, [@sadb_x_sec_ctx={0x18, 0x18, 0xfffffffffffffffa, 0xfffffffffffffffd, 0xb1, "630ea4d6fdca3e233fffc37a61578d4736949c677efc2f1e86cd1fdc318fa5a8d5a711a7ff78d779784bfec80bd9e4d08e17b085d0dbbdba5fbc026979983571d71b04a20c1ddfcc281ed38cd06940909858d61dda35a7edef3d75d0e783d2db1563bd7e2d16f75730e34d3a6121cb075888acf56007aaca3ab10b0ecb043382f8b33b575f215d832ae5e551fe22fe3189fec66ebbeca557e63a5583795847d5758fc4126d289f6b700cbcec211ff8593b"}]}, 0xd0}}, 0x10) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="ff81c11a77e80265ef7b978a22b135df81fa0746a9463651f4938ee0fea77fb31c236ac143a6367adc4d2ff0d667e3db272037"], 0x2) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfffffffc, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c12") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x40000, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'gr\x00', 0x0}) sendmsg$can_bcm(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x1d, r2}, 0x10, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="06000000000100001f08000000308100", @ANYRES64=0x0, @ANYRES64=0x7530, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="02000080010000000200008000020000d391d490b0535a3e"], 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x40) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0) 15:17:19 executing program 0: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) restart_syscall() modify_ldt$read(0x0, &(0x7f0000000040), 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000040)=0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x200000, 0x0) ioctl$CAPI_GET_ERRCODE(r2, 0x80024321, &(0x7f0000000140)) fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x1, r1}) fcntl$dupfd(r2, 0x406, r2) arch_prctl$ARCH_SET_GS(0x1001, 0x80000001) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080)={0x0, 0xfffffffffffffffd}, 0x8) openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000180)='/dev/swradio#\x00', 0x0, 0x2) write$P9_RLERRORu(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="ff81"], 0xffffffffffffff1b) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:19 executing program 0 (fault-call:11 fault-nth:0): r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfffffffe, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c12") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x250280, 0x0) connect$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x1, {0x40, 0x2, 0x4}}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$packet(0x11, 0x40000000003, 0x300) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/user\x00') sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@setlink={0x28, 0x13, 0xb21, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_NET_NS_FD={0x8, 0x1c, r4}]}, 0x28}}, 0x0) r5 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="dc81"], 0x2) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0) 15:17:19 executing program 5: ioctl(0xffffffffffffffff, 0x7, &(0x7f0000000040)="1f0556b5467dae8c607baf59882f74ef559e84f58b873cbc55d5af486f8c01a1ba09070541c84e34197321a1659423f64b3012080a4cbb07a2703fcc2e10e8a897eb16db7d8e2b1eebd30d9cd2406fc7cbfc24735db5c425bafaf2a19b315436f7794d029242daf8dd6cae9cf9f77d6590d3344281e934db4513fae20cf0acb7a31b37145f0173e264156d5d7b8d8942556056306bd97301aafe6a175db7987548ad7bb9") write$FUSE_NOTIFY_INVAL_INODE(0xffffffffffffffff, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x800000, 0x40, 0x5}}, 0x28) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x1000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x3b9, 0x4, 0x0, {0x0, 0x1000, 0x800000000}}, 0x31b) uselib(&(0x7f0000000000)='./file0\x00') 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x4010, r0, 0x0) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$media(&(0x7f00000005c0)='/dev/media#\x00', 0x3, 0x101400) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r1, 0xc0a85322, &(0x7f0000000600)) readv(r0, &(0x7f0000000540)=[{&(0x7f0000000100)=""/91, 0x5b}, {&(0x7f0000000180)=""/200, 0xc8}, {&(0x7f0000000280)=""/144, 0x90}, {&(0x7f0000000340)=""/206, 0xce}, {&(0x7f0000000440)=""/198, 0xc6}], 0x5) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x10000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x0, 0x3) 15:17:19 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) ioctl$PPPIOCGFLAGS1(r0, 0x8004745a, &(0x7f0000000080)) fchmod(r0, 0x42) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000040)={0x0, 0x7530}, 0x10) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff"], 0x1) 15:17:19 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) socket$tipc(0x1e, 0x2, 0x0) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ee81"], 0x2) 15:17:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x1, 0x200) write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000240)={0x18, 0x1, 0x0, {0x401}}, 0x18) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000140)={0x28, 0x2, 0x0, {0x2, 0x7}}, 0x28) ioctl$FIBMAP(r1, 0x1, &(0x7f00000001c0)=0x8) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r2 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x2, 0x2) ioctl$BLKROTATIONAL(r2, 0x127e, &(0x7f0000000180)) ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000100)={'bridge_slave_1\x00', 0x3ff}) 15:17:19 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x20000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:19 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff"], 0x1) 15:17:20 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) signalfd(r0, &(0x7f00000000c0), 0x8) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:20 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xfffffffffffffffb) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x80000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x162, 0x3) 15:17:20 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff"], 0x1) 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a0") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/cuse\x00', 0x2, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) r1 = creat(&(0x7f0000000080)='./file1\x00', 0x40) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x8000}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r2, 0x5, 0x3ff}, 0xc) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f00000001c0)) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000180)={0x28, 0x4, 0x0, {0x1}}, 0x28) 15:17:20 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x100000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 4 (fault-call:3 fault-nth:0): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a0") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x131, 0x4}, 0x56) [ 318.950305] FAULT_INJECTION: forcing a failure. [ 318.950305] name failslab, interval 1, probability 0, space 0, times 0 15:17:20 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x163, 0x3) 15:17:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x300000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 319.066956] CPU: 0 PID: 16178 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 319.074187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.083543] Call Trace: [ 319.086146] dump_stack+0x1db/0x2d0 [ 319.089797] ? dump_stack_print_info.cold+0x20/0x20 [ 319.094826] ? mark_held_locks+0x100/0x100 [ 319.099093] should_fail.cold+0xa/0x15 [ 319.102997] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 319.108129] ? ___might_sleep+0x1e7/0x310 [ 319.112292] ? arch_local_save_flags+0x50/0x50 [ 319.116886] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 319.122172] ? rcu_read_unlock_special+0x380/0x380 [ 319.127133] __should_failslab+0x121/0x190 [ 319.131379] should_failslab+0x9/0x14 [ 319.135192] kmem_cache_alloc_node+0x265/0x710 [ 319.139783] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 319.145088] ? rcu_read_unlock_special+0x380/0x380 [ 319.150028] __alloc_skb+0xf4/0x730 [ 319.150052] ? skb_scrub_packet+0x440/0x440 [ 319.150084] ? iterate_fd+0x4b0/0x4b0 [ 319.150103] ? proc_fail_nth_write+0xa0/0x220 [ 319.158045] vhci_write+0xc4/0x470 [ 319.169828] __vfs_write+0x764/0xb40 [ 319.169851] ? kernel_read+0x120/0x120 [ 319.169869] ? __mutex_unlock_slowpath+0x195/0x870 [ 319.169895] ? apparmor_file_permission+0x25/0x30 [ 319.187214] ? rw_verify_area+0x118/0x360 [ 319.191369] vfs_write+0x20c/0x580 [ 319.194912] ksys_write+0x105/0x260 [ 319.198544] ? __ia32_sys_read+0xb0/0xb0 [ 319.198565] ? trace_hardirqs_off_caller+0x300/0x300 [ 319.198589] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 319.212462] __x64_sys_write+0x73/0xb0 [ 319.216360] do_syscall_64+0x1a3/0x800 [ 319.220256] ? syscall_return_slowpath+0x5f0/0x5f0 [ 319.220275] ? prepare_exit_to_usermode+0x232/0x3b0 [ 319.220299] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 319.235050] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.235076] RIP: 0033:0x457e39 [ 319.235091] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:17:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x400000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) r1 = gettid() process_vm_writev(r1, &(0x7f00000035c0)=[{&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/97, 0x61}, {&(0x7f00000012c0)=""/178, 0xb2}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/234, 0xea}, {&(0x7f00000001c0)=""/23, 0x17}, {&(0x7f0000002480)=""/4096, 0x1000}, {&(0x7f0000003480)=""/1, 0x1}, {&(0x7f00000034c0)=""/248, 0xf8}], 0x9, &(0x7f0000003940)=[{&(0x7f0000003680)=""/34, 0x22}, {&(0x7f00000036c0)=""/134, 0x86}, {&(0x7f0000003780)=""/227, 0xe3}, {&(0x7f0000003880)=""/170, 0xaa}], 0x4, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, r0, 0x0, 0x1, &(0x7f0000000040)='\x00'}, 0x30) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x2, &(0x7f00000000c0)=""/208) 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a0") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0xa000, 0x0) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x200, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x100, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x7ffffffb) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 319.262332] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 319.270044] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 319.277340] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 319.284612] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 319.291885] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 319.299154] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:20 executing program 4 (fault-call:3 fault-nth:1): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(0x0, 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:20 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x39c) prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='/dev/cuse\x00') r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x80, 0x0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000280)={{0x3, 0x3, 0x100000001, 0x43f, '\x00', 0x4}, 0x0, [0x2, 0x100000000, 0x80, 0x10000, 0xfffffffffffffffc, 0x0, 0x5, 0x100000001, 0x6, 0xfffffffffffffffa, 0x2, 0x4, 0x3f, 0x7d1b, 0x100, 0xeb, 0x10000, 0x1, 0x10000, 0x7, 0x3, 0x1ff, 0x4, 0x81, 0x5, 0xfff, 0x8, 0x1, 0x6, 0x2, 0x3, 0xca, 0x9, 0x3, 0x9, 0x0, 0x8, 0x1, 0xffffffffffffff7c, 0x3651, 0x0, 0xffffffffffffffff, 0xffffffffffffffc1, 0x80000000, 0x4, 0x3, 0x8, 0x52, 0x3, 0x100000001, 0x5, 0x3, 0x5, 0x3, 0x1, 0x400, 0x7b58, 0x5, 0x7, 0xfb, 0x2, 0xb5c, 0xfffffffffffffffa, 0x100000001, 0x80000000, 0x0, 0x2, 0x5, 0x76e0, 0x3ff, 0x8, 0x7fffffff, 0xe2, 0x9, 0xa9, 0x0, 0x9, 0x8, 0x9757, 0xffffffff, 0x8, 0x40, 0x0, 0x2, 0x959, 0x0, 0x4, 0xb776, 0x2000, 0x8, 0x6, 0x4, 0x0, 0x4, 0x1, 0x8, 0x0, 0x0, 0x1, 0x2, 0x200, 0x1, 0x10000, 0x1, 0xfffffffffffeffff, 0x6, 0x4, 0x0, 0x9, 0x1, 0x7, 0x8f5, 0x5, 0x1, 0x7, 0x8, 0x6, 0x8, 0xbd, 0x32dc, 0x4, 0x2, 0x6, 0x4, 0xffffffff, 0x5, 0xffffffffffff8000, 0x3], {r2, r3+30000000}}) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x400000, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000100)={0x1, 0x0, @ioapic={0xd000, 0x89, 0xfffffffffffffffb, 0x38c, 0x0, [{0x73c, 0x0, 0x5, [], 0x78}, {0xffff, 0x2, 0x6, [], 0x1}, {0x5, 0x1, 0x8001, [], 0xffffffffffff0612}, {0xffff, 0x92, 0xc04, [], 0x4}, {0x400, 0x1, 0x4dbf, [], 0x7}, {0x5, 0x4f, 0xff, [], 0x1}, {0x8, 0x2, 0x9, [], 0x7fff}, {0x1f, 0x1, 0x7fffffff, [], 0x1}, {0xffffffffffffffff, 0x8, 0x3, [], 0x3}, {0x10000, 0x3, 0x5, [], 0x6}, {0xb1f, 0x9, 0x7c0, [], 0x401}, {0xedc0, 0x1, 0x0, [], 0x1}, {0x450f, 0x7, 0x7fffffff, [], 0x100}, {0x4, 0x4, 0x1000, [], 0x7}, {0x255, 0x8, 0x401, [], 0x8000}, {0x469, 0x2, 0x3, [], 0x401}, {0x401, 0x3, 0x1, [], 0x1ff}, {0x0, 0x8, 0x0, [], 0x101}, {0x0, 0x7a, 0x3, [], 0x80}, {0x1, 0x3, 0x3843, [], 0x3}, {0x5, 0x9, 0x18000000, [], 0xffffffffffffffc1}, {0x8, 0x9, 0x9, [], 0x6}, {0x7, 0x6, 0x80000000000, [], 0x1ff}, {0x0, 0x0, 0x0, [], 0xb009}]}}) ioctl$TUNSETOFFLOAD(r4, 0x400454d0, 0x8) 15:17:20 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x3f00, 0x3) 15:17:20 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x2000, 0x0) write$FUSE_NOTIFY_POLL(r2, &(0x7f0000000100)={0x18, 0x1, 0x0, {0x8001}}, 0x18) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="ff81cd2c02da7bb69cf7d96e93f03c57ce21942e3accbe44ce9ae5c2c9266da507c03c0a9a5c5c5d125bf3b28d91b36ce8f19d7867a857ac"], 0x2) [ 319.461507] FAULT_INJECTION: forcing a failure. [ 319.461507] name failslab, interval 1, probability 0, space 0, times 0 [ 319.530915] CPU: 0 PID: 16211 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 319.538142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.547500] Call Trace: [ 319.550101] dump_stack+0x1db/0x2d0 [ 319.553759] ? dump_stack_print_info.cold+0x20/0x20 [ 319.558800] ? save_stack+0x45/0xd0 [ 319.562436] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 319.567544] ? kasan_slab_alloc+0xf/0x20 [ 319.567561] ? kmem_cache_alloc_node+0x144/0x710 [ 319.567579] ? __alloc_skb+0xf4/0x730 15:17:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(0x0, 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 319.567595] ? __vfs_write+0x764/0xb40 [ 319.567620] should_fail.cold+0xa/0x15 [ 319.567642] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 319.593182] ? ___might_sleep+0x1e7/0x310 [ 319.597340] ? arch_local_save_flags+0x50/0x50 [ 319.601926] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.601941] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.601968] __should_failslab+0x121/0x190 [ 319.601988] should_failslab+0x9/0x14 [ 319.602004] kmem_cache_alloc_node_trace+0x270/0x720 [ 319.602024] ? __alloc_skb+0xf4/0x730 [ 319.602062] __kmalloc_node_track_caller+0x3d/0x70 [ 319.602079] __kmalloc_reserve.isra.0+0x40/0xe0 [ 319.602097] __alloc_skb+0x12d/0x730 [ 319.634984] ? skb_scrub_packet+0x440/0x440 [ 319.635006] ? iterate_fd+0x4b0/0x4b0 [ 319.635026] ? proc_fail_nth_write+0xa0/0x220 [ 319.635066] vhci_write+0xc4/0x470 [ 319.635087] __vfs_write+0x764/0xb40 [ 319.635108] ? kernel_read+0x120/0x120 [ 319.635127] ? __mutex_unlock_slowpath+0x195/0x870 [ 319.635154] ? apparmor_file_permission+0x25/0x30 [ 319.635175] ? rw_verify_area+0x118/0x360 15:17:21 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) ioctl$void(r0, 0x5451) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 319.672140] vfs_write+0x20c/0x580 [ 319.672164] ksys_write+0x105/0x260 [ 319.672185] ? __ia32_sys_read+0xb0/0xb0 [ 319.672204] ? trace_hardirqs_off_caller+0x300/0x300 [ 319.672222] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 319.672242] __x64_sys_write+0x73/0xb0 [ 319.702218] do_syscall_64+0x1a3/0x800 [ 319.702238] ? syscall_return_slowpath+0x5f0/0x5f0 [ 319.702257] ? prepare_exit_to_usermode+0x232/0x3b0 [ 319.702280] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 319.702306] entry_SYSCALL_64_after_hwframe+0x49/0xbe 15:17:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x800000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 4 (fault-call:3 fault-nth:2): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:21 executing program 5: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x1, 0x721e, 0x9, 0x80000001, 0x50}, &(0x7f0000000140)=0x98) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r1, 0x9}, &(0x7f00000001c0)=0x8) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r2, &(0x7f0000000000)={0x28, 0x4}, 0x28) [ 319.702319] RIP: 0033:0x457e39 [ 319.702334] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 319.702343] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 319.702358] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 319.702366] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 319.702375] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:17:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(0x0, 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 319.702383] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 319.702394] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x900000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 319.825004] FAULT_INJECTION: forcing a failure. [ 319.825004] name failslab, interval 1, probability 0, space 0, times 0 [ 319.882952] CPU: 0 PID: 16240 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 319.890273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.899615] Call Trace: [ 319.899636] dump_stack+0x1db/0x2d0 [ 319.899656] ? dump_stack_print_info.cold+0x20/0x20 [ 319.899670] ? lock_acquire+0x1db/0x570 [ 319.899685] ? vhci_write+0x2c4/0x470 [ 319.899709] should_fail.cold+0xa/0x15 [ 319.899728] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 319.899748] ? ___might_sleep+0x1e7/0x310 [ 319.899763] ? arch_local_save_flags+0x50/0x50 [ 319.899787] __should_failslab+0x121/0x190 [ 319.899803] should_failslab+0x9/0x14 [ 319.899817] kmem_cache_alloc_node+0x265/0x710 [ 319.899830] ? kmem_cache_free+0x225/0x260 [ 319.899852] __alloc_skb+0xf4/0x730 [ 319.940682] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 319.953262] ? skb_scrub_packet+0x440/0x440 [ 319.962391] ? kfree_skb+0x1a6/0x580 [ 319.962407] ? vhci_write+0x2b3/0x470 [ 319.962423] ? __kfree_skb+0x30/0x30 [ 319.962449] __vhci_create_device+0x88/0x5a0 [ 319.962468] vhci_write+0x2d0/0x470 [ 319.962489] __vfs_write+0x764/0xb40 [ 319.962506] ? kernel_read+0x120/0x120 [ 319.962520] ? __mutex_unlock_slowpath+0x195/0x870 [ 319.962544] ? apparmor_file_permission+0x25/0x30 [ 319.974334] ? rw_verify_area+0x118/0x360 [ 319.982662] vfs_write+0x20c/0x580 [ 319.982682] ksys_write+0x105/0x260 [ 319.982701] ? __ia32_sys_read+0xb0/0xb0 [ 319.982719] ? trace_hardirqs_off_caller+0x300/0x300 [ 319.982736] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 319.982755] __x64_sys_write+0x73/0xb0 [ 319.982772] do_syscall_64+0x1a3/0x800 [ 319.982793] ? syscall_return_slowpath+0x5f0/0x5f0 [ 319.993967] ? prepare_exit_to_usermode+0x232/0x3b0 [ 320.046532] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 320.051389] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.056579] RIP: 0033:0x457e39 [ 320.059773] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:17:21 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x6201, 0x3) 15:17:21 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x2}}, 0x28) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x1fffc, 0x0) write$P9_RSETATTR(r1, &(0x7f0000000080)={0x7, 0x1b, 0x1}, 0x7) 15:17:21 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) fchdir(r0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 320.078669] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 320.086374] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 320.093640] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 320.100907] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 320.108172] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 320.116253] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd00000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000040)=""/175) r1 = fcntl$dupfd(r0, 0x406, r0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000001c0)=0x14) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000300)={r2, 0x1, 0x6, @remote}, 0x10) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000180)={0x0, 0x8}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000240)={r3, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1d}}}}, 0x84) 15:17:21 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="265c4e369e9b96ce900b2bf091a0f0e948c16070daaebedaa7483636b544bfab83199869dfea9287df64ae4ba14cc7b41c7ecd1418877d57c4ede6ee61e18768ef0a4c7993112df4a8695ba2363ef505638966c859ddb8cb8ebcf922d746caa47f85b25eea105e87aee71181a98bb0a3c5792906075062ceaa6fcec58bdcdf38b59fedc416919717643aec5b51028c2d942eeac4b72046c61bd665122e71c753fa7a147027137b40a6308381e94dfed845287aff43de846e590d801317d593e2e1e81dee3369a3f589ad5557"], 0x2) 15:17:21 executing program 4 (fault-call:3 fault-nth:3): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:21 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x6301, 0x3) 15:17:21 executing program 5: syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x8, 0x10000) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x2, 0x40002) ioctl$TIOCGSOFTCAR(r1, 0x5419, &(0x7f0000000080)) 15:17:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x1000000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 3: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x3) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 320.487654] FAULT_INJECTION: forcing a failure. [ 320.487654] name failslab, interval 1, probability 0, space 0, times 0 [ 320.547028] CPU: 1 PID: 16294 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 320.554244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 320.563598] Call Trace: [ 320.566197] dump_stack+0x1db/0x2d0 [ 320.569842] ? dump_stack_print_info.cold+0x20/0x20 [ 320.574879] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 320.579996] ? kasan_slab_alloc+0xf/0x20 [ 320.584073] ? kmem_cache_alloc_node+0x144/0x710 [ 320.588835] ? __alloc_skb+0xf4/0x730 [ 320.592642] ? vhci_write+0x2d0/0x470 [ 320.596462] should_fail.cold+0xa/0x15 [ 320.600360] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 320.605467] ? ___might_sleep+0x1e7/0x310 [ 320.609607] ? arch_local_save_flags+0x50/0x50 [ 320.614180] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.619703] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.625364] __should_failslab+0x121/0x190 [ 320.629592] should_failslab+0x9/0x14 [ 320.633384] kmem_cache_alloc_node_trace+0x270/0x720 [ 320.638506] ? __alloc_skb+0xf4/0x730 [ 320.642316] __kmalloc_node_track_caller+0x3d/0x70 [ 320.647242] __kmalloc_reserve.isra.0+0x40/0xe0 [ 320.651916] __alloc_skb+0x12d/0x730 [ 320.655621] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 320.661158] ? skb_scrub_packet+0x440/0x440 [ 320.665472] ? kfree_skb+0x1a6/0x580 [ 320.669177] ? vhci_write+0x2b3/0x470 [ 320.672971] ? __kfree_skb+0x30/0x30 [ 320.676686] __vhci_create_device+0x88/0x5a0 [ 320.681095] vhci_write+0x2d0/0x470 [ 320.684720] __vfs_write+0x764/0xb40 [ 320.688518] ? kernel_read+0x120/0x120 [ 320.692398] ? __mutex_unlock_slowpath+0x195/0x870 [ 320.697326] ? apparmor_file_permission+0x25/0x30 [ 320.702164] ? rw_verify_area+0x118/0x360 [ 320.706305] vfs_write+0x20c/0x580 [ 320.709840] ksys_write+0x105/0x260 [ 320.713465] ? __ia32_sys_read+0xb0/0xb0 [ 320.717517] ? trace_hardirqs_off_caller+0x300/0x300 [ 320.722616] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 320.727366] __x64_sys_write+0x73/0xb0 [ 320.731246] do_syscall_64+0x1a3/0x800 [ 320.735125] ? syscall_return_slowpath+0x5f0/0x5f0 [ 320.740044] ? prepare_exit_to_usermode+0x232/0x3b0 [ 320.745055] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 320.749898] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.755075] RIP: 0033:0x457e39 [ 320.758254] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 320.777138] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 320.784832] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 15:17:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:21 executing program 5: r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000240)='/dev/md0\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffff11, 0x0, 0x14, 0x0, "d769b5ba74afa649f47e338c4a69f2a7d6e0e73ff61a918763bd58319c1aed80c84d5bfec9153d0a6940983afd89a4b3d5a07ba5d82dcd2b87a31aba4edcc453", "259624b4890fca2c58edb7edb859cb04e95170e81e57107d93b0e9a1aefedb09", [0x101]}) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cuse\x00', 0x2, 0x0) getpid() timer_create(0x6, &(0x7f00000001c0)={0x0, 0x36, 0x4, @thr={&(0x7f0000000040)="4136ffca59e4f3bd7caacca3307ec4c4b0911ee42ea7ef9d659c06adffed9d8d6dd70cb2b0d0ebb598b3ae321502801449e36519db6966322df522f1488ab0943d", &(0x7f0000000100)="d28ad170f23313d2c194c0cc5ca51a54459a1d718945e49605e8cd32346327ba444b0cd53c1c3c142c7a9ca1babbc078c395ab88240e783edc185a7300fd278651342bb890c5b5ebec9cea94e3fbeaaf11eddc007b98ab144cae600528d2d874687d1c8f805df1838920016e27b014e0270cd38879ea7dac94820ef0fb7af8ccee4b4e240abb567fe7baec8a2a526cf64b062628a44d"}}, &(0x7f0000000200)) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x20000, 0x1) ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000380)=0x8519) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:21 executing program 3 (fault-call:2 fault-nth:0): perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) 15:17:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x2900000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 320.792109] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 320.799364] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 320.806624] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 320.813881] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:22 executing program 4 (fault-call:3 fault-nth:4): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:22 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cuse\x00', 0x2, 0x0) write$FUSE_STATFS(r0, &(0x7f0000000040)={0x60, 0xfffffffffffffffe, 0x5, {{0x3, 0xd7, 0x4, 0x8, 0x7, 0x9, 0x800, 0x4}}}, 0x59) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 320.919235] FAULT_INJECTION: forcing a failure. [ 320.919235] name failslab, interval 1, probability 0, space 0, times 0 [ 320.956503] CPU: 1 PID: 16311 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 320.963707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 320.963713] Call Trace: [ 320.963736] dump_stack+0x1db/0x2d0 [ 320.963756] ? dump_stack_print_info.cold+0x20/0x20 [ 320.963772] ? native_iret+0x7/0x7 [ 320.963788] ? error_exit+0xb/0x20 [ 320.992183] should_fail.cold+0xa/0x15 [ 320.996084] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 321.001193] ? ___might_sleep+0x1e7/0x310 [ 321.001211] ? arch_local_save_flags+0x50/0x50 [ 321.001229] ? unwind_get_return_address+0x61/0xa0 [ 321.001244] ? __save_stack_trace+0x8a/0xf0 [ 321.001262] __should_failslab+0x121/0x190 [ 321.001279] should_failslab+0x9/0x14 [ 321.027234] kmem_cache_alloc_trace+0x2d1/0x760 [ 321.031921] ? save_stack+0xa9/0xd0 [ 321.035548] ? save_stack+0x45/0xd0 [ 321.035571] hci_alloc_dev+0x148/0x21a0 [ 321.035586] ? hci_init4_req+0xec0/0xec0 [ 321.035603] ? do_syscall_64+0x1a3/0x800 [ 321.043181] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.051271] ? add_lock_to_list.isra.0+0x450/0x450 [ 321.051289] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.051303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.051320] ? check_preemption_disabled+0x48/0x290 [ 321.051341] ? __lock_is_held+0xb6/0x140 [ 321.061596] ? __kmalloc_node_track_caller+0x3d/0x70 [ 321.061618] ? rcu_read_lock_sched_held+0x110/0x130 [ 321.061637] ? kasan_unpoison_shadow+0x35/0x50 [ 321.061653] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 321.061671] ? kasan_kmalloc+0x9/0x10 [ 321.105281] ? __kmalloc_node_track_caller+0x4e/0x70 [ 321.110493] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 321.116034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.121569] ? __alloc_skb+0x491/0x730 [ 321.125458] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 321.130998] ? skb_scrub_packet+0x440/0x440 [ 321.135324] ? kfree_skb+0x1a6/0x580 [ 321.139041] ? vhci_write+0x2b3/0x470 [ 321.142859] __vhci_create_device+0x101/0x5a0 [ 321.147363] vhci_write+0x2d0/0x470 [ 321.151010] __vfs_write+0x764/0xb40 [ 321.154725] ? kernel_read+0x120/0x120 [ 321.158613] ? __mutex_unlock_slowpath+0x195/0x870 [ 321.163550] ? apparmor_file_permission+0x25/0x30 [ 321.168399] ? rw_verify_area+0x118/0x360 [ 321.172557] vfs_write+0x20c/0x580 [ 321.176104] ksys_write+0x105/0x260 [ 321.179733] ? __ia32_sys_read+0xb0/0xb0 [ 321.183797] ? trace_hardirqs_off_caller+0x300/0x300 [ 321.188910] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 321.193674] __x64_sys_write+0x73/0xb0 [ 321.197563] do_syscall_64+0x1a3/0x800 [ 321.201455] ? syscall_return_slowpath+0x5f0/0x5f0 [ 321.206383] ? prepare_exit_to_usermode+0x232/0x3b0 [ 321.211415] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.216268] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.221452] RIP: 0033:0x457e39 [ 321.224647] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 321.243546] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 321.251252] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 321.258517] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 321.265787] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 321.273056] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 321.280325] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:22 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x7c8a, 0x3) 15:17:22 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3000000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:22 executing program 5: r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000240)='/dev/md0\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffff11, 0x0, 0x14, 0x0, "d769b5ba74afa649f47e338c4a69f2a7d6e0e73ff61a918763bd58319c1aed80c84d5bfec9153d0a6940983afd89a4b3d5a07ba5d82dcd2b87a31aba4edcc453", "259624b4890fca2c58edb7edb859cb04e95170e81e57107d93b0e9a1aefedb09", [0x101]}) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000340)='/dev/cuse\x00', 0x2, 0x0) getpid() timer_create(0x6, &(0x7f00000001c0)={0x0, 0x36, 0x4, @thr={&(0x7f0000000040)="4136ffca59e4f3bd7caacca3307ec4c4b0911ee42ea7ef9d659c06adffed9d8d6dd70cb2b0d0ebb598b3ae321502801449e36519db6966322df522f1488ab0943d", &(0x7f0000000100)="d28ad170f23313d2c194c0cc5ca51a54459a1d718945e49605e8cd32346327ba444b0cd53c1c3c142c7a9ca1babbc078c395ab88240e783edc185a7300fd278651342bb890c5b5ebec9cea94e3fbeaaf11eddc007b98ab144cae600528d2d874687d1c8f805df1838920016e27b014e0270cd38879ea7dac94820ef0fb7af8ccee4b4e240abb567fe7baec8a2a526cf64b062628a44d"}}, &(0x7f0000000200)) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x20000, 0x1) ioctl$CAPI_GET_MANUFACTURER(r2, 0xc0044306, &(0x7f0000000380)=0x8519) write$FUSE_NOTIFY_INVAL_INODE(r1, &(0x7f0000000000)={0x28, 0x4}, 0x28) 15:17:22 executing program 4 (fault-call:3 fault-nth:5): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:22 executing program 5 (fault-call:4 fault-nth:0): r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:22 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x3) [ 321.390544] FAULT_INJECTION: forcing a failure. [ 321.390544] name failslab, interval 1, probability 0, space 0, times 0 15:17:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, 0x0) [ 321.474892] CPU: 1 PID: 16326 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 321.482109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.491459] Call Trace: [ 321.494061] dump_stack+0x1db/0x2d0 [ 321.497709] ? dump_stack_print_info.cold+0x20/0x20 [ 321.502668] FAULT_INJECTION: forcing a failure. [ 321.502668] name failslab, interval 1, probability 0, space 0, times 0 [ 321.502743] should_fail.cold+0xa/0x15 [ 321.518022] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 321.523139] ? ___might_sleep+0x1e7/0x310 [ 321.527294] ? arch_local_save_flags+0x50/0x50 [ 321.531898] __should_failslab+0x121/0x190 [ 321.536145] should_failslab+0x9/0x14 [ 321.539949] __kmalloc+0x2dc/0x740 [ 321.543494] ? add_lock_to_list.isra.0+0x450/0x450 [ 321.548432] ? __alloc_workqueue_key+0x176/0x1080 [ 321.553283] __alloc_workqueue_key+0x176/0x1080 [ 321.557959] ? __lock_is_held+0xb6/0x140 [ 321.562049] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 321.567076] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 321.572613] ? vsnprintf+0x368/0x1b10 [ 321.576426] ? pointer+0x930/0x930 [ 321.579983] ? sprintf+0xc0/0x100 [ 321.583435] ? scnprintf+0x140/0x140 [ 321.587150] ? __kmalloc_node_track_caller+0x4e/0x70 [ 321.592262] ? __alloc_skb+0x491/0x730 [ 321.596158] hci_register_dev+0x24d/0x9d0 [ 321.600306] ? kfree_skb+0x1a6/0x580 [ 321.604022] ? vhci_write+0x2b3/0x470 [ 321.607826] ? hci_conn_params_free+0x840/0x840 [ 321.612542] __vhci_create_device+0x2d0/0x5a0 [ 321.617053] vhci_write+0x2d0/0x470 [ 321.620693] __vfs_write+0x764/0xb40 [ 321.624420] ? kernel_read+0x120/0x120 [ 321.628319] ? __mutex_unlock_slowpath+0x195/0x870 [ 321.633267] ? apparmor_file_permission+0x25/0x30 [ 321.638118] ? rw_verify_area+0x118/0x360 [ 321.642272] vfs_write+0x20c/0x580 [ 321.645826] ksys_write+0x105/0x260 [ 321.649463] ? __ia32_sys_read+0xb0/0xb0 [ 321.653528] ? trace_hardirqs_off_caller+0x300/0x300 [ 321.658635] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 321.663399] __x64_sys_write+0x73/0xb0 [ 321.667289] do_syscall_64+0x1a3/0x800 [ 321.671178] ? syscall_return_slowpath+0x5f0/0x5f0 [ 321.676127] ? prepare_exit_to_usermode+0x232/0x3b0 [ 321.681158] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.686012] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.691195] RIP: 0033:0x457e39 [ 321.694385] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 321.713397] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 321.721105] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 321.728376] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 321.735641] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 321.742913] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 321.750183] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 321.757477] CPU: 0 PID: 16335 Comm: syz-executor5 Not tainted 5.0.0-rc4+ #54 [ 321.764664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 15:17:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x3f00000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 321.774026] Call Trace: [ 321.776626] dump_stack+0x1db/0x2d0 [ 321.780266] ? dump_stack_print_info.cold+0x20/0x20 [ 321.785309] should_fail.cold+0xa/0x15 [ 321.789208] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 321.794329] ? ___might_sleep+0x1e7/0x310 [ 321.798486] ? arch_local_save_flags+0x50/0x50 [ 321.803076] ? ___might_sleep+0x1e7/0x310 [ 321.805744] Bluetooth: Can't register HCI device [ 321.807233] __should_failslab+0x121/0x190 [ 321.807253] should_failslab+0x9/0x14 [ 321.807268] kmem_cache_alloc_trace+0x2d1/0x760 15:17:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x4000000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 321.807288] ? down_write_nested+0x8e/0x130 [ 321.807351] ? key_revoke+0x24/0x190 [ 321.807368] ? keyring_destroy+0x480/0x480 [ 321.837025] assoc_array_clear+0x73/0x230 [ 321.837043] ? keyring_destroy+0x480/0x480 [ 321.837060] keyring_revoke+0x23/0x70 [ 321.837073] ? keyring_destroy+0x480/0x480 [ 321.837087] key_revoke+0xa6/0x190 [ 321.853450] keyctl_revoke_key+0xb7/0x120 [ 321.853470] __x64_sys_keyctl+0x278/0x420 [ 321.853492] do_syscall_64+0x1a3/0x800 [ 321.853512] ? syscall_return_slowpath+0x5f0/0x5f0 [ 321.853541] ? prepare_exit_to_usermode+0x232/0x3b0 [ 321.853563] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.853587] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.853599] RIP: 0033:0x457e39 [ 321.879184] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 321.879193] RSP: 002b:00007f5589de8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa 15:17:23 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x8a7c, 0x3) 15:17:23 executing program 5 (fault-call:4 fault-nth:1): r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:23 executing program 4 (fault-call:3 fault-nth:6): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 321.879209] RAX: ffffffffffffffda RBX: 00007f5589de8c90 RCX: 0000000000457e39 [ 321.879219] RDX: 0000000000000000 RSI: 0000000025b53e07 RDI: 0000000000000003 [ 321.879228] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 321.879238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5589de96d4 [ 321.879247] R13: 00000000004c382c R14: 00000000004d6590 R15: 0000000000000005 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, 0x0) [ 322.020774] FAULT_INJECTION: forcing a failure. [ 322.020774] name failslab, interval 1, probability 0, space 0, times 0 [ 322.071443] CPU: 1 PID: 16351 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 322.078671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.088028] Call Trace: [ 322.090631] dump_stack+0x1db/0x2d0 [ 322.094276] ? dump_stack_print_info.cold+0x20/0x20 [ 322.099305] ? ksys_write+0x105/0x260 [ 322.103121] ? __x64_sys_write+0x73/0xb0 [ 322.107193] ? do_syscall_64+0x1a3/0x800 [ 322.111264] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.117026] should_fail.cold+0xa/0x15 [ 322.120937] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 322.126064] ? ___might_sleep+0x1e7/0x310 [ 322.130226] ? arch_local_save_flags+0x50/0x50 [ 322.134844] __should_failslab+0x121/0x190 [ 322.139088] should_failslab+0x9/0x14 [ 322.143363] kmem_cache_alloc_trace+0x2d1/0x760 [ 322.148039] ? rcu_read_lock_sched_held+0x110/0x130 [ 322.153061] ? __kmalloc+0x5d5/0x740 [ 322.156783] ? add_lock_to_list.isra.0+0x450/0x450 [ 322.161746] alloc_workqueue_attrs+0x82/0x120 [ 322.166258] __alloc_workqueue_key+0x1a7/0x1080 [ 322.170931] ? __lock_is_held+0xb6/0x140 [ 322.175007] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 322.180031] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 322.185580] ? vsnprintf+0x368/0x1b10 [ 322.189397] ? pointer+0x930/0x930 [ 322.192953] ? sprintf+0xc0/0x100 [ 322.196409] ? scnprintf+0x140/0x140 [ 322.200131] ? __kmalloc_node_track_caller+0x4e/0x70 [ 322.205255] ? __alloc_skb+0x491/0x730 [ 322.209160] hci_register_dev+0x24d/0x9d0 [ 322.213323] ? kfree_skb+0x1a6/0x580 [ 322.217047] ? vhci_write+0x2b3/0x470 [ 322.220854] ? hci_conn_params_free+0x840/0x840 [ 322.225538] __vhci_create_device+0x2d0/0x5a0 [ 322.230044] vhci_write+0x2d0/0x470 [ 322.233681] __vfs_write+0x764/0xb40 [ 322.237405] ? kernel_read+0x120/0x120 [ 322.241298] ? __mutex_unlock_slowpath+0x195/0x870 [ 322.246249] ? apparmor_file_permission+0x25/0x30 [ 322.251106] ? rw_verify_area+0x118/0x360 [ 322.255260] vfs_write+0x20c/0x580 [ 322.258827] ksys_write+0x105/0x260 [ 322.262468] ? __ia32_sys_read+0xb0/0xb0 [ 322.266538] ? trace_hardirqs_off_caller+0x300/0x300 [ 322.271652] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 322.276424] __x64_sys_write+0x73/0xb0 [ 322.280327] do_syscall_64+0x1a3/0x800 [ 322.284226] ? syscall_return_slowpath+0x5f0/0x5f0 [ 322.289163] ? prepare_exit_to_usermode+0x232/0x3b0 [ 322.294193] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 322.299058] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.304252] RIP: 0033:0x457e39 15:17:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x162, 0x3) 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, 0x0) 15:17:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x163, 0x3) 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x0, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x6201, 0x3) 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x0, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x6301, 0x3) [ 322.307447] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 322.326352] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 322.334065] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 322.341337] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 322.348607] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 322.355873] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 322.355883] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xd400000000000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 322.375745] Bluetooth: Can't register HCI device 15:17:23 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x162650, 0x3) 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x0, 0x0, 0x6, 0x0, @scatter={0x500, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x7c8a, 0x3) 15:17:23 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x3, r0, 0x0, 0x0) 15:17:23 executing program 4 (fault-call:3 fault-nth:7): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xf6ffffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 322.572792] FAULT_INJECTION: forcing a failure. [ 322.572792] name failslab, interval 1, probability 0, space 0, times 0 [ 322.614331] CPU: 1 PID: 16393 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 322.621566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.630915] Call Trace: [ 322.630940] dump_stack+0x1db/0x2d0 [ 322.630961] ? dump_stack_print_info.cold+0x20/0x20 [ 322.630978] ? ksys_write+0x105/0x260 [ 322.646035] ? __x64_sys_write+0x73/0xb0 [ 322.650099] ? do_syscall_64+0x1a3/0x800 [ 322.650118] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.650145] should_fail.cold+0xa/0x15 [ 322.650164] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 322.668556] ? ___might_sleep+0x1e7/0x310 [ 322.672710] ? arch_local_save_flags+0x50/0x50 [ 322.672742] __should_failslab+0x121/0x190 [ 322.672762] should_failslab+0x9/0x14 [ 322.672786] kmem_cache_alloc_trace+0x2d1/0x760 [ 322.672802] ? rcu_read_lock_sched_held+0x110/0x130 [ 322.690026] ? __kmalloc+0x5d5/0x740 [ 322.690043] ? add_lock_to_list.isra.0+0x450/0x450 [ 322.690068] alloc_workqueue_attrs+0x82/0x120 [ 322.690087] __alloc_workqueue_key+0x1a7/0x1080 [ 322.712850] ? __lock_is_held+0xb6/0x140 [ 322.712876] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 322.712895] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 322.712910] ? vsnprintf+0x368/0x1b10 [ 322.712933] ? pointer+0x930/0x930 [ 322.727514] ? sprintf+0xc0/0x100 [ 322.727530] ? scnprintf+0x140/0x140 [ 322.727546] ? __kmalloc_node_track_caller+0x4e/0x70 [ 322.727573] ? __alloc_skb+0x491/0x730 [ 322.751003] hci_register_dev+0x24d/0x9d0 [ 322.755180] ? kfree_skb+0x1a6/0x580 [ 322.755198] ? vhci_write+0x2b3/0x470 [ 322.755216] ? hci_conn_params_free+0x840/0x840 [ 322.755242] __vhci_create_device+0x2d0/0x5a0 [ 322.767492] vhci_write+0x2d0/0x470 [ 322.775590] __vfs_write+0x764/0xb40 [ 322.779322] ? kernel_read+0x120/0x120 [ 322.783220] ? __mutex_unlock_slowpath+0x195/0x870 [ 322.788167] ? apparmor_file_permission+0x25/0x30 [ 322.793025] ? rw_verify_area+0x118/0x360 [ 322.797185] vfs_write+0x20c/0x580 [ 322.800736] ksys_write+0x105/0x260 [ 322.804385] ? __ia32_sys_read+0xb0/0xb0 [ 322.808452] ? trace_hardirqs_off_caller+0x300/0x300 [ 322.808472] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 322.808493] __x64_sys_write+0x73/0xb0 [ 322.808512] do_syscall_64+0x1a3/0x800 [ 322.826101] ? syscall_return_slowpath+0x5f0/0x5f0 [ 322.831041] ? prepare_exit_to_usermode+0x232/0x3b0 [ 322.836068] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 322.836096] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.836107] RIP: 0033:0x457e39 15:17:23 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x2, r0, 0x0, 0x0) 15:17:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:24 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x4, r0, 0x0, 0x0) 15:17:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:24 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x5, r0, 0x0, 0x0) [ 322.836122] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 322.868198] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 322.868214] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 322.868223] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 322.868233] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 322.868242] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 322.868252] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 322.918411] Bluetooth: Can't register HCI device 15:17:24 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x1000000, 0x3) 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x8a7c, 0x3) 15:17:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580), 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:24 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfbffffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:24 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x6, r0, 0x0, 0x0) 15:17:24 executing program 4 (fault-call:3 fault-nth:8): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) [ 323.187428] FAULT_INJECTION: forcing a failure. [ 323.187428] name failslab, interval 1, probability 0, space 0, times 0 15:17:24 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfcffffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 323.262781] CPU: 1 PID: 16423 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 323.270011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.279365] Call Trace: [ 323.281974] dump_stack+0x1db/0x2d0 [ 323.285623] ? dump_stack_print_info.cold+0x20/0x20 [ 323.290654] ? vhci_write+0x2d0/0x470 [ 323.294466] ? __vfs_write+0x764/0xb40 [ 323.298363] ? vfs_write+0x20c/0x580 [ 323.302093] ? ksys_write+0x105/0x260 [ 323.305903] ? __x64_sys_write+0x73/0xb0 [ 323.309976] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.315352] should_fail.cold+0xa/0x15 [ 323.319258] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 323.324378] ? ___might_sleep+0x1e7/0x310 [ 323.328534] ? arch_local_save_flags+0x50/0x50 [ 323.333132] __should_failslab+0x121/0x190 [ 323.337392] should_failslab+0x9/0x14 [ 323.341204] kmem_cache_alloc_trace+0x2d1/0x760 [ 323.345886] ? rcu_read_lock_sched_held+0x110/0x130 [ 323.350908] ? __kmalloc+0x5d5/0x740 [ 323.354622] ? __lock_is_held+0xb6/0x140 [ 323.358696] alloc_workqueue_attrs+0x82/0x120 [ 323.358725] apply_wqattrs_prepare+0x10d/0x9f0 [ 323.358753] apply_workqueue_attrs_locked+0x183/0x260 [ 323.372995] ? apply_wqattrs_prepare+0x9f0/0x9f0 [ 323.373026] apply_workqueue_attrs+0x31/0x50 [ 323.373044] __alloc_workqueue_key+0x9ac/0x1080 [ 323.373071] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 323.386862] ? vsnprintf+0x368/0x1b10 [ 323.386888] ? pointer+0x930/0x930 [ 323.386912] ? sprintf+0xc0/0x100 [ 323.402699] ? __alloc_skb+0x491/0x730 [ 323.406600] hci_register_dev+0x24d/0x9d0 [ 323.406618] ? kfree_skb+0x1a6/0x580 [ 323.406631] ? vhci_write+0x2b3/0x470 [ 323.406646] ? hci_conn_params_free+0x840/0x840 [ 323.422939] __vhci_create_device+0x2d0/0x5a0 [ 323.427443] vhci_write+0x2d0/0x470 [ 323.427467] __vfs_write+0x764/0xb40 [ 323.427487] ? kernel_read+0x120/0x120 [ 323.438677] ? __mutex_unlock_slowpath+0x195/0x870 [ 323.443634] ? apparmor_file_permission+0x25/0x30 [ 323.448494] ? rw_verify_area+0x118/0x360 [ 323.452655] vfs_write+0x20c/0x580 [ 323.456210] ksys_write+0x105/0x260 [ 323.459845] ? __ia32_sys_read+0xb0/0xb0 [ 323.463916] ? trace_hardirqs_off_caller+0x300/0x300 [ 323.469024] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 323.473791] __x64_sys_write+0x73/0xb0 [ 323.483163] do_syscall_64+0x1a3/0x800 [ 323.487059] ? syscall_return_slowpath+0x5f0/0x5f0 [ 323.487079] ? prepare_exit_to_usermode+0x232/0x3b0 [ 323.487101] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 323.501860] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.501874] RIP: 0033:0x457e39 [ 323.501889] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 323.501897] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 323.501912] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 323.501923] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 323.551372] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x162650, 0x3) 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x1000000, 0x3) 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x50261600, 0x3) 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x62010000, 0x3) 15:17:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x63010000, 0x3) [ 323.551382] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 323.551391] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 323.567096] Bluetooth: Can't register HCI device 15:17:25 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x3f000000, 0x3) 15:17:25 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x7c8a0000, 0x3) 15:17:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580), 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:25 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x7, r0, 0x0, 0x0) 15:17:25 executing program 4 (fault-call:3 fault-nth:9): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:25 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfdfdffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 323.785403] FAULT_INJECTION: forcing a failure. [ 323.785403] name failslab, interval 1, probability 0, space 0, times 0 [ 323.830548] CPU: 0 PID: 16463 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 323.837771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.847132] Call Trace: [ 323.849726] dump_stack+0x1db/0x2d0 [ 323.853352] ? dump_stack_print_info.cold+0x20/0x20 [ 323.853368] ? __x64_sys_write+0x73/0xb0 [ 323.853385] ? do_syscall_64+0x1a3/0x800 [ 323.853402] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.853418] ? print_usage_bug+0xd0/0xd0 [ 323.853439] should_fail.cold+0xa/0x15 [ 323.853460] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 323.853483] ? ___might_sleep+0x1e7/0x310 [ 323.853499] ? arch_local_save_flags+0x50/0x50 [ 323.893718] __should_failslab+0x121/0x190 [ 323.897957] should_failslab+0x9/0x14 [ 323.901764] kmem_cache_alloc_trace+0x2d1/0x760 [ 323.906437] ? rcu_read_lock_sched_held+0x110/0x130 [ 323.911451] ? __kmalloc+0x5d5/0x740 [ 323.915163] ? __lock_is_held+0xb6/0x140 [ 323.919231] alloc_workqueue_attrs+0x82/0x120 [ 323.923735] apply_wqattrs_prepare+0x11a/0x9f0 [ 323.928330] apply_workqueue_attrs_locked+0x183/0x260 [ 323.933525] ? apply_wqattrs_prepare+0x9f0/0x9f0 [ 323.938292] apply_workqueue_attrs+0x31/0x50 [ 323.942706] __alloc_workqueue_key+0x9ac/0x1080 [ 323.947387] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 323.952406] ? vsnprintf+0x368/0x1b10 [ 323.956216] ? pointer+0x930/0x930 [ 323.959767] ? sprintf+0xc0/0x100 [ 323.963245] ? __alloc_skb+0x491/0x730 [ 323.967143] hci_register_dev+0x24d/0x9d0 [ 323.971294] ? kfree_skb+0x1a6/0x580 [ 323.975523] ? vhci_write+0x2b3/0x470 [ 323.979325] ? hci_conn_params_free+0x840/0x840 [ 323.984005] __vhci_create_device+0x2d0/0x5a0 [ 323.988505] vhci_write+0x2d0/0x470 [ 323.992140] __vfs_write+0x764/0xb40 [ 323.995861] ? kernel_read+0x120/0x120 [ 323.999771] ? __mutex_unlock_slowpath+0x195/0x870 [ 324.004715] ? apparmor_file_permission+0x25/0x30 [ 324.009564] ? rw_verify_area+0x118/0x360 [ 324.013717] vfs_write+0x20c/0x580 [ 324.017268] ksys_write+0x105/0x260 [ 324.020904] ? __ia32_sys_read+0xb0/0xb0 [ 324.024969] ? trace_hardirqs_off_caller+0x300/0x300 [ 324.030076] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 324.034837] __x64_sys_write+0x73/0xb0 [ 324.038727] do_syscall_64+0x1a3/0x800 [ 324.042620] ? syscall_return_slowpath+0x5f0/0x5f0 [ 324.047559] ? prepare_exit_to_usermode+0x232/0x3b0 [ 324.052584] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 324.057436] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 324.062623] RIP: 0033:0x457e39 15:17:25 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x8, r0, 0x0, 0x0) [ 324.065823] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 324.084718] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 324.092424] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 324.099714] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 324.106994] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 324.114359] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 324.121625] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580), 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:25 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xfeffffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 324.135244] Bluetooth: Can't register HCI device 15:17:25 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x9, r0, 0x0, 0x0) 15:17:25 executing program 4 (fault-call:3 fault-nth:10): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:25 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0xffffffff00000000, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 324.276544] FAULT_INJECTION: forcing a failure. [ 324.276544] name failslab, interval 1, probability 0, space 0, times 0 [ 324.327010] CPU: 1 PID: 16486 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 324.334227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 324.343575] Call Trace: [ 324.343597] dump_stack+0x1db/0x2d0 [ 324.343625] ? dump_stack_print_info.cold+0x20/0x20 [ 324.343641] ? save_stack+0xa9/0xd0 [ 324.343661] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 324.349855] should_fail.cold+0xa/0x15 [ 324.349876] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 324.349899] ? ___might_sleep+0x1e7/0x310 [ 324.376697] ? arch_local_save_flags+0x50/0x50 [ 324.381283] ? add_lock_to_list.isra.0+0x450/0x450 [ 324.386213] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.391758] __should_failslab+0x121/0x190 [ 324.395995] should_failslab+0x9/0x14 [ 324.399800] kmem_cache_alloc_node+0x265/0x710 [ 324.404379] ? __lock_is_held+0xb6/0x140 [ 324.408451] alloc_unbound_pwq+0x523/0xe20 [ 324.412692] ? init_worker_pool+0x600/0x600 [ 324.417030] apply_wqattrs_prepare+0x3b0/0x9f0 [ 324.421637] apply_workqueue_attrs_locked+0x183/0x260 [ 324.426834] ? apply_wqattrs_prepare+0x9f0/0x9f0 [ 324.431598] apply_workqueue_attrs+0x31/0x50 [ 324.436010] __alloc_workqueue_key+0x9ac/0x1080 [ 324.440694] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 324.445716] ? vsnprintf+0x368/0x1b10 [ 324.449528] ? pointer+0x930/0x930 [ 324.453076] ? sprintf+0xc0/0x100 [ 324.456542] ? __alloc_skb+0x491/0x730 [ 324.460439] hci_register_dev+0x24d/0x9d0 [ 324.464585] ? kfree_skb+0x1a6/0x580 [ 324.468313] ? vhci_write+0x2b3/0x470 [ 324.472110] ? hci_conn_params_free+0x840/0x840 [ 324.476790] __vhci_create_device+0x2d0/0x5a0 [ 324.481291] vhci_write+0x2d0/0x470 [ 324.484921] __vfs_write+0x764/0xb40 [ 324.488646] ? kernel_read+0x120/0x120 [ 324.492553] ? __mutex_unlock_slowpath+0x195/0x870 [ 324.497494] ? apparmor_file_permission+0x25/0x30 [ 324.502347] ? rw_verify_area+0x118/0x360 [ 324.506497] vfs_write+0x20c/0x580 [ 324.510039] ksys_write+0x105/0x260 [ 324.513670] ? __ia32_sys_read+0xb0/0xb0 [ 324.517738] ? trace_hardirqs_off_caller+0x300/0x300 [ 324.522841] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 324.527610] __x64_sys_write+0x73/0xb0 [ 324.531497] do_syscall_64+0x1a3/0x800 [ 324.535385] ? syscall_return_slowpath+0x5f0/0x5f0 [ 324.540314] ? prepare_exit_to_usermode+0x232/0x3b0 [ 324.545334] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 324.550282] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 324.555471] RIP: 0033:0x457e39 [ 324.558663] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 324.577560] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 324.585302] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 324.592566] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 324.599924] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 324.607204] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 324.614467] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 324.627670] Bluetooth: Can't register HCI device 15:17:26 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x50261600, 0x3) 15:17:26 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0xffffffff000, 0x3) 15:17:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)='_9 ', 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x20002, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xa, r0, 0x0, 0x0) 15:17:26 executing program 4 (fault-call:3 fault-nth:11): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)='_9 ', 0x0, 0x0, 0x0, 0x0, 0x0}) [ 324.750653] FAULT_INJECTION: forcing a failure. [ 324.750653] name failslab, interval 1, probability 0, space 0, times 0 [ 324.804320] CPU: 0 PID: 16506 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 324.811537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 324.811545] Call Trace: [ 324.811566] dump_stack+0x1db/0x2d0 [ 324.811603] ? dump_stack_print_info.cold+0x20/0x20 [ 324.811620] ? save_stack+0xa9/0xd0 [ 324.811641] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 324.811663] should_fail.cold+0xa/0x15 [ 324.832234] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 324.832258] ? ___might_sleep+0x1e7/0x310 [ 324.832276] ? arch_local_save_flags+0x50/0x50 [ 324.832292] ? add_lock_to_list.isra.0+0x450/0x450 [ 324.832307] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.832327] __should_failslab+0x121/0x190 [ 324.849995] should_failslab+0x9/0x14 [ 324.850013] kmem_cache_alloc_node+0x265/0x710 [ 324.850028] ? __lock_is_held+0xb6/0x140 [ 324.858739] alloc_unbound_pwq+0x523/0xe20 [ 324.858761] ? init_worker_pool+0x600/0x600 [ 324.858788] apply_wqattrs_prepare+0x3b0/0x9f0 [ 324.898929] apply_workqueue_attrs_locked+0x183/0x260 [ 324.904125] ? apply_wqattrs_prepare+0x9f0/0x9f0 [ 324.908898] apply_workqueue_attrs+0x31/0x50 [ 324.913330] __alloc_workqueue_key+0x9ac/0x1080 [ 324.918012] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 324.923036] ? vsnprintf+0x368/0x1b10 [ 324.926849] ? pointer+0x930/0x930 [ 324.930425] ? sprintf+0xc0/0x100 [ 324.933905] ? __alloc_skb+0x491/0x730 [ 324.937800] hci_register_dev+0x24d/0x9d0 [ 324.941953] ? kfree_skb+0x1a6/0x580 [ 324.945674] ? vhci_write+0x2b3/0x470 [ 324.949478] ? hci_conn_params_free+0x840/0x840 [ 324.954159] __vhci_create_device+0x2d0/0x5a0 [ 324.958660] vhci_write+0x2d0/0x470 [ 324.962303] __vfs_write+0x764/0xb40 [ 324.966029] ? kernel_read+0x120/0x120 [ 324.969925] ? __mutex_unlock_slowpath+0x195/0x870 [ 324.975325] ? apparmor_file_permission+0x25/0x30 [ 324.975353] ? rw_verify_area+0x118/0x360 [ 324.975374] vfs_write+0x20c/0x580 [ 324.975395] ksys_write+0x105/0x260 [ 324.984354] ? __ia32_sys_read+0xb0/0xb0 [ 324.984374] ? trace_hardirqs_off_caller+0x300/0x300 [ 324.984392] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 324.984414] __x64_sys_write+0x73/0xb0 [ 324.984431] do_syscall_64+0x1a3/0x800 [ 324.984450] ? syscall_return_slowpath+0x5f0/0x5f0 [ 324.984466] ? prepare_exit_to_usermode+0x232/0x3b0 [ 324.984488] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 325.027988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.033181] RIP: 0033:0x457e39 [ 325.036383] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xb, r0, 0x0, 0x0) 15:17:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29003, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 325.055286] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 325.062996] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 325.070266] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 325.077533] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 325.084808] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 325.092075] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 15:17:26 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0xf0ffffff0f0000, 0x3) [ 325.111260] Bluetooth: Can't register HCI device 15:17:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)='_9 ', 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xc, r0, 0x0, 0x0) 15:17:26 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x62010000, 0x3) 15:17:26 executing program 4 (fault-call:3 fault-nth:12): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29004, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 325.253072] FAULT_INJECTION: forcing a failure. [ 325.253072] name failslab, interval 1, probability 0, space 0, times 0 15:17:26 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x100000000000000, 0x3) 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xd, r0, 0x0, 0x0) 15:17:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1e", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29005, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xe, r0, 0x0, 0x0) 15:17:26 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x5026160000000000, 0x3) 15:17:26 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1e", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x63010000, 0x3) 15:17:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29008, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:26 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0xf, r0, 0x0, 0x0) [ 325.643479] CPU: 0 PID: 16533 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 325.650717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.660091] Call Trace: [ 325.662688] dump_stack+0x1db/0x2d0 [ 325.666330] ? dump_stack_print_info.cold+0x20/0x20 [ 325.671366] ? ksys_write+0x105/0x260 [ 325.675174] ? __x64_sys_write+0x73/0xb0 [ 325.679239] ? do_syscall_64+0x1a3/0x800 [ 325.683317] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.688722] ? __alloc_workqueue_key+0xb29/0x1080 [ 325.693579] should_fail.cold+0xa/0x15 [ 325.697478] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 325.702607] ? ___might_sleep+0x1e7/0x310 [ 325.706762] ? arch_local_save_flags+0x50/0x50 [ 325.711362] __should_failslab+0x121/0x190 [ 325.715627] should_failslab+0x9/0x14 [ 325.719437] kmem_cache_alloc_trace+0x2d1/0x760 [ 325.724109] ? rcu_read_lock_sched_held+0x110/0x130 [ 325.729132] ? __kmalloc+0x5d5/0x740 [ 325.732851] ? __lock_is_held+0xb6/0x140 [ 325.736921] alloc_workqueue_attrs+0x82/0x120 [ 325.736943] __alloc_workqueue_key+0x1a7/0x1080 [ 325.736968] ? workqueue_sysfs_register+0x3f0/0x3f0 [ 325.746116] ? pointer+0x930/0x930 [ 325.746144] ? sprintf+0xc0/0x100 [ 325.758117] ? __alloc_skb+0x491/0x730 [ 325.758138] hci_register_dev+0x2af/0x9d0 [ 325.758153] ? kfree_skb+0x1a6/0x580 [ 325.766159] ? vhci_write+0x2b3/0x470 [ 325.773638] ? hci_conn_params_free+0x840/0x840 [ 325.773668] __vhci_create_device+0x2d0/0x5a0 [ 325.773689] vhci_write+0x2d0/0x470 [ 325.773710] __vfs_write+0x764/0xb40 [ 325.773732] ? kernel_read+0x120/0x120 [ 325.773749] ? __mutex_unlock_slowpath+0x195/0x870 [ 325.773775] ? apparmor_file_permission+0x25/0x30 [ 325.773799] ? rw_verify_area+0x118/0x360 [ 325.786540] vfs_write+0x20c/0x580 [ 325.786562] ksys_write+0x105/0x260 [ 325.815142] ? __ia32_sys_read+0xb0/0xb0 [ 325.819211] ? trace_hardirqs_off_caller+0x300/0x300 [ 325.824320] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 325.829082] __x64_sys_write+0x73/0xb0 [ 325.832980] do_syscall_64+0x1a3/0x800 [ 325.836874] ? syscall_return_slowpath+0x5f0/0x5f0 [ 325.841808] ? prepare_exit_to_usermode+0x232/0x3b0 [ 325.846832] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 325.851690] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.856883] RIP: 0033:0x457e39 [ 325.860081] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 325.878986] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 325.886694] RAX: ffffffffffffffda RBX: 00007fa8a6f53c90 RCX: 0000000000457e39 [ 325.893966] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000005 [ 325.901233] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 325.908509] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 325.915777] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 0000000000000006 [ 326.163810] Bluetooth: Can't register HCI device 15:17:27 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) 15:17:27 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1e", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:27 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x6201000000000000, 0x3) 15:17:27 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x10, r0, 0x0, 0x0) 15:17:27 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29009, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:27 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x7c8a0000, 0x3) 15:17:27 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x11, r0, 0x0, 0x0) 15:17:27 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x6301000000000000, 0x3) 15:17:27 executing program 2 (fault-call:3 fault-nth:0): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:27 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x12, r0, 0x0, 0x0) 15:17:27 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x2900d, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 326.422126] FAULT_INJECTION: forcing a failure. [ 326.422126] name failslab, interval 1, probability 0, space 0, times 0 [ 326.487560] CPU: 1 PID: 16604 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #54 [ 326.494779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 326.504128] Call Trace: [ 326.506721] dump_stack+0x1db/0x2d0 [ 326.510357] ? dump_stack_print_info.cold+0x20/0x20 [ 326.515377] ? sg_common_write.isra.0+0xa07/0x2480 [ 326.520322] should_fail.cold+0xa/0x15 [ 326.524213] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 326.529321] ? mutex_trylock+0x2d0/0x2d0 [ 326.533382] ? __debug_object_init+0x1c0/0x12d0 [ 326.538061] ? debug_object_free+0x5f0/0x5f0 [ 326.542473] ? direct_make_request+0x5a0/0x5a0 [ 326.547062] __should_failslab+0x121/0x190 [ 326.551318] should_failslab+0x9/0x14 [ 326.555120] __kmalloc+0x71/0x740 [ 326.558575] ? blk_mq_alloc_request+0x180/0x340 [ 326.563239] ? blk_mq_get_request+0x1b40/0x1b40 [ 326.567910] ? process_measurement+0x268/0x1be0 [ 326.572586] ? sg_build_indirect.isra.0+0x11f/0xa00 [ 326.577614] sg_build_indirect.isra.0+0x11f/0xa00 [ 326.582463] ? debug_object_init+0x16/0x20 [ 326.586703] sg_common_write.isra.0+0xacc/0x2480 [ 326.591462] ? lockdep_hardirqs_on+0x415/0x5d0 [ 326.596057] ? sg_open+0x13a0/0x13a0 [ 326.599774] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 326.604966] ? __check_object_size+0xa3/0x790 [ 326.609459] ? lock_downgrade+0x910/0x910 [ 326.613612] ? usercopy_warn+0x110/0x110 [ 326.617691] sg_new_write.isra.0+0x700/0xa70 [ 326.622115] ? sg_common_write.isra.0+0x2480/0x2480 [ 326.627150] ? add_lock_to_list.isra.0+0x450/0x450 [ 326.632072] ? lock_downgrade+0x910/0x910 [ 326.632094] ? __might_sleep+0x95/0x190 [ 326.632113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.632129] ? scsi_block_when_processing_errors+0x2e4/0x3a0 [ 326.632144] ? scsi_ioctl_reset+0x870/0x870 [ 326.632160] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.632177] ? __fget+0x472/0x710 [ 326.632195] sg_ioctl+0x1c4c/0x2f40 [ 326.640281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.640315] ? sg_new_write.isra.0+0xa70/0xa70 [ 326.640348] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 326.640366] ? rcu_read_unlock_special+0x380/0x380 [ 326.640389] ? __fget+0x499/0x710 [ 326.692251] ? iterate_fd+0x4b0/0x4b0 [ 326.696053] ? sg_new_write.isra.0+0xa70/0xa70 [ 326.700638] do_vfs_ioctl+0x107b/0x17d0 [ 326.704611] ? wait_for_completion+0x810/0x810 [ 326.709193] ? ioctl_preallocate+0x2f0/0x2f0 [ 326.713606] ? __fget_light+0x2db/0x420 [ 326.717665] ? fget_raw+0x20/0x20 [ 326.721122] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 326.726659] ? fput+0x128/0x1a0 [ 326.729976] ? do_syscall_64+0x8c/0x800 [ 326.733951] ? do_syscall_64+0x8c/0x800 [ 326.737929] ? lockdep_hardirqs_on+0x415/0x5d0 [ 326.742517] ? security_file_ioctl+0x93/0xc0 [ 326.746933] ksys_ioctl+0xab/0xd0 [ 326.750388] __x64_sys_ioctl+0x73/0xb0 [ 326.754283] do_syscall_64+0x1a3/0x800 [ 326.758178] ? syscall_return_slowpath+0x5f0/0x5f0 [ 326.763112] ? prepare_exit_to_usermode+0x232/0x3b0 [ 326.768133] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 326.772981] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.778171] RIP: 0033:0x457e39 [ 326.781358] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 326.800253] RSP: 002b:00007fc5bc58fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 326.807960] RAX: ffffffffffffffda RBX: 00007fc5bc58fc90 RCX: 0000000000457e39 [ 326.815262] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000004 [ 326.822527] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 326.829796] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5bc5906d4 15:17:27 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0xffffffff000, 0x3) [ 326.837061] R13: 00000000004c1a46 R14: 00000000004d3a10 R15: 0000000000000005 15:17:28 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x7e8a00) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x0, 0x1f004, 0x7, 0x4c40, 0x9, 0x7f, 0x0, 0x9, 0x100, 0xfffffffffffffff7, 0x3, 0x2}, {0xd000, 0x2000, 0x0, 0x1, 0x1, 0x6, 0x800, 0x0, 0x1, 0x4, 0x2, 0xd0c}, {0x4000, 0x10000, 0x1d, 0x6, 0x3, 0x2b1e, 0x5, 0x0, 0x2, 0x8, 0x9, 0x44f8}, {0x5000, 0x0, 0x10, 0x4, 0x6, 0xff, 0x20, 0xfffffffe000000, 0x20, 0x7, 0xffe0000000000000}, {0x6000, 0x813b987ec1e6da25, 0xe, 0x0, 0x34b222f, 0x5, 0x3ff, 0x20000000, 0x8, 0x3, 0x4, 0x8}, {0x16000, 0xd000, 0x4, 0x2, 0x6, 0x4, 0xffffffffffff9756, 0x6, 0x400, 0x4, 0x5, 0x9}, {0x6000, 0x6000, 0x10, 0x101, 0x3, 0x9bfe, 0x1, 0x0, 0x8026, 0x80000000, 0x2, 0xf7}, {0x4000, 0x1000, 0xa, 0x80, 0x3, 0x918, 0x0, 0x5, 0xf49, 0x101, 0x0, 0x7}, {0x2000, 0x3000}, {0xf000, 0x6000}, 0xc0010001, 0x0, 0x100000, 0x40122, 0x6, 0x2500, 0x4000, [0xffffffffffffffc0, 0x5, 0x6, 0x9]}) 15:17:28 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x13, r0, 0x0, 0x0) 15:17:28 executing program 2 (fault-call:3 fault-nth:1): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:28 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29010, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:28 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x7c8a000000000000, 0x3) [ 326.986508] FAULT_INJECTION: forcing a failure. [ 326.986508] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 327.036310] CPU: 1 PID: 16625 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #54 [ 327.043529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.052888] Call Trace: [ 327.055493] dump_stack+0x1db/0x2d0 [ 327.059131] ? dump_stack_print_info.cold+0x20/0x20 [ 327.064171] should_fail.cold+0xa/0x15 [ 327.068083] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 327.073194] ? sg_build_indirect.isra.0+0x11f/0xa00 [ 327.078219] ? sg_common_write.isra.0+0xacc/0x2480 [ 327.083158] ? sg_new_write.isra.0+0x700/0xa70 [ 327.087746] ? do_vfs_ioctl+0x107b/0x17d0 [ 327.091910] ? __x64_sys_ioctl+0x73/0xb0 [ 327.095972] ? do_syscall_64+0x1a3/0x800 [ 327.100027] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 327.105392] ? sg_common_write.isra.0+0xa07/0x2480 [ 327.110318] ? print_usage_bug+0xd0/0xd0 [ 327.114803] ? __mutex_lock+0x622/0x1670 [ 327.118916] should_fail_alloc_page+0x50/0x60 [ 327.123412] __alloc_pages_nodemask+0x323/0xdc0 [ 327.128075] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.133602] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.139131] ? __alloc_pages_slowpath+0x2cc0/0x2cc0 [ 327.144158] ? rcu_read_lock_sched_held+0x110/0x130 [ 327.149167] ? __kmalloc+0x5d5/0x740 [ 327.152868] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 327.158433] alloc_pages_current+0x107/0x210 [ 327.162839] sg_build_indirect.isra.0+0x3cd/0xa00 [ 327.167685] sg_common_write.isra.0+0xacc/0x2480 [ 327.172429] ? lockdep_hardirqs_on+0x415/0x5d0 [ 327.177011] ? sg_open+0x13a0/0x13a0 [ 327.180718] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 327.185901] ? __check_object_size+0xa3/0x790 [ 327.190393] ? lock_downgrade+0x910/0x910 [ 327.194529] ? usercopy_warn+0x110/0x110 [ 327.198597] sg_new_write.isra.0+0x700/0xa70 [ 327.203005] ? sg_common_write.isra.0+0x2480/0x2480 [ 327.208013] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.213560] ? check_preemption_disabled+0x48/0x290 [ 327.218574] ? __might_sleep+0x95/0x190 [ 327.222535] ? perf_trace_lock_acquire+0x138/0x7d0 [ 327.227455] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.232980] ? scsi_block_when_processing_errors+0x2e4/0x3a0 [ 327.238767] ? scsi_ioctl_reset+0x870/0x870 [ 327.243074] ? perf_trace_lock+0x750/0x750 [ 327.247300] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.252832] ? __fget+0x472/0x710 [ 327.256281] sg_ioctl+0x1c4c/0x2f40 [ 327.259901] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.265435] ? sg_new_write.isra.0+0xa70/0xa70 [ 327.270010] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 327.275279] ? rcu_read_unlock_special+0x380/0x380 [ 327.280210] ? __fget+0x499/0x710 [ 327.283661] ? iterate_fd+0x4b0/0x4b0 [ 327.287460] ? sg_new_write.isra.0+0xa70/0xa70 [ 327.292035] do_vfs_ioctl+0x107b/0x17d0 [ 327.295998] ? wait_for_completion+0x810/0x810 [ 327.300585] ? ioctl_preallocate+0x2f0/0x2f0 [ 327.304984] ? __fget_light+0x2db/0x420 [ 327.308951] ? fget_raw+0x20/0x20 [ 327.312400] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 327.317927] ? fput+0x128/0x1a0 [ 327.321217] ? do_syscall_64+0x8c/0x800 [ 327.325181] ? do_syscall_64+0x8c/0x800 [ 327.329143] ? lockdep_hardirqs_on+0x415/0x5d0 [ 327.333721] ? security_file_ioctl+0x93/0xc0 [ 327.338125] ksys_ioctl+0xab/0xd0 [ 327.341574] __x64_sys_ioctl+0x73/0xb0 [ 327.345453] do_syscall_64+0x1a3/0x800 [ 327.349335] ? syscall_return_slowpath+0x5f0/0x5f0 [ 327.354275] ? prepare_exit_to_usermode+0x232/0x3b0 [ 327.359289] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.364131] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 327.369305] RIP: 0033:0x457e39 15:17:28 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x14, r0, 0x0, 0x0) 15:17:28 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29029, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:28 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video1\x00', 0x2, 0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x80000, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r3, 0x5387, &(0x7f0000000300)) r4 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x8, 0x400) ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0x3ff) ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000140)={0x0, @pix={0x4, 0x2, 0x7432767e, 0x0, 0x547b, 0x3, 0xb, 0x4, 0x1, 0x0, 0x0, 0x7}}) ioctl$VIDIOC_STREAMOFF(r2, 0x40045613, &(0x7f0000000340)=0x2) write$P9_RLERRORu(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="ff8d751f8de426cace23a58a18a6d1d3ca1d0ce516311ace4906e3e3f3c9eeedc1da4fc64c3114b7c1614bd110ac639f8c9d0544bef07d73615d7b1ece887dd6a75107f9f51004d8f73283e6671b622af47dfa9c8e128b58c27b02c651d45cb56eb02238ce516e4c932eda27aa4192f8e24e583b3bb4e6432709262d8b8b3689acaae235d7aa9b6ad2a9"], 0x2) [ 327.372489] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 327.391464] RSP: 002b:00007fc5bc58fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 327.399161] RAX: ffffffffffffffda RBX: 00007fc5bc58fc90 RCX: 0000000000457e39 [ 327.406416] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000004 [ 327.413676] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 327.420942] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5bc5906d4 [ 327.428196] R13: 00000000004c1a46 R14: 00000000004d3a10 R15: 0000000000000005 15:17:28 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0xf0ffffff0f0000, 0x3) 15:17:28 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xacc2) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="1ea376ec23b6fde2b2dfce6a104675d5dc6a04a30f79cbbcf221f8547ef388799e5d059cf0aa2b00298564af031cc2718b4b9401000000906f061f48d2d548ec28085ef08fbad6d2f15f8a1f86812a5a0f4ccaa3d2b0c0368a075cffa69388c97afe03fdfd1aa565b8a40bc154e3f58cd3e6aa51d92b6c1d5e1d77349d7de0d43740d0a2122a8edd01676483913d81a645cc68fb1b02007c939c2db73af1043f7da2e079effe5812312aa6fef657bb67172840e4dd8ba92e585535d793c8039fac4bda004646a255f8f59e9e9755a07d891b74c03434a7ff1286c726191ee6f3356335fcd8a394"], 0x2) ioctl$SIOCGETLINKNAME(r1, 0x89e0, &(0x7f0000000080)) 15:17:28 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x15, r0, 0x0, 0x0) 15:17:28 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0xffffffff00000000, 0x3) 15:17:28 executing program 2 (fault-call:3 fault-nth:2): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:28 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="4109d46f49aa8ceb5edf2ca547ec36429ec89421c057e229793e10b012f9eefac940223c4f0cf7f29afcc41354e5d1c3ba63758998d16bbf06b2a2cc666669721fda157e11077af3a5a8c5472c175d85d9621cabdc187beb830fff3d0996988f9a323c82fb969820ffc5cc23e1d70736c656f60cde436ae53016727d51eec28d16289387e81a03fb81e7dc5163ebaae4bfccb649da94d6db8bd84eb6234007690e340abfae34e696ddcd1f3a785ad37a97759ad6"], 0x2) 15:17:28 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29030, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:29 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x16, r0, 0x0, 0x0) [ 327.664701] FAULT_INJECTION: forcing a failure. [ 327.664701] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 327.711249] CPU: 0 PID: 16660 Comm: syz-executor2 Not tainted 5.0.0-rc4+ #54 [ 327.718459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.727817] Call Trace: [ 327.730413] dump_stack+0x1db/0x2d0 [ 327.734054] ? dump_stack_print_info.cold+0x20/0x20 [ 327.739096] should_fail.cold+0xa/0x15 [ 327.742992] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 327.748102] ? check_preemption_disabled+0x48/0x290 [ 327.753132] ? __lock_is_held+0xb6/0x140 [ 327.757209] should_fail_alloc_page+0x50/0x60 [ 327.761713] __alloc_pages_nodemask+0x323/0xdc0 [ 327.766384] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.771920] ? __alloc_pages_slowpath+0x2cc0/0x2cc0 [ 327.776954] ? rcu_read_lock_sched_held+0x110/0x130 [ 327.781984] ? __kmalloc+0x5d5/0x740 [ 327.785688] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 327.791218] alloc_pages_current+0x107/0x210 [ 327.795625] sg_build_indirect.isra.0+0x3cd/0xa00 [ 327.800468] sg_common_write.isra.0+0xacc/0x2480 [ 327.805214] ? lockdep_hardirqs_on+0x415/0x5d0 [ 327.809800] ? sg_open+0x13a0/0x13a0 [ 327.813508] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 327.818688] ? __check_object_size+0xa3/0x790 [ 327.823173] ? lock_downgrade+0x910/0x910 [ 327.827314] ? usercopy_warn+0x110/0x110 [ 327.831398] sg_new_write.isra.0+0x700/0xa70 [ 327.835806] ? sg_common_write.isra.0+0x2480/0x2480 [ 327.840813] ? add_lock_to_list.isra.0+0x450/0x450 [ 327.845733] ? lock_downgrade+0x910/0x910 [ 327.849877] ? __might_sleep+0x95/0x190 [ 327.853847] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.859375] ? scsi_block_when_processing_errors+0x2e4/0x3a0 [ 327.865165] ? scsi_ioctl_reset+0x870/0x870 [ 327.869481] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.875014] ? __fget+0x472/0x710 [ 327.878463] sg_ioctl+0x1c4c/0x2f40 [ 327.882085] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.887619] ? sg_new_write.isra.0+0xa70/0xa70 [ 327.892192] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 327.897480] ? rcu_read_unlock_special+0x380/0x380 [ 327.902413] ? __fget+0x499/0x710 [ 327.905873] ? iterate_fd+0x4b0/0x4b0 [ 327.909682] ? sg_new_write.isra.0+0xa70/0xa70 [ 327.914255] do_vfs_ioctl+0x107b/0x17d0 [ 327.918222] ? wait_for_completion+0x810/0x810 [ 327.922795] ? ioctl_preallocate+0x2f0/0x2f0 [ 327.927198] ? __fget_light+0x2db/0x420 [ 327.931166] ? fget_raw+0x20/0x20 [ 327.934610] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 327.940134] ? fput+0x128/0x1a0 [ 327.943404] ? do_syscall_64+0x8c/0x800 [ 327.947370] ? do_syscall_64+0x8c/0x800 [ 327.951341] ? lockdep_hardirqs_on+0x415/0x5d0 [ 327.955918] ? security_file_ioctl+0x93/0xc0 [ 327.960330] ksys_ioctl+0xab/0xd0 [ 327.963776] __x64_sys_ioctl+0x73/0xb0 [ 327.967658] do_syscall_64+0x1a3/0x800 [ 327.971542] ? syscall_return_slowpath+0x5f0/0x5f0 [ 327.976992] ? prepare_exit_to_usermode+0x232/0x3b0 [ 327.982002] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.986841] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 327.992020] RIP: 0033:0x457e39 15:17:29 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x100000000000000, 0x3) 15:17:29 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x101840, 0x10) write$P9_RLOPEN(r2, &(0x7f0000000100)={0x18, 0xd, 0x1, {{0x0, 0x1, 0x7}}}, 0x18) [ 327.995201] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 328.014087] RSP: 002b:00007fc5bc58fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 328.021786] RAX: ffffffffffffffda RBX: 00007fc5bc58fc90 RCX: 0000000000457e39 [ 328.029045] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000004 [ 328.036314] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 328.043570] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5bc5906d4 [ 328.050830] R13: 00000000004c1a46 R14: 00000000004d3a10 R15: 0000000000000005 15:17:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x290d4, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:29 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x17, r0, 0x0, 0x0) [ 328.117694] kasan: CONFIG_KASAN_INLINE enabled [ 328.137854] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 328.181877] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 328.188138] CPU: 0 PID: 16674 Comm: syz-executor4 Not tainted 5.0.0-rc4+ #54 [ 328.195325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.204686] RIP: 0010:kernfs_add_one+0x343/0x4d0 [ 328.209439] Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 52 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 70 48 8d 7b 08 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 1f 01 00 00 8b 5b 08 31 ff 83 [ 328.228343] RSP: 0018:ffff888059c1f670 EFLAGS: 00010202 [ 328.233709] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000e66f000 [ 328.240973] RDX: 0000000000000001 RSI: ffffffff81fbc87b RDI: 0000000000000008 [ 328.248239] RBP: ffff888059c1f6b0 R08: 1ffffffff13511e0 R09: fffffbfff13511e1 [ 328.255507] R10: fffffbfff13511e0 R11: ffffffff89a88f07 R12: ffff8880a4e5bc40 [ 328.262771] R13: ffff8880a4e5bc40 R14: 0000000000000000 R15: 0000000000000000 [ 328.270038] FS: 00007fa8a6f54700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 328.278258] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 328.284144] CR2: 00007f5589dc8d90 CR3: 000000008ff13000 CR4: 00000000001406f0 [ 328.291415] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 328.298684] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 328.305950] Call Trace: [ 328.308566] kernfs_create_dir_ns+0xff/0x160 [ 328.312983] sysfs_create_dir_ns+0x192/0x340 [ 328.317399] ? sysfs_create_mount_point+0xa0/0xa0 [ 328.322245] ? do_raw_spin_trylock+0x270/0x270 [ 328.326865] ? class_dir_child_ns_type+0xd/0x60 15:17:29 executing program 2 (fault-call:3 fault-nth:3): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 328.331543] kobject_add_internal.cold+0x129/0x6d8 [ 328.336478] ? kobj_ns_type_registered+0x60/0x60 [ 328.338946] kobject: 'loop2' (00000000de0b7297): kobject_uevent_env [ 328.341235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.341254] ? wait_for_completion+0x810/0x810 [ 328.341287] kobject_add+0x150/0x1c0 [ 328.341303] ? kset_create_and_add+0x1a0/0x1a0 [ 328.341324] ? mutex_unlock+0xd/0x10 [ 328.341343] device_add+0x3d9/0x1800 [ 328.355472] kobject: 'loop2' (00000000de0b7297): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 328.357848] ? get_device_parent.isra.0+0x570/0x570 [ 328.387928] ? _raw_spin_unlock+0x2d/0x50 [ 328.392089] hci_register_dev+0x3b9/0x9d0 [ 328.396243] ? kfree_skb+0x1a6/0x580 [ 328.399980] ? hci_conn_params_free+0x840/0x840 [ 328.404665] __vhci_create_device+0x2d0/0x5a0 [ 328.409170] vhci_write+0x2d0/0x470 [ 328.412803] __vfs_write+0x764/0xb40 [ 328.416522] ? kernel_read+0x120/0x120 [ 328.420411] ? trace_hardirqs_off_caller+0x300/0x300 [ 328.425524] ? apparmor_file_permission+0x25/0x30 [ 328.430377] ? rw_verify_area+0x118/0x360 [ 328.434531] vfs_write+0x20c/0x580 [ 328.438075] ksys_write+0x105/0x260 [ 328.441707] ? __ia32_sys_read+0xb0/0xb0 [ 328.445773] ? trace_hardirqs_off_caller+0x300/0x300 [ 328.450879] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 328.455644] __x64_sys_write+0x73/0xb0 [ 328.459535] do_syscall_64+0x1a3/0x800 [ 328.463433] ? syscall_return_slowpath+0x5f0/0x5f0 [ 328.468366] ? prepare_exit_to_usermode+0x232/0x3b0 [ 328.473393] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.478247] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.483443] RIP: 0033:0x457e39 [ 328.486638] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 328.505542] RSP: 002b:00007fa8a6f53c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 328.513246] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457e39 [ 328.520521] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000008 15:17:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffff, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:29 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x18, r0, 0x0, 0x0) [ 328.527791] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 328.535055] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa8a6f546d4 [ 328.542409] R13: 00000000004c6e18 R14: 00000000004dc5a8 R15: 00000000ffffffff [ 328.549693] Modules linked in: [ 328.561485] kobject: 'loop1' (00000000863fc7e0): kobject_uevent_env [ 328.583365] kobject: 'loop1' (00000000863fc7e0): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 328.598484] kobject: 'loop5' (00000000a96b729b): kobject_uevent_env [ 328.608813] kobject: 'loop5' (00000000a96b729b): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 328.626644] kobject: 'loop1' (00000000863fc7e0): kobject_uevent_env [ 328.633291] FAULT_INJECTION: forcing a failure. [ 328.633291] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 328.637037] kobject: 'loop1' (00000000863fc7e0): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 328.645121] CPU: 0 PID: 16695 Comm: syz-executor2 Tainted: G D 5.0.0-rc4+ #54 [ 328.645131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.645137] Call Trace: [ 328.645159] dump_stack+0x1db/0x2d0 [ 328.645179] ? dump_stack_print_info.cold+0x20/0x20 [ 328.645206] should_fail.cold+0xa/0x15 [ 328.645226] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 328.692652] ? sg_build_indirect.isra.0+0x11f/0xa00 [ 328.697656] ? sg_common_write.isra.0+0xacc/0x2480 [ 328.702572] ? sg_new_write.isra.0+0x700/0xa70 [ 328.707146] ? do_vfs_ioctl+0x107b/0x17d0 [ 328.711280] ? __x64_sys_ioctl+0x73/0xb0 [ 328.715350] ? do_syscall_64+0x1a3/0x800 [ 328.720364] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.725720] ? __mutex_lock+0x622/0x1670 [ 328.729774] should_fail_alloc_page+0x50/0x60 [ 328.734264] __alloc_pages_nodemask+0x323/0xdc0 [ 328.739013] ? __alloc_pages_slowpath+0x2cc0/0x2cc0 [ 328.744019] ? trace_hardirqs_on+0xbd/0x310 [ 328.748336] ? kasan_unpoison_shadow+0x35/0x50 [ 328.752905] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 328.757998] ? kasan_kmalloc+0x9/0x10 [ 328.761784] ? __kmalloc+0x32b/0x740 [ 328.765488] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 328.771021] alloc_pages_current+0x107/0x210 [ 328.775421] sg_build_indirect.isra.0+0x3cd/0xa00 [ 328.780272] sg_common_write.isra.0+0xacc/0x2480 [ 328.785028] ? sg_open+0x13a0/0x13a0 [ 328.788732] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 328.793912] ? __check_object_size+0xa3/0x790 [ 328.798397] ? lock_downgrade+0x910/0x910 [ 328.802533] ? usercopy_warn+0x110/0x110 [ 328.806592] sg_new_write.isra.0+0x700/0xa70 [ 328.810995] ? sg_common_write.isra.0+0x2480/0x2480 [ 328.816001] ? trace_hardirqs_off_caller+0xbb/0x300 [ 328.821008] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.825846] ? __might_sleep+0x95/0x190 [ 328.829812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.835344] ? scsi_block_when_processing_errors+0x2e4/0x3a0 [ 328.841128] ? scsi_ioctl_reset+0x870/0x870 [ 328.845437] ? native_iret+0x7/0x7 [ 328.848965] ? error_exit+0xb/0x20 [ 328.852518] sg_ioctl+0x1c4c/0x2f40 [ 328.856130] ? lock_acquire+0x1db/0x570 [ 328.860089] ? __fget+0xb8/0x710 [ 328.863445] ? sg_new_write.isra.0+0xa70/0xa70 [ 328.868012] ? lock_release+0xc40/0xc40 [ 328.871978] ? rcu_read_unlock_special+0x380/0x380 [ 328.876898] ? proc_cwd_link+0x1d0/0x1d0 [ 328.880949] ? __fget+0x499/0x710 [ 328.884393] ? iterate_fd+0x4b0/0x4b0 [ 328.888273] ? sg_new_write.isra.0+0xa70/0xa70 [ 328.892841] do_vfs_ioctl+0x107b/0x17d0 [ 328.896804] ? wait_for_completion+0x810/0x810 [ 328.901375] ? ioctl_preallocate+0x2f0/0x2f0 [ 328.905775] ? __fget_light+0x2db/0x420 [ 328.909739] ? fget_raw+0x20/0x20 [ 328.913183] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 328.918706] ? fput+0x128/0x1a0 [ 328.921975] ? ksys_write+0x1b0/0x260 [ 328.925767] ? security_file_ioctl+0x93/0xc0 [ 328.930161] ksys_ioctl+0xab/0xd0 [ 328.933683] __x64_sys_ioctl+0x73/0xb0 [ 328.937564] do_syscall_64+0x1a3/0x800 [ 328.941444] ? syscall_return_slowpath+0x5f0/0x5f0 [ 328.946361] ? prepare_exit_to_usermode+0x232/0x3b0 [ 328.951368] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.956207] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.961393] RIP: 0033:0x457e39 [ 328.964572] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 328.983910] RSP: 002b:00007fc5bc58fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 328.991606] RAX: ffffffffffffffda RBX: 00007fc5bc58fc90 RCX: 0000000000457e39 [ 328.998863] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000004 [ 329.006117] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 329.013372] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5bc5906d4 [ 329.020625] R13: 00000000004c1a46 R14: 00000000004d3a10 R15: 0000000000000005 [ 329.031652] ---[ end trace 4818f95edcaaf2ce ]--- [ 329.036501] kobject: 'loop5' (00000000a96b729b): kobject_uevent_env [ 329.036527] kobject: 'loop5' (00000000a96b729b): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 329.055103] RIP: 0010:kernfs_add_one+0x343/0x4d0 15:17:30 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r0, 0x0, 0x4) 15:17:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x7ffffffff000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) 15:17:30 executing program 5: r0 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz'}, 0x0, 0x0, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$chown(0x19, r0, 0x0, 0x0) 15:17:30 executing program 2 (fault-call:3 fault-nth:4): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39203a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 329.075332] Code: 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 52 01 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 5b 70 48 8d 7b 08 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 1f 01 00 00 8b 5b 08 31 ff 83 [ 329.116152] kobject: 'loop2' (00000000de0b7297): kobject_uevent_env [ 329.120217] RSP: 0018:ffff888059c1f670 EFLAGS: 00010202 15:17:30 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x29000, 0x0}, &(0x7f0000000580)="5f39033a1ec6", 0x0, 0x0, 0x0, 0x0, 0x0}) [ 329.122944] kobject: 'loop2' (00000000de0b7297): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 329.147497] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000e66f000 [ 329.149483] kobject: 'loop3' (00000000b14f9e07): kobject_uevent_env [ 329.171700] kobject: 'loop3' (00000000b14f9e07): fill_kobj_path: path = '/devices/virtual/block/loop3' 15:17:30 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000200)={0x5, 0x0, 0x6, 0xfb7d, 0x3, @discrete={0x4, 0x100000000}}) syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00\x00\x00\x00') fsetxattr(r0, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\x00', 0x39, 0x2) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x3}, 0xc, &(0x7f00000014c0)={&(0x7f0000000880)=ANY=[]}}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') lseek(r1, 0x3f00000000000000, 0x3) [ 329.201525] kobject: 'loop1' (00000000863fc7e0): kobject_uevent_env [ 329.205361] FAULT_INJECTION: forcing a failure. [ 329.205361] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 329.207961] kobject: 'loop1' (00000000863fc7e0): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 329.225390] CPU: 1 PID: 16710 Comm: syz-executor2 Tainted: G D 5.0.0-rc4+ #54 [ 329.237748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.238121] kobject: 'loop0' (0000000049d01564): kobject_uevent_env [ 329.247090] Call Trace: [ 329.247109] dump_stack+0x1db/0x2d0 [ 329.247125] ? dump_stack_print_info.cold+0x20/0x20 [ 329.247145] should_fail.cold+0xa/0x15 [ 329.253580] kobject: 'loop0' (0000000049d01564): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 329.256090] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 329.256106] ? sg_build_indirect.isra.0+0x11f/0xa00 [ 329.260044] kobject: 'loop5' (00000000a96b729b): kobject_uevent_env [ 329.264711] ? sg_common_write.isra.0+0xacc/0x2480 [ 329.264722] ? sg_new_write.isra.0+0x700/0xa70 [ 329.264738] ? do_vfs_ioctl+0x107b/0x17d0 [ 329.268652] RDX: 0000000000000001 RSI: ffffffff81fbc87b RDI: 0000000000000008 [ 329.278021] ? __x64_sys_ioctl+0x73/0xb0 [ 329.278035] ? do_syscall_64+0x1a3/0x800 [ 329.278049] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 329.278065] ? __mutex_lock+0x622/0x1670 [ 329.283203] kobject: 'loop5' (00000000a96b729b): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 329.288138] should_fail_alloc_page+0x50/0x60 [ 329.288153] __alloc_pages_nodemask+0x323/0xdc0 [ 329.294581] RBP: ffff888059c1f6b0 R08: 1ffffffff13511e0 R09: fffffbfff13511e1 [ 329.299447] ? __alloc_pages_slowpath+0x2cc0/0x2cc0 [ 329.299465] ? trace_hardirqs_on+0xbd/0x310 [ 329.313822] R10: fffffbfff13511e0 R11: ffffffff89a88f07 R12: ffff8880a4e5bc40 [ 329.315404] ? kasan_unpoison_shadow+0x35/0x50 [ 329.315421] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 329.331097] R13: ffff8880a4e5bc40 R14: 0000000000000000 R15: 0000000000000000 [ 329.332964] ? kasan_kmalloc+0x9/0x10 [ 329.332978] ? __kmalloc+0x32b/0x740 [ 329.344615] FS: 00007fa8a6f54700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 329.346877] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 329.346893] alloc_pages_current+0x107/0x210 [ 329.346910] sg_build_indirect.isra.0+0x3cd/0xa00 [ 329.358088] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 329.358811] sg_common_write.isra.0+0xacc/0x2480 [ 329.370338] CR2: 0000000000a4fd98 CR3: 000000008ff13000 CR4: 00000000001406f0 [ 329.375353] ? sg_open+0x13a0/0x13a0 [ 329.375366] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 329.375380] ? __check_object_size+0xa3/0x790 [ 329.391115] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 329.392272] ? lock_downgrade+0x910/0x910 [ 329.392284] ? usercopy_warn+0x110/0x110 [ 329.392305] sg_new_write.isra.0+0x700/0xa70 [ 329.396110] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 329.399770] ? sg_common_write.isra.0+0x2480/0x2480 [ 329.399781] ? _parse_integer+0x190/0x190 [ 329.399795] ? lock_downgrade+0x910/0x910 [ 329.418850] Kernel panic - not syncing: Fatal exception [ 329.422739] ? __might_sleep+0x95/0x190 [ 329.503653] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 329.509186] ? scsi_block_when_processing_errors+0x2e4/0x3a0 [ 329.514974] ? scsi_ioctl_reset+0x870/0x870 [ 329.519280] ? lock_acquire+0x1db/0x570 [ 329.523256] ? __task_pid_nr_ns+0x630/0x630 [ 329.527580] ? lock_downgrade+0x910/0x910 [ 329.531715] sg_ioctl+0x1c4c/0x2f40 [ 329.535340] ? lock_acquire+0x1db/0x570 [ 329.539308] ? __fget+0xb8/0x710 [ 329.542667] ? sg_new_write.isra.0+0xa70/0xa70 [ 329.547238] ? lock_release+0xc40/0xc40 [ 329.551205] ? rcu_read_unlock_special+0x380/0x380 [ 329.556122] ? proc_cwd_link+0x1d0/0x1d0 [ 329.560180] ? __fget+0x499/0x710 [ 329.563622] ? iterate_fd+0x4b0/0x4b0 [ 329.567511] ? sg_new_write.isra.0+0xa70/0xa70 [ 329.572080] do_vfs_ioctl+0x107b/0x17d0 [ 329.576047] ? wait_for_completion+0x810/0x810 [ 329.580617] ? ioctl_preallocate+0x2f0/0x2f0 [ 329.585026] ? __fget_light+0x2db/0x420 [ 329.588998] ? fget_raw+0x20/0x20 [ 329.592441] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 329.597964] ? fput+0x128/0x1a0 [ 329.601236] ? ksys_write+0x1b0/0x260 [ 329.605029] ? security_file_ioctl+0x93/0xc0 [ 329.609434] ksys_ioctl+0xab/0xd0 [ 329.612876] __x64_sys_ioctl+0x73/0xb0 [ 329.616754] do_syscall_64+0x1a3/0x800 [ 329.620633] ? syscall_return_slowpath+0x5f0/0x5f0 [ 329.625553] ? prepare_exit_to_usermode+0x232/0x3b0 [ 329.630558] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.635394] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 329.640566] RIP: 0033:0x457e39 [ 329.643745] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 329.662633] RSP: 002b:00007fc5bc58fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 329.670332] RAX: ffffffffffffffda RBX: 00007fc5bc58fc90 RCX: 0000000000457e39 [ 329.677584] RDX: 00000000200003c0 RSI: 0000000000002285 RDI: 0000000000000004 [ 329.684856] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 329.692113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc5bc5906d4 [ 329.699370] R13: 00000000004c1a46 R14: 00000000004d3a10 R15: 0000000000000005 [ 329.707591] Kernel Offset: disabled [ 329.711204] Rebooting in 86400 seconds..