00000000000000000000000001000000ffffffff00000000"]}, 0x220) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000000040)) 09:38:33 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") socketpair(0x11, 0x6, 0x55e, &(0x7f0000000000)) syz_mount_image$bfs(&(0x7f00000000c0)='bfs.', &(0x7f0000000040)='./file0\x00', 0x0, 0x360, 0x0, 0x0, 0x0) 09:38:34 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000000)) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7118000000000000000f0000ff3bc477000025cdb8b960b17495908c89f99a8c079d0000000000000000000000e6"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) socket$inet6_tcp(0xa, 0x1, 0x0) ptrace$cont(0x14, r0, 0xfffffffffffffffe, 0x0) 09:38:34 executing program 5 (fault-call:5 fault-nth:9): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:34 executing program 3: creat(&(0x7f0000000080)='./file0\x00', 0x0) clone(0x3102001ff5, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/fib_trie\x00') read(r0, &(0x7f0000000040)=""/230, 0x20000126) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='\x13\x00\x82\x0f\xfc\x01f\x810\x85\x05\xb3\xc8\xc0U\xd9\xb6ri\xcf>\x9c\xbe\x19\xf9\xeb\xd0\x7f3\x98\xc0\xc8K9!wy\xdaU9@B\x02\x0f\x8a\xc5%\xf9\xc5#\x8b&=\x1c\xa6\xe3AD\xb8\xe7\xfe*\xf18v\x02\x15\x1e\x85\x85J\xfa\x84H\x92\x85\x13Q\x91\t\x00'/90, 0x0, &(0x7f00000001c0)='tmpfs\x00') 09:38:34 executing program 2: r0 = socket(0xa, 0x5, 0x0) ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000040)={'bcsf0\x00', {0x2, 0x4e22, @local}}) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x200, 0x0) write$P9_RLERROR(r1, &(0x7f0000000380)={0x19, 0x7, 0x1, {0x10, 'sit0\x00\x00\x80\x00\x00\x00\x01\xe4\x00\x00\x00\x02'}}, 0x19) ioctl$sock_ifreq(r0, 0x89fa, &(0x7f0000000000)={'sit0\x00\x00\x80\x00\x00\x00\x01\xe4\x00\x00\x00\x02', @ifru_ivalue=0x907000}) getsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000180), &(0x7f00000001c0)=0x4) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000400)='TIPC\x00') sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x28, r2, 0x102, 0x70bd27, 0x25dfdbfc, {{}, 0x0, 0x410c, 0x0, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4040050}, 0x40) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff7000/0x7000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000000080)="8a8ee2ea1627c1afcb4249bd33f4a3081b9b6180c30d769e08080cc2af13614234813faa995f3e1f2f036b70f70f78bee5334768246d83bc0461891ce356efb6a1b524d1d30e7f95dc25a4196824a1db1e3a70b9eb883fcab1e2021ee67eb8528dd941579620f40b297b28a3b9c9957421d97e3dd614953e1d1a47fccd90d0", 0x7f, r0}, 0x68) 09:38:34 executing program 0: r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x4, 0x20000) ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000100)={0x2, 0x6, 0x7, 0x9, 0x7, 0x100000000}) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) r1 = fcntl$getown(0xffffffffffffff9c, 0x9) r2 = syz_open_procfs(r1, &(0x7f0000000080)='cpuset\x00') r3 = socket$inet(0x2, 0x4000000000000001, 0x0) writev(r3, &(0x7f0000000000)=[{&(0x7f00000000c0)="a4", 0x1}], 0x1000000000000052) read(r2, 0x0, 0x0) 09:38:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x10002, 0x0) bind$isdn_base(r1, &(0x7f0000000040)={0x22, 0x3, 0x7fffffff, 0x80000000, 0x4}, 0x6) ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000080)=""/158) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000800)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="15080000000000000000010000000000000007410000004c00ffff0000006962000000000000000000000000000000000000000000000000000000000800"/98], 0x68}}, 0x0) [ 1133.595961] FAULT_INJECTION: forcing a failure. [ 1133.595961] name failslab, interval 1, probability 0, space 0, times 0 [ 1133.617733] CPU: 0 PID: 3303 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1133.624729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1133.634107] Call Trace: [ 1133.636729] dump_stack+0x138/0x19c [ 1133.640403] should_fail.cold+0x10f/0x159 [ 1133.644583] should_failslab+0xdb/0x130 [ 1133.648578] kmem_cache_alloc+0x2d9/0x780 [ 1133.652752] mmu_topup_memory_caches+0x86/0x320 [ 1133.657438] kvm_mmu_load+0x21/0xd50 [ 1133.661161] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1133.666115] vcpu_enter_guest+0x2ea0/0x5270 [ 1133.670448] ? save_trace+0x290/0x290 [ 1133.675736] ? lock_downgrade+0x6e0/0x6e0 [ 1133.679890] ? find_held_lock+0x100/0x130 [ 1133.684043] ? emulator_read_emulated+0x50/0x50 [ 1133.684056] ? lock_acquire+0x16f/0x430 09:38:34 executing program 1: sendmmsg(0xffffffffffffffff, &(0x7f0000004ac0)=[{{0x0, 0x0, &(0x7f00000052c0)=[{&(0x7f0000001f80)="40b6df0436eb6f67273407d815827e5567e0f0d44f482682f559b75109e1f0dcb64eb81564f58db3a0ea3aa9f361fb0941cccd9e99ff9d275b6b1f7f0f300d7363f1ae125569f7f158b3e9915eb8c5d35c67b073cba8a8ac6bacadd579f59d6908bb5ad63ba296527807b3749785a9258c6bdb0dc8bd46eafa36aae29a9a93", 0x7f}], 0x1}}], 0x1, 0x0) setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000002000)="24b38b20d0ef3254115223ef6cf758327575c041e002a8089496079b1b45009349041eca724fdec73fab9b04e4a4a5af1d03000000000000007faa62b9c0d263274f4a010c4f93ef85516b042511f32764171ba9bd278cbe360c22f184073fe215dee02fe37161246323ee9c82c790add905b90a64adab9fef855d72abb637d460fc6fb5a9eec5535b119c9dfbde3f76323a5af634e4235a33d57e226460104ca0dedf1f0e8365cd43d106c41d009976034d6557bf8917cad630598f6e58fd1770012d78aabb64ffffffed008d464caeedf840d001fe92b08c3f7b8e1596417d7dcd645413be450000000000000001c122283846253398a04d99ca8680deb20632834bc027c44d4cf3fd102724d6748de61eebb06801048dea7636f3a248a9bf3123882ca9fc66b4e70b06d43045", 0x12e) setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000002000)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0xfffffffffffffffd, @ipv4={[], [], @dev}}}, 0x5c) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000002000)={0x0, 0x0, 0xd}, 0xfffffffffffffff7) getgroups(0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xee01]) r1 = getuid() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@loopback, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@multicast1}}, &(0x7f00000002c0)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@loopback}}, &(0x7f0000000400)=0xe8) lstat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x10000, &(0x7f00000005c0)={'trans=unix,', {[{@loose='loose'}, {@msize={'msize', 0x3d, 0x10001}}, {@dfltgid={'dfltgid', 0x3d, r0}}, {@cache_none='cache=none'}, {@loose='loose'}, {@access_user='access=user'}], [{@uid_gt={'uid>', r1}}, {@audit='audit'}, {@uid_eq={'uid', 0x3d, r2}}, {@uid_gt={'uid>', r3}}, {@euid_gt={'euid>', r4}}, {@euid_eq={'euid', 0x3d, r5}}]}}) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r6, 0x29, 0xd0, &(0x7f0000000000)=0x4, 0x4) r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/commit_pending_bools\x00', 0x1, 0x0) connect$caif(r7, &(0x7f0000000080)=@dgm={0x25, 0x2, 0x3}, 0x18) 09:38:34 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000000200100000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='rpc_pipefs\x00', 0x0, 0x0) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000014c0)='/proc/capi/capi20ncci\x00', 0x1, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000001500)={'raw\x00', 0x17b, "9186f7400ce7d6c836a1cf9f8105e88d09c7cea65479dc56a7bc9f2b5eb10b4ec2d9776cb0e945"}, &(0x7f0000001580)=0x4b) 09:38:34 executing program 4: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vfio/vfio\x00', 0x40000, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x80000000, 0x8401) r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180)='NET_DM\x00') sendmsg$NET_DM_CMD_START(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2b100203}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r3, 0x400, 0x70bd25, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x880) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x1e) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7118000000000000000f0000ff3bc477000025cdb8b960b17495908c89f99a8c079d0000000000000000000000e6"], 0x39) r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x101040, 0x0) ioctl$VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000040)={0x6000000, 0xb, 0x3}) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$cont(0x7, r1, 0x0, 0x0) 09:38:34 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) read$FUSE(r0, &(0x7f0000000a80), 0x1000) bind$rds(r0, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000000a40)={&(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000980)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000000780)=[{0x0}], 0x1}}], 0x48}, 0x0) [ 1133.684068] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1133.692802] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1133.692812] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1133.692829] kvm_vcpu_ioctl+0x401/0xd10 [ 1133.692840] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1133.692851] ? trace_hardirqs_on+0x10/0x10 [ 1133.692864] ? __f_unlock_pos+0x19/0x20 [ 1133.692876] ? save_trace+0x290/0x290 [ 1133.692885] ? __f_unlock_pos+0x19/0x20 [ 1133.692897] ? __fget+0x210/0x370 [ 1133.692906] ? find_held_lock+0x35/0x130 [ 1133.692915] ? __fget+0x210/0x370 [ 1133.692926] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1133.692936] do_vfs_ioctl+0x7b9/0x1070 [ 1133.692947] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1133.692955] ? lock_downgrade+0x6e0/0x6e0 [ 1133.692964] ? ioctl_preallocate+0x1c0/0x1c0 [ 1133.692975] ? __fget+0x237/0x370 [ 1133.707900] ? security_file_ioctl+0x8f/0xc0 [ 1133.707916] SyS_ioctl+0x8f/0xc0 [ 1133.707926] ? do_vfs_ioctl+0x1070/0x1070 [ 1133.720276] do_syscall_64+0x1eb/0x630 [ 1133.720288] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1133.720306] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:38:34 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = socket(0x10, 0x2, 0x0) syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c41f) open(&(0x7f0000000e00)='./file1\x00', 0x0, 0x0) mount(&(0x7f0000000280)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountstats\x00') perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(r0, r1, 0x0, 0x80000008000000b) 09:38:34 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000080)={{0x3}}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x80605414, 0x0) [ 1133.720313] RIP: 0033:0x458c29 [ 1133.720318] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1133.720329] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1133.720335] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1133.720341] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1133.720346] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1133.720351] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:34 executing program 5 (fault-call:5 fault-nth:10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:34 executing program 3: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x208002, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x80000, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r1, 0xc034564b, &(0x7f0000000080)={0x80, 0x32435750, 0x100000001, 0x7f, 0x0, @stepwise={{0x1, 0x800}, {0x1000, 0x680}, {0x3ff, 0x9}}}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x3, r1, 0x1}) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x20000, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000140)=""/168) ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000200)) prctl$PR_GET_NAME(0x10, &(0x7f0000000240)=""/194) ioctl$VT_ACTIVATE(r1, 0x5606, 0x6) ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000340)) fcntl$setsig(r3, 0xa, 0x4) getrusage(0xffffffffffffffff, &(0x7f0000000380)) r4 = signalfd(r2, &(0x7f0000000440)={0x5}, 0x8) ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000480)={0x1, 0x0, {0x70, 0x8000, 0x1f, 0x9}}) ioctl$SIOCRSSL2CALL(r3, 0x89e2, &(0x7f00000004c0)=@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000500)={0x0, 0x7fff, 0x31, 0x7, 0x400, 0x6}, &(0x7f0000000540)=0x14) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000580)={r5, @in={{0x2, 0x4e23, @broadcast}}, 0x2, 0x4, 0x7ff, 0x10000, 0x2}, 0x98) sendfile(r2, r0, &(0x7f0000000640)=0x2b, 0x6) ioctl$sock_rose_SIOCRSCLRRT(r1, 0x89e4) socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000680)={r5, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xe}}}, [0x100000000, 0x2, 0xe7, 0x4, 0x4, 0x9e, 0x2, 0x8, 0xff, 0x80000001, 0x10001, 0x3, 0x2, 0x2, 0xfff]}, &(0x7f0000000780)=0x100) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000008c0)={&(0x7f00000007c0)=[0x0], &(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000880)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x7, 0x6, 0x5}) r6 = accept4$rose(r1, &(0x7f0000000900)=@full={0xb, @remote, @remote, 0x0, [@netrom, @null, @netrom, @rose, @bcast, @default]}, &(0x7f0000000940)=0x40, 0x800) sendfile(r3, r3, &(0x7f0000000980), 0x81) ioctl$TIOCSBRK(r1, 0x5427) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f00000009c0)=[@in6={0xa, 0x4e23, 0x5, @mcast2}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xe}}, @in6={0xa, 0x4e24, 0xfa, @mcast2, 0xaf}, @in={0x2, 0x4e23}, @in6={0xa, 0x4e22, 0x7b2, @dev={0xfe, 0x80, [], 0x12}, 0xfffffffffffffc01}, @in={0x2, 0x4e21, @remote}], 0x84) fcntl$notify(r0, 0x402, 0x80000009) write$tun(r3, &(0x7f0000000a80)={@val={0x0, 0x6805}, @void, @ipv4={{0x2e, 0x4, 0x8, 0xea, 0xf2, 0x68, 0x1, 0x7, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x29}, {[@ra={0x94, 0x6, 0x1}, @generic={0x88, 0x10, "d4892d240f11273b755de76665da"}, @cipso={0x86, 0x76, 0x0, [{0x2, 0x6, "7e3cc762"}, {0x7, 0x5, "d796eb"}, {0x5, 0xe, "7be26608bba27db4b381ab78"}, {0x7, 0x10, "c1ae4ab2d5dc0ebbefbfbfe4cec7"}, {0x6, 0x3, '~'}, {0x7, 0x11, "38e7eea563405c9687e01efffc0d95"}, {0x1, 0x11, "f228c6fc0cfceecf704ee2bf9e964f"}, {0x6, 0xe, "2c06aeb87193a1fd7c79baa8"}, {0x0, 0x2}, {0x7, 0x12, "a2d1a156ead43ed10d8605aa085f5a6e"}]}, @timestamp={0x44, 0x14, 0x200, 0x1, 0x7fff, [{[], 0x3}, {[@initdev={0xac, 0x1e, 0x0, 0x0}], 0x7f}, {[], 0x100000001}]}, @noop]}}, @udp={0x4e20, 0x4e23, 0x3a, 0x0, [@guehdr={0x2, 0x4, 0x0, 0x7, 0x100, [0x80]}, @guehdr={0x1, 0x0, 0x4, 0xfb6, 0x100}, @guehdr={0x1, 0x8, 0x4, 0x6, 0x100}, @guehdr={0x2, 0x0, 0xfff, 0x1000, 0x0, [0x80]}, @guehdr={0x2, 0x8, 0xffff, 0xffffffffffffff00, 0x100, [0x80]}], "1cdde5a6f5d7ea6f751a20271c373c794cda"}}}, 0xf6) fstat(r6, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x1, &(0x7f0000000c00)=[0xee01]) r9 = getuid() lstat(&(0x7f0000000c40)='./file0\x00', &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r6, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000d80)=0x0, &(0x7f0000000dc0), &(0x7f0000000e00)) r13 = getuid() getresgid(&(0x7f0000000e40)=0x0, &(0x7f0000000e80), &(0x7f0000000ec0)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000f00)={{{@in, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@empty}}, &(0x7f0000001000)=0xe8) getgroups(0x6, &(0x7f0000001040)=[0x0, 0x0, 0xee01, 0xee01, 0xffffffffffffffff, 0xee01]) write$FUSE_DIRENTPLUS(r3, &(0x7f0000001080)={0x360, 0x0, 0x2, [{{0x5, 0x2, 0x8, 0x1, 0x2, 0x8, {0x4, 0x3, 0x3, 0x8000, 0x4b, 0xff1d, 0x10000, 0x81, 0x5, 0x87, 0xfffffffffffffe01, r7, r8, 0x5}}, {0x6, 0x1f, 0x0, 0x800}}, {{0x4, 0x2, 0x1ff, 0x1f, 0x6, 0x8, {0x4, 0x2, 0x1f, 0x46, 0x10000, 0x5, 0x8, 0x3f, 0x1ff, 0xfffffffffffffffb, 0x2, r9, r10, 0x7fff, 0x6}}, {0x6, 0x9, 0xa, 0x9, '/dev/rtc0\x00'}}, {{0x5, 0x2, 0xa01, 0x19e0000000000000, 0x0, 0x6, {0x4, 0x8000, 0xffffffff, 0x258, 0x2000000, 0x3f, 0xff, 0x7ff, 0x80000000, 0xffffffff80000001, 0x100000001, r11, r12, 0x9, 0xffffffffffff8001}}, {0x4, 0x7, 0x12, 0x5, '/proc/capi/capi20\x00'}}, {{0x5, 0x0, 0x6, 0x2d3, 0x91d, 0x3ff, {0x6, 0x8, 0x4, 0x2, 0xa197, 0x0, 0x85b, 0xc8b0, 0xffffffff, 0x1, 0x7, r13, r14, 0x4, 0x41b}}, {0x5, 0x7, 0x12, 0x8, '/proc/capi/capi20\x00'}}, {{0x0, 0x0, 0x9, 0x4, 0xfffffffffffffffe, 0x9, {0x5, 0x7, 0x1, 0x7, 0x8000, 0x1f, 0x1000, 0x9, 0x7fffffff, 0x3, 0x9, r15, r16, 0x1, 0x2}}, {0x2, 0xdf2, 0x12, 0x4, '/proc/capi/capi20\x00'}}]}, 0x360) 09:38:34 executing program 1: socket$inet6_udp(0xa, 0x2, 0x0) r0 = syz_open_dev$usbmon(0x0, 0xa7f, 0x4263c0) syz_genetlink_get_family_id$tipc2(0x0) r1 = socket$l2tp(0x18, 0x1, 0x1) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = socket(0x0, 0x0, 0x0) syz_open_dev$dri(&(0x7f00000003c0)='/dev/dri/card#\x00', 0x60, 0x200000) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000280)=0xc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, &(0x7f0000000400)={0x0, @in={{0x2, 0x0, @multicast1}}, [0x5, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x8, 0x7fff, 0x2, 0x2, 0x0, 0x7ff]}, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x0, 0x0) getrandom(&(0x7f00000005c0)=""/198, 0xc6, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) ioctl$DRM_IOCTL_RM_MAP(0xffffffffffffffff, 0x4028641b, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x0}) r4 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_dgram(r4, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x0}, 0x10) shutdown(r4, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000a80)='./cgroup/\x00\x00z0\x00\x906\xa3\x95A\x1c\xf5\xee\x8aj\xdf\n\xcb\xf0\xce\xd9,Fj\xbd\xad\x89!\xf9\x00\x9f\x80\xd5\x01)c)\xaa\xba\x92\xe1\xd6\xa6\x0fTA\x16jwl\x1a\x92%\x00\x1dY\xed\x87b_\xc4\x97r\xf68u\xf4~g\x1b\xf3g\x0eI7F\xce\x93\xef\xe1\x91\x81\xe3\xc7*\xdb\x84\x82$\xaa\x8f\xd6 \x98\x81\f\xf4R\x99\xb2\x87#E\xcc\x00\x00\x00\x00s\xed\xff\xc7\xed>Zy\x92\t\xcd\xc8\fN4\x1fn\x99\xd3P!\xb2gR\xdb\xd1\x95`\xadf\xdb($B\x95\xd1\xef\x15\x9ek\b\xc7\x17u<\xcb\xec\xde\x92 \xf1\x01X!y\x8e\f\x1eo\x84o\x12\x1b\x17\xb3\xd7%Mw\xb9[\v\x19B\n\x04\x00\x00\x00n\x86tt\xeb\xb7\xf9r\x82\x16\xac\x12\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf1\x00\xf5\xf7CT|\xcf\x88\x9c\xe7\xa7\xad\x13Y\xc7\xe7\xc8\xed\xae\xea\x1b\xb4P\x98q\xcc\xeb\xbdw\x9c\xac\xfe`\xe8\xfa\xf6\xdcm\xe5\xc4\xcc\xfa6\xc5\x91\xee\xeaT\x8b\xb8&\x88\xc9w\xab\x9a\xb6\xf3b\x8e\xc4$\x98\x06\xa5\xbb\xa8u\x96\xea@\x83\xc0\xa7\xe2J\x86\xa5\x1a\xcb\xa8\x0e=d\x9d\x10iWO&+Ivu\x8a\xff\xe7s\xf5 \xd7\x0e\x1b\xd0\x13\xa1m\xf8\xf7|\xc7\xd7\xa7\xb3CGI\x00\x1e\xf9>\xecR}\xf8\x82\xdbg\x97\x98\xf7\xe2l\x1d\xc7\xa0uv\xc8\x9c\xd5\x90\x01\xe3-\xfdn\xe8\xcd\xbc\v\xd2\xfd\xf2aj\x9dS\x1e\xc21\tz;\x82_3\x1e\v\x04_\xdf\xa3Y\xbe\xb6\x8d\t\xa5\xe7\x1c~\v\xbe\x80\xd6\x1f/h.\x8d\xd2\x17^\x00\x00\x00', 0x200002, 0x0) ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000300)=""/133) read(r1, 0x0, 0xfffffffffffffe44) close(0xffffffffffffffff) 09:38:34 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0xfffffffffffffffd, 0x31, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) r2 = socket(0x10, 0x100000000002, 0x0) sendto(r2, &(0x7f0000000000)="12", 0x1, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000140)={0x0, 0xbb, "9d4981bd2302fbbc42f44a72e37fd3d1c8c1f85d8328e7a6cda53e2d070350a24bc7211a9415d9d6faa191d5161b43d4440e29c543cad7b3e3c04bc688a6fce088010699b10609a592d2562aa4ac5a2f939dcd8aed7d52a8bfbab6fd977eddf57f77ac5724eba0ee2733c842372f647dd83001c1bb887e2679ec33394b7c70020dcccf5a4ba33b54235b9636143b01a7ca1604b8b9bfab5e3f4db84f6182a66c24bd9f5e6ca2e33393d033da1086cbba7549fc066a166b033b23e9"}, &(0x7f0000000040)=0xc3) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000080)={r3, 0xffffffff}, &(0x7f00000000c0)=0x8) getsockopt$netrom_NETROM_T4(r1, 0x103, 0x3, 0x0, &(0x7f0000000100)) [ 1133.991928] FAULT_INJECTION: forcing a failure. [ 1133.991928] name failslab, interval 1, probability 0, space 0, times 0 [ 1134.020919] CPU: 1 PID: 3368 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1134.028072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1134.037520] Call Trace: [ 1134.040123] dump_stack+0x138/0x19c [ 1134.043769] should_fail.cold+0x10f/0x159 [ 1134.048031] should_failslab+0xdb/0x130 [ 1134.052014] kmem_cache_alloc+0x2d9/0x780 [ 1134.056223] ? __lock_acquire+0x5f9/0x45e0 [ 1134.060464] mmu_topup_memory_caches+0x86/0x320 [ 1134.065160] kvm_mmu_load+0x21/0xd50 [ 1134.068870] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1134.073618] ? retint_kernel+0x2d/0x2d [ 1134.077587] vcpu_enter_guest+0x2ea0/0x5270 [ 1134.081914] ? find_held_lock+0x100/0x130 [ 1134.086160] ? emulator_read_emulated+0x50/0x50 [ 1134.090814] ? lock_acquire+0x16f/0x430 [ 1134.094786] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1134.099813] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1134.104758] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1134.109782] kvm_vcpu_ioctl+0x401/0xd10 [ 1134.113758] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1134.118055] ? trace_hardirqs_on+0x10/0x10 [ 1134.122602] ? __f_unlock_pos+0x19/0x20 [ 1134.126573] ? save_trace+0x290/0x290 [ 1134.130363] ? __f_unlock_pos+0x19/0x20 [ 1134.134419] ? __fget+0x210/0x370 [ 1134.137865] ? find_held_lock+0x35/0x130 [ 1134.141912] ? __fget+0x210/0x370 [ 1134.145392] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1134.149622] do_vfs_ioctl+0x7b9/0x1070 [ 1134.153520] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1134.161426] ? lock_downgrade+0x6e0/0x6e0 [ 1134.165903] ? ioctl_preallocate+0x1c0/0x1c0 [ 1134.170471] ? __fget+0x237/0x370 [ 1134.173922] ? security_file_ioctl+0x8f/0xc0 [ 1134.178315] SyS_ioctl+0x8f/0xc0 [ 1134.181671] ? do_vfs_ioctl+0x1070/0x1070 [ 1134.185835] do_syscall_64+0x1eb/0x630 [ 1134.189723] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1134.194766] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1134.199950] RIP: 0033:0x458c29 [ 1134.203127] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1134.210842] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1134.218104] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1134.225361] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1134.234035] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 09:38:34 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) munmap(&(0x7f0000809000/0x1000)=nil, 0x1000) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x40000, 0x0) ioctl$VIDIOC_ENUMOUTPUT(r1, 0xc0485630, &(0x7f0000000040)={0x4, "2bef59c50f713f0b86fc3390fe934afcc3905cba6c99973656fb73aa0cd909c2", 0x0, 0x0, 0x7, 0x8000, 0xa}) mbind(&(0x7f00008cb000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x9a58, 0x2000000000002) 09:38:34 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000440)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000000)=@ethtool_ringparam={0xd, 0x0, 0x70c000, 0x0, 0x2}}) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x2) ioctl$VIDIOC_S_PRIORITY(r2, 0x40045644, 0x3) 09:38:34 executing program 5 (fault-call:5 fault-nth:11): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1134.241410] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1134.250202] net_ratelimit: 11 callbacks suppressed [ 1134.250207] protocol 88fb is buggy, dev hsr_slave_0 [ 1134.260311] protocol 88fb is buggy, dev hsr_slave_1 [ 1134.339054] FAULT_INJECTION: forcing a failure. [ 1134.339054] name failslab, interval 1, probability 0, space 0, times 0 [ 1134.351563] CPU: 1 PID: 3381 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1134.358688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1134.368133] Call Trace: [ 1134.370733] dump_stack+0x138/0x19c [ 1134.374392] should_fail.cold+0x10f/0x159 [ 1134.378727] should_failslab+0xdb/0x130 [ 1134.382721] kmem_cache_alloc+0x2d9/0x780 [ 1134.386885] ? __lock_acquire+0x5f9/0x45e0 [ 1134.391137] mmu_topup_memory_caches+0x86/0x320 [ 1134.395810] kvm_mmu_load+0x21/0xd50 [ 1134.399557] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1134.404352] vcpu_enter_guest+0x2ea0/0x5270 [ 1134.408685] ? save_trace+0x290/0x290 [ 1134.412495] ? lock_downgrade+0x6e0/0x6e0 [ 1134.416740] ? find_held_lock+0x100/0x130 [ 1134.420980] ? emulator_read_emulated+0x50/0x50 [ 1134.426340] ? lock_acquire+0x16f/0x430 [ 1134.430298] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1134.435402] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1134.440263] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1134.445399] kvm_vcpu_ioctl+0x401/0xd10 [ 1134.449398] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1134.454143] ? trace_hardirqs_on+0x10/0x10 [ 1134.458568] ? __f_unlock_pos+0x19/0x20 [ 1134.462620] ? save_trace+0x290/0x290 [ 1134.466569] ? __f_unlock_pos+0x19/0x20 [ 1134.470558] ? __fget+0x210/0x370 [ 1134.474004] ? find_held_lock+0x35/0x130 [ 1134.478135] ? __fget+0x210/0x370 [ 1134.481673] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1134.485854] do_vfs_ioctl+0x7b9/0x1070 [ 1134.489824] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1134.499668] ? lock_downgrade+0x6e0/0x6e0 [ 1134.503993] ? ioctl_preallocate+0x1c0/0x1c0 [ 1134.508395] ? __fget+0x237/0x370 [ 1134.511939] ? security_file_ioctl+0x8f/0xc0 [ 1134.516402] SyS_ioctl+0x8f/0xc0 [ 1134.519844] ? do_vfs_ioctl+0x1070/0x1070 [ 1134.524080] do_syscall_64+0x1eb/0x630 [ 1134.528090] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1134.532952] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:38:35 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x401, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) socket(0xb, 0x5, 0x8) write$rfkill(r0, &(0x7f0000000040), 0x8) [ 1134.538185] RIP: 0033:0x458c29 [ 1134.541375] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1134.549253] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1134.556560] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1134.564096] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1134.571451] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1134.578882] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1135.030135] protocol 88fb is buggy, dev hsr_slave_0 [ 1135.035268] protocol 88fb is buggy, dev hsr_slave_1 [ 1135.040172] protocol 88fb is buggy, dev hsr_slave_0 [ 1135.045459] protocol 88fb is buggy, dev hsr_slave_1 [ 1135.050760] protocol 88fb is buggy, dev hsr_slave_0 [ 1135.055870] protocol 88fb is buggy, dev hsr_slave_1 [ 1136.310144] protocol 88fb is buggy, dev hsr_slave_0 [ 1136.315267] protocol 88fb is buggy, dev hsr_slave_1 09:38:37 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7118000000000000000f0000ff3bc477000025cdb8b960b17495908c89f99a8c079d0000000000000000000000e6"], 0x39) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x20000, 0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000040)) ptrace$cont(0x18, r0, 0x101, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:38:37 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000f85fa0)=ANY=[@ANYBLOB="02ab67163e245edc5545a2e7c81e0400000c000000000000590000000000000000000000000a00000000000000fe8000000000000000000000000000ff000000000000f6000200010000008705cd61b7d4943e1e00050000000000000000"], 0x60}}, 0x0) 09:38:37 executing program 5 (fault-call:5 fault-nth:12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:37 executing program 2: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='proc\x00', 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0x1, &(0x7f0000000040)=@raw=[@call={0x85, 0x0, 0x0, 0x1c}], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x1, [], 0x0, 0x2, 0xffffffffffffff9c, 0x8, &(0x7f0000000200)={0x3, 0xdcff}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x9, 0x5}, 0x10}, 0x70) write(r0, &(0x7f0000000540)="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", 0x1000) r1 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) fchdir(r1) r2 = memfd_create(&(0x7f0000000080)='\x8e`,>\x1ft<\xb4\xc6U,#Se\xcd\x14\xb8\x9d\x14\n\x016m9\x9f\xc0\xd7\x1c\a\v\x1e\xbaJ', 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000340)=0xf000) write$FUSE_DIRENT(r2, &(0x7f0000000180)=ANY=[@ANYRESDEC], 0x14) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x0) open(&(0x7f0000000000)='.\x00', 0x0, 0x0) 09:38:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x0, 0x3c000) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000140)={0x0, 0x0, 0x4}) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffff9c, 0xc008640a, &(0x7f0000000180)={0x0}) ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f00000001c0)={r3, r4, 0x400}) futex(&(0x7f0000000000)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) r5 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0) r6 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f0000000080), &(0x7f00000000c0)=0x8) tkill(r5, 0x1004000000016) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000200)={0x7, 0x0, 0x0, 0x8001}) ioctl$DRM_IOCTL_AGP_UNBIND(r6, 0x40106437, &(0x7f0000000240)={r7, 0x74c}) 09:38:37 executing program 1: r0 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x40000) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000240)={0x0, 0xe5d}, &(0x7f0000000280)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000002c0)={r1, 0x80000001}, 0x8) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000380)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8200000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x5c, r3, 0x304, 0x70bd2a, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffffc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7b}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x99b}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040000}, 0x20000000) ioctl(r2, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1f, 0x10400) ioctl$SNDRV_TIMER_IOCTL_TREAD(r4, 0x40045402, &(0x7f0000000180)) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000040)={0x0, 0xff, 0x1, 0xd15f, 0x1, 0x9, 0x6, 0x2fe, {0x0, @in6={{0xa, 0x4e22, 0x9, @mcast1, 0x9}}, 0x8, 0x7fffffff, 0x81, 0x0, 0x7ff}}, &(0x7f0000000100)=0xb0) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000140)={r5, 0x15e, 0x8, 0x34, 0x100, 0x380000000000000}, 0x14) fanotify_mark(r0, 0x40, 0x2a, r4, &(0x7f0000000300)='./file0\x00') syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, 0x0, 0xfffffffffffffecb) 09:38:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x3e, 0x24000) connect$llc(r1, &(0x7f0000000080)={0x1a, 0x0, 0x1, 0x4, 0x2, 0x10, @link_local}, 0x10) r2 = add_key(&(0x7f0000000140)='.request_key_auth\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000340)="b5807aaac60d33b752d01f4b47781bbd27ec524a9b1066a76682f60ddfc3e9aac197cdf1d24defbce170626324c001f82ec3786479b9b208befea8ffb089b02c686afb9fe73a8122bf11bc6eeb09ff4b2fe18e9534c8e38fc890e88228d4cfb95844700ee107bfef02d570b591cc3e15d074d6c0e82f17b8ffccc10857bb9c60e47a62e0ddfb5fc545a6d599ed91fae8325e0c2648de1014a03bc33d390ab6d2957bcd4d4ec84e502cb502748860d5c30c5cb8dbf01cb91c4ecc1ffe8c9b84d87b264725f07c9a9f6d6256ae43f2cca7b8", 0xd1, 0xfffffffffffffffe) keyctl$assume_authority(0x10, r2) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f00000001c0)={0x3, r1}) uname(&(0x7f0000000240)=""/235) ioctl$VIDIOC_G_MODULATOR(r1, 0xc0445636, &(0x7f00000000c0)={0x7, "a5940ae18f1a96674a87875d5561795b205738d44b55ac21d9744007f422f4ca", 0x1e2a, 0xe8, 0x3, 0xe, 0x4}) 09:38:37 executing program 1: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x2, 0x0) fsetxattr$security_smack_entry(r0, &(0x7f0000000040)='security.SMACK64\x00', &(0x7f0000000080)='/dev/dsp\x00', 0x9, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0xfffffe27) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x12, r0, 0x0) 09:38:37 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='yeah\x00', 0x5) r1 = syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000380)={0x5, 0x90d5, 0x1}) sendto$inet(r0, 0x0, 0x0, 0x400200007fd, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_elf64(r0, &(0x7f00000016c0)=ANY=[@ANYPTR=&(0x7f00000005c0)=ANY=[@ANYPTR=&(0x7f00000004c0)=ANY=[@ANYRES16], @ANYRES32, @ANYRES64=0x0, @ANYPTR=&(0x7f0000000580)=ANY=[@ANYPTR64, @ANYRESHEX, @ANYPTR64, @ANYRES32=0x0]], @ANYRESDEC, @ANYRES16], 0x120001644) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000740)=@nfc, 0x48, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x20013a5a}], 0x1, &(0x7f0000000200)=""/20, 0x8034}, 0x100) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x300, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000400)={0xff, 0x651, 0x5, 'queue1\x00', 0xff}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r2, 0xc02c5341, &(0x7f0000000080)) shutdown(0xffffffffffffffff, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@mcast1, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@remote}}, &(0x7f0000000140)=0xe8) ioctl$UI_DEV_CREATE(r2, 0x5501) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000500)={r3, @multicast1, @loopback}, 0xc) 09:38:37 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x1, 0x1d0, [0x20000080, 0x0, 0x0, 0x200000b0, 0x20000220], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"/459]}, 0x243) 09:38:37 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r2, 0x40045730, &(0x7f00000014c0)=0x3) r4 = syz_open_dev$media(&(0x7f00000015c0)='/dev/media#\x00', 0x3, 0x1) perf_event_open$cgroup(&(0x7f0000001500)={0x0, 0x70, 0x3, 0x3, 0xfffffffffffffff7, 0x2, 0x0, 0x5, 0x0, 0xb, 0x0, 0x8001, 0x100, 0x1ae, 0x3, 0xff5b, 0x7fffffff, 0xcaa0, 0x2, 0x4, 0x5, 0x100000000, 0x3, 0x4, 0x488, 0x0, 0x6, 0x4, 0x100000000, 0xff, 0x4, 0x40, 0x7, 0xd7fc, 0x7fffffff, 0xe55a, 0x7, 0x1ffc0000000, 0x0, 0x314, 0x6, @perf_config_ext={0x3, 0x4}, 0x20000, 0x1, 0x5, 0x5, 0x9, 0x3, 0x5}, r3, 0xe, r0, 0x8) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @broadcast}, 0x10) add_key(&(0x7f0000001280)=')x\xb2hf\xe0\xb49\x1b;:\xbf\x85>Nh\x1f\xcc\x1b[Kf\x12F\xf2\xdf\x86\x89b\x1c\xaf\xab9\xd7\xf2}\xf9\xc8\xfb2\xdcq\xfc\n\xb6\x14\nt\n\x133\xfb<\xd2\xfe<\xf0\xcd\xa0x\xe5\x17\n\xba\xa6\xa6\\\xe2\x04\xb23[\xe2\xfd@\xf9v\x13\x9d\x0f`\b[Y\xb4\x82p\x0f\xe8\xb7\\\xa5\xc6=\xb7j\xee\x14]tBe:\xe3\xe2\x8bU\xa6\x86\x8d\x89\xeb)\xfe\xcb\x1f_\x9e\xf8\n\xf4\x88\xd3\x8a;E\xe5\xbfe\xef2\xacqD\xde\x82H\x8a\xe6\x9d\f\x1f\x15d\xa7\xdaG\xf4]U\xe1\xcd*lC\f?<\xf3\xe3\xacd\x8cLo\xc0\xf4+\r\xce\xdf\x065\xfa`y\xad\x143\xe6\xb3\xaa\t\xe3\x1f\xc5)\x91\x92%\xff\xf8OoY\xaaj\xb8\xda\xc5\xb6Q\xad\x12u\x85\\\xc6\xe7[\xa4\xc9\x9d\x9cV\x1ayL\xc2I\x82\x9a\x9bJ!\"s\x01$pxNKW\xfbY\xc20\xb0\x0e\n', 0x0, 0x0, 0xfffffdb5, 0x0) r5 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0xffffffffffffffe1, 0x1) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000001580)={0x3, 0xcfb, 0xd6, 0x100000000, 0x1, 0x0, 0xfc7e, 0xffffffffffffffc1, 0x4, 0x8001, 0x1}, 0xb) ioctl$TUNSETVNETBE(r5, 0x400454de, &(0x7f0000001240)) read$FUSE(r5, &(0x7f0000000240), 0x1000) sendto$inet(r1, 0x0, 0x0, 0x20000802, &(0x7f00000000c0)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={0x0}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000180)={r6, 0xffff}, &(0x7f00000001c0)=0x8) setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0) ioctl$DRM_IOCTL_AGP_ACQUIRE(r4, 0x6430) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6_vti0\x00', 0x10) setsockopt$inet_msfilter(r5, 0x0, 0x29, &(0x7f0000001380)=ANY=[@ANYBLOB="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"], 0x1c) sendto$inet(r1, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0) [ 1136.848221] FAULT_INJECTION: forcing a failure. [ 1136.848221] name failslab, interval 1, probability 0, space 0, times 0 [ 1136.876523] CPU: 1 PID: 3416 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1136.883500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1136.892862] Call Trace: [ 1136.895511] dump_stack+0x138/0x19c [ 1136.899156] should_fail.cold+0x10f/0x159 [ 1136.903416] should_failslab+0xdb/0x130 [ 1136.907404] kmem_cache_alloc+0x2d9/0x780 [ 1136.911569] ? __lock_acquire+0x5f9/0x45e0 [ 1136.915819] mmu_topup_memory_caches+0x86/0x320 [ 1136.920502] kvm_mmu_load+0x21/0xd50 [ 1136.924234] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1136.929016] vcpu_enter_guest+0x2ea0/0x5270 [ 1136.933342] ? save_trace+0x290/0x290 [ 1136.937267] ? lock_downgrade+0x6e0/0x6e0 [ 1136.941421] ? find_held_lock+0x100/0x130 [ 1136.945571] ? emulator_read_emulated+0x50/0x50 [ 1136.950238] ? lock_acquire+0x16f/0x430 [ 1136.954216] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1136.959251] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1136.964091] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1136.969116] kvm_vcpu_ioctl+0x401/0xd10 [ 1136.973100] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1136.977420] ? trace_hardirqs_on+0x10/0x10 [ 1136.981658] ? __f_unlock_pos+0x19/0x20 [ 1136.985634] ? save_trace+0x290/0x290 [ 1136.989528] ? __f_unlock_pos+0x19/0x20 [ 1136.993510] ? __fget+0x210/0x370 [ 1136.996970] ? find_held_lock+0x35/0x130 [ 1137.001261] ? __fget+0x210/0x370 [ 1137.004742] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1137.008893] do_vfs_ioctl+0x7b9/0x1070 [ 1137.012954] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1137.017714] ? lock_downgrade+0x6e0/0x6e0 [ 1137.021871] ? ioctl_preallocate+0x1c0/0x1c0 [ 1137.026465] ? __fget+0x237/0x370 [ 1137.029958] ? security_file_ioctl+0x8f/0xc0 [ 1137.034368] SyS_ioctl+0x8f/0xc0 [ 1137.038012] ? do_vfs_ioctl+0x1070/0x1070 [ 1137.042494] do_syscall_64+0x1eb/0x630 09:38:37 executing program 2: ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) gettid() ioctl$VIDIOC_DECODER_CMD(0xffffffffffffffff, 0xc0485660, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x2cc) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = dup(r1) ioctl$TIOCGPKT(r2, 0x80045438, &(0x7f0000000180)) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ipv6_route\x00') ioctl$UFFDIO_UNREGISTER(r3, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000fff000/0x1000)=nil, 0x1000}) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f00000001c0)=""/12) sendfile(r1, r3, 0x0, 0x10000000000ffe) [ 1137.046471] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1137.051426] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1137.056707] RIP: 0033:0x458c29 [ 1137.059898] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1137.067611] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1137.074891] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1137.082196] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1137.089561] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1137.096875] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:40 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/mixer\x00', 0x0, 0x0) getsockopt$nfc_llcp(r1, 0x118, 0x4, &(0x7f0000000340)=""/252, 0xfc) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7118000000000000000f0000ff3bc477000025cdb8b960b17495908c89f99a8c079d0000000000000000000000e6"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x10000, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000180)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@initdev}}, &(0x7f0000000040)=0xe8) fstat(0xffffffffffffff9c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ATTR(r2, &(0x7f0000000280)={0x78, 0x0, 0x4, {0x3, 0x3, 0x0, {0x6, 0xffff, 0x6, 0x6b77bdf0, 0xb2, 0x10001, 0x200, 0x10000, 0x80000001, 0xffffffffffffff88, 0x10001, r3, r4, 0x3f, 0x9c}}}, 0x78) ptrace$cont(0x7, r0, 0x0, 0x0) 09:38:40 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) gettid() r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) memfd_create(&(0x7f0000000340)='{eth0vmnet0vboxnet1(\'@/]\')proc\x00', 0x1) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0x5}, &(0x7f00000001c0)=0x8) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000080)={0x1, 0xa00000000}, 0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000200)={r2, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}, [0x19, 0x3, 0x10000, 0x1, 0x4, 0x100000000, 0x11, 0x2, 0x1000, 0x0, 0x2, 0x1638, 0x101, 0x7ff, 0x800]}, &(0x7f0000000300)=0x100) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x3e, 0x0) ioctl$BLKROTATIONAL(r3, 0x127e, &(0x7f0000000100)) write$nbd(r1, &(0x7f0000000840)=ANY=[], 0x0) bind$bt_sco(r3, &(0x7f0000000040)={0x1f, {0x820c, 0x2, 0xfffffffffffffe00, 0x1, 0x7, 0x1ff}}, 0x8) 09:38:40 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x40000, 0x0) getsockopt$inet_int(r1, 0x0, 0x32, &(0x7f0000000040), &(0x7f0000000080)=0x4) 09:38:40 executing program 2: syz_emit_ethernet(0xfffffc6b, &(0x7f0000000340)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, 'v`Q', 0x30, 0x3a, 0xffffffffffffffff, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [0x0, 0xfffffffffffff000]}, {[], @icmpv6=@dest_unreach={0xffffff88, 0x0, 0x0, 0x0, [0x14], {0x0, 0x6, "c5961e", 0x0, 0x0, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x3]}, @mcast2}}}}}}}, 0x0) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x9, &(0x7f0000ffc000/0x1000)=nil, 0x4) r0 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/56, 0x38}], 0x1) 09:38:40 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x29, 0x7, 0x0) openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SIOCAX25GETINFO(0xffffffffffffffff, 0x89ed, 0x0) sendmsg$kcm(r0, &(0x7f0000002ac0)={&(0x7f0000002d40)=@rc, 0x7ffff000, &(0x7f0000002a80), 0x68, &(0x7f0000000080), 0x21a}, 0x0) 09:38:40 executing program 5 (fault-call:5 fault-nth:13): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:40 executing program 1: unshare(0x101) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x42080, 0x0) getsockname$netlink(r0, &(0x7f0000000080), &(0x7f00000000c0)=0xfffffffffffffdd8) syz_open_pts(r0, 0x101000) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000140)=0x0) r2 = syz_open_procfs(r1, &(0x7f0000000100)='mountinfo\x00') preadv(r2, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0) 09:38:40 executing program 3: r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x20, 0x12, 0xa, 0x10, "84b836b75c7beefaceec89512a166020bc371a29c71b499de5fd6f0fc3c2dc12d0baa4a6188187d63370a0d3851d17e0d79427d1af63dbfd2c1b4dea646209d3", "3ac54b89c5ff6e391139b5aa18c1f4c0ad780e1d1b0dd7138f0b29ea8aa4d473", [0xab, 0x8001]}) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x420400, 0x0) ioctl$SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000080)) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x16c, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x621, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @gretap={{0xc, 0x1, 'gretap\x00'}, {0xc, 0x2, [@IFLA_GRE_REMOTE={0x8, 0x7, @remote}]}}}]}, 0x3c}}, 0x40000) 09:38:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mkdir(&(0x7f00000001c0)='./file1\x00', 0x0) symlink(&(0x7f0000000040)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00') mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="75507065726469723d2e69723d2e3a66726b64697227ff01000000ffff003ba7000079c3"]) mkdir(&(0x7f00000000c0)='./file0/f.le.\x00', 0x0) symlink(&(0x7f0000000200)='.//ile0\x00', &(0x7f0000000280)='.//ile0/file0\x00') 09:38:40 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$kcm(0xa, 0x2, 0x73) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000080)=ANY=[@ANYBLOB="d9f5a4bd92f500000017b6000000"], 0x8) sendmsg$kcm(r1, &(0x7f00000003c0)={&(0x7f0000000000)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, 0x0}, 0x0) [ 1139.844314] FAULT_INJECTION: forcing a failure. [ 1139.844314] name failslab, interval 1, probability 0, space 0, times 0 09:38:40 executing program 3: clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000008, &(0x7f0000000000)) r0 = gettid() timer_create(0x0, &(0x7f0000ee4000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/mls\x00', 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000140)) timer_settime(0x0, 0x0, &(0x7f0000e04000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x1000000000016) [ 1139.905468] CPU: 1 PID: 3457 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1139.906838] overlayfs: unrecognized mount option "uPperdir=.ir=.:frkdir'ÿ" or missing value [ 1139.912715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1139.912722] Call Trace: [ 1139.912744] dump_stack+0x138/0x19c [ 1139.912771] should_fail.cold+0x10f/0x159 [ 1139.912786] should_failslab+0xdb/0x130 [ 1139.912797] kmem_cache_alloc+0x2d9/0x780 [ 1139.912808] ? __lock_acquire+0x5f9/0x45e0 09:38:40 executing program 1: r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0xfffffffffffffffd, 0x100000000008000) r1 = memfd_create(&(0x7f0000000280)='IPVS\x00', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff) exit(0xf9f0) [ 1139.912822] mmu_topup_memory_caches+0x86/0x320 [ 1139.912835] kvm_mmu_load+0x21/0xd50 [ 1139.912844] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1139.912857] vcpu_enter_guest+0x2ea0/0x5270 [ 1139.912867] ? save_trace+0x290/0x290 [ 1139.912875] ? lock_downgrade+0x6e0/0x6e0 [ 1139.912887] ? find_held_lock+0x100/0x130 [ 1139.912899] ? emulator_read_emulated+0x50/0x50 [ 1139.912907] ? lock_acquire+0x16f/0x430 [ 1139.912917] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1139.912934] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1139.912943] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1139.912957] kvm_vcpu_ioctl+0x401/0xd10 [ 1139.912970] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1139.930908] ? trace_hardirqs_on+0x10/0x10 [ 1139.961574] overlayfs: unrecognized mount option "uPperdir=.ir=.:frkdir'ÿ" or missing value [ 1139.962563] ? __f_unlock_pos+0x19/0x20 [ 1139.962578] ? save_trace+0x290/0x290 [ 1139.962587] ? __f_unlock_pos+0x19/0x20 [ 1139.962596] ? __fget+0x210/0x370 [ 1139.962607] ? find_held_lock+0x35/0x130 [ 1139.979719] ? __fget+0x210/0x370 [ 1139.979736] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1139.979756] do_vfs_ioctl+0x7b9/0x1070 [ 1139.979768] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1139.979780] ? lock_downgrade+0x6e0/0x6e0 [ 1139.988686] ? ioctl_preallocate+0x1c0/0x1c0 [ 1139.988700] ? __fget+0x237/0x370 [ 1139.988722] ? security_file_ioctl+0x8f/0xc0 [ 1140.035868] SyS_ioctl+0x8f/0xc0 [ 1140.035880] ? do_vfs_ioctl+0x1070/0x1070 [ 1140.035893] do_syscall_64+0x1eb/0x630 [ 1140.035901] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1140.035918] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1140.043777] RIP: 0033:0x458c29 [ 1140.043784] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1140.043796] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1140.043802] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1140.043808] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1140.043814] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1140.043819] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1140.470141] net_ratelimit: 14 callbacks suppressed [ 1140.470147] protocol 88fb is buggy, dev hsr_slave_0 [ 1140.480749] protocol 88fb is buggy, dev hsr_slave_1 [ 1141.270158] protocol 88fb is buggy, dev hsr_slave_0 [ 1141.270161] protocol 88fb is buggy, dev hsr_slave_0 [ 1141.270199] protocol 88fb is buggy, dev hsr_slave_1 [ 1141.275422] protocol 88fb is buggy, dev hsr_slave_1 [ 1141.280554] protocol 88fb is buggy, dev hsr_slave_0 [ 1141.295732] protocol 88fb is buggy, dev hsr_slave_1 [ 1142.550135] protocol 88fb is buggy, dev hsr_slave_0 [ 1142.555263] protocol 88fb is buggy, dev hsr_slave_1 09:38:43 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.effective_cpus\x00', 0x0, 0x0) write$P9_RREAD(r1, &(0x7f0000000480)=ANY=[@ANYRESOCT=0x0, @ANYBLOB="ef477a37644f65976a267162c797834198b324f08fd7a239ba594505b59924857583d3dfb37a4fc1d2d0392d4346e6a7ca6eaa59eaaf02f6a55c0c47c8fcfe9bce79449a519ce9c3ced1b1de44553cda0fbb65b687829835752a2a9589a4a607efff985dda977b7aac5808fbeabd2d4a4ce659760d04f962991f80ed5df40291257ef761513fcb43e13ff342a9507116dc5a53bfd052e1862771c41ff0253a2929544ea90f9e16c1b025dbecf0f0434910f0d4d2", @ANYPTR, @ANYRES32=r0, @ANYRESHEX=r0, @ANYRES32=r0, @ANYBLOB="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", @ANYRES16, @ANYRESHEX=r0], 0x1a3) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0xa300, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) write$P9_RREMOVE(r2, &(0x7f0000000040)={0x7, 0x7b, 0x2}, 0x7) 09:38:43 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$alg(0x26, 0x5, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x101000, 0x144) accept$netrom(r2, &(0x7f0000000080)={{0x3, @bcast}, [@remote, @netrom, @remote, @null, @bcast, @remote, @rose, @bcast]}, &(0x7f0000000180)=0x48) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(des3_ede)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000400)="de75e1fe7d087634b214a3765ba0017995103a08917fc2a1", 0x18) r3 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg(r3, &(0x7f0000000700)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000240)="e8c3749daa17c3d43b543557a3f37509af8fbc422b533790f0004c87badb11e3b364484d83f7cc35f8a8f98310c9006cbfbb16003a0dbe229f911e5e0433244d65fac026add9589f5b4ef513fd89c265af9db1ed04e796297f9ecd", 0x5b}], 0x1}}], 0x1, 0x0) 09:38:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f3186c070") r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) syz_emit_ethernet(0x3e, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaac7d05eaedd6050a09c00080000fe8000000000000000000000000000bbfe8000020000000000002219000000aa0000000000089478"], 0x0) 09:38:43 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) fchmod(r0, 0xc0) syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x20, 0x80000) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106(gcm_base(ctr(aes-aesni),ghash-generic))\x00'}, 0x58) prctl$PR_SET_TSC(0x1a, 0x3) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0xc1) 09:38:43 executing program 5 (fault-call:5 fault-nth:14): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:43 executing program 1: getsockname(0xffffffffffffff9c, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f0000000080)=0x80) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f00000001c0), 0x4) r1 = socket$inet(0x2, 0x805, 0x1c) ioctl(r1, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c000000102001060040000000000000000000007607d92344356fea612589a11d1dc97993c27ccb7dd6d7f3f60c777de4ae2e5204249c4b13453069d377", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c000100626f6e64000000000c00020008000300ffffffff"], 0x3c}}, 0x0) 09:38:43 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, 0x0, 0x400, 0x0) mkdirat(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f0000000080)={0x5, 0x3f, [{0x5, 0x0, 0x7fff}, {0x1, 0x0, 0x2}, {0x7, 0x0, 0x8}, {0x6, 0x0, 0x10000}, {0x7, 0x0, 0x8}]}) ptrace$setregset(0x4205, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f00000001c0)=""/100) r1 = openat$vcs(0xffffffffffffff9c, 0x0, 0x8000, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x8}, 0x37a) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, 0x0, 0x0) ioctl$IOC_PR_CLEAR(r1, 0x401070cd, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snapshot\x00', 0x20601, 0x0) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r2) ioctl$VIDIOC_QUERYSTD(r1, 0x8008563f, &(0x7f0000000140)) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000000)=0x0) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000100)=r3) write$uinput_user_dev(r2, 0x0, 0x0) 09:38:43 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00\b\x00') recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0xfff) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') socket$kcm(0x29, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f00000017c0), 0x3da, 0x6c000000) 09:38:43 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/user\x00', 0x2, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB="1400000022000100000000000000000005000000294679be0152afb201d0b43e51216d5367459ae4427a6a8ff1467b47c65515a1c3b571343739225963471b86"], 0x14}}, 0x0) r2 = dup3(r1, r0, 0x80000) ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000040)=0x8001) openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x10000000800fd, 0x0) 09:38:43 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000002e0000009f0000000000000095000013eba9688c"], &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) pipe(&(0x7f0000000080)={0xffffffffffffffff}) ioctl$SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0) [ 1142.874654] FAULT_INJECTION: forcing a failure. [ 1142.874654] name failslab, interval 1, probability 0, space 0, times 0 [ 1142.941872] CPU: 0 PID: 3496 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1142.948911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1142.958458] Call Trace: [ 1142.961062] dump_stack+0x138/0x19c [ 1142.964707] should_fail.cold+0x10f/0x159 [ 1142.969057] should_failslab+0xdb/0x130 [ 1142.973059] kmem_cache_alloc+0x2d9/0x780 [ 1142.977221] ? __lock_acquire+0x5f9/0x45e0 [ 1142.981470] mmu_topup_memory_caches+0x86/0x320 [ 1142.986158] kvm_mmu_load+0x21/0xd50 09:38:43 executing program 0: clone(0x800000409ff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x38) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0x103}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000000), 0x4) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x9, r0, 0x0, 0x0) [ 1142.989912] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1142.995136] vcpu_enter_guest+0x2ea0/0x5270 [ 1142.999566] ? save_trace+0x290/0x290 [ 1143.003372] ? lock_downgrade+0x6e0/0x6e0 [ 1143.007710] ? find_held_lock+0x100/0x130 [ 1143.011864] ? emulator_read_emulated+0x50/0x50 [ 1143.016674] ? lock_acquire+0x16f/0x430 [ 1143.020661] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1143.025688] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1143.030538] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1143.035658] kvm_vcpu_ioctl+0x401/0xd10 [ 1143.039638] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1143.043791] ? trace_hardirqs_on+0x10/0x10 [ 1143.048033] ? __f_unlock_pos+0x19/0x20 [ 1143.052009] ? save_trace+0x290/0x290 [ 1143.055812] ? __f_unlock_pos+0x19/0x20 [ 1143.059797] ? __fget+0x210/0x370 [ 1143.063519] ? find_held_lock+0x35/0x130 [ 1143.067579] ? __fget+0x210/0x370 [ 1143.071125] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1143.075276] do_vfs_ioctl+0x7b9/0x1070 [ 1143.079171] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1143.083928] ? lock_downgrade+0x6e0/0x6e0 [ 1143.088077] ? ioctl_preallocate+0x1c0/0x1c0 09:38:43 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="3ef0326d0cd53128bc32e1617997755e6bbb12e4da142791fe0529e501d5d0e575cd134ccad42b8ad7ad2fe2a9ec998fc5c57259f1d11e71c3144127bae54a2fc834e692bc68c3a56d71d232720aa36f7f42358e0f909627a0e263cb03cd19827bc6aba7ff617e3891ec87c763deac6b1ad152adac8b11d77a01b27590affb474faa3325b74a4c0e52db518b9c2701f41e576a8859f47cd704734de906ffc797c9a73e0dbd8e8030e4e9680ace10ad73a986efee9b92e2bb") r1 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r1, &(0x7f0000000500)={0xa, 0x4e20}, 0x1c) ioctl$sock_SIOCGIFINDEX(r1, 0x5452, &(0x7f0000000000)={'syzkaller1\x00'}) listen(r1, 0x5) r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @empty}, 0x21) close(r1) [ 1143.092620] ? __fget+0x237/0x370 [ 1143.096199] ? security_file_ioctl+0x8f/0xc0 [ 1143.100754] SyS_ioctl+0x8f/0xc0 [ 1143.104119] ? do_vfs_ioctl+0x1070/0x1070 [ 1143.108287] do_syscall_64+0x1eb/0x630 [ 1143.112398] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1143.117257] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1143.122451] RIP: 0033:0x458c29 [ 1143.125664] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1143.133390] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1143.140835] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1143.148283] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1143.155560] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1143.162941] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:46 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7118000000000000000f0000ff3bc477000025cdb8b960b17495908c89f99a8c079d0002000000000000000000e6adb507eed421eb81951a917180695ab1deb68c9d401f1bfc69cb650256b51f503bbe2bfd714b8af2677fcc378992ae7baa8099b1035302211b9e69c320dec5a804fa98d76a0340c68d34c9d4da75d6482c1202e54d2872b8d7b7c5cd26e1c1f6379bbcf0dbf7ac419ee11a65bcab1a0915c9135aa638834bf8ab32b1a50ce4eb1cf7fb25cfd5955f3c9ab03b44136bd773748c5311185ada088e83979c0010459ab9810689beba120cc02d10e540a8f3ac1fe5cc868e0a71114a0a800429071ea8586b195cbbea9aab0784bffdcbf364e0adbef47282e58f72d55270d8adbeabba40c0fda831c0f94b45"], 0x39) ptrace$cont(0x1f, r0, 0xffffffffffffffbf, 0x577) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x6, 0x4000) syz_open_pts(r1, 0x200000) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 09:38:46 executing program 2: r0 = socket$inet(0x10, 0x80002, 0x0) getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000200)={'broute\x00', 0x0, 0x6, 0xa0, [], 0x8, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000140)=""/160}, &(0x7f0000000280)=0x2ba) sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="2f0000001800030007fffd946fa283bc8020000000040005031d8568130009000f0014cc16ccbb24e0710b42fa3ccc", 0x2f}], 0x1}, 0x0) 09:38:46 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup2(r0, r0) ioctl$VIDIOC_S_OUTPUT(r2, 0xc004562f, &(0x7f0000000240)=0xd8e) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000140), &(0x7f0000000200)=0x4) bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0xfffffffffffffffe}, 0xfffffffffffffc42) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x1004e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c) rmdir(&(0x7f00000000c0)='./file0\x00') sendmmsg(r1, &(0x7f0000000440), 0x400000000000211, 0x0) setsockopt(r2, 0x30ea00, 0x1, &(0x7f0000000280)="4261ae42d3d6620499dffda1af2365eb40448f47ce40e4bf3357056df197943394106a9f1299182e728c9574eddbb423bee8f89dbbb8eb8c03c8502801b94a581417e9ceb468eba18dd3575b14b0caff7a1effb4ec1b5fcbfaf5dcfaff2517cd474fbcecdb935400c7f6a5e3159989e618814196074ef1d9c04befc3fcb70881a476d6539ef96ab29abf386bc79a6c2ff7e481480a702180756472da51d97f01fb96a4fb883ebf30e981e7b454caed9f291e218368497992fc9971cba8b450028041cb69c8671407", 0xc8) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000000)) ioctl$TIOCLINUX3(0xffffffffffffffff, 0x541c, 0x0) syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x9, 0xa0000) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000380), &(0x7f00000003c0)=0x4) 09:38:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet_sctp(0x2, 0x5, 0x84) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x4, 0x32, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000040), 0x4) 09:38:46 executing program 5 (fault-call:5 fault-nth:15): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:46 executing program 0: r0 = socket(0x9, 0x809, 0x2000c) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000002, 0x104030, r0, 0x0) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x40, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080)=0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100), 0x400000106, 0x9}}, 0x20) r3 = gettid() kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r1, &(0x7f00000000c0)={r1, r1, 0x4}) ioctl$CAPI_GET_SERIAL(r1, 0xc0044308, &(0x7f0000000040)=0x4) 09:38:46 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sched_setaffinity(0x0, 0x5, &(0x7f0000000280)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) faccessat(0xffffffffffffffff, 0x0, 0x0, 0x800) r1 = syz_open_procfs(0x0, &(0x7f00000005c0)='limits\x00') getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000780)={&(0x7f0000000540)=[0x0], &(0x7f0000000580), 0x0, 0x0, 0x1}) preadv(r1, &(0x7f0000000480), 0x100000000000027e, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, 0x0, 0x0) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000380)={[0x80000000, 0x4aa, 0x100, 0x4, 0x200, 0x4, 0x7, 0x7, 0x3ff, 0x5, 0x7, 0xfffffffffffffffc, 0x8108, 0xe16d, 0x9, 0x3], 0x10004}) write$FUSE_NOTIFY_POLL(r1, 0x0, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) getresgid(0x0, 0x0, 0x0) sync() socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000480)={0x2, 0x800}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) ioctl$sock_ifreq(0xffffffffffffffff, 0x8948, 0x0) r2 = socket(0x10, 0x3, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') syz_open_dev$radio(&(0x7f00000004c0)='/dev/radio#\x00', 0x2, 0x2) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e23, 0x401, @mcast1, 0x8}, @in6={0xa, 0x4e20, 0x77, @mcast2, 0x72}, @in6={0xa, 0x4e23, 0x9, @remote, 0x5}, @in6={0xa, 0x4e20, 0xffff, @rand_addr="e966aa06f63fcb0cae23512413a11d8e", 0x9}, @in6={0xa, 0x4e24, 0x7fff, @local, 0x91}, @in6={0xa, 0x4e21, 0x2, @mcast2, 0x1}], 0xb8) sendfile(r2, 0xffffffffffffffff, 0x0, 0x80000001) sendto$inet(r1, &(0x7f0000000440)="5852bcf52ebd7d292e712455eb308db7949d0ed32558aa1f3641fb6b00ca373b6bb85b9a8ebd84b2588c994f90ff20925cee4d7054", 0x35, 0x24000000, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={0xffffffffffffffff}, 0x117}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r4, 0xfffffffffffffffc, 0x0, 0x0, 0x0, @in6={0xa, 0x4e24, 0x7, @ipv4={[], [], @rand_addr=0x8}, 0x3}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x21}}}}, 0x118) 09:38:46 executing program 0: syz_open_dev$sndseq(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000000)='\xe8\x17y\x93\xfe\x8cJ\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\x93?\x00\x00\x00\x00\x00\x00\x00\x04', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000800)='/dev/snd/seq\x00', 0x0, 0x1) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_buf(r2, 0x29, 0x0, &(0x7f0000000100)=""/37, &(0x7f0000000140)=0x25) r3 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x4, 0x101140) connect$pptp(r3, &(0x7f0000000080)={0x18, 0x2, {0x3, @rand_addr=0xce}}, 0x1e) r4 = dup2(r1, r0) open(&(0x7f00000000c0)='./file0\x00', 0x80, 0x4) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00\x00\x00\x00\x00\x00\x00\x001;\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00\x00\x00\x00\x00\xcc\xbf}\xdd\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f00000001c0)={0xf48b, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000), 0xffd7) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, 0x0) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x0) 09:38:46 executing program 3: perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x401, 0x240040) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x4, @mcast2, 0x23}, 0x1c) clone(0x0, 0x0, 0x0, 0x0, 0x0) 09:38:46 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000057fee)='/dev/input/event#\x00', 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000001000)='/dev/vcs#\x00', 0x5, 0x400) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000000)=""/4096) [ 1145.935495] FAULT_INJECTION: forcing a failure. [ 1145.935495] name failslab, interval 1, probability 0, space 0, times 0 [ 1145.967142] CPU: 0 PID: 3549 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1145.974408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1145.983949] Call Trace: [ 1145.986847] dump_stack+0x138/0x19c [ 1145.990748] should_fail.cold+0x10f/0x159 [ 1145.995005] should_failslab+0xdb/0x130 [ 1145.998996] kmem_cache_alloc+0x2d9/0x780 [ 1146.003308] ? __lock_acquire+0x5f9/0x45e0 [ 1146.007749] mmu_topup_memory_caches+0x86/0x320 [ 1146.012715] kvm_mmu_load+0x21/0xd50 [ 1146.018040] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1146.022824] vcpu_enter_guest+0x2ea0/0x5270 [ 1146.027411] ? save_trace+0x290/0x290 [ 1146.031277] ? lock_downgrade+0x6e0/0x6e0 [ 1146.035498] ? find_held_lock+0x100/0x130 [ 1146.040173] ? emulator_read_emulated+0x50/0x50 [ 1146.044867] ? lock_acquire+0x16f/0x430 [ 1146.048893] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1146.054137] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.058984] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.064002] kvm_vcpu_ioctl+0x401/0xd10 [ 1146.067971] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.072175] ? trace_hardirqs_on+0x10/0x10 [ 1146.076517] ? __f_unlock_pos+0x19/0x20 [ 1146.081381] ? save_trace+0x290/0x290 [ 1146.085182] ? __f_unlock_pos+0x19/0x20 [ 1146.089142] ? __fget+0x210/0x370 [ 1146.092664] ? find_held_lock+0x35/0x130 [ 1146.096824] ? __fget+0x210/0x370 [ 1146.100373] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.104516] do_vfs_ioctl+0x7b9/0x1070 [ 1146.108395] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1146.113365] ? lock_downgrade+0x6e0/0x6e0 [ 1146.117517] ? ioctl_preallocate+0x1c0/0x1c0 [ 1146.121924] ? __fget+0x237/0x370 [ 1146.125378] ? security_file_ioctl+0x8f/0xc0 [ 1146.129784] SyS_ioctl+0x8f/0xc0 [ 1146.133143] ? do_vfs_ioctl+0x1070/0x1070 [ 1146.137569] do_syscall_64+0x1eb/0x630 [ 1146.141490] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1146.146787] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1146.151973] RIP: 0033:0x458c29 [ 1146.155363] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1146.163151] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1146.170412] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1146.177937] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:38:46 executing program 4: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1e) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="052f0400663b7f01402fbf7918000000000000000f010100000000000025cdb8b960b17495908c89f99a8c079d0000000000000000000000e6"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x1ff, 0xc40) getpeername$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$can_bcm(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x1d, r2}, 0x10, &(0x7f0000000280)={&(0x7f0000000200)={0x7, 0x140, 0xfffffffffffffc00, {}, {}, {0x1, 0x6, 0x40, 0x3}, 0x1, @canfd={{0x4, 0x8001, 0x8, 0x5c7}, 0x1a, 0x2, 0x0, 0x0, "ec694992f64e807b004d5af0c7bc6a5e843ce43f64795b7434f89f153ea5f644bd5a58d68b8809d98f615ec1f81f998682c813d1bbc116a3add1227e516131be"}}, 0x80}, 0x1, 0x0, 0x0, 0x8800}, 0x40) 09:38:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000c0], 0x0, 0x0, &(0x7f00000000c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0xd, 0x0, 0x8035, 'batadv0\x00', 'ipddp0\x00', 'bridge_slave_1\x00', 'lo\x00', @remote, [], @broadcast, [], 0xd0, 0xd0, 0x108, [@arp={'arp\x00', 0x38, {{0x0, 0x0, 0x0, @broadcast, 0x0, @broadcast, 0x0, @dev, [], @link_local}}}]}}, @common=@mark={'mark\x00', 0x10, {{0x0, 0xfffffffffffffffe}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x11, 0x0, 0x0, 'caif0\x00', 'veth1_to_team\x00', 'syzkaller1\x00', 'veth1_to_team\x00', @remote, [], @link_local, [], 0x70, 0x70, 0xa0}}, @common=@AUDIT={'AUDIT\x00', 0x8}}]}]}, 0x2b0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0a46c3127b1346c615de70") bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0x7, 0x3, &(0x7f0000008000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0xffffff84}}, &(0x7f0000014ff5)='syzka\x00\x00\x00\x05\x00\xf3', 0x2, 0x1000, &(0x7f0000014000)=""/4096}, 0x48) [ 1146.185465] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1146.192718] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = inotify_init1(0x0) r2 = getpid() fcntl$setown(r1, 0x8, r2) fcntl$getownex(r1, 0x10, &(0x7f000045fff8)) 09:38:46 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = getpgid(0x0) clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x38) ptrace$cont(0x18, r2, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0x1d}) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) ioctl$sock_inet_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) write$selinux_load(r3, &(0x7f0000000200)={0xf97cff8c, 0x8, 'SE Linux', "ea2c9e2ddc6a656ccb252cfe60b7abe3003f82599dd8b2bc66620812bdaeb0db466f8d0ba7272b202fcec8d17026599728716e4a6e8987425c051d4760f29018f9d9e495c461b8617e4c227a4b8e5378b8b07ffa778df6523fe5279630ef6e847173b0fcf1e82d60c1e0a0755f701c469ea11959c5edbb27a8eed99218748dc0ceee7a708ac7b66c43e09acf14a138ed378aab691230a3ce8873d1cb97023e42979d028c5fdf901f7be35a5bd7da0e4815d754c22190e1339476a178d2a371aca037b377a59584ad4835b775b43330614b85157e1c0ad5d3577a86f0dd4f66005e403581b9"}, 0xf5) ptrace$peekuser(0x3, r1, 0xf2b7) ptrace$cont(0x18, r2, 0x0, 0x0) 09:38:46 executing program 5 (fault-call:5 fault-nth:16): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:46 executing program 1: syz_emit_ethernet(0xfffffffffffffe0e, &(0x7f0000000140)={@broadcast, @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x70}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0x5, 0x0, 0x0, 0x0, 0x6, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4029, 0x0, @local={0xac, 0x70}, @dev, {[@timestamp={0x8, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, 0x0) 09:38:46 executing program 3: r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) mount$fuse(0x20000000, &(0x7f0000000700)='./file0\x00', 0x0, 0x201060, 0x0) syz_mount_image$nfs(&(0x7f0000000140)='nfs\x00', &(0x7f00000001c0)='./file0\x00', 0x9, 0x3, &(0x7f0000000480)=[{&(0x7f0000000200)="5cce507312440426a05c7f9a0e748607dcdf7876ba630d9ffda9236559b561278fcf89259511c43c9d6242202285431848cf515f7bfa6bc160e619fd6284ceb14806edc760bae29065fba38d92cc1969ae820aa334a9903a4b08da4f274ddc2a7510b13c409623445ed9fb9506b452dd49c2274235a0298ac76e0e7a1b029c41c6933a9785c6fb420b38e6cc134839382ed72366dcc64ff60c7c4deb5e2ec86a89ca2e02d11d19d37a7d65dd171aee77d453eb2437147a3e0a0b9f63104ad9c8f80e3cabeddd13ef191add1612b95d1912478fa8281d112de1b2b2a58b809d5b0aaa203c435b53a68897ae8100", 0xed, 0x35}, {&(0x7f0000000300)="fda157d88331cdef487026138e76a17b48c42c3b73ce21b0b91cd62f059c10fe210678d28ade71af8f68a5af015628af0ebed173a9d03ea46f96e0256e4ae88d038c7efe1085f4f8e848b228ccf20f9f605702a47560cba2688ee4a00b5bb8f74e16247565429f2ce448db3a177e900f5eb3f93401780be038682d3d60da3ef9e17c5976c3ca496f9ff46b1c198257e56a2804e66ec3673762683bbb6f3596abdec8895bf5d3a7a79c3900247d", 0xad, 0xfffffffffffffffd}, {&(0x7f00000003c0)="e3f2ac20a22bd4baf2ff89259a78f053b87c1084a111938b56ecd181a936ee8ce76e816b5a3e5c8117fcc75c14ebb0bfd99f50798e02942e44fcf30bb057ffd3360ed4fa2f57a41bece5f7ab5527ca63174a68f52cf30bf8da05f74f51cd637c60d09ba4d00f2bf89ab7274baab683f901eaff39fdc6089e21e51cf8c2cba61788f7eef6c3cbca5857a47b773d8d1ac980113ec1d83076b83a25f96f5ab7ca3303a140091099d4cdc902f8d4fff8ed01c69d5a90c55d35131ea0bd1eee73", 0xbe, 0x8}], 0x2000, &(0x7f0000000500)='\x00') getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYRES32=0x0, @ANYBLOB="00800002018001010000ff7fa3099449016dec079cb2f82200d50b4bea172da4eb3264d73f83f986a6ed09fecb3ad38ca77a3138dfc97fde302fef80355a5c6cc78de677ca"], &(0x7f0000000580)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000005c0)={0x0, 0xa8, 0x8201, 0xd36, 0x9, 0x9, 0x8ae8, 0x9, r1}, &(0x7f0000000600)=0x20) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2000060, 0x0) accept$unix(r0, &(0x7f0000000040), &(0x7f00000000c0)=0x6e) socket$unix(0x1, 0x3, 0x0) 09:38:46 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new default user:nodev 000000000057\x00'], 0x2c, 0x0) r1 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0x1f1, 0xfffffffffffffffe) keyctl$update(0x2, r1, &(0x7f00000001c0)='\'', 0x1) 09:38:46 executing program 2: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x82, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x7, 0x4) r1 = epoll_create(0xce5) r2 = mq_open(&(0x7f0000000080)='GPL)&procGPL&\x00', 0x0, 0x80, &(0x7f00000000c0)={0x6, 0x9, 0x6, 0x1, 0x20, 0x4, 0xfffffffffffffe01, 0x5ef4}) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x4e22, @multicast2}, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e20, @loopback}, 0x20, 0x0, 0x0, 0x0, 0x101, &(0x7f0000000100)='hsr0\x00', 0x200, 0x1f, 0xeb}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f00000001c0)={0x2, 0x2, 0x0, {0x77359400}, 0x3, 0x7}) syz_read_part_table(0x6, 0xa, &(0x7f0000000740)=[{&(0x7f0000000240)="17ab367261bf2f7543bd7f05c0f72729a3cc62c0730e85e2ceb401f32ff56d1e3b02f79debdcc3f02d56b24fa1871f50522df4fcc83f58f64aeef0878b7773d6270c5fe6775b598176145762d1dae21d4111b40a6364569bd5240ed10ce600", 0x5f, 0x40}, {&(0x7f00000002c0)="3f5e38b64008f6be0946", 0xa, 0xfffffffffffff9d1}, {&(0x7f0000000300)="6b9e7c81c65d87839bd2f707a91232439f35ac1630e8ebbb92f79d9f838387f5becd3aa8fec199fb823a70c89ffcd3665f09ad7b3f94b02db35118a665bea0969d1a3d3fd4", 0x45, 0x2}, {&(0x7f0000000380)="0442d66bddb1c20e83b149bdf173393e0e14447e50729019793dbb7ec302e089515514dbfdbdddb58d61cfeb74d82f75ed74c4c2a886344a953ca314e2efc34ceb8104f1c3e2005f5856638cff3c9aafb56fcee334e6fa9652c26a48f282ceb5e4375807ef0574ba715a4a5ae00a816e57842474f6734fdd0ac2920a9b64b0a169253183f7773e0e6377174112e91605296de3fb206ae23dd36ea258d3b89732abdc8fc92182714b49e5406380b3a2198c5629aa44a5e0a3e07abf100613", 0xbe, 0x1f}, {&(0x7f0000000440)="5bf32d634b84871fce1d30f93ccfa69a5c868071c46d0270a579509e7b479fed04cc7c177a5b68957d9765b1872dfcaa2c39157b409d36198d73e4721fec626fd2a402502cc58f7df07d270d6d1ba538601884565d", 0x55, 0x8001}, {&(0x7f00000004c0)="40991f4f856a31de4937fddcc2fea5c348030545e340b41b9754578a165ace8b7cc2dcd9613e29fd928cabf36b729538d6f278daa73059cdb4b18c478501ac7912eb585d03a33d9386ce4080a0e8c187e420084e3a0d3b272c3c3fdee2f7faad0dff92bae97e282637ec641a9a4365b5568fea44d5d9d671872cd4852f2ddb234a0eaea093e2b1ddb5874b339e0b", 0x8e, 0x400}, {&(0x7f0000000580)="2671e1f8ccdcf8b1c995f80d98dc43fe68fd5d55fea77cee540eb061ba", 0x1d, 0x1}, {&(0x7f00000005c0)="268002d41fede7ab1091e4d61a09d895b44b5c847c47a35ef1039b8ae966a8f4b54ea6ba7dec06f1caf454aa5ea9ff33c85229dd", 0x34, 0x80000001}, {&(0x7f0000000600)="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", 0xfe, 0x4}, {&(0x7f0000000700)="32606613c4d76393770a721d8bb558fded3b533d2442e9bac8aeebc5a6eb4f34aeb6c4ffcdb415f763dc5501cca93dac375759599dfd581536ae2b1fc1b29e", 0x3f, 0xffffffff}]) getsockopt$netrom_NETROM_T1(r0, 0x103, 0x1, &(0x7f0000000840), &(0x7f0000000880)=0x4) getsockopt$inet6_dccp_buf(r0, 0x21, 0xe, &(0x7f00000008c0)=""/57, &(0x7f0000000900)=0x39) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f0000000940)) vmsplice(r2, &(0x7f0000000c80)=[{&(0x7f0000000980)="3a3f2e826ade91abd3401968ae2c3f0e71301c43be31f60d87fbf3a495774358b3c5dd392d908f7101308dc4987f6845008c75ad753f6415476f5b01eceb0c6b4e2ddfa9b34869dbc868de63e7bd1a74ebfefc24ac2deb4e530e164f7eb962be96dfcaf57d60e9b2a98d3ed6909056cfe59e6e4db0cb4efc64c76d15fd6f227cc84bbdc561d6d3144f8c8d1e854b114391c28058", 0x94}, {&(0x7f0000000a40)="af876d591c1ab6c6a12d876f16757eb108521c107151b2355ad10c283be935d4cd91e3b7c45a5a36acb82afe675ebfb8b1824d42fef582f8e467b4435f4a67f1adc095582b528904c76508023d8fcb8b20c7390ddf85337f24a8d9bab0e7a5013a6ad5c86448b0d1a92ce35c7a510a646becb6afc34e6c9c0cf2e9b0f2c604d4a29fd9745822c456ec055afad8da4a3f81c5663a4535824019a8fac0c2af58b3f492cd367f843a0b6d971f97a1120a57e57c87e46a2282808851cc9278571e678f5ddc", 0xc3}, {&(0x7f0000000b40)="9a60bf146ce053ba7b8be9b06af89a2764d8eec5de9581ddbe084b8bbc9a76b9d4e46931a7bc4fae21d52ad09873d88180fcc87752f6b6f52f6314c577346c57023c6233b6dbf35a3b52aa8dea87f9e495e7f015941a8b2a4e50ccbffcd81b98f3bdb17d110e53f603e8be841f94f347cc9f4b2abf189154a1f21ecdc0dac2334061f0cfc712d346b6f0f6097e", 0x8d}, {&(0x7f0000000c00)="77c93728cb1cc614f25e032a3a579994dd316c5ffb17def2d060cae8569a6e4f98e47f60f1e22a2f6602c84842b77b6d8b19d3634b424def1e190a51caf8350ac04ca0865fb295377427", 0x4a}], 0x4, 0x4) mq_getsetattr(r0, &(0x7f0000000cc0)={0x9, 0x7, 0x7, 0x0, 0x90000000000000, 0xffff, 0x62, 0x80000001}, &(0x7f0000000d00)) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000d40)={0x0, @loopback, @loopback}, &(0x7f0000000d80)=0xc) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000dc0)={r3, @dev={0xac, 0x14, 0x14, 0x2b}, @loopback}, 0xc) r4 = userfaultfd(0x80800) ioctl$TIOCSRS485(r0, 0x542f, &(0x7f0000000e00)={0x80000001, 0x9, 0x3ff}) openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000e40)='/selinux/user\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000e80)={{0x3, 0x1, 0xffffffff, 0x2, 0xfffffffffffffc00}, 0x8, 0x1000, 0x1}) syz_mount_image$ceph(&(0x7f0000000f00)='ceph\x00', &(0x7f0000000f40)='./file0\x00', 0x3b07, 0x4, &(0x7f00000011c0)=[{&(0x7f0000000f80)="fb09667863639b74c61018f7be97e29245c5fbb01f3baba94cca38037988360014c79df1ad9f1af5c986449daa5e5940e9e71884168b40adfe656f8088a6ab8db5e1ccd99fa9f64abf0e88b2a9899c4161c394eeb4e0ec489e93132651c64d60c1c1e3430984ea5e01ef676ebf5da329cb8169f757f5f14cc3f31108a478", 0x7e, 0x1}, {&(0x7f0000001000)="44cf683003b9ae2cea088aeac4324e7920e94410", 0x14, 0x2}, {&(0x7f0000001040)="1bc562c2d6b298056d018fb0048d49673de6f8b3a47e96bce144153c1788cf53c866ee68093b2468b68a318b9542839502ac2f3a10b03e616a8b35185b66616755f35f8db6f4758b3c9159f44a0c3b0edff56fd0e5f9cab6125f32c0b98c9e7aa9cb3d7bb9dfc736624ba7b7a98e4479ba4eb3f463ea5c7f0aae012e8bd8230ce19692bbadf756449c097bb51487dc2d04fd852111429362c168d16f5dc2efade2dc05e644f04d74ee5f563f479b7af144a6d7d558faba40c28846b17ec550b134bfc6bf290c7a", 0xc7, 0x8}, {&(0x7f0000001140)="a54030228bcb9aa3f33af7e66ec760a287d290cd49b23a0f715fd8dcc67454e7c661341a37db340c7ad9297da4400ddf8040fe113f055b3d8afd338ec98f0200902570f4f91f49ed03b6c3afdd90d9dc4e666547883ee1a3d5edc1f8ffddbc6784273b92a1bedf4e", 0x68, 0x3}], 0x4, &(0x7f0000001240)='\x00') ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000001280)={0xf007, 0x1000}) r5 = msgget$private(0x0, 0x8) msgctl$IPC_INFO(r5, 0x3, &(0x7f00000012c0)=""/23) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001340)=@security={'security\x00', 0xe, 0x4, 0x480, 0x250, 0x250, 0x250, 0x250, 0x160, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x4, &(0x7f0000001300), {[{{@ipv6={@empty, @loopback, [0xffffffff, 0xff000000, 0x0, 0x90b60a1feef23c0b], [0xffffffff, 0x0, 0xffffffff], 'bridge_slave_1\x00', 'syzkaller1\x00', {}, {0xff}, 0x5e, 0x0, 0x5, 0x20}, 0x0, 0x120, 0x160, 0x0, {}, [@common=@inet=@udplite={0x30, 'udplite\x00', 0x0, {0x4e21, 0x4e20, 0x4e22, 0x4e20, 0x2}}, @common=@hl={0x28, 'hl\x00', 0x0, {0x0, 0xe0}}]}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "6fc5475d4f1b00757c4201f4d7852a5739e8b12f4dc9aa21e1049300f4e5"}}, {{@uncond, 0x0, 0xc8, 0xf0}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x1000}}}, {{@ipv6={@empty, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [0xffffffff, 0xffffff00, 0xffffffff], [0xffffffff, 0xffffffff, 0xff, 0xffffffff], 'hwsim0\x00', 'irlan0\x00', {0xff}, {0xff}, 0x3e, 0x1, 0x6, 0x10}, 0x0, 0xf0, 0x160, 0x0, {}, [@common=@mh={0x28, 'mh\x00', 0x0, {0x8001, 0x9}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x4, 0x4, 0x6, 0x1, 0x0, "25f0e2d43004ddfde755fdca89f3f55de5221313d790095ab3a6612afb96d3dfd3c3af9e82259573792f52080add6c6d382c0aeb1dde511952cfc714e700d785"}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001880)={0x0, 0x0}, &(0x7f00000018c0)=0xc) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001900)={{{@in=@broadcast, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in6=@initdev}}, &(0x7f0000001a00)=0xe8) stat(&(0x7f0000001a40)='./file0\x00', &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001b00)={0x0, 0x0}, &(0x7f0000001b40)=0xc) stat(&(0x7f0000001b80)='./file0\x00', &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001c40)={{{@in6=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@empty}}, &(0x7f0000001d40)=0xe8) lstat(&(0x7f0000001d80)='./file0\x00', &(0x7f0000001dc0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001e40)={{{@in6=@ipv4={[], [], @empty}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in6=@remote}}, &(0x7f0000001f40)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001f80)={{{@in6=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000002080)=0xe8) getresgid(&(0x7f00000020c0), &(0x7f0000002100)=0x0, &(0x7f0000002140)) stat(&(0x7f0000002180)='./file0\x00', &(0x7f00000021c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000002240)='./file0\x00', &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r4, &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r19 = getegid() fsetxattr$system_posix_acl(r4, &(0x7f0000001840)='system.posix_acl_default\x00', &(0x7f0000002380)={{}, {0x1, 0x3}, [{0x2, 0x1, r6}, {0x2, 0x7, r7}, {0x2, 0x5, r8}, {0x2, 0x1, r9}, {0x2, 0x4, r10}, {0x2, 0x3, r11}, {0x2, 0x0, r12}, {0x2, 0x0, r13}, {0x2, 0x1, r14}], {0x4, 0x3}, [{0x8, 0x4, r15}, {0x8, 0x5, r16}, {0x8, 0x2, r17}, {0x8, 0x5, r18}, {0x8, 0x6, r19}], {0x10, 0x1}, {0x20, 0x4}}, 0x94, 0x1) 09:38:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x2001000008912, &(0x7f00000002c0)="0adc1f123c123f319bd070") clock_gettime(0xffffeffffffffff9, &(0x7f0000000000)) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f0000000140)={0x0, 0x5f3a, 0x0, 0x3, 0x87ce, 0x9}, &(0x7f0000000180)=0x14) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000001c0)={r2, 0xfffffffffffffffc, 0x6a, "d60ba0973bb8367589d906d5a92b6a959437fcf02b7930a1456424d855b914260183072de6547aef990551ae215f064f03b1a25e1fbef3f6a733123142077d3c9cd9070af67980d1423c55ff99e90403f1d22083289683595766543501cbecf894fa911e28a18b41b890"}, 0x72) [ 1146.453066] encrypted_key: insufficient parameters specified [ 1146.465160] FAULT_INJECTION: forcing a failure. [ 1146.465160] name failslab, interval 1, probability 0, space 0, times 0 [ 1146.489289] CPU: 0 PID: 3586 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1146.496465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1146.505835] Call Trace: [ 1146.508706] dump_stack+0x138/0x19c [ 1146.512355] should_fail.cold+0x10f/0x159 [ 1146.516569] should_failslab+0xdb/0x130 [ 1146.520793] kmem_cache_alloc+0x2d9/0x780 [ 1146.525039] ? vcpu_enter_guest+0x2657/0x5270 [ 1146.529831] mmu_topup_memory_caches+0x86/0x320 [ 1146.534622] kvm_mmu_load+0x21/0xd50 [ 1146.538816] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1146.543861] ? vcpu_enter_guest+0x20f0/0x5270 [ 1146.548470] vcpu_enter_guest+0x2ea0/0x5270 [ 1146.552866] ? emulator_read_emulated+0x50/0x50 [ 1146.557659] ? lock_acquire+0x16f/0x430 [ 1146.561831] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1146.567048] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.572041] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.577387] kvm_vcpu_ioctl+0x401/0xd10 [ 1146.581465] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.585620] ? trace_hardirqs_on+0x10/0x10 [ 1146.589891] ? __f_unlock_pos+0x19/0x20 [ 1146.594046] ? save_trace+0x290/0x290 [ 1146.598071] ? __f_unlock_pos+0x19/0x20 [ 1146.602057] ? __fget+0x210/0x370 [ 1146.605523] ? find_held_lock+0x35/0x130 [ 1146.609725] ? __fget+0x210/0x370 [ 1146.613432] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.617686] do_vfs_ioctl+0x7b9/0x1070 [ 1146.621719] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1146.626656] ? lock_downgrade+0x6e0/0x6e0 [ 1146.630814] ? ioctl_preallocate+0x1c0/0x1c0 [ 1146.635231] ? __fget+0x237/0x370 [ 1146.638688] ? security_file_ioctl+0x8f/0xc0 [ 1146.643107] SyS_ioctl+0x8f/0xc0 [ 1146.646600] ? do_vfs_ioctl+0x1070/0x1070 [ 1146.650810] do_syscall_64+0x1eb/0x630 [ 1146.654705] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1146.659864] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1146.665047] RIP: 0033:0x458c29 [ 1146.668228] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1146.676445] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1146.683947] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1146.691397] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:38:47 executing program 1: r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0x4000, 0x0) write$P9_RAUTH(r0, &(0x7f00000000c0)={0x14, 0x67, 0x2, {0x80, 0x4, 0x4}}, 0x14) r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x40000000000000, 0xfffffffffffffffb) ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000000000)={0x5, 0x7, 0x7, 0x0, 0x7ff}) 09:38:47 executing program 5 (fault-call:5 fault-nth:17): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1146.698931] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1146.706216] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1146.714014] net_ratelimit: 14 callbacks suppressed [ 1146.714018] protocol 88fb is buggy, dev hsr_slave_0 [ 1146.724123] protocol 88fb is buggy, dev hsr_slave_1 [ 1146.831266] FAULT_INJECTION: forcing a failure. [ 1146.831266] name failslab, interval 1, probability 0, space 0, times 0 [ 1146.842943] CPU: 0 PID: 3620 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1146.849899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1146.859607] Call Trace: [ 1146.862216] dump_stack+0x138/0x19c [ 1146.865867] should_fail.cold+0x10f/0x159 [ 1146.870359] should_failslab+0xdb/0x130 [ 1146.874446] kmem_cache_alloc+0x2d9/0x780 [ 1146.878875] ? __lock_acquire+0x5f9/0x45e0 [ 1146.883142] mmu_topup_memory_caches+0x86/0x320 [ 1146.888158] kvm_mmu_load+0x21/0xd50 [ 1146.892009] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1146.897097] vcpu_enter_guest+0x2ea0/0x5270 [ 1146.901422] ? save_trace+0x290/0x290 [ 1146.905292] ? lock_downgrade+0x6e0/0x6e0 [ 1146.909586] ? find_held_lock+0x100/0x130 [ 1146.913923] ? emulator_read_emulated+0x50/0x50 [ 1146.919125] ? lock_acquire+0x16f/0x430 [ 1146.923255] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1146.928399] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.933352] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1146.938367] kvm_vcpu_ioctl+0x401/0xd10 [ 1146.942342] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.946819] ? trace_hardirqs_on+0x10/0x10 [ 1146.951245] ? __f_unlock_pos+0x19/0x20 [ 1146.955397] ? save_trace+0x290/0x290 [ 1146.959325] ? __f_unlock_pos+0x19/0x20 [ 1146.963356] ? __fget+0x210/0x370 [ 1146.966814] ? find_held_lock+0x35/0x130 [ 1146.970972] ? __fget+0x210/0x370 [ 1146.974746] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1146.978891] do_vfs_ioctl+0x7b9/0x1070 [ 1146.982787] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1146.987547] ? lock_downgrade+0x6e0/0x6e0 [ 1146.991702] ? ioctl_preallocate+0x1c0/0x1c0 [ 1146.996424] ? __fget+0x237/0x370 [ 1146.999986] ? security_file_ioctl+0x8f/0xc0 [ 1147.004415] SyS_ioctl+0x8f/0xc0 [ 1147.007767] ? do_vfs_ioctl+0x1070/0x1070 [ 1147.011905] do_syscall_64+0x1eb/0x630 [ 1147.015927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1147.020877] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1147.026073] RIP: 0033:0x458c29 [ 1147.029466] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1147.037569] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1147.044853] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1147.052128] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1147.059714] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1147.067038] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1147.510163] protocol 88fb is buggy, dev hsr_slave_0 [ 1147.510199] protocol 88fb is buggy, dev hsr_slave_0 [ 1147.515445] protocol 88fb is buggy, dev hsr_slave_1 [ 1147.520543] protocol 88fb is buggy, dev hsr_slave_1 [ 1147.530999] protocol 88fb is buggy, dev hsr_slave_0 [ 1147.536301] protocol 88fb is buggy, dev hsr_slave_1 [ 1148.790137] protocol 88fb is buggy, dev hsr_slave_0 [ 1148.795271] protocol 88fb is buggy, dev hsr_slave_1 09:38:49 executing program 4: r0 = syz_open_dev$video(&(0x7f0000000240)='/dev/video#\x00', 0xff, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40000, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={0xffffffffffffffff}, 0x2, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f0000000100)={0xf, 0x8, 0xfa00, {r2}}, 0x10) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x9, @win={{}, 0x0, 0x0, 0x0, 0x0, 0x0}}) 09:38:49 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000380)='/dev/dlm-monitor\x00', 0x2, 0x0) r1 = accept4$inet(r0, &(0x7f0000000100)={0x2, 0x0, @initdev}, &(0x7f0000000440)=0x10, 0x80800) ioctl$VIDIOC_G_FBUF(r0, 0x8030560a, &(0x7f0000000040)={0x10, 0x60, &(0x7f0000000480)="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", {0x5a, 0x3, 0x31324d4e, 0x0, 0x101, 0x3f, 0x8, 0x401}}) fstat(r1, &(0x7f00000014c0)) lstat(&(0x7f0000001580)='./file0\x00', &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x3, &(0x7f0000001640)=[r2, r2, r2]) r3 = getgid() stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = getegid() fstat(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000300)={0x0, 0x0, 0x0}, &(0x7f0000000400)=0xc) setgroups(0x7, &(0x7f0000001480)=[0x0, r3, r4, r5, r6, r7, r8]) mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000340)='devtmpfs\x00', 0x0, 0x0) r9 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) lseek(r9, 0x80000000000, 0x0) 09:38:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000080)=""/92) ioctl(r0, 0x2000001000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") ioctl$VIDIOC_S_CROP(r1, 0x4014563c, &(0x7f0000000100)={0xf, {0x8, 0x5, 0x9, 0x101}}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) syz_init_net_socket$llc(0x1a, 0x3, 0x0) syncfs(r1) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000008c0)=@nat={'nat\x00', 0x19, 0x2, 0x268, [0x20000540, 0x0, 0x0, 0x20000748, 0x20000778], 0x90, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]}, 0x2e0) 09:38:49 executing program 5 (fault-call:5 fault-nth:18): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:49 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) r2 = dup2(r1, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() setsockopt$inet6_buf(r0, 0x29, 0x23, &(0x7f00000000c0)="dc", 0x1) ptrace$setopts(0x4206, r3, 0x0, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000040)={0x5, 0xfffffffffffffe00, 0x4, 0x9, 0x3, 0x3, 0x1, 0x5, 0x8, 0xffff, 0x1000}, 0xb) tkill(r3, 0x1000000003c) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000000080)="5e8be0b1bec612b7524c22e535948bd4", 0x10) fcntl$setstatus(r0, 0x4, 0x42803) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ptrace$getenv(0x4201, r3, 0x80, &(0x7f0000000140)) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r2, 0x4010ae74, &(0x7f0000000100)={0xfffffffffffffffc, 0x80000001, 0x2}) fcntl$setstatus(r0, 0x4, 0x800) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") 09:38:49 executing program 0: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000100)='/dev/capi20\x00', 0x2002000000be, 0x0) ioctl$DRM_IOCTL_VERSION(0xffffffffffffffff, 0xc0406400, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xeb, &(0x7f0000000180)=""/235}) readv(r0, &(0x7f0000000280), 0x78) fsetxattr$security_smack_entry(r0, &(0x7f0000000000)='security.SMACK64\x00', &(0x7f0000000040)='(trusted\x00', 0x9, 0x1) 09:38:49 executing program 3: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) listen(r0, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) 09:38:49 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x7) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ubi_ctrl\x00', 0x100fff, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x0, r1}) write(r0, &(0x7f0000000480)="2300000014000707030f00c0f635c63f01215503000000000000000100f5fe0012ff00", 0x23) 09:38:49 executing program 2: r0 = socket$inet(0x10, 0x2, 0x401) sendmsg(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000080)="24000000010207041dfffd946fa2830020200a0009000200001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 09:38:49 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0xffda, 0x20000802, &(0x7f00000000c0)={0x2, 0x10004e26, @dev={0xac, 0x14, 0x14, 0xa}}, 0x245) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='ip6_vti0\x00', 0x10) sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x54280, 0xad) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f00000001c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000100), 0x4, r2, 0x30, 0x1, @ib={0x1b, 0xbe6, 0x401, {"f32f2b0d871e97c25393386531b70816"}, 0x80000000, 0x5, 0x401}}}, 0xa0) shutdown(r0, 0x1) ioctl$BLKIOOPT(r1, 0x1279, &(0x7f0000000280)) 09:38:49 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000180)="0adc1f123c123f319bd070") ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000000380)=ANY=[@ANYBLOB="03005e7348dafdc502dac598fdb371cf191aa200b1ea49ede91b23779440d548757123dab1fb69f6f7c7925ab783ae2bc4a6234b1e39885f92bbe6f38bd710e86d501f1be520e4ea25baa3027b7c9490f348b6f1f998397415ae500e3ad432291a34"]) r2 = syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x80000001, 0x402000) ioctl$KDGKBENT(r2, 0x4b46, &(0x7f00000002c0)={0x0, 0x6, 0x6}) statfs(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=""/111) bind$inet(r0, &(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x1d, &(0x7f00000000c0)=0xf8, 0x4) socket$alg(0x26, 0x5, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0xffffffd8) sendto$inet(r0, 0x0, 0xaf, 0x20008800, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000300)={'icmp6\x00'}, &(0x7f0000000340)=0x1e) fsetxattr$security_evm(r2, &(0x7f0000000400)='security.evm\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="024818e34887722efd0000000000"], 0xe, 0x3) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000003a40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x114}}], 0x789, 0x2, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000480)='/dev/uhid\x00', 0x2, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000100)=0x1, 0x4) 09:38:49 executing program 2: syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) unshare(0x80403fe) ioctl$KDENABIO(r0, 0x4b36) r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='schedstat\x00') kexec_load(0x2, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="10187ca4dbdc712f8f9e1709f5da1eb20a8cb35a6b2250ad26899f9a79c02a51092c9fe734c9cdcde149e356e4149677e1f748babcea89e13667c632799ff434d91221dd0ed4b50602c243a8", 0x4c, 0x0, 0x9}, {&(0x7f0000000100)="45dd92345081b11ce12430aef12c64bd7c0732b2116b07178a01acb457", 0x1d, 0x0, 0xee8f}, {&(0x7f0000000380)="ecd54a58b281f6eb1d8733fa9df32e99e1e050e02794794bbbe24fc4dddae81f09579114b015d2e2e9cd10d319eb0ad88cb83e87b06a608a9b514eda1371e1edfb691c8ff7df9432e9f2f4187fdebe6bed607d66a282e26f62cff1b9f309843b7fa7c6c617e1fa4ca91d4a0611be178c5a96a81da3b08cd517e1a673599d662389f086b73ae4904aed914c32146b5f9309c097d417cccef264bb716dd40e515faacc6cba5318757e83ff6eba2d162198dc44a0399e87822f8c740538ad82e503351efe3f992277288126bad2a14344c1f36320860304b9e856b2adf04c95f6e604f53d4aa8cd1ee662cff0", 0xeb, 0x3, 0x6}], 0x280000) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000500)={0x20, 0x5, 0x3, 'queue1\x00', 0xaf1}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0) socket$rxrpc(0x21, 0x2, 0xa) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000200)={0x0, 0xffffffffffffffe1}, &(0x7f0000000280)=0x8) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000005c0)=@assoc_value={r3, 0x4}, 0x8) ioctl$CAPI_GET_FLAGS(r0, 0x80044323, &(0x7f0000000040)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) 09:38:49 executing program 4: ioctl$SIOCNRDECOBS(0xffffffffffffffff, 0x89e2) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x203, 0x0) ioctl$RTC_RD_TIME(r0, 0x80247009, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x163882) write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="000000f0001b316b43f6ca2ce290e2e8d50104000000000100000000dcdf6c68a94a86072f75be9084baa5b5db0700"], 0x2b) read$rfkill(r1, 0x0, 0x5) munlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000) connect$unix(r0, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) setsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000040)=0xffff, 0x4) getsockopt$netrom_NETROM_N2(r0, 0x103, 0x3, &(0x7f0000000080)=0x1000, &(0x7f00000000c0)=0x4) 09:38:49 executing program 0: socket$nl_route(0x10, 0x3, 0x0) clone(0x13102001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x40000008, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x11) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x2000000000003, 0x36}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x21, r0, 0x0, 0x0) 09:38:49 executing program 1: syz_emit_ethernet(0xe, &(0x7f00000003c0)={@remote, @broadcast, [], {@generic={0x88a8}}}, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) [ 1149.466754] FAULT_INJECTION: forcing a failure. [ 1149.466754] name failslab, interval 1, probability 0, space 0, times 0 [ 1149.496579] CPU: 0 PID: 3649 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1149.503578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1149.513163] Call Trace: [ 1149.515842] dump_stack+0x138/0x19c [ 1149.519487] should_fail.cold+0x10f/0x159 [ 1149.524016] should_failslab+0xdb/0x130 [ 1149.528004] kmem_cache_alloc+0x2d9/0x780 [ 1149.532153] ? __lock_acquire+0x5f9/0x45e0 [ 1149.536490] mmu_topup_memory_caches+0x86/0x320 [ 1149.541258] kvm_mmu_load+0x21/0xd50 [ 1149.544993] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1149.549753] vcpu_enter_guest+0x2ea0/0x5270 [ 1149.554073] ? save_trace+0x290/0x290 [ 1149.557985] ? lock_downgrade+0x6e0/0x6e0 [ 1149.562130] ? find_held_lock+0x100/0x130 [ 1149.566363] ? emulator_read_emulated+0x50/0x50 [ 1149.571030] ? lock_acquire+0x16f/0x430 [ 1149.575003] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1149.580014] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1149.584860] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1149.589997] kvm_vcpu_ioctl+0x401/0xd10 [ 1149.593985] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1149.598221] ? trace_hardirqs_on+0x10/0x10 [ 1149.604030] ? __f_unlock_pos+0x19/0x20 [ 1149.608002] ? save_trace+0x290/0x290 [ 1149.611807] ? __f_unlock_pos+0x19/0x20 [ 1149.615780] ? __fget+0x210/0x370 [ 1149.619306] ? find_held_lock+0x35/0x130 [ 1149.623472] ? __fget+0x210/0x370 [ 1149.626915] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1149.631066] do_vfs_ioctl+0x7b9/0x1070 [ 1149.634960] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1149.639721] ? lock_downgrade+0x6e0/0x6e0 [ 1149.643890] ? ioctl_preallocate+0x1c0/0x1c0 [ 1149.648448] ? __fget+0x237/0x370 [ 1149.651898] ? security_file_ioctl+0x8f/0xc0 [ 1149.656564] SyS_ioctl+0x8f/0xc0 [ 1149.660111] ? do_vfs_ioctl+0x1070/0x1070 [ 1149.664366] do_syscall_64+0x1eb/0x630 [ 1149.668348] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1149.673276] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1149.678508] RIP: 0033:0x458c29 [ 1149.681691] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1149.689566] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1149.696832] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1149.704102] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:38:50 executing program 5 (fault-call:5 fault-nth:19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:50 executing program 1: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="2c64656d5f752c6673636f6e74ecb6743d73000000000000000000000000000093b80512019cbb89655ea7ced14060df977999d54a5710f4645b62ba5d33eb326a9e0cf502691202adce0befe9bb00011dde95ac42fde48d62abaab3158951b7bcdb7ec09ffa799c159d2738f90379d38ea5a865f802166236369b27f3e627709d5a88f8b6197fad53a9e57b7314584ebc3db9fda697ef3658724b423f950100010000000000c252b7b56228aa98d98316edbd678ebf0a48a41b4adfd03884f5c440f0187cc00bc316b746f296d0f1c3b01abe710000000000ac93993b1cb812b4f8d37c4aaf50c7474bbce339e0e9a5917f4e37d4"]) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, &(0x7f00000002c0)) 09:38:50 executing program 2: openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x29, 0x6, 0x0, {0x6, 0x3}}, 0x29) 09:38:50 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000040)={r0}) accept4$packet(r1, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x800) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000100)={0x0, 0x8001}, &(0x7f0000000140)=0x8) setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000200), 0x4) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000180)={r2, 0x9}, &(0x7f00000001c0)=0x8) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2a, 0x34, 0x0, 0x0, 0xc2000000}}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) write$P9_RREADDIR(r1, &(0x7f0000000240)={0x87, 0x29, 0x2, {0x0, [{{0x80}, 0x81, 0x2, 0x7, './file0'}, {{0x1, 0x4, 0x6}, 0x7, 0x4fee6b83, 0x7, './file0'}, {{0x14, 0x1, 0x3}, 0x16318a5, 0x0, 0x7, './file0'}, {{0x85, 0x3, 0x6}, 0x1, 0x0, 0x7, './file0'}]}}, 0x87) [ 1149.711456] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1149.718805] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet(0x2, 0x4000080000000001, 0x0) lseek(r0, 0x0, 0x5) syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') bind$inet(r1, &(0x7f0000000c80)={0x2, 0x3, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fc, &(0x7f0000000100)={0x2, 0x3, @loopback}, 0x10) r2 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000080)={0x401, 0x66b, 0xcd6, 0xfffffffffffffffe, 0x6, 0x4b}) sendto$inet(r1, &(0x7f00000001c0)="1a8c443d3a568c81cc096aa87ddab0f1f182da383fd71795f41053261e63b0b9f1283f7431b6146106716c21b43625f9194bf4b6a5dba53c46b82862a2f801121cda7e6be8fd507bb1545de629746d878f10be8036e98a274f81940d8831eb71596cdf17e160c992140c9dc81362f019f017b7a9d4990a38b37b578476090545245d", 0x82, 0x0, 0x0, 0x0) userfaultfd(0x80000) readv(r1, &(0x7f0000000780)=[{&(0x7f0000000340)=""/188, 0xbc}], 0x1) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) close(r1) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000140)={0x1}) [ 1149.805649] FAULT_INJECTION: forcing a failure. [ 1149.805649] name failslab, interval 1, probability 0, space 0, times 0 [ 1149.818441] CPU: 1 PID: 3670 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1149.825753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1149.835315] Call Trace: [ 1149.838012] dump_stack+0x138/0x19c [ 1149.841755] should_fail.cold+0x10f/0x159 [ 1149.846016] should_failslab+0xdb/0x130 [ 1149.850010] kmem_cache_alloc+0x2d9/0x780 09:38:50 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000c40)='devpts\x00:]\xa1Ex\xa1\x10nCn\x8f\x00\xc9\xab\xff\x0fsue\xef\x0e,y\xdbx\x14\xfcPAs\xae\xf5\xb3\xa7\xb5!\xfb\x86C\xfd5\xdf\x9aK\x9a\r\xc1q$\x10\x1d~\xb8\x94\x87\xaeE\xeex\xd9\x17\xcc\xb9;\xf1\xb7\xe1z\x8a*\xd2W\xfca\x87\x94\xf7\xa9\xe86\x93\xdaa\xb3\xe6K\xccA\xc0\xad\x16\xbd\x94\x8eQ\xd5\x0e0\xbe\"Z\xd1\x88p\xae\xb8\xcf&\xf2xG\x99\xb1\xb5\x13j\x9a\xca\x7f\xbdr\xaa\x9a]|\x19\xf7\x92\x99Y\xd3\xe0\xea7\x1e\x1e;]\xc1|f_\xea', 0x0, 0x0) r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x5, 0x208100) write$selinux_create(r0, &(0x7f00000000c0)=@objname={'system_u:object_r:var_lib_t:s0', 0x20, 'unconfined', 0x20, 0x7, 0x20, './file0\x00'}, 0x47) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x20, 0x0) 09:38:50 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x50080, 0x0) ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000100)={0xc, 0x7, 0x3, 0x4800, 0xffffffffffffff9c}) close(r0) pipe(&(0x7f00000000c0)) ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x81) readv(r0, &(0x7f0000000600)=[{&(0x7f0000000040)=""/7, 0x7}], 0x1) [ 1149.854270] ? __lock_acquire+0x5f9/0x45e0 [ 1149.858618] mmu_topup_memory_caches+0x86/0x320 [ 1149.863321] kvm_mmu_load+0x21/0xd50 [ 1149.867054] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1149.871922] vcpu_enter_guest+0x2ea0/0x5270 [ 1149.876275] ? save_trace+0x290/0x290 [ 1149.880437] ? lock_downgrade+0x6e0/0x6e0 [ 1149.884595] ? find_held_lock+0x100/0x130 [ 1149.888844] ? emulator_read_emulated+0x50/0x50 [ 1149.893523] ? lock_acquire+0x16f/0x430 [ 1149.897600] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1149.902725] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1149.907576] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1149.912705] kvm_vcpu_ioctl+0x401/0xd10 [ 1149.916801] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1149.920953] ? trace_hardirqs_on+0x10/0x10 [ 1149.925187] ? __f_unlock_pos+0x19/0x20 [ 1149.929154] ? save_trace+0x290/0x290 [ 1149.932962] ? __f_unlock_pos+0x19/0x20 [ 1149.936941] ? __fget+0x210/0x370 [ 1149.940396] ? find_held_lock+0x35/0x130 [ 1149.944558] ? __fget+0x210/0x370 [ 1149.948272] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1149.952406] do_vfs_ioctl+0x7b9/0x1070 [ 1149.956281] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1149.961113] ? lock_downgrade+0x6e0/0x6e0 [ 1149.965250] ? ioctl_preallocate+0x1c0/0x1c0 [ 1149.969656] ? __fget+0x237/0x370 [ 1149.973115] ? security_file_ioctl+0x8f/0xc0 [ 1149.977510] SyS_ioctl+0x8f/0xc0 [ 1149.980866] ? do_vfs_ioctl+0x1070/0x1070 [ 1149.985045] do_syscall_64+0x1eb/0x630 [ 1149.989369] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1149.994984] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1150.003831] RIP: 0033:0x458c29 [ 1150.007194] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1150.015233] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1150.022599] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1150.031335] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1150.038906] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1150.046168] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:50 executing program 3: r0 = geteuid() stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r0, r1) setxattr$security_capability(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.capability\x00', &(0x7f00000001c0)=@v3={0x3000000, [{0xffff, 0x9}, {0xffffffff7fffffff, 0x16c5}], r1}, 0x18, 0x3) syz_mount_image$gfs2(&(0x7f0000000140)='gfs2\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={[{@lockproto_nolock='loc9proto=lock_nolock'}]}) 09:38:50 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl$int_out(r0, 0x81008000451b, 0x0) 09:38:50 executing program 2: setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000002000)={{0xa, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast2}}, 0xc2) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000002000)={0x0, 0x4000a}, 0x19f) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x40, &(0x7f0000001fde), 0x11) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x402400, 0x0) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000040)={{0xfffffffffffffffe, 0xcac}, {0xfe00000000000000, 0x4}, 0x7ff, 0x6, 0x9}) [ 1151.750136] net_ratelimit: 8 callbacks suppressed [ 1151.750141] protocol 88fb is buggy, dev hsr_slave_0 [ 1151.750159] protocol 88fb is buggy, dev hsr_slave_0 [ 1151.755124] protocol 88fb is buggy, dev hsr_slave_1 [ 1151.760185] protocol 88fb is buggy, dev hsr_slave_1 [ 1151.765324] protocol 88fb is buggy, dev hsr_slave_0 [ 1151.781001] protocol 88fb is buggy, dev hsr_slave_1 09:38:52 executing program 0: 09:38:52 executing program 5 (fault-call:5 fault-nth:20): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:52 executing program 2: r0 = userfaultfd(0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0xd, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000140)="0afdff123c123f319bc070") connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2}, 0x1c) dup3(r2, r0, 0x82000) close(r0) 09:38:52 executing program 4: open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0) syz_mount_image$ntfs(&(0x7f00000001c0)='ntfs\x00', &(0x7f0000000200)='./bus\x00', 0x2, 0x5, &(0x7f0000000800)=[{&(0x7f00000008c0)="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", 0x1000, 0x2}, {&(0x7f0000000240)="0be4ec111f", 0x5, 0x4}, {&(0x7f0000000440)="bcce7e57fba4f1007c640176381e488840a303f6d7bd4e461eb4fbae0cbb34e226363c0d81eed8e4cf42c4960bb40f164e09b50b549d776a535e82dac46a28a38cef276b2243393b281472607a7788e76a5c41e787ff2101543f86faca9256a525e682ae53837b097f60c0d6a21ba72ed11f", 0x72, 0x3}, {&(0x7f0000000680)="dbd4bad948f84dad97dc81fd0467a74b860a6a2f09fa051867f4bdc85035d76c7dc5967fadee90ece74a1c10fd8d41f0112155c48b9190be45668079e6036bb5d4cc12b63e95a2f1339fb91340ec947e8f2a398abb57dbb61ad46f076126c2f6ffa08d9c9603e8a1c508178e092b88c032260206eb455f9028f01b8a2fe64266addd7ddfddd6ad9c1d6d75ac6550a72a8ffa62f132089ed0658d5895de3c48c66889f3915087b8d1ebe4d68a6447321e624e0228883279107d41ee120ef28925ed79adc4df46f1e7d73557", 0xcb, 0x63}, {&(0x7f00000018c0)="5757e0cf60275bfdb2834bc9ea177776817a83ad76a4b41054601ca18e8f493f2f6d9b183e11bc629749aff21d75b817e736d484967a68aab5018e0cb4b78d1903c7523cb0cff6688ffdbe949d9aabea2d023ff5f42a4a1788bf9f550dce90f84ff130f3ab8aeaa0190bb3784d2de9d2b195231db9353eb7849bf19f69d386eadfa80b5645df167511c7dd54945b1f37ac2232967bc3ebc1eeb6a119f74573bea49ced93522cd54e4bf312692c91e6d171b0852c3d20da5710a41c5dfb8cdb8ee6af5fe68216a221419e9bbc46e04ccaca706383b2fda4bc64b92ebb518f0302834ecb5da8e6c797d6d66b11cea7d3", 0xef, 0x4}], 0x88004, &(0x7f00000019c0)={[{@umask={'umask', 0x3d, 0x1e000}}, {@show_sys_files_yes='show_sys_files=yes'}, {@fmask={'fmask', 0x3d, 0x100000000}}], [{@permit_directio='permit_directio'}, {@subj_type={'subj_type', 0x3d, 'trusted.overlay.redirect\x00'}}, {@hash='hash'}, {@measure='measure'}, {@hash='hash'}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}]}) r0 = open(0x0, 0x18f040, 0x4) ioctl$KDSKBMETA(r0, 0x4b63, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xed}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(0x0) r1 = socket$inet6(0xa, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x0, 0x74f, 0x1000) r2 = creat(&(0x7f00000002c0)='./bus\x00', 0x4) rmdir(&(0x7f0000000580)='./bus\x00') mkdir(&(0x7f0000000100)='./bus\x00', 0x21) r3 = socket$inet6(0xa, 0x3, 0x6) sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, 0x0, 0x801) setsockopt$inet6_int(r0, 0x29, 0xcf, &(0x7f0000000140), 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000880)={@remote, 0x800, 0x0, 0x3, 0x1, 0x0, 0x10001}, 0x20) fcntl$setownex(r2, 0xf, &(0x7f0000000180)={0x2}) fsetxattr$trusted_overlay_redirect(r1, &(0x7f00000007c0)='trusted.overlay.redirect\x00', &(0x7f0000000400)='./bus\x00', 0xffffffffffffff69, 0x2) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000000)={@local, 0x0, 0x0, 0xfe, 0x3}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0) connect$inet6(r3, &(0x7f0000000500)={0xa, 0x0, 0x40d7, @rand_addr="6e63f020f961d992c0547d2b2bbe922e", 0x7ff}, 0x1c) r4 = syz_open_procfs(0x0, &(0x7f0000000340)='net/ip6_flowlabel\x00n\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa1\x91\x98\xe9\x1f\nMCi|+\xcdw\xf0\x176Z\xf1`\xac\xf3;\xd6d2\xeb\xe5\f\x0e\x8b\xda\xf7\xfc9\xfe\xff4\xef\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7+0\x97\x84;\\\xda\xc4\x80\xc3\xb18N\xbfY%\x05\xf8\x85\x89\xfc\xd2\xd7') setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4) sendfile(r3, r4, &(0x7f00000000c0)=0x202, 0x8) add_key$keyring(&(0x7f0000000600)='keyring\x00', &(0x7f0000000640)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) socket$unix(0x1, 0x2, 0x0) 09:38:52 executing program 3: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x90000, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x4e22, 0x80000000, @mcast1, 0xc16}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000140)={r1, 0x1, 0x30, 0x0, 0x8}, &(0x7f0000000180)=0x18) r3 = syz_open_dev$adsp(&(0x7f0000000380)='/dev/adsp#\x00', 0x1000, 0x5a1200) setsockopt$inet_dccp_buf(r3, 0x21, 0xf, &(0x7f00000001c0)="a2555309f1672c57bb015417ce31731368a67aeb1615055407823e8a2e88120c0f80fdcee71c69e1856e91e15ef7ca4ad7266faab1d4cfd8cd6d6fa18361651f2dcf288cd1ca41c3d22192f3fc802e86d185503b70caff176b2be5bb1318a16af93210a22eadc5d35d1a1e5b1139f3249f04b171641961bb236556cec043e476fd8ab0d09dfcaa4e6763a757abbfb30d20ec37560fe6422c7b733fb8d5b9630f18b02aef4edca955a835e71fe85435", 0xffffffffffffff4b) openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x480, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000340)='highspeed\x00', 0xa) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB="0300051a4fd001ca948b721a17c1620d9412bb9408edda8dda7264a57b753ff34bcdc1b482e7d66279387ca61ccd0777c58e48716bdf8b68e7575a7f71a49ff4484dac878d968a8ddc77bcb2bb818bf23e3f6996e23e10014cfa1c36ba24faec8822aa53877f49eb1ba03acb1107164200"/122], &(0x7f00000003c0)=0x12) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000002c0)={r2, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x13}}]}, &(0x7f0000000300)=0x10) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000400)={0x0, 0xb0fd, 0x5, 0xa0, &(0x7f0000ffe000/0x2000)=nil, 0x1}) 09:38:52 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x3, 0x10000) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000040)={0xa, @sdr={0x7473775b, 0x9}}) r1 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/current\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x4e22, @multicast2}]}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000240)={r2, 0x0, 0x80, 0xfffffffffffffffd}, &(0x7f0000000280)=0x10) r4 = syz_open_dev$usb(&(0x7f00000002c0)='/dev/bus/usb/00#/00#\x00', 0x3ff, 0x400) setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000300)={r3, 0x8, 0x5, 0x100}, 0x10) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000340)={0xaa, 0x20}) getsockopt$bt_hci(r4, 0x0, 0x0, &(0x7f0000000380)=""/38, &(0x7f00000003c0)=0x26) ioctl$SCSI_IOCTL_GET_PCI(r4, 0x5387, &(0x7f0000000400)) setsockopt(r4, 0x3, 0x4, &(0x7f0000000440)="0b138a7255133fd3be470896abd42a557e1b4f24038833", 0x17) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000004c0)={r2, 0x10, &(0x7f0000000480)=[@in={0x2, 0x4e22, @remote}]}, &(0x7f0000000500)=0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000580)='TIPCv2\x00') sendmsg$TIPC_NL_MON_GET(r4, &(0x7f0000000780)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x3100}, 0xc, &(0x7f0000000740)={&(0x7f00000005c0)={0x160, r5, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x34, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7fff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x100}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x64, 0x5, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100000000}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_NET={0x2c, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xa2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffffffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1000}]}, @TIPC_NLA_SOCK={0x40, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x337}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x82}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6a1789a}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MON={0x2c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffffffffffffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10000}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1f}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1000}, @TIPC_NLA_MON_REF={0x8}]}]}, 0x160}, 0x1, 0x0, 0x0, 0x4000040}, 0x800) fsetxattr$trusted_overlay_origin(r0, &(0x7f00000007c0)='trusted.overlay.origin\x00', &(0x7f0000000800)='y\x00', 0x2, 0x1) ioctl$KVM_S390_UCAS_MAP(r4, 0x4018ae50, &(0x7f0000000840)={0xcf, 0x9, 0x5}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r4, 0x84, 0x74, &(0x7f0000000880)=""/52, &(0x7f00000008c0)=0x34) ioctl$KVM_DIRTY_TLB(r4, 0x4010aeaa, &(0x7f0000000900)={0x7ff, 0x3}) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000980)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000940)={0xffffffffffffffff}, 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f00000009c0)={0x14, 0x88, 0xfa00, {r6, 0x1c, 0x0, @in6={0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, [], 0x2b}, 0x25b8}}}, 0x90) ioctl$TUNSETOFFLOAD(r4, 0x400454d0, 0x8) futex(&(0x7f0000000a80), 0x8b, 0x0, &(0x7f0000000ac0)={0x0, 0x989680}, &(0x7f0000000b00)=0x2, 0x1) getsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000b40)={r2, 0x8, 0x81, 0x4}, &(0x7f0000000b80)=0x10) ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000bc0)={0x0, r4}) getsockopt$ax25_int(r4, 0x101, 0xd, &(0x7f0000000c00), &(0x7f0000000c40)=0x4) ioctl$sock_bt_bnep_BNEPCONNADD(r4, 0x400442c8, &(0x7f0000000c80)={r4, 0x1000, 0x3, "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"}) write(r4, &(0x7f0000001cc0)="80c83d356fbcb16e283501bbd568bdcb", 0x10) getsockopt$bt_BT_CHANNEL_POLICY(r4, 0x112, 0xa, &(0x7f0000001d00)=0x20000000, &(0x7f0000001d40)=0x4) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f0000001d80)={r3, 0x92, "46155e1175fca5fcee44c02c645cbb2db789beafe04b117f6b0b02ea4ceecd0d471a9bb0d5a1933340f593c5d4e48908dffd0da5668a39a9332bf75b913d8f0fd5ea604590a3f8591445295442ff98d6e32b9d49f6bfdc1281ac65ac9adb5ca112b3628caeaf60b697bc884da73159c8c9890e666ef190ce1fb627c1128623a8958ae6c5bc55751f167f7643527e07d1ffc1"}, &(0x7f0000001e40)=0x9a) 09:38:53 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c) r1 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0xff, 0x40) setsockopt$X25_QBITINCL(r1, 0x106, 0x1, &(0x7f0000000100)=0x1, 0x4) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000003c0)='ip6_vti0\x00', 0x10) r2 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r2, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) sendmmsg(r2, &(0x7f0000005fc0), 0x800000000000059, 0x5) 09:38:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000000180)={[0x11000], 0x0, 0x3e}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:53 executing program 3: r0 = socket$inet(0x2, 0x3, 0x2) sendmmsg(0xffffffffffffffff, &(0x7f0000001c40), 0x1a6, 0x9) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x2, 0x100) write$P9_RLCREATE(r1, &(0x7f0000000140)={0x3de, 0xf, 0x1, {{0x20, 0x4, 0x7}}}, 0x18) sendmmsg(r0, &(0x7f00000038c0)=[{{&(0x7f0000000040)=@nl=@unspec, 0x80, &(0x7f0000000100), 0x0, &(0x7f0000000380)}}, {{&(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x80, &(0x7f0000000240), 0x2b5, &(0x7f0000000480)}}], 0x2, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000180)={0x0}) ioctl$DRM_IOCTL_LOCK(r1, 0x4008642a, &(0x7f00000001c0)={r2, 0xb87b832089acf60a}) 09:38:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000415fc8)={0x0, 0x0, &(0x7f00000daff0)={&(0x7f0000417e08)=@newsa={0x13c, 0x10, 0x203, 0x0, 0x0, {{@in, @in=@multicast1}, {@in6=@loopback, 0x0, 0x33}, @in=@remote={0xac, 0x14, 0xffffffffffffffff}, {}, {}, {}, 0x0, 0x0, 0x2, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x101000, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r2, 0xc058534f, &(0x7f0000000080)={{0x1, 0xfffffffffffffffd}, 0x1, 0x7, 0x20, {0x100000000, 0xfff}, 0xfffffffffffffffe, 0x8}) [ 1152.550178] audit: type=1804 audit(1555925933.064:164): pid=3722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.4" name="/root/syzkaller-testdir527479363/syzkaller.H7x1lF/815/bus" dev="sda1" ino=17153 res=1 [ 1152.568681] raw_sendmsg: syz-executor.3 forgot to set AF_INET. Fix it! [ 1152.592771] FAULT_INJECTION: forcing a failure. 09:38:53 executing program 0: stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, 0x0, &(0x7f0000000200)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_execute_func(&(0x7f0000000000)="f3e100def9575c8ac2c2c9734e424a2664f0ff064a460f3038082e67660e50e94d00c9c9c4625dbae5feabc4aba39ddf4507e50c420fae9972b571112d02") r1 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x0, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x3f, &(0x7f0000000300)=@srh={0xff, 0x2, 0x4, 0x1, 0xfffffffffffff30b, 0x38, 0x97d, [@rand_addr="3d3d563c53340c24476448c302bf96e3"]}, 0x18) openat$vsock(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vsock\x00', 0x12200, 0x0) r2 = fcntl$dupfd(r0, 0x0, r0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000100)={{{@in=@multicast2, @in=@multicast1}}, {{}, 0x0, @in=@multicast1}}, &(0x7f0000000240)=0xe8) [ 1152.592771] name failslab, interval 1, probability 0, space 0, times 0 09:38:53 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$unix(0x1, 0x3, 0x0) bind$unix(r1, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) sendmsg$unix(r1, &(0x7f0000000400)={&(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000f5000000010000007bf742a75342631cf239a1ca25d206fd142372156d9b36dbb24a398a14dedb0898224ff417167659dd6d1b228b133923d0057ae066424c250b08fb7966cd7424adcee3", @ANYRES32=r1, @ANYBLOB='\x00\x00 \x00'], 0x18}, 0x0) recvmmsg(r1, &(0x7f0000002380)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001c80)=""/186, 0x10}}], 0x1, 0x0, 0x0) [ 1152.625309] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1152.639321] CPU: 0 PID: 3716 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1152.646309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1152.655673] Call Trace: [ 1152.658284] dump_stack+0x138/0x19c [ 1152.661931] should_fail.cold+0x10f/0x159 [ 1152.666099] should_failslab+0xdb/0x130 [ 1152.670094] kmem_cache_alloc+0x2d9/0x780 [ 1152.674253] ? __lock_acquire+0x5f9/0x45e0 [ 1152.678512] mmu_topup_memory_caches+0x86/0x320 [ 1152.683194] kvm_mmu_load+0x21/0xd50 [ 1152.686918] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1152.691902] vcpu_enter_guest+0x2ea0/0x5270 [ 1152.696317] ? save_trace+0x290/0x290 [ 1152.700115] ? lock_downgrade+0x6e0/0x6e0 [ 1152.700129] ? find_held_lock+0x100/0x130 [ 1152.700143] ? emulator_read_emulated+0x50/0x50 [ 1152.700153] ? lock_acquire+0x16f/0x430 [ 1152.700164] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1152.700181] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1152.700192] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1152.700211] kvm_vcpu_ioctl+0x401/0xd10 [ 1152.700222] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1152.700231] ? trace_hardirqs_on+0x10/0x10 [ 1152.700240] ? __f_unlock_pos+0x19/0x20 [ 1152.700250] ? save_trace+0x290/0x290 [ 1152.700260] ? __f_unlock_pos+0x19/0x20 [ 1152.708554] ? __fget+0x210/0x370 [ 1152.708567] ? find_held_lock+0x35/0x130 [ 1152.708576] ? __fget+0x210/0x370 [ 1152.708590] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1152.708602] do_vfs_ioctl+0x7b9/0x1070 [ 1152.708614] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1152.708624] ? lock_downgrade+0x6e0/0x6e0 [ 1152.708635] ? ioctl_preallocate+0x1c0/0x1c0 [ 1152.708646] ? __fget+0x237/0x370 [ 1152.708662] ? security_file_ioctl+0x8f/0xc0 [ 1152.797750] SyS_ioctl+0x8f/0xc0 [ 1152.801218] ? do_vfs_ioctl+0x1070/0x1070 [ 1152.805386] do_syscall_64+0x1eb/0x630 [ 1152.809286] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1152.814141] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1152.819528] RIP: 0033:0x458c29 09:38:53 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x3f) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000140)={'team0\x00', 0x0}) setsockopt$inet6_mreq(r0, 0x29, 0x1d, &(0x7f0000000180)={@ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x20}}, r1}, 0xfffffffffffffc1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000000)={{{@in6=@dev, @in=@local, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@loopback, 0x0, 0x33}, 0x0, @in6=@ipv4={[], [], @remote={0xac, 0x14, 0xffffffffffffffff}}}}, 0xe8) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c) [ 1152.822723] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1152.830524] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1152.837886] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1152.845184] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1152.852488] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1152.860170] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1152.872230] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1152.883002] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1152.892900] Dead loop on virtual device ip6_vti0, fix it urgently! 09:38:53 executing program 5 (fault-call:5 fault-nth:21): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x8000, 0x0) ioctl$BLKPBSZGET(r1, 0x127b, &(0x7f0000000040)) ioctl$SG_IO(r0, 0x2285, &(0x7f00000002c0)={0x53, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x6, 0x26, 0x0, &(0x7f0000000280)}) 09:38:53 executing program 4: mmap$binder(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x0, 0x4000001c132, 0xffffffffffffffff, 0x0) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ff8000/0x2000)=nil) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x8000, 0x0) sigaltstack(&(0x7f0000ffc000/0x2000)=nil, 0x0) arch_prctl$ARCH_GET_CPUID(0x1011) 09:38:53 executing program 2: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x4, 0x31, 0xffffffffffffffff, 0x0) r0 = dup(0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000140)={&(0x7f0000000000)=[0x0, 0x0], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x2, 0x8, 0x4, 0x4}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$inet6_int(r1, 0x28, 0x0, 0x0, &(0x7f0000000100)) 09:38:53 executing program 1: perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x1, 0x64002) r1 = getpgrp(0x0) syz_init_net_socket$x25(0x9, 0x5, 0x0) waitid(0xc684cc2848522046, r1, &(0x7f0000000ac0), 0x6, &(0x7f0000000b40)) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000006c0)=@filter={'filter\x00', 0xe, 0x4, 0x390, 0x1e0, 0x0, 0x0, 0x0, 0xc0, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x4, &(0x7f0000000380), {[{{@ip={@remote, @multicast1, 0xffffffff, 0xff, 'veth0\x00', 'syz_tun\x00', {}, {0xff}, 0x5c, 0x2, 0x5}, 0x0, 0x98, 0xc0}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0x1d, 0x8000, 0x7, 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x5, [0x7ff, 0x4, 0x4, 0x4, 0x3f, 0x1], 0x7, 0x7}, {0x4, [0x20, 0x7, 0x9, 0x5874, 0x522, 0x9], 0x8000, 0x2be}}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@inet=@tcpmss={0x28, 'tcpmss\x00', 0x0, {0x3, 0x5}}, @common=@ah={0x30, 'ah\x00', 0x0, {0x8, 0x330}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x8}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000c40)={0x8000, 0x790, 0x3}) write$FUSE_POLL(r0, &(0x7f00000000c0)={0x18, 0x0, 0x3, {0xccc}}, 0x18) ioprio_set$uid(0x3, 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x9, 0x22, 0x7, 0x19, 0x3, 0x9, 0x6, 0xab, 0xffffffffffffffff}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000c00)='/dev/null\x00', 0x100, 0x0) ioctl$PPPIOCGNPMODE(r2, 0xc008744c, &(0x7f0000000040)={0x2f, 0x1}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000180)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f0000000280)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0, 0x0}, &(0x7f0000000300)=0xfffffffffffffd81) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000440)={{{@in=@remote, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@broadcast}}, &(0x7f0000000340)=0xe8) r6 = getuid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000d40)={{{@in6, @in=@remote}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in=@multicast2}}, &(0x7f0000000d00)=0x1b8) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x0, &(0x7f0000000e40)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0067726f75000049643dd8d5d160861a3563279fa1b2c2aa070100000011d63e92d1b81ed61f21dcfa4edabb194ca852f0ab7c7fb62dcce859eeeaa33f5c8acb9fc1e7458550380ed18d66248fd5a5b6bdc4b4aad0b174e81add79d747d253850d0815c164816bd1461a58c199f601c6235a428eaf65", @ANYRESDEC=r4, @ANYBLOB=',blksize=0x0000000000001a00,max_read=0x00000000e0000000,default_permissions,permit_directio,euid=', @ANYRESDEC=r5, @ANYBLOB=',subj_type=nodevvboxnet0security,smackfsroot=/dev/null\x00,subj_type=/dev/dmmidi#\x00,fsmagic=0x0000000080000001,uid=', @ANYRESDEC=r6, @ANYBLOB=',mask=MAY_EXEC,\x00']) 09:38:53 executing program 3: r0 = socket(0x9, 0x0, 0x2) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x2) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(0x0, 0x0, 0x0, r2, 0x0) r4 = syz_open_dev$sg(&(0x7f0000000200)='/dev/sg#\x00', 0x0, 0x163882) write$binfmt_aout(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000d50104000000000100000008dcdf6c68a94a86be9084baa5b5db07000000680000010000000000d03dc6ea94eedd5d69604bac853dda6d5a01a6c736227a5201cf318d8350d0dc84bbebaef2d6c75d"], 0x53) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000100)={0x401, 0x3bba, 0x2, 0x8001}, 0x8) r5 = dup2(r3, r2) ioctl$UI_SET_PHYS(r5, 0x4008556c, &(0x7f0000000340)='syz1\x00') syz_init_net_socket$ax25(0x3, 0x3, 0x8) setsockopt$inet6_udp_encap(r1, 0x11, 0x64, &(0x7f0000000080)=0x3, 0x4) getsockopt$sock_int(r0, 0x1, 0x1e, &(0x7f00000000c0), &(0x7f00000002c0)=0x4) read$rfkill(r4, &(0x7f0000000300), 0xfffffc99) openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x2, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_ax25_SIOCDELRT(r0, 0x890c, &(0x7f0000000240)={@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x6, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @default, @default]}) 09:38:53 executing program 2: perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000240)={'syz'}, &(0x7f0000000300)='\a', 0x1, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000440)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000d80)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000140)=0xd) ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000000)) keyctl$dh_compute(0x17, &(0x7f0000000180)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0x3e3, &(0x7f00000001c0)={&(0x7f0000000040)={'crc32c-intel\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x001\x00'}, &(0x7f00000001c0)}) 09:38:53 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x10000, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'eql\x00', 0x43732e5398416f1a}) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x80000, 0x0) getdents(r1, &(0x7f0000000100)=""/146, 0x92) ioctl$FS_IOC_MEASURE_VERITY(r0, 0x801454fe, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000000)=0x20, 0x4) [ 1153.190315] FAULT_INJECTION: forcing a failure. [ 1153.190315] name failslab, interval 1, probability 0, space 0, times 0 [ 1153.229836] CPU: 0 PID: 3759 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1153.237196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1153.246827] Call Trace: [ 1153.249434] dump_stack+0x138/0x19c [ 1153.253078] should_fail.cold+0x10f/0x159 [ 1153.257355] should_failslab+0xdb/0x130 [ 1153.261366] kmem_cache_alloc+0x2d9/0x780 [ 1153.265642] ? __lock_acquire+0x5f9/0x45e0 [ 1153.269903] mmu_topup_memory_caches+0x86/0x320 [ 1153.274599] kvm_mmu_load+0x21/0xd50 [ 1153.278409] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1153.283169] vcpu_enter_guest+0x2ea0/0x5270 [ 1153.287514] ? save_trace+0x290/0x290 [ 1153.291319] ? lock_downgrade+0x6e0/0x6e0 [ 1153.295476] ? find_held_lock+0x100/0x130 [ 1153.295849] sg_write: data in/out 262577/41 bytes for SCSI command 0x0-- guessing data in; [ 1153.295849] program syz-executor.3 not setting count and/or reply_len properly [ 1153.299626] ? emulator_read_emulated+0x50/0x50 [ 1153.299639] ? lock_acquire+0x16f/0x430 [ 1153.299662] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1153.299680] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1153.299691] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1153.299710] kvm_vcpu_ioctl+0x401/0xd10 [ 1153.299721] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1153.299731] ? trace_hardirqs_on+0x10/0x10 [ 1153.299741] ? __f_unlock_pos+0x19/0x20 [ 1153.299754] ? save_trace+0x290/0x290 [ 1153.299763] ? __f_unlock_pos+0x19/0x20 [ 1153.299774] ? __fget+0x210/0x370 [ 1153.299785] ? find_held_lock+0x35/0x130 [ 1153.299793] ? __fget+0x210/0x370 [ 1153.299811] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1153.384750] do_vfs_ioctl+0x7b9/0x1070 [ 1153.388672] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1153.393631] ? lock_downgrade+0x6e0/0x6e0 [ 1153.398244] ? ioctl_preallocate+0x1c0/0x1c0 [ 1153.402674] ? __fget+0x237/0x370 [ 1153.406197] ? security_file_ioctl+0x8f/0xc0 [ 1153.410791] SyS_ioctl+0x8f/0xc0 [ 1153.414160] ? do_vfs_ioctl+0x1070/0x1070 [ 1153.418485] do_syscall_64+0x1eb/0x630 [ 1153.422374] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1153.427224] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1153.432587] RIP: 0033:0x458c29 09:38:54 executing program 2: r0 = socket(0x10, 0x805, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000340)=@delneigh={0x1c, 0x1d, 0x101, 0x0, 0x0, {0x7}}, 0x1c}}, 0x0) [ 1153.435773] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1153.443570] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1153.450837] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1153.458143] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1153.465419] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1153.472690] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:54 executing program 0: stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, 0x0, &(0x7f0000000200)) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_execute_func(&(0x7f0000000000)="f3e100def9575c8ac2c2c9734e424a2664f0ff064a460f3038082e67660e50e94d00c9c9c4625dbae5feabc4aba39ddf4507e50c420fae9972b571112d02") r1 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x0, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x3f, &(0x7f0000000300)=@srh={0xff, 0x2, 0x4, 0x1, 0xfffffffffffff30b, 0x38, 0x97d, [@rand_addr="3d3d563c53340c24476448c302bf96e3"]}, 0x18) openat$vsock(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vsock\x00', 0x12200, 0x0) r2 = fcntl$dupfd(r0, 0x0, r0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000100)={{{@in=@multicast2, @in=@multicast1}}, {{}, 0x0, @in=@multicast1}}, &(0x7f0000000240)=0xe8) 09:38:54 executing program 1: perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x1, 0x64002) r1 = getpgrp(0x0) syz_init_net_socket$x25(0x9, 0x5, 0x0) waitid(0xc684cc2848522046, r1, &(0x7f0000000ac0), 0x6, &(0x7f0000000b40)) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000006c0)=@filter={'filter\x00', 0xe, 0x4, 0x390, 0x1e0, 0x0, 0x0, 0x0, 0xc0, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x2f8, 0x4, &(0x7f0000000380), {[{{@ip={@remote, @multicast1, 0xffffffff, 0xff, 'veth0\x00', 'syz_tun\x00', {}, {0xff}, 0x5c, 0x2, 0x5}, 0x0, 0x98, 0xc0}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0x1d, 0x8000, 0x7, 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x5, [0x7ff, 0x4, 0x4, 0x4, 0x3f, 0x1], 0x7, 0x7}, {0x4, [0x20, 0x7, 0x9, 0x5874, 0x522, 0x9], 0x8000, 0x2be}}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@inet=@tcpmss={0x28, 'tcpmss\x00', 0x0, {0x3, 0x5}}, @common=@ah={0x30, 'ah\x00', 0x0, {0x8, 0x330}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x8}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000c40)={0x8000, 0x790, 0x3}) write$FUSE_POLL(r0, &(0x7f00000000c0)={0x18, 0x0, 0x3, {0xccc}}, 0x18) ioprio_set$uid(0x3, 0x0, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x9, 0x22, 0x7, 0x19, 0x3, 0x9, 0x6, 0xab, 0xffffffffffffffff}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000c00)='/dev/null\x00', 0x100, 0x0) ioctl$PPPIOCGNPMODE(r2, 0xc008744c, &(0x7f0000000040)={0x2f, 0x1}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000180)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@dev}}, &(0x7f0000000280)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0, 0x0}, &(0x7f0000000300)=0xfffffffffffffd81) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000440)={{{@in=@remote, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@broadcast}}, &(0x7f0000000340)=0xe8) r6 = getuid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000d40)={{{@in6, @in=@remote}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in=@multicast2}}, &(0x7f0000000d00)=0x1b8) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x0, &(0x7f0000000e40)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=r3, @ANYBLOB="0067726f75000049643dd8d5d160861a3563279fa1b2c2aa070100000011d63e92d1b81ed61f21dcfa4edabb194ca852f0ab7c7fb62dcce859eeeaa33f5c8acb9fc1e7458550380ed18d66248fd5a5b6bdc4b4aad0b174e81add79d747d253850d0815c164816bd1461a58c199f601c6235a428eaf65", @ANYRESDEC=r4, @ANYBLOB=',blksize=0x0000000000001a00,max_read=0x00000000e0000000,default_permissions,permit_directio,euid=', @ANYRESDEC=r5, @ANYBLOB=',subj_type=nodevvboxnet0security,smackfsroot=/dev/null\x00,subj_type=/dev/dmmidi#\x00,fsmagic=0x0000000080000001,uid=', @ANYRESDEC=r6, @ANYBLOB=',mask=MAY_EXEC,\x00']) 09:38:54 executing program 4: r0 = socket(0x11, 0x800000003, 0x600081) bind(r0, &(0x7f0000000000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) r1 = dup2(r0, r0) bind$vsock_dgram(r1, &(0x7f0000000080)={0x28, 0x0, 0xffffffff}, 0x10) write$tun(r1, &(0x7f00000010c0)=ANY=[@ANYRESHEX], 0x1) 09:38:54 executing program 5 (fault-call:5 fault-nth:22): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:54 executing program 2: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x638, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0205710, 0x0) 09:38:54 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$cec(&(0x7f0000000200)='/dev/cec#\x00', 0x2, 0x2) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000000240)={r0}) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x101000, 0x0) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f0000000140)=""/91, &(0x7f00000000c0)=0x5b) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r3 = socket$inet6_sctp(0xa, 0x80000000000001, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000100)={0x0, 0x3}, 0x10) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000280)={0x0, @remote, @remote}, &(0x7f00000002c0)=0xc) sendmsg(r1, &(0x7f0000001580)={&(0x7f0000000300)=@xdp={0x2c, 0x4, r4, 0x18}, 0x80, &(0x7f0000001540)=[{&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000001380)="90133bcfcc84ef2c6b933af6f76f99dd6b78a29e15449d087bb8eea0fdb0a4f789e81f5b26bb8f6cef7e773282d7f36c08d46e607f9ecc22dbc97701f5f48eeeb4953f0ae76952b4ea11f66a4093a2e04bb0a6bf1bc4d7181a6aa7d593fa3a80a86c70705e0258a29bffecd09082f7c51088d010686d1ec78943c71105996906a257fe4207759b7ef6839a36a26c75270a56255324f6235accaac83cd415328baed95584620dbf2da117d758ac78e93f129099e3495f29eb5c4ca621f86070592b0c57065909f31f8e5492947fbbbea39c7f76b243c13056dc6e5d7d1c884e2e44627adbb68e60236d85526f0150ef654d8404a754510b0a", 0xf8}, {&(0x7f0000001480)="00024937cf7cbc2d69167d22c310d1bb785c26550b9a86cd18fee3de7909ea4c66d015178b17829f30dbde31b9711d2376ec84c400cb1c7445381d20d1258171543794c6ebb7fca69ecc9392f3722deeffea90170e8ba612fe879ac0fc29ee1dff7b2cd87d3a1a502402870aad1b885170217b046d3e569fb8b2106baf5ff7224af71c8bc76a9511f6b18dee8ec01ccad8d3c9bfd5e43edb07b2b4721339ea672c106ba6b9beb6ea", 0xa8}], 0x3}, 0x4) connect$inet6(r3, &(0x7f00008c0000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg(r3, &(0x7f000060d000)=[{{0x0, 0x0, &(0x7f0000c38ff0)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1}}], 0x1, 0x0) write$P9_RVERSION(r2, &(0x7f00000001c0)={0x15, 0x65, 0xffff, 0x3, 0x8, '9P2000.u'}, 0x15) 09:38:54 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000942000)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000d4effc)=0x1, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) syz_open_dev$dspn(0x0, 0x4, 0x0) sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) sendto$inet(r0, &(0x7f0000000040), 0xfffffea5, 0x40000cb, 0x0, 0x0) 09:38:54 executing program 2: lsetxattr$security_smack_transmute(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000080)='TRUE', 0x4, 0x2) stat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = geteuid() syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffffffffffffd, 0x4, &(0x7f00000004c0)=[{&(0x7f0000000200)="d0f6145530b1773a54eafda7834630fdc46a6dca337befb3f9fbc88a2fb9e7648165a8daca45faaa", 0x28, 0x8}, {&(0x7f0000000240)="c54c20d6d43cb3a7bac46098f7cf122556f182449d", 0x15, 0x1}, {&(0x7f0000000300)="954758e989e1084bf7571177407effb0d3ef8ba5ce1d106a3b4c5e721060a99203bb1998d332c4a02b7969c3e3cd574dd0afe6eff8a081c76e670ce740efaa888974ca196a3db50ee6f8bced7d3ebf2cc746956539165b2aa70b8aa2ef9202189b19fa69c4e7c6942a5572984fee90cb6247e55cf86e0094000347a78762182ecf47f53bd1fcc16a1862af377a72683cad2d1ab6b4b7beff1d953f941efea49fdb708aed5be4eee1346a0738baf225d6b0c56d43c45cda8a50ae5e8b", 0xbc, 0x4}, {&(0x7f00000003c0)="f10a8165bc6308e815814f1544b99e329fba596bb4f78df6e1b1eb6c3d1553d8ee8c509e493d5c4995994f3d60f1542857f65f500686c4f58185e21d69928b42ffe1f2aadc3a7eed7944af63ee31f3225a9ab7d50aac57e6048e504945cce97fbcf4d5db17d20425cd8aef7763daf13b7b49789848f4af39ec3b1b0df8137308a59a76e8e6e3fbfa80308b5b34dd0268d9987c55a4e719cbb3ebd2ef83a7a210f82725df81c7f28a6a891eac330eceef94c9f8f24e6c55351a94edd317579b3cae2cebfbf66c9f73aac802f9a3d9be713139c554618230d33f822e54", 0xdc, 0xa342}], 0x400, &(0x7f00000005c0)=ANY=[@ANYBLOB='dots,nodots,nfs=nostale_ro,dots,dots,codepage=936,nodots,euid=', @ANYRESDEC=r0, @ANYBLOB=',euid<', @ANYRESDEC=r1, @ANYBLOB="2c6673757569643d773234347f7e00002d7f6562302d303662672d333f39376564307631342c00000000"]) r2 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x1, 0x200) ioctl$VIDIOC_OVERLAY(r2, 0x4004560e, &(0x7f00000002c0)=0x4) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000002200)='/selinux/status\x00', 0x0, 0x0) ioctl$PPPIOCSMRU(r3, 0x40047452, &(0x7f00000000c0)=0x7ff) fcntl$setpipe(r3, 0x407, 0x4) ioctl$sock_inet6_tcp_SIOCATMARK(r3, 0x8905, &(0x7f0000002240)) ioctl$VIDIOC_G_CROP(r3, 0xc014563b, &(0x7f0000000680)={0x7, {0x0, 0x5c3b, 0x80d3, 0xccd}}) r4 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x7ff, 0x480801) ioctl$BLKRRPART(r4, 0x125f, 0x0) 09:38:54 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x55c) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="b7f2288a91", 0x5) r1 = accept$alg(r0, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmmsg(r1, &(0x7f0000000280)=[{{&(0x7f0000000080)=@ll, 0x80, &(0x7f0000000400), 0xdd}}, {{&(0x7f0000000440)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000380)=""/113, 0x8c98}], 0x1000000000000017, &(0x7f00000004c0)=""/73, 0xfffffe91}}], 0x40000000000006c, 0x0, 0x0) r2 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x0, 0x22000) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000600)={{{@in6=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@initdev}}, &(0x7f0000000140)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0xc) write$FUSE_ENTRY(r2, &(0x7f0000000700)={0x90, 0x0, 0x1, {0x2, 0x2, 0x6, 0x101, 0x882e, 0x772f8fe5, {0x5, 0x200, 0x0, 0x7fffffff, 0x6, 0x4, 0x8, 0x3, 0x7, 0x2, 0x7e2e, r3, r4, 0x5, 0x6}}}, 0x90) 09:38:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-control\x00', 0x20001, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000340)=0x1, 0x4) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00\xc2(t\xf56c\xf71E\x9e\x90\xac\xa4\x19\x7f\xa1\xb8\x02x9\xff0\x7f\x94\xa7\xbeX\xd2\xed\x0e^>@\xaf\x11c\xce19\xf5\xf8\xd3\x19k\x1d\xa5\x99\x89\xb4=\x1b\xde\x88g\xf4\xadi\xef\xbe\x13\xaaU\xdc\xdcw\r\xe1 jy8\n%\xde\x86\xb8ExAkCBp\x18/\x80W.[\r\x13\xc0e\x8f9i\xc5\x95\xca\xd1\xba&?\xe65}\xe9\nl\xb4b\xa7\x9dH\"\xf3\xaa>4\xe9A$\xf9\x04\xeb\xd5\x00\xb7,\x80\x1a\xaf\xbeP\f\xec\xa8\xc1l\xbb\xe9\xc2\x01\xe7\xf4mD\x80m\xc2\xbd|\x06\b\xd2\xc9\xdb\xcb\x83\xb2\xda\xa7\xc5\xf1J\xd2\xf7i\x95\xb7\xc0\xf4nEU.\x0e\x9b\xb6\x87\x13\xd5\xa8\x7f\x16\xc3\xac\x9d,\xa24>9\xa46\x8c\x7f\x00\x00\x00\x00\x00\x00\x00\x04\xf6\x8f\x0e|\xa0|\x8aw\x87\x9f\xec\xebQ\xa2\xf4[3\xdeF\xce\xf2\xb4\xf9H@\xce8\xe4\xf8\xd3\xf0', 0x200002, 0x0) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000002c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) sysinfo(&(0x7f0000000c80)=""/84) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000c00)=@filter={'filter\x00', 0xe, 0x4, 0x820, [0x0, 0x200003c0, 0x20000748, 0x200008a0], 0x0, &(0x7f0000000380), &(0x7f00000003c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x2, [{{{0xb, 0x12, 0x890d, 'rose0\x00', 'bond_slave_1\x00', 'rose0\x00', 'vlan0\x00', @remote, [0x0, 0xff, 0xff, 0xff], @empty, [0x0, 0xff, 0xff], 0xf0, 0x198, 0x1c8, [@ipvs={'ipvs\x00', 0x28, {{@ipv6=@dev={0xfe, 0x80, [], 0x18}, [0xffffffff, 0xffffff00, 0xffffffff, 0xffffff00], 0x4e22, 0xff, 0x1, 0x4e20, 0x2, 0xc}}}, @cpu={'cpu\x00', 0x8, {{0x9393, 0x1}}}]}, [@common=@nflog={'nflog\x00', 0x50, {{0x8001, 0xbdcb, 0x0, 0x0, 0x0, "6783b1114cf3553812aedf678ef0a12f5e53e964420c2cb7af5827254bb9eba56f4fc06d2d12617ac36d86a0c2873645cd5230ae6a3a969132c2d7f5330afe90"}}}, @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}]}, @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}}, {{{0x3, 0x8, 0x62ff, 'veth0_to_team\x00', 'hwsim0\x00', 'nlmon0\x00', 'rose0\x00', @dev={[], 0xe}, [0x0, 0xff, 0x0, 0xff, 0xff], @empty, [0x0, 0xff, 0x0, 0xff], 0xb0, 0x160, 0x190, [@mark_m={'mark_m\x00', 0x18, {{0x8, 0x7, 0x3, 0x3}}}]}, [@common=@NFLOG={'NFLOG\x00', 0x50, {{0x5, 0x101, 0x5, 0x1, 0x0, "5559f3160227aed4e54a1071dd88e716d84b06b15950c77e7f13353b094f1859d3de9d6997577f0c870fb83202c94bf6ac456678875827f0d612c06763203275"}}}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffe}}}]}, @common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x600}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x1, [{{{0x0, 0x12, 0x0, 'ip6erspan0\x00', 'veth1_to_hsr\x00', 'netdevsim0\x00', 'bcsf0\x00', @broadcast, [0x78ffbb0cb1c52dd6, 0x0, 0xff, 0xff, 0xff, 0xff], @broadcast, [0xff, 0x0, 0xff, 0x49186fcd11c96606, 0x600410001b4ad67a], 0x70, 0xf0, 0x128}, [@common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x0, 0x4, 0x80000000}}}, @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}]}, @common=@dnat={'dnat\x00', 0x10, {{@random="6408a3cf4544", 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x3, 0xffffffffffffffff, 0x1, [{{{0x9, 0x9, 0x8, 'ifb0\x00', 'erspan0\x00', 'team_slave_1\x00', 'syzkaller1\x00', @broadcast, [0x0, 0x0, 0x0, 0xff, 0x0, 0xff], @empty, [0x0, 0xff, 0xff, 0xff], 0x108, 0x268, 0x2e0, [@physdev={'physdev\x00', 0x70, {{'bond_slave_0\x00', {}, 'ip6tnl0\x00', {0xff}, 0x10, 0x7}}}]}, [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x0, 'system_u:object_r:fonts_t:s0\x00'}}}, @common=@AUDIT={'AUDIT\x00', 0x8, {{0x2}}}]}, @common=@NFLOG={'NFLOG\x00', 0x50, {{0x10000, 0xff, 0x100000000, 0x0, 0x0, "d3326c8180237af2085c5fd1a9e824c10fc2d0aa072592c9aafa539d16900302951e87aedddc112b136489bcf7497ecb6910ba629cd5321bfa5fd13e52d2266e"}}}}]}, {0x0, '\x00', 0x4, 0xffffffffffffffff}]}, 0x898) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r2, 0x111, 0x3, 0x0, 0x4) fchdir(r0) r3 = creat(&(0x7f0000000040)='./file1\x00', 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r1) write$P9_ROPEN(r3, &(0x7f00000000c0)={0x18}, 0xff9c) ioctl$TIOCGSOFTCAR(r3, 0x5419, &(0x7f0000000140)) fallocate(r3, 0x0, 0x0, 0x8001) syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x892, 0x402102) ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000280)=ANY=[@ANYBLOB="000f0025c2000000000001"]) 09:38:54 executing program 2: r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0xffffffff, 0x0) ioctl$VIDIOC_SUBDEV_G_EDID(r0, 0xc0305602, &(0x7f0000000640)={0x0, 0x0, 0x0, [], 0x0}) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x80000, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000000c0)={0x40, 0x0, 0x2}, 0x10) syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x101041) [ 1153.743143] FAULT_INJECTION: forcing a failure. [ 1153.743143] name failslab, interval 1, probability 0, space 0, times 0 09:38:54 executing program 3: pipe2(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) mkdirat$cgroup(r0, &(0x7f0000000540)='syz1\x00', 0x1ff) r2 = socket$packet(0x11, 0x2, 0x300) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) read$alg(r3, &(0x7f0000000180)=""/128, 0x80) openat$zero(0xffffffffffffff9c, &(0x7f0000000580)='/dev/zero\x00', 0x80800, 0x0) getsockopt$packet_buf(r2, 0x107, 0x0, 0x0, 0xffffffffffffffff) ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000240)={0x203d, &(0x7f0000000200)=[{}, {}, {}, {}, {}, {}]}) ioctl(r2, 0x4, &(0x7f0000000000)="2aa521eb89939cd9f590957eb0c957381ebfcd62b7736b2349c37104685c242f55a8c0b34cf16a6575056f12bec39f6ebe377d3a9c10a7cabb14fbb3dd6200b149aba3b37361f5119daf5f83a115cb9cfd050dadc9d67afb9474e88a4dae04def6149152de7079789f332ce2175258a2eebc7ae3b929261d1e111e840f143debac9b1178ebfc62444b365f5aaf53aaeff90c6c4f981edb9a69298e43408324e755fc541c7c6c43ba122eefd88d15c9f5a2861dc2fdb80c1c0b2dcda31f2f48108518c83e5809a873f39df9ddc6a7805f426d539519a8") connect$l2tp(r3, &(0x7f00000004c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e20, @empty}, 0x2, 0x3, 0x1, 0x1}}, 0x26) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x28c01, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x2c, &(0x7f0000000280)=[@in={0x2, 0x4e22, @loopback}, @in6={0xa, 0x4e21, 0x48, @local, 0x8}]}, &(0x7f0000000300)=0x10) openat$audio(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/audio\x00', 0x101000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000340)={0x0, 0x1e, "1375dc177a4ce484d48d570c674962e52c89aa36b010ebe1843fab623cce"}, &(0x7f0000000380)=0x26) getsockopt$inet_sctp_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f00000003c0)={r5, 0x18000000000, 0x7e, 0x5, 0x7a8d, 0xc, 0x8, 0x5, {r6, @in={{0x2, 0x4e20, @loopback}}, 0x7, 0x401, 0x400, 0x6, 0x7ff}}, &(0x7f0000000480)=0xb0) [ 1153.859999] CPU: 1 PID: 3792 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1153.866976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1153.876335] Call Trace: [ 1153.878942] dump_stack+0x138/0x19c [ 1153.882582] should_fail.cold+0x10f/0x159 [ 1153.886749] should_failslab+0xdb/0x130 [ 1153.890740] kmem_cache_alloc+0x2d9/0x780 [ 1153.894897] ? __lock_acquire+0x5f9/0x45e0 [ 1153.899224] mmu_topup_memory_caches+0x86/0x320 [ 1153.903904] kvm_mmu_load+0x21/0xd50 [ 1153.907625] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1153.912520] vcpu_enter_guest+0x2ea0/0x5270 [ 1153.916841] ? save_trace+0x290/0x290 [ 1153.920639] ? lock_downgrade+0x6e0/0x6e0 [ 1153.924787] ? find_held_lock+0x100/0x130 [ 1153.928937] ? emulator_read_emulated+0x50/0x50 [ 1153.933616] ? lock_acquire+0x16f/0x430 [ 1153.937689] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1153.942758] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1153.947714] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1153.952829] kvm_vcpu_ioctl+0x401/0xd10 [ 1153.956808] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1153.960958] ? trace_hardirqs_on+0x10/0x10 [ 1153.965276] ? __f_unlock_pos+0x19/0x20 [ 1153.969248] ? save_trace+0x290/0x290 [ 1153.973159] ? __f_unlock_pos+0x19/0x20 [ 1153.977134] ? __fget+0x210/0x370 [ 1153.980675] ? find_held_lock+0x35/0x130 [ 1153.984735] ? __fget+0x210/0x370 [ 1153.988194] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1153.992349] do_vfs_ioctl+0x7b9/0x1070 [ 1153.996242] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1154.000995] ? lock_downgrade+0x6e0/0x6e0 [ 1154.005230] ? ioctl_preallocate+0x1c0/0x1c0 [ 1154.010218] ? __fget+0x237/0x370 [ 1154.013683] ? security_file_ioctl+0x8f/0xc0 [ 1154.018097] SyS_ioctl+0x8f/0xc0 [ 1154.021560] ? do_vfs_ioctl+0x1070/0x1070 [ 1154.025726] do_syscall_64+0x1eb/0x630 [ 1154.029629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1154.034569] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1154.039900] RIP: 0033:0x458c29 [ 1154.043092] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1154.050915] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1154.058184] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1154.065540] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1154.072903] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1154.080264] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:54 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000002c0)='/dev/vbi#\x00', 0x3, 0x2) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000000)={0x0, 0x26, "c7a21895ab06adbb8c06f64c4119c6080f90918c10ac667be46182fd7bf28b3f5ad2c658a38c"}, &(0x7f0000000080)=0x2e) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000000c0)={r1, 0x1, 0x8b, "60d86aa2d1352b46f0a7a666f481d887586a141e04aacf08cf63d718438d03f80d57b6bf4330ff71212a76dd9921193b1033ce371451c7206e4ef1b34c5c78927bb0770058751efd997388e423218a487221338feee3ecd1ec4b3dea8eb1773d7acf43ee6d08c8367f89334dcae297f2727b1ca19037543da7ff3c6d75063b72b80619b0c9723f69d013d6"}, 0x93) ioctl$VIDIOC_ENUMAUDOUT(r0, 0xc0345642, &(0x7f0000000040)={0x9, "f217115dcb2737d2455a49083fa8f7972fbab53a7960c5741c85084eb34e683f"}) 09:38:54 executing program 3: openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0) write$P9_RREAD(0xffffffffffffffff, 0x0, 0x0) fallocate(r1, 0x0, 0x20000000000200, 0xffd) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0x110001) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x0, 0x8}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000040)=@generic={0x0, "8a87c823d5a62d85372deb5a0b555fa76d884b1b6f8db73292f888cd8226e3078d2ccb44bb9361b62e5462ad592bbc035bce6ecfd25ebe88c7493f52c5c7cb7c9ac41b95d6356c710e35c4b974c26610fdaa75bdb0e9ec65dd43a1d5adbd17897e0bc187e59e84280233d9f5604d07ed0b591663d8a56ada3655ac7ae009"}, 0x80) setsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000000)={0x9, 0x0, 0x6}, 0x6) openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) 09:38:54 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/148, 0x386}], 0xed, 0x0) getpid() getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0xc) r1 = syz_open_procfs(r0, &(0x7f0000000040)='fd\x00') preadv(r1, &(0x7f0000000480), 0x1000000000000061, 0x0) 09:38:54 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10) socketpair(0xf, 0x0, 0x3ff, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getresuid(&(0x7f0000000040), &(0x7f0000000080)=0x0, &(0x7f0000000140)) ioctl$SIOCAX25GETUID(r1, 0x89e0, &(0x7f0000000180)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0) fcntl$getownex(r2, 0x10, &(0x7f0000000240)={0x0, 0x0}) perf_event_open(&(0x7f00000001c0)={0x3, 0x70, 0x0, 0x0, 0xfffffffffffffffb, 0x80000000, 0x0, 0xfffffffffffffff9, 0x80, 0xc, 0x3, 0xff, 0x0, 0x1000, 0xfffffffffffffffa, 0xc4a, 0x1, 0x7ff, 0xffffffff, 0x3f, 0x1, 0x7, 0x4, 0x7, 0x0, 0x0, 0x101, 0x97d, 0x7fff, 0x8e4, 0x8, 0x7fff, 0x7, 0x0, 0x1, 0xaf, 0x1f, 0x366, 0x0, 0x400, 0x0, @perf_config_ext={0x800, 0x7}, 0x100, 0x5, 0x6, 0x0, 0x5, 0x1, 0x3}, r4, 0x2, r0, 0x8) 09:38:54 executing program 5 (fault-call:5 fault-nth:23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:54 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x240000, 0x0) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000100)={0x5, 0x1f, 0xbe06}) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r2, &(0x7f000000c000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000000)="9a00000000b1000f019a005000000fc71eb9800000c00f3235000400000f30c744240000000000c744240200480000c7442406000000000f011424b99e0800000f32f30f2c3ce884106464d918c4c17ae602", 0x52}], 0x1, 0x6f, &(0x7f0000000140)=[@vmwrite={0x8, 0x0, 0x1, 0x0, 0x2, 0x0, 0x3, 0x0, 0x7}], 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:55 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300)='/dev/net/tun\x00', 0x0, 0x0) r1 = accept4$unix(0xffffffffffffff9c, &(0x7f0000000140), &(0x7f00000001c0)=0x6e, 0x80800) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f00000002c0)=@get={0x1, &(0x7f0000000200)=""/189, 0xea0}) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x208001, 0x0) ioctl$sock_bt_bnep_BNEPCONNADD(r2, 0x400442c8, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYBLOB="750e0000010008f5017877e47366a9a317de798ab81c2d3309f9856a92292211e333e360a4bb122cae991fd9ff992b96cbfd601870d5327929dcd7ce0546900a254e34b443971e6c4e8bf30e4678e49e9087a990ab74a4e1fc1f5c7c302cdf8f01f50167c96320f4f2f08a42969ba129"]) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a}) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)) 09:38:55 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/status\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f0000000680)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4400000}, 0xc, &(0x7f0000000640)={&(0x7f0000000340)={0x2f0, r2, 0x300, 0x70bd29, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x28, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xc6}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x401}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9ad3}]}, @TIPC_NLA_MEDIA={0x70, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x33b1}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6d9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}]}, @TIPC_NLA_NET={0x10, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}]}, @TIPC_NLA_LINK={0xc0, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5780000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x59}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffc00}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcbd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}]}, @TIPC_NLA_NODE={0x18, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x109}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NODE={0x34, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000000}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffff}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_BEARER={0x7c, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0xf6, @remote, 0x4}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x4, @dev={0xfe, 0x80, [], 0x19}, 0x8}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xf0}]}, @TIPC_NLA_NET={0x3c, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_ID={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}]}, @TIPC_NLA_NODE={0x34, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xf05}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20cb}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x3c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x100000001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x401}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}]}]}, 0x2f0}, 0x1, 0x0, 0x0, 0x40000}, 0x48080) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockopt$rose(r3, 0x104, 0x1, &(0x7f00000000c0), &(0x7f0000001800)=0x4) 09:38:55 executing program 0: r0 = gettid() process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) pkey_mprotect(&(0x7f00004a6000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x6) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x7, 0x0) ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000080)={&(0x7f000059d000/0x1000)=nil, 0x1000}) [ 1154.476802] FAULT_INJECTION: forcing a failure. [ 1154.476802] name failslab, interval 1, probability 0, space 0, times 0 [ 1154.557019] CPU: 0 PID: 3821 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1154.564183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.573544] Call Trace: [ 1154.576241] dump_stack+0x138/0x19c [ 1154.579890] should_fail.cold+0x10f/0x159 [ 1154.584050] should_failslab+0xdb/0x130 [ 1154.588154] kmem_cache_alloc+0x2d9/0x780 [ 1154.592324] ? __lock_acquire+0x5f9/0x45e0 [ 1154.596614] mmu_topup_memory_caches+0x86/0x320 [ 1154.601299] kvm_mmu_load+0x21/0xd50 [ 1154.605036] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1154.609817] vcpu_enter_guest+0x2ea0/0x5270 [ 1154.614172] ? save_trace+0x290/0x290 [ 1154.618070] ? lock_downgrade+0x6e0/0x6e0 [ 1154.622227] ? find_held_lock+0x100/0x130 [ 1154.626570] ? emulator_read_emulated+0x50/0x50 [ 1154.631251] ? lock_acquire+0x16f/0x430 [ 1154.635241] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1154.640278] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1154.645222] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1154.650259] kvm_vcpu_ioctl+0x401/0xd10 09:38:55 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/status\x00', 0x0, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000240)={0x1, 0x4, 0x4, 0x2, 0x13, 0x0, 0x7f, 0x1, 0xffffffffffff34cb, 0x8001, 0xffff, 0x8}) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000100)='asymmetric\x00', &(0x7f0000000040)=@keyring={'key_or_keyring:', r0}) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f00000001c0)={'syz'}, 0x0, 0x0, r1) 09:38:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='children\x00') ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f00000000c0)={0x5, 0x2d, 0x4, 0x1, 0x13, 0x6, 0xfffffffffffffffc, 0x5, 0x2, 0x5, 0x7}) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r2 = socket$key(0xf, 0x3, 0x2) ioctl$KDENABIO(r1, 0x4b36) sendmsg$key(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02032200100000000000000000000000010014000000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000001001600000000000200010000000000000000030000000005000500000000000a00000000000000fe8800000000000000000000000000ff0000000000000000"], 0x80}}, 0x0) getsockopt$inet_buf(r2, 0x0, 0x2e, &(0x7f0000000300)=""/172, &(0x7f00000003c0)=0xac) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x42000111}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xf8, r3, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x189}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffffffffff000}, @IPVS_CMD_ATTR_SERVICE={0x5c, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3a}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x79}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xffffffff}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7a}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x6}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x2}]}]}, 0xf8}}, 0x20000040) 09:38:55 executing program 2: r0 = gettid() set_mempolicy(0x2, &(0x7f0000000040)=0x9, 0x3) socket$inet_udplite(0x2, 0x2, 0x88) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x1, 0x8002) write$FUSE_NOTIFY_DELETE(r1, &(0x7f00000000c0)={0x36, 0x6, 0x0, {0x3, 0x3, 0xd, 0x0, '.{}mime_typeW'}}, 0x36) [ 1154.654276] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1154.658520] ? trace_hardirqs_on+0x10/0x10 [ 1154.662776] ? __f_unlock_pos+0x19/0x20 [ 1154.666765] ? save_trace+0x290/0x290 [ 1154.670580] ? __f_unlock_pos+0x19/0x20 [ 1154.674648] ? __fget+0x210/0x370 [ 1154.678115] ? find_held_lock+0x35/0x130 [ 1154.682271] ? __fget+0x210/0x370 [ 1154.685743] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1154.689897] do_vfs_ioctl+0x7b9/0x1070 [ 1154.693790] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1154.698568] ? lock_downgrade+0x6e0/0x6e0 [ 1154.702822] ? ioctl_preallocate+0x1c0/0x1c0 09:38:55 executing program 2: utime(&(0x7f0000ff1000)='./file0\x00', &(0x7f000067bff0)={0x0, 0xffff}) fstat(0xffffffffffffffff, &(0x7f0000000fbc)) sigaltstack(&(0x7f0000001000/0x1000)=nil, 0x0) sigaltstack(&(0x7f0000000000/0x1000)=nil, &(0x7f00005d6000)) 09:38:55 executing program 2: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r0, &(0x7f00000003c0), 0xe) connect$bt_l2cap(r0, &(0x7f0000000100), 0xe) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x9) [ 1154.707514] ? __fget+0x237/0x370 [ 1154.710989] ? security_file_ioctl+0x8f/0xc0 [ 1154.715404] SyS_ioctl+0x8f/0xc0 [ 1154.718785] ? do_vfs_ioctl+0x1070/0x1070 [ 1154.722944] do_syscall_64+0x1eb/0x630 [ 1154.726924] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1154.731779] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1154.736979] RIP: 0033:0x458c29 [ 1154.740168] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1154.747883] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:55 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000080)=ANY=[], 0xffdbc6a1) unlink(&(0x7f00000000c0)='./file0\x00') close(r0) clone(0x2100001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000000)=ANY=[], &(0x7f0000000040)='.\x00', 0x0, 0x2002, 0x0) mkdir(&(0x7f0000000080)='./file0/file0\x00', 0x1) 09:38:55 executing program 1: openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cachefiles\x00', 0x0, 0x0) syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x0, 0x200000000000) r0 = syz_open_dev$swradio(0x0, 0xffffffffffffffff, 0x2) socket$packet(0x11, 0x2, 0x300) unshare(0x400) ioctl$VIDIOC_DBG_G_REGISTER(r0, 0xc0385650, &(0x7f0000000040)={{0x0, @name="e44de031744aa774815930c8a4d9e8b91e39394535491a1b01a62c46a4c23fa2"}, 0x8, 0x400, 0x1}) pselect6(0x40, &(0x7f00000000c0)={0x3}, 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) 09:38:55 executing program 4: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x4000) ioctl$VIDIOC_TRY_ENCODER_CMD(r0, 0xc028564e, &(0x7f0000000040)={0x0, 0x1, [0x7, 0x6, 0x9, 0x1, 0x8, 0x8c, 0xffff, 0x8]}) setresuid(0xffffffffffffffff, 0xfffe, 0xffffffffffffffff) setresuid(0xffffffffffffffff, 0xfffe, 0xffffffffffffffff) 09:38:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000080)) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0xfffffffffffffffe}) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:55 executing program 5 (fault-call:5 fault-nth:24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1154.755160] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1154.762612] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1154.769884] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1154.777154] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:55 executing program 0: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) socket$inet(0x2, 0x80000, 0x1) syz_open_procfs(r0, &(0x7f0000000140)='net/softnet_stat\x00') sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000840)=ANY=[@ANYBLOB="5c000000150011040000000000000000ff010000000000000000000000000001ac1414aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000b0f5ad88e11a79b3fa7db19a9d"], 0x5c}}, 0x0) 09:38:55 executing program 1: r0 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1}], 0x1}, 0x0) write$binfmt_elf64(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="7f"], 0x1) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff3000/0xb000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000200)="2247a012ec44b920b547fc64145a1809f273cf99d35594d83c5f43f228f5257b12e6a6ba8859b9dfc569c1dd9106678a8ace803abc1de97931e7408d0ed112bf72b780b92ca326854fb4a0fcca09103cd826ade2423c33eb2a30f2711fddad23666487df0dd487a4bafdf4c1c1d8a6f657644e25523ad19967b48e2009de69629d38e727faf5541be25727fced607cb7874afa3631d47c6e429950a95b3f03e89441f8b1485381c4b0f18248e8bdcd765f765e5ba5e393cd11e106379ff9e99093e5605fc2e667564dd2add8260e2ac7e42f12f157ddda5f4adb9c98942fa74e7cc07fc41f1576c109968a639f587867a38b8f70c42a7a", 0xf7, r0}, 0x68) syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x800000000, 0xc043) write$binfmt_elf32(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x0) shutdown(r0, 0x2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000080)) 09:38:55 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/mls\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000240)={{{@in6, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@multicast2}}, &(0x7f00000000c0)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000340)=0xc) write$FUSE_ENTRY(r1, &(0x7f0000000480)={0x90, 0x0, 0x4, {0x4, 0x1, 0x0, 0xff, 0x7, 0xd47, {0x0, 0xc701, 0x0, 0x3, 0xc1, 0x8, 0x4, 0x3ff, 0x432, 0x10001, 0x800, r2, r3, 0x1, 0xaa23}}}, 0x90) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x80009) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000140)={@in6={{0xa, 0x0, 0x0, @local}}, 0x0, 0x5, 0x0, "d898760a608655cdd122b7aae6777de2b6d61f3426116a044800a28586f0363b30b2e13b4dde1df995d151c2a717f5d0469e5fd4d3cae6eb6715077452ed8575a6d8b6805619337678a5377f2cc5e781"}, 0xd8) r4 = dup(r0) setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000380)={@in6={{0xa, 0x0, 0x0, @local}}, 0x0, 0x2, 0x0, "079a91bf84f4f94d6f03f75225afcbe1a5802633f3dd91ee26027305a71b8bbb8ad087bf2af2c435b395839bd5b6b8d6043cdc91395a84b81e9096ad1d2b692f1acf842fffd4bbf39f0614bf8fa9a0b9"}, 0xd8) ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000000)={0x1f, 0x6, 0xb23e}) 09:38:55 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = accept$netrom(0xffffffffffffffff, &(0x7f00000002c0)={{0x3, @null}, [@netrom, @rose, @remote, @rose, @bcast, @default, @null, @null]}, &(0x7f0000000340)=0x48) sendto$netrom(r1, &(0x7f0000000380)="2e60a8fe34d1a5ff5b7bbb92d5282fd46a137a9a1b4030ae4bb0a783dfbf6327d449a3cf9ee28b3c091ebeca4e58d222a9cb518f7d4dcaf57dcadfcab2e21c814d20bf1680", 0x45, 0x8000, &(0x7f0000000400)={{0x3, @bcast, 0x1}, [@default, @bcast, @null, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48) ioctl(r0, 0x4, &(0x7f0000000140)="e6729cb13cabeb29b18606b71729543ca34143e3f3bc843fa773cf9dd0bacf2a446f4c9399c95b5b719336f4ff41bd3b0dc0c3d4c7c4301ea21e6e20972e702202b13fd639e617b775ec3148464ab4b258ca4528be727edecbaea4c7ff4c77e162b2bb6bf3caf83cc176eee9d5838dd11dcdb624a28888f3f470855d44b3287f16f82579c20b2b0f772a8b34baa63854cd6ac1044d417348ab5b9d63d2c56d8dbf0957bc9c5f723914329f581b7350bc5d4aa12927c8e00a29bbda23bd62a1baddf7f1cfbdcb5c0a5f62b5bf2c9e9e8cbbf1e05e7814a900f98058ea78cc2264") ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = syz_open_dev$video(&(0x7f0000000100)='/dev/video#\x00', 0x7, 0x0) r3 = dup3(r0, r2, 0x80000) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r3, 0xc0505350, &(0x7f0000000240)={{0x2, 0x2}, {0x7fff, 0x88d2}, 0x9, 0x6, 0x8}) ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000000080)={0x0, 0x1, 0x0, [], &(0x7f00000000c0)={0x98f905, 0x80, [], @value64=0x70c000}}) openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x200000, 0x0) syz_open_dev$video(&(0x7f0000000480)='/dev/video#\x00', 0x9, 0x214400) accept4$packet(0xffffffffffffffff, &(0x7f0000002cc0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000002d00)=0x14, 0x80000) setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, &(0x7f00000004c0)={0x1, {{0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0x1}}}, {{0xa, 0x4e23, 0x5, @rand_addr="0ef71b55691ec3a9d19e877d348c4082", 0xc3f8}}}, 0x108) ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f0000002d40)=r4) [ 1154.940664] FAULT_INJECTION: forcing a failure. [ 1154.940664] name failslab, interval 1, probability 0, space 0, times 0 [ 1154.983730] CPU: 1 PID: 3871 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1154.990706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1154.990712] Call Trace: [ 1154.990730] dump_stack+0x138/0x19c [ 1154.990750] should_fail.cold+0x10f/0x159 [ 1154.990767] should_failslab+0xdb/0x130 [ 1154.990778] kmem_cache_alloc+0x2d9/0x780 [ 1154.990790] ? __lock_acquire+0x5f9/0x45e0 [ 1154.990804] mmu_topup_memory_caches+0x86/0x320 [ 1154.990817] kvm_mmu_load+0x21/0xd50 [ 1154.990827] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1154.990842] vcpu_enter_guest+0x2ea0/0x5270 [ 1154.990851] ? save_trace+0x290/0x290 [ 1154.990860] ? lock_downgrade+0x6e0/0x6e0 [ 1154.990872] ? find_held_lock+0x100/0x130 [ 1154.990884] ? emulator_read_emulated+0x50/0x50 [ 1154.990893] ? lock_acquire+0x16f/0x430 [ 1154.990903] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1154.990917] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1154.990928] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1154.990944] kvm_vcpu_ioctl+0x401/0xd10 [ 1154.990954] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1154.990964] ? trace_hardirqs_on+0x10/0x10 [ 1154.990973] ? __f_unlock_pos+0x19/0x20 [ 1154.990983] ? save_trace+0x290/0x290 [ 1154.990991] ? __f_unlock_pos+0x19/0x20 [ 1154.991001] ? __fget+0x210/0x370 [ 1154.991015] ? find_held_lock+0x35/0x130 [ 1155.108697] ? __fget+0x210/0x370 [ 1155.112143] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1155.116283] do_vfs_ioctl+0x7b9/0x1070 [ 1155.120158] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1155.125033] ? lock_downgrade+0x6e0/0x6e0 [ 1155.129171] ? ioctl_preallocate+0x1c0/0x1c0 [ 1155.133564] ? __fget+0x237/0x370 [ 1155.137008] ? security_file_ioctl+0x8f/0xc0 [ 1155.141402] SyS_ioctl+0x8f/0xc0 [ 1155.144763] ? do_vfs_ioctl+0x1070/0x1070 [ 1155.148984] do_syscall_64+0x1eb/0x630 [ 1155.152856] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1155.157729] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1155.163035] RIP: 0033:0x458c29 [ 1155.166207] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1155.173912] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:55 executing program 4: r0 = socket$inet(0x10, 0x2, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x89a1, &(0x7f0000000000)={@remote}) getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @loopback, 0x0}, &(0x7f0000000500)=0xfffffffffffffff2) ioctl$sock_inet6_SIOCADDRT(r2, 0x89a0, &(0x7f0000000680)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback, 0x9, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, r3}) r4 = openat$full(0xffffffffffffff9c, 0x0, 0x200000, 0x0) mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x7401, 0x0) lstat(&(0x7f0000000340)='./file0\x00', 0x0) getresuid(&(0x7f0000000540), &(0x7f0000000600)=0x0, &(0x7f0000000700)) stat(&(0x7f0000000740)='\x00', &(0x7f0000000780)) stat(&(0x7f0000000800)='./file0\x00', &(0x7f0000000940)) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000009c0)={{{@in6=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@loopback}}, &(0x7f0000000ac0)=0xe8) setreuid(r5, r6) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000400)) getegid() stat(0xfffffffffffffffe, &(0x7f00000002c0)) geteuid() fcntl$setstatus(r1, 0x4, 0x400) munlockall() getgid() stat(0x0, &(0x7f0000000580)) getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000640)) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000840)={{{@in=@initdev, @in6=@local}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in6=@dev}}, 0x0) getresgid(0x0, &(0x7f0000000380), 0x0) geteuid() getgid() write$FUSE_DIRENTPLUS(r4, &(0x7f0000000b00)=ANY=[], 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r4, 0xc0086420, &(0x7f0000000080)) r7 = request_key(&(0x7f00000003c0)='rxrpc\x00', &(0x7f0000000440)={'syz', 0x2}, &(0x7f0000000480)='keyring\x00', 0xfffffffffffffffb) add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, r7) openat$cgroup_subtree(r4, &(0x7f0000000280)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$RTC_WKALM_SET(r4, 0x4028700f, &(0x7f00000000c0)={0x0, 0x0, {0x2c, 0x11, 0xc, 0xc, 0x5, 0x4, 0x6, 0xf7}}) 09:38:55 executing program 0: r0 = socket$inet6(0xa, 0x20000000000002, 0x103) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x174, 0xffffffffffffff5b) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) recvmmsg(r0, &(0x7f0000000680)=[{{0x0, 0x0, &(0x7f0000000340), 0x0, 0x0, 0xfffffe4b}}, {{&(0x7f00000006c0)=@rc, 0x80, &(0x7f0000000540), 0x35c, &(0x7f0000004300)=""/206, 0xce}}], 0x2, 0x203f, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x80, 0x0) ioctl$SIOCRSSL2CALL(r1, 0x89e2, &(0x7f00000001c0)=@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f00000000c0)=0x4) fsetxattr$security_ima(r1, &(0x7f0000000180)='security.ima\x00', &(0x7f0000000100)=@sha1={0x1, "57b0fbc1b4df761bda63bbd9797b42beb61784d7"}, 0x15, 0x0) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000240)=@add_del={0x2, &(0x7f0000000200)='gretap0\x00'}) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="460f32c7442400dd000000c7442402dd000000ff1c24c4a2c5ae3d3b93000066ba6100ec400f4c318fa92001fc66b873000f00d8f26ef3400f21adc4627d30a1df957c79", 0x44}], 0x1, 0xa, &(0x7f0000000340)=[@cstype3={0x5, 0x6}, @flags={0x3, 0x4000}], 0x2) 09:38:55 executing program 1: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000300)='overlay\x00', 0x0, &(0x7f0000000040)=ANY=[]) chdir(&(0x7f0000000280)='./file0\x00') mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = open$dir(&(0x7f0000000080)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000140)='./file1\x00', 0x0) mknod$loop(&(0x7f0000000200)='./file1/file0\x00', 0x0, 0xffffffffffffffff) renameat2(r0, &(0x7f0000000000)='./file1/file0\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x2) [ 1155.181180] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1155.188617] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1155.195886] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1155.203229] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1155.299629] overlayfs: missing 'lowerdir' [ 1155.349100] overlayfs: missing 'lowerdir' 09:38:56 executing program 2: r0 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2) mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x100011, r0, 0x4) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f0000000000)) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000080)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x1) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000040), 0x4) 09:38:56 executing program 4: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) lsetxattr$security_smack_entry(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.SMACK64EXEC\x00', &(0x7f0000000080)='tmpfs\x00', 0x6, 0x3) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001400)={{{@in=@dev, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@remote}}, &(0x7f0000000300)=0xe8) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0/file1\x00', 0x1, 0x2, &(0x7f0000000180)=[{&(0x7f0000000400)="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", 0x1000, 0x7fff}, {&(0x7f0000000200)="e84bdb26a937c67e16e8048d974f1bbc0ad13bf9cabd015751be47f365b925bffb21edc62fc42c1b8a9f0016b6c9491e97143819053276ffd1ceee5b762d4338e8133fa2d9af2da5c3ad7204582f877d86d0ae5f2931e1cc27cba972792acaf9cdedf56eb1c29cdd1d310ceaab7a706932772a88cf2552dd5aa4b92fa442a16380614da948f858b29d95dfb49b3e5c5d974ccd48f563ea947056aa8d1c18732894b0b2798713c449f07e4f32f86c6354ff43d0a7b7d20336371acc517aa8d05918c3", 0xc2, 0x3}], 0x20, &(0x7f0000001500)={[{@nobarrier='nobarrier'}, {@noquota='noquota'}], [{@subj_user={'subj_user', 0x3d, '&,'}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@uid_lt={'uid<', r0}}, {@smackfshat={'smackfshat', 0x3d, 'tmpfs\x00'}}, {@permit_directio='permit_directio'}, {@dont_measure='dont_measure'}, {@smackfstransmute={'smackfstransmute'}}, {@appraise_type='appraise_type=imasig'}]}) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$SIOCAX25NOUID(r1, 0x89e3, &(0x7f0000000380)) mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f00000001c0)='t\x00pfs\x00', 0x0, 0x0) r2 = msgget(0x1, 0x80) getgroups(0x9, &(0x7f00000015c0)=[0xee00, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xee01, 0xee00, 0xffffffffffffffff]) getresgid(&(0x7f0000001600)=0x0, &(0x7f0000001640), &(0x7f0000001680)) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000016c0)=0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000001700)=0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000001740)={{0x3f, r0, r3, r0, r4, 0xc0, 0x8}, 0x6, 0x48, 0x100000000, 0x80000001, 0x7, 0x7, r5, r6}) mknod$loop(&(0x7f0000000100)='./file0/file1\x00', 0xc001, 0xffffffffffffffff) 09:38:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000280)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_open_dev$swradio(&(0x7f0000000140)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2) read(r4, &(0x7f0000000280)=""/185, 0xb9) ioctl$SIOCAX25DELFWD(r4, 0x89eb, &(0x7f00000000c0)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default}) ioctl$VIDIOC_TRY_DECODER_CMD(r4, 0xc0485661, &(0x7f0000000040)={0x7, 0x3, @start={0x9}}) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) dup3(r3, r4, 0x0) 09:38:56 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vcs\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x0, 0x0, 0x0) ioctl$VHOST_SET_VRING_ENDIAN(r2, 0x4008af13, &(0x7f0000000000)={0x3, 0xffffffffffffffff}) 09:38:56 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x604082, 0x0) openat$cgroup_type(r0, &(0x7f0000000080)='cgroup.type\x00', 0x2, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x21, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @tcp={{0x0, 0x0, 0x42424242, 0x42424242, 0x0, 0x0, 0x5}}}}}}, 0x0) 09:38:56 executing program 5 (fault-call:5 fault-nth:25): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:56 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) sendmsg(r0, &(0x7f0000013000)={&(0x7f00000000c0)=@in6={0xa, 0x4e23, 0x0, @loopback}, 0x80, 0x0, 0x144, &(0x7f0000000040)=[{0x1dd, 0x29, 0x39, "21020201cb009f00"/17}], 0x28}, 0x0) 09:38:56 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000ef6ff8)='smaps\x00') bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'md4-generic\x00'}, 0x58) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x1}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r3, @in6={{0xa, 0x4e21, 0x2c, @dev={0xfe, 0x80, [], 0x14}, 0x80000000}}, 0x4, 0xff, 0x40, 0x2, 0x10}, &(0x7f00000000c0)=0x98) sendfile(r2, r1, 0x0, 0xc3) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000000)={0x5, 0x7509accf, 0x10000, 0xff}) 09:38:56 executing program 4: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x840, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000000c0)={'ip6tnl0\x00', 0x400}) ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000040)) r1 = socket$inet(0x2, 0x2, 0x0) getsockopt$inet_int(r1, 0x0, 0x14, 0x0, &(0x7f0000000080)) 09:38:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000012000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="f2a6bad004b00fee0f090f3036f30f1a970000660f3806581e0f08bad004b0beeef30f2af8baa100b000ee", 0x2b}], 0x1, 0x0, 0x0, 0x0) socket$inet(0x2, 0x1, 0x20) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001940)={0x0, 0x0}, &(0x7f0000001900)=0x1ec25b0d) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9], 0x1f000}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$xfs(&(0x7f0000000100)='xfs\x00', &(0x7f0000000140)='./file0\x00', 0xfffffffffffffffe, 0x7, &(0x7f0000001780)=[{&(0x7f00000002c0)="69025f5d9bbdfcb75655ca85e82bc9cf769548e1a43859098cc344dcd712c57172961502256767f7baaf66382f40e8bcb8dee2de472bfb196227c71bd2257129efbfe2a1e750ed1d993123e6b82f4d499249f6c9315f9e9edfaa3b05e8cee0fcbbaa5b4b08316a9388ce40748aa60ae70e6f025d265e0d363755059f33612b", 0x7f, 0x8}, {&(0x7f0000000380)="592e07c25b08e6383944eb5e1ca6e4016671a478f34ada0a0b3befbb5e2ab8e4688ecc459acba58b838a5fffd45fffcc43f42f89b79a2c7fba3b5bc02e69388fb35500cbc22efa1ccabe93b570b0068da124f6dc2b26421db8af8bc90a2b4502c586d0c5a8a1afcc0a03c019abc3b7245a0261c9b86d1a1f66b29cb658bede92f2e79bce00321c099ad039bf275166bf2bc2ba14de7aaf80b90fe26672009e37aceae02393277b7142a89abd6b9335fe75894426ee46a881288b07597c45aaeff0632935fc2f687e531a492e09205b428bca301ea6a0eb3ca78f423f7969c5712281", 0xe2, 0x1ff}, {&(0x7f0000000480)="1fe288a80a1c16c87c9895b0675cbe12e911639409abd0c73f4251c9be4375cb2b0566259f944d6c5219695cfaafd8fc15ffe627e045b82d47d20f7d166819b755eb13a46360daf7b23e8a49d31a7094324b2cc7e7d3c28b29662c9080d6fb423cbb9addf330cc0df1d380dd85eafaa730a0ecabb002f1cacc590255d95060e107e9ceb9d435df8ad06dd20cc956d75ef63ca037a70d54afd67ae7e75c86229d5f63f463ee1ad80b3941736c2f28", 0xae}, {&(0x7f0000000540)="665bfbf01a46410fa862251abcea848f7cd069df2225d2a9a58e539a215af953122772cf1c6375c687798bcc81ce41ea2238e3dee1ae05a5fdbd1ca88ba4dd57f9e220fba48fccb40b1d248a211da21f7baf45dac3b823fb10be6e", 0x5b, 0x7}, {&(0x7f00000005c0)="c52eb4c8d69823159cf5c7588e8f230ef78e5a14773be73334adccecb613bd2e7e9039d299aa434221f3de3046c67f2463684cbade5e1323c313a1f4450ef6e8a83727c93054ba28e09790728ad41d0b1891c89a8dbc6898463e1f2e7c3722378f69fab9b916cad659c3d684ed1121a66abd17330d60143f1b3f31a2b322620224249b135d9053b6d633563b6d7a9b3dde6671a766a198e2e3cbc99c8416431aa4cd683c8f36eebc60d09dade517805d3727175c63f9bf342c2f4502ec4a154d951280d1f2dcac65a8fe5dd97f535674f12a3c3683db79", 0xd7, 0xc4}, {&(0x7f00000006c0)="06e411fdb79f75377d44f9f264091ab4f7fe75530f85c4ed84978bc0554e095bd2d8013e2a65a4ab7cda565706659846fdb4755c4afe232b6e193a72477ff24c44f4bdc293cb5631613dcd272f42deee4d2531250e403985829b5ca4a26947140b437982592936c142a69b49ff6125bf6541ccd7308d13cd12f1fa257b36a5e44a5ae29158d13233c44ba544ce11848f89a8d356b469eec6eb58aafe6533c94fed3ccd954a757acc950753d50513fc5ab563afe5e77800e8e9225f1d23", 0xbd}, {&(0x7f0000000780)="273c9ddb1f9f65a790b5e3510b774e45c27a3095ed01bc485de7094a2990296c35b45aa13b15feffd7222aa01d03e48c9a49b30b5ce49e95808ca8054b6c12249309fe168494d9ee4e7b0cdcf648577d2de04ad424239c6f4ecb6415a51145b763b8e8e9084081104fd21e733af5fdd4e8cff4f7469e3450ab198d0a151a17ea23d177aef7efe87b5d69b7d52b25a2c267908872d9ede2ab7f2825fee9f1b4fdd9195e5e10a3b9fec41d188ceecefb9c7e69e8a48564ae8b590139eaed190aa26f54a3b0c2da4a89b49e449d73a46f5acd3f0466e191385b588c40031fc37a6c00f7ab10b9ca88f0c4e4572db739f7abf35d983ddf36fb99e3fcfca591dc2cdf39a2a1e07f7994eaf2404c55b72edf21bf90d5e31a3ecde2deb2ec72bb0531075b8c508a59c385aa597f8d730740c436cd49f376e16cb7b1223a244fc4b917421deeff8a3eb2200c101bc9866cbc1478c52bece2e24d305e049295b0a95e84e6b31b9daba5c1d08186ce289c3dbc6da8b122ec15184e436d5b641fb485bbc7f0b094349cf6a477b4a4018d7f3552509bc69cf6a893825049ae2e27beba3c235962ddc806b6d3df47b499dc1cfc5f44c4839e06e2f59c640e4dcd79ea65f00d25012315647edcbbb4f0f247369f627654a0927f11c9fc4d9208a6eb889130660225237065a3aeb8679e367a8d2850e889ad397d2eab166f2a590cf9637131bc50d4291fdbe47b80fafb08bb62e75eb35d6d4c6fb3d2799e1020972596af9ac037f2f1c3992fbf839cf46341761b8e5ce6714a523ce204c1ebdd23ce7bafd4d50eac4715897d3541bdc51f94d9b2749efebb1dd6e8ad9ecf434d4c4230cb00bf3bb463070b8148f4c113e7e3a128f8a44660e4b18aac610a2e699018522c6629a25d0bc4272b164d1b8f85043cb86a48613964a091809439f8404c07d8eb4776e4a4c5b27a3c6c709ec4bb0b1d0611ba503aadb1ec2953432d1219af812d4216a87c6c880e2377acb3e06c41b4e063c4f5f4f51b5b02b32c66cd7efd5d50b74d9a2618417701b178aafbc07c17ae34f3ce93ae964a52865a3890c334637fdc4ec2a20b988dd2651533477198e8316ccd3ababdcea43f9206d9fb34f3a97bf10022b110fd328d1c0353af6535983b1ef48e77f657a42a671bdb283566613996fa5cdd1d5b0c066af486d0355186b5a680c96b4584f5c078ce25bac1c426b5df53d8a15cfe55624288c2839aa1fa5eab217ecc8a4721494f2ad274ff5a9ea75affffd2b16e0b4d320c64adf7032093f09df6ec5181a593e3c87055b4d4c9f6cfad655039eedf43a0a149140ad37395ffc03c1090a894c76dca75305a6bb47c8bf86d6cd75857aefad4cafb3bb5ec3e9aeac7cb6981a15d66e407180020c66fa753758a299111ff7a67d0685bfd33afa15214361cc1d4fa51fa27d8237e3653d18e55ab5bb44d1e32cd0fd16ddf31c3c4a1d161a9ed8e2936736201c15cfed83e92ce5ecf214c80fb47f7cb436b930bf246a1b43122c62fdaae0bf99bedc7c8a22019b2e85cfb53e3ceb912a2c38eb2211fa7965a4b072276954e92c998c2b771f754f38a2069704073ca2d7623ab84683cc1251010d0cf0152a85aa93151941fe313708f2476e0cceb1f36b575752d0340704a25ed510f0f1dea877c72b2f569ff493d02daffdad5a08d8fea8d863d95ce688226219b7d13e3ee96563a9f73543b749f179c29dcbb2edd5d14fb94ad20d259521d6105b8b8283d5a148de253673d48d38f90acb8aa82748c1c3cd930b7098dd92aba11a63872a81c6f34e97a2586f7d9e997fd416bf0bfe2e34085480d22c8025d47dea0615fe02980ef0c73d96c1d3de9b81105d5e954ce42753c619d3487c4792b24ffac621575c8a0bc4a598c6dbaf6a82477a784aacb76b29bfbbc70b3c84833af82ae1b5f7d4706426b00e4c1b22ee81e6c37aaddc02ab1ca2f84acb212c12f60fb76196eff211f9f9d848beed122429dedd254020e8f416c6f89ad5a0ac7344eddfba814549c17af0b275f1d8da531f4bb0495ed1fd802275975336b8ec2f79a77a9fa5b4f54104366916d6fc5817b83dd05d567893850994a95d307ffe638e579078ea3ddb7b3a3eead20a40ac029af37c51cd6355d3521d3f05d29995535248f801bd72961e633a8dd1d59c6c809feb2478287b2f0e3cae83a629688827e5e6b0be021194d98bd10407b8ea05bb4f5d8752b5b1bde6d2da75ea13786bf8a1578eadd0254ef09e4e4b512beb1558a2a9e677ccb7173fc4f5e9d6dc3897bcaa27672ce5dcd4aad066d8a111c0e7c9651e14fbeeccc5c79c9060cd2456aa0bc1154e09aac9e1c298a09c1530a82330daf5c436ee5b26bb42b92e326401ff4e872789bde4e9efb560a0e90a35f4366c38832acb4bab7172bc9d12bcff678d9ad536b515227b7b89bb99951ca26f6af2b67daeb7427d173ff94aca3529380d5514b8530ae2f11ba89e5b82da84397235d18b26527c458532de0a72f1e6bc9f81138bf55afa452a7102a8ad23a9b2c73540ff9300daac1b7e824c87746a07fe7648711963618dded8f561e24af02ad24ab5b1a9ae93d3515e245dee299cdac01606dae01b38670a9c1c095e5a775c7176c42c0fa5e6a1f91c8399ced42ece96b673163110f993aa55c7675e49547ac20790b0d6631b0410ecff5148f521479565a37b3412fe76dbb69eda3732a102e22b1c1e73e3469ef13598a273d491784ad580d5bbf58e4ae5228ff841e50e036c7186019fd46aac4519751c67f446ba8771645364d0b3201bd5a97cab5ec822460f7198b152e13526883ca3d4603dce7251026def45a7349f1129d19379124b5c3733e1dd933bcbe5227f96e6588b30bcc723a145a797b6170023808074dac11fbedcd3c5443cf7d54cf6aa0bd3dc95d230eccb9f38c5dfed2fa4eb535e70b21fb6b428ce7febf512e86d9ecf22cafe9e6092462a83dc7f5e8b8d0f2fe87a48ed5b19732cad7e8e3a5ca94b1f30f40cafc3bfbc3dbd188cb05c47117ba4608b4f3691978e699c2891e6f45b1d77a1dc92a7fe417ed874bfed9ccdf36901ef26f2e4c33acdf9d4bc6dae9114b44abb1cfb93729abc4408958f8f83d3f3afcfa6c0ed8f774d88ac957aaa2869cf2e2da5b016a8fd3e75a13f4725805dcd89b52e73ec8f795f53ad78e7a8761a49cfa5722e1724cf925c1cd2f7bf38c8b91508610f5d46c694cda0cdffd1ca5803f78b1199e35ebdafc28d1b8155d358912c5cb19ce54a4e6c91530938d39d363d7fdc585be4e581f8f7cfa88180e68bb6ae43378888be9b72d1b5dd0fe67a6f108c968e07246f1733b160f7adb143f069435c3d246febc8a8a6d961a22c95fff116a519ca00d70ede26f298ff4d05567eb8e3bb41f0c352cd085933fb32a8de95e5ac6f0187a7bb0afff76af19758e6a61d928417585997e012bbd60e01faac2d05ecaf4cf9bfa3460650df4879b7ef6f3ba72c93bfcf7240a2e5f1b2132952b8226e566d43f3c098472c56eb421176a31398efbd40d77f505989b22c3676d942fec15a942767c39c5dca892f8672ad4cfad297ad4a3598a2e8eb0e189061ac9d5a8d4346803302bc230885e07fca1c4d120ae7831ff4ee920a6ec23506724b5cd7d6d422f148bf2f1fb17eeed240489505921267dd8d96e4da2cf630be24cafbf47cb5989af69de11a1644fe39b80de832d7f2b54b164cba6f7d562a1d483a58e484190458113160305cf061c5bd1674cbd7b4c8a6e4ac531b2ec7e5f5e7013a5b4ec5ec3ebc528b82d84653902dfc3d0697bc15c5a0662af6e50a536f261809610c30e4b9ae842bbc821a619b112a94974eca0a667cec40b4849b3be1c4c720533846f0437bfd3f593fa65e0934a50718bdad8d0eeb822a246fce3defad3efe54f03b97ab925657d509675eea39efdb3215b43f575225bd610a3837c0ab36f7f807de2b2fe4f1ecbb8e7a9dac74655c5d015e30c607809b68b8833018d9993a6ab7bafe3c0d23643349a5f7b5543fd512065ab0b27aa802dc98a92754ec8a183a87c0398c9d2ff2f1bd24a56976eddff4557c12df519b6b81d80626b881cc05634461d603f8c60f378b0ebc0d75d956a5a6210e4e967dc2c34995c40f0bfa96412423a9ae28dda422b3a048cc819daf7d82d75eaaca3f34416fd83cce0f3e88c394aee084dce4179bee92bba76f8f6b65ae3090d072472b052e2436f79b123139a118dae1755b03435d83d831483370140e7a37b39648f5989d2ad8f6d7ca8aa387cf3524c9e672219f515586d6534c90d90793f143726913ab0779499666e5b7d162bdfefa982c1e4052b1efb00a629f249b8dfaa225a4d2bd409db70f2c87bab36e9234969fc7b7bfa3c5418f8cbcd34a650bd5ab6d8cfdf575ec7e8ea72e966c9a8218860705dd65c83fa9f23984ead2250a6f153008de0fc5b5171614385d47ac0c45d21dbe6417c875f0d4cede005ac781daf28ad06e09b0052e58c2b12d79c92246fdc59d74322868144790f028638bf127451db7d118f45e7d877d922c332b625538bb495a966e01e4dbf76150b649ea06d1874394f218aff3d1b873ef7ea288a201e28787f58ff9f41e0fde08fe69bfbf8dd866320b3379cf32728ecee9fab8f41621cbdddee0caf6f304d1226fad84e59ae4dd672bf2c07b9eefc458c1cdc132756f3eeb2e0ca28a742afe3481ebd92adb4b5cb0a97c3476a6d06daae624ef09e7d18ed4790b49c25c06454568307d7dc6c0b42775ed9372708de1ad1ee2109e2bf34286655460265e59d9445aabe1d44e337800059d88dae0ea318cb90d44ff5101fb97489d62397c726139ab887203c67d7676e747d15f9a1f2985cb58f39f0e66ce1a13f175595e2de4b7883a8b9cff00a2361d597d54ae5fcb87f89d088e47381f64f5ce6dd55b5771f79845fac3e0943d2150bd2693a0d16aa5b29c5de2ccd0cede93ae2615dd285e1a007cf12f2fc4a5c11dc98ef5eea441023c9817e88d31fb29d253fffb5ce1e011a638a573235a733bb60bbeda357bd865c1503261c9a280cbf9e79a200afa456299629e4389a0645d1f65043d9ca564af4d5ccd4e75ee8eaa3481bd7cba16f47c251dd88542ed6a1bff5202218ce6b9cd049d55375438e25388db6469c5cd1ecab4a2d354108516ed9ddeadf68d4411bab7089aec7c7a51c852c77d48d54389562846f7e714f5e4a8d7d6547156042d24a83dcd08a39e25362abc9960dc46e273fac72eaefc8b54c390006ff3f08cb441520a5301a3f4de07fe4cf36f8e234aadacf2fc2dce50061f2abad583e993b4c993949bdce1af0854f9d6adfb528ee1b57d4477507d9d4ec89e98dc7ee88e55c7e322c3fef4bd48e7e985ddd686eedca48e3dbf5cf63503041e30d17768ff0e133d088dde2e6ca50999c7f09ac196dc8ebfbb5703f91d4782e499eb6bd88ed9c41512049026012869dd0959124d7abe53190d1c5b26dc1099ddbe40ffef48e5de66de11feb71ebb490cba58f5366e09296a9972e01c31901e46494703498a25e08885e548c34f7034fa305912218b78a39680337627c93b0b44973e141932fe6f8b1750dfc893ca5db421a8b0779b49955515ab83d967b5ab13be2f19febdf401560b654aa23f01ba17f036be5dc9c11efd43ee91452c04e3958727d459cfb003aaf1f25d3fc9e75ebc9ce451f65add504205a8624a6825ff9cdb26380a7c04ad1e70d375b74bb762ba03e23a9ccd45ddf27ecfc2ff96f3563156ea7c265266c54196cc0685059a08c28c063cdedae6a6693", 0x1000, 0x483}], 0x1, &(0x7f0000001840)={[{@logdev={'logdev', 0x3d, './file0'}}, {@allocsize={'allocsize', 0x3d, [0x7f, 0x6d, 0x35, 0x6d, 0x3a, 0x38, 0x7f, 0x0]}}, {@pqnoenforce='pqnoenforce'}], [{@pcr={'pcr', 0x3d, 0x25}}, {@uid_gt={'uid>', r3}}, {@euid_gt={'euid>', r3}}, {@permit_directio='permit_directio'}, {@smackfshat={'smackfshat', 0x3d, 'cgroup'}}, {@hash='hash'}]}) ioctl(r4, 0x1000008912, &(0x7f0000000180)="0af71f123c123f158ed070") openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:56 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x3, 0xfa00, {0x1, &(0x7f0000000080)={0xffffffffffffffff}, 0x13f, 0x800000000008}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, [], 0x1d}, 0xfdd}, {0xa, 0x4e22, 0xfff, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x23}}, 0x81}, r1, 0xed6}}, 0x48) write$eventfd(r0, &(0x7f0000000000)=0x5, 0x8) [ 1155.584447] FAULT_INJECTION: forcing a failure. [ 1155.584447] name failslab, interval 1, probability 0, space 0, times 0 [ 1155.626004] CPU: 1 PID: 3915 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1155.633004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1155.633010] Call Trace: [ 1155.633030] dump_stack+0x138/0x19c [ 1155.633049] should_fail.cold+0x10f/0x159 [ 1155.633066] should_failslab+0xdb/0x130 [ 1155.633079] kmem_cache_alloc+0x2d9/0x780 [ 1155.633093] ? __lock_acquire+0x5f9/0x45e0 [ 1155.633108] mmu_topup_memory_caches+0x86/0x320 [ 1155.633119] kvm_mmu_load+0x21/0xd50 [ 1155.633130] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1155.633145] vcpu_enter_guest+0x2ea0/0x5270 [ 1155.633154] ? save_trace+0x290/0x290 [ 1155.633164] ? lock_downgrade+0x6e0/0x6e0 [ 1155.633176] ? find_held_lock+0x100/0x130 [ 1155.633188] ? emulator_read_emulated+0x50/0x50 [ 1155.633196] ? lock_acquire+0x16f/0x430 [ 1155.633206] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1155.633227] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1155.633237] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1155.633252] kvm_vcpu_ioctl+0x401/0xd10 [ 1155.633263] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1155.633272] ? trace_hardirqs_on+0x10/0x10 [ 1155.633281] ? __f_unlock_pos+0x19/0x20 [ 1155.633291] ? save_trace+0x290/0x290 [ 1155.633299] ? __f_unlock_pos+0x19/0x20 [ 1155.633309] ? __fget+0x210/0x370 [ 1155.633318] ? find_held_lock+0x35/0x130 [ 1155.633327] ? __fget+0x210/0x370 [ 1155.633338] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1155.633347] do_vfs_ioctl+0x7b9/0x1070 [ 1155.633357] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1155.633365] ? lock_downgrade+0x6e0/0x6e0 [ 1155.633376] ? ioctl_preallocate+0x1c0/0x1c0 [ 1155.633386] ? __fget+0x237/0x370 [ 1155.633400] ? security_file_ioctl+0x8f/0xc0 [ 1155.686781] SyS_ioctl+0x8f/0xc0 [ 1155.686793] ? do_vfs_ioctl+0x1070/0x1070 [ 1155.686808] do_syscall_64+0x1eb/0x630 [ 1155.686817] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1155.686834] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1155.686843] RIP: 0033:0x458c29 [ 1155.808108] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1155.815940] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:56 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x71, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='map_files\x00') r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000340)='/selinux/avc/cache_stats\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000008c0)='/dev/fuse\x00', 0x2, 0x0) getresgid(&(0x7f0000000940)=0x0, &(0x7f0000000b00)=0x0, &(0x7f0000000200)=0x0) mount$fuse(0x0, &(0x7f0000000ac0)='./file0/file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0xb000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r4}}) ioctl$KDSIGACCEPT(r1, 0x4b4e, 0x800039) r7 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000002c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) r8 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r9 = syz_open_procfs(0x0, &(0x7f0000000b80)='net/if_inet6\x00') ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000000500)) rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='./file0\x00') write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000480)={0x2a, 0x4, 0x0, {0x1, 0xbe, 0x2, 0x0, [0x0, 0x0]}}, 0x2a) mount(&(0x7f00000009c0)=ANY=[@ANYBLOB="9f641c9434dc497a767bcfa3c5ec47e73978557b9abe2b421f135079c441964abed62619f55cafaf212731f8c96c1ed1e12226f25312d2ee68b0233ed9bfa7cd780b9eb4d101cb9a2bcceba7cf6026bcd39f4d1a461c00ce790362287dc7b01a2b6a10f5fa8c552235b0191cbdcfd3511e12ce5f062bfa501d3cec8efbb81751637c09bdf58bfd3eb5da365aba257257794769f6085532ba815a0700ecff000000001a54464300"/179], 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x100000, 0x0) mount(&(0x7f0000000d40)=ANY=[@ANYRES64=r1, @ANYRES64=r5, @ANYBLOB="54d8603ad5d6aad2f8475831a4ff6676826d28d58406fbf317c061e6441ef62a67102de9789efb8f5ba2d2b424479a9e27c22f839bd938dc43e68c", @ANYPTR64=&(0x7f0000000bc0)=ANY=[@ANYRESHEX, @ANYBLOB="1aa3c591a58f70b4c0b13aa9e8dff5daf902338a3a328c199abbc511805a012a699477411854d1c5d0273c74981a485bf8c83ea7481591f0944d75e9280ac88c69655f6b03bb9d507beb3bc7188eb1ca30e1cf8a899e1e3569414db3aafaa710980b855836232380b907d7840c33a687fc41be2440d27e6b8d53df46b0445fcf68e552921315774e3c2323e101a1cb1c7b7c6b58729b837c84358a26ce9ddf78516443528b5f5f523386411c0bc2121ceb0709f956283f", @ANYBLOB="9893b84e9ec0328c2437c6df759c78f452328c9b"], @ANYPTR=&(0x7f0000000dc0)=ANY=[@ANYPTR=&(0x7f0000000380)=ANY=[@ANYRES64=r1, @ANYRES16=r8, @ANYPTR64, @ANYPTR], @ANYRES16=r9, @ANYRES16=r3, @ANYPTR64, @ANYRES64=r3, @ANYRESOCT=r9, @ANYPTR64=&(0x7f00000004c0)=ANY=[@ANYPTR64, @ANYPTR64, @ANYRES16=r6], @ANYRESOCT=r2, @ANYPTR64=&(0x7f0000000980)=ANY=[@ANYPTR64, @ANYPTR64]], @ANYRES32=r0, @ANYRES16=r1, @ANYRES16=r0, @ANYRES16=r2], 0x0, 0x0, 0x20, 0x0) mount(&(0x7f0000000b80)=ANY=[], 0x0, 0x0, 0x7fffe, 0x0) r10 = dup2(r1, r9) getsockopt$inet_mreqn(r9, 0x0, 0x24, &(0x7f0000000580)={@remote, @multicast2}, &(0x7f00000005c0)=0xc) write$FUSE_OPEN(r10, &(0x7f0000000a80)={0x20, 0xffffffffffffffff, 0x0, {0x0, 0xfffffffffffffffb}}, 0xffffffffffffff58) getgid() ioctl$TUNSETGROUP(r2, 0x400454ce, r6) pivot_root(&(0x7f0000000b40)='./file0\x00', &(0x7f0000000880)='./file0\x00') preadv(r3, &(0x7f0000001400)=[{&(0x7f0000004200)=""/4096, 0x9d}], 0x1, 0x2) ioctl$int_out(r2, 0x2, &(0x7f0000000440)) ioctl$TIOCGETD(r7, 0x5424, &(0x7f0000000140)) clock_gettime(0x2000000000, &(0x7f0000000540)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000900)={0x0, 0x0}) utimes(&(0x7f00000006c0)='./file0/file0\x00', &(0x7f0000000180)={{r11, r12/1000+30000}, {r13, r14/1000+30000}}) setsockopt$inet_MCAST_JOIN_GROUP(r9, 0x0, 0x2a, &(0x7f0000000600)={0x3, {{0x2, 0x4e21, @multicast1}}}, 0x88) 09:38:56 executing program 0: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000380)=ANY=[@ANYBLOB="44fc6c184477ac2cfdeffc39b6907b8b547cb0f7d582f289a65e648b4d887492f8f0c3840bb1d03337dcba99d2eeeed71a946adcdb96bf5d4c56c4592d488c001440b20625e933e32ffeba35cefb1a2769dce926e3c384d38181ed718cf82762224f1c3c24f2378a6433c351aaa859a9c52c013fd421d5c700b66a7b1e0f1c49e6c156e3c0de6ca8fb89f9d83d2f9a169a8b2412b016b14df8c08946e90e95b9006929aec42bf3f43c349f19ffdc27416441a30bc93e943207fe14a8941c57a44261cca1ebf3b43f32d46ea80d3a7f752ba262ad547c553ba1242a5683f634642e93bde082e65df831ac84"], &(0x7f00000000c0)='.', 0x0, 0x3080, 0x0) r0 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffffff) ioctl$SIOCX25GFACILITIES(r0, 0x89e2, &(0x7f0000000480)) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video35\x00', 0x2, 0x0) fsetxattr$security_capability(r1, &(0x7f0000000280)='security.capability\x00', &(0x7f00000002c0)=@v1={0x1000000, [{0x5, 0x81}]}, 0xc, 0x2) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)={&(0x7f0000000100)='./file0\x00', 0x0, 0x8}, 0x10) mount(&(0x7f0000000580)=ANY=[@ANYBLOB="79805a2c9ecc16ebcf13540cf33e077f52d7d356e8641fc108ea1acc2f313f3153941b35093a895abf76d5ecaba43def7d2e25ac8b395cc1745e1de6581d412536f8de5cb546a2001f578b541e9120806d5cb79f770c5c79c15be8b1a53a82a25b3537f28a7846b445d2e66624fa1b2f1afe29bd516e2ff6c672418294b6ac3c4b1f925b24ca76d7595e0c232cf116f1a25ff16bd5c8373591d135b2b4b790c2c12a112688ffc070ee8f7ac9f461191dc8ea5dd82b57fe0895b28b8034d7c5ca5a06900261a1"], &(0x7f0000187ff8)='.', 0x0, 0x5010, 0x0) r2 = creat(&(0x7f0000000040)='./file0/../file0\x00', 0x0) ioctl$RTC_UIE_OFF(r2, 0x7004) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r0, 0xc0505510, &(0x7f0000000500)={0x1, 0x0, 0x6861, 0x1, &(0x7f00000004c0)}) lsetxattr(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f00000001c0)=@known='system.posix_acl_access\x00', &(0x7f0000000200)='\x00', 0x1, 0x1) ioctl$VIDIOC_G_MODULATOR(r2, 0xc0445636, &(0x7f0000000300)={0x9, "39abebfaac9f5c78e7d2679198fd0c05d28e7f18ec77873d8d4bb437245de93b", 0xa0, 0xf6, 0x8000, 0x10, 0x7}) 09:38:56 executing program 4: r0 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) sendmsg(r0, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1}], 0x1}, 0x0) shutdown(r0, 0x1) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000080), &(0x7f00000000c0)=0x4) recvfrom(r0, &(0x7f0000000240)=""/4096, 0x1000, 0x0, 0x0, 0x0) 09:38:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000003c0)="0adc1f123c123f319bd070") socket$tipc(0x1e, 0x2, 0x0) r1 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105518, 0x0) 09:38:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x12000, 0x2) ioctl$PPPIOCGDEBUG(r3, 0x80047441, &(0x7f00000001c0)) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x8, 0x0, 0x3, 0x0, 0x0, 0x2000, 0xff], 0x1f004, 0x485}) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x0, 0x0) clock_gettime(0x7, &(0x7f00000002c0)) write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000140)={0xf, 0x1f, 0x0, 0x101}, 0xf) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x8912, &(0x7f0000000100)="0adc1f122aa46196a5b07001c338d5f75735c4e947102f396333ef0a739e55628f461e2bc33e060c55fcd6bb228fda73e72150d095172f96fd427ed6cd2ea1ae3e5461e98c6b53bd4edc4e9c0544ed48f5cbc7") r1 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r1, 0x29, 0xc7, &(0x7f0000000080)=0x3f, 0x4) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r1, 0x6, 0x15, &(0x7f00000002c0)=0x3, 0x4) r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) ioctl$VIDIOC_G_MODULATOR(r2, 0xc0445636, &(0x7f0000000180)={0x3, "7214bc8b7be88069d1ab2e2c671399a44da81c2e212f91795c2f2e2e8d4babb0", 0x100, 0x8000, 0x5, 0x1, 0x7}) setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x3, 0x0, 0xffffffffffff0e5b, 0x6, 0x8}, 0xc) getpeername$netrom(r2, &(0x7f0000000200)={{0x3, @rose}, [@rose, @bcast, @null, @bcast, @remote, @remote, @remote, @null]}, &(0x7f00000000c0)=0x48) close(r1) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000280)={0x0, @aes256}) [ 1155.823222] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1155.830528] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1155.837805] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1155.845083] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:56 executing program 5 (fault-call:5 fault-nth:26): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:56 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0xc002) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r1, 0xc0945662, &(0x7f0000000040)={0x0, 0x0, [], {0x0, @reserved}}) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr="c0a7824a3d61d3a6969676e05cbc439c"}}, 0x0, 0x0, 0x0, 0x0, 0xfb}, 0x98) 09:38:56 executing program 0: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', 0x0, 0x10}, 0x10) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000a40)=ANY=[@ANYBLOB="850000002e00a01b423c8f0000740000000090a2a5caa231a7e6ccc94cce9e3afc6a996178314bbf0826601bfb314d191e73634c3929874695af0324babd1578c50c6c9683a2997457614f28e7f9cb4237165b417605dd31eaef51fc4550d8def97f8257cdaffa63ec50af19745f2a13bdf40de49870537425374ea1ff0d4ff28bf2b90854df1f7b66648c96"], &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0x348, &(0x7f0000000480)=""/195}, 0x48) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-control\x00', 0x80, 0x0) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) r3 = getgid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000580)={{{@in=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@loopback}}, &(0x7f00000003c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000680)={{{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@dev}}, &(0x7f0000000400)=0xe8) mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='fuse\x00', 0x200000, &(0x7f0000000780)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@max_read={'max_read', 0x3d, 0xffff}}, {@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x200}}, {@max_read={'max_read', 0x3d, 0x8}}, {@default_permissions='default_permissions'}], [{@uid_eq={'uid', 0x3d, r4}}, {@obj_type={'obj_type', 0x3d, 'EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}}, {@dont_measure='dont_measure'}, {@smackfsroot={'smackfsroot'}}, {@smackfsdef={'smackfsdef', 0x3d, 'EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}}, {@audit='audit'}, {@smackfsfloor={'smackfsfloor', 0x3d, '!'}}, {@audit='audit'}, {@fowner_gt={'fowner>', r5}}, {@smackfshat={'smackfshat', 0x3d, 'GPLself'}}]}}) 09:38:56 executing program 1: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000040)=0xcd) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_nanosleep(0xfffffffffffffff2, 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, 0x0) 09:38:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000580)='/dev/dsp\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f00000005c0)={0x0, @in={{0x2, 0x4e23, @loopback}}, 0x80000000, 0x0, 0x9, 0x1f, 0x8}, &(0x7f0000000680)=0x98) setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000006c0)=ANY=[@ANYRES32=r2, @ANYBLOB="00009700222c55ffe26dff1d8284f7b131b085b0e5814469238fee926e9301642a0ff9b7291ab1d6226d0ed8185d5bfb8d48b49a2e7b3b61ab20edb403ab082fe560ad997c20f12d62757a9d855ac88600bdbc6e6c59fbcc12468cb1920384f74ab05ba9af4543df9e161a80a065a9dd3e69ff3675f16437a5d6302acb63a350b003aa708255788963a7e663806659cc7e0faccd804ccd5040502c"], 0x9f) r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000780), 0x4) close(r3) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) read(r4, &(0x7f0000002100)=""/4096, 0x35a6) r5 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x80000, 0x188) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000240)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@remote}}, &(0x7f0000000340)=0xe8) getresgid(&(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400)=0x0) mount$fuseblk(&(0x7f0000000100)='/dev/loop0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='fuseblk\x00', 0x8401, &(0x7f0000000440)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x3000}, 0x2c, {'user_id', 0x3d, r6}, 0x2c, {'group_id', 0x3d, r7}, 0x2c, {[{@blksize={'blksize', 0x3d, 0xa00}}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x200}}], [{@pcr={'pcr', 0x3d, 0x2c}}, {@fsmagic={'fsmagic', 0x3d, 0x6}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'system,posix_acl_accesscpuset'}}]}}) timer_create(0x0, &(0x7f0000000180)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040)) dup3(r3, r4, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r8 = gettid() tkill(r8, 0x14) 09:38:56 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x11) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x21a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f00000000c0)='logon\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000280), 0x0, 0xfffffffffffffffa) r1 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000340), 0x0, 0xfffffffffffffff8) r2 = add_key$user(&(0x7f0000000380)='user\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400)="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", 0x1000, 0xfffffffffffffffb) keyctl$dh_compute(0x17, &(0x7f0000001400)={r0, r1, r2}, &(0x7f0000001440)=""/146, 0x92, &(0x7f0000001640)={&(0x7f0000001500)={'rmd320\x00'}, &(0x7f0000001540)="8fdf8c1a1d98c66c5d5ce0e2dd9e1c4a93f3df18f820d992acc6c16736a62a3b96c6804131c6d63fb52fccffae9c5abc16ade12b588fb5aaa7c52b93c30d97c93a173ef4336614e3b08b1903b72e2175d5883908e3f588be9af03d2dbb6a46344120c3289df37bc19ae2742faab787203ca06ad5cebe410c3bb56cf61607c7eaf562a4e5becb191736932d7d97cbbdf4ebcf644af83a0f2ff093cbed0f5c2fc3bcd263c59ee4942ec5e9397eaf0467e571eb5a660d7b5c4433d09ed09f2c048f63964d4b5e3dffaa07d2db5d6927b014a7930ddd91086d6a779c3d45b63764cafd1c407671238d088dc96e0bd4dff70358b1257dc5", 0xf5}) bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c) r3 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x80) ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000140)) 09:38:56 executing program 4: r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) sendmsg$rds(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f00000002c0)=[@mask_cswp={0x58, 0x10e, 0x9, {{}, 0x0, 0x0}}], 0x58}, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x80000, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f0000000040)=0x1) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000000c0)=0x0) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000100)=r2) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz1\x00', 0x1ff) write$capi20_data(r1, &(0x7f00000000c0)=ANY=[], 0xa) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000140)={'ip6tnl0\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x27}}}) 09:38:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) 09:38:56 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c123f319bd070") clone(0x3102001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r1, 0x100000000000000, 0x3) tkill(r1, 0x2d) r2 = socket$inet6_udp(0xa, 0x2, 0x0) sendto$inet6(r2, &(0x7f00000001c0)="7da894af4f41418cd1a650ea2bf9b5e2441eeea190d8c8e8370dbb3db592eb367e8392345feaa1cfc5af3be41703f03a06f75152b3a2e93f8020cb14cce52cd6e9a979ac1feae53a785b5078f1acdb20077c49363a9d0f933e4c608ebfbc1c9f2767c28029f31733f5e5f7f3dca4d43a5fabe787b7764d0b91d3bf6e8ccbad160908cc769d441888e9f9e2d723461336c0ce941fb20830516ffeee25a2a3e1ad3a1d38979a32d726398004afa1b70ab0fcd8", 0xb2, 0x4000, &(0x7f0000000080)={0xa, 0x4e23, 0x40, @rand_addr="99c2037650386aaf6b651e97735e2564"}, 0x1c) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x101400, 0x0) ioctl$TCGETA(r3, 0x5405, &(0x7f0000000040)) ptrace$cont(0x18, r1, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000000c0)={@empty, @mcast1, @ipv4, 0x0, 0x0, 0x0, 0x12a}) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x9, r1, 0x0, 0x0) 09:38:56 executing program 2: mknod(&(0x7f0000000300)='./bus\x00', 0x1001040, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0xb00, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='9p\x00', 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) r1 = open(&(0x7f0000000040)='./bus\x00', 0x10b87d, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r0, 0xc0186419, &(0x7f0000000080)={0x4, &(0x7f0000000180)=""/194, &(0x7f0000000280)=[{0x9, 0x8b, 0x200, &(0x7f0000000340)=""/139}, {0x0, 0xcf, 0x20000000000, &(0x7f0000000400)=""/207}, {0xa4f, 0x86, 0x9, &(0x7f0000000500)=""/134}, {0x8, 0xfd, 0x1, &(0x7f00000005c0)=""/253}]}) vmsplice(r1, &(0x7f0000000200), 0x100000000000012f, 0x0) 09:38:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x442100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x220, 0x0, 0x0, 0x10000007a) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000080)={0x78, 0x0, [0x200000482]}) 09:38:56 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x35, &(0x7f0000000040)={0x1}, 0x4) [ 1156.077879] FAULT_INJECTION: forcing a failure. [ 1156.077879] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.137637] CPU: 0 PID: 3967 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1156.144655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.154136] Call Trace: [ 1156.154155] dump_stack+0x138/0x19c [ 1156.154173] should_fail.cold+0x10f/0x159 [ 1156.160412] should_failslab+0xdb/0x130 [ 1156.160437] kmem_cache_alloc+0x2d9/0x780 [ 1156.160450] ? __lock_acquire+0x5f9/0x45e0 [ 1156.160466] mmu_topup_memory_caches+0x86/0x320 [ 1156.160477] kvm_mmu_load+0x21/0xd50 [ 1156.160487] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1156.160501] vcpu_enter_guest+0x2ea0/0x5270 [ 1156.160510] ? save_trace+0x290/0x290 [ 1156.160518] ? lock_downgrade+0x6e0/0x6e0 [ 1156.160528] ? find_held_lock+0x100/0x130 [ 1156.160539] ? emulator_read_emulated+0x50/0x50 [ 1156.211839] ? lock_acquire+0x16f/0x430 [ 1156.215922] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1156.220966] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1156.225812] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1156.231319] kvm_vcpu_ioctl+0x401/0xd10 [ 1156.235457] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1156.239777] ? trace_hardirqs_on+0x10/0x10 [ 1156.244215] ? __f_unlock_pos+0x19/0x20 [ 1156.248187] ? save_trace+0x290/0x290 [ 1156.252071] ? __f_unlock_pos+0x19/0x20 [ 1156.256049] ? __fget+0x210/0x370 [ 1156.259500] ? find_held_lock+0x35/0x130 [ 1156.263546] ? __fget+0x210/0x370 [ 1156.266990] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1156.271130] do_vfs_ioctl+0x7b9/0x1070 [ 1156.275006] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1156.279770] ? lock_downgrade+0x6e0/0x6e0 [ 1156.283934] ? ioctl_preallocate+0x1c0/0x1c0 [ 1156.288431] ? __fget+0x237/0x370 [ 1156.291881] ? security_file_ioctl+0x8f/0xc0 [ 1156.296299] SyS_ioctl+0x8f/0xc0 [ 1156.299737] ? do_vfs_ioctl+0x1070/0x1070 [ 1156.303975] do_syscall_64+0x1eb/0x630 [ 1156.307860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1156.312703] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1156.317980] RIP: 0033:0x458c29 [ 1156.321181] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1156.328904] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:56 executing program 5 (fault-call:5 fault-nth:27): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:56 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000040)=@nullb='[d::],0::b:\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='ceph\x00', 0x200000, 0x0) pkey_alloc(0x0, 0x3) 09:38:56 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x11) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x21a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f00000000c0)='logon\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000280), 0x0, 0xfffffffffffffffa) r1 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000340), 0x0, 0xfffffffffffffff8) r2 = add_key$user(&(0x7f0000000380)='user\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400)="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", 0x1000, 0xfffffffffffffffb) keyctl$dh_compute(0x17, &(0x7f0000001400)={r0, r1, r2}, &(0x7f0000001440)=""/146, 0x92, &(0x7f0000001640)={&(0x7f0000001500)={'rmd320\x00'}, &(0x7f0000001540)="8fdf8c1a1d98c66c5d5ce0e2dd9e1c4a93f3df18f820d992acc6c16736a62a3b96c6804131c6d63fb52fccffae9c5abc16ade12b588fb5aaa7c52b93c30d97c93a173ef4336614e3b08b1903b72e2175d5883908e3f588be9af03d2dbb6a46344120c3289df37bc19ae2742faab787203ca06ad5cebe410c3bb56cf61607c7eaf562a4e5becb191736932d7d97cbbdf4ebcf644af83a0f2ff093cbed0f5c2fc3bcd263c59ee4942ec5e9397eaf0467e571eb5a660d7b5c4433d09ed09f2c048f63964d4b5e3dffaa07d2db5d6927b014a7930ddd91086d6a779c3d45b63764cafd1c407671238d088dc96e0bd4dff70358b1257dc5", 0xf5}) bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c) r3 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x80) ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000140)) 09:38:56 executing program 4: ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = creat(&(0x7f0000000300)='./bus\x00', 0x1c0) ioctl$EVIOCSABS3F(r0, 0x401845ff, 0x0) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) preadv(r1, 0x0, 0x3c8, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x0, 0x0) write$FUSE_POLL(0xffffffffffffffff, 0x0, 0xd6) futex(0x0, 0x0, 0x0, 0x0, &(0x7f0000048000), 0x0) ioctl$KDMKTONE(0xffffffffffffffff, 0x4b30, 0x0) r3 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) r4 = openat$cgroup_ro(r3, &(0x7f00000005c0)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[.\xf6\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+\x8d\xed\xa6\\\x1c\xc3\x97\x94\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4\xc4\x88C\xa2B\x8b\x81\v\xea\t\xf0\x8fw\a\f\x15\xe2\xd0q\xbb\r\x17`s\xec\x85>\xcf\xab9(\xf6.\x15\xcd2-\xf2\xc4\xd8\x00a\xd5\xd9\xb5Z\xd7\xb4\xac\x1d_+k\xd6\x8ag\xdceHE\xd5\x1c\x8a\xbd#\xcc\x82\xca\xc2(\xb6\xe1\x99p\x9b\xa3D\xd2\x91\x96\xef\x05\fv\x16\x14\xcc\xea\x9d\x11w\x1e\xb5VG\x9ad\x9a`=^h\x8c8\xc9\"\x1eO\xb5vk\xc9\xcfi\x90\xd7\xd3H\xa1\xb4\xda\v\x17\x95\xf7\x19\x99\x99\x92\xc3\xc0\x8a\x18\xc7\"g\xd7B\x8f\x85\x18\xf3\x02\xa7\xb6\x83\x92\xefY\xef\x85\x92\x10E\x18\xbc\xacy\xd6\xa7Wh\xcd\xd0\xfa\xcc\xde\xeb\xdf\xad\xfd\xb0\xee\xfb\xc2(\x8cj\xd0uj{4\xb2\xe1p\x88u6\x9a;\xaa\x9f+J\x9e\xe3\xcc\xc7O\xad\x84\x8c;\x92~,\x15\xb2\x97\f~\xa0W\x16\x8b\a\x88\xaa\xe4C\xaf\x90\xdf\x7f\xe51\x00/n\xb5f\x1a\x8c+\xea<\xe3N@\x9e\xec\xbe{\x90x\xc6\x95!\xea\x11\xda\xe1I\x1d\xcbY\xe1\x01\xd2d\xae\xd1(>\xa3\xa9\x93\x16\xc6G\x94|', 0x2761, 0x0) write$cgroup_pid(r4, &(0x7f0000000080), 0xfffffe38) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x3c, &(0x7f0000000000)=[@in={0x2, 0x4e20, @multicast1}, @in={0x2, 0x4e21, @multicast1}, @in6={0xa, 0x4e22, 0x1, @loopback, 0xfffffffffffffff9}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f00000001c0)={r5, 0xa2, "72e507264137b36f602ac5976e74dff3c74f168667c15ec73004b9b91cb6edc3c6ad62dd0f0db95bc8f03d26e3577b623724e9817699e1fb75fddf41c071a16265edf3636dd755608ff0c3740eb10c46a1a85a3f2ff20201dab1eefc25559d59f29d317f487b4648ddf7879690f2d7e2235b8c1eb6e1d3e8f270ba9ffa8ca556bbac9b3d930d654fe1bd1a7e1153baaa4a79492ee76a7c6f288937a7f45002c4ec38"}, &(0x7f00000002c0)=0xaa) setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000440)={'raw\x00', 0x3, [{}, {}, {}]}, 0x58) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r4, 0x660c, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') listen(0xffffffffffffffff, 0x0) r6 = open(&(0x7f0000000280)='./bus\x00', 0x141042, 0x0) write$P9_RCREATE(r6, &(0x7f00000000c0)={0xfffffffffffffef6, 0x73, 0x0, {{0x0, 0x0, 0xffffffffffffffff}, 0x4000000009d}}, 0x18) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x10, r6, 0x0) 09:38:56 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc\x00', 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x5452, &(0x7f0000000080)={0x1}) socketpair$tipc(0x1e, 0x7, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = getpgrp(0xffffffffffffffff) fstat(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={r2, r3, r4}, 0xc) [ 1156.336165] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1156.343466] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1156.350729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1156.357988] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x80001, 0x0) r2 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x400c00) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000080)={0x0, @empty, @local}, &(0x7f00000000c0)=0xc) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r3, 0x1, 0x6, @local}, 0x10) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000d4b000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x2, [{{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @mcast2}}]}, 0x190) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f00000002c0)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) [ 1156.466078] FAULT_INJECTION: forcing a failure. [ 1156.466078] name failslab, interval 1, probability 0, space 0, times 0 [ 1156.507365] CPU: 1 PID: 3998 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1156.514353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1156.523814] Call Trace: [ 1156.526436] dump_stack+0x138/0x19c [ 1156.530083] should_fail.cold+0x10f/0x159 [ 1156.534348] should_failslab+0xdb/0x130 [ 1156.538349] kmem_cache_alloc+0x2d9/0x780 [ 1156.542608] ? __lock_acquire+0x5f9/0x45e0 [ 1156.546862] mmu_topup_memory_caches+0x86/0x320 [ 1156.551676] kvm_mmu_load+0x21/0xd50 [ 1156.555411] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1156.560186] vcpu_enter_guest+0x2ea0/0x5270 [ 1156.564518] ? save_trace+0x290/0x290 [ 1156.568325] ? lock_downgrade+0x6e0/0x6e0 [ 1156.572485] ? find_held_lock+0x100/0x130 [ 1156.576646] ? emulator_read_emulated+0x50/0x50 [ 1156.581567] ? lock_acquire+0x16f/0x430 [ 1156.585553] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1156.590593] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1156.595447] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1156.600483] kvm_vcpu_ioctl+0x401/0xd10 09:38:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x105200, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f0000000080)=@srh={0xff, 0xc, 0x4, 0x6, 0x40, 0x40, 0x2cb5, [@loopback, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @empty, @dev={0xfe, 0x80, [], 0xf}, @mcast1]}, 0x68) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_TSS_ADDR(r2, 0xae47, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000280)={0x1000000077, 0x0, [0x4b564d03, 0x0, 0x40000073, 0x11]}) 09:38:57 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = epoll_create1(0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x80, 0x0) ioctl$BLKFLSBUF(r2, 0x1261, &(0x7f0000000100)=0xffffffff) ioctl$UI_SET_RELBIT(r2, 0x40045566, 0xc) r3 = epoll_create1(0x0) fcntl$lock(r3, 0x7, &(0x7f0000000000)={0x1}) unshare(0x400) fcntl$lock(r1, 0x7, &(0x7f0000000080)) fcntl$lock(r3, 0x6, &(0x7f0000000040)) [ 1156.604471] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1156.608622] ? trace_hardirqs_on+0x10/0x10 [ 1156.612862] ? __f_unlock_pos+0x19/0x20 [ 1156.616845] ? save_trace+0x290/0x290 [ 1156.620650] ? __f_unlock_pos+0x19/0x20 [ 1156.624721] ? __fget+0x210/0x370 [ 1156.628185] ? find_held_lock+0x35/0x130 [ 1156.632255] ? __fget+0x210/0x370 [ 1156.635721] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1156.639975] do_vfs_ioctl+0x7b9/0x1070 [ 1156.643872] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1156.648637] ? lock_downgrade+0x6e0/0x6e0 [ 1156.652799] ? ioctl_preallocate+0x1c0/0x1c0 [ 1156.657200] ? __fget+0x237/0x370 [ 1156.660649] ? security_file_ioctl+0x8f/0xc0 [ 1156.665046] SyS_ioctl+0x8f/0xc0 [ 1156.668404] ? do_vfs_ioctl+0x1070/0x1070 [ 1156.672537] do_syscall_64+0x1eb/0x630 [ 1156.676497] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1156.681414] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1156.686674] RIP: 0033:0x458c29 [ 1156.689863] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1156.697556] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:57 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getrandom(0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = getpgid(0x0) r1 = syz_open_procfs(r0, &(0x7f0000000100)='net/arp\x00') preadv(r1, &(0x7f0000000700), 0x31f, 0x10400003) [ 1156.704986] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1156.712350] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1156.719719] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1156.726974] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:57 executing program 2: r0 = syz_open_dev$media(&(0x7f00000002c0)='/dev/media#\x00', 0xff, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0xfffffffffffffffd, @dev={0xfe, 0x80, [], 0x1f}, 0x386}, 0x1c) listen(0xffffffffffffffff, 0x6) socket$inet6_tcp(0xa, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x800000000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000880)='cifs.idmap\x00', &(0x7f00000008c0)={'syz', 0x2}, &(0x7f0000000900)='\x00', 0xfffffffffffffffd) request_key(0x0, &(0x7f0000000780)={'syz', 0x2}, &(0x7f00000001c0)='vboxnet1\x00', 0xfffffffffffffffb) setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000240), 0x4) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) keyctl$reject(0x13, 0x0, 0x0, 0x8, 0x0) sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKBSZGET(r1, 0x80081270, &(0x7f0000000180)) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(0xffffffffffffffff, 0x80045530, &(0x7f0000000100)=""/68) pipe2$9p(&(0x7f0000000200), 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000003c0)='nfs\x00\xef\xf1a\x17\x12\x9e\xd0Y\x8a\xa8\xd4', 0x0, &(0x7f0000000000)) ioctl$TCSBRKP(r1, 0x5425, 0x7) socket$inet(0x10, 0x3, 0xc) lstat(0x0, 0x0) add_key$user(0x0, 0x0, &(0x7f0000000400)="0800000000000000741e8361f9d74dcb36d2a90bef643e356e392bb5c2d93f792309ed877fe030301086ebdb69cfb9091a9c7a56fc5cb277c89fdbcc01761471aca8bdffa5e4abd4d2b3e457d0fe7e6a2b4bf4cbe05fddf6a1ddc8de5d16f9763e57130d9d141eb3", 0x68, 0xfffffffffffffffd) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r3, 0x0, 0x0, 0x20000004, &(0x7f00000000c0)={0xa, 0x4e22}, 0x1c) sendto$inet6(r3, &(0x7f0000000280)="d5", 0x1, 0x0, 0x0, 0x0) close(0xffffffffffffffff) 09:38:57 executing program 4: msgrcv(0x0, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x800) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f00000001c0)=""/170, &(0x7f0000000000)=0xaa) msgsnd(0x0, &(0x7f0000000080)={0x3, "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"}, 0x12a, 0x0) 09:38:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet6(0x10, 0x1000000100000004, 0xffffffffff7ffffe) sendmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000400)="5500000018007fd508fe01b2a4a280930a06000000a8430891000000390008000800020000dc13382d0010009b84136ef75afb83de448daa72540d816ed2c55327c43ab8220000060cec4fab91d400000000000000", 0x55}], 0x1}, 0x0) 09:38:57 executing program 1: r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f00000000c0)={0x0, 0x0, 0x100000001, [], 0x0}) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x480440}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x15c, r1, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}]}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}]}, @IPVS_CMD_ATTR_DAEMON={0x5c, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller1\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'irlan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7fffffff}]}, @IPVS_CMD_ATTR_DAEMON={0x64, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x7fffffff}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'tunl0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x77}]}, 0x15c}, 0x1, 0x0, 0x0, 0x40}, 0x4000) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f0000000340)={0x0, 0x45, 0x0, [], &(0x7f0000000300)=0x9}) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f00000003c0)={0x0, 0x0, 0x1000, [], &(0x7f0000000380)=0x3}) 09:38:57 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x21000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") socket$l2tp(0x18, 0x1, 0x1) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x400, 0x0) accept4$packet(r1, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14, 0x0) sendto$packet(r1, &(0x7f00000000c0)="35bd33531d7ad5c55e4d2992b3acc3358caf4a5808b8d32f85b54844b5e1ed97c31eaec3ef24b23eae957ffda2d6d24387dcf7cc8c01947fd15038b91e55f48773eabdf4e16cca8f6b2eba8d3c051883afe9ab399c3008fe8efc310931533f415e149d08614b5fce814ce08e01602b8b1e01774034df862fdabcbe1a4823226ccf0843b9745425f86afe368c7e2866eb1e6050405c8d39d5cc79a44276ea5481bb122938ea2aac89762e43af8f48bd8ccce7e4551545b4bc5bff", 0xba, 0x80, &(0x7f00000001c0)={0x11, 0x1f, r2, 0x1, 0x5, 0x6, @remote}, 0x14) ioctl$RTC_VL_CLR(r1, 0x7014) connect$l2tp(0xffffffffffffffff, 0x0, 0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r3, &(0x7f0000000080)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}, 0x0, 0x4}}, 0x26) getsockopt$packet_buf(r3, 0x111, 0x2, 0x0, 0x0) 09:38:57 executing program 5 (fault-call:5 fault-nth:28): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = open(&(0x7f00009e1000)='./file0\x00', 0x8044, 0x0) fcntl$setlease(r1, 0x400, 0x0) unlink(&(0x7f0000000080)='./file0\x00') 09:38:57 executing program 3: r0 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000280)=0x4dd, 0x4) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket(0x1f, 0x5, 0x100000001) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e20, 0xffff, @local, 0x20}}, 0x1000, 0x8, 0x4, 0xa8, 0x1ff}, &(0x7f00000000c0)=0x98) accept$packet(r2, 0x0, &(0x7f0000000180)) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000100)={r3, 0x2, 0x2db2, 0x5}, &(0x7f0000000140)=0x10) syz_open_dev$dspn(&(0x7f00000002c0)='/dev/dsp#\x00', 0x2, 0x40800) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000200)=@nat={'nat\x00\x00\x00\x00\x00\x00\x00\x03\x00', 0x19, 0x1, 0x1e2, [0x20003680, 0x0, 0x0, 0x200036b0, 0x200036e0], 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"/481]}, 0x259) 09:38:57 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000840)=""/148, 0x94}], 0x1, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000300)='net/arp\x00') r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="080a25bd7000fcdbdf25030000000c00080005000000000000000c000400ce000000000000000c000200fc59dc200000000042e0331a4bb876abb2a141cf4680e144053ffed55bd7dcf7e7d16f326464fa8d039952881962e601639ef82f587de5a1f3b00a21541bb0b22bbcfff67d03a10133935db745cdbd666635"], 0x38}, 0x1, 0x0, 0x0, 0x880}, 0x40004) preadv(r0, &(0x7f0000000700), 0x31f, 0x10400003) 09:38:57 executing program 4: sendmmsg(0xffffffffffffffff, &(0x7f0000007e00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="140000000000000029000000430000004a090000"], 0x14}}], 0x1, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) sendmmsg(r0, &(0x7f0000007d80), 0x6, 0x0) 09:38:57 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000fc0)="339a0e63c9476288b671afdbd53a5994e137381f62021d1951b627b8dda57a5d17d744648c81c5703ed8146ab1b0171f89091b1dd3238d03dbb686df460963245dedf2013ee555af99499e44ad420dbf65fd46fbc99a1274429e2d5783751815828ec8cb3553110cca66460215353d19f6d8bbd8fb08ad0491634ac2fd10e2cd30bcd7fede24263a7fff16e53ea293f3551b7147c33a44ea437fb1515c3e8d4f162fdebf8ebe11ae6fcd9372c8d8f19556ee091fe94215ae9434da412f6fa4cb6561e5f78ff9707844ee5d573fb294437722d9a06dfa61748c32c73d759933a8dd344c947d3efdbe90d0eb049df5fbb0c19f6785264b619c530d97395d44b04f7e2a280d658c7871ad373b792678c49227999651ef3b2ee1bc2b8f3035db2d6e8e09aa3837233c8713065a8ad131d24f6c42a3220d0e07c3d3e95d9f44f059a5dd10c0971608f874ecf53aadfa5050ff40f2c3c4a629b6445e5836100afff5a8977583653b40ca116f8f11416e5c1bd5499636ddae25fc49709f0309cf5c0bf8e432160c258d14223b3b0d009b09858645773dd97e68a9531072713cff077b2e73e03ed4f145e9199c126a7f235e5674a3c7f5c7129ac7c1a3319590249b6d34ef6c3d8b94c6fc7cdcbddb053243f33e7bc1f230d3bc7dfc4359e33992d0a3946b914a093287a76ac4a249b5b86cc75476466e409553355fefab75e9268a8751ffc9481fcff1f49c475699595b315e2147eebe8b7291600c6b1cf7c8f24d587b9464a67e5ccec17820e711b98f4f7d5053642068a3fff72b53e2622d6e8b4a4c815fb2ea90ef63e141209dd29254e5ab5bde9c6817b3cb184586049e7741b2d8b5b1a19e99e1834a25959155720c1c0efa4d9d3c42e1ba282847d476cef0228b6a1422aba08e5f3c1cd279bb20dcf3e90f80a4a8ac093de9f0d9c11a540aff2de27437787bbed317439cafb71e7f92b7e02cbadb076f04ba2cb8c96aeef53c74d9036c922b1b24a79228e833abc661b5630caa45389341cb8ddf277fd916141023fb53c0d155faf6fdfb593e22db25c4f8afdcd90d437672ebe975f4a5f445bbdd845505fcfea702a42d821d3dc11720de0009e83161e5a089d09184346606e126842de54e85e20aa5bac874367a8690d09d6ee61278bd424eabe824ff22693b0cece9e4d935f28bb7efd85afb1642a363d583eb01f48f25784f80002b163bd3da724b0391dac7c23f76b5c5c6319f7aab18a486d5607f68ce2f83d2a6a8a13f8ecdb845b8af96230f063019ff113698c720403bbf6202b2d50800000000000000d538fc1fa57518769bd3bfc11e743b4e56b01f17483a152abcca0bd84a1011bd703a494150176d17322cf10307d259999622b76ac6a86407c9ed281ae29b9b569b382d3f39fe4d07706c96c41a565437d9edb1cb532d900efe54f518044bba5fa5791c1797c569a3d6c21342d92f4b104a3d957cf85e617c46ac97b6785a455ce7765eb80a02de4dffde0207061e1afb61e777379b202707f0f49edcf21a186eae3371280d89aabb3bd53408b4cb2a8e42f9f4d0bc11d766eb51940f5e92559b91954649f2786fb6683e19ca5f609c40e327876f5515aeefce0f390d3fd557aabcb091b04131f3edc1ed80a2d5a812786530a302ab54f7e1f3a6bca852722d1af85ceab2e6565733b31f76d795b1a603a780564b181ebadb0028c03d0c2c2831ce3a83369bf4ec61f802633e719040dac86c9c26e01bdad82b", 0x4da}], 0x1}, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x2f735c7112103620) write$rfkill(r1, &(0x7f0000000080)={0x100000a48c, 0x2, 0xfffffffffffffffd, 0x0, 0x1}, 0x8) 09:38:57 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback, 0x200}, 0x1c) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000080), 0x4) fadvise64(r0, 0x0, 0x6, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x8, 0x101100) getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f00000000c0), &(0x7f0000000100)=0x4) [ 1157.082032] FAULT_INJECTION: forcing a failure. [ 1157.082032] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.123770] CPU: 1 PID: 4033 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1157.130758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.140125] Call Trace: [ 1157.142731] dump_stack+0x138/0x19c [ 1157.146380] should_fail.cold+0x10f/0x159 [ 1157.150545] should_failslab+0xdb/0x130 [ 1157.154538] kmem_cache_alloc+0x2d9/0x780 [ 1157.158718] ? vcpu_enter_guest+0x2657/0x5270 [ 1157.163233] mmu_topup_memory_caches+0x86/0x320 [ 1157.168181] kvm_mmu_load+0x21/0xd50 09:38:57 executing program 2: ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f00000001c0)=ANY=[@ANYBLOB="d5ddbb83a7"]) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) uselib(&(0x7f0000000000)='./file0\x00') 09:38:57 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x8000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1157.171906] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1157.176677] ? vcpu_enter_guest+0x20f0/0x5270 [ 1157.181186] vcpu_enter_guest+0x2ea0/0x5270 [ 1157.185524] ? emulator_read_emulated+0x50/0x50 [ 1157.190226] ? lock_acquire+0x16f/0x430 [ 1157.194213] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1157.199251] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1157.204111] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1157.209144] kvm_vcpu_ioctl+0x401/0xd10 [ 1157.213160] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1157.217325] ? trace_hardirqs_on+0x10/0x10 09:38:57 executing program 4: r0 = getpgrp(0x0) r1 = gettid() rt_sigprocmask(0x2, &(0x7f00000000c0)={0x4}, 0x0, 0xffffff97) rt_tgsigqueueinfo(r0, r1, 0x1d, &(0x7f0000000040)={0x0, 0x0, 0x1}) rt_sigtimedwait(&(0x7f0000000200)={0x7fffffffffffff66}, &(0x7f0000a72ff0), 0x0, 0x8) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x400000, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r2, 0x10f, 0x82, &(0x7f0000000100)=0x8000, 0x4) 09:38:57 executing program 2: r0 = socket$packet(0x11, 0x8000000003, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x0, 0x8de7d8f023d06bd7}, 0x4) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000001c0)='bridge0\x00', 0xa5) socket$inet_udplite(0x2, 0x2, 0x88) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x84080, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000080)=ANY=[@ANYBLOB="00020010", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000000c0)=0x20) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000840)={r3, 0xff}, &(0x7f0000000800)=0x8) sendmmsg(r1, &(0x7f00000043c0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)="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", 0x5c1}], 0x1}}], 0x1, 0x0) [ 1157.221585] ? __f_unlock_pos+0x19/0x20 [ 1157.225575] ? save_trace+0x290/0x290 [ 1157.229388] ? __f_unlock_pos+0x19/0x20 [ 1157.233376] ? __fget+0x210/0x370 [ 1157.236849] ? find_held_lock+0x35/0x130 [ 1157.240921] ? __fget+0x210/0x370 [ 1157.244383] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1157.248542] do_vfs_ioctl+0x7b9/0x1070 [ 1157.252447] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1157.257317] ? lock_downgrade+0x6e0/0x6e0 [ 1157.261521] ? ioctl_preallocate+0x1c0/0x1c0 [ 1157.265947] ? __fget+0x237/0x370 [ 1157.269426] ? security_file_ioctl+0x8f/0xc0 09:38:57 executing program 4: r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/validatetrans\x00', 0x1, 0x0) pwrite64(r0, 0x0, 0x0, 0x26) exit(0x1) [ 1157.273987] SyS_ioctl+0x8f/0xc0 [ 1157.277375] ? do_vfs_ioctl+0x1070/0x1070 [ 1157.281628] do_syscall_64+0x1eb/0x630 [ 1157.285558] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1157.290511] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1157.295855] RIP: 0033:0x458c29 [ 1157.299050] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1157.306778] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:38:57 executing program 5 (fault-call:5 fault-nth:29): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:57 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{0x0, 0x24}], 0x1, 0x0, 0x172}, 0x0) recvmmsg(r0, &(0x7f00000034c0)=[{{&(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000001c0)=""/89, 0x59}, {&(0x7f0000000040)=""/54, 0x36}, {&(0x7f0000000240)=""/196, 0xc4}, {&(0x7f0000000340)=""/70, 0x46}, {&(0x7f0000000140)=""/51, 0x33}], 0x5, &(0x7f0000000440)=""/253, 0xfd}, 0x400}, {{&(0x7f0000000540)=@ethernet, 0x80, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/171, 0xab}, {&(0x7f0000000680)}], 0x2, &(0x7f0000000700)=""/186, 0xba}, 0x5}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f00000007c0)=""/212, 0xd4}, {&(0x7f00000008c0)=""/192, 0xc0}, {&(0x7f0000000980)=""/92, 0x5c}, {&(0x7f0000000a00)=""/36, 0x24}, {&(0x7f0000000a40)=""/155, 0x9b}, {&(0x7f0000000b00)=""/75, 0x4b}, {&(0x7f0000000b80)=""/82, 0x52}, {&(0x7f0000000c00)=""/51, 0x33}, {&(0x7f0000000c40)=""/100, 0x64}], 0x9}, 0x1}, {{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000000d80)=""/42, 0x2a}, {&(0x7f0000000dc0)=""/101, 0x65}, {&(0x7f0000000e40)=""/56, 0x38}, {&(0x7f0000000e80)=""/199, 0xc7}], 0x4, &(0x7f0000000fc0)=""/168, 0xa8}, 0x3}, {{&(0x7f0000001080)=@ipx, 0x80, &(0x7f0000003440)=[{&(0x7f0000001100)=""/160, 0xa0}, {&(0x7f00000011c0)=""/188, 0xbc}, {&(0x7f0000001280)=""/4096, 0x1000}, {&(0x7f0000002280)=""/94, 0x5e}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/243, 0xf3}, {&(0x7f0000003400)}], 0x7}}], 0x5, 0x40, &(0x7f0000003600)) bind$llc(r1, &(0x7f0000003640)={0x1a, 0x110, 0x81, 0x3ff, 0x1ff, 0x3ff}, 0x10) r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x2) readv(r2, &(0x7f00000000c0), 0xe) write$FUSE_NOTIFY_INVAL_ENTRY(r2, 0x0, 0x0) 09:38:57 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x9, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f00000002c0)=0x1, 0xffffffffffffff64) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x101000, 0x0) setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f00000001c0)=0x100, 0x4) r3 = dup2(r1, r1) ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = gettid() setsockopt$inet_mreqsrc(r3, 0x0, 0x8000000000004, 0x0, 0x1b) ptrace(0x10, r4) clock_gettime(0x7, &(0x7f0000000240)) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000200), 0x4) readv(r0, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1) 09:38:57 executing program 2: r0 = socket(0x1e, 0x2, 0x0) bind(r0, &(0x7f00000002c0)=@nl=@kern={0x10, 0x0, 0x0, 0x40000}, 0x80) bind(r0, &(0x7f00000019c0)=@x25={0x9, @null=' \x00'}, 0xffffff45) accept4$packet(r0, 0x0, &(0x7f0000001980), 0x80800) recvmsg$kcm(r0, &(0x7f0000001740)={&(0x7f00000001c0)=@can, 0x80, &(0x7f00000015c0)=[{&(0x7f0000000240)=""/74, 0x4a}, {&(0x7f0000000340)=""/70, 0x46}, {&(0x7f00000003c0)=""/138, 0x8a}, {&(0x7f0000000480)=""/132, 0x84}, {&(0x7f0000000540)=""/71, 0x47}, {&(0x7f00000005c0)=""/4096, 0x1000}], 0x6, &(0x7f0000001640)=""/212, 0xd4}, 0x10000) r1 = accept4$rose(r0, &(0x7f0000000080)=@short={0xb, @remote, @rose}, &(0x7f00000000c0)=0x1c, 0x80000) recvfrom$unix(r0, &(0x7f0000000100)=""/19, 0x13, 0x12042, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) flock(r0, 0x4) mkdir(0x0, 0x0) chdir(0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000200)="0adc1f123c123f319bd070") symlink(&(0x7f0000000140)='..', &(0x7f00000000c0)='./file0\x00') umount2(&(0x7f0000000180)='../file0\x00', 0x0) symlink(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)='./file1\x00') open$dir(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000001800)={0x0, 0x6}, &(0x7f0000001840)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000001900)={r3, 0x5c, &(0x7f0000001880)=[@in={0x2, 0x4e24, @multicast2}, @in={0x2, 0x4e24, @broadcast}, @in6={0xa, 0x4e20, 0xf6, @ipv4={[], [], @broadcast}, 0x733f}, @in={0x2, 0x4e22, @multicast1}, @in={0x2, 0x4e20, @loopback}]}, &(0x7f0000001940)=0x10) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f00000017c0)) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000001780)={'lapb0\x00', {0x2, 0x4e23, @remote}}) [ 1157.314235] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1157.326875] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1157.334417] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1157.341790] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1157.350152] net_ratelimit: 19 callbacks suppressed [ 1157.350157] protocol 88fb is buggy, dev hsr_slave_0 [ 1157.360804] protocol 88fb is buggy, dev hsr_slave_1 09:38:57 executing program 0: mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffff) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x4002, 0x0) write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB='\a\x00\x00\x00'], 0xe) truncate(&(0x7f0000000240)='./file0\x00', 0x90002) sendfile(0xffffffffffffffff, r0, 0x0, 0x2) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x2, 0x0) ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f0000000180)={0x1, &(0x7f00000000c0)=[{0x1, 0x0, 0x0, 0xd30}]}) ioctl$BLKREPORTZONE(0xffffffffffffffff, 0xc0101282, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, &(0x7f0000000140), 0x8800000) [ 1157.447685] FAULT_INJECTION: forcing a failure. [ 1157.447685] name failslab, interval 1, probability 0, space 0, times 0 [ 1157.463592] CPU: 1 PID: 4083 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1157.468147] audit: type=1800 audit(1555925937.984:165): pid=4085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.0" name="file0" dev="sda1" ino=17426 res=0 [ 1157.470714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1157.470720] Call Trace: [ 1157.470740] dump_stack+0x138/0x19c [ 1157.470759] should_fail.cold+0x10f/0x159 [ 1157.470776] should_failslab+0xdb/0x130 [ 1157.470786] kmem_cache_alloc+0x2d9/0x780 [ 1157.470797] ? __lock_acquire+0x5f9/0x45e0 [ 1157.470812] mmu_topup_memory_caches+0x86/0x320 [ 1157.470828] kvm_mmu_load+0x21/0xd50 [ 1157.470838] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1157.470852] vcpu_enter_guest+0x2ea0/0x5270 [ 1157.470861] ? save_trace+0x290/0x290 [ 1157.470870] ? lock_downgrade+0x6e0/0x6e0 [ 1157.470881] ? find_held_lock+0x100/0x130 [ 1157.470892] ? emulator_read_emulated+0x50/0x50 [ 1157.470900] ? lock_acquire+0x16f/0x430 [ 1157.470910] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1157.470926] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1157.470935] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1157.470951] kvm_vcpu_ioctl+0x401/0xd10 [ 1157.584440] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1157.588599] ? trace_hardirqs_on+0x10/0x10 [ 1157.592932] ? __f_unlock_pos+0x19/0x20 [ 1157.596909] ? save_trace+0x290/0x290 [ 1157.600714] ? __f_unlock_pos+0x19/0x20 [ 1157.604688] ? __fget+0x210/0x370 [ 1157.608145] ? find_held_lock+0x35/0x130 [ 1157.612314] ? __fget+0x210/0x370 [ 1157.615777] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1157.619938] do_vfs_ioctl+0x7b9/0x1070 [ 1157.624006] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1157.628760] ? lock_downgrade+0x6e0/0x6e0 [ 1157.632995] ? ioctl_preallocate+0x1c0/0x1c0 [ 1157.637413] ? __fget+0x237/0x370 [ 1157.640892] ? security_file_ioctl+0x8f/0xc0 [ 1157.645314] SyS_ioctl+0x8f/0xc0 [ 1157.648793] ? do_vfs_ioctl+0x1070/0x1070 [ 1157.652940] do_syscall_64+0x1eb/0x630 [ 1157.657013] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1157.661870] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1157.667072] RIP: 0033:0x458c29 [ 1157.670286] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:38:58 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = open(&(0x7f00009e1000)='./file0\x00', 0x8044, 0x0) fcntl$setlease(r1, 0x400, 0x0) unlink(&(0x7f0000000040)='./file0\x00') ioctl$VIDIOC_QUERYSTD(r1, 0x8008563f, &(0x7f0000000140)=0x0) ioctl$VIDIOC_S_STD(r1, 0x40085618, &(0x7f00000000c0)=r2) [ 1157.672074] audit: type=1800 audit(1555925937.984:166): pid=4085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.0" name="file0" dev="sda1" ino=17426 res=0 [ 1157.678002] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1157.678008] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1157.678014] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1157.678020] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1157.678026] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:58 executing program 3: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1000000000000191, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/if_inet6\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0x5, 0x7, 0x7, 0x7, 0x2, 0x401, 0x5, 0x7ff, 0x2, 0x7, 0x66, 0x7}) 09:38:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0xffff, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x5402, 0x0) 09:38:58 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x0, 0x0) sendto$x25(r0, &(0x7f0000000000)="09c1ec193fb540eb88e9fe69b094d5a4adefc8aa769707ff424e27040325e7acbc48764a24741dac798044e65b6c7b7ebe39cf2da6dd6f81a1b5e88aa9b11ee63470637006ef91c2e24c9069e417dd20cb45ac15926f622b3b6c76a6bb055b69ebab6c54f3df23df3e68b724b4d3ee3f042af9e245dd5bdfae344a19cb532c22b92bf947f1080a2c35e67e9e47940fab3a3380b76227109b490b7f4140dbe388dcb88bfafb2d77cb55611572beef06e1034823dcf918ca577a5325ac9c3ad73dc675fc936dbf95b8ff53b288c91c09bee62ff1", 0xd3, 0x80, &(0x7f0000000100)={0x9, @remote={[], 0x1}}, 0x12) ioctl$TIOCSWINSZ(r0, 0x5414, 0x0) 09:38:58 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x8801, 0x0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) rt_sigaction(0x4000000000011, &(0x7f0000000140)={0x0, {}, 0x0, 0x0}, &(0x7f0000000040)={0x0, {}, 0x0, 0x0}, 0x8, &(0x7f0000000280)) 09:38:58 executing program 5 (fault-call:5 fault-nth:30): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1157.990199] protocol 88fb is buggy, dev hsr_slave_0 [ 1157.995393] protocol 88fb is buggy, dev hsr_slave_1 [ 1158.000098] protocol 88fb is buggy, dev hsr_slave_0 [ 1158.005678] protocol 88fb is buggy, dev hsr_slave_1 [ 1158.010845] protocol 88fb is buggy, dev hsr_slave_0 [ 1158.016150] protocol 88fb is buggy, dev hsr_slave_1 09:38:58 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {}, {0x2, 0x0, @local}, {0x2, 0x0, @remote}, 0xab052ebbe6fbd72e, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffff}) 09:38:58 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x4002) mmap(&(0x7f0000000000/0xff7000)=nil, 0xff7000, 0x1001, 0x2000000000071, 0xffffffffffffffff, 0x0) ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "4cea495d588bac4e6907a28a320d08bfb191a1b08c8ac7eb57949f5ab295080b879162de8785751cb5db88fa026652cad92ca90f9406aba5982cc8c7e9c047b0", "fa5166f7dcb786917426540016f30aff0f632820de9313178b541e5b06d7d45a9cdba9daed47be45a835f15a7f7abe7c29b0d750f5ab8b24acfee9259b5eb03d", "83f9035ca8d4fce90ca6842e7eb7395f2e955e28f1790c4920641e7bb648ec4b"}) 09:38:58 executing program 2: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffc, 0x20000031, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x10, 0x803, 0x0) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="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"], 0x100c}, 0x0) 09:38:58 executing program 3: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000940)='/dev/uhid\x00', 0x802, 0x0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000080)={0xb, 'syz1\x00', 'syz1\x00', 'syz1\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, '?'}, 0x119) write(r1, &(0x7f00000002c0)="b0bdd66b4029997cec0a8d93240afa0f4b881c12c23616456ad7aebe4b5c7b089cad1a6f72d57f409416c2b276db31824baa86d83f87c96c52e37845", 0x3c) writev(r1, &(0x7f0000000000)=[{&(0x7f0000000980)="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", 0xdf0}], 0x1) write$P9_RREADLINK(r1, &(0x7f0000000240)=ANY=[], 0xc9) sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe) 09:38:58 executing program 1: creat(&(0x7f0000000080)='./file0\x00', 0x0) mount$fuse(0x20000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x101008, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x20, &(0x7f0000000180)={[{@data_err_abort='data_err=abort'}]}) [ 1158.126295] FAULT_INJECTION: forcing a failure. [ 1158.126295] name failslab, interval 1, probability 0, space 0, times 0 [ 1158.138373] CPU: 1 PID: 4107 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1158.145419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.155058] Call Trace: [ 1158.157644] dump_stack+0x138/0x19c [ 1158.161277] should_fail.cold+0x10f/0x159 [ 1158.165438] should_failslab+0xdb/0x130 [ 1158.169426] kmem_cache_alloc+0x2d9/0x780 09:38:58 executing program 4: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605) bind$alg(0xffffffffffffffff, &(0x7f00000005c0)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x4000000000000000) [ 1158.173592] mmu_topup_memory_caches+0x86/0x320 [ 1158.178290] kvm_mmu_load+0x21/0xd50 [ 1158.182041] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1158.186811] vcpu_enter_guest+0x2ea0/0x5270 [ 1158.191233] ? save_trace+0x290/0x290 [ 1158.195138] ? lock_downgrade+0x6e0/0x6e0 [ 1158.199307] ? find_held_lock+0x100/0x130 [ 1158.203471] ? emulator_read_emulated+0x50/0x50 [ 1158.208150] ? lock_acquire+0x16f/0x430 [ 1158.212140] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1158.217302] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1158.222165] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1158.227184] kvm_vcpu_ioctl+0x401/0xd10 [ 1158.231157] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1158.235324] ? trace_hardirqs_on+0x10/0x10 [ 1158.239643] ? __f_unlock_pos+0x19/0x20 [ 1158.243615] ? save_trace+0x290/0x290 [ 1158.247488] ? __f_unlock_pos+0x19/0x20 [ 1158.251535] ? __fget+0x210/0x370 [ 1158.255107] ? find_held_lock+0x35/0x130 [ 1158.259156] ? __fget+0x210/0x370 [ 1158.262690] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1158.266825] do_vfs_ioctl+0x7b9/0x1070 [ 1158.270701] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1158.275440] ? lock_downgrade+0x6e0/0x6e0 [ 1158.279575] ? ioctl_preallocate+0x1c0/0x1c0 [ 1158.283970] ? __fget+0x237/0x370 [ 1158.287587] ? security_file_ioctl+0x8f/0xc0 [ 1158.291989] SyS_ioctl+0x8f/0xc0 [ 1158.295344] ? do_vfs_ioctl+0x1070/0x1070 [ 1158.299587] do_syscall_64+0x1eb/0x630 [ 1158.303817] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1158.308649] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1158.313830] RIP: 0033:0x458c29 [ 1158.317041] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1158.324895] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1158.332527] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1158.339784] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1158.347046] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1158.354349] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:58 executing program 0: r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) gettid() ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f000019d000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10000004d) ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, 0x0) ioctl$KDMKTONE(0xffffffffffffffff, 0x4b30, 0x5000) clock_gettime(0x5, &(0x7f0000000340)) sched_rr_get_interval(0x0, &(0x7f0000000000)) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f00000002c0)={'nat\x00', 0x3, [{}, {}, {}]}, 0x58) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000005c0)='/gro<#\xfbW\xe6\xc6\x0f\x1fKE\xb7M\x99\x9a\x9a\x8c,\xe1[.\xf6\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+\x8d\xed\xa6\\\x1c\xc3\x97\x94\xf6\xe0.+\xe3\x89\xde\x139E\xa3\x85\xbd\x81\xe9\xbd\xee\xee\x03\x00\x00\x00\x00\x00\x00\x00[T\aE\xdfK\x1d\xeeH;\x15v$\xc5\xbcq\x9a\t\x9ej5\t\x00\x00\x009\x8c4\xc4\x88C\xa2B\x8b\x81\v\xea\t\xf0\x8fw\a\f\x15\xe2\xd0q\xbb\r\x17`s\xec\x85>\xcf\xab9(\xf6.\x15\xcd2-\xf2\xc4\xd8\x00a\xd5\xd9\xb5Z\xd7\xb4\xac\x1d_+k\xd6\x8ag\xdceHE\xd5\x1c\x8a\xbd#\xcc\x82\xca\xc2(\xb6\xe1\x99p\x9b\xa3D\xd2\x91\x96\xef\x05\fv\x16\x14\xcc\xea\x9d\x11w\x1e\xb5VG\x9ad\x9a`=^h\x8c8\xc9\"\x1eO\xb5vk\xc9\xcfi\x90\xd7\xd3H\xa1\xb4\xda\v\x17\x95\xf7\x19\x99\x99\x92\xc3\xc0\x8a\x18\xc7\"g\xd7B\x8f\x85\x18\xf3\x02\xa7\xb6\x83\x92\xefY\xef\x85\x92\x10E\x18\xbc\xacy\xd6\xa7Wh\xcd\xd0\xfa\xcc\xde\xeb\xdf\xad\xfd\xb0\xee\xfb\xc2(\x8cj\xd0uj{4\xb2\xe1p\x88u6\x9a;\xaa\x9f+J\x9e\xe3\xcc\xc7O\xad\x84\x8c;\x92~,\x15\xb2\x97\f~\xa0W\x16\x8b\a\x88\xaa\xe4C\xaf\x90\xdf\x7f\xe51\x00/n\xb5f\x1a\x8c+\xea<\xe3N@\x9e\xec\xbe{\x90x\xc6\x95!\xea\x11\xda\xe1I\x1d\xcbY\xe1\x01\xd2d\xae\xd1(>\xa3\xa9\x93\x16\xc6G\x94|', 0x2761, 0x0) write$cgroup_pid(r1, &(0x7f0000000080), 0xfffffe38) write$P9_RSYMLINK(r1, &(0x7f0000000100)={0x14, 0x11, 0x0, {0x40, 0x2, 0x4}}, 0x14) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f00000001c0)={0x100000001, {{0xa, 0x0, 0x785f, @loopback, 0x7}}}, 0x88) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x660c, 0x0) r2 = open(&(0x7f0000000280)='./bus\x00', 0x2202, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc, 0x4002091, r2, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_open_pts(r0, 0x0) ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000000)={0x0, 0x0, 0xfffffffbfe000005, 0x0, 0x2, 0xa}) dup(0xffffffffffffffff) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f00001c9000/0x2000)=nil, &(0x7f0000fef000/0xf000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000440000/0x4000)=nil, &(0x7f0000288000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000587000/0x1000)=nil, &(0x7f00005b2000/0x4000)=nil, &(0x7f00001fc000/0x1000)=nil, &(0x7f00003f3000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000440)="ba7874bb8f4f481c2994cacc7e3f9ea4580d2718f69f18bb426a12b9774992b5ed993ff3b783b1069cf047d430abba591cf66506fd6b86f959ae635551e479f3f18e14fb88e16a2af84fce671ad79aff27f952562abedfef06ad7bdf9c62632b3e455425b0c0a3938c1b78c27481505dd6089458b96af6ae4e015a9dd4633cc9112bf8cbb5813ce403529b7a07efeb11d0f4f20369b623049eb923e607c2c80659b3a92b633a706a4be7d758221d9eeb0f6062f2937e6cbabcd090d534134c7dd8784e91f5e290ae412fe8afc9b6eb245becf2124a6f6e7073f98b56efdf5eca23e44384", 0xe4, r1}, 0x68) 09:38:58 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x3f) connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0xc100) setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000000), 0x4) sendmsg(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="d0", 0x1}], 0x1}, 0x0) 09:38:58 executing program 5 (fault-call:5 fault-nth:31): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1158.385571] hid-generic 0000:0000:0000.0005: item fetching failed at offset -1985371391 [ 1158.414872] hid-generic: probe of 0000:0000:0000.0005 failed with error -22 09:38:59 executing program 4: ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000001980)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}) r0 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000180)={0x5, 0x200000022e}) r1 = dup2(r0, r0) readv(r1, &(0x7f0000000240), 0x20000000000002ca) 09:38:59 executing program 3: mlockall(0x7) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0) 09:38:59 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000300)="91f4", 0x2}], 0x1}, 0xc104) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000480)="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", 0x59b}], 0x1) [ 1158.509959] EXT4-fs (sda1): re-mounted. Opts: data_err=abort, 09:38:59 executing program 4: socket$inet(0x2, 0x2, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(0xffffffffffffffff, 0x0, 0x2d, 0x0, 0x362) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/status\x00', 0x0, 0x0) setsockopt$inet6_int(r0, 0x29, 0x73, &(0x7f0000000400)=0x9, 0x4) open(&(0x7f00000002c0)='./file0\x00', 0x80000, 0x140) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000100)={'ipvs\x00'}, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000200)={'icmp6\x00'}, &(0x7f0000000240)=0x1e) r1 = creat(&(0x7f0000000480)='./bus\x00', 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) r3 = dup(r2) ioctl$VT_WAITACTIVE(r1, 0x5607) stat(&(0x7f0000000340)='./file0\x00', &(0x7f00000004c0)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r2) setsockopt$inet6_tcp_int(r2, 0x6, 0x12, &(0x7f00000003c0)=0x7f, 0x4) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) r4 = open(&(0x7f0000000440)='./bus\x00', 0x141042, 0x0) ftruncate(r4, 0x2007fff) sendfile(r3, r4, 0x0, 0x8000fffffffb) 09:38:59 executing program 2: clone(0x2902001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f0000000040), 0x0, &(0x7f0000000180)={0x0, 0x1c9c380}, 0x8) r0 = getpid() rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f0000000100)) ptrace(0x10, r0) wait4(0x0, 0x0, 0x80000009, 0x0) [ 1158.581927] FAULT_INJECTION: forcing a failure. [ 1158.581927] name failslab, interval 1, probability 0, space 0, times 0 [ 1158.615444] CPU: 1 PID: 4144 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1158.622565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.631937] Call Trace: [ 1158.634527] dump_stack+0x138/0x19c [ 1158.638156] should_fail.cold+0x10f/0x159 [ 1158.642513] should_failslab+0xdb/0x130 [ 1158.646576] kmem_cache_alloc+0x2d9/0x780 [ 1158.650724] mmu_topup_memory_caches+0x86/0x320 [ 1158.655387] kvm_mmu_load+0x21/0xd50 [ 1158.659088] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1158.663835] vcpu_enter_guest+0x2ea0/0x5270 [ 1158.668266] ? save_trace+0x290/0x290 [ 1158.672154] ? lock_downgrade+0x6e0/0x6e0 [ 1158.676304] ? find_held_lock+0x100/0x130 [ 1158.680445] ? emulator_read_emulated+0x50/0x50 [ 1158.685118] ? lock_acquire+0x16f/0x430 [ 1158.689078] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1158.694083] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1158.698923] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1158.703931] kvm_vcpu_ioctl+0x401/0xd10 [ 1158.707892] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1158.712025] ? trace_hardirqs_on+0x10/0x10 [ 1158.716255] ? __f_unlock_pos+0x19/0x20 [ 1158.720423] ? save_trace+0x290/0x290 [ 1158.724573] ? __f_unlock_pos+0x19/0x20 [ 1158.728621] ? __fget+0x210/0x370 [ 1158.732159] ? find_held_lock+0x35/0x130 [ 1158.736224] ? __fget+0x210/0x370 [ 1158.739688] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1158.743824] do_vfs_ioctl+0x7b9/0x1070 [ 1158.747994] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1158.752754] ? lock_downgrade+0x6e0/0x6e0 [ 1158.756887] ? ioctl_preallocate+0x1c0/0x1c0 [ 1158.761290] ? __fget+0x237/0x370 [ 1158.764850] ? security_file_ioctl+0x8f/0xc0 [ 1158.769314] SyS_ioctl+0x8f/0xc0 [ 1158.772664] ? do_vfs_ioctl+0x1070/0x1070 [ 1158.776802] do_syscall_64+0x1eb/0x630 [ 1158.780696] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1158.785537] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1158.790713] RIP: 0033:0x458c29 [ 1158.793889] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1158.801868] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1158.809220] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1158.816665] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1158.824040] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 09:38:59 executing program 0: vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetl\x04\x00\x00\x00\x00\x00\x00\x00age_ir_Z\xa2\xf4es\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4ac04e11}) 09:38:59 executing program 1: recvmmsg(0xffffffffffffffff, &(0x7f0000000640)=[{{&(0x7f0000000180)=@nl, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = socket$kcm(0xa, 0x2, 0x73) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x69) connect(r0, &(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @dev, 0x6}, 0x80) sendmmsg$inet_sctp(r0, &(0x7f00000003c0), 0x4924924924926fe, 0x0) [ 1158.831295] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:38:59 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000001b00000025000000000000009500000000000000"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70) 09:38:59 executing program 1: socket$inet_tcp(0x2, 0x1, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetl\x04\x00\x00\x00\x00\x00\x00\x00age_ir_Z\xa2\xf4es\x00', 0x275a, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4ac04e11}) 09:38:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) 09:38:59 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) write$binfmt_script(r0, &(0x7f0000000080)=ANY=[@ANYBLOB='#'], 0x1) 09:38:59 executing program 5 (fault-call:5 fault-nth:32): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:38:59 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00\r(\xfc\xa4\xb7\xca\x9b\xb2\xc7<\xdd\xbfY:B\xf1-:\x11\xb5\b\xf0\xb4\x15\xd9 \xaf\xfb\b\r\xa3\x91\xca4\xbaA\xb22\xd4\xbf\x9f_\xb1\xee\xe2\x8e\xc0tG\xb3Z7\xab\xac^\xf4\x11s\x97\xa0\xc7\xd5\xa3\xee\xd7\xf1\xa8Mx\x83KIR\xcezS@\xa5\x97y\xf4\xfcqR\xd8X\x81\xccA\xbe~\xb1\xabNE\x8c\xa3\xf0\xb3\xa2\xb5\xd0\xc7G\x88\xaa#;\x06\xab\xc3(<\'&\x04\xce\n\t\xcd\xb9\xf5\x8f\xcc\vt\xdd\x98\x15\xb9$\x1e\xf2S\x16g\x00\x0e\xbb\xc2\x915\xbf\vC\xc7b\xda$\x1f\x89Iz\t\x03\xf1\b\xf6\x00\x00\x00\x00\x00\x00\x00\x00\x00') preadv(r0, &(0x7f0000000180)=[{&(0x7f0000000280)=""/175, 0xaf}], 0x1, 0x0) 09:38:59 executing program 3: r0 = socket$inet(0x2, 0x3, 0x19) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)={@multicast2, @local, 0x0, 0x1, [@empty]}, 0x14) setsockopt$inet_mreqn(r0, 0x0, 0x100000000000026, &(0x7f0000000380)={@multicast2, @local}, 0xc) 09:38:59 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0xfffff00c}, {0x80000006}]}, 0x10) socket$inet(0x2, 0x0, 0x0) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) ioctl$int_in(r2, 0x5452, &(0x7f00000003c0)=0x100000001) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000100)=0x81, 0x4) getrlimit(0xd, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @rand_addr, 0x8000000000000000}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = getpgid(0xffffffffffffffff) tkill(r3, 0x18) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) pause() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7a9353a7, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f0000000040)=0x1c, 0xdc) r4 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x800000400000000) ftruncate(r4, 0x7fff) sendfile(r2, r4, 0x0, 0x8000fffffffe) [ 1159.129926] FAULT_INJECTION: forcing a failure. [ 1159.129926] name failslab, interval 1, probability 0, space 0, times 0 [ 1159.147179] CPU: 0 PID: 4193 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1159.154145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1159.163518] Call Trace: [ 1159.166227] dump_stack+0x138/0x19c [ 1159.170163] should_fail.cold+0x10f/0x159 [ 1159.174489] should_failslab+0xdb/0x130 [ 1159.178486] kmem_cache_alloc+0x2d9/0x780 [ 1159.182733] ? __lock_acquire+0x5f9/0x45e0 [ 1159.186979] mmu_topup_memory_caches+0x86/0x320 [ 1159.191722] kvm_mmu_load+0x21/0xd50 [ 1159.195432] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1159.200190] vcpu_enter_guest+0x2ea0/0x5270 [ 1159.204501] ? save_trace+0x290/0x290 [ 1159.208285] ? lock_downgrade+0x6e0/0x6e0 [ 1159.212422] ? find_held_lock+0x100/0x130 [ 1159.216567] ? emulator_read_emulated+0x50/0x50 [ 1159.221219] ? lock_acquire+0x16f/0x430 [ 1159.225192] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1159.230214] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1159.235140] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1159.240280] kvm_vcpu_ioctl+0x401/0xd10 [ 1159.244271] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1159.248424] ? trace_hardirqs_on+0x10/0x10 [ 1159.252669] ? __f_unlock_pos+0x19/0x20 [ 1159.256639] ? save_trace+0x290/0x290 [ 1159.260430] ? __f_unlock_pos+0x19/0x20 [ 1159.264392] ? __fget+0x210/0x370 [ 1159.267835] ? find_held_lock+0x35/0x130 [ 1159.271894] ? __fget+0x210/0x370 [ 1159.275336] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1159.279466] do_vfs_ioctl+0x7b9/0x1070 [ 1159.283351] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1159.288089] ? lock_downgrade+0x6e0/0x6e0 [ 1159.293004] ? ioctl_preallocate+0x1c0/0x1c0 [ 1159.297431] ? __fget+0x237/0x370 [ 1159.300880] ? security_file_ioctl+0x8f/0xc0 [ 1159.305290] SyS_ioctl+0x8f/0xc0 [ 1159.308658] ? do_vfs_ioctl+0x1070/0x1070 [ 1159.312816] do_syscall_64+0x1eb/0x630 [ 1159.316702] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1159.327118] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1159.332382] RIP: 0033:0x458c29 [ 1159.335558] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1159.343345] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1159.350598] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1159.357853] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1159.365113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1159.372496] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:00 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = socket$inet(0x10, 0x2, 0x0) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)="240000001c0007041dfffd946f610500070000005f020000000002000800a3a20400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 09:39:00 executing program 1: mmap(&(0x7f0000000000/0xff7000)=nil, 0xff7000, 0x0, 0x2000000000071, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000fee000/0x2000)=nil, 0x2000, 0xcb) 09:39:00 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = timerfd_create(0x0, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/14, 0x34c}], 0x1) timerfd_settime(r1, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x1c9c380}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x80000003, 0x8031, 0xffffffffffffffff, 0x0) clone(0x40100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000433000/0x4000)=nil) io_setup(0x0, 0x0) 09:39:00 executing program 5 (fault-call:5 fault-nth:33): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1159.430118] protocol 88fb is buggy, dev hsr_slave_0 [ 1159.435427] protocol 88fb is buggy, dev hsr_slave_1 09:39:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$netlink(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0x2, &(0x7f0000000040)=0x1e, 0x4) [ 1159.502716] PF_BRIDGE: RTM_NEWNEIGH with unknown ifindex [ 1159.508884] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1159.562392] FAULT_INJECTION: forcing a failure. [ 1159.562392] name failslab, interval 1, probability 0, space 0, times 0 [ 1159.578266] CPU: 1 PID: 4213 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1159.585273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1159.594639] Call Trace: [ 1159.597240] dump_stack+0x138/0x19c [ 1159.600886] should_fail.cold+0x10f/0x159 [ 1159.605087] should_failslab+0xdb/0x130 [ 1159.609077] kmem_cache_alloc+0x2d9/0x780 [ 1159.613241] ? __lock_acquire+0x5f9/0x45e0 [ 1159.617588] mmu_topup_memory_caches+0x86/0x320 [ 1159.622463] kvm_mmu_load+0x21/0xd50 [ 1159.626187] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1159.630967] vcpu_enter_guest+0x2ea0/0x5270 [ 1159.635300] ? save_trace+0x290/0x290 [ 1159.639114] ? lock_downgrade+0x6e0/0x6e0 [ 1159.643279] ? find_held_lock+0x100/0x130 [ 1159.647436] ? emulator_read_emulated+0x50/0x50 [ 1159.652111] ? lock_acquire+0x16f/0x430 [ 1159.656103] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1159.661160] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1159.663405] audit: type=1400 audit(1555925940.184:167): avc: denied { setopt } for pid=4217 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 1159.666013] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1159.666035] kvm_vcpu_ioctl+0x401/0xd10 [ 1159.666048] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1159.666061] ? trace_hardirqs_on+0x10/0x10 [ 1159.707618] ? __f_unlock_pos+0x19/0x20 [ 1159.711691] ? save_trace+0x290/0x290 [ 1159.715524] ? __f_unlock_pos+0x19/0x20 [ 1159.719513] ? __fget+0x210/0x370 [ 1159.723006] ? find_held_lock+0x35/0x130 [ 1159.727250] ? __fget+0x210/0x370 [ 1159.730893] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1159.743986] do_vfs_ioctl+0x7b9/0x1070 [ 1159.748854] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1159.753909] ? lock_downgrade+0x6e0/0x6e0 [ 1159.758170] ? ioctl_preallocate+0x1c0/0x1c0 [ 1159.762590] ? __fget+0x237/0x370 [ 1159.766171] ? security_file_ioctl+0x8f/0xc0 [ 1159.770689] SyS_ioctl+0x8f/0xc0 [ 1159.774058] ? do_vfs_ioctl+0x1070/0x1070 [ 1159.778297] do_syscall_64+0x1eb/0x630 [ 1159.782227] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1159.787170] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1159.792447] RIP: 0033:0x458c29 [ 1159.795634] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1159.803345] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 09:39:00 executing program 4: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r0, 0x6) connect$inet(r1, &(0x7f0000000180)={0x2, 0x8000000000004e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) sendmmsg(0xffffffffffffffff, &(0x7f0000005740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="10000000000000000d01000000ab0000"], 0x10}}], 0x1, 0x0) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pppoe={0x18, 0x0, {0x0, @remote, 'ip6gre0\x00'}}, 0x326, &(0x7f0000003b80), 0x0, &(0x7f0000003bc0)}}], 0x22b, 0x0) 09:39:00 executing program 1: r0 = add_key(0x0, &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$get_keyring_id(0x0, r0, 0x0) ioctl$EVIOCGPROP(0xffffffffffffffff, 0xc004743e, &(0x7f00000002c0)=""/246) ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x142, 0xffffffffffffffff}) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000140)) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$unix(0x1, 0x80000002, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x40c2, 0x0) r2 = open$dir(&(0x7f0000000340)='./file0\x00', 0x402, 0xfffffffffff7fffd) write$9p(r1, &(0x7f0000000800)="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", 0x400) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000100)) sendfile(r1, r2, 0x0, 0x10000) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000200)=""/169, 0x0) setxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='security.capability\x00', &(0x7f00000002c0)=@v3={0x3000000, [{0x8000, 0x7f0000000}, {0x0, 0x2}]}, 0x18, 0x1) ioctl$TCSETS(r1, 0x5402, &(0x7f00000003c0)={0x138, 0x0, 0xba36, 0x5182d11c, 0x19, 0x1, 0x4, 0xe8, 0x6, 0x6, 0x800, 0x5}) [ 1159.810620] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1159.818068] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1159.825469] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1159.832742] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:00 executing program 0: creat(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f163c123f319bd070") mount$fuse(0x20000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x101008, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x24, 0x0) 09:39:00 executing program 5 (fault-call:5 fault-nth:34): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:00 executing program 4: keyctl$get_keyring_id(0x0, 0x0, 0x0) ioctl$PPPIOCSFLAGS1(0xffffffffffffffff, 0x40047459, 0x0) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x142, 0xffffffffffffffff}) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000140)) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$unix(0x1, 0x80000002, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x40c2, 0x0) r1 = open$dir(&(0x7f0000000340)='./file0\x00', 0x402, 0x0) write$9p(r0, &(0x7f0000000800)="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", 0x400) sendfile(r0, r1, 0x0, 0x10000) keyctl$unlink(0x9, 0x0, 0x0) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) setxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='security.capability\x00', &(0x7f00000002c0)=@v3={0x3000000, [{0x8000, 0x7f0000000}]}, 0x18, 0x1) ioctl$TCSETS(r0, 0x5402, &(0x7f00000003c0)={0x138, 0x0, 0xba36, 0x0, 0x0, 0x0, 0x4, 0xe8, 0x6, 0x6, 0x800, 0x5}) 09:39:00 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) openat$selinux_policy(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) eventfd(0x9) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40086602, 0x400007) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000001480), 0x0) fcntl$setflags(r0, 0x2, 0x1) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0xff4a) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x20032600) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a0f, 0x1700) sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f00000005c0)={&(0x7f0000000000), 0xc, 0x0}, 0x90) sendmsg$NET_DM_CMD_START(0xffffffffffffffff, 0x0, 0x800) fadvise64(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$packet(0x11, 0x0, 0x300) socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(0xffffffffffffffff, 0x0, 0x0) [ 1159.954018] audit: type=1800 audit(1555925940.474:168): pid=4230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.1" name="file0" dev="sda1" ino=17553 res=0 [ 1159.970713] FAULT_INJECTION: forcing a failure. [ 1159.970713] name failslab, interval 1, probability 0, space 0, times 0 [ 1159.998200] CPU: 1 PID: 4236 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1160.005207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1160.014673] Call Trace: [ 1160.017285] dump_stack+0x138/0x19c [ 1160.020928] should_fail.cold+0x10f/0x159 [ 1160.025092] should_failslab+0xdb/0x130 [ 1160.029086] kmem_cache_alloc+0x2d9/0x780 [ 1160.033257] mmu_topup_memory_caches+0x86/0x320 [ 1160.038061] kvm_mmu_load+0x21/0xd50 [ 1160.041830] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1160.046607] vcpu_enter_guest+0x2ea0/0x5270 [ 1160.051025] ? save_trace+0x290/0x290 [ 1160.054830] ? lock_downgrade+0x6e0/0x6e0 [ 1160.057772] audit: type=1800 audit(1555925940.564:169): pid=4240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="file0" dev="sda1" ino=16919 res=0 [ 1160.059245] ? find_held_lock+0x100/0x130 [ 1160.059262] ? emulator_read_emulated+0x50/0x50 [ 1160.059272] ? lock_acquire+0x16f/0x430 [ 1160.059282] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1160.059297] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1160.106147] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1160.111180] kvm_vcpu_ioctl+0x401/0xd10 [ 1160.115152] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1160.119311] ? trace_hardirqs_on+0x10/0x10 [ 1160.123539] ? __f_unlock_pos+0x19/0x20 [ 1160.127515] ? save_trace+0x290/0x290 [ 1160.131301] ? __f_unlock_pos+0x19/0x20 [ 1160.135380] ? __fget+0x210/0x370 [ 1160.138906] ? find_held_lock+0x35/0x130 [ 1160.142993] ? __fget+0x210/0x370 [ 1160.146436] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1160.150575] do_vfs_ioctl+0x7b9/0x1070 [ 1160.154464] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1160.159222] ? lock_downgrade+0x6e0/0x6e0 [ 1160.163466] ? ioctl_preallocate+0x1c0/0x1c0 [ 1160.167865] ? __fget+0x237/0x370 [ 1160.171321] ? security_file_ioctl+0x8f/0xc0 [ 1160.175803] SyS_ioctl+0x8f/0xc0 [ 1160.179166] ? do_vfs_ioctl+0x1070/0x1070 [ 1160.183300] do_syscall_64+0x1eb/0x630 [ 1160.187170] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1160.192008] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1160.197200] RIP: 0033:0x458c29 [ 1160.200415] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1160.208535] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1160.215788] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1160.223141] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1160.230409] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1160.237686] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:00 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0xfffff00c}, {0x80000006}]}, 0x10) socket$inet(0x2, 0x0, 0x0) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) ioctl$int_in(r2, 0x5452, &(0x7f00000003c0)=0x100000001) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000100)=0x81, 0x4) getrlimit(0xd, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @rand_addr, 0x8000000000000000}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = getpgid(0xffffffffffffffff) tkill(r3, 0x18) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) pause() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7a9353a7, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f0000000040)=0x1c, 0xdc) r4 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x800000400000000) ftruncate(r4, 0x7fff) sendfile(r2, r4, 0x0, 0x8000fffffffe) 09:39:00 executing program 4: mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000006c0)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000240)='./file0\x00', 0x0, 0x0) open_by_handle_at(r0, &(0x7f0000000000)={0x9, 0x2, "bb"}, 0x0) 09:39:00 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:39:00 executing program 5 (fault-call:5 fault-nth:35): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:01 executing program 4: socket(0x10, 0x803, 0x0) setpriority(0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) keyctl$restrict_keyring(0x1d, 0x0, 0x0, &(0x7f0000000240)='/dev/loop-control\x00') unshare(0x20600) prctl$PR_GET_TIMERSLACK(0x1e) link(0x0, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, 0x0, 0x0) geteuid() ioctl$sock_SIOCGPGRP(r0, 0x8904, 0x0) r2 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000340)) fstat(r2, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x3f, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0) openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000800)=ANY=[@ANYRES32], 0x1) ioctl$sock_inet6_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000040)) setuid(0x0) write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0) prctl$PR_MCE_KILL_GET(0x22) readv(r1, &(0x7f0000000080), 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)) [ 1160.559315] FAULT_INJECTION: forcing a failure. [ 1160.559315] name failslab, interval 1, probability 0, space 0, times 0 [ 1160.576704] CPU: 1 PID: 4266 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1160.583853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1160.593416] Call Trace: [ 1160.596015] dump_stack+0x138/0x19c [ 1160.599661] should_fail.cold+0x10f/0x159 [ 1160.603830] should_failslab+0xdb/0x130 [ 1160.607834] kmem_cache_alloc+0x2d9/0x780 [ 1160.612092] ? __lock_acquire+0x5f9/0x45e0 [ 1160.616344] mmu_topup_memory_caches+0x86/0x320 [ 1160.621026] kvm_mmu_load+0x21/0xd50 [ 1160.624786] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1160.629578] vcpu_enter_guest+0x2ea0/0x5270 [ 1160.634169] ? save_trace+0x290/0x290 [ 1160.638070] ? lock_downgrade+0x6e0/0x6e0 [ 1160.642279] ? find_held_lock+0x100/0x130 [ 1160.646444] ? emulator_read_emulated+0x50/0x50 [ 1160.651747] ? lock_acquire+0x16f/0x430 [ 1160.651760] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1160.651777] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1160.651787] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1160.651810] kvm_vcpu_ioctl+0x401/0xd10 [ 1160.651824] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1160.651833] ? trace_hardirqs_on+0x10/0x10 [ 1160.651845] ? __f_unlock_pos+0x19/0x20 [ 1160.651855] ? save_trace+0x290/0x290 [ 1160.651863] ? __f_unlock_pos+0x19/0x20 [ 1160.651873] ? __fget+0x210/0x370 [ 1160.651883] ? find_held_lock+0x35/0x130 [ 1160.651891] ? __fget+0x210/0x370 [ 1160.651901] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1160.651911] do_vfs_ioctl+0x7b9/0x1070 [ 1160.651926] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1160.719439] ? lock_downgrade+0x6e0/0x6e0 [ 1160.723624] ? ioctl_preallocate+0x1c0/0x1c0 [ 1160.728060] ? __fget+0x237/0x370 [ 1160.731534] ? security_file_ioctl+0x8f/0xc0 [ 1160.735957] SyS_ioctl+0x8f/0xc0 [ 1160.739329] ? do_vfs_ioctl+0x1070/0x1070 [ 1160.743489] do_syscall_64+0x1eb/0x630 [ 1160.747385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1160.752249] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:01 executing program 1: open(&(0x7f0000000300)='./file0\x00', 0x40, 0x0) [ 1160.757446] RIP: 0033:0x458c29 [ 1160.760636] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1160.768355] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1160.775660] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1160.782944] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1160.790222] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1160.797878] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:01 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000006140), 0x328) 09:39:01 executing program 5 (fault-call:5 fault-nth:36): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dc86055e0bceec79e070") ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000100)={0x2794a437d75b4f29, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 09:39:01 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f000000e000/0x4000)=nil, &(0x7f0000014000/0x1000)=nil, &(0x7f0000008000/0x3000)=nil, &(0x7f0000001000/0x1000)=nil, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000008000/0x1000)=nil, &(0x7f0000007000/0x4000)=nil, &(0x7f0000015000/0x3000)=nil, &(0x7f000000d000/0x3000)=nil, &(0x7f0000000000/0x4000)=nil, &(0x7f0000000080)="b8c2461c0405d4d61aed5540ad8ee79467288110a9", 0x15}, 0x68) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:39:01 executing program 4: socket(0x10, 0x803, 0x0) setpriority(0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) keyctl$restrict_keyring(0x1d, 0x0, 0x0, &(0x7f0000000240)='/dev/loop-control\x00') unshare(0x20600) prctl$PR_GET_TIMERSLACK(0x1e) link(0x0, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x41, 0x0, 0x0) geteuid() ioctl$sock_SIOCGPGRP(r0, 0x8904, 0x0) r2 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000000340)) fstat(r2, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/loop-control\x00', 0x3f, 0x0) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0) openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000800)=ANY=[@ANYRES32], 0x1) ioctl$sock_inet6_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000040)) setuid(0x0) write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0) prctl$PR_MCE_KILL_GET(0x22) readv(r1, &(0x7f0000000080), 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)) 09:39:01 executing program 0: shutdown(0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x11, 0xffffffffffffffff, 0x0) mlockall(0x7) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0) [ 1161.003724] FAULT_INJECTION: forcing a failure. [ 1161.003724] name failslab, interval 1, probability 0, space 0, times 0 [ 1161.023251] CPU: 1 PID: 4285 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1161.030225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1161.039702] Call Trace: [ 1161.042308] dump_stack+0x138/0x19c [ 1161.046046] should_fail.cold+0x10f/0x159 [ 1161.050257] should_failslab+0xdb/0x130 [ 1161.054246] kmem_cache_alloc+0x2d9/0x780 [ 1161.058414] mmu_topup_memory_caches+0x86/0x320 [ 1161.063106] kvm_mmu_load+0x21/0xd50 [ 1161.066832] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1161.071600] vcpu_enter_guest+0x2ea0/0x5270 [ 1161.075935] ? save_trace+0x290/0x290 [ 1161.079758] ? lock_downgrade+0x6e0/0x6e0 [ 1161.083923] ? find_held_lock+0x100/0x130 [ 1161.088120] ? emulator_read_emulated+0x50/0x50 [ 1161.092803] ? lock_acquire+0x16f/0x430 [ 1161.096873] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1161.102002] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1161.107038] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1161.112095] kvm_vcpu_ioctl+0x401/0xd10 [ 1161.116100] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1161.120348] ? trace_hardirqs_on+0x10/0x10 [ 1161.124582] ? __f_unlock_pos+0x19/0x20 [ 1161.128562] ? save_trace+0x290/0x290 [ 1161.128572] ? __f_unlock_pos+0x19/0x20 [ 1161.128583] ? __fget+0x210/0x370 [ 1161.128592] ? find_held_lock+0x35/0x130 [ 1161.128602] ? __fget+0x210/0x370 [ 1161.136368] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1161.136383] do_vfs_ioctl+0x7b9/0x1070 [ 1161.143881] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1161.143891] ? lock_downgrade+0x6e0/0x6e0 [ 1161.143901] ? ioctl_preallocate+0x1c0/0x1c0 [ 1161.143913] ? __fget+0x237/0x370 [ 1161.143928] ? security_file_ioctl+0x8f/0xc0 [ 1161.143938] SyS_ioctl+0x8f/0xc0 [ 1161.143947] ? do_vfs_ioctl+0x1070/0x1070 [ 1161.143960] do_syscall_64+0x1eb/0x630 [ 1161.143970] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1161.143986] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1161.143994] RIP: 0033:0x458c29 09:39:01 executing program 2: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605) dup(0xffffffffffffffff) ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, 0x0) bind$alg(0xffffffffffffffff, &(0x7f00000005c0)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x4000000000000000) 09:39:01 executing program 3: open(&(0x7f0000000040)='./file0\x00', 0x200, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000001640)=""/247, 0xffffffcc}], 0x1, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x611, 0x0) fcntl$setstatus(r1, 0x4, 0x80) pwritev(r1, &(0x7f00000003c0), 0x273, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x5, 0x10, r0, 0x0) nanosleep(&(0x7f0000000000), 0x0) execve(0x0, 0x0, 0x0) [ 1161.144000] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1161.144021] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1161.144030] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1161.176798] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1161.176805] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1161.176811] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:01 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000280)='/dev/null\x00', 0x200, 0x0) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000002000/0x4000)=nil) r2 = getpid() process_vm_writev(r2, &(0x7f0000000480)=[{&(0x7f0000000180)=""/182, 0xb6}, {&(0x7f0000000080)=""/11, 0xb}, {&(0x7f0000000240)=""/127, 0x7f}, {&(0x7f0000000500)=""/34, 0x20}, {&(0x7f00000002c0)=""/60, 0x3c}, {&(0x7f0000000300)=""/201, 0xc9}], 0x6, &(0x7f0000000940)=[{&(0x7f0000000580)=""/127, 0x7f}, {&(0x7f0000000600)=""/83, 0x53}, {&(0x7f0000000400)=""/62, 0x3e}, {&(0x7f0000000680)=""/87, 0xac}, {&(0x7f0000000700)=""/117, 0xfffffee0}, {&(0x7f0000000780)=""/151, 0x97}, {&(0x7f0000000840)=""/220, 0xdc}], 0x7, 0x0) fcntl$addseals(0xffffffffffffffff, 0x409, 0x0) ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f00000000c0)={0x3, 0x3, 0xaf48, 0x1ff, 0x5, 0x80000001, 0x3, 0x1, 0x3, 0x200, 0x8, 0x4}) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) creat(0x0, 0x0) r3 = getuid() ioprio_get$uid(0x3, r3) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, 0x0, 0x0) syz_open_pts(0xffffffffffffffff, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x1, 0xc567c384ab0acf97) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) 09:39:01 executing program 2: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000200)={0x0, {}, {0x2, 0x0, @remote}, {0x2, 0x0, @broadcast}, 0x2a8, 0x0, 0x0, 0x0, 0x4}) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={0x0, {}, {0x2, 0x0, @local}, {0x2, 0x0, @remote}, 0xab052ebbe6fbd72e, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffff}) 09:39:01 executing program 3: 09:39:01 executing program 2: 09:39:01 executing program 2: 09:39:02 executing program 5 (fault-call:5 fault-nth:37): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:02 executing program 3: [ 1161.575269] FAULT_INJECTION: forcing a failure. [ 1161.575269] name failslab, interval 1, probability 0, space 0, times 0 [ 1161.587129] CPU: 0 PID: 4323 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1161.594073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1161.603444] Call Trace: [ 1161.606056] dump_stack+0x138/0x19c [ 1161.609749] should_fail.cold+0x10f/0x159 [ 1161.614106] should_failslab+0xdb/0x130 [ 1161.618095] kmem_cache_alloc+0x2d9/0x780 [ 1161.622408] mmu_topup_memory_caches+0x86/0x320 [ 1161.627100] kvm_mmu_load+0x21/0xd50 [ 1161.630821] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1161.635588] vcpu_enter_guest+0x2ea0/0x5270 [ 1161.639917] ? save_trace+0x290/0x290 [ 1161.643722] ? lock_downgrade+0x6e0/0x6e0 [ 1161.647873] ? find_held_lock+0x100/0x130 [ 1161.652112] ? emulator_read_emulated+0x50/0x50 [ 1161.656786] ? lock_acquire+0x16f/0x430 [ 1161.660777] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1161.665807] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1161.670688] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1161.676157] kvm_vcpu_ioctl+0x401/0xd10 [ 1161.680335] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1161.684486] ? trace_hardirqs_on+0x10/0x10 [ 1161.688810] ? __f_unlock_pos+0x19/0x20 [ 1161.692790] ? save_trace+0x290/0x290 [ 1161.696594] ? __f_unlock_pos+0x19/0x20 [ 1161.700763] ? __fget+0x210/0x370 [ 1161.704338] ? find_held_lock+0x35/0x130 [ 1161.708399] ? __fget+0x210/0x370 [ 1161.711867] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1161.716046] do_vfs_ioctl+0x7b9/0x1070 [ 1161.719935] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1161.724711] ? lock_downgrade+0x6e0/0x6e0 [ 1161.728861] ? ioctl_preallocate+0x1c0/0x1c0 [ 1161.733270] ? __fget+0x237/0x370 [ 1161.736819] ? security_file_ioctl+0x8f/0xc0 [ 1161.741238] SyS_ioctl+0x8f/0xc0 [ 1161.744607] ? do_vfs_ioctl+0x1070/0x1070 [ 1161.748857] do_syscall_64+0x1eb/0x630 [ 1161.752744] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1161.757595] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1161.762784] RIP: 0033:0x458c29 [ 1161.765983] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1161.774071] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1161.781355] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1161.788622] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1161.795892] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1161.803166] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:02 executing program 1: 09:39:02 executing program 2: 09:39:02 executing program 0: 09:39:02 executing program 3: 09:39:02 executing program 5 (fault-call:5 fault-nth:38): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1161.992794] FAULT_INJECTION: forcing a failure. [ 1161.992794] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.014567] CPU: 0 PID: 4333 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1162.021827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1162.031398] Call Trace: [ 1162.033992] dump_stack+0x138/0x19c [ 1162.037621] should_fail.cold+0x10f/0x159 [ 1162.041768] should_failslab+0xdb/0x130 [ 1162.045836] kmem_cache_alloc+0x2d9/0x780 [ 1162.050080] mmu_topup_memory_caches+0x86/0x320 [ 1162.054773] kvm_mmu_load+0x21/0xd50 [ 1162.058596] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1162.063348] vcpu_enter_guest+0x2ea0/0x5270 [ 1162.067669] ? save_trace+0x290/0x290 [ 1162.071550] ? lock_downgrade+0x6e0/0x6e0 [ 1162.075737] ? find_held_lock+0x100/0x130 [ 1162.080004] ? emulator_read_emulated+0x50/0x50 [ 1162.084770] ? lock_acquire+0x16f/0x430 [ 1162.088739] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1162.093756] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1162.098619] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1162.104465] kvm_vcpu_ioctl+0x401/0xd10 [ 1162.108459] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1162.112711] ? trace_hardirqs_on+0x10/0x10 [ 1162.117155] ? __f_unlock_pos+0x19/0x20 [ 1162.121167] ? save_trace+0x290/0x290 [ 1162.124967] ? __f_unlock_pos+0x19/0x20 [ 1162.128940] ? __fget+0x210/0x370 [ 1162.132377] ? find_held_lock+0x35/0x130 [ 1162.136771] ? __fget+0x210/0x370 [ 1162.140343] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1162.144484] do_vfs_ioctl+0x7b9/0x1070 [ 1162.148534] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1162.153290] ? lock_downgrade+0x6e0/0x6e0 [ 1162.157523] ? ioctl_preallocate+0x1c0/0x1c0 [ 1162.161942] ? __fget+0x237/0x370 [ 1162.165386] ? security_file_ioctl+0x8f/0xc0 [ 1162.171441] SyS_ioctl+0x8f/0xc0 [ 1162.174793] ? do_vfs_ioctl+0x1070/0x1070 [ 1162.179020] do_syscall_64+0x1eb/0x630 [ 1162.182912] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1162.187935] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:02 executing program 4: 09:39:02 executing program 0: 09:39:02 executing program 2: 09:39:02 executing program 3: 09:39:02 executing program 1: 09:39:02 executing program 5 (fault-call:5 fault-nth:39): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1162.193109] RIP: 0033:0x458c29 [ 1162.196300] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1162.204009] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1162.211266] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1162.218886] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1162.226239] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1162.233497] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:02 executing program 2: 09:39:02 executing program 4: 09:39:02 executing program 3: 09:39:02 executing program 1: 09:39:02 executing program 0: 09:39:02 executing program 2: 09:39:02 executing program 4: 09:39:02 executing program 1: 09:39:02 executing program 2: 09:39:02 executing program 3: 09:39:02 executing program 0: [ 1162.400006] FAULT_INJECTION: forcing a failure. [ 1162.400006] name failslab, interval 1, probability 0, space 0, times 0 [ 1162.486268] CPU: 1 PID: 4345 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1162.493425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1162.503050] Call Trace: [ 1162.505665] dump_stack+0x138/0x19c [ 1162.509589] should_fail.cold+0x10f/0x159 [ 1162.513850] should_failslab+0xdb/0x130 [ 1162.517843] kmem_cache_alloc+0x2d9/0x780 [ 1162.522093] ? __lock_acquire+0x5f9/0x45e0 [ 1162.526496] mmu_topup_memory_caches+0x86/0x320 [ 1162.531358] kvm_mmu_load+0x21/0xd50 [ 1162.535109] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1162.540065] vcpu_enter_guest+0x2ea0/0x5270 [ 1162.544585] ? save_trace+0x290/0x290 [ 1162.551405] ? lock_downgrade+0x6e0/0x6e0 [ 1162.555876] ? find_held_lock+0x100/0x130 [ 1162.560124] ? emulator_read_emulated+0x50/0x50 [ 1162.564787] ? lock_acquire+0x16f/0x430 [ 1162.568753] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1162.573787] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1162.579342] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1162.584396] kvm_vcpu_ioctl+0x401/0xd10 [ 1162.588389] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1162.592532] ? trace_hardirqs_on+0x10/0x10 [ 1162.596866] ? __f_unlock_pos+0x19/0x20 [ 1162.600835] ? save_trace+0x290/0x290 [ 1162.604621] ? __f_unlock_pos+0x19/0x20 [ 1162.608601] ? __fget+0x210/0x370 [ 1162.612045] ? find_held_lock+0x35/0x130 [ 1162.616093] ? __fget+0x210/0x370 [ 1162.619541] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1162.623689] do_vfs_ioctl+0x7b9/0x1070 [ 1162.627691] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1162.632451] ? lock_downgrade+0x6e0/0x6e0 [ 1162.636611] ? ioctl_preallocate+0x1c0/0x1c0 [ 1162.641019] ? __fget+0x237/0x370 [ 1162.644465] ? security_file_ioctl+0x8f/0xc0 [ 1162.648950] SyS_ioctl+0x8f/0xc0 [ 1162.652334] ? do_vfs_ioctl+0x1070/0x1070 [ 1162.656554] do_syscall_64+0x1eb/0x630 [ 1162.660459] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1162.665305] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1162.670489] RIP: 0033:0x458c29 [ 1162.673671] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:39:03 executing program 5 (fault-call:5 fault-nth:40): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:03 executing program 4: 09:39:03 executing program 1: 09:39:03 executing program 0: 09:39:03 executing program 2: 09:39:03 executing program 3: [ 1162.681378] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1162.688635] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1162.695904] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1162.703274] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1162.710725] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:03 executing program 4: 09:39:03 executing program 1: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="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", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) 09:39:03 executing program 3: 09:39:03 executing program 2: 09:39:03 executing program 0: 09:39:03 executing program 2: [ 1162.858101] FAULT_INJECTION: forcing a failure. [ 1162.858101] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1162.905346] CPU: 1 PID: 4369 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1162.912332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1162.922228] Call Trace: [ 1162.924833] dump_stack+0x138/0x19c [ 1162.928500] should_fail.cold+0x10f/0x159 [ 1162.928514] ? __might_sleep+0x93/0xb0 [ 1162.928528] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1162.928543] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1162.928556] ? mmu_topup_memory_caches+0x86/0x320 [ 1162.937315] ? rcu_read_lock_sched_held+0x110/0x130 [ 1162.937330] alloc_pages_current+0xec/0x1e0 [ 1162.961379] __get_free_pages+0xf/0x40 [ 1162.965412] mmu_topup_memory_caches+0x194/0x320 [ 1162.970262] kvm_mmu_load+0x21/0xd50 [ 1162.974054] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1162.978894] vcpu_enter_guest+0x2ea0/0x5270 [ 1162.983222] ? save_trace+0x290/0x290 [ 1162.987014] ? lock_downgrade+0x6e0/0x6e0 [ 1162.991160] ? find_held_lock+0x100/0x130 [ 1162.995318] ? emulator_read_emulated+0x50/0x50 [ 1163.000007] ? lock_acquire+0x16f/0x430 [ 1163.003985] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1163.008997] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.013830] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.018860] kvm_vcpu_ioctl+0x401/0xd10 [ 1163.022978] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.027202] ? trace_hardirqs_on+0x10/0x10 [ 1163.031440] ? __f_unlock_pos+0x19/0x20 [ 1163.035406] ? save_trace+0x290/0x290 [ 1163.040021] ? __f_unlock_pos+0x19/0x20 [ 1163.043985] ? __fget+0x210/0x370 [ 1163.047423] ? find_held_lock+0x35/0x130 [ 1163.051470] ? __fget+0x210/0x370 [ 1163.054911] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.059138] do_vfs_ioctl+0x7b9/0x1070 [ 1163.063014] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1163.067845] ? lock_downgrade+0x6e0/0x6e0 [ 1163.071987] ? ioctl_preallocate+0x1c0/0x1c0 [ 1163.076395] ? __fget+0x237/0x370 [ 1163.079843] ? security_file_ioctl+0x8f/0xc0 [ 1163.084512] SyS_ioctl+0x8f/0xc0 [ 1163.088047] ? do_vfs_ioctl+0x1070/0x1070 [ 1163.092186] do_syscall_64+0x1eb/0x630 [ 1163.096087] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1163.100933] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:03 executing program 5 (fault-call:5 fault-nth:41): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:03 executing program 3: 09:39:03 executing program 0: 09:39:03 executing program 4: 09:39:03 executing program 1: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="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", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) 09:39:03 executing program 2: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="cc0813fe976ae62c04293c4d293e17546a04c3e62688c649e4104e4cfb3b3bfc3c2c59e9bfdc93ad59bc50c68fbadbc8d934a7257162648ad35fbabac4e62368b191b7fcf9be9f1788cd2a0a8b27421249370c0df3c70e6c83059fb46cf6f1550362fe44ab545b1acfc2440fd67d3083a4039a86c3cff13dc2cd32642a84dc5d0c0ac96fa0ede3d7fe4864a55d5389eca6f16c48f43a434a91b6efd0e12c6df8e0fb5763ebbc8890387b63ac34e17ddc185a442ebf42af4abafd8490e9a9c15f89db6ddd3d2ef6df1e06fa5223ed0db06750a2fbc3a79f175c4039833571ab3afc7429600b88a96013b9fafacebe0bca581cdf0fa57d4120766cf6a04a25179b7d45b476c996c2285084bae88e01c007a3fdba9c44382ac2c300c900e8ea87ae11a01f6e350516c27468f4b43daca037f6af53835336c696643b499be1bee5150cb3aec2f6067a4f2593a7f127d725abcaa80564fd6526459dffec4e0a939406207e1daf4ff640f0dcd9cffd33346f45980d6faf233e234967012a7f4f8d9ee05d0eabd5f321e82ac411fed5328d04ddb84b394ca7844213dc2b6279b9e9e1fd2166b4c6eaa2726ba9771e756c3f2b0886149777451e3392ffcf1b69f627b05ef35c949a1c143096de5091016c2cd3b65fa8b2b673896855504a53f933153f67c3f05084a01a6139a4c06794248413fece2f65cb13cc78162803a3810f9ff6ba60578b6374ec3c8582b2bb924f4eabccd8dc408e2ab1d3f82a132d1214ee3a448b01aafcd84bbd21708c2796af0ea8b34b7345549b8d04bac2caa0a0029cca2190e81ed3a70dc10ef5c381a497f50beabd19ac61a8449813bee87900ea56b6f1b3dea69dcfe3912b6fda4c168d22e7ff0ae4654338164025012b25ca386e31ab72f1f62e8bb6eb7c06b7c7ba3a2a56781404331d3758acbb8a7fcbc3bb56f5b66e6f48330b479bcbe10635eea0fbfc2a352e73a78ef90ff670482b8a6c5d952f6b855943cba138035544def2e726aa54618ee3576a0e51f26311b4bb864989dfc1281753a45660679db4f0b14cbc02e6582f3845bfe464f2ef939149c0917df4fa259250879b5db1928cafd8628d7c0f14a4864ba52337f6820743a43c10ad35a745b97ebc2190f2ff25665100229ea2952dfc6ea378631962a90f5d075b49a42875d450dc44ed1774bdc46f5e0d66223e70f7c351e82d377aec63cbcaae90892f719076f86a6ce99878d00802ab5d5aee6e7aebd5f9a5542b39da340015d0f9a02a529b484ed8b48ef6df6377d8a6275bc5754a64524c50b74f53a8782040622bc3c62923b1a7d24e3170f29ae101bf5f74d44598318d39cace553f8135021da852dec39ecfeaeccf40455fbfdba32d3cda357c81eeeaa00480c32e80860708620d63d7795238160462e7e7498a26422afb75bfd7e76a3c92002eaa9b2dba244d0df623e8314f0d6a0e09fe89ec9a0308929dd86ebb2e5c81aef5a6ff12eb706ba83ea25fd5ba16471408afd10fc70ddd5afc2d072576e03c531e9a663f8a6192e5b29d8904b107d9ca3e33e11b5918d48d41e71d555b161b173ed40f55c8c67acad46bb08d6eb0ea367eb31a767b686670ffba28cc6397fdc58be5f63cf0e95b996a5237931b15e053cf8a42a9c81c6de57fee294d099b7f2f96e2ff41fa371079991d572660421338f4ea9e840afd7cd8256f6ebbc566bac8315a4851d2b59d0611a328295cfc1316e5e26269340c020e9616dadff4eb17f50a7ecdf187151f3308c1326d6af058cb3afe59d6fe1b0c962a9a2f260dc295cf25a33e3e4095b1722e800673b24b43c7eecea59757f052c1b4841cf728c0569698755b1e1b058961d56879a7be83a05fa0dcccaa674dfe4e00a9b0b1c81e27fcd08ef85bee8835f5ada083688c14952d046b576826e390ca2b7182edf7a19b6b13fec55f0f543e66ddc8837a07eea2cbf0a0628b64dd6b00157a8fe784f1b72ddbbac3c8ab22ae20efbcdcb9be62bd63178b0894de851658080ecb9bac7dbff0b0d7e58c4ef09141355c3217657d58449ef5f0656439a8083deb06845ddb2f7704be992e0d3a6f0c4f1dd9dba45ede8ad03306a6abc12317f1e79dce7e8836ee4ae6f73262d43754a9df65b29483e1f75882577318e2db947d6c137fbd2140ab74b21e993929dfd3c04e4cd6f85cf405c2bf8440fd9f0986b7c6b293ac7d1a98077004a8b500423184535307e4f7009cf55851ff4c58dfbede57576448c204648e2062d4b2c95b622579fbe9c7cc800ee319181f9d1983abb48587eda51f14c3d7a099128d73f086ee13a3d1fb62afa4699ceb606317e6db3f4c84b1d7889c9871efb34dfcd086aaa375504afdcb05bfddacca8bd5897dab4df7e2529afbb6dcfe7dcb92f6706bc9f691137da38648fd2492f23fa4227dd22852b18e2d80959618ad4ab92cdf037c73ed7875344811ae2a1f35149774ab6fc778e93c73a1236a70c670f68f065b8e6a287ab8e45fdb05788d8fbf4ecfb9b642d32c6e4e13b278da57c352ab285c75b2d59274c1d15a349512372997b60204422e09123cb22426600b1056f59ba61a29dff00f8fbf93ff7a69d939b5", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) [ 1163.106132] RIP: 0033:0x458c29 [ 1163.109402] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1163.117293] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1163.124680] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1163.131941] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1163.139200] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1163.146466] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:03 executing program 2: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="cc0813fe976ae62c04293c4d293e17546a04c3e62688c649e4104e4cfb3b3bfc3c2c59e9bfdc93ad59bc50c68fbadbc8d934a7257162648ad35fbabac4e62368b191b7fcf9be9f1788cd2a0a8b27421249370c0df3c70e6c83059fb46cf6f1550362fe44ab545b1acfc2440fd67d3083a4039a86c3cff13dc2cd32642a84dc5d0c0ac96fa0ede3d7fe4864a55d5389eca6f16c48f43a434a91b6efd0e12c6df8e0fb5763ebbc8890387b63ac34e17ddc185a442ebf42af4abafd8490e9a9c15f89db6ddd3d2ef6df1e06fa5223ed0db06750a2fbc3a79f175c4039833571ab3afc7429600b88a96013b9fafacebe0bca581cdf0fa57d4120766cf6a04a25179b7d45b476c996c2285084bae88e01c007a3fdba9c44382ac2c300c900e8ea87ae11a01f6e350516c27468f4b43daca037f6af53835336c696643b499be1bee5150cb3aec2f6067a4f2593a7f127d725abcaa80564fd6526459dffec4e0a939406207e1daf4ff640f0dcd9cffd33346f45980d6faf233e234967012a7f4f8d9ee05d0eabd5f321e82ac411fed5328d04ddb84b394ca7844213dc2b6279b9e9e1fd2166b4c6eaa2726ba9771e756c3f2b0886149777451e3392ffcf1b69f627b05ef35c949a1c143096de5091016c2cd3b65fa8b2b673896855504a53f933153f67c3f05084a01a6139a4c06794248413fece2f65cb13cc78162803a3810f9ff6ba60578b6374ec3c8582b2bb924f4eabccd8dc408e2ab1d3f82a132d1214ee3a448b01aafcd84bbd21708c2796af0ea8b34b7345549b8d04bac2caa0a0029cca2190e81ed3a70dc10ef5c381a497f50beabd19ac61a8449813bee87900ea56b6f1b3dea69dcfe3912b6fda4c168d22e7ff0ae4654338164025012b25ca386e31ab72f1f62e8bb6eb7c06b7c7ba3a2a56781404331d3758acbb8a7fcbc3bb56f5b66e6f48330b479bcbe10635eea0fbfc2a352e73a78ef90ff670482b8a6c5d952f6b855943cba138035544def2e726aa54618ee3576a0e51f26311b4bb864989dfc1281753a45660679db4f0b14cbc02e6582f3845bfe464f2ef939149c0917df4fa259250879b5db1928cafd8628d7c0f14a4864ba52337f6820743a43c10ad35a745b97ebc2190f2ff25665100229ea2952dfc6ea378631962a90f5d075b49a42875d450dc44ed1774bdc46f5e0d66223e70f7c351e82d377aec63cbcaae90892f719076f86a6ce99878d00802ab5d5aee6e7aebd5f9a5542b39da340015d0f9a02a529b484ed8b48ef6df6377d8a6275bc5754a64524c50b74f53a8782040622bc3c62923b1a7d24e3170f29ae101bf5f74d44598318d39cace553f8135021da852dec39ecfeaeccf40455fbfdba32d3cda357c81eeeaa00480c32e80860708620d63d7795238160462e7e7498a26422afb75bfd7e76a3c92002eaa9b2dba244d0df623e8314f0d6a0e09fe89ec9a0308929dd86ebb2e5c81aef5a6ff12eb706ba83ea25fd5ba16471408afd10fc70ddd5afc2d072576e03c531e9a663f8a6192e5b29d8904b107d9ca3e33e11b5918d48d41e71d555b161b173ed40f55c8c67acad46bb08d6eb0ea367eb31a767b686670ffba28cc6397fdc58be5f63cf0e95b996a5237931b15e053cf8a42a9c81c6de57fee294d099b7f2f96e2ff41fa371079991d572660421338f4ea9e840afd7cd8256f6ebbc566bac8315a4851d2b59d0611a328295cfc1316e5e26269340c020e9616dadff4eb17f50a7ecdf187151f3308c1326d6af058cb3afe59d6fe1b0c962a9a2f260dc295cf25a33e3e4095b1722e800673b24b43c7eecea59757f052c1b4841cf728c0569698755b1e1b058961d56879a7be83a05fa0dcccaa674dfe4e00a9b0b1c81e27fcd08ef85bee8835f5ada083688c14952d046b576826e390ca2b7182edf7a19b6b13fec55f0f543e66ddc8837a07eea2cbf0a0628b64dd6b00157a8fe784f1b72ddbbac3c8ab22ae20efbcdcb9be62bd63178b0894de851658080ecb9bac7dbff0b0d7e58c4ef09141355c3217657d58449ef5f0656439a8083deb06845ddb2f7704be992e0d3a6f0c4f1dd9dba45ede8ad03306a6abc12317f1e79dce7e8836ee4ae6f73262d43754a9df65b29483e1f75882577318e2db947d6c137fbd2140ab74b21e993929dfd3c04e4cd6f85cf405c2bf8440fd9f0986b7c6b293ac7d1a98077004a8b500423184535307e4f7009cf55851ff4c58dfbede57576448c204648e2062d4b2c95b622579fbe9c7cc800ee319181f9d1983abb48587eda51f14c3d7a099128d73f086ee13a3d1fb62afa4699ceb606317e6db3f4c84b1d7889c9871efb34dfcd086aaa375504afdcb05bfddacca8bd5897dab4df7e2529afbb6dcfe7dcb92f6706bc9f691137da38648fd2492f23fa4227dd22852b18e2d80959618ad4ab92cdf037c73ed7875344811ae2a1f35149774ab6fc778e93c73a1236a70c670f68f065b8e6a287ab8e45fdb05788d8fbf4ecfb9b642d32c6e4e13b278da57c352ab285c75b2d59274c1d15a349512372997b60204422e09123cb22426600b1056f59ba61a29dff00f8fbf93ff7a69d939b5", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) 09:39:03 executing program 4: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="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", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) 09:39:03 executing program 3: 09:39:03 executing program 0: 09:39:03 executing program 1: 09:39:03 executing program 2: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="cc0813fe976ae62c04293c4d293e17546a04c3e62688c649e4104e4cfb3b3bfc3c2c59e9bfdc93ad59bc50c68fbadbc8d934a7257162648ad35fbabac4e62368b191b7fcf9be9f1788cd2a0a8b27421249370c0df3c70e6c83059fb46cf6f1550362fe44ab545b1acfc2440fd67d3083a4039a86c3cff13dc2cd32642a84dc5d0c0ac96fa0ede3d7fe4864a55d5389eca6f16c48f43a434a91b6efd0e12c6df8e0fb5763ebbc8890387b63ac34e17ddc185a442ebf42af4abafd8490e9a9c15f89db6ddd3d2ef6df1e06fa5223ed0db06750a2fbc3a79f175c4039833571ab3afc7429600b88a96013b9fafacebe0bca581cdf0fa57d4120766cf6a04a25179b7d45b476c996c2285084bae88e01c007a3fdba9c44382ac2c300c900e8ea87ae11a01f6e350516c27468f4b43daca037f6af53835336c696643b499be1bee5150cb3aec2f6067a4f2593a7f127d725abcaa80564fd6526459dffec4e0a939406207e1daf4ff640f0dcd9cffd33346f45980d6faf233e234967012a7f4f8d9ee05d0eabd5f321e82ac411fed5328d04ddb84b394ca7844213dc2b6279b9e9e1fd2166b4c6eaa2726ba9771e756c3f2b0886149777451e3392ffcf1b69f627b05ef35c949a1c143096de5091016c2cd3b65fa8b2b673896855504a53f933153f67c3f05084a01a6139a4c06794248413fece2f65cb13cc78162803a3810f9ff6ba60578b6374ec3c8582b2bb924f4eabccd8dc408e2ab1d3f82a132d1214ee3a448b01aafcd84bbd21708c2796af0ea8b34b7345549b8d04bac2caa0a0029cca2190e81ed3a70dc10ef5c381a497f50beabd19ac61a8449813bee87900ea56b6f1b3dea69dcfe3912b6fda4c168d22e7ff0ae4654338164025012b25ca386e31ab72f1f62e8bb6eb7c06b7c7ba3a2a56781404331d3758acbb8a7fcbc3bb56f5b66e6f48330b479bcbe10635eea0fbfc2a352e73a78ef90ff670482b8a6c5d952f6b855943cba138035544def2e726aa54618ee3576a0e51f26311b4bb864989dfc1281753a45660679db4f0b14cbc02e6582f3845bfe464f2ef939149c0917df4fa259250879b5db1928cafd8628d7c0f14a4864ba52337f6820743a43c10ad35a745b97ebc2190f2ff25665100229ea2952dfc6ea378631962a90f5d075b49a42875d450dc44ed1774bdc46f5e0d66223e70f7c351e82d377aec63cbcaae90892f719076f86a6ce99878d00802ab5d5aee6e7aebd5f9a5542b39da340015d0f9a02a529b484ed8b48ef6df6377d8a6275bc5754a64524c50b74f53a8782040622bc3c62923b1a7d24e3170f29ae101bf5f74d44598318d39cace553f8135021da852dec39ecfeaeccf40455fbfdba32d3cda357c81eeeaa00480c32e80860708620d63d7795238160462e7e7498a26422afb75bfd7e76a3c92002eaa9b2dba244d0df623e8314f0d6a0e09fe89ec9a0308929dd86ebb2e5c81aef5a6ff12eb706ba83ea25fd5ba16471408afd10fc70ddd5afc2d072576e03c531e9a663f8a6192e5b29d8904b107d9ca3e33e11b5918d48d41e71d555b161b173ed40f55c8c67acad46bb08d6eb0ea367eb31a767b686670ffba28cc6397fdc58be5f63cf0e95b996a5237931b15e053cf8a42a9c81c6de57fee294d099b7f2f96e2ff41fa371079991d572660421338f4ea9e840afd7cd8256f6ebbc566bac8315a4851d2b59d0611a328295cfc1316e5e26269340c020e9616dadff4eb17f50a7ecdf187151f3308c1326d6af058cb3afe59d6fe1b0c962a9a2f260dc295cf25a33e3e4095b1722e800673b24b43c7eecea59757f052c1b4841cf728c0569698755b1e1b058961d56879a7be83a05fa0dcccaa674dfe4e00a9b0b1c81e27fcd08ef85bee8835f5ada083688c14952d046b576826e390ca2b7182edf7a19b6b13fec55f0f543e66ddc8837a07eea2cbf0a0628b64dd6b00157a8fe784f1b72ddbbac3c8ab22ae20efbcdcb9be62bd63178b0894de851658080ecb9bac7dbff0b0d7e58c4ef09141355c3217657d58449ef5f0656439a8083deb06845ddb2f7704be992e0d3a6f0c4f1dd9dba45ede8ad03306a6abc12317f1e79dce7e8836ee4ae6f73262d43754a9df65b29483e1f75882577318e2db947d6c137fbd2140ab74b21e993929dfd3c04e4cd6f85cf405c2bf8440fd9f0986b7c6b293ac7d1a98077004a8b500423184535307e4f7009cf55851ff4c58dfbede57576448c204648e2062d4b2c95b622579fbe9c7cc800ee319181f9d1983abb48587eda51f14c3d7a099128d73f086ee13a3d1fb62afa4699ceb606317e6db3f4c84b1d7889c9871efb34dfcd086aaa375504afdcb05bfddacca8bd5897dab4df7e2529afbb6dcfe7dcb92f6706bc9f691137da38648fd2492f23fa4227dd22852b18e2d80959618ad4ab92cdf037c73ed7875344811ae2a1f35149774ab6fc778e93c73a1236a70c670f68f065b8e6a287ab8e45fdb05788d8fbf4ecfb9b642d32c6e4e13b278da57c352ab285c75b2d59274c1d15a349512372997b60204422e09123cb22426600b1056f59ba61a29dff00f8fbf93ff7a69d939b5", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) [ 1163.277333] FAULT_INJECTION: forcing a failure. [ 1163.277333] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1163.332979] CPU: 0 PID: 4390 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1163.340310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1163.349675] Call Trace: [ 1163.352552] dump_stack+0x138/0x19c [ 1163.356228] should_fail.cold+0x10f/0x159 [ 1163.356239] ? __might_sleep+0x93/0xb0 [ 1163.356254] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1163.364453] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1163.364466] ? mmu_topup_memory_caches+0x86/0x320 [ 1163.364483] ? rcu_read_lock_sched_held+0x110/0x130 [ 1163.364498] alloc_pages_current+0xec/0x1e0 [ 1163.364513] __get_free_pages+0xf/0x40 [ 1163.364521] mmu_topup_memory_caches+0x194/0x320 [ 1163.364534] kvm_mmu_load+0x21/0xd50 [ 1163.364545] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1163.388420] vcpu_enter_guest+0x2ea0/0x5270 [ 1163.388435] ? save_trace+0x290/0x290 [ 1163.388444] ? lock_downgrade+0x6e0/0x6e0 [ 1163.388456] ? find_held_lock+0x100/0x130 [ 1163.401117] ? emulator_read_emulated+0x50/0x50 [ 1163.401131] ? lock_acquire+0x16f/0x430 [ 1163.401142] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1163.401157] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.401168] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.401185] kvm_vcpu_ioctl+0x401/0xd10 [ 1163.450414] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.454652] ? trace_hardirqs_on+0x10/0x10 [ 1163.459020] ? __f_unlock_pos+0x19/0x20 [ 1163.463101] ? save_trace+0x290/0x290 [ 1163.467010] ? __f_unlock_pos+0x19/0x20 [ 1163.470976] ? __fget+0x210/0x370 [ 1163.474417] ? find_held_lock+0x35/0x130 [ 1163.478469] ? __fget+0x210/0x370 [ 1163.481942] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.486124] do_vfs_ioctl+0x7b9/0x1070 [ 1163.490060] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1163.494871] ? lock_downgrade+0x6e0/0x6e0 [ 1163.499191] ? ioctl_preallocate+0x1c0/0x1c0 [ 1163.503606] ? __fget+0x237/0x370 [ 1163.507143] ? security_file_ioctl+0x8f/0xc0 [ 1163.511572] SyS_ioctl+0x8f/0xc0 [ 1163.515018] ? do_vfs_ioctl+0x1070/0x1070 [ 1163.519167] do_syscall_64+0x1eb/0x630 [ 1163.523068] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1163.527975] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1163.533167] RIP: 0033:0x458c29 [ 1163.536341] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1163.544128] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1163.551473] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1163.558753] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1163.566123] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1163.573408] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:04 executing program 5 (fault-call:5 fault-nth:42): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:04 executing program 4: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="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", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) 09:39:04 executing program 3: 09:39:04 executing program 1: 09:39:04 executing program 0: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f0000002600)='./file0\x00', 0x0, 0x2001001, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x100032, 0x0) 09:39:04 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x1ff}, 0x3c) 09:39:04 executing program 1: [ 1163.590124] net_ratelimit: 14 callbacks suppressed [ 1163.590128] protocol 88fb is buggy, dev hsr_slave_0 [ 1163.600256] protocol 88fb is buggy, dev hsr_slave_1 09:39:04 executing program 2: 09:39:04 executing program 0: 09:39:04 executing program 3: 09:39:04 executing program 1: 09:39:04 executing program 4: bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) close(0xffffffffffffffff) ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000040)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "ce939ada2d0823594b1824ebba8d707a5dd682078e443f8d670ac32c7e6c98ce44ca70a4ddbfe8f748f6b128dda5dae2989444073278f6da9424bb945c40bb"}, 0x60) sendto(0xffffffffffffffff, &(0x7f0000000640)="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", 0x72f, 0x20000040, 0x0, 0x0) sendmmsg$nfc_llcp(r0, &(0x7f00000030c0)=[{&(0x7f00000005c0)={0x27, 0x0, 0x0, 0x7, 0x0, 0x2, "9296c2a42c1d92506350552a35fd3ae1f537854ff2ff6d4133cf7fd61a99f6918d88582132374032fed867f5825695f481ad9b67563f8fc219632a14b0ea4a", 0x37}, 0x60, 0x0}], 0x1, 0x44) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno'}, 0x2c, {'wfdno', 0x3d, r1}}) [ 1163.794156] FAULT_INJECTION: forcing a failure. [ 1163.794156] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1163.811835] CPU: 1 PID: 4419 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1163.818889] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1163.828394] Call Trace: [ 1163.831073] dump_stack+0x138/0x19c [ 1163.834751] should_fail.cold+0x10f/0x159 [ 1163.838907] ? __might_sleep+0x93/0xb0 [ 1163.842796] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1163.847453] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1163.852462] ? mmu_topup_memory_caches+0x86/0x320 [ 1163.857305] ? rcu_read_lock_sched_held+0x110/0x130 [ 1163.862409] alloc_pages_current+0xec/0x1e0 [ 1163.866737] __get_free_pages+0xf/0x40 [ 1163.870836] mmu_topup_memory_caches+0x194/0x320 [ 1163.875583] kvm_mmu_load+0x21/0xd50 [ 1163.879290] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1163.884040] vcpu_enter_guest+0x2ea0/0x5270 [ 1163.888350] ? save_trace+0x290/0x290 [ 1163.892140] ? lock_downgrade+0x6e0/0x6e0 [ 1163.896295] ? find_held_lock+0x100/0x130 [ 1163.900459] ? emulator_read_emulated+0x50/0x50 [ 1163.905120] ? lock_acquire+0x16f/0x430 [ 1163.909094] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1163.914102] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.918963] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1163.923986] kvm_vcpu_ioctl+0x401/0xd10 [ 1163.928125] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.932263] ? trace_hardirqs_on+0x10/0x10 [ 1163.936491] ? __f_unlock_pos+0x19/0x20 [ 1163.940459] ? save_trace+0x290/0x290 [ 1163.944249] ? __f_unlock_pos+0x19/0x20 [ 1163.948210] ? __fget+0x210/0x370 [ 1163.951648] ? find_held_lock+0x35/0x130 [ 1163.955700] ? __fget+0x210/0x370 [ 1163.959152] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1163.963319] do_vfs_ioctl+0x7b9/0x1070 [ 1163.968195] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1163.972947] ? lock_downgrade+0x6e0/0x6e0 [ 1163.977087] ? ioctl_preallocate+0x1c0/0x1c0 [ 1163.981481] ? __fget+0x237/0x370 [ 1163.985038] ? security_file_ioctl+0x8f/0xc0 [ 1163.989457] SyS_ioctl+0x8f/0xc0 [ 1163.992918] ? do_vfs_ioctl+0x1070/0x1070 [ 1163.997066] do_syscall_64+0x1eb/0x630 [ 1164.000945] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1164.005789] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1164.010987] RIP: 0033:0x458c29 [ 1164.014181] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.021885] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1164.029230] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1164.036487] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:39:04 executing program 5 (fault-call:5 fault-nth:43): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:04 executing program 0: 09:39:04 executing program 2: 09:39:04 executing program 3: 09:39:04 executing program 1: 09:39:04 executing program 4: [ 1164.043783] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1164.051148] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:04 executing program 1: 09:39:04 executing program 2: 09:39:04 executing program 4: 09:39:04 executing program 0: 09:39:04 executing program 3: 09:39:04 executing program 1: [ 1164.239903] FAULT_INJECTION: forcing a failure. [ 1164.239903] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1164.261185] CPU: 1 PID: 4439 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1164.268160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1164.278302] Call Trace: [ 1164.280910] dump_stack+0x138/0x19c [ 1164.284561] should_fail.cold+0x10f/0x159 [ 1164.284573] ? __might_sleep+0x93/0xb0 [ 1164.284587] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1164.292636] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1164.292648] ? mmu_topup_memory_caches+0x86/0x320 [ 1164.292662] ? rcu_read_lock_sched_held+0x110/0x130 [ 1164.292675] alloc_pages_current+0xec/0x1e0 [ 1164.292688] __get_free_pages+0xf/0x40 [ 1164.292696] mmu_topup_memory_caches+0x194/0x320 [ 1164.292710] kvm_mmu_load+0x21/0xd50 [ 1164.292721] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1164.292736] vcpu_enter_guest+0x2ea0/0x5270 [ 1164.292755] ? save_trace+0x290/0x290 [ 1164.292765] ? lock_downgrade+0x6e0/0x6e0 [ 1164.292776] ? find_held_lock+0x100/0x130 [ 1164.292788] ? emulator_read_emulated+0x50/0x50 [ 1164.292797] ? lock_acquire+0x16f/0x430 [ 1164.292807] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1164.292821] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1164.292829] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1164.292847] kvm_vcpu_ioctl+0x401/0xd10 [ 1164.292858] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1164.292868] ? trace_hardirqs_on+0x10/0x10 [ 1164.292876] ? __f_unlock_pos+0x19/0x20 [ 1164.292887] ? save_trace+0x290/0x290 [ 1164.292895] ? __f_unlock_pos+0x19/0x20 [ 1164.292905] ? __fget+0x210/0x370 [ 1164.292915] ? find_held_lock+0x35/0x130 [ 1164.310170] protocol 88fb is buggy, dev hsr_slave_0 [ 1164.312816] ? __fget+0x210/0x370 [ 1164.312833] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1164.312844] do_vfs_ioctl+0x7b9/0x1070 [ 1164.317216] protocol 88fb is buggy, dev hsr_slave_1 [ 1164.321037] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1164.321048] ? lock_downgrade+0x6e0/0x6e0 [ 1164.321058] ? ioctl_preallocate+0x1c0/0x1c0 [ 1164.321069] ? __fget+0x237/0x370 [ 1164.321085] ? security_file_ioctl+0x8f/0xc0 [ 1164.321097] SyS_ioctl+0x8f/0xc0 [ 1164.321108] ? do_vfs_ioctl+0x1070/0x1070 [ 1164.457259] do_syscall_64+0x1eb/0x630 [ 1164.461138] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1164.466154] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1164.471340] RIP: 0033:0x458c29 [ 1164.474554] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.482262] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1164.489525] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1164.496873] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1164.504144] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1164.511414] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1164.520512] protocol 88fb is buggy, dev hsr_slave_0 [ 1164.526148] protocol 88fb is buggy, dev hsr_slave_1 [ 1164.531363] protocol 88fb is buggy, dev hsr_slave_0 09:39:05 executing program 5 (fault-call:5 fault-nth:44): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:05 executing program 4: mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000001180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) preadv(r1, &(0x7f00000009c0)=[{&(0x7f0000000500)=""/154, 0x9a}, {&(0x7f00000003c0)=""/68, 0x44}], 0x2, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0xffffffffffffffd9) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(r1, &(0x7f0000001340)=[{&(0x7f0000000e40)=""/21, 0x15}], 0x1, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, 0x0) 09:39:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="0fb5f4"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:05 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) syz_extract_tcp_res$synack(&(0x7f0000000080), 0x1, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) sendmmsg(r1, &(0x7f0000000040), 0x40000000000020f, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x4, 0x0) ioctl$CAPI_GET_SERIAL(r2, 0xc0044308, &(0x7f0000000040)=0x1000) recvfrom$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0) dup3(r1, r0, 0x0) 09:39:05 executing program 3: r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=0x0, &(0x7f0000000200)=0x4) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000240)={r1, 0xb22}, 0x8) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) getresgid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000180)) syz_emit_ethernet(0x7a, &(0x7f0000000100)={@local, @random="c17f97f920f2", [], {@ipv6={0x86dd, {0x0, 0x6, "bb5615", 0x44, 0x2f, 0x0, @remote, @local, {[], @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}, {}, {}, {0xffffdd86}}}}}}}, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x100, 0x0) 09:39:05 executing program 1: openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x226000, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/snapshot\x00', 0x80001, 0x0) [ 1164.536554] protocol 88fb is buggy, dev hsr_slave_1 09:39:05 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x26e1, 0x0) getsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, 0x0, 0x0) r1 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x0) write$cgroup_int(r0, &(0x7f0000000080)=0x6, 0x12) r2 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/relabel\x00', 0x2, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r3, 0x0, 0x482, &(0x7f0000000000)=""/8, &(0x7f0000000800)) fallocate(r3, 0x42, 0x7, 0x2) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f00000000c0)={r2, 0x0, 0xfffffffffffffbff, 0x5, 0x6a}) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000180)=0x4000000000000002) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000100)=0x6a72) r4 = getuid() sendto$ax25(r0, &(0x7f0000000700)="88a4398d4165579374eb534af14199b4cf1171fba34f4e4488f9b261c6be10772916570e317f4445adf3e19bbb63dd59c434af9be1e09637974b0560db022d03cfc21304415f74c5349d", 0x4a, 0x4000010, &(0x7f0000000780)={{0x3, @null, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @bcast]}, 0x48) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000006c0)={0x3, &(0x7f0000000680)=[{}, {}, {}]}) syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f00000001c0)='./file0\x00', 0x7, 0x4, &(0x7f0000000580)=[{&(0x7f0000000240)="efb71e0607ecb03f916722d0f97df683d125a31b7aba7a21833b4f5440d65c06d1233327d6b944b77e09475ab7e7ba32664b9da2530c565de64a5e566346b28c298e7f0d8bf94bc7ca3141b5d95723259c2e28ce967f0a9d0e78bcd38b75aead07c42f487f382400600d863c89ad81e6d24ed6ee31c6d1137a14f79015eb56a0523d980e7cff20eed8c6f6198e9bd38cda837a42827030b9f194583627e6486441b2000b9a222075ec2f75eda46d649eb2593b3c42d29be30019200a77083b16420302e0cab29f8f14a6", 0xca, 0x101}, {&(0x7f0000000340)="c0ecc9e42c2d7563dcd672f7159cc96c08626559f1fe5e2904f69068fc95abdc10f8022c21fcb4bc80c852849a7a0348f52c48efaeb9ffdd53de51be02f0ff1476fefae4e747ce44bf020066e5964376c2349da294c8c821b19f3197db4f658e8da3a46c0ffbf1eb4038501a0e5af5393a49a4de17c6229e10bb90169546fd2b32383bb2585f8c79e15884712c68d2d918a8e682bdd74059855d0ce9f236ff253d7ac673d304256ff183801ca2057d1302a8d7af7555eb481036ba84cf492ce5654e3f88dae025ae528a6688caae8cbed805afdb32dcf62e95a5637a", 0xdc}, {&(0x7f0000000440)="bc598d12cbe6a1aad64d5e84ec7ab472a9fe0ecb197248990cefe488fead264c6e58e67b77369fbbb2e09521c05643a9ae4b462aed343997df56db51a0517cf802b96edb3ea56a2af2e90b83f6c1745dc1bc1e0bb85050cedb5adaf9a0542118b21ff749e1e259673742305f9439655b76c32a658ee59b5e4e89dde8df335bde1212d19f58bddb8b630685b5c60e4b071aa352b1b6f2c01279dd52c63795", 0x9e, 0x1f}, {&(0x7f0000000500)="945b054c6504321ee87b44bf815c735e4e0743510cee53d3230705f826949a5cb913bb166a27fbf6bf7ef2dd4c8027d93eb282eda320660ffe3595bfb442ab57e947ae5dc93a715e9907530c21da87aaae8c24f8d75b55570f4ce9ab98c9ba0a531182209e4ba2d4d79e1c67144e54942391a89c35731d4185", 0x79, 0x7f}], 0x2900000, &(0x7f0000000840)=ANY=[@ANYBLOB='shortname=mixee,hash,euid<', @ANYRESDEC=r4, @ANYBLOB="2c6d6561737572652c646561636f6e746578743d73797361646d5f752c66756e633d4250524d5f434845434b2c00371bf5f0fbda0f5a1692eae26e838b13e2e5bb34211b6cce301f6b5a3cf61a22e869f1a2a63f960e34067895dd6b242c760fd930f7fb01b4c96a8ce91c28292fc274aa3e0e4f8defb15fc9647bc8a65c8901b774198f423d8d88cab2036db7b4636329b295cece26c17bfd36ea4f3cf39c6d3a9b6e3eedafa00d79402d937ca8233a1cd1344722105f824d20a087ed82efdc7c9079bc7d917d3b48cd7ac8ab999a415ea4c6fa28a1e9ddbd"]) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000200)={0x0, 0x5f70b710}) 09:39:05 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000001600010400000000000000000a0000001800000014000100fe880000000000000000000000600000885a455a2329e6bcc2114810984ddba49106affcfb3c410cd37c3dc3ab1c6f01fd62fa9ca3b8216d1cc81598e9e2c063af3b1854a17197b545f6fc021f5e5548a2ba9527fc0d0d2f882c451595836e95f67a7f04dd02b358174fcba3bd5a1b4ce11716e6420babc5fdfd4e65de25e4f6c19846ba1afbf5d6dfaedde60e07e9f1c285e2031696d19d3523fccbdf9b04aecf5ab3bd8dc50edb186f32af54c5942ec0cbca56ac38b8884bf4db7539fe745af27135f46989fd4b6f29ec9666"], 0x2c}}, 0x0) [ 1164.609857] FAULT_INJECTION: forcing a failure. [ 1164.609857] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1164.625066] CPU: 1 PID: 4452 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1164.632117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1164.632125] Call Trace: [ 1164.644202] dump_stack+0x138/0x19c [ 1164.647846] should_fail.cold+0x10f/0x159 [ 1164.651998] ? __might_sleep+0x93/0xb0 09:39:05 executing program 1: openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-vsock\x00', 0x2, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x10000, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000140)={0xffff7ffffffff08e, 0x7fff}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") ioctl$VHOST_SET_VRING_KICK(r1, 0x8008af00, 0x0) [ 1164.655899] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1164.660668] ? check_preemption_disabled+0x3c/0x250 [ 1164.665785] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1164.670814] ? alloc_pages_current+0x19b/0x1e0 [ 1164.675416] alloc_pages_current+0xec/0x1e0 [ 1164.679760] __get_free_pages+0xf/0x40 [ 1164.683756] mmu_topup_memory_caches+0x194/0x320 [ 1164.688641] kvm_mmu_load+0x21/0xd50 [ 1164.688655] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1164.688673] vcpu_enter_guest+0x2ea0/0x5270 [ 1164.688684] ? save_trace+0x290/0x290 [ 1164.688693] ? lock_downgrade+0x6e0/0x6e0 [ 1164.688704] ? find_held_lock+0x100/0x130 [ 1164.688724] ? emulator_read_emulated+0x50/0x50 [ 1164.688735] ? lock_acquire+0x16f/0x430 [ 1164.688745] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1164.688760] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1164.709555] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1164.709577] kvm_vcpu_ioctl+0x401/0xd10 [ 1164.709591] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1164.709603] ? trace_hardirqs_on+0x10/0x10 [ 1164.709614] ? __f_unlock_pos+0x19/0x20 [ 1164.709625] ? save_trace+0x290/0x290 09:39:05 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000540)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000480)='/dev/qat_adf_ctl\x00', 0x800, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x4, 0x0, 0x8, 0x0, 0x800000}, 0x0) unshare(0x40000000) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000180)={{0x9}, 'port0\x00', 0x0, 0x50, 0x6, 0x0, 0x0, 0x1, 0x101}) r1 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x5) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000280)={0x0, 0x9, 0x2, {0x1, 0x1}, {0x43, 0x32}, @ramp={0x80000000, 0x0, {0x3ff, 0x9, 0x60, 0x1}}}) sigaltstack(&(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0)) lsetxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x1) munlockall() r3 = memfd_create(&(0x7f00000000c0)=',%\x00', 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x800) getpeername(r3, &(0x7f0000000100)=@generic, &(0x7f0000000080)=0x80) fgetxattr(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB='trusted.trusted.ovmrlay.origin\x00'], &(0x7f0000000440)=""/42, 0x2a) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, '\x9e\xdez\x8cZ\xe9^H\x00\x00\x00\x00\x00\x00\x00\x7fO\x13\xee\xabe\xc02)\x01\xdck\xd3l\xde,Q\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\xd0\x00\xaa\x05\x00\x00\x00t\xdb\xcf\xa6\xdcM'}) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000380)={0x3f, 0x3ed3, 0x18fbf64a, 0x0, 0x5, 0x800}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000004c0)=ANY=[@ANYBLOB="0600000020002300fdffbda504004000be81e641360b2eb6d05a17938782232c0663e6e62d6d97fc52772c2442ac97d517a2a7918d605c965b7ebd29cd069a7e4452c37a50abbd01f7bd6847e4e33bb527c515f7621e5d4851d72aea8d0b4148a6bf1299bdfb3699ff67fc067eb815cc8e5c9bd37e3055"], &(0x7f0000000400)=0x10) [ 1164.732450] ? __f_unlock_pos+0x19/0x20 [ 1164.732463] ? __fget+0x210/0x370 [ 1164.732482] ? find_held_lock+0x35/0x130 [ 1164.732491] ? __fget+0x210/0x370 [ 1164.732504] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1164.732515] do_vfs_ioctl+0x7b9/0x1070 [ 1164.732526] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1164.732534] ? lock_downgrade+0x6e0/0x6e0 [ 1164.732545] ? ioctl_preallocate+0x1c0/0x1c0 [ 1164.732555] ? __fget+0x237/0x370 [ 1164.732571] ? security_file_ioctl+0x8f/0xc0 [ 1164.732583] SyS_ioctl+0x8f/0xc0 [ 1164.732592] ? do_vfs_ioctl+0x1070/0x1070 09:39:05 executing program 4: socket$vsock_stream(0x28, 0x1, 0x0) r0 = syz_open_dev$radio(&(0x7f00000010c0)='/dev/radio#\x00', 0x1, 0x2) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x28, 0x6, &(0x7f0000581000)={{{@in, @in6=@mcast2}}}, &(0x7f0000001080)=0xffffffffffffff5b) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000000)={0x2, [0xfa, 0x8]}, &(0x7f0000000040)=0x8) r1 = semget$private(0x0, 0x0, 0x40) semctl$SEM_INFO(r1, 0x3, 0x13, &(0x7f0000000080)=""/4096) [ 1164.732603] do_syscall_64+0x1eb/0x630 [ 1164.732614] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1164.819562] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1164.824839] RIP: 0033:0x458c29 [ 1164.828105] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.828117] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1164.828124] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1164.828130] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1164.828136] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1164.828142] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:05 executing program 4: r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, 0x0, 0xffffffffffffff80) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000100)={r2, 0xf2, "2bc77dbac984beec53f978808a7a2788927481e53b3724098069348be60ced8ffd38b8130af9f548b2b06b8962152e5c901365ec8ef2a33b3f9e22cfc956dcb744f31d5d1dad2d90ef0dddfbbd169985c5bbb1d14a5c71579bf704a9e3180b2e66d16757001ddbe41a99eb8966b1d6e95bed3b8523efd1c3ed5afad26afbe51c5527a4771ea727512069dda859fcaddf651b85f90f2e7ed562ddba402bb72496a2f05c1bdf1d9f2db985527d1e3a257ade4a988bd49098e0da1283dc9fd49b0749a62750771564ed418d605102f4923d6e3b3ec15c0d470ff46c6f9022bd767a36ed3bb3c0d8f46c44ccf4ccfc03bc0028f6"}, &(0x7f0000000200)=0xfa) connect$vsock_dgram(r1, &(0x7f0000000080)={0x28, 0x0, 0x4}, 0x10) 09:39:05 executing program 5 (fault-call:5 fault-nth:45): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1164.901263] IPVS: ftp: loaded support on port[0] = 21 09:39:05 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={@empty, @mcast2, @remote, 0x4, 0x81}) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000040)=0x2000) 09:39:05 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2b, 0x400801, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10) mq_open(&(0x7f00000002c0)='selinux\x00', 0x40, 0x1, &(0x7f0000000300)={0x3, 0x4, 0x1f, 0x7f, 0x8, 0x5, 0x3f, 0x3}) connect$inet(r0, &(0x7f0000000200)={0x2, 0x1000004e23}, 0x10) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000480)='veno\x00', 0x5) socketpair$unix(0x1, 0x0, 0x0, 0x0) getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000140)={'nat\x00', 0x0, 0x4, 0xfffffee8, [], 0x9, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000100)=""/30}, &(0x7f00000001c0)=0x78) modify_ldt$read(0x0, &(0x7f0000000340)=""/174, 0xae) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @loopback}, 0x10) recvmmsg(r0, &(0x7f000000a500), 0x3fffe59, 0x0, &(0x7f0000000240)={0x77359400}) r1 = syz_open_dev$audion(&(0x7f0000000400)='/dev/audio#\x00', 0xc8, 0x0) timerfd_gettime(r1, &(0x7f0000000440)) [ 1165.002620] FAULT_INJECTION: forcing a failure. [ 1165.002620] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1165.065465] CPU: 1 PID: 4492 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1165.072450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1165.081893] Call Trace: [ 1165.081914] dump_stack+0x138/0x19c [ 1165.081932] should_fail.cold+0x10f/0x159 [ 1165.081942] ? __might_sleep+0x93/0xb0 [ 1165.081957] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1165.081971] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1165.081983] ? mmu_topup_memory_caches+0x86/0x320 [ 1165.081996] ? rcu_read_lock_sched_held+0x110/0x130 [ 1165.082009] alloc_pages_current+0xec/0x1e0 [ 1165.082022] __get_free_pages+0xf/0x40 [ 1165.101039] mmu_topup_memory_caches+0x194/0x320 [ 1165.101056] kvm_mmu_load+0x21/0xd50 [ 1165.101066] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1165.101082] vcpu_enter_guest+0x2ea0/0x5270 [ 1165.101093] ? save_trace+0x290/0x290 [ 1165.101102] ? lock_downgrade+0x6e0/0x6e0 [ 1165.101114] ? find_held_lock+0x100/0x130 [ 1165.101126] ? emulator_read_emulated+0x50/0x50 [ 1165.124459] ? lock_acquire+0x16f/0x430 [ 1165.124475] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1165.124492] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1165.124502] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1165.124519] kvm_vcpu_ioctl+0x401/0xd10 [ 1165.145996] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1165.146010] ? trace_hardirqs_on+0x10/0x10 [ 1165.178291] ? __f_unlock_pos+0x19/0x20 [ 1165.178306] ? save_trace+0x290/0x290 [ 1165.178315] ? __f_unlock_pos+0x19/0x20 [ 1165.178327] ? __fget+0x210/0x370 [ 1165.206000] ? find_held_lock+0x35/0x130 [ 1165.210585] ? __fget+0x210/0x370 [ 1165.214041] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1165.218186] do_vfs_ioctl+0x7b9/0x1070 [ 1165.218199] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1165.218210] ? lock_downgrade+0x6e0/0x6e0 [ 1165.218220] ? ioctl_preallocate+0x1c0/0x1c0 [ 1165.236906] ? __fget+0x237/0x370 [ 1165.240366] ? security_file_ioctl+0x8f/0xc0 [ 1165.244810] SyS_ioctl+0x8f/0xc0 [ 1165.244821] ? do_vfs_ioctl+0x1070/0x1070 [ 1165.244835] do_syscall_64+0x1eb/0x630 [ 1165.244843] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1165.244859] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1165.261518] RIP: 0033:0x458c29 [ 1165.261524] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1165.261536] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1165.261542] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1165.261547] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1165.261553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1165.261558] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:05 executing program 0: r0 = memfd_create(&(0x7f0000000080)='\v\xe5m1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac\xa10Q\xa4\x1f\x9a\xc7\xc6\xf1F*x#*\xff', 0x0) write(r0, &(0x7f0000000040)="06", 0x1) r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/status\x00', 0x0, 0x0) getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, &(0x7f0000000200)=0x5, &(0x7f0000000240)=0x4) accept4$inet6(r1, &(0x7f0000000400)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000440)=0x1c, 0x800) write(r0, &(0x7f0000000500)='\b', 0x1) ioctl$IMGETVERSION(r0, 0x80044942, &(0x7f0000000180)) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000080004, 0x11, r0, 0x0) r2 = socket$inet(0x2, 0x3, 0x2) ioctl$DRM_IOCTL_VERSION(r1, 0xc0406400, &(0x7f00000003c0)={0x8, 0x1ff, 0x9, 0x70, &(0x7f0000000280)=""/112, 0xc, &(0x7f0000000300)=""/12, 0x7d, &(0x7f0000000340)=""/125}) setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000), 0x10) r3 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x8000) syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x40) ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f0000000100)) 09:39:05 executing program 3: r0 = socket(0x2000000000000021, 0x2, 0x2) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x200000, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000180)) syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x637, 0x101000) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x71c, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x10, 0x4, [@TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x40) setsockopt$inet6_dccp_buf(r0, 0x110, 0x2, 0x0, 0x4) 09:39:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xffffffffffffffff, 0x119040) ioctl$VIDIOC_DQBUF(r3, 0xc0585611, &(0x7f0000000080)={0x5, 0xc, 0x4, 0x4000000, {0x77359400}, {0x2, 0x3, 0x70, 0x1, 0x0, 0xfffffffffffffff9, "29178306"}, 0x80, 0x7, @offset=0x6, 0x4}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, 0x0) socket$inet6(0xa, 0x805, 0xaf4a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:05 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000540)={{{@in6, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@initdev}}, &(0x7f0000000640)=0xe8) sendmsg$nl_xfrm(r1, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000680)={&(0x7f00000009c0)=ANY=[@ANYBLOB="940100001800050000000000000060efadee8eeb729dcaadfbf4c729b32288bddbdf00e00000015d66df8c08004e20fff8726e7000000000005d8d836950a351905f0dcc6e313223400000", @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="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"], 0x194}, 0x1, 0x0, 0x0, 0x4000}, 0x41) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$inet6(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x3c454b62, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x200000000000000}, 0x8, 0x10, &(0x7f0000000180)={0x0, 0xfffffffffffffffd}, 0x10}, 0x288) r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x200, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000380)={@in6={{0xa, 0x4e22, 0x6, @loopback, 0x8}}, 0x0, 0x80, 0x0, "b8d52bb62d0a5cb1ec785d6b2c06fecd5aeecf8d16e87d1f4037fc3c103a7dfea348481cd3ef1a8e89babe8f06dd7d63d1e8d69d186aeeb1ea85fb60b53da8e54f7366d51f9e013799575ad6085d4c43"}, 0xd8) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) geteuid() getgroups(0x8, &(0x7f0000000100)=[0xee01, 0x0, 0xffffffffffffffff, 0x0, 0xee01, 0xffffffffffffffff, 0xffffffffffffffff, 0xee01]) write$selinux_access(r5, &(0x7f0000000700)={'system_u:object_r:setrans_initrc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x3}, 0x57) syz_open_dev$cec(&(0x7f0000000140)='/dev/cec#\x00', 0x2, 0x2) syz_open_dev$midi(&(0x7f0000000480)='/dev/midi#\x00', 0x1, 0x8000) getpeername$ax25(r4, &(0x7f00000002c0)={{0x3, @bcast}, [@remote, @netrom, @default, @null, @netrom, @bcast, @remote, @rose]}, &(0x7f00000004c0)=0x48) syz_genetlink_get_family_id$SEG6(&(0x7f0000000200)='SEG6\x00') r6 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r6, 0x29, 0xc8, &(0x7f00000007c0)=0x2, 0x4) setsockopt$inet6_MRT6_ADD_MFC(r6, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x4e23, 0x4, @remote, 0x9}, {0xa, 0x4e20, 0x56c5, @mcast2, 0x3}, 0x5, [0x9fa5, 0x9, 0xfff, 0x200, 0x5, 0x9, 0xffff, 0x4]}, 0x5c) setsockopt$inet6_MRT6_ADD_MFC(r6, 0x29, 0xc9, 0x0, 0x0) 09:39:05 executing program 5 (fault-call:5 fault-nth:46): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:06 executing program 4: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000400)=[{&(0x7f0000000140)="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", 0x12c, 0x10000}], 0x0, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x2400, 0x0) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000040)={0x7, 0x401, 0x3, 0x2}) [ 1165.578237] FAULT_INJECTION: forcing a failure. [ 1165.578237] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1165.607271] CPU: 1 PID: 4517 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1165.614247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1165.623612] Call Trace: [ 1165.626214] dump_stack+0x138/0x19c [ 1165.630027] should_fail.cold+0x10f/0x159 [ 1165.634179] ? __might_sleep+0x93/0xb0 [ 1165.638071] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1165.642750] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1165.647916] ? mmu_topup_memory_caches+0x86/0x320 [ 1165.652856] ? rcu_read_lock_sched_held+0x110/0x130 [ 1165.657972] alloc_pages_current+0xec/0x1e0 [ 1165.662295] __get_free_pages+0xf/0x40 [ 1165.666178] mmu_topup_memory_caches+0x194/0x320 [ 1165.671114] kvm_mmu_load+0x21/0xd50 [ 1165.671138] protocol 88fb is buggy, dev hsr_slave_0 [ 1165.674907] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1165.674924] vcpu_enter_guest+0x2ea0/0x5270 [ 1165.674937] ? save_trace+0x290/0x290 [ 1165.680957] protocol 88fb is buggy, dev hsr_slave_1 [ 1165.684765] ? lock_downgrade+0x6e0/0x6e0 [ 1165.684779] ? find_held_lock+0x100/0x130 [ 1165.684790] ? emulator_read_emulated+0x50/0x50 [ 1165.684798] ? lock_acquire+0x16f/0x430 [ 1165.684809] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1165.720229] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1165.725077] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1165.730443] kvm_vcpu_ioctl+0x401/0xd10 [ 1165.734430] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1165.738580] ? trace_hardirqs_on+0x10/0x10 [ 1165.742822] ? __f_unlock_pos+0x19/0x20 [ 1165.746894] ? save_trace+0x290/0x290 [ 1165.750787] ? __f_unlock_pos+0x19/0x20 [ 1165.754847] ? __fget+0x210/0x370 [ 1165.758407] ? find_held_lock+0x35/0x130 [ 1165.762475] ? __fget+0x210/0x370 [ 1165.766029] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1165.770365] do_vfs_ioctl+0x7b9/0x1070 [ 1165.774261] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1165.779137] ? lock_downgrade+0x6e0/0x6e0 [ 1165.783389] ? ioctl_preallocate+0x1c0/0x1c0 [ 1165.787831] ? __fget+0x237/0x370 [ 1165.791286] ? security_file_ioctl+0x8f/0xc0 [ 1165.795794] SyS_ioctl+0x8f/0xc0 [ 1165.799161] ? do_vfs_ioctl+0x1070/0x1070 [ 1165.803370] do_syscall_64+0x1eb/0x630 [ 1165.807300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1165.812151] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1165.817422] RIP: 0033:0x458c29 [ 1165.820719] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1165.828432] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1165.835787] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1165.843147] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1165.850516] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1165.857962] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:06 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000540)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000480)='/dev/qat_adf_ctl\x00', 0x800, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x4, 0x0, 0x8, 0x0, 0x800000}, 0x0) unshare(0x40000000) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000180)={{0x9}, 'port0\x00', 0x0, 0x50, 0x6, 0x0, 0x0, 0x1, 0x101}) r1 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x5) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000280)={0x0, 0x9, 0x2, {0x1, 0x1}, {0x43, 0x32}, @ramp={0x80000000, 0x0, {0x3ff, 0x9, 0x60, 0x1}}}) sigaltstack(&(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0)) lsetxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x1) munlockall() r3 = memfd_create(&(0x7f00000000c0)=',%\x00', 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x800) getpeername(r3, &(0x7f0000000100)=@generic, &(0x7f0000000080)=0x80) fgetxattr(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB='trusted.trusted.ovmrlay.origin\x00'], &(0x7f0000000440)=""/42, 0x2a) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, '\x9e\xdez\x8cZ\xe9^H\x00\x00\x00\x00\x00\x00\x00\x7fO\x13\xee\xabe\xc02)\x01\xdck\xd3l\xde,Q\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\xd0\x00\xaa\x05\x00\x00\x00t\xdb\xcf\xa6\xdcM'}) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000380)={0x3f, 0x3ed3, 0x18fbf64a, 0x0, 0x5, 0x800}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000004c0)=ANY=[@ANYBLOB="0600000020002300fdffbda504004000be81e641360b2eb6d05a17938782232c0663e6e62d6d97fc52772c2442ac97d517a2a7918d605c965b7ebd29cd069a7e4452c37a50abbd01f7bd6847e4e33bb527c515f7621e5d4851d72aea8d0b4148a6bf1299bdfb3699ff67fc067eb815cc8e5c9bd37e3055"], &(0x7f0000000400)=0x10) 09:39:06 executing program 3: r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0xffffffe000000000, 0x200) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r0, 0x80045301, &(0x7f0000000080)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = gettid() process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) madvise(&(0x7f0000242000/0x600000)=nil, 0x600000, 0x4) 09:39:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") fadvise64(r0, 0x0, 0x5, 0x2) r1 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x2) poll(&(0x7f0000000300)=[{r1}], 0x1, 0x3) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/sco\x00') ioctl$TIOCSCTTY(r2, 0x540e, 0xd31) 09:39:06 executing program 1: r0 = socket$inet(0x2, 0x208000804, 0x100000044) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x2000, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000140)={0x0, 0x50}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @multicast1}, @in6={0xa, 0x4e22, 0x3, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x1}, @in6={0xa, 0x4e20, 0x33, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xf37}, @in6={0xa, 0x4e20, 0x3, @dev={0xfe, 0x80, [], 0x18}, 0x1}, @in={0x2, 0x4e20, @broadcast}, @in={0x2, 0x4e24, @local}, @in6={0xa, 0x4e23, 0x6, @local, 0x5}, @in6={0xa, 0x4e21, 0xfff, @mcast1, 0x2}, @in={0x2, 0x4e22, @loopback}, @in6={0xa, 0x4e20, 0x143, @empty, 0x7}], 0xe8) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000100)=@sack_info={r2, 0xf31, 0x81}, 0xc) r3 = socket$inet(0x2, 0x1, 0x84) bind$inet(r3, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10) 09:39:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x2, 0x3, 0x100000001) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x32) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/policy\x00', 0x0, 0x0) mq_getsetattr(r1, &(0x7f0000000100)={0x0, 0xe596, 0x80000001, 0x8, 0xb17, 0x6, 0x80000001, 0x7}, &(0x7f0000000140)) r2 = open(&(0x7f0000074000)='./file0\x00', 0x141046, 0x0) ftruncate(r2, 0x8007ffc) sendfile(r0, r2, 0x0, 0xffff) 09:39:06 executing program 5 (fault-call:5 fault-nth:47): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1166.036227] IPVS: ftp: loaded support on port[0] = 21 09:39:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80000, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f0000000040)}, 0x10) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0) r2 = socket$isdn_base(0x22, 0x3, 0x0) ioctl$IMGETDEVINFO(r2, 0x80184947, 0x0) 09:39:06 executing program 0: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0xf5c200690a534374, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000040)={0xfff, 0x85cc, 0x1e, 0x5a2, 0x10, 0x666, 0xfff, 0x2, 0xffff, 0x7ff}) r1 = socket$kcm(0xa, 0x11, 0x73) bind(r1, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @initdev, 0x3}, 0x80) ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000080)) ioctl$BLKRRPART(r0, 0x125f, 0x0) 09:39:06 executing program 1: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000002840)='/selinux/status\x00', 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002880)={{{@in=@local, @in6=@local}}, {{@in=@remote}, 0x0, @in=@dev}}, &(0x7f0000002980)=0xe8) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0xffffffffffffffff, 0x163882) r1 = openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x0, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffd, &(0x7f0000000100)={0x2, 0x4e23, @multicast1}, 0x10) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='/dev/loop-control\x00', 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000002780)=[{&(0x7f0000000200)="3c2cf7dc80e34274df77af879e4f2a895cbddf63ce10dec2849c92abcd77d56200b3f849cd7f37b7442e82d2d99c6bf4910891d26442412dbd5618d831834c123f0a3a05a11a15cb14141f3776a848c85986a21a849918d7025441d211d8a77bf6a36c6a61a84e4ab1bc77a8ecc03d0b82197c616e3a926c1de5cd9f883c39151a3c516030b056e26bbf71acb2c5d8ec247e7555b6", 0x95}, {&(0x7f00000002c0)="81f300cd1d3e67a9c58066f6d769b9ea0918937c732d291f09f2f4dc50cc9f377237afb0ec77ec42d579b24e8b38f4eedfa27d8bece40b4bffd9afa45dce56e799c571fa8d362a87b037e9f79812928349", 0x51}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000000040)="4b067f3f97c6992bb072a65bf63e541ce1af135e633b1c306327ad59cc3995bcd88a9ac9f3ec85f75e27da831246c0bc053f6f17", 0x34}, {&(0x7f0000001440)="a0e311cac106bd26b267793e535a740c90dfc1001d7843be03dbbbae602f787e1f5cf00594f299f8856bda904fea833b1d2f8e7be47c3af1d699dc84c92da7dec3bd8e8ed0bfaf54c6a6aff672ca0786d9144509f890864345d49173238e33c888854b89ac6fb4a8233d0e4b59729a91c4b49457ef3bc978222b7e8019709ea084e1834468391f618d047d270859154a530db88c7a5ac56ca4ec357d8aee170e92b6ca68450f1e568f94440aaa1507a11d3de371bc2a3d0882153e8636a72ba22b67bf907ecc0805cae1da5649e455cd35094b6902b751dd8642b948528aec0ea2360a732b43104550e8900551434f", 0xef}, {&(0x7f0000000340)="8d565e07b879c357e2fbeaebf7a3a129628fea7fe1d201ec8f12b0dddd42457bda785820bf38ba8955cc94cd2f243f94b527b7891f8fd9172ca2cfcc95c76498592f7e96ea6a015bb2d02386e96ac41c4b770e1470d3acf04797aca59fbd43df7763d4426bb9bb603e01ea81c38247420722a1bafef7fdbc9d67ff0ccd792663092b7de6f852fe6510755516adb8f2357a0f868817939c66726987810f6834fc099ecf8f767b386363113df5689247710a62bf30b13c0dda2fbc5e44bae4", 0xbe}, {&(0x7f0000001540)="170dee20fbe4343007c940ebbd91a004669198539fc6bede32354636089d603f10276c50a3505fbc9ca40b4b07e82082f1baba20bab3d06762852b8e6b28c0296e6e77e299bdd6195c2b57a982b99b06c915698a8d42f0e22e1dc1cd6b56036de873d257d4b691821fff57c07dcd775e4eff3a61f383c10895645a665bd5b23a101ef6dd3b70882b8a060be9c52b8c45b2fc", 0x92}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000002600)="42227b27c2934b8f8bfa94066d9845fb0b8f692a40f438d19983ae2fbf677929058cb5de29dd83218c9c377f267a7545eb885d295fcd24ba10267bc56a6f4853eaf8ef50b7aa4add30c55c103b2ae19929a642310a7a52ef3105767c3e", 0x5d}, {&(0x7f0000002680)="5876ff767ad5ba43415a3dba379da91d858f51afbb051cf6e8a88c2bc7958a3e2d425de6a901d0fad70d15ffb571f4d64382897f27869bbe9a6d4160d52a1d43201d0b502882af7b476db9beb1315c2ffd3505d8f2039124490f9db9b61800a63cf528fc926d4baa789c49990a4e30659322710d97c17db772e9283e42a9cfa093f6200c97c9b1508a426bfdb0493a985ae097d2b99d46294b79e490e65527a4ae65e04a742b5d90464f2e04d215e0c01de5cc2414b6e2e140ec5619bb683e0df8668b44e50c75649558bc9c686616ce8d19820180d158ce243b", 0xda}], 0xa, &(0x7f00000000c0)=[@op={0x18}, @op={0x18, 0x117, 0x3, 0x1}], 0x30, 0x4000010}, 0x20000080) ioctl$TCGETX(r1, 0x5432, &(0x7f00000029c0)) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0) write$FUSE_DIRENT(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x400000000000000, 0x0, 0x0, 0x0, 0x7f, 0x20000, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) eventfd(0x81) ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0) connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x4, @random="5fa3c19de7ff", 'team_slave_0\x00'}}, 0x1e) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x80) syz_genetlink_get_family_id$ipvs(&(0x7f0000002a40)='IPVS\x00') setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000002a00)=0x7, 0x8) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 09:39:06 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'bond0\x00@@\xea\xff\xff\x80\x00\x00\x02\x00', @ifru_names='bond_slave_1\x00'}) r1 = syz_open_dev$vcsn(0x0, 0x10000, 0x400) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='.\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x400000000001, 0x0) r3 = dup(r1) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, 0x0, &(0x7f00000001c0)) setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000080)=0x4, 0x4) sendto$inet6(r2, &(0x7f0000e77fff), 0x0, 0x20000008, 0x0, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r4, 0x20, 0x0, 0x8) fstat(r0, &(0x7f0000000280)) getsockname$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x0, @multicast2}, &(0x7f00000004c0)=0x440) socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f00000000c0)=0x7, 0x4) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x81}, 0x8) socket$inet_dccp(0x2, 0x6, 0x0) write$nbd(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0000000400020002000008000000447396c3e9a11dc2d6cbe533006e4d091c3bfa20ef0a28af224e01c64903ae011e1bc743e9040056705e441662d474ef97439995e161196fcf254a1d"], 0x1) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) setsockopt$inet6_tcp_buf(r3, 0x6, 0xb, &(0x7f0000000000)="a1de4e7f9ff96d5cc734df127c0121f043c387fa7d90a31bc6a1ca460a0a81d964f70cf40bf738b447cdf0ea36", 0x2d) socket$inet6(0xa, 0x5, 0x0) getsockopt$sock_buf(r2, 0x1, 0x3d, &(0x7f0000000540)=""/208, &(0x7f0000000680)=0xd0) r5 = getpid() setpriority(0x2, r5, 0x1) ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000300)) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000200)={'icmp6\x00'}, &(0x7f0000000440)=0x1e) ppoll(&(0x7f0000000180)=[{r0, 0x40}, {r3, 0x1}], 0x2, &(0x7f00000003c0), &(0x7f0000000400)={0xfffffffffffffe62}, 0x8) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000100)) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000240)={'bond0\x00\x00\x00!\x00\x00\x00\x00\x01\x00', @ifru_names='bond_slave_1\x00'}) [ 1166.189278] FAULT_INJECTION: forcing a failure. [ 1166.189278] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:06 executing program 0: r0 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x8, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205649, &(0x7f0000000000)={0x0, 0x1, 0x0, [], &(0x7f0000000140)={0x98f905, 0x5, [], @p_u32=&(0x7f0000000180)=0xffffffffffffff01}}) [ 1166.261422] CPU: 1 PID: 4541 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1166.268403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1166.278106] Call Trace: [ 1166.280708] dump_stack+0x138/0x19c [ 1166.284362] should_fail.cold+0x10f/0x159 [ 1166.288524] ? __might_sleep+0x93/0xb0 [ 1166.292422] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1166.292437] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1166.292452] ? mmu_topup_memory_caches+0x86/0x320 [ 1166.302562] ? rcu_read_lock_sched_held+0x110/0x130 [ 1166.302576] alloc_pages_current+0xec/0x1e0 [ 1166.302598] __get_free_pages+0xf/0x40 [ 1166.302607] mmu_topup_memory_caches+0x194/0x320 [ 1166.302621] kvm_mmu_load+0x21/0xd50 [ 1166.302631] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1166.302647] vcpu_enter_guest+0x2ea0/0x5270 [ 1166.302658] ? save_trace+0x290/0x290 [ 1166.302666] ? lock_downgrade+0x6e0/0x6e0 [ 1166.302678] ? find_held_lock+0x100/0x130 [ 1166.302690] ? emulator_read_emulated+0x50/0x50 [ 1166.302699] ? lock_acquire+0x16f/0x430 [ 1166.302711] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1166.338345] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1166.338357] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1166.338377] kvm_vcpu_ioctl+0x401/0xd10 [ 1166.374780] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1166.382931] ? trace_hardirqs_on+0x10/0x10 [ 1166.387184] ? __f_unlock_pos+0x19/0x20 [ 1166.391171] ? save_trace+0x290/0x290 [ 1166.394980] ? __f_unlock_pos+0x19/0x20 [ 1166.398966] ? __fget+0x210/0x370 [ 1166.402431] ? find_held_lock+0x35/0x130 [ 1166.406505] ? __fget+0x210/0x370 09:39:06 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000200), &(0x7f0000000240)=0x4) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x2, 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="05454c46000000000f000000000000000000a952c7328a5b743bf08b066b4ceb1a99fdee6d1a551df78ec342da437590189a5655960000000000000000000000000000400000000000000000000000000000000000000000000488b34944c28fae000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000709e6cfe235e3be5c62cb660ab1e344e6416b78d9acdbcd110f880d1830b883cf4057544b47496bcaeb5c615aed0ea262892657fd5"], 0x78) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0xb90) [ 1166.409987] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1166.410000] do_vfs_ioctl+0x7b9/0x1070 [ 1166.410013] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1166.410023] ? lock_downgrade+0x6e0/0x6e0 [ 1166.410032] ? ioctl_preallocate+0x1c0/0x1c0 [ 1166.410044] ? __fget+0x237/0x370 [ 1166.410059] ? security_file_ioctl+0x8f/0xc0 [ 1166.410070] SyS_ioctl+0x8f/0xc0 [ 1166.410078] ? do_vfs_ioctl+0x1070/0x1070 [ 1166.410091] do_syscall_64+0x1eb/0x630 [ 1166.410099] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1166.410116] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1166.423090] RIP: 0033:0x458c29 [ 1166.423097] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1166.423109] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1166.423115] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1166.423122] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1166.423128] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1166.423134] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1166.519246] bond0: Error: Device is in use and cannot be enslaved [ 1166.548883] bond0: Releasing backup interface bond_slave_1 09:39:07 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000540)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000480)='/dev/qat_adf_ctl\x00', 0x800, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x4, 0x0, 0x8, 0x0, 0x800000}, 0x0) unshare(0x40000000) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000180)={{0x9}, 'port0\x00', 0x0, 0x50, 0x6, 0x0, 0x0, 0x1, 0x101}) r1 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x5) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000280)={0x0, 0x9, 0x2, {0x1, 0x1}, {0x43, 0x32}, @ramp={0x80000000, 0x0, {0x3ff, 0x9, 0x60, 0x1}}}) sigaltstack(&(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0)) lsetxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x1) munlockall() r3 = memfd_create(&(0x7f00000000c0)=',%\x00', 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x800) getpeername(r3, &(0x7f0000000100)=@generic, &(0x7f0000000080)=0x80) fgetxattr(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB='trusted.trusted.ovmrlay.origin\x00'], &(0x7f0000000440)=""/42, 0x2a) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, '\x9e\xdez\x8cZ\xe9^H\x00\x00\x00\x00\x00\x00\x00\x7fO\x13\xee\xabe\xc02)\x01\xdck\xd3l\xde,Q\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\xd0\x00\xaa\x05\x00\x00\x00t\xdb\xcf\xa6\xdcM'}) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000380)={0x3f, 0x3ed3, 0x18fbf64a, 0x0, 0x5, 0x800}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000004c0)=ANY=[@ANYBLOB="0600000020002300fdffbda504004000be81e641360b2eb6d05a17938782232c0663e6e62d6d97fc52772c2442ac97d517a2a7918d605c965b7ebd29cd069a7e4452c37a50abbd01f7bd6847e4e33bb527c515f7621e5d4851d72aea8d0b4148a6bf1299bdfb3699ff67fc067eb815cc8e5c9bd37e3055"], &(0x7f0000000400)=0x10) 09:39:07 executing program 1: r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x7, 0x4000) getsockopt$inet6_dccp_buf(r2, 0x21, 0xc, &(0x7f0000000140)=""/3, &(0x7f0000000180)=0x3) close(r0) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x10000, 0x40000) getsockopt$inet6_int(r3, 0x29, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 09:39:07 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x8000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in6=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000001c0)=0xe8) ioctl$SIOCAX25GETUID(r1, 0x89e0, &(0x7f0000000200)={0x3, @bcast, r2}) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003400)=[{{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f0000001700)=""/153, 0x99}], 0x1}}], 0x1, 0x0, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000003980)='net/raw6\x00') preadv(r3, &(0x7f00000017c0), 0x1be, 0x4700) 09:39:07 executing program 5 (fault-call:5 fault-nth:48): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:07 executing program 4: r0 = socket(0x22, 0x2, 0x3) close(r0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000000)={0x40}, 0x1) 09:39:07 executing program 0: r0 = socket(0xa, 0x5, 0x800000000000) sendto(r0, &(0x7f0000000000)="120000001200e7ef007b1a3fcd00000000a1", 0x12, 0x0, 0x0, 0x0) r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x4) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000040)=""/95, 0x3d}, {&(0x7f00000000c0)=""/85, 0xa83}, {&(0x7f00000024c0)=""/4096, 0x1008}, {&(0x7f0000000400)=""/120, 0x1de}, {&(0x7f0000000480)=""/60, 0xc6}, {&(0x7f0000000280)=""/77, 0x4d}, {&(0x7f0000000540)=""/154, 0x9a}, {&(0x7f0000000340)=""/22, 0x7b}], 0x8, &(0x7f0000002400)=""/191, 0xbf}}], 0x4000000000001de, 0xa, &(0x7f0000003700)={0x77359400}) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-control\x00', 0x121000, 0x0) creat(&(0x7f0000000180)='./file0\x00', 0x8) r2 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0xd88, 0x408000) getsockopt$sock_int(r1, 0x1, 0x2b, &(0x7f0000000240), &(0x7f0000000300)=0x4) ioctl$KDENABIO(r2, 0x4b36) 09:39:07 executing program 0: sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e23}, 0x1c) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$KVM_SET_XCRS(r1, 0x4188aea7, &(0x7f0000000200)={0xa, 0x10000, [{0x2, 0x0, 0x40}, {0xbe, 0x0, 0x2}, {0x7, 0x0, 0xa77}, {0x28, 0x0, 0x8}, {0xff, 0x0, 0xa92f}, {0x6, 0x0, 0x1000}, {0x3, 0x0, 0xfffffffffffffffa}, {0x9, 0x0, 0x400}, {0x9, 0x0, 0x4}, {0x7902, 0x0, 0x90}]}) listen(r0, 0x18) rename(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') r2 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10) 09:39:07 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$l2tp(0x18, 0x1, 0x1) dup3(r1, r0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f0000000100)) syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x3, 0x2) connect$l2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) 09:39:07 executing program 4: recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001680), 0x1000000000000281, 0x0, 0xe82b8290c04d5ce}, 0x0) setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000180)={{0xa, 0x0, 0x0, @empty, 0x181}, {0xa, 0x4e22, 0x0, @ipv4={[], [], @initdev}}}, 0x5c) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001400)='/dev/sequencer\x00', 0x40001, 0x0) write$sndseq(r0, &(0x7f0000000040)=[{0x0, 0xffffffffffffffe1, 0x40000000000000, 0x0, @time={0x77359400}, {0x0, 0x1000000000}, {0xe3}, @quote}], 0x30) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4) 09:39:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dsp\x00', 0x200000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0x8030ae7c, 0x714000) 09:39:07 executing program 4: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000040)=@fragment={0x7f, 0x0, 0x3f, 0x237, 0x0, 0x3, 0x67}, 0x8) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000280)={{&(0x7f000090c000/0x1000)=nil, 0x101e}, 0x1}) [ 1167.229930] FAULT_INJECTION: forcing a failure. [ 1167.229930] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1167.244068] l2tp_core: tunl 4: sockfd_lookup(fd=3) returned -88 [ 1167.303894] l2tp_core: tunl 4: sockfd_lookup(fd=3) returned -88 [ 1167.311464] CPU: 0 PID: 4581 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1167.323129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1167.342818] Call Trace: [ 1167.342843] dump_stack+0x138/0x19c [ 1167.342861] should_fail.cold+0x10f/0x159 [ 1167.342872] ? __might_sleep+0x93/0xb0 [ 1167.342885] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1167.342897] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1167.342906] ? mmu_topup_memory_caches+0x86/0x320 [ 1167.342921] ? rcu_read_lock_sched_held+0x110/0x130 [ 1167.342935] alloc_pages_current+0xec/0x1e0 [ 1167.342948] __get_free_pages+0xf/0x40 [ 1167.342958] mmu_topup_memory_caches+0x194/0x320 [ 1167.342969] kvm_mmu_load+0x21/0xd50 [ 1167.342979] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1167.342993] vcpu_enter_guest+0x2ea0/0x5270 [ 1167.343004] ? save_trace+0x290/0x290 [ 1167.343013] ? lock_downgrade+0x6e0/0x6e0 [ 1167.343026] ? find_held_lock+0x100/0x130 [ 1167.343038] ? emulator_read_emulated+0x50/0x50 [ 1167.343049] ? lock_acquire+0x16f/0x430 [ 1167.343060] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1167.343079] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1167.343089] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1167.343104] kvm_vcpu_ioctl+0x401/0xd10 09:39:08 executing program 3: perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100000000000, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000001680)='/\x00~WM\x00\x030\x80\x90\"\xcf\xde&U]\xc9\xec\xfe\x19t\xb9\xe4\x9d\xbd\xca\xefq\x81\x97\xe3~\x87\n0\x8b\x1e:y\x8f\xa7\x88\xa4m0%\xef\x93>Q\x82\x8a\xb6u\x06N*\xdb\xe9\x12d#\xb4\xa7=h\xfb\xe9\x9cm\xb2\xf1`\xd4\x9c\xb6\xcc\xe7l\'(\x9aO\x9d\tsT\xaa\xa5\x86\r#\x83\xdf\x87Rk\xaa\x18M\x90\xbbw)6l\x16\xbc3\xd7e\xe9\xbc/\x88*\x13\xf3\xa9\xc1\xf6\x06`\xbdO\xd2\xfa1\xd2\xc0\xa7u$\"\x89\xbc\xe0b\xd1\r$\xde\xd5@i\x18\xa6k,u\xc4?\xe1\xffE\x8a\xe5\xcd\x9f\xecc\x03\x9b\xa5\xa7\xb6j`\xed\xe5\xcc\xda\xbc~\xe7v`\xef#X\xcc\xdf\xf0\"&\x02\x13\x84\xb0\xc25\xf1\x14\xed\x9a\xde\x92vz\xec\xc2V\xac\xde\xb6\x10\xdfB\xe7\x16\x9f$\x03W\xf75\xae_\xe2\x90\x17\xe5\x1e\'%/H\xb9[\xfb\xbb:\x86U5)\x8b\xdc6\xd7\x1d\xb65\xf4\x1cWw\x1d\xb7z\xea\xff\x88?\xeb=\xc3\xcc$\xbd<\x03n9j\xd3\xaf7\x94PX\x83\x9e\x81\"p\xbc@\x90\x1f\xa6T\xe7\xcc2\x92\xa8/\xc8\f7M\t\x00B\xa1\xc2\xe9\xd3\xe2R\x8eO\xda\xc3+]O0^\x8a\x892\x7f\xe4\x89\xcb\xca\xef\xe9\x10\xeb\xd3\xb9H\xa3\xbf\xba1\x9d\x8d\x00\xa1\xbc\xdd\x18\xad\xfcK\x91\x04\xc5\xad\x03\xed\xd1so\x16\x16\xac!\xdd\x99\xa0\xbb1p\xbb\xf3\xdd\xfb\xfeU\xaa9+T\xca\x00 \x9d\xf2{,\x97\x96%9\x88NU\x8b\xb9\x88\xc1\x11\xcb?&^A+\x7f\xd3\x1c\x9a\xd0g\xb8.{\x8b\tLA\f[u\xfc !\xf5:\x00\xe9.\xbe\x17\xf8\x14k\x024\xa7\xf6\xccX\x80W\x84L\xf6HD\xa2\x9dk+\xf8\xafN\xd1!\xb7H\xe1\xcf\x19\x16>\xea\x898\xdf\xcedtX\x14gB(\x9eUyZw\xa5\x83\xc5\xc8\x97\xea\xf1W\xe6\xabw\x154A\x96/\x8e\xa3\xbeG\x0e9U\xceNu\xb8b\xa5\xec', 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc020660b, &(0x7f00000001c0)) fsetxattr$security_ima(r1, &(0x7f0000000000)='security.ima\x00', &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x100a, 0x1) [ 1167.343115] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1167.343125] ? trace_hardirqs_on+0x10/0x10 [ 1167.343134] ? __f_unlock_pos+0x19/0x20 [ 1167.343145] ? save_trace+0x290/0x290 [ 1167.343153] ? __f_unlock_pos+0x19/0x20 [ 1167.343164] ? __fget+0x210/0x370 [ 1167.343173] ? find_held_lock+0x35/0x130 [ 1167.343181] ? __fget+0x210/0x370 [ 1167.343192] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1167.343201] do_vfs_ioctl+0x7b9/0x1070 [ 1167.343210] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1167.343222] ? lock_downgrade+0x6e0/0x6e0 [ 1167.384516] ? ioctl_preallocate+0x1c0/0x1c0 [ 1167.384531] ? __fget+0x237/0x370 [ 1167.384551] ? security_file_ioctl+0x8f/0xc0 [ 1167.384564] SyS_ioctl+0x8f/0xc0 [ 1167.384574] ? do_vfs_ioctl+0x1070/0x1070 [ 1167.384587] do_syscall_64+0x1eb/0x630 [ 1167.384598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1167.406374] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1167.406384] RIP: 0033:0x458c29 [ 1167.406391] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1167.406402] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1167.406408] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1167.406414] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1167.406420] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1167.406427] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:08 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000540)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000480)='/dev/qat_adf_ctl\x00', 0x800, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x4, 0x0, 0x8, 0x0, 0x800000}, 0x0) unshare(0x40000000) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(0xffffffffffffffff, 0x40a85321, &(0x7f0000000180)={{0x9}, 'port0\x00', 0x0, 0x50, 0x6, 0x0, 0x0, 0x1, 0x101}) r1 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x5) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000280)={0x0, 0x9, 0x2, {0x1, 0x1}, {0x43, 0x32}, @ramp={0x80000000, 0x0, {0x3ff, 0x9, 0x60, 0x1}}}) sigaltstack(&(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0)) lsetxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x1) munlockall() r3 = memfd_create(&(0x7f00000000c0)=',%\x00', 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x800) getpeername(r3, &(0x7f0000000100)=@generic, &(0x7f0000000080)=0x80) fgetxattr(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB='trusted.trusted.ovmrlay.origin\x00'], &(0x7f0000000440)=""/42, 0x2a) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, '\x9e\xdez\x8cZ\xe9^H\x00\x00\x00\x00\x00\x00\x00\x7fO\x13\xee\xabe\xc02)\x01\xdck\xd3l\xde,Q\xf0\x1b\x7f\v\x01O\x9f\x91\xee\xb7\xc3|r@\xf4v\xc8\xd7S\xd0\x00\xaa\x05\x00\x00\x00t\xdb\xcf\xa6\xdcM'}) ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000380)={0x3f, 0x3ed3, 0x18fbf64a, 0x0, 0x5, 0x800}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f00000004c0)=ANY=[@ANYBLOB="0600000020002300fdffbda504004000be81e641360b2eb6d05a17938782232c0663e6e62d6d97fc52772c2442ac97d517a2a7918d605c965b7ebd29cd069a7e4452c37a50abbd01f7bd6847e4e33bb527c515f7621e5d4851d72aea8d0b4148a6bf1299bdfb3699ff67fc067eb815cc8e5c9bd37e3055"], &(0x7f0000000400)=0x10) 09:39:08 executing program 4: creat(&(0x7f00000001c0)='./file0\x00', 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000000dc", 0xa}], 0x3, 0x0) 09:39:08 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x5) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x4) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r2, 0x0, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) sendmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="28000000000000002900000002000000060000d48fbcb70000000000d504000000040000000000af"], 0x28}, 0x0) sendmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000001600)=ANY=[@ANYBLOB="0500080000000000000000005fbb7a5e"], 0xc}}], 0x488, 0x0) ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f00000002c0)=""/4096) 09:39:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000901000/0x4000)=nil, 0x4000, 0x8, 0x8c4b815a5465c2b5, 0xffffffffffffffff, 0x4fac) openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/create\x00', 0x2, 0x0) socket$bt_bnep(0x1f, 0x3, 0x4) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x400000000000072, 0xffffffffffffffff, 0x0) 09:39:08 executing program 5 (fault-call:5 fault-nth:49): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:08 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffbff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f00000005c0)=""/148, 0x386}], 0xed, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/snmp6\x00') preadv(r0, &(0x7f0000000480), 0x1000000000000061, 0x0) 09:39:08 executing program 1: r0 = semget$private(0x0, 0x3, 0x100) semop(r0, &(0x7f0000000040)=[{0x4, 0xffffffffffffff56, 0x1000}, {0x3, 0xfffffffffffffff9, 0x800}, {0x4, 0x9, 0x1000}, {0x0, 0x4, 0x1000}], 0x4) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x27, &(0x7f0000000140)={@loopback, @loopback, 0x0}, &(0x7f0000000100)=0xa) r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffff9f, 0xc01}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70) ioctl$UI_SET_SWBIT(r2, 0x4004556d, 0xf) 09:39:08 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x80002) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r2, 0x319, 0x70bd2b, 0x25dfdbff, {{}, 0x0, 0x4108, 0x0, {0x14, 0x18, {0x6, @bearer=@udp='udp:syz1\x00'}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x3ee6bdccf2d7f4ca}, 0x4040000) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xb, 0x0, 0x0) 09:39:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x10000, 0x0) getsockopt$netrom_NETROM_T4(r1, 0x103, 0x6, &(0x7f0000000180)=0xfffffffffffffffd, &(0x7f00000001c0)=0x4) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mkdir(&(0x7f00000012c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffdfffff, @perf_config_ext={0xffffffffffffffff}, 0xa00000000, 0x0, 0x40000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x107040, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000100)=0x9) ioctl$SNDRV_CTL_IOCTL_PVERSION(r1, 0x80045500, &(0x7f0000000200)) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000)) [ 1168.219364] FAULT_INJECTION: forcing a failure. [ 1168.219364] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3f, 0x0, 0x7c) socket(0x10, 0x803, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, 0x0, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rpc\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x41000090}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, r3, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x64, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x24}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'teql0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}]}, 0x128}, 0x1, 0x0, 0x0, 0x20000040}, 0x4) r4 = dup3(r1, r0, 0x0) ioctl$TUNGETIFF(r4, 0x800454d2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) 09:39:08 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket(0x5, 0x4, 0x107) ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000080)={r0, 0x0, 0x5, "4a78347baf1a96bd765b9e154f0fa0d25a625133237f5f99d0461e0718d3ae229728df2e6191fb48a7cfb1c63e1528dc204c81b455924a913408dbdc5c0711b1d764d287d574711be0660a0ff0253b56ebbc8ed2165b44120e067b75071f1fb9f60a3c326843300566ddc70ec71e9e99583ecd912974ebc61af1df59983888453628d958d2a2e8eb10502db7195f8ec6de6f7b170f79eaa7d14d819e5a51a4849619351b5c14d2d1f7d491f7f90f2fbd4cfe45975d056835202c07e30b6cf1cb37b3"}) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) ioctl$VIDIOC_ENCODER_CMD(r2, 0xc028564d, &(0x7f0000000200)={0x1, 0x0, [0x1, 0xdf, 0x8, 0xfff, 0x1, 0x7, 0xff, 0x9]}) r3 = socket$rxrpc(0x21, 0x2, 0xa) bind$rxrpc(r3, &(0x7f00000001c0)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x0, 0x0, @empty}}, 0x24) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") listen(r3, 0x0) ioctl$SIOCGSTAMP(r4, 0x8906, &(0x7f0000000040)) dup3(r0, r3, 0x0) [ 1168.291391] CPU: 0 PID: 4627 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1168.298377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1168.307859] Call Trace: [ 1168.310486] dump_stack+0x138/0x19c [ 1168.314132] should_fail.cold+0x10f/0x159 [ 1168.318289] ? __might_sleep+0x93/0xb0 [ 1168.322187] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1168.326865] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1168.331895] ? mmu_topup_memory_caches+0x86/0x320 [ 1168.336750] ? rcu_read_lock_sched_held+0x110/0x130 09:39:08 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x200000, 0x0) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x7) r2 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000001c0)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4, 0x0, 0x2b}, 0x0, @in=@multicast1}}, 0xe8) close(r2) [ 1168.341777] alloc_pages_current+0xec/0x1e0 [ 1168.346119] __get_free_pages+0xf/0x40 [ 1168.350013] mmu_topup_memory_caches+0x194/0x320 [ 1168.354779] kvm_mmu_load+0x21/0xd50 [ 1168.358584] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1168.363377] vcpu_enter_guest+0x2ea0/0x5270 [ 1168.367759] ? save_trace+0x290/0x290 [ 1168.371850] ? lock_downgrade+0x6e0/0x6e0 [ 1168.376007] ? find_held_lock+0x100/0x130 [ 1168.380166] ? emulator_read_emulated+0x50/0x50 [ 1168.384837] ? lock_acquire+0x16f/0x430 [ 1168.388818] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1168.393856] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1168.398838] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1168.403870] kvm_vcpu_ioctl+0x401/0xd10 [ 1168.407857] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1168.412012] ? trace_hardirqs_on+0x10/0x10 [ 1168.416249] ? __f_unlock_pos+0x19/0x20 [ 1168.420229] ? save_trace+0x290/0x290 [ 1168.424036] ? __f_unlock_pos+0x19/0x20 [ 1168.428015] ? __fget+0x210/0x370 [ 1168.431476] ? find_held_lock+0x35/0x130 [ 1168.435548] ? __fget+0x210/0x370 [ 1168.439012] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1168.443165] do_vfs_ioctl+0x7b9/0x1070 [ 1168.447057] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1168.451817] ? lock_downgrade+0x6e0/0x6e0 [ 1168.456056] ? ioctl_preallocate+0x1c0/0x1c0 [ 1168.460503] ? __fget+0x237/0x370 [ 1168.463982] ? security_file_ioctl+0x8f/0xc0 [ 1168.468395] SyS_ioctl+0x8f/0xc0 [ 1168.471776] ? do_vfs_ioctl+0x1070/0x1070 [ 1168.475935] do_syscall_64+0x1eb/0x630 [ 1168.479827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1168.484781] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1168.489982] RIP: 0033:0x458c29 [ 1168.493189] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1168.500987] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1168.508264] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1168.515576] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1168.522945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1168.530224] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1168.630539] net_ratelimit: 10 callbacks suppressed [ 1168.630583] protocol 88fb is buggy, dev hsr_slave_0 [ 1168.641336] protocol 88fb is buggy, dev hsr_slave_1 [ 1168.646986] protocol 88fb is buggy, dev hsr_slave_0 [ 1168.652494] protocol 88fb is buggy, dev hsr_slave_1 [ 1168.769331] IPVS: ftp: loaded support on port[0] = 21 09:39:09 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3f, 0x0, 0x7c) socket(0x10, 0x803, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, 0x0, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rpc\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x41000090}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, r3, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x64, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x24}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'teql0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}]}, 0x128}, 0x1, 0x0, 0x0, 0x20000040}, 0x4) r4 = dup3(r1, r0, 0x0) ioctl$TUNGETIFF(r4, 0x800454d2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) 09:39:09 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000000)='ppp0md5sum]md5sum\x00', 0x7) sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000009) lookup_dcookie(0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0xb5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) fstat(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000040)='./file0\x00', r2, r3) r4 = gettid() clone(0x3000000a0160100, 0x0, 0x0, 0x0, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x4680, 0x20) epoll_wait(r5, &(0x7f0000000200)=[{}, {}, {}, {}, {}], 0x5, 0x6) ptrace$setopts(0x4206, r4, 0x0, 0x0) tkill(r4, 0x11) wait4(0x0, 0x0, 0x0, 0x0) 09:39:09 executing program 4: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[@ANYBLOB='\x00'], 0x1) fallocate(r0, 0x0, 0x0, 0x4003ff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x310, 0x0, 0x13bab5fcff0ae7f4, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x34, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8001}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x401}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}]}, @TIPC_NLA_BEARER={0x14, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}]}, @TIPC_NLA_NET={0x48, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x100000000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x80}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x49}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ID={0x8}]}, @TIPC_NLA_LINK={0xec, 0x4, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x15}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x567d}]}, @TIPC_NLA_LINK_PROP={0x4}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}]}]}, @TIPC_NLA_LINK={0x110, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x72a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}]}, @TIPC_NLA_MEDIA={0x48, 0x5, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x449}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_MEDIA={0x14, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x100}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}]}, 0x310}, 0x1, 0x0, 0x0, 0x80}, 0x4000) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0x1) 09:39:09 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x40000, 0x0) ioctl$SIOCAX25ADDFWD(r0, 0x89ea, &(0x7f0000000100)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null}) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x11) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x21a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000080)=0x20000000) 09:39:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3f, 0x0, 0x7c) socket(0x10, 0x803, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, 0x0, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rpc\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x41000090}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, r3, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x64, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x24}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'teql0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}]}, 0x128}, 0x1, 0x0, 0x0, 0x20000040}, 0x4) r4 = dup3(r1, r0, 0x0) ioctl$TUNGETIFF(r4, 0x800454d2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) 09:39:09 executing program 5 (fault-call:5 fault-nth:50): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:09 executing program 0: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x101, 0x400) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x4, 0x34, 0xd73, 0x1, 0x7}, 0x14) ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000080)={0x7, 0x100, 0x2, {0x1, 0x6b8, 0x2, 0x181}}) setsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f00000000c0)=0xdc1d, 0x4) ioctl(r0, 0x8001, &(0x7f0000000100)="4b523a8511afa7bd4f6f94a44937bb5919a1e01f59bf4ff907386eab2a7373d4e063f54f320432b3a281864b1d7366b8cbe887cc544ee35415efbcbc062ca0a7ac98b5d6d1126fa7e9b820ede8b4f216fbf8f32697a1597631372cf7be6cbaca2b319a356581db5ece4c2897a6b8fb152cdf35ccd649fab33aead3d8f24abd88") r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f00000001c0)={&(0x7f0000000180)='./file0\x00', 0x0, 0x8}, 0x10) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000200)=@sack_info={0x0, 0xffff, 0x8}, &(0x7f0000000240)=0xc) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000280)={r2, @in6={{0xa, 0x4e24, 0x200, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x9}}, 0x76, 0x7, 0x6, 0x10000}, 0x98) ioctl(r1, 0x6e32, &(0x7f0000000340)="149a18982b6911e61e0de9a185c4b86ac1ba8777d8ac") ioctl$GIO_CMAP(r0, 0x4b70, &(0x7f0000000380)) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000003c0)=0x3, 0x2) r3 = syz_open_dev$swradio(&(0x7f0000000400)='/dev/swradio#\x00', 0x1, 0x2) clock_gettime(0x0, &(0x7f0000000480)={0x0, 0x0}) ppoll(&(0x7f0000000440)=[{r1, 0x40}, {r0, 0x9120}, {r0, 0x6318}], 0x3, &(0x7f00000004c0)={r4, r5+30000000}, &(0x7f0000000500)={0xd27}, 0x8) splice(r3, &(0x7f0000000540), r3, &(0x7f0000000580), 0x3, 0x4) write$sndseq(r0, &(0x7f0000000700)=[{0x400, 0x3, 0x841, 0x80000001, @time, {0x9, 0x4}, {0x1, 0x10662b89}, @raw32={[0x5, 0x2, 0x51d]}}, {0x10001, 0x7, 0x200000, 0x5, @time, {0x8000, 0x600000000}, {0x5, 0x7}, @connect={{0x232c, 0x20}, {0x8, 0x971}}}, {0x10001, 0x9, 0x1, 0x2, @time, {0x5, 0x5}, {0x5, 0x1}, @ext={0x53, &(0x7f00000005c0)="005b16cfef5cc35007944e0151ea6f1f78e0f9e06a551db18670e9bb0061a6222cf7ebea8260c5ab127e8accd9fb7f8f91a4a34b260ea79dfcda1bc05a83a434ede164eb52c3fab6361e97466a5a5bbfc11d61"}}, {0x80000000, 0x40, 0x7, 0xfffffffffffeffff, @tick=0x401, {0x6, 0x265}, {0x600000000000, 0x8}, @ext={0xc0, &(0x7f0000000640)="0c9110f0bcb52b6d689201914838cf0a9f6abc48874f4dab46fd23c491fd328b3aa1bc85bdb0f512722acb2748317b14c370a7750c70da484f97f954480a693fc21b4b31ba3ff17849ca6e81673027be1a88fb3f0d4e5be640315c3f85573b596e8263feafe0c5b1d2a7ca38f9aef631b78473f54171ae4185448ff4479ab14e1e398516bb049e63d6535d399b99f7ab61d06b68ff0937110b63f151742b9b27f6ae736b2260a9a3d0971ae0e449b4ecf6a1a5a6f8df12ddd65d5e8054165ce2"}}, {0x1, 0x9, 0x4, 0x800, @tick=0x21, {0x9, 0x9}, {0x8aaa, 0x835}, @connect={{0x20}, {0x3}}}, {0x2, 0x7fff, 0x1, 0x200, @time={0x77359400}, {0xffffffff}, {0x4, 0x6}, @raw8={"5b1fb83b8255513d56ad8beb"}}, {0x4, 0x7e07223, 0x8, 0x9, @tick=0x2, {0x5, 0x8}, {0x80000001, 0xffff}, @connect={{0x40}, {0x6, 0x10001}}}], 0x150) ioctl$RTC_UIE_OFF(r3, 0x7004) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000008c0)={0x0, @broadcast, @remote}, &(0x7f0000000900)=0xc) ioctl$HCIINQUIRY(r3, 0x800448f0, &(0x7f0000000940)={r6, 0x9, 0x2, 0x3, 0x1f, 0x7ff, 0xa756}) fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000980)='trusted.overlay.origin\x00', &(0x7f00000009c0)='y\x00', 0x2, 0x3) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000a80)={0x0}, &(0x7f0000000ac0)=0xc) perf_event_open(&(0x7f0000000a00)={0x1, 0x70, 0x3, 0xbb54, 0x6, 0x5, 0x0, 0x1, 0x4, 0x2, 0xab, 0x4, 0x3, 0x80000001, 0xc2, 0x3, 0xdd, 0x1, 0x4, 0x2, 0xfffffffffffffffe, 0x1200, 0x6, 0x100, 0x5, 0x5, 0x1, 0xc9e, 0x7, 0x8, 0x3, 0x55, 0x3c2, 0x7a, 0x6, 0xb7, 0x7, 0x4, 0x0, 0x3, 0x0, @perf_config_ext={0xeef, 0x9}, 0x30066, 0x240000000, 0x0, 0xf, 0x6, 0x10000, 0x9}, r7, 0x9, 0xffffffffffffffff, 0x7c2f357130eb0f5a) clock_gettime(0x0, &(0x7f0000000b00)) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000b40)={{{@in, @in=@empty}}, {{@in6=@remote}, 0x0, @in6=@initdev}}, &(0x7f0000000c40)=0xe8) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f0000000c80)={0x0, 0x0, 0x4, 0x3ff, 'syz0\x00', 0x8}) prctl$PR_GET_FPEXC(0xb, &(0x7f0000000cc0)) openat$dir(0xffffffffffffff9c, &(0x7f0000000d00)='./file0\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000d40)={r2, 0xe7, 0x4540f970, 0x1}, &(0x7f0000000d80)=0x10) setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000dc0), 0x4) ioctl$VIDIOC_G_OUTPUT(r3, 0x8004562e, &(0x7f0000000e00)) 09:39:09 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3f, 0x0, 0x7c) socket(0x10, 0x803, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, 0x0, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rpc\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x41000090}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, r3, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x64, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x24}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'teql0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}]}, 0x128}, 0x1, 0x0, 0x0, 0x20000040}, 0x4) r4 = dup3(r1, r0, 0x0) ioctl$TUNGETIFF(r4, 0x800454d2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) 09:39:09 executing program 4: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") r1 = socket(0x10, 0x2, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') dup3(r1, r1, 0x0) 09:39:09 executing program 3: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f00000001c0)={0x18, 0x0, {0x4, @dev={[], 0xa}, 'lo\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000080)) sendmsg(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f0000000240)="9b4d", 0x2}], 0x1}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x5, 0x101400) sendmsg$rds(r1, &(0x7f0000002400)={&(0x7f00000000c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/143, 0x8f}, {&(0x7f0000000280)=""/161, 0xa1}, {&(0x7f0000000340)=""/141, 0x8d}, {&(0x7f0000000400)=""/58, 0x3a}, {&(0x7f00000005c0)=""/193, 0xc1}, {&(0x7f0000000440)=""/184, 0xb8}], 0x6, &(0x7f00000022c0)=[@mask_cswp={0x58, 0x114, 0x9, {{0x2}, &(0x7f0000000740)=0x2d, &(0x7f0000000780)=0x93, 0x3, 0xfffffffffffffff8, 0xfffffffffffffffd, 0x7, 0x60, 0x3}}, @rdma_map={0x30, 0x114, 0x3, {{&(0x7f00000007c0)=""/148, 0x94}, &(0x7f0000000880), 0x28}}, @rdma_args={0x48, 0x114, 0x1, {{0x4, 0x3}, {&(0x7f00000008c0)=""/204, 0xcc}, &(0x7f0000002000)=[{&(0x7f00000009c0)=""/234, 0xea}, {&(0x7f0000000ac0)=""/180, 0xb4}, {&(0x7f0000000b80)=""/216, 0xd8}, {&(0x7f0000000c80)=""/4096, 0x1000}, {&(0x7f0000001c80)=""/135, 0x87}, {&(0x7f0000001d40)=""/187, 0xbb}, {&(0x7f0000001e00)=""/87, 0x57}, {&(0x7f0000001e80)=""/243, 0xf3}, {&(0x7f0000001f80)=""/84, 0x54}], 0x9, 0xa, 0x1f}}, @rdma_args={0x48, 0x114, 0x1, {{0x100000001, 0x3ff}, {&(0x7f00000020c0)=""/29, 0x1d}, &(0x7f0000002280)=[{&(0x7f0000002100)=""/140, 0x8c}, {&(0x7f00000021c0)=""/178, 0xb2}, {&(0x7f00000027c0)=""/4096, 0x1000}], 0x3, 0x70, 0x10000}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x5d}], 0x130}, 0x800) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/policy\x00', 0x0, 0x0) recvfrom$inet6(r2, &(0x7f0000000500)=""/66, 0x42, 0x40002043, &(0x7f0000000580)={0xa, 0x4e22, 0x800, @loopback, 0x1}, 0x1c) uselib(&(0x7f0000000000)='./file0\x00') 09:39:09 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x2, 0x10, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x6e6bb4, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@local, @in6=@loopback}}]}, 0x50}}, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x847fd) ioctl$VIDIOC_SUBDEV_S_SELECTION(r1, 0xc040563e, &(0x7f0000000040)={0x0, 0x0, 0x3, 0x3, {0x6, 0x7fff, 0x1, 0x6}}) 09:39:09 executing program 0: clock_getres(0x5, 0x0) [ 1169.271210] FAULT_INJECTION: forcing a failure. [ 1169.271210] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:09 executing program 1: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xec, 0x4000) write$cgroup_type(r0, &(0x7f0000000100)='threaded\x00', 0x9) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000040)={0x100000001, 0x3, 0x6, 0x10000}, 0x10) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0x200002, 0x0) arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x2) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x400000, 0x0) fchdir(r1) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) fstatfs(r2, &(0x7f0000000400)=""/128) 09:39:09 executing program 0: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockname(r0, 0x0, &(0x7f0000000080)) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f00000000c0)={0x0, @time={r2, r3+30000000}, 0x9, {0x7, 0x9}, 0xb3, 0x2, 0x8}) [ 1169.369321] CPU: 0 PID: 4672 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1169.376432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1169.385795] Call Trace: [ 1169.388404] dump_stack+0x138/0x19c [ 1169.392049] should_fail.cold+0x10f/0x159 [ 1169.396298] ? __might_sleep+0x93/0xb0 [ 1169.400207] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1169.404889] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1169.410040] ? mmu_topup_memory_caches+0x86/0x320 [ 1169.414902] ? rcu_read_lock_sched_held+0x110/0x130 [ 1169.420281] alloc_pages_current+0xec/0x1e0 [ 1169.424925] __get_free_pages+0xf/0x40 [ 1169.428822] mmu_topup_memory_caches+0x194/0x320 [ 1169.433612] kvm_mmu_load+0x21/0xd50 [ 1169.437335] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1169.442075] ? vcpu_enter_guest+0x20f0/0x5270 [ 1169.446645] vcpu_enter_guest+0x2ea0/0x5270 [ 1169.450957] ? emulator_read_emulated+0x50/0x50 [ 1169.455696] ? lock_acquire+0x16f/0x430 [ 1169.459672] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1169.464765] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1169.469675] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1169.474677] kvm_vcpu_ioctl+0x401/0xd10 [ 1169.478636] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1169.482769] ? trace_hardirqs_on+0x10/0x10 [ 1169.486989] ? __f_unlock_pos+0x19/0x20 [ 1169.491043] ? save_trace+0x290/0x290 [ 1169.494827] ? __f_unlock_pos+0x19/0x20 [ 1169.498880] ? __fget+0x210/0x370 [ 1169.502317] ? find_held_lock+0x35/0x130 [ 1169.506387] ? __fget+0x210/0x370 [ 1169.509824] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1169.513960] do_vfs_ioctl+0x7b9/0x1070 [ 1169.517836] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1169.522616] ? lock_downgrade+0x6e0/0x6e0 [ 1169.526758] ? ioctl_preallocate+0x1c0/0x1c0 [ 1169.531152] ? __fget+0x237/0x370 [ 1169.534600] ? security_file_ioctl+0x8f/0xc0 [ 1169.539008] SyS_ioctl+0x8f/0xc0 [ 1169.542375] ? do_vfs_ioctl+0x1070/0x1070 [ 1169.546708] do_syscall_64+0x1eb/0x630 [ 1169.550598] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1169.555428] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1169.560696] RIP: 0033:0x458c29 09:39:10 executing program 3: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) creat(&(0x7f0000000280)='./file1/file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='overlay\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1\x00']) munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) 09:39:10 executing program 1: mkdir(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x505900, 0x0) ioctl$VIDIOC_G_CROP(r0, 0xc014563b, &(0x7f00000001c0)={0x4, {0x1ed6, 0x7fffffff, 0x2e, 0x1}}) clone(0x2102801ff5, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c41f) perf_event_open(&(0x7f0000000000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xa00000000, 0x0, 0x40000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nfs\x00', 0x0, &(0x7f0000000000)) open(0x0, 0x0, 0x0) 09:39:10 executing program 0: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000001300)=""/246) ioctl$EVIOCGREP(r0, 0x40047451, &(0x7f0000d1df52)=""/174) r1 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x199, 0x4000) socketpair(0xa, 0x3, 0x3, &(0x7f0000000140)) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffff9c, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x5, 0x30}, &(0x7f00000000c0)=0xc) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={r2, 0x3f, 0x20}, 0xc) syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x1, 0x400) [ 1169.563869] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1169.571560] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1169.579000] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1169.586267] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1169.593789] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1169.601054] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:10 executing program 5 (fault-call:5 fault-nth:51): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:10 executing program 4: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000240)='/dev/video35\x00', 0x2, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='mounts\x00') openat$cgroup_procs(r1, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0) accept4$nfc_llcp(r1, &(0x7f0000000100), &(0x7f0000000180)=0x60, 0x800) ioctl$VIDIOC_QUERYBUF(r0, 0xc058560f, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x0, {0x0, 0x2710}, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, "fc8b0572"}, 0x0, 0x0, @userptr, 0x4}) 09:39:10 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x3f, 0x0, 0x7c) socket(0x10, 0x803, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, 0x0, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/rpc\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000000140)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x41000090}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, r3, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x64, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x24}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x89}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x70}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'teql0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sed\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}]}, 0x128}, 0x1, 0x0, 0x0, 0x20000040}, 0x4) r4 = dup3(r1, r0, 0x0) ioctl$TUNGETIFF(r4, 0x800454d2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) 09:39:10 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="0a0775db7b2803b4f0a12585675d26b0d5e383e5b3b60ced5c54dbb7295df0df8217ad62005127000000000000e60000", 0x30) r1 = accept$alg(r0, 0x0, 0x0) r2 = dup(r1) readlinkat(r2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=""/105, 0x69) write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="2e000091ff0000000000000000000000feffffff0000000007000000000000000600"/46], 0x2e) write$UHID_DESTROY(r2, &(0x7f0000000200), 0xffffff77) recvmmsg(r1, &(0x7f0000005640)=[{{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000980)=""/119, 0x77}], 0x1}}], 0x1, 0x0, 0x0) [ 1169.752116] overlayfs: filesystem on './file0' not supported as upperdir 09:39:10 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) socketpair(0x1f, 0x4, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$netlink(r1, 0x10e, 0x3, &(0x7f0000000100)=""/188, &(0x7f0000000040)=0xbc) ioctl$sock_ifreq(r0, 0x89f6, &(0x7f00000000c0)={'sit0\x00\x00\x00\x00\x00\x00\x00\x12\x00\x00\xed\x00', @ifru_map}) 09:39:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) setsockopt$inet6_dccp_buf(r4, 0x21, 0xcd, &(0x7f00000001c0)="eddbfe4d405ae9aac81a475e7d2a43d9d91353b1fd67d80da466957875988460db5cf4285a27cf1444c0444b0ad8c0a014ed1723e4fd34a4b789228f971e16086f09f2f06ac4b016de2ff249d6205d293db2b5a26d6763b6894b5e7d13599fa72f6de5e5248e233fe2a2667ef05b62fb0d8b2fdde12633f86c231a78a2ac05f50c74ad12fbc78176495e34809909bb54404f3d4f81", 0x95) ioctl(r1, 0x400000008, &(0x7f0000000080)="0adc1f123c123f319bd070") ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="000000000000000000150040050000a90000000000fa00000000e23f0003000001000000000000002560b700fff0ffff0403fffffff300000a00000006"]) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000100)={0x1000000000000092, 0x0, [{0x38d, 0x3a00}]}) accept$inet(r3, 0x0, &(0x7f0000000000)) 09:39:10 executing program 2: r0 = socket$inet(0x10, 0x3, 0xc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000080)={0x1, [0x0]}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r1, &(0x7f0000000180)=0x4) sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="24000000070607031dfffd946fa2830020200a0009000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) 09:39:10 executing program 0: write$FUSE_IOCTL(0xffffffffffffffff, &(0x7f0000000000)={0x20}, 0xfffffc34) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x80) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000100)='fou\x00') sendmsg$FOU_CMD_DEL(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4004}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="dab684cc5081956a82787586ebbc6fdae24ad8cb43c27e15471ac7eda6887698d992058519bccc148fb6281d11b3cf29f8118ae230352d3883f9dc2588aa8046868d54a8ec6db9ca6c1954403154dbdc", @ANYRES16=r1, @ANYBLOB="140125bd7000fddbdf2502000000080001004e2100000400050008000300ff000000"], 0x28}, 0x1, 0x0, 0x0, 0x81}, 0x10) r2 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000140)={0x3, 0x0, 0x0, 0x0, 0x7fffffff}) memfd_create(&(0x7f0000000000)='\xac\x00\x00', 0x0) ioctl$PERF_EVENT_IOC_ID(r0, 0x80082407, &(0x7f0000000280)) syz_open_dev$amidi(0x0, 0x0, 0x800) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x0, 0xf0f}) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r2) 09:39:10 executing program 2: mkdir(&(0x7f0000000540)='./file0\x00', 0x0) r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r1 = open(&(0x7f0000000340)='.\x00', 0x0, 0x0) mkdirat(r1, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) mkdirat(r0, &(0x7f0000000000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000080)=0x0) r3 = getpgid(0x0) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r1, &(0x7f00000000c0)={r1, r1, 0x7f}) renameat(r1, &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000380)='./file0\x00') renameat2(r0, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) [ 1169.830112] protocol 88fb is buggy, dev hsr_slave_0 [ 1169.835317] protocol 88fb is buggy, dev hsr_slave_1 [ 1169.845104] FAULT_INJECTION: forcing a failure. [ 1169.845104] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:10 executing program 0: syz_emit_ethernet(0x66, &(0x7f0000000400)={@random="cd390b081bf2", @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "c18a9c", 0x30, 0x3b, 0x0, @dev, @mcast2, {[], @icmpv6=@time_exceed={0x3, 0x0, 0x0, 0x0, [], {0x0, 0x6, "ccf0b1", 0x0, 0x0, 0x0, @mcast2, @dev}}}}}}}, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x900, 0x0) ioctl$VIDIOC_S_CROP(r0, 0x4014563c, &(0x7f0000000080)={0x6, {0x7fff, 0x5, 0x9, 0x5}}) lsetxattr$security_smack_transmute(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x0) openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/validatetrans\x00', 0x1, 0x0) [ 1169.917209] CPU: 0 PID: 4720 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1169.924457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1169.934098] Call Trace: [ 1169.936735] dump_stack+0x138/0x19c [ 1169.940372] should_fail.cold+0x10f/0x159 [ 1169.944525] ? __might_sleep+0x93/0xb0 [ 1169.948427] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1169.953108] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1169.958208] ? mmu_topup_memory_caches+0x86/0x320 [ 1169.963054] ? rcu_read_lock_sched_held+0x110/0x130 [ 1169.968074] alloc_pages_current+0xec/0x1e0 [ 1169.972582] __get_free_pages+0xf/0x40 [ 1169.976468] mmu_topup_memory_caches+0x194/0x320 [ 1169.981326] kvm_mmu_load+0x21/0xd50 [ 1169.985132] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1169.990424] vcpu_enter_guest+0x2ea0/0x5270 [ 1169.996402] ? save_trace+0x290/0x290 [ 1170.003309] ? lock_downgrade+0x6e0/0x6e0 09:39:10 executing program 1: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000002c0)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000300)={0x0, 0xd2c}, &(0x7f0000000340)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000380)={r2, 0x7f}, 0x8) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xf) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/247, 0xffffff80}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xadbf80a3}], 0x23a, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x8, 0x1c180) ioctl$SIOCGETNODEID(r3, 0x89e1, &(0x7f0000000080)={0x3}) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x6, 0x10}, &(0x7f0000000100)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000140)={0x559f, 0x9, 0x200, 0x3, 0xfffffffffffffff9, 0xffffffff, 0x5, 0x7, r4}, &(0x7f0000000280)=0x20) 09:39:10 executing program 1: r0 = syz_init_net_socket$nfc_llcp(0x27, 0x6, 0x1) bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0049d13d339c3a83b57716ee817c892fe57dda6e3ac07858a088ca4db18e363c2dea8bdb564a22c9bc8faf6c532aaab9b6ba0630f11c15b164a12d3e48f3fd"}, 0x60) getsockopt$nfc_llcp(r0, 0x118, 0x0, &(0x7f0000000200)=""/177, 0x70c000) [ 1170.008023] ? find_held_lock+0x100/0x130 [ 1170.022959] ? emulator_read_emulated+0x50/0x50 [ 1170.027646] ? lock_acquire+0x16f/0x430 [ 1170.031637] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1170.036674] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1170.041522] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1170.046566] kvm_vcpu_ioctl+0x401/0xd10 [ 1170.050557] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1170.054892] ? trace_hardirqs_on+0x10/0x10 [ 1170.054903] ? __f_unlock_pos+0x19/0x20 [ 1170.054915] ? save_trace+0x290/0x290 [ 1170.054924] ? __f_unlock_pos+0x19/0x20 [ 1170.054936] ? __fget+0x210/0x370 [ 1170.054947] ? find_held_lock+0x35/0x130 [ 1170.054957] ? __fget+0x210/0x370 [ 1170.054969] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1170.054979] do_vfs_ioctl+0x7b9/0x1070 [ 1170.054992] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1170.063270] ? lock_downgrade+0x6e0/0x6e0 [ 1170.063291] ? ioctl_preallocate+0x1c0/0x1c0 [ 1170.063304] ? __fget+0x237/0x370 [ 1170.063321] ? security_file_ioctl+0x8f/0xc0 [ 1170.063334] SyS_ioctl+0x8f/0xc0 [ 1170.063344] ? do_vfs_ioctl+0x1070/0x1070 [ 1170.063358] do_syscall_64+0x1eb/0x630 [ 1170.063367] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1170.063384] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1170.063394] RIP: 0033:0x458c29 [ 1170.136764] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1170.144472] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1170.151878] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1170.159320] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1170.166639] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1170.174108] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:10 executing program 5 (fault-call:5 fault-nth:52): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) syz_execute_func(&(0x7f0000000080)="46ffb0010000008f297812c5d232644f0f6e6a28c4e2a18c363e66400f383db9b4000000f20f2af1c4a23536f4c4a25d3d644b21f3430f5ac9") r2 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x800) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f000000efd0)={0xffffff9d, 0x0, 0x0, 0x1, 0xfdfd, &(0x7f00000001c0)="ef"}) 09:39:10 executing program 1: clone(0x41fd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/policy\x00', 0x0, 0x0) recvfrom$rose(r1, &(0x7f0000000140)=""/243, 0xf3, 0x12101, &(0x7f0000000240)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x1, @null}, 0x1c) timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x4, @tid=r0}, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x2, 0x0) accept$packet(r2, &(0x7f0000000080), &(0x7f00000000c0)=0x14) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000280)={0xffffffffffffffff}, 0x428e5b13f0db416c}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x4, @mcast1, 0x1}, {0xa, 0x4e23, 0x4, @mcast1, 0x5}, r3, 0x9}}, 0x48) sendto$rxrpc(r1, &(0x7f0000000380)="0a6e945b3557c7d8ef4d7dfdcd9665a10beafa5b386d63db6f0ad6a23171c3e34e84d2e7ba151fee2f070296fe7ec3f6f5d5c6db273f2babcfcea138cef4ef83b78fc7d6c69c1f7416bc56e3d7b66fe01c5270e55ead5f7c0f455db79fc5cc396159ac97f97bf58f7b8fe4d33d0f1d133c715635b5a622374322832f37193edb0ed1f93e0262f3e8c546e632a60b12f5", 0x90, 0x4000000, &(0x7f0000000440)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e24, 0xffffffffffffffff, @empty, 0x1}}, 0x24) 09:39:10 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") write$selinux_create(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a737368645f7661725f72756e5f743a73302073797374656d913e4ffe07eae65f750800797374656d5f723a6b65726e656c5f743a7330203030303030303030303030303030303030303030202ef67b1d4b7eb0e897b4e419e0d84833e66bbe57a0a6e8b0ff5ee5d2143959030b5492631505f82a9c967e23cd4a8790e2bd9764531a8be277555d39d2b0a2e7516850"], 0x5f) write$binfmt_aout(r0, &(0x7f0000000100)={{0x0, 0x1, 0x4c, 0x227, 0xe1, 0x0, 0x3, 0x4}, "7cee8e171e1ca8555c6c82b7b6b6ad19a52908f760ae7ff74b807c776a05a0b3fd80124da23bd9b3e85280a11cb8997f122667d164b5e7cbf49b95037be1b8893f8997143ff74920a43c882c0315a4fb99d52e53ee43be76743afa098b7a2eab02e1f3a9f19f96e1649b4a707d7c51dde2a44ec437faa5a5f70d6732eab2808ff262a99be716b6e9bfd961832604446b1895f047fe31183e2b5e197be919d5a468aed2e4b42939fc3f5a926f06026397a574d5a2c238fbf8a4ec7b732c327abd6f414229", [[], [], [], [], [], [], [], [], [], []]}, 0xae4) 09:39:10 executing program 4: syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x5, 0x400800) syz_open_procfs$namespace(0x0, &(0x7f00000001c0)='ns/uts\x00') syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/uts\x00') r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/enforce\x00', 0x80, 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000040)={0x28, 0x3, 0x0, {0x6, 0x7, 0x0, 'ns/uts\x00'}}, 0x28) 09:39:10 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0x6) ioctl$int_in(0xffffffffffffffff, 0x800000c004500a, 0x0) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000000)={0xffffffffffffff1b, 0x12, 0x100000000000f00, {0x8, 0x0, 0x4000000000000000, 0x0, 0xe000000}}, 0xfffffefd) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$int_out(r0, 0x5460, &(0x7f0000000040)) ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) dup2(r0, r1) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000080)={{0xa, 0x4e22, 0x1827, @mcast2, 0x7ff}, {0xa, 0x4e24, 0x9, @local, 0x10001}, 0x4, [0x2, 0x7, 0x2, 0x96a1, 0x3fd4b06, 0x9, 0x6, 0x1000]}, 0x5c) 09:39:10 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$IMCTRLREQ(r1, 0x80044945, &(0x7f00000000c0)={0x0, 0x800, 0x6f0, 0x100}) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc7539esp(cbc(aes),sha256-arm64-neon)\x00'}, 0x3f) r2 = accept$alg(r0, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000940)=ANY=[@ANYRES32=0x0], 0xfffffc21) prctl$PR_SET_THP_DISABLE(0x29, 0x0) 09:39:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0) setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000080), 0x4) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$KDGKBLED(r2, 0x80045113, &(0x7f0000a07fff)) 09:39:10 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_dev$usbmon(0x0, 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) r1 = socket$inet6(0xa, 0x803, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e24, 0x40, @loopback}, 0x1c) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) fchdir(r2) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) umount2(0x0, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f00000000c0)={0x100, 0x0, 0x10003, 0xa}) ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000140)={r3, 0x3}) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, 0x0, 0x0) 09:39:10 executing program 0: perf_event_open(&(0x7f00000005c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000004540)=[{{0x0, 0xfffffffffffffd26, 0x0, 0x15, &(0x7f0000002e00)=""/58, 0x1e8}}], 0x4000086, 0x0, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x20002, 0x0) writev(r0, &(0x7f00000023c0), 0x1000000000000252) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x4800) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f0000000180)={r2, &(0x7f00000000c0)=""/171}) perf_event_open(&(0x7f00004e7000)={0x2, 0x229, 0x20000000cd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x400, 0x0) [ 1170.361207] FAULT_INJECTION: forcing a failure. [ 1170.361207] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1170.388742] CPU: 0 PID: 4758 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1170.395802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1170.405265] Call Trace: [ 1170.407867] dump_stack+0x138/0x19c [ 1170.411515] should_fail.cold+0x10f/0x159 [ 1170.415852] ? __might_sleep+0x93/0xb0 [ 1170.419757] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1170.424787] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1170.429930] ? mmu_topup_memory_caches+0x86/0x320 [ 1170.434901] ? rcu_read_lock_sched_held+0x110/0x130 [ 1170.439934] alloc_pages_current+0xec/0x1e0 [ 1170.444282] __get_free_pages+0xf/0x40 [ 1170.448308] mmu_topup_memory_caches+0x194/0x320 [ 1170.453078] kvm_mmu_load+0x21/0xd50 [ 1170.456804] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 09:39:11 executing program 1: r0 = openat$pfkey(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() clone(0x8840000, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x4e22, @local}, {0x2, 0x4e21, @loopback}, {0x2, 0x4e23, @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)='bond_slave_1\x00', 0x4, 0xe2, 0x1f}) syz_genetlink_get_family_id$tipc2(0x0) tkill(r1, 0x40) ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f0000000040)={&(0x7f0000ffb000/0x3000)=nil, 0x9, 0x3, 0xb4, &(0x7f0000ff9000/0x4000)=nil, 0x967d}) wait4(0x0, 0x0, 0x0, 0x0) [ 1170.461568] ? vcpu_enter_guest+0x20f0/0x5270 [ 1170.466168] vcpu_enter_guest+0x2ea0/0x5270 [ 1170.470512] ? emulator_read_emulated+0x50/0x50 [ 1170.475188] ? lock_acquire+0x16f/0x430 [ 1170.479213] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1170.484266] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1170.489122] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1170.494151] kvm_vcpu_ioctl+0x401/0xd10 [ 1170.498929] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1170.503271] ? trace_hardirqs_on+0x10/0x10 [ 1170.507526] ? __f_unlock_pos+0x19/0x20 [ 1170.511619] ? save_trace+0x290/0x290 [ 1170.515429] ? __f_unlock_pos+0x19/0x20 [ 1170.519620] ? __fget+0x210/0x370 [ 1170.523141] ? find_held_lock+0x35/0x130 [ 1170.527298] ? __fget+0x210/0x370 [ 1170.530850] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1170.535010] do_vfs_ioctl+0x7b9/0x1070 [ 1170.538917] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1170.543944] ? lock_downgrade+0x6e0/0x6e0 [ 1170.548129] ? ioctl_preallocate+0x1c0/0x1c0 [ 1170.552548] ? __fget+0x237/0x370 [ 1170.556020] ? security_file_ioctl+0x8f/0xc0 [ 1170.560440] SyS_ioctl+0x8f/0xc0 [ 1170.563870] ? do_vfs_ioctl+0x1070/0x1070 [ 1170.568053] do_syscall_64+0x1eb/0x630 [ 1170.572042] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1170.577010] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1170.582213] RIP: 0033:0x458c29 [ 1170.585410] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1170.593213] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1170.600507] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1170.608059] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1170.615425] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1170.622708] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1170.630370] protocol 88fb is buggy, dev hsr_slave_0 [ 1170.635502] protocol 88fb is buggy, dev hsr_slave_1 [ 1170.710148] protocol 88fb is buggy, dev hsr_slave_0 [ 1170.715470] protocol 88fb is buggy, dev hsr_slave_1 09:39:11 executing program 2: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000140)='/dev/urandom\x00', 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_ENUM_FREQ_BANDS(r1, 0xc0405665, &(0x7f0000000000)={0x0, 0x2}) openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) read(r0, &(0x7f0000000240)=""/54, 0x112) 09:39:11 executing program 5 (fault-call:5 fault-nth:53): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:11 executing program 0: r0 = syz_open_dev$video(&(0x7f00000000c0)='/dev/video#\x00', 0x8447, 0x3) ioctl$VIDIOC_SUBDEV_S_EDID(r0, 0xc0285629, &(0x7f0000000000)={0x3, 0x0, 0x8000000001, [], &(0x7f0000000080)}) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x80000, 0x0) r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000140)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x810}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x4, 0x70bd2c, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040000}, 0x20000044) 09:39:11 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0xfbbe) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='limits\x00') ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f00000000c0)={0x0, 0x9}) setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000180)={{0x2, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e22, 0x1, 'sed\x00', 0x10, 0x7, 0x34}, {@broadcast, 0x4e21, 0x10000, 0xfffffffffffffffe, 0x20, 0x3f}}, 0x44) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) move_pages(0x0, 0x1, &(0x7f0000000140)=[&(0x7f0000004000/0x2000)=nil], &(0x7f0000000180), &(0x7f00000001c0), 0x0) 09:39:11 executing program 4: r0 = syz_open_dev$sndseq(&(0x7f0000000600)='/dev/snd/seq\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$IMDELTIMER(r1, 0x80044941, &(0x7f0000000000)=0x2) dup2(r0, r1) 09:39:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x100, 0x0) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000180)) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = accept$nfc_llcp(r3, &(0x7f0000000080), &(0x7f0000000100)=0x60) fcntl$notify(r4, 0x402, 0x11) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f00000001c0)=0x1, 0x4) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000040)={0x2, 0x0, [{0x0, 0x4, 0x0, 0x0, @sint}]}) getsockopt$EBT_SO_GET_INIT_ENTRIES(r1, 0x0, 0x83, &(0x7f0000000240)={'filter\x00', 0x0, 0x3, 0xca, [], 0x2, &(0x7f0000000200)=[{}, {}], &(0x7f0000000340)=""/202}, &(0x7f00000002c0)=0x78) [ 1171.026811] FAULT_INJECTION: forcing a failure. [ 1171.026811] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1171.059475] CPU: 0 PID: 4812 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1171.066623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1171.075982] Call Trace: [ 1171.078582] dump_stack+0x138/0x19c [ 1171.082337] should_fail.cold+0x10f/0x159 [ 1171.086497] ? __might_sleep+0x93/0xb0 [ 1171.090518] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1171.095212] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1171.100236] ? mmu_topup_memory_caches+0x86/0x320 [ 1171.105086] ? rcu_read_lock_sched_held+0x110/0x130 [ 1171.110804] alloc_pages_current+0xec/0x1e0 [ 1171.115132] __get_free_pages+0xf/0x40 [ 1171.119042] mmu_topup_memory_caches+0x194/0x320 [ 1171.123890] kvm_mmu_load+0x21/0xd50 [ 1171.127785] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1171.132568] vcpu_enter_guest+0x2ea0/0x5270 [ 1171.136891] ? save_trace+0x290/0x290 [ 1171.140696] ? lock_downgrade+0x6e0/0x6e0 [ 1171.144847] ? find_held_lock+0x100/0x130 [ 1171.149127] ? emulator_read_emulated+0x50/0x50 [ 1171.153950] ? lock_acquire+0x16f/0x430 [ 1171.158032] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1171.163263] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1171.168376] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1171.173512] kvm_vcpu_ioctl+0x401/0xd10 [ 1171.177661] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1171.181807] ? trace_hardirqs_on+0x10/0x10 [ 1171.186048] ? __f_unlock_pos+0x19/0x20 [ 1171.190294] ? save_trace+0x290/0x290 [ 1171.194093] ? __f_unlock_pos+0x19/0x20 [ 1171.198086] ? __fget+0x210/0x370 [ 1171.201624] ? find_held_lock+0x35/0x130 [ 1171.205680] ? __fget+0x210/0x370 [ 1171.209140] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1171.213297] do_vfs_ioctl+0x7b9/0x1070 [ 1171.217281] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1171.222139] ? lock_downgrade+0x6e0/0x6e0 09:39:11 executing program 3: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x4000, 0x0) accept$inet6(r1, 0x0, &(0x7f00000000c0)) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000000)=""/2, &(0x7f0000000040)=0x2) 09:39:11 executing program 0: r0 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084) listen(r0, 0xffbd) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x100, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000080)) unshare(0x6000400) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x0, 0x1}}, 0x20) pselect6(0x40, &(0x7f0000000000)={0x8}, 0x0, 0x0, &(0x7f0000000340)={0x0, 0x1c9c380}, 0x0) 09:39:11 executing program 4: getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, &(0x7f0000000880), &(0x7f00000008c0)=0xc) connect$inet(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @local}, 0x10) r0 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$PPPIOCSNPMODE(0xffffffffffffffff, 0x4008744b, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_type(r0, &(0x7f0000000140)='cgroup.type\x00', 0x2, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000080)=0x100000000) ppoll(&(0x7f0000000000)=[{r1, 0x4}], 0x1, 0x0, 0x0, 0x7c) prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0}, 0x4) syz_open_dev$binder(&(0x7f0000000280)='/dev/binder#\x00', 0x0, 0x0) syz_mount_image$f2fs(&(0x7f0000000240)='f2fs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="1020f5f20100070009000000030000000c0000000900000001000000020000000000000000300000000000000e00000016000000020000000200000002000000020000000e000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}], 0x0, 0x0) ioctl$CAPI_NCCI_OPENCOUNT(r0, 0x80044326, &(0x7f0000000180)=0xd5) socket$inet_tcp(0x2, 0x1, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x3, 0x0) 09:39:11 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000080)) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x1, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x2}) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @rand_addr=0xffffffff}, 0x217) syz_emit_ethernet(0x3de, &(0x7f0000000cc0)={@link_local, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x200000000000011, 0x0, @rand_addr=0xac14140d, @multicast1}, @dccp={{0x0, 0x1, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d70502", 0x0, "f53475"}}}}}}, 0x0) 09:39:11 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) uname(&(0x7f0000001a00)=""/212) fstat(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000001640)='./file0\x00', &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001700)={{{@in=@broadcast, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@ipv4={[], [], @empty}}}, &(0x7f0000001800)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001840)={0x0, 0x0, 0x0}, &(0x7f0000001880)=0xc) stat(&(0x7f00000018c0)='./file0\x00', &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000001980)={{}, {0x1, 0x4}, [{0x2, 0x7, r1}, {0x2, 0x0, r2}, {0x2, 0x4, r3}], {0x4, 0x7}, [{0x8, 0x7, r4}, {0x8, 0x3, r5}], {0x10, 0x4}, {0x20, 0x4}}, 0x4c, 0x3) r6 = socket$inet6(0xa, 0x2, 0x0) r7 = syz_open_dev$mouse(&(0x7f0000001500)='/dev/input/mouse#\x00', 0x8001, 0x20000) ioctl$EVIOCGBITSW(r7, 0x80404525, &(0x7f0000001540)=""/38) connect$inet6(r6, &(0x7f0000001580)={0xa, 0x0, 0x0, @rand_addr="d2e204cd09556e2af16af0cadcd2b788", 0x8}, 0xec) connect$inet6(r6, &(0x7f0000000800)={0xa, 0x4e20, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x22}}, 0x2}, 0x1c) sendmmsg(r6, &(0x7f0000001440)=[{{&(0x7f0000000040)=@isdn={0x22, 0x7, 0x6, 0x8000, 0x10000}, 0x80, &(0x7f0000000240)=[{&(0x7f00000000c0)="f21b46f219d6d2dede1bb9537dca937003e7532a56f684f83eeb2f299347fecee38a7b03d7e67727598a73101e997767a5c5ec2a40ea34dbfe969e2c20b56fde4f77ab9acf727abdbd501dcefffc6d3295f7ce59d63d", 0x56}, {&(0x7f0000000140)="51ebffa02d84c6f88772b4e19c6a9a4335d7e11cf3060ce8f2e7683fe8fe8c48942dcca82326d9ce60ec7573edba54785e68159f4ec534bc335380120f9c3a00272a0f2925ae9293de00863071d24647d989876ae38a1bef9eb1cd115eb901b45628e99bfb64605fa7fc665623bf9c4c02537d51554af84895647487328a8b9f6f681f8eb5b7973ff7aa7cd434a2a0e9d8632a9bad10525ff4914747771b978acb7e02f6d0da2e63cef0438f82727ff46da5db3d684c05d24170cc9da1f2ac0fc8ad25c466b5a007d7", 0xc9}], 0x2, &(0x7f0000000280)=[{0x28, 0x13e, 0x10000, "4dd47594f630aa887e6b106a15a8786aa0"}, {0x38, 0x6, 0x4, "cd13fbf4c54edf71e9be61c7f53e12817183cbd531275bb6aabee2c0d1a306b09a5c"}, {0x50, 0x195, 0x5, "96a04b59e2509de9c7940f13d8518d1666180455f0e55a08d900837a16fdfffc03edf61b61aba041efa63cd162bd29420fc61b14cd212a7c392a3972"}, {0x20, 0x29, 0x9c9e, "1e2ebd04e366a0759fdadc4ee47e3f95"}, {0x28, 0x118, 0x2, "f881dd5e73a69184525ccb13e0f0a3f1d82c984c44103267"}, {0x78, 0x0, 0x100000000, "f9cbb46171fda139d32101b033d56c93d5504e8a20ce25e29a6ef6806ef7dfed0b2584c3777d24c9e8b579b6c9e452c8f694204ca8b57b2a497d1e95bc4321ca900b0a712901c14c0f427281d1395b34467adb5a28a5f96eef273d130514cb972c"}], 0x170}, 0xe196}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000400)="b51f9aa1dae87508cf72ea3a156012a5b4c40b427710e1006256e15b8d769acc8479e85d333c338dc16b65ddc39f25625f18c52a1d517a126b3192fabc50f19edd310b40913b719041ef3b9639cff56a8bc5bf6f021b8eb805bbdda94da2a96c0dd40c0aa5dcc751e4deb1c78dea12c896a35ddda7ab088ead0c36b824542a071d185e9bd0a0ae770b5da6bff12a2249ffde941e99b9d11d6ed84e4b52062e897462ad22dc4b0df9059932c9fd168af82b2f2253a107712470dae2045bf5f5296979ab94ece30632db6128ad", 0xcc}, {&(0x7f0000000500)="19f468e06c847644628c7da971afdd03bb3c611bd788741fd19b7a721063c460bcceb33be88136650e4573c268aedfa3b6be433b873ac8d6454729b6eec6e63c9bb49798069e5736a0358d0b4ae24fb923f2893aa038a8ba697fce664c7135ee056d18fafbaaf3f8cdc2e33979d9b8657341d101848be547b825eca315c6928118fa94dbca23520c1497f18998d1f70d921c43c9bf3269067df59b5c2902", 0x9e}], 0x2, &(0x7f0000000840)=[{0x30, 0x12f, 0x9, "7dcf6dd070a3e057bea9088bb0fa2dd38600cb480cbe9a6c335ed7ba"}, {0x70, 0x115, 0x220000, "b78012253e88b5d615764deadbbe410a0911dd6b39a768d8f2d8ddaa6eb8bbe1f0499ef5abb61c5376d388dd203c193e3fd145bc51cb9ffd5f3666397812d3bd5a01c1391ee28eda9765b508157d49861558a5bc7b22443830f4911e02c5"}, {0xd8, 0x10e, 0xbf, "e3c7fffeb7eda02efda36db7aa38049248b8e4af54d361eab2aca006267083b4fe94abc93a690779c140e81eaa91224be7f354234fec66bde9214c7fee84fca0005da4966a77d1683c5568c3e85e37389536b6b2995adc87822c9ff8e39dc257278541d0146a69d4d7f6e99f9dfc77c03e329c58500cf0c0ce28ba5641df2f85969ac132d2d114391dabb67dc524ddfc544d50d6ddc3a0c7f6b05d92c929d71385a70be91f17bd3bf0ce8b2b5f43234a5af4819b085cedf08f32c7917ba0897c3b87"}, {0xa8, 0x112, 0xb1e5, "ebe778f0ddc7b64a2fec7c43f5c2465e14fa5712cba4dac9d9108571e9bd640bc8632af2c8567f1af2d7867939ce315c23b472a3cd7974cb228bb8c638cccf280b6d78b4e205eac90156aac8a055c42d6d72b43c5bf3b760de93235c7d0ae2ace5cfd61c1fe80c0581ebd2a4ac7f6660d686d0748a895d32da8052d02c23a44240dc87986c6cafbffa1f2a1b4fff8313ced19b"}, {0x10, 0x1, 0x7fffffff}, {0x100, 0x0, 0xfffffffffffffffb, "373a23681f8da2698fbb3adc8f511eced4f9470172bbb52100871a26a77a8bf700dd327148ffde1f72d71e70a2e2f25b92518e82559f5c451bdc45da74ef9d0d589719d1ba1da79af8b37611ffca5dc438e6454f4461e870f9201bdfd40cccfb4e500281550a12a3a0aa81e4233b9f716553ae5002410f0c971dc8e8718324ecee17993b47ff34b2f5a3216bfdd2685c862c7eee512ba70e06926c2d85bdc313c0cd41d51aaea057052ba991f322d62f8652214ac5ff8b2a66e68488f9b6f4789afd76b236156f97b4fb4c1fa33541b1c2fc0d16dcdd73f87ed84cd9c4e6d106e645c32976eab46625"}, {0xb0, 0x1, 0x8, "8ce1c68703165b86b64a29e04a23421633d3355e35bb8ee03d90f85492f7ab78234212b0b0ed51820f5d2c7cb7dbb7f646c7eff6b855225e2bb0901f4bf3335646f65aa73616b4a88dd00afdbf7addbef18766f261b36ca11e15efdf5971e44f80b86eb79568d92a50cf620bba1e9260a09c9023906d0794e14eb1a5200618fa077f467ae80ef7edfb57c2e7db666716b140192b1922923f29b107884060"}, {0x38, 0x6, 0x80000001, "bc7459c058ecb9f31069f1b5234a8ea8d0f2f55b1ae96e9d4c1c75428c3e7e1b8759a96d"}, {0x33f, 0x109, 0x0, "24bef8502cd47fce891f6e606f9b2138fadfed1576234f3388487646e50d3997acf07c195339b2f4919f0bfbf54513bfd39ebdbe8b3a230d3366662c378ab5718810c3113ee04129b76672b0dd170b1a8b65fd5d78055914e27d1ccfc17910877422f79ae78aae925c09c672ea9439f932a9f7981d3fde46125d7295f5ddba05e8507d9bb9438d290ca9cddf396d82ae45336008a16dc990ab08b79f46102124"}, {0x78, 0x109, 0x3, "1357454591f421ba89c83d9c21e44b6c4f7e249a5ae6155e9e3ab5426eb8f69806e0757035ffd7199ea1a49598f7f68e5ee242261b3383fb2386d21ef83f310837715262af43656e7ddcbff0aa6bebeff3562f18e237c0633fc2f81bd259ca529858"}], 0x540}, 0xfff}, {{&(0x7f0000000600)=@x25={0x9, @remote={[], 0x2}}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000680)="4d17db1b4aeae7de80d6600737c7728d1c4029181e01d6164d73c1d27426aa969d18ea7d30b0e0626aa96054b02c2cc2b51b570d98bdc83259db262d18a9c64daec016d784a092b9b61c11f094f8ad35718f60c0fbbc81b89095d71f323c5d9efa5e010e3047f2291d9ae59f3f381df9f4158c9e9ba67c0367d03f3f7d033e6e29108e82c3585c33647408ce4aca50f7fe72a73371335bd85c91855ea2510a109b67ef20", 0xa4}, {&(0x7f0000000740)="1430d0782a41c6f7b53b4f0373e6689bf92f202da97dfef84229dcd61ded087dfa1579e878affd1577aaff4583525e2e41f0b158dfce995b02bf694425b41f23fdc609a4726b366e3f3d10d0321826279e5f82e80a0b6cc3723eaa35e79faef213b19e2c89e7f6428223590100d8be44a7376c8f5317a0b928b066ced2e811f6323136e15f1f919bec23dc970604895a4d6786acf66cbd388a63dada4f5dc4914700e3fb958d8845e7", 0xa9}, {&(0x7f0000000d80)="03ecfac3e1ed3f6487367906e7cc1d80dcd94ef633ac2234e31a2882705ecefdbfccbc82163750014ccb76c3d26a7d264fb0d987bd2d1e36b2f05a1a4a89b4758be03c5eb64747f1259e0c43607e73959ecd58bd096ab89a4bd08ce64309cd11e6b8ef8b885b432deac037a4b1bb239f800e9fac29233ccafa89b66c7af06e1036268f76468bc1829f18f50e369bcd134c6272df08d0088bbbf325dea193b4", 0x3d5}], 0x3, &(0x7f0000000e80)=[{0x20, 0x1, 0x75, "9a23262ed053db6a0c"}, {0xd0, 0x13f, 0xa63e, "e8c938689d56dcfd245f91629f769e988b89f21cd7f4cc3c4fc5d1e7dc9c21d15376c0b3ce5a9dfa45c7827520c050ff8fc5d9508021c780b9301652b6e605564bed2c92ff60c5eaeed4d944b84d469c4ea9072327f6369fddb06543a66ef5a909c5bf1f88494c2d6fad1eedc098a5b278f73979eec18bbe0d780be098544b4f5cb7a7c90aa08cfa2c72f614d25837861d4b41b5f0de33905b4e114e9f42d8cd872d2be0a20bdb422eab19a82240e26c23de3098c748c23b278b"}, {0xa0, 0x116, 0x10000, "7ff1d48f82c2dbbb9490cc6a68ec0da942008480be4b3c9956662d0cfd36790983d55e4a58918d9097d596d7b9a096589d970c976c4d0b8a39c0f680082d0b107e5c7057033b6801942144b8fd40e268e3d92f5b53a08113f8566c31e78cb2851b1a805c73c397f1810e8d07c2b5fec49f8cb6206d66e1f809ca5b6b523718fbb509662eab44c7f1e270ec"}, {0xc0, 0x99af564fd1fbbd03, 0x1, "47a15e3c08d1b789f6c81fb0d4e3967988ce143ba4b1e2fc1f4f51b7cafb86736c8f116fb0829c53c811e8839ec00cc394e9d9d8a19f2d73aaa379f5f054e35437e06e0024330ed370ba0dde5182be70d425f2f6099d89ae9fcaa7feb1c151f8248dade2e6b19a16ed977214ae48d03131156da21812af4b010ad110ed390a22adb92fd9adc96b803ee1cedd3ec8b5f434a137baf2413f461a6a8d4ed5e1edd0bd8296cd7c6a5bbaf81ea6ab43957048"}, {0xffffff00, 0x11c, 0x26eccf0b, "333939c734dbb07c303ca23a5b718a9fb3499210892067111ac9feb933e2424593d07763cb5021eacd5d09fcd773f9718adb474e86df567e048fa78133ef70869d58b686f60da6c9fd85fd3a941b874fe02de82f24a8ac563318e581bcc0329b59228afb58803c991a951839401b46c46b1ed6490103be1a49ca1999f177f3c9eb35c7"}, {0x48, 0x119, 0xfffffffffffffffb, "0c319ad32e1807475a040a1098be4494292d667e2eb8b52926d3fbcc3a551c9e81e99ed705a51c60a05ca1aca4eb208fe1257d80"}, {0x10, 0x3a, 0x8}, {0x90, 0x101, 0x5, "1a63b949b4cf3c1def8c67f7cd022964e6d3e44b225d9838687e032db32aa575fd1532a37d3345314f5790d3c59c3211d3830e9d6cf44405c2a8055bba509da226d4de1eb000b0faed76f5c8f0cdc047c88992a33c7065229047c37a18dc6b8917fa24eeb9f765c9570861acba680ae3755a965db2ee5b92e2e935"}, {0x108, 0x100, 0x100, "58d89ebba814ddbb121574e1aac4c6d7908ba819ad41402861e440f91c1fc94f3a027f1b38241120d7700e61fdb8c88178755d61e25a64b638c33754209eefd63dc4c9dfe554d3f91036e9bfd051cc29c16da1da0db1fc7ab9d369982546224c830450a312ee78af46b628b8b3686d8a2f43ac2d53750f565813c37755c7f351f12797ea564343c933fbae29362a04c1ae8e9faefd3b1dc0f833026f828315ca5b4afab97628ba610c8c26982b203bef48f47a2088c1e9323e4b2383ce0fa83d05313ecdcbb214e9294b6b91541dff7fdeeec2a36b296a2788b38808d0ad0dcabe3a037d1881fcaea9e7f373b41c0c5fa3a85fc850b6e104"}, {0xc8, 0x1af, 0x1, "cb031d8bd119db22bc9b9333104548c8264e229e9449bbdf90d54abf8b5bf3d511a0c4b0901b07ed265937d9f214aaafed6726f7edb77bbd5728f9a84dd168f7bd6cbeb945fae99b74d37759e467343400e13f5a926b2784e50e432a610da80b1e05b52cead4bf61b765bd446cead659968690b82b77ceb137a4c83423211d61451e5d4761058d5b859ec05ca41bf11772e13a42082d403a9d80f223c8db63b94c78ae5d29427d504f1f78e97ba315ffc00628ecc6f4cd"}], 0x5a0}, 0x7}], 0x3, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) [ 1171.226314] ? ioctl_preallocate+0x1c0/0x1c0 [ 1171.230738] ? __fget+0x237/0x370 [ 1171.234205] ? security_file_ioctl+0x8f/0xc0 [ 1171.238623] SyS_ioctl+0x8f/0xc0 [ 1171.242623] ? do_vfs_ioctl+0x1070/0x1070 [ 1171.246774] do_syscall_64+0x1eb/0x630 [ 1171.250664] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1171.255607] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1171.260887] RIP: 0033:0x458c29 [ 1171.264092] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1171.272692] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1171.280093] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1171.287526] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1171.294805] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1171.302259] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:11 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) r1 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000000)={0x5, 0x7, 0x3, 0x1ff, 0x7ff}) mmap$perf(&(0x7f00009f6000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2000000000002) 09:39:11 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0xa3016efd9e8627cd, 0x0) ioctl$TCGETX(r1, 0x5432, &(0x7f0000000080)) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000380)={0x26, 'aead\x00', 0x0, 0x0, 'ccm(xtea-generic)\x00'}, 0x58) r3 = accept$alg(r2, 0x0, 0x0) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="09f2fe6c57e08988996929eaf1dc8e36754a319b32194d709ef936cb9158064603c9ce75d25549b92c864b93168f4e096220", 0x32) write$UHID_DESTROY(r1, &(0x7f00000000c0), 0x4) recvmmsg(r0, &(0x7f0000002100)=[{{&(0x7f0000000100)=@ipx, 0x80, &(0x7f0000000340)=[{&(0x7f0000000180)=""/33, 0x21}, {&(0x7f0000000200)=""/48, 0x30}, {&(0x7f0000000240)=""/221, 0xdd}], 0x3, &(0x7f0000000400)=""/86, 0x56}}, {{&(0x7f0000000480)=@x25, 0x80, &(0x7f0000000700)=[{&(0x7f0000000500)=""/121, 0x79}, {&(0x7f0000000580)=""/120, 0x78}, {&(0x7f0000000600)=""/55, 0x37}, {&(0x7f0000000640)=""/178, 0xb2}], 0x4, &(0x7f0000000740)=""/115, 0x73}, 0x4}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000007c0)=""/84, 0x54}], 0x1, &(0x7f0000000880)=""/228, 0xe4}, 0x60be}, {{&(0x7f0000000980)=@xdp, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000a00)=""/104, 0x68}, {&(0x7f0000000a80)=""/78, 0x4e}, {&(0x7f0000000b00)=""/231, 0xe7}, {&(0x7f0000000c00)=""/168, 0xa8}], 0x4, &(0x7f0000000d00)=""/73, 0x49}, 0x4}, {{&(0x7f0000000d80)=@generic, 0x80, &(0x7f0000001340)=[{&(0x7f0000000e00)=""/232, 0xe8}, {&(0x7f0000000f00)=""/22, 0x16}, {&(0x7f0000000f40)=""/172, 0xac}, {&(0x7f0000001000)=""/132, 0x84}, {&(0x7f00000010c0)=""/200, 0xc8}, {&(0x7f00000011c0)=""/165, 0xa5}, {&(0x7f0000001280)=""/158, 0x9e}], 0x7, &(0x7f00000013c0)=""/100, 0x64}, 0x3}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001440)=""/208, 0xd0}, {&(0x7f0000001540)=""/134, 0x86}, {&(0x7f0000001600)=""/105, 0x69}, {&(0x7f0000001680)=""/137, 0x89}, {&(0x7f0000001740)=""/77, 0x4d}], 0x5, &(0x7f0000001840)=""/11, 0xb}, 0x80000000}, {{&(0x7f0000001880)=@in6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f0000001b80)=[{&(0x7f0000001900)=""/178, 0xb2}, {&(0x7f00000019c0)=""/254, 0xfe}, {&(0x7f0000001ac0)=""/176, 0xb0}], 0x3, &(0x7f0000001bc0)=""/13, 0xd}}, {{&(0x7f0000001c00)=@ipx, 0x80, &(0x7f0000001f00)=[{&(0x7f0000001c80)=""/161, 0xa1}, {&(0x7f0000001d40)=""/97, 0x61}, {&(0x7f0000001dc0)=""/172, 0xac}, {&(0x7f0000001e80)=""/78, 0x4e}], 0x4, &(0x7f0000001f40)=""/4, 0x4}, 0x5}, {{&(0x7f0000001f80), 0x80, &(0x7f0000002080)=[{&(0x7f0000002000)=""/79, 0x4f}], 0x1, &(0x7f00000020c0)=""/10, 0xa}, 0x8001}], 0x9, 0x2000, 0x0) r4 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r4, 0x0, 0x400000, 0x73e0) sendfile(r3, r4, 0x0, 0xffa) 09:39:12 executing program 5 (fault-call:5 fault-nth:54): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:12 executing program 0: perf_event_open$cgroup(&(0x7f0000000140)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 09:39:12 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)) r1 = openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x40000, 0x0) ioctl$IMCLEAR_L2(r1, 0x80044946, &(0x7f0000000100)=0x2) gettid() r2 = fcntl$getown(0xffffffffffffffff, 0x9) r3 = syz_open_procfs(r2, 0x0) r4 = socket(0x40000000015, 0x805, 0x0) setsockopt$nfc_llcp_NFC_LLCP_RW(r3, 0x118, 0x0, &(0x7f00000000c0)=0x6, 0x4) bind$inet(r4, &(0x7f00000a9000)={0x2, 0x0, @rand_addr=0x200}, 0x10) getsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000040), &(0x7f0000000080)=0x4) sendto$inet(r4, 0x0, 0x0, 0x0, &(0x7f0000b2d000)={0x2, 0x0, @loopback}, 0x10) 09:39:12 executing program 4: r0 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000840)={0x0, 0xa, 0x1, {0xb, @pix={0x0, 0x1f}}}) ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000600)={0x0, 0xb, 0x4, 0x0, {}, {}, 0x0, 0x0, @userptr, 0x4}) mknodat(r0, &(0x7f0000000000)='./file0\x00', 0x20, 0x10000) 09:39:12 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x9, 0x3c, 0x209e1d, 0x2, 0x2}, 0x28) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x80680, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f00000001c0)=ANY=[@ANYBLOB="66696c7465720000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000", @ANYPTR=&(0x7f0000000140)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000817a00000033e3000000000000000000000000000800"/96], @ANYBLOB='\x00'/24], 0x88) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000}, 0x2c) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) faccessat(r1, &(0x7f00000000c0)='./file0\x00', 0x88, 0xd00) getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x64e7, 0xeb, 0x7, 0x6, 0x6}, &(0x7f0000000280)=0x14) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f00000002c0)={r2, 0x0, 0x0, 0x4, 0xc3a}, &(0x7f0000000300)=0x18) 09:39:12 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$unix(0x1, 0x5, 0x0) close(r1) close(r1) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) poll(&(0x7f0000000040)=[{r0, 0x1}], 0x1, 0x1ff) write$binfmt_aout(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'], 0x1) vmsplice(r0, &(0x7f00000006c0)=[{&(0x7f0000000140)="dc", 0x1}], 0x1, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000002, 0x84010, r2, 0x0) [ 1171.741415] RDS: rds_bind could not find a transport for 0.0.2.0, load rds_tcp or rds_rdma? 09:39:12 executing program 4: r0 = bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820005, 0x0}, 0x2c) r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x5, 0x40000) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000100)={{{@in=@multicast2, @in=@empty}}, {{@in6=@ipv4={[], [], @remote}}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xe8) bpf$MAP_CREATE(0x4, &(0x7f0000000040)={0x3, 0x0, 0x740000, 0x0, 0x20820000, r0}, 0x2c) 09:39:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") r1 = socket$packet(0x11, 0x3, 0x300) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x2000011, r1, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'\x02\x00[f]\x01\x00', &(0x7f00000001c0)=@ethtool_rx_ntuple={0x35, {0x4, @hdata="de5515c8e5441519bb607030109c88ca07e756e0909d6372c48d77353f23f105aa02b0d5fac600aa2accafe8ce906f134dca008db273531273aa659df74e49a391faef3b75fc7c2b", @usr_ip4_spec={@dev={0xac, 0x14, 0x14, 0xd}, @dev={0xac, 0x14, 0x14, 0x2b}, 0x100000001, 0x8, 0x1, 0x20}, 0x7, 0x79c, 0x5, 0x2, 0xffffffffffffffff}}}) [ 1171.786781] FAULT_INJECTION: forcing a failure. [ 1171.786781] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:12 executing program 0: openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x200000, 0x0) r0 = socket$netlink(0x10, 0x3, 0xd) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="3100000013000000800700007a000010ab050048150000004600be0700000054080003bd810a2da3100000000000000000", 0x31}], 0x11fd) [ 1171.830449] RDS: rds_bind could not find a transport for 0.0.2.0, load rds_tcp or rds_rdma? [ 1171.868868] CPU: 1 PID: 4860 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1171.876028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1171.885648] Call Trace: [ 1171.888352] dump_stack+0x138/0x19c [ 1171.892091] should_fail.cold+0x10f/0x159 [ 1171.896255] ? __might_sleep+0x93/0xb0 [ 1171.900325] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1171.905357] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1171.910381] ? mmu_topup_memory_caches+0x86/0x320 [ 1171.915249] ? rcu_read_lock_sched_held+0x110/0x130 [ 1171.920395] alloc_pages_current+0xec/0x1e0 [ 1171.924740] __get_free_pages+0xf/0x40 09:39:12 executing program 4: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000500)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000200)='/dev/bus/usb/00#/00#\x00', 0xffffffffffff4924, 0x2) getsockname$inet(r1, &(0x7f0000000280)={0x2, 0x0, @dev}, &(0x7f00000002c0)=0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000480)='/dev/net/tun\x00', 0x0, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x1, 0x0, 0x0, &(0x7f00000019c0)=""/246, 0x0}) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000004c0)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000700)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000840)={0x138, r3, 0x0, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x44, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffffffffff9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x100000001}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xeb89}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffffffff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x395}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}]}, @TIPC_NLA_SOCK={0x14, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xffffffff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NODE={0x30, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffffffffffffff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA={0x54, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_SOCK={0x20, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x80000000}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x75a566d0}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x801}, 0x81) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000780)=ANY=[@ANYRES64=r0, @ANYRESDEC=r0, @ANYRES16=r2, @ANYPTR64=&(0x7f00000005c0)=ANY=[@ANYRES32=r0, @ANYRES64=r2, @ANYPTR=&(0x7f00000007c0)=ANY=[@ANYPTR64, @ANYRES16=r0, @ANYPTR64, @ANYRESHEX=r2, @ANYRES16=r2, @ANYRESDEC=r0, @ANYRESHEX=r0, @ANYRESOCT=r2, @ANYRES64=0x0], @ANYRES32=0x0, @ANYRES16, @ANYRES32=r2, @ANYBLOB="ffdcbdc3178f62f9cbe5189316e7c4739a43bff07d7b2405eacbf79e6a75b0d3ec3072c2c83fcd9357ff4b0f5bdba5000000000000004ad8abbbce2c55c40f66ef9fbeaca9809d192cb46826b2ceb397e6122ed1697ef4a6048b059f4b0006ae86a53dd033431272e8f911cd1d7ede2fc5307d01582ab7edb43454d4c8e9b9a464e08383e8768659a172464bff9983aee07261c7d913a31f8bc46fc28a8dd84447565e1e6d7d2039ebc53d60fbd62161cddd393ec137ee72c126d1e97f05c5a7cdc08229133d5cbb79be19aef10ffb126a60debafa6c9bf4562d6e492e478d", @ANYRES16]]) getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000540)={'raw\x00'}, &(0x7f0000000040)=0x54) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x200000, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000740)='/selinux/validatetrans\x00', 0x1, 0x0) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80004080}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r5, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x14, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000001}, 0x1) getsockopt$inet_dccp_buf(r4, 0x21, 0x8e, &(0x7f0000000300)=""/234, &(0x7f0000000400)=0xea) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x1, r2}) [ 1171.928642] mmu_topup_memory_caches+0x194/0x320 [ 1171.933759] kvm_mmu_load+0x21/0xd50 [ 1171.937656] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1171.942525] vcpu_enter_guest+0x2ea0/0x5270 [ 1171.946858] ? save_trace+0x290/0x290 [ 1171.951107] ? lock_downgrade+0x6e0/0x6e0 [ 1171.955280] ? find_held_lock+0x100/0x130 [ 1171.959532] ? emulator_read_emulated+0x50/0x50 [ 1171.964219] ? lock_acquire+0x16f/0x430 [ 1171.968297] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1171.973495] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1171.978352] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1171.983720] kvm_vcpu_ioctl+0x401/0xd10 [ 1171.987715] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1171.991884] ? trace_hardirqs_on+0x10/0x10 [ 1171.996143] ? __f_unlock_pos+0x19/0x20 [ 1172.000142] ? save_trace+0x290/0x290 [ 1172.004134] ? __f_unlock_pos+0x19/0x20 [ 1172.008133] ? __fget+0x210/0x370 [ 1172.011778] ? find_held_lock+0x35/0x130 [ 1172.015944] ? __fget+0x210/0x370 [ 1172.019500] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1172.023644] do_vfs_ioctl+0x7b9/0x1070 [ 1172.027634] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1172.032732] ? lock_downgrade+0x6e0/0x6e0 [ 1172.036909] ? ioctl_preallocate+0x1c0/0x1c0 [ 1172.041319] ? __fget+0x237/0x370 [ 1172.044779] ? security_file_ioctl+0x8f/0xc0 [ 1172.049277] SyS_ioctl+0x8f/0xc0 [ 1172.052728] ? do_vfs_ioctl+0x1070/0x1070 [ 1172.056879] do_syscall_64+0x1eb/0x630 [ 1172.060761] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1172.065608] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1172.070801] RIP: 0033:0x458c29 [ 1172.073983] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:39:12 executing program 3: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f0000000080)=ANY=[@ANYBLOB="010000d8e67cb66bc38df64c8b014dbf8189d900ff"]) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000000c0)="4ed15c04c034d8bed5aff236a38821238f2535ab4efb93ebc6620bf2c1ee932ce0ea8fce9aa6eac374fdaa584cbdde3ea42a2a8b985124ff8587ee952537a27978029fbee594be1800100000e3adc837ef9525f890bb2c0bd1c92902bd5dabca905a247ae213a72b9b9db6dcd277ed2e97c11f0c96d61994dad5d839834468aab9690c34ec0c269334fa5e2a976acbb8899b6a30b61c9f428901cf02e9ebd572a31e122d4cbae8ef52bed6f932d5c0c92897107153f6c2f2a417622139456397c90babc13e22bc574fb9580b6f2600"/216) perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000012, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semctl$GETNCNT(0x0, 0x0, 0xe, 0x0) 09:39:12 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bc070") r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) ioctl$sock_bt_cmtp_CMTPCONNDEL(r1, 0x400443c8, 0x0) getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000000)=0x7fff, &(0x7f0000000040)=0x2) [ 1172.081691] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1172.089154] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1172.096418] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1172.103778] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1172.111058] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:12 executing program 5 (fault-call:5 fault-nth:55): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:12 executing program 0: r0 = socket$inet(0x2, 0x3, 0x3) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r1, &(0x7f0000005000)={&(0x7f0000000040)={0x10, 0xf0ffffff00000f00}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x48, 0x14, 0x207, 0x0, 0x0, {0x2, 0xf0ffff, 0x600}, [@nested={0x0, 0x0, [@typed={0x300, 0x0, @fd}]}]}, 0x24c}}, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0xb, &(0x7f0000000080), &(0x7f0000000100)=0x4) 09:39:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000600)) mount$bpf(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x10000, &(0x7f0000000180)=ANY=[@ANYBLOB='mode=00000000000000000072100,mode=00000000000000000100001,mode=01777777777740000000001,mode=00000000000000000000004,mode=00000000000000000000004,mode=00000000000000000000011,mode=00000000000000000000006,mode=00000000000000000077777,mode=0000000%000000000001504,mask=MAY_READ,\x00']) r2 = syz_open_pts(r1, 0x0) signalfd4(r0, &(0x7f0000000080)={0x9}, 0x8, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f00000000c0)={0x8, 0x0, 0x0, 0xaec}) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000040)={0xffffffffffffffff}) 09:39:12 executing program 4: syz_genetlink_get_family_id$nbd(&(0x7f0000000040)='nbd\x00') r0 = syz_open_dev$vbi(&(0x7f00000002c0)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2) syz_genetlink_get_family_id$nbd(&(0x7f0000000000)='nbd\x00') ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000240)={0x0, 0x0, 0x4, 0x3401001, {0x0, 0x2710}, {0x0, 0x0, 0x4000000000, 0x3, 0x0, 0x3, "3c185800"}, 0xffffffffffffffff, 0x3, @offset=0x71, 0x4}) 09:39:12 executing program 3: r0 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x2, 0x1e0, [0x20000080, 0x0, 0x0, 0x200000b0, 0x200000e0], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"/480]}, 0x258) 09:39:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = gettid() getpriority(0x1, r1) r2 = accept$inet6(0xffffffffffffff9c, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000180)=0x1c) getsockopt$inet6_tcp_buf(r2, 0x6, 0x3d, &(0x7f0000000200)=""/36, &(0x7f0000000240)=0x24) socket$nl_crypto(0x10, 0x3, 0x15) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x10186f, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffff9c, 0x84, 0x1, &(0x7f0000000040)={0x0, 0x7, 0xffffffffffff8001, 0x2, 0x9, 0x10001}, &(0x7f0000000080)=0x14) getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000000c0)={r4, 0x40, 0x2, 0xfffffffffffffff8, 0x8, 0x804}, &(0x7f0000000100)=0x3) 09:39:12 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x6db6e559) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x20, 0x10001}) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000001c0)) 09:39:12 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0xffff, 0x341080) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f00000001c0)={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x6, @random="e6145743605b"}, 0x2, {0x2, 0x4e21, @multicast1}, 'bcsh0\x00'}) socket$isdn_base(0x22, 0x3, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000400)={r0, 0x10, &(0x7f0000000040)={&(0x7f0000000340)=""/161, 0xa1, 0xffffffffffffffff}}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000480)={r0, 0x10, &(0x7f0000000440)={&(0x7f0000000240)=""/213, 0xd5, r1}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0x7, &(0x7f0000000100)=@framed={{}, [@alu={0x7, 0xfffffffffffffffd, 0xf, 0xf, 0x7, 0xffffffffffffffc0, 0x8}, @call={0x85, 0x0, 0x0, 0x45}, @ldst={0x1, 0x1, 0x2, 0x0, 0x5, 0xfffffffffffffff8, 0xfffffffffffffffd}, @alu={0x4, 0x6, 0x4, 0x0, 0xf, 0x20, 0xffffffffffffffff}]}, &(0x7f0000000140)='GPL\x00', 0x100041, 0xa7, &(0x7f00000004c0)=""/167, 0xfffffffffffffffe, 0x0, [], 0x0, 0x0, r0, 0x8, &(0x7f0000000000), 0x414, 0x10, &(0x7f0000000000), 0x10}, 0x70) 09:39:12 executing program 0: r0 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x2, 0x2) read$FUSE(r0, &(0x7f0000001400), 0x1000) 09:39:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a8c9512d7703f319bd070") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r1) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2}, 0x20) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x3c) fcntl$setstatus(r1, 0x4, 0x4000) 09:39:12 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bc070") r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20}, 0x1c) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000040)=0x75, 0x4) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000240)=0x40, 0x45cf6b8e1b4b8ab1) bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) close(r1) r3 = open(&(0x7f0000000000)='./file0\x00', 0x40000, 0x2) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_NET_GET(r3, &(0x7f00000002c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000280)={&(0x7f0000001300)=ANY=[@ANYBLOB="0300ff00a2ce78b11c252457605c6457b0271ac90377bd4146461cc176c712b74d8382f6c240141c29c1987ff1cdb4a0f1f7edf2bb9d12be062334118eb9d08bdd4d5a9c6429a569aa639a5ba6b111d0565c4c749ba2a0f91973e9ab4d2deaff367d72e90085366fe5d992c3f32b1a1cd52b411123ff0722809c79186ab3022c930f931d851e2968262543dafae268540a155870d00f11f2cbc4e6fe6d7d64de5f033515b7db3ac0d7", @ANYRES16=r4, @ANYBLOB="02062dbd7000ffdbdf250e0000002000020008000200070000000400040008000100dd50c17708000100000100003c00090008000100020000000800020000f8ffff08000200050000000800020080000000080001000080000008000100040000000800020001000000600007000c0003003f0000000000000008000200050000000c00030001000100000000000c000300230a0000000000000c00040009000000000000000c0004000600000000000000080002007f000000080001007f0000000800010003000000"], 0xd0}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) ioctl$EVIOCGBITSW(r3, 0x80404525, &(0x7f0000000300)=""/4096) 09:39:12 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000180)='./file0\x00', 0x10) timerfd_gettime(r0, &(0x7f00000002c0)) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000000)={0x0, 0x1000, 0x10, 0x2, 0x1}, &(0x7f0000000040)=0x18) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES32=r1, @ANYBLOB="8a918800c0ec297f6434d8315f7336eb9386c40aaefa569f24c1bd7fdd80b73765112e26577f4a148a6916b4b6ead635492ac11c3f13fa9ec854219dd4a7ea4b76efb834d23b58eca2b7824bc52bd376650d5b05cbaf68bcb17dabfcdf1998082292fe842c87d990f0c3399286c397305705a5946a27360eabc02d3046f3f85e30a3ddaea6f602d871af535b"], 0x90) socket$bt_rfcomm(0x1f, 0x3, 0x3) sendmsg(r0, &(0x7f0000000100)={0x0, 0x127, &(0x7f0000000600)=[{&(0x7f00000005c0)="c9f3ac3af3b84de3c2977330"}], 0x100000000000019d, 0x0, 0xfffffffffffffe32}, 0x4) [ 1172.364717] FAULT_INJECTION: forcing a failure. [ 1172.364717] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1172.413766] CPU: 0 PID: 4909 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1172.421199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1172.430787] Call Trace: [ 1172.433393] dump_stack+0x138/0x19c [ 1172.437050] should_fail.cold+0x10f/0x159 [ 1172.441409] ? __might_sleep+0x93/0xb0 [ 1172.445325] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1172.450014] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1172.455152] ? mmu_topup_memory_caches+0x86/0x320 [ 1172.460030] ? rcu_read_lock_sched_held+0x110/0x130 [ 1172.465055] alloc_pages_current+0xec/0x1e0 [ 1172.469407] __get_free_pages+0xf/0x40 [ 1172.473387] mmu_topup_memory_caches+0x194/0x320 [ 1172.478156] kvm_mmu_load+0x21/0xd50 [ 1172.482745] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1172.487514] vcpu_enter_guest+0x2ea0/0x5270 [ 1172.491870] ? save_trace+0x290/0x290 [ 1172.495918] ? lock_downgrade+0x6e0/0x6e0 [ 1172.500087] ? find_held_lock+0x100/0x130 [ 1172.504245] ? emulator_read_emulated+0x50/0x50 [ 1172.509011] ? lock_acquire+0x16f/0x430 [ 1172.512994] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1172.518023] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1172.522960] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1172.527994] kvm_vcpu_ioctl+0x401/0xd10 [ 1172.531977] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1172.536132] ? trace_hardirqs_on+0x10/0x10 [ 1172.540373] ? __f_unlock_pos+0x19/0x20 [ 1172.544357] ? save_trace+0x290/0x290 [ 1172.548165] ? __f_unlock_pos+0x19/0x20 [ 1172.552147] ? __fget+0x210/0x370 [ 1172.556108] ? find_held_lock+0x35/0x130 [ 1172.560909] ? __fget+0x210/0x370 [ 1172.565244] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1172.571406] do_vfs_ioctl+0x7b9/0x1070 [ 1172.575586] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1172.580358] ? lock_downgrade+0x6e0/0x6e0 [ 1172.584511] ? ioctl_preallocate+0x1c0/0x1c0 [ 1172.588925] ? __fget+0x237/0x370 [ 1172.592394] ? security_file_ioctl+0x8f/0xc0 [ 1172.596812] SyS_ioctl+0x8f/0xc0 [ 1172.600186] ? do_vfs_ioctl+0x1070/0x1070 [ 1172.604428] do_syscall_64+0x1eb/0x630 [ 1172.608331] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1172.613193] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1172.618477] RIP: 0033:0x458c29 [ 1172.621783] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1172.629501] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1172.637041] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1172.644681] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1172.651964] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1172.659243] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:13 executing program 5 (fault-call:5 fault-nth:56): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:13 executing program 0: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000469ffc)=0x7fe, 0x4) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000011ffd)={0x2, 0x4e20}, 0x10) poll(&(0x7f00000000c0)=[{r0}], 0x1, 0x0) 09:39:13 executing program 4: r0 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) sendmsg(r0, &(0x7f0000000100)={&(0x7f0000000200)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)="de", 0x1}], 0x1}, 0x0) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0x0, 0x0, 0x1}, 0x20) r1 = creat(&(0x7f0000000680)='./bus\x00', 0x0) fallocate(r1, 0x0, 0xc96d, 0x9ffe) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") r3 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) r4 = creat(&(0x7f00000003c0)='./file0\x00', 0x0) write$P9_RREMOVE(r4, &(0x7f0000000180)={0x6e785e3d1cb434ee}, 0x968f9efd) syncfs(r4) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000100)={0x0, r4}) r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80200, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r5, 0x5382, &(0x7f00000000c0)) r6 = fcntl$dupfd(r0, 0x0, r0) write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, &(0x7f0000000140)={0x0, 0x8c37}, &(0x7f0000000280)=0x8) setsockopt$inet_tcp_TCP_REPAIR(r6, 0x6, 0x13, &(0x7f0000000340)=0xffffffffffffffff, 0x4) getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000002c0)=@assoc_id=r7, &(0x7f0000000300)=0x4) setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f0000000480)={@nfc={0x27, 0x0, 0x1, 0x3}, {&(0x7f0000000400)=""/123, 0x7b}, &(0x7f0000000380), 0x1b}, 0xa0) 09:39:13 executing program 2: alarm(0x1) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/status\x00', 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000000}, 0x4008004) ioctl$RTC_WIE_OFF(r0, 0x7010) alarm(0x0) 09:39:13 executing program 1: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x20000000) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 09:39:13 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$TIPC_DEST_DROPPABLE(r2, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4) tkill(r1, 0x1e) ptrace$cont(0x1f, r1, 0x0, 0x0) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$cont(0x7, r1, 0x0, 0x8) [ 1172.842957] FAULT_INJECTION: forcing a failure. [ 1172.842957] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1172.895401] CPU: 1 PID: 4943 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1172.902478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1172.911929] Call Trace: [ 1172.914532] dump_stack+0x138/0x19c [ 1172.918186] should_fail.cold+0x10f/0x159 [ 1172.922532] ? __might_sleep+0x93/0xb0 [ 1172.926733] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1172.931446] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1172.936474] ? mmu_topup_memory_caches+0x86/0x320 [ 1172.941399] ? rcu_read_lock_sched_held+0x110/0x130 [ 1172.946567] alloc_pages_current+0xec/0x1e0 [ 1172.950904] __get_free_pages+0xf/0x40 [ 1172.954829] mmu_topup_memory_caches+0x194/0x320 [ 1172.959680] kvm_mmu_load+0x21/0xd50 [ 1172.963403] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1172.968260] vcpu_enter_guest+0x2ea0/0x5270 [ 1172.972726] ? save_trace+0x290/0x290 [ 1172.976810] ? lock_downgrade+0x6e0/0x6e0 [ 1172.981093] ? find_held_lock+0x100/0x130 [ 1172.985267] ? emulator_read_emulated+0x50/0x50 [ 1172.990127] ? lock_acquire+0x16f/0x430 [ 1172.994115] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1172.999426] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1173.004406] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1173.009476] kvm_vcpu_ioctl+0x401/0xd10 [ 1173.013511] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1173.017668] ? trace_hardirqs_on+0x10/0x10 [ 1173.022182] ? __f_unlock_pos+0x19/0x20 [ 1173.026482] ? save_trace+0x290/0x290 [ 1173.030503] ? __f_unlock_pos+0x19/0x20 [ 1173.034662] ? __fget+0x210/0x370 [ 1173.038221] ? find_held_lock+0x35/0x130 [ 1173.042296] ? __fget+0x210/0x370 [ 1173.045778] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1173.049956] do_vfs_ioctl+0x7b9/0x1070 [ 1173.053857] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1173.059405] ? lock_downgrade+0x6e0/0x6e0 [ 1173.063596] ? ioctl_preallocate+0x1c0/0x1c0 [ 1173.068103] ? __fget+0x237/0x370 [ 1173.071709] ? security_file_ioctl+0x8f/0xc0 [ 1173.076227] SyS_ioctl+0x8f/0xc0 [ 1173.079963] ? do_vfs_ioctl+0x1070/0x1070 [ 1173.084123] do_syscall_64+0x1eb/0x630 [ 1173.088015] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1173.093141] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1173.098596] RIP: 0033:0x458c29 [ 1173.101874] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1173.109590] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1173.116963] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1173.126499] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1173.133951] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1173.141513] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:13 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f00000000c0)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="001e0000000000000b00000000000000"], 0x10) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x2b) fcntl$setstatus(r1, 0x4, 0x42803) setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000040)=0x63, 0x2) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e23, @multicast1}, @in6={0xa, 0x100, 0x3, @mcast2, 0x1f}, @in={0x2, 0x4e21, @loopback}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x29}}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e22, 0x9, @mcast1, 0x2}, @in6={0xa, 0x4e21, 0x401, @remote, 0x4}], 0x94) 09:39:13 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f00000000c0)={0x0, 0x3, 0xffffffff7fffffff, [], &(0x7f0000000080)=0x8}) sendto$ax25(r0, &(0x7f0000000100)="c3aec47a041b7850ff974f742ce5883da4c6ae7fd6ea0bc4637270e8ec521038bf8e75b0a4472125b442a540ddc595fa3d14a64394e8112dada296f2b3d90915a9bac4a0de9e605c08250ad02bed0692aa5aaf5f4ad85416e522f0ec7a7638f2b4482c9bb9f92af087559f4f49b21913ce75bb3afbba3cd88dcd139bba81830633215fb1c356a480dbd1263391b6a944a4454b667405238908b49738f450309b0d2728abf2fa29d794d5b8526cd71369176e01c9f4bae0c8e53e98bd", 0xbc, 0x20000800, &(0x7f00000001c0)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}}, [@default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @default, @bcast]}, 0x48) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f0000000080)) 09:39:13 executing program 2: clone(0xfffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) clone(0x1000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x3) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x400002, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x0, 0x8000}) ptrace$cont(0x18, r0, 0x0, 0x0) openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x20000000, 0x9f}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) 09:39:13 executing program 0: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r0, &(0x7f0000001440)={0x8, "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", 0x1000}, 0xfffffc41) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") creat(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) fadvise64(r0, 0xfffffffffffffffc, 0x0, 0x1000000004) syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) 09:39:13 executing program 5 (fault-call:5 fault-nth:57): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:13 executing program 1: mount$bpf(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x80000, 0x0) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000100)={{&(0x7f000049c000/0x4000)=nil, 0x4000}, 0x1}) mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mount(0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) socket$packet(0x11, 0x3, 0x300) creat(&(0x7f0000000080)='./file0\x00', 0x0) socket$unix(0x1, 0x5, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000000)={0x0, 0x3}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000240)={r2, 0xfffffffffffffffa, 0x9, 0x1, 0x6}, &(0x7f00000002c0)=0x14) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) shutdown(r1, 0x0) [ 1173.302089] FAULT_INJECTION: forcing a failure. [ 1173.302089] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:13 executing program 2: mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='configfs\x00', 0x0, 0x0) lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000080)='system_u:object_r:klogd_exec_t:s0\x00', 0x22, 0x2) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/capi/capi20ncci\x00', 0x103080, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000200)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f0000000240)={r1}) r2 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) lseek(r2, 0xfffffffffffffffd, 0x0) [ 1173.366796] CPU: 1 PID: 4970 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1173.373804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1173.385598] Call Trace: [ 1173.388208] dump_stack+0x138/0x19c [ 1173.391863] should_fail.cold+0x10f/0x159 [ 1173.396048] ? __might_sleep+0x93/0xb0 [ 1173.400137] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1173.405043] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1173.410080] ? mmu_topup_memory_caches+0x86/0x320 [ 1173.415042] ? rcu_read_lock_sched_held+0x110/0x130 [ 1173.420081] alloc_pages_current+0xec/0x1e0 [ 1173.424567] __get_free_pages+0xf/0x40 [ 1173.428765] mmu_topup_memory_caches+0x194/0x320 [ 1173.433530] kvm_mmu_load+0x21/0xd50 [ 1173.437233] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1173.441988] vcpu_enter_guest+0x2ea0/0x5270 [ 1173.446302] ? save_trace+0x290/0x290 [ 1173.450105] ? lock_downgrade+0x6e0/0x6e0 [ 1173.454239] ? find_held_lock+0x100/0x130 [ 1173.458373] ? emulator_read_emulated+0x50/0x50 [ 1173.463023] ? lock_acquire+0x16f/0x430 [ 1173.466985] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1173.472024] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1173.476850] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1173.481854] kvm_vcpu_ioctl+0x401/0xd10 [ 1173.485815] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1173.490044] ? trace_hardirqs_on+0x10/0x10 [ 1173.494337] ? __f_unlock_pos+0x19/0x20 [ 1173.498316] ? save_trace+0x290/0x290 [ 1173.502116] ? __f_unlock_pos+0x19/0x20 [ 1173.506074] ? __fget+0x210/0x370 [ 1173.509509] ? find_held_lock+0x35/0x130 [ 1173.513573] ? __fget+0x210/0x370 [ 1173.517019] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1173.521267] do_vfs_ioctl+0x7b9/0x1070 [ 1173.525229] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1173.529973] ? lock_downgrade+0x6e0/0x6e0 [ 1173.534114] ? ioctl_preallocate+0x1c0/0x1c0 [ 1173.538616] ? __fget+0x237/0x370 [ 1173.542087] ? security_file_ioctl+0x8f/0xc0 [ 1173.546503] SyS_ioctl+0x8f/0xc0 [ 1173.549851] ? do_vfs_ioctl+0x1070/0x1070 [ 1173.553983] do_syscall_64+0x1eb/0x630 [ 1173.557861] ? trace_hardirqs_off_thunk+0x1a/0x1c 09:39:14 executing program 2: r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0xfffffffffffffffa, 0x100) getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x6025, 0xfffffffffffffffe, 0x80, 0x80, 0x3, 0x16a, 0xe845, 0x8, 0x9, 0x476d, 0x8000}, 0xb) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x1) ioctl$TCSETS(r2, 0x89f0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) getsockopt$inet_dccp_buf(r0, 0x21, 0x2, &(0x7f00000002c0)=""/69, &(0x7f0000000340)=0x45) ioctl$LOOP_CTL_ADD(r0, 0x4c80, r3) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000140)={0x7f, 0xdfbf, 0x40009e3, 0x8}, 0x10) flistxattr(r2, &(0x7f00000001c0)=""/252, 0xfc) [ 1173.562692] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1173.567861] RIP: 0033:0x458c29 [ 1173.571032] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1173.578809] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1173.586501] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1173.593761] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1173.601016] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1173.608443] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:14 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f00000001c0)) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x0, 'syz1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xda\xc1\x00'}, 0x1, 0x0, 0x3, 0x0, 0x202b46c1, 0x0, 'syz1\x00', 0x0, 0x7ff9f59d779aaf86, [], [0x3]}) 09:39:14 executing program 2: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") r1 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0), 0x4) ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000180)={r0, 0xe2, 0xffff, "cf3a2510bc18b34ff06fc65caf82b6c67466770aa4941d194a5b15beaa4698ff033ef3415384f219eb845a31ab3daf0ac90e8103690c7dd983ee89029da4fee0fa87d1512f55a99e5c4c3065a7dace2f13b073f6c699d216ce861cf69cef7307cb45ad186cdd5f5508c258eab64554652b0b72241a95"}) io_setup(0xa63, &(0x7f0000000000)=0x0) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x40000, 0x0) io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x2, 0x401, r1, &(0x7f0000000040)="3f721e24aeb72c1f2e8c7a0e2836df5ab0878e12d89ee9a8b42befd57f494fa03c5a2a3f7cbda5", 0x27, 0x100, 0x0, 0x1, r3}]) r4 = socket$inet_udplite(0x2, 0x2, 0x88) dup3(r4, r1, 0x0) 09:39:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040)=0xd19, 0x4) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x4, 0x103840) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) ioctl(r0, 0x4, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x100008, 0x0) 09:39:14 executing program 5 (fault-call:5 fault-nth:58): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1174.015890] FAULT_INJECTION: forcing a failure. [ 1174.015890] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1174.060109] CPU: 1 PID: 5000 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1174.067178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1174.076544] Call Trace: [ 1174.079147] dump_stack+0x138/0x19c [ 1174.083150] should_fail.cold+0x10f/0x159 [ 1174.087401] ? __might_sleep+0x93/0xb0 [ 1174.091408] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1174.096488] ? trace_hardirqs_on_caller+0x400/0x590 [ 1174.101612] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1174.106812] alloc_pages_current+0xec/0x1e0 [ 1174.111234] __get_free_pages+0xf/0x40 [ 1174.115119] mmu_topup_memory_caches+0x194/0x320 [ 1174.119879] kvm_mmu_load+0x21/0xd50 [ 1174.123650] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1174.128410] vcpu_enter_guest+0x2ea0/0x5270 [ 1174.132743] ? save_trace+0x290/0x290 [ 1174.136648] ? lock_downgrade+0x6e0/0x6e0 [ 1174.140808] ? find_held_lock+0x100/0x130 [ 1174.144966] ? emulator_read_emulated+0x50/0x50 [ 1174.144979] ? lock_acquire+0x16f/0x430 [ 1174.144991] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1174.145006] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1174.145017] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1174.153667] kvm_vcpu_ioctl+0x401/0xd10 [ 1174.153680] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1174.163659] ? trace_hardirqs_on+0x10/0x10 [ 1174.163670] ? __f_unlock_pos+0x19/0x20 [ 1174.163681] ? save_trace+0x290/0x290 [ 1174.163688] ? __f_unlock_pos+0x19/0x20 [ 1174.163703] ? __fget+0x210/0x370 [ 1174.163714] ? find_held_lock+0x35/0x130 [ 1174.163724] ? __fget+0x210/0x370 [ 1174.163735] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1174.163747] do_vfs_ioctl+0x7b9/0x1070 [ 1174.173082] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1174.173094] ? lock_downgrade+0x6e0/0x6e0 [ 1174.173105] ? ioctl_preallocate+0x1c0/0x1c0 [ 1174.173118] ? __fget+0x237/0x370 [ 1174.173134] ? security_file_ioctl+0x8f/0xc0 [ 1174.173147] SyS_ioctl+0x8f/0xc0 [ 1174.173155] ? do_vfs_ioctl+0x1070/0x1070 [ 1174.173167] do_syscall_64+0x1eb/0x630 [ 1174.173178] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1174.181567] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1174.181576] RIP: 0033:0x458c29 [ 1174.181582] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1174.181594] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1174.181599] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1174.181604] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1174.181610] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1174.181615] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1174.193667] net_ratelimit: 10 callbacks suppressed [ 1174.193673] protocol 88fb is buggy, dev hsr_slave_0 [ 1174.193738] protocol 88fb is buggy, dev hsr_slave_1 [ 1174.790214] protocol 88fb is buggy, dev hsr_slave_0 [ 1174.795335] protocol 88fb is buggy, dev hsr_slave_1 [ 1174.870113] protocol 88fb is buggy, dev hsr_slave_0 [ 1174.875390] protocol 88fb is buggy, dev hsr_slave_1 [ 1174.880572] protocol 88fb is buggy, dev hsr_slave_0 [ 1174.885690] protocol 88fb is buggy, dev hsr_slave_1 [ 1176.230145] protocol 88fb is buggy, dev hsr_slave_0 [ 1176.235920] protocol 88fb is buggy, dev hsr_slave_1 09:39:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") timer_getoverrun(0x0) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x74, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0x7, @dev={0xfe, 0x80, [], 0x21}, 0x4}, @in6={0xa, 0x4e23, 0xfffffffffffffff7, @remote, 0x3}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e20, @remote}, @in6={0xa, 0x4e22, 0x1000100, @ipv4={[], [], @multicast2}, 0x7fff}]}, &(0x7f00000001c0)=0x10) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000200)={r2, 0x5}, 0xc) getsockopt$ax25_int(r1, 0x101, 0xe, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 09:39:17 executing program 2: clone(0x41fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000080)=0x0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0) ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000200)={&(0x7f0000000140)=""/165, 0xa5}) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000100)={0x2, 0x2}) ptrace$peekuser(0x3, r0, 0x1000) r2 = getpid() rt_tgsigqueueinfo(r2, r2, 0x16, &(0x7f0000000000)) ptrace(0x10, r2) ptrace$setregs(0x11, r2, 0x0, &(0x7f0000000100)) 09:39:17 executing program 4: write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000840)={0x8, "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", 0x1000}, 0x1006) setgroups(0x3d2, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]) 09:39:17 executing program 0: mq_open(&(0x7f0000000000)='*GPL[vmnet1@vmnet1{-vmnet@vboxnet0!vboxnet1+M\x00', 0x0, 0x0, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000040)=ANY=[@ANYBLOB="016ec2000000aaaaaaaab8ff46000620000000000000a578ac538fd088d9ffff0000d07a84bfc6a48cde08141400ac14ffaa0303000212009078000000"], 0x0) 09:39:17 executing program 5 (fault-call:5 fault-nth:59): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:17 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket(0x10, 0x3, 0x0) ioctl$sock_ifreq(r1, 0x89f1, &(0x7f0000000080)={'sit0\x00', @ifru_flags}) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x755}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000100)={r2, 0xec, "44cc2fabc352483ad5c6c74f55a7756772a5fa41c4c2cee999745e9f896ec3859a154b4b2b7fb4107a15bc2932b67b521efbeeb107939d7c8f9ebe531f2c368ceeba5c107cd6dd55e4915b46d246fd7f9351424f821a74066dff7ad0bd5f360dbc02981acd0ad7c1fc9f7452bd389163f73c419f0f96da4bb1aed1c201677dd9db72a847897456bd53e9c1d19cf47ff30e9dff6e19498bf53a5baeb66482a5e5b13a8564d0c7b06cffb9193cb1dfffeb2f16ad8881a8b4e32aa57813e89b97b226842402d4c5bbf357b9bf38342daa03188e621ba209105d57e3f68428026a2b57bc451cbf986cd91840f7ae"}, &(0x7f0000000200)=0xf4) 09:39:17 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$unix(0x1, 0x5, 0x0) close(r0) pipe(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r1, &(0x7f0000000040), 0x4, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000000)) 09:39:17 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x8, 0xc2002) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000040)={0x8}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'lo\x00', &(0x7f00000019c0)=@ethtool_perm_addr}) 09:39:17 executing program 0: r0 = socket(0x10, 0x803, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000000)={0x0, 0x6, 0x3, [0x935a, 0x7, 0x3ff]}, &(0x7f0000000080)=0xe) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000000c0)={r1, 0x7fffffff}, &(0x7f0000000100)=0x8) mq_notify(0xffffffffffffffff, &(0x7f0000000040)={0x20000000, 0x24000000000003, 0x2, @thr={0x0, 0x0}}) 09:39:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:17 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="290000005200190f00003fffffffda060200000000e80001040000040d000a00ea1100000005000000", 0x29}], 0x1) recvmmsg(r0, &(0x7f0000007c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000800}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x100, r1, 0x202, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf21}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@broadcast}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x870}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}]}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x8}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@remote}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x7ff4000000000}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffffffffffb}, @IPVS_CMD_ATTR_DAEMON={0x70, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'lo\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x16}}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xd67b}]}, 0x100}, 0x1, 0x0, 0x0, 0x10}, 0x800) 09:39:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000100)=0x2) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)=0x0) openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000280)='/selinux/commit_pending_bools\x00', 0x1, 0x0) r2 = syz_open_procfs(r1, &(0x7f0000000080)='net/ip_tables_names\x00') write$P9_RUNLINKAT(r2, &(0x7f00000001c0)={0x7, 0x4d, 0x2}, 0x7) sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[]}, 0x0) getsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000200)=0xc00000000, &(0x7f0000000240)=0x4) preadv(r2, &(0x7f0000000140)=[{&(0x7f0000000040)=""/12, 0xfffffffffffffc80}, {&(0x7f0000000180)=""/62, 0x3e}], 0x2, 0x400000000000) [ 1176.955068] FAULT_INJECTION: forcing a failure. [ 1176.955068] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1177.022126] CPU: 0 PID: 5022 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1177.029213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1177.038663] Call Trace: [ 1177.041278] dump_stack+0x138/0x19c [ 1177.045050] should_fail.cold+0x10f/0x159 [ 1177.049205] ? __might_sleep+0x93/0xb0 [ 1177.053106] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1177.057789] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1177.062814] ? mmu_topup_memory_caches+0x86/0x320 09:39:17 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x9, &(0x7f0000000940)=[{&(0x7f00000000c0)="89e0458e6b1d9f78db3a462107d613e591577633fc1cd23f35f946ff22067c4529ea96ca1c9da72d1f69fbfb6bbfbf9cb26b234df02882fe249d985eb62969533c0459aba21891ca24d60355d44d4efaef5c3fab3faca5c36b9be25d39cabe9d34ab5e8d3ade6d8bf09d1d8ccf348115e052a55e8a83d0e7a92c8e253f0b73b4b1c34af1519e3d9a92b69c68699397a2361410819460e7b78363a2e21376959d0aa89d8a187d74ebdfa0e100bc51624bb2dc9405dc7eb1c2568e0bfa8cee6b77460040c0def7b946eda080eea1b37f2b96bb", 0xd2, 0x1}, {&(0x7f00000002c0)="41f18dc8ac41e530e4a2cd57e359aeb1e8563463e04ba88467847a2517904c0904df62e4db2160108d50574eddc2da17972f865cb679a26ce487f7a03c73fcc44fd5e8c100f086ce3da4a31efc534fb21ffacc3691ec55d7ecddc1e43973d36f308cfa038d405c15cad6d64f1cbb92924223b6871f4f8e9616ff3b13f622a62295a71267c71912e0edcabc0f1e0c", 0x8e, 0x5}, {&(0x7f0000000380)="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", 0xfa}, {&(0x7f0000000480)="ab6a5721c6d9e15d41a23f8174c5143fcbc4129433227a109e999cbee17aa6feb280053aac116b5845cd0abd3f63e9096a3c1848f4b8f546f8bb56174448b997b8c935fbc49c74b63f8e4ac28cd99e29fa3a03b5b4b3cb18eb5edfccd3e4c486ce9ddc3ce03f38302a860477ff08b81898b10b128ca9eb61cc32b1e79aaaae45a940fb41ede1d0bc4f2107da553b80e25103bd23388ef5f5a0e08684f8621e0cd3deeaeb3c15bdc08926af1f", 0xac, 0x1}, {&(0x7f0000000540)="abe8046d37ea8a29d7b4712d53878b2dfe1661e9b1e2389d989911aa159aa7121b69e861b81f0fe0f22523e496cd05bddb3f1ebd4f498ad696e88637a1794a6e0b95067db6ef4d8d76562500685fbdf6d446a7cbaf334db75078aed9007be80efa40c22c3110619c0bb806b16917b8a2d3796d954d80cf2697c16eba02147d57", 0x80, 0x100000000}, {&(0x7f00000005c0)="455eb3779f813b545ceada9c688e62697e0c62cc77a693f20be2a81db0c0e10859867b79a5c45187889732fbbaaed59ab236e4da68bb59c6253a5f68a2890e3ef6b535f0d83603ab77087dd0b48ea2ab5237741b3bfac5eb10e0b5c424b47316bae1010f877a7d9281c588b6b7e0e536c869506944b234a65485961736dbe7ac658ef84758720b8b58ae3de94c69bb41ee56e45a3e46e4aee71c2da716d97a6283de58053632c7239c74a9a15da34bf2aee645e6ecb36554e83d5156f36f27f9", 0xc0, 0xfffffffffffff801}, {&(0x7f0000000680)="03675fd9604b247e16d024bca7dedfedfac35c3e1e1cb9a8189c71cafa14014a3053bbce23dfa4a54f50a278d3a9017cad1a45b4d3d0ac02d77720c7c5809767a2835cda8160470b518ce77c27a6ac0f58d87dd1441052f8b90d36cec75acced3feabff04256ce6dc6473db85985a903a7d194566cb6155835975a6ef605d89093a436ac474da2", 0x87, 0x4}, {&(0x7f0000000740)="636d4e768c0ba5e6f40cce2de571f689878597f4536e7600ef590afb4a8a2f32454cde741597acb91b8df01f0621ee15e58db6c19e3b52e7b41ea691f963849834440f0a1cfd5055eb9d9b8e9a3a88d28fb7d97dc81eb3d09d04c1aa09f35600b292694a82e3284454ccf319c5d69ea169a6fddb7da28e510bdea0e1d761103c7f2dbeeef289b015bd52d19d5c52babe3fc89eddfbfad7b82e63beb24484e564fc63034f629bc04803893b1d555f5412c7beccf7a51c4bbc56e4a451c28ed25b86151d92d1ea50d8864774b049de506d4d78bf8c253421bdbf2cf934f645c9081df81e504b5cfcfa5c7fd7ddffdf8bd2f23f5127a0baed2e", 0xf8, 0x100}, {&(0x7f0000000840)="a58f7e2c276d8cac55575f216945dbe23d09b704ef7423f356d846d37964016c2fa348b53477d0866bd2b0bf9c12b8c978479822ea325ff0006758da5fe7145044f6584bac7a489dea0f7fc7fc0efba1b214c498bea9a28c60b9d788602598b3447bfd313c356eb19f1448248786d7c63a49212a681af0ada53537cbfa7cf22600be34b6644ef3df0326f953e3ed68ebbd170b57adca9f6ca1ac10e44100a1da6d6fb5b7765d5b978769f4e50ca882d8a60460f3ae8e6f2f487027d0bab33c501914bf66cc15d0c5e7eb86b6170a92", 0xcf}], 0x10000, &(0x7f00000001c0)={[{@pqnoenforce='pqnoenforce'}, {@quota='quota'}], [{@fsuuid={'fsuuid', 0x3d, {[0x0, 0x76, 0x39, 0x30, 0x77, 0x31, 0x30, 0x73], 0x2d, [0x36, 0x61, 0x63], 0x2d, [0x64, 0x38, 0x73, 0x6340e53b95220ebc], 0x2d, [0x39, 0x63, 0x77, 0x7f], 0x2d, [0x7f, 0x38, 0x32, 0x77, 0x38, 0x63, 0x0, 0x30]}}}]}) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r1, 0x501, 0x0, 0x0, {{}, 0x0, 0x6, 0x0, {0x14}}}, 0x30}}, 0x0) 09:39:17 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x0, 0x0) r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000000)={'teql0\x00', {0x2, 0x0, @initdev}}) r2 = dup3(r1, r0, 0x80000) ioctl$VIDIOC_QUERYMENU(r2, 0xc02c5625, &(0x7f0000000100)={0x20, 0x0, @name="357e9ec53c59ba106180ddc25c6f094b021186951f5dd87c22acfbc73408a703"}) semget$private(0x0, 0x0, 0x662) listen(r1, 0x5) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x10000, 0x20) ioctl$sock_inet_SIOCDARP(r3, 0x8953, &(0x7f0000000080)={{0x2, 0x4e24, @empty}, {0x1}, 0x0, {0x2, 0x0, @dev}, 'irlan0\x00'}) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r4, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) write$UHID_CREATE2(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000066797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000016000300ffffffffad94ffff09000000000000088c40521f24a58e710081725eaf66042d4f6f11f8dcd9"], 0x1) [ 1177.067670] ? rcu_read_lock_sched_held+0x110/0x130 [ 1177.072794] alloc_pages_current+0xec/0x1e0 [ 1177.077129] __get_free_pages+0xf/0x40 [ 1177.081115] mmu_topup_memory_caches+0x194/0x320 [ 1177.085894] kvm_mmu_load+0x21/0xd50 [ 1177.089618] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1177.094389] vcpu_enter_guest+0x2ea0/0x5270 [ 1177.098746] ? save_trace+0x290/0x290 [ 1177.102556] ? lock_downgrade+0x6e0/0x6e0 [ 1177.106731] ? find_held_lock+0x100/0x130 [ 1177.111225] ? emulator_read_emulated+0x50/0x50 [ 1177.115917] ? lock_acquire+0x16f/0x430 [ 1177.119911] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1177.124929] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1177.130011] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1177.135232] kvm_vcpu_ioctl+0x401/0xd10 [ 1177.139208] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1177.143355] ? trace_hardirqs_on+0x10/0x10 [ 1177.147591] ? __f_unlock_pos+0x19/0x20 [ 1177.151563] ? save_trace+0x290/0x290 [ 1177.155356] ? __f_unlock_pos+0x19/0x20 [ 1177.159342] ? __fget+0x210/0x370 [ 1177.162811] ? find_held_lock+0x35/0x130 [ 1177.167060] ? __fget+0x210/0x370 [ 1177.170526] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1177.174771] do_vfs_ioctl+0x7b9/0x1070 [ 1177.178941] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1177.183716] ? lock_downgrade+0x6e0/0x6e0 [ 1177.187873] ? ioctl_preallocate+0x1c0/0x1c0 [ 1177.192590] ? __fget+0x237/0x370 [ 1177.196061] ? security_file_ioctl+0x8f/0xc0 [ 1177.200484] SyS_ioctl+0x8f/0xc0 [ 1177.203987] ? do_vfs_ioctl+0x1070/0x1070 [ 1177.208332] do_syscall_64+0x1eb/0x630 [ 1177.212231] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1177.217872] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:17 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x6, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x63, &(0x7f00000031c0)={'TPROXY\x00'}, &(0x7f0000004c80)=0x1e) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f0000000480)={0x64f1c08e, 0x8, [0x3a, 0x1]}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)={{{@in=@empty, @in6=@ipv4={[], [], @initdev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@initdev}}, &(0x7f0000000140)=0xe8) ioctl$LOOP_GET_STATUS64(r1, 0x4c05, &(0x7f0000000280)) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000180)=0x41, 0x4) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000400), &(0x7f0000000440)=0xc) openat$selinux_user(0xffffffffffffff9c, &(0x7f00000004c0)='/selinux/user\x00', 0x2, 0x0) getegid() getgroups(0x4000000000000082, &(0x7f0000000180)) recvmmsg(r1, &(0x7f0000006180)=[{{&(0x7f0000000500)=@hci, 0x80, &(0x7f0000001880)=[{&(0x7f0000000580)=""/122, 0x7a}, {&(0x7f0000000600)=""/22, 0x16}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/248, 0xf8}, {&(0x7f0000001740)=""/221, 0xdd}, {&(0x7f0000001840)=""/19, 0x13}], 0x6, &(0x7f0000001900)=""/55, 0x37}}, {{&(0x7f0000001940)=@hci, 0x80, &(0x7f0000001a80)=[{&(0x7f00000019c0)=""/136, 0x88}], 0x1, &(0x7f0000001ac0)=""/218, 0xda}, 0x3f8000000}, {{&(0x7f0000001bc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001ec0)=[{&(0x7f0000001c40)=""/158, 0x9e}, {&(0x7f0000001d00)=""/180, 0xb4}, {&(0x7f0000001dc0)=""/229, 0xe5}], 0x3, &(0x7f0000001f00)=""/201, 0xc9}, 0x13a}, {{&(0x7f0000002000)=@alg, 0x80, &(0x7f0000003500)=[{&(0x7f0000002080)=""/134, 0x86}, {&(0x7f0000002140)=""/4096, 0x1000}, {&(0x7f0000003140)=""/18, 0x12}, {&(0x7f0000003180)=""/12, 0xc}, {&(0x7f00000031c0)}, {&(0x7f0000003200)=""/162, 0xa2}, {&(0x7f00000032c0)=""/204, 0xcc}, {&(0x7f00000033c0)=""/241, 0xf1}, {&(0x7f00000034c0)=""/13, 0xd}], 0x9, &(0x7f00000035c0)=""/97, 0x61}}, {{&(0x7f0000003640)=@pppoe={0x18, 0x0, {0x0, @random}}, 0x80, &(0x7f0000004a40)=[{&(0x7f00000036c0)=""/120, 0x78}, {&(0x7f0000003740)=""/198, 0xc6}, {&(0x7f0000003840)=""/52, 0x34}, {&(0x7f0000003880)=""/73, 0x49}, {&(0x7f0000003900)=""/53, 0x35}, {&(0x7f0000003940)=""/4096, 0x1000}, {&(0x7f0000004940)=""/242, 0xf2}], 0x7, &(0x7f0000004ac0)=""/93, 0x5d}, 0xb2}, {{&(0x7f0000004b40)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000006080)=[{&(0x7f0000004bc0)=""/20, 0x14}, {&(0x7f0000004c00)=""/30, 0x1e}, {&(0x7f0000004c40)=""/5, 0x5}, {&(0x7f0000004c80)}, {&(0x7f0000004cc0)=""/12, 0xc}, {&(0x7f0000004d00)=""/163, 0xa3}, {&(0x7f0000004dc0)=""/180, 0xb4}, {&(0x7f0000004e80)=""/4096, 0x1000}, {&(0x7f0000005e80)=""/251, 0xfb}, {&(0x7f0000005f80)=""/213, 0xd5}], 0xa, &(0x7f0000006140)=""/26, 0x1a}, 0x81}], 0x6, 0x40000001, &(0x7f0000006300)={0x0, 0x989680}) openat$pfkey(0xffffffffffffff9c, &(0x7f0000006340)='/proc/self/net/pfkey\x00', 0x101400, 0x0) write$FUSE_ENTRY(r1, &(0x7f00000001c0)={0x90, 0x0, 0x6, {0x2, 0x0, 0x8, 0x7, 0x800, 0x2, {0x1, 0x2, 0x0, 0x40, 0x401, 0x1000, 0x84, 0x7, 0x4, 0x5, 0x10000, r2, 0x0, 0xffffffff, 0x5e}}}, 0x90) listen(r0, 0x7) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000fe1000), 0x4) getpeername$inet(r1, &(0x7f0000000380)={0x2, 0x0, @loopback}, &(0x7f00000003c0)=0x10) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r1) 09:39:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1177.223057] RIP: 0033:0x458c29 [ 1177.226765] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1177.234567] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1177.241847] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1177.249125] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1177.256406] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1177.263696] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:17 executing program 5 (fault-call:5 fault-nth:60): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:17 executing program 0: r0 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x8031, 0xffffffffffffffff, 0x0) 09:39:17 executing program 2: sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x5) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, 0x0) r0 = creat(&(0x7f0000000180)='./file0/file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0xfffffd97) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) rename(0x0, 0x0) mknod(&(0x7f0000000440)='./file0/file1\x00', 0x0, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x7) 09:39:17 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='\x15/cgroup\xa3\x1e\x00\x00/syz0\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000780)='./file0\x00', 0x0, 0x807a00, 0x0) mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x20, &(0x7f0000000140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c00bc260a6f33077f18e7f71f2a4d96971afc7801e57b67341713650a30041f781fd898d1f91ddf7878f591000a0dca0b7d7495d691e201f4ad5fe01a0490df013376959e45fa5abd6ac9abbab7c8c8327a5e502f8805db8ea39dd5b90c1d788811cb98537311e9fd20e0545d7cb399b8aebb5e081b27a6e96f45f53becddb536d423adeada4b8b14e09d20f4333d52e6fa5246ea94a13225fcd4682bcbcc4d059c46af252203c6fea3de2843fd8e14c2f8934d7654"]) 09:39:17 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:17 executing program 4: ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000002c0)={@local, @mcast1, @ipv4={[], [], @multicast1}, 0x0, 0x5}) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$inet6(0xa, 0x0, 0x1) setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000000)={0x80000000, {{0xa, 0x4e24, 0x3ff, @remote, 0x4}}, {{0xa, 0x4e20, 0xfbdb, @remote, 0x1ff}}}, 0x108) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f00000002c0)={{0x2, 0x0, @empty}, {0x0, @dev}, 0x5, {0x2, 0x0, @local}, 'brid{e`s\x00\r\x00'}) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000140)={'nat\x00'}, &(0x7f00000001c0)=0x54) 09:39:17 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000000)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0x7fffffff) read(r1, &(0x7f0000000040)=""/11, 0xb) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)) syz_open_dev$media(&(0x7f0000000140)='/dev/media#\x00', 0x8001, 0x40000) r2 = syz_open_pts(r1, 0x0) ioctl$TCSETA(r1, 0x5406, &(0x7f0000000200)={0xfffffffffffffffe}) r3 = dup3(r2, r1, 0x0) ioctl$TCSETA(r3, 0x5406, &(0x7f00000000c0)) [ 1177.465507] FAULT_INJECTION: forcing a failure. [ 1177.465507] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1177.539892] CPU: 0 PID: 5070 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1177.546971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1177.556423] Call Trace: [ 1177.559027] dump_stack+0x138/0x19c [ 1177.562697] should_fail.cold+0x10f/0x159 [ 1177.566866] ? __might_sleep+0x93/0xb0 [ 1177.570777] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1177.575459] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1177.580482] ? mmu_topup_memory_caches+0x86/0x320 [ 1177.585340] ? rcu_read_lock_sched_held+0x110/0x130 [ 1177.590558] alloc_pages_current+0xec/0x1e0 [ 1177.595066] __get_free_pages+0xf/0x40 [ 1177.598960] mmu_topup_memory_caches+0x194/0x320 [ 1177.603735] kvm_mmu_load+0x21/0xd50 [ 1177.607475] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1177.612254] vcpu_enter_guest+0x2ea0/0x5270 [ 1177.616678] ? save_trace+0x290/0x290 [ 1177.620507] ? lock_downgrade+0x6e0/0x6e0 [ 1177.624675] ? find_held_lock+0x100/0x130 [ 1177.628844] ? emulator_read_emulated+0x50/0x50 [ 1177.633533] ? lock_acquire+0x16f/0x430 09:39:18 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1177.637518] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1177.642556] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1177.647410] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1177.652654] kvm_vcpu_ioctl+0x401/0xd10 [ 1177.656642] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1177.660840] ? trace_hardirqs_on+0x10/0x10 [ 1177.665089] ? __f_unlock_pos+0x19/0x20 [ 1177.669767] ? save_trace+0x290/0x290 [ 1177.673575] ? __f_unlock_pos+0x19/0x20 [ 1177.677557] ? __fget+0x210/0x370 [ 1177.681110] ? find_held_lock+0x35/0x130 [ 1177.685188] ? __fget+0x210/0x370 09:39:18 executing program 3: sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:18 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0) sendfile(r1, r1, 0x0, 0x27) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000000)) [ 1177.688658] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1177.692813] do_vfs_ioctl+0x7b9/0x1070 [ 1177.696740] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1177.701499] ? lock_downgrade+0x6e0/0x6e0 [ 1177.705662] ? ioctl_preallocate+0x1c0/0x1c0 [ 1177.710090] ? __fget+0x237/0x370 [ 1177.713556] ? security_file_ioctl+0x8f/0xc0 [ 1177.718110] SyS_ioctl+0x8f/0xc0 [ 1177.721520] ? do_vfs_ioctl+0x1070/0x1070 [ 1177.725688] do_syscall_64+0x1eb/0x630 [ 1177.729618] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1177.734501] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:18 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1177.739729] RIP: 0033:0x458c29 [ 1177.742926] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1177.750656] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1177.757936] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1177.765214] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1177.772906] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1177.780189] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:18 executing program 5 (fault-call:5 fault-nth:61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:18 executing program 4: r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) ftruncate(r0, 0x7fff) write$cgroup_type(r0, &(0x7f00000009c0)='threaded\x00', 0xd4b9afd) unlink(&(0x7f0000000200)='./file1\x00') creat(&(0x7f0000000040)='./file1\x00', 0x0) clone(0x1000108, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() symlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file1\x00') ptrace$setopts(0x4206, r1, 0x0, 0x0) creat(&(0x7f0000000140)='./file1\x00', 0x0) tkill(r1, 0x38) [ 1177.959997] FAULT_INJECTION: forcing a failure. [ 1177.959997] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1177.973111] CPU: 0 PID: 5112 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1177.980277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1177.989763] Call Trace: [ 1177.992398] dump_stack+0x138/0x19c [ 1177.996130] should_fail.cold+0x10f/0x159 [ 1178.000465] ? __might_sleep+0x93/0xb0 [ 1178.004366] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1178.009053] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1178.014259] ? mmu_topup_memory_caches+0x86/0x320 [ 1178.019557] ? rcu_read_lock_sched_held+0x110/0x130 [ 1178.024597] alloc_pages_current+0xec/0x1e0 [ 1178.028945] __get_free_pages+0xf/0x40 [ 1178.032960] mmu_topup_memory_caches+0x194/0x320 [ 1178.037730] kvm_mmu_load+0x21/0xd50 [ 1178.041633] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1178.046580] vcpu_enter_guest+0x2ea0/0x5270 [ 1178.050909] ? save_trace+0x290/0x290 [ 1178.054713] ? lock_downgrade+0x6e0/0x6e0 [ 1178.058868] ? find_held_lock+0x100/0x130 [ 1178.063046] ? emulator_read_emulated+0x50/0x50 [ 1178.067726] ? lock_acquire+0x16f/0x430 [ 1178.071705] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1178.076723] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1178.081559] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1178.086658] kvm_vcpu_ioctl+0x401/0xd10 [ 1178.090637] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1178.094804] ? trace_hardirqs_on+0x10/0x10 [ 1178.099035] ? __f_unlock_pos+0x19/0x20 [ 1178.103002] ? save_trace+0x290/0x290 [ 1178.107045] ? __f_unlock_pos+0x19/0x20 [ 1178.111008] ? __fget+0x210/0x370 [ 1178.114474] ? find_held_lock+0x35/0x130 [ 1178.118528] ? __fget+0x210/0x370 [ 1178.121966] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1178.126098] do_vfs_ioctl+0x7b9/0x1070 [ 1178.130157] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1178.134914] ? lock_downgrade+0x6e0/0x6e0 [ 1178.139049] ? ioctl_preallocate+0x1c0/0x1c0 [ 1178.143455] ? __fget+0x237/0x370 [ 1178.146892] ? security_file_ioctl+0x8f/0xc0 [ 1178.151298] SyS_ioctl+0x8f/0xc0 [ 1178.154947] ? do_vfs_ioctl+0x1070/0x1070 [ 1178.159207] do_syscall_64+0x1eb/0x630 [ 1178.163128] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1178.168064] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1178.173256] RIP: 0033:0x458c29 [ 1178.176429] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1178.184126] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1178.191510] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1178.198805] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1178.206347] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1178.213709] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:18 executing program 2: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000000)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/xfrm_stat\x00') r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TIOCSSERIAL(r0, 0x541f, &(0x7f0000000200)={0x10000, 0x10000, 0xfffffffffffffff7, 0x2, 0x40, 0x2, 0x101, 0xffffffff, 0x8, 0x22, 0x7, 0x1, 0x1f, 0x6, &(0x7f00000000c0)=""/248, 0x2a, 0xfffffffffffffffa, 0x7fff}) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bc070") preadv(r0, &(0x7f0000000700), 0x31f, 0x0) 09:39:18 executing program 0: r0 = syz_open_dev$video(&(0x7f00000002c0)='/dev/video#\x00', 0x0, 0x0) close(r0) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x0, 0x80001) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r1, 0x111, 0x2, 0x0, 0x4) 09:39:18 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0) ioctl$KVM_SET_XCRS(r1, 0x4188aea7, &(0x7f00000000c0)={0x4, 0x80000000, [{0x101, 0x0, 0x4}, {0x100000001, 0x0, 0x7}, {0x3dd0}, {0x4, 0x0, 0xa208}]}) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) bind$llc(r2, &(0x7f0000000040)={0x1a, 0x1, 0x8000, 0xd86, 0x3, 0x2, @dev={[], 0x27}}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000580)=@filter={'filter\x00', 0xe, 0x1, 0x1035, [0x0, 0x20000380, 0x200003b0, 0x20000560], 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYPTR64=&(0x7f0000000280)=ANY=[@ANYRESHEX=r0, @ANYRESOCT=r0, @ANYPTR64=&(0x7f0000000200)=ANY=[@ANYRESDEC=r0, @ANYRES64=r0, @ANYPTR64, @ANYRESHEX=r0, @ANYRESDEC=r0, @ANYRESHEX=r0], @ANYRESOCT=r0, @ANYRES64=r0, @ANYRES32=r0, @ANYRESHEX=r0, @ANYRES32=r0, @ANYRESDEC=r0], @ANYRES16=r0, @ANYRESOCT, @ANYBLOB="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", @ANYPTR=&(0x7f0000000380)=ANY=[@ANYRES16=r0, @ANYRES32, @ANYRES32=r0, @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYPTR64, @ANYPTR, @ANYRESOCT=0x0, @ANYRESHEX=r0, @ANYRES64=r0]], @ANYPTR=&(0x7f00000004c0)=ANY=[@ANYRES64=r0, @ANYPTR=&(0x7f00000003c0)=ANY=[@ANYBLOB="61c01f38ca2baba8bae8715e1c519e4511ee8337b3b00002258326a2dc0181ff", @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYPTR, @ANYBLOB="c436266278c79736cc70b22489dbbe140faf3a2faaf96c9469c0ffc9540efa026a33be74f65bbf77ce7fbf980d9eb84e1c0af890395a6c05eb0676dbad9fb900dbd5ef9955c72796011c343b7122b6b7e4f896c8648101f7bde1ef2db0", @ANYBLOB="7e5915d5ab7fdc993a564b339c9d8f2fb52913d09c575c122a27887a1e7206cc76cd1c0d49a7befaa7185f37a466c24d6a5c544c1b98e7373a4aa75d00996cf431"]], @ANYRES32=0x0]}, 0x10ad) 09:39:18 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:18 executing program 5 (fault-call:5 fault-nth:62): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$sndpcmc(&(0x7f0000000140)='/dev/snd/pcmC#D#c\x00', 0x1, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xd0, 0x3fc) close(r1) read$eventfd(r1, &(0x7f0000000040), 0x8) 09:39:18 executing program 0: getpid() r0 = fcntl$getown(0xffffffffffffffff, 0x9) r1 = syz_open_procfs(r0, &(0x7f00000003c0)='net/zp6_flowlabel\x00~\xc01\x14\x894X\xed\xc1\xc9\xd8\xdcK\r\x8d\xae\x98&@\xd0\xe6\xbbQ\xd7\xffYn\x1c\x92\xde\x0e\xaa5\x91\x98\xe9\x1f\nM1\xac\xa6L2Ci|\xd5D\xfc\xa5\x99US#`\xac\xf3;\xd6d2\xeb:\xa1\x0e\x8b\xda\xf7\xfc9\xfe\xff43\'\xa19q\x93\"\x7fG3\xc1E\xe6e6\xc6\xc2u\x11% \xe7x\v\xda\xfa\xfa\xa5\xc9\x9f:\xdd{\xf8\x85\x89\xfc\xd2\xd7\t\x00\x00\x00\x00') readv(r1, &(0x7f0000000000)=[{&(0x7f00000002c0)=""/229, 0xe5}], 0x1) 09:39:18 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:18 executing program 2: r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f319bd070") syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@shortname_lower='shortname=lower'}, {@utf8='utf8=1'}, {@shortname_mixed='shortname=mixed'}, {@shortname_win95='shortname=win95'}]}) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) syz_mount_image$iso9660(&(0x7f0000000080)='iso9660\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="6e6f4f3905bdf874749fd599cbd42c5bc79bd56573730e0000"]) 09:39:18 executing program 4: unshare(0x80040020003) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000080)) setsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, &(0x7f0000000040)=0x879b, 0x4) pselect6(0x40, &(0x7f0000000300), 0x0, &(0x7f00000003c0)={0x8}, &(0x7f0000000400)={0x0, 0x989680}, 0x0) 09:39:18 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) [ 1178.426188] FAULT_INJECTION: forcing a failure. [ 1178.426188] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1178.449672] FAT-fs (loop2): bogus number of reserved sectors [ 1178.477414] FAT-fs (loop2): Can't find a valid FAT filesystem [ 1178.494756] CPU: 0 PID: 5134 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1178.501902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1178.511436] Call Trace: [ 1178.514052] dump_stack+0x138/0x19c [ 1178.517733] should_fail.cold+0x10f/0x159 [ 1178.521900] ? __might_sleep+0x93/0xb0 09:39:19 executing program 0: perf_event_open(0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000015c0)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0xb) r2 = dup2(r0, r1) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYRES16], 0x1}, 0x1, 0x0, 0x0, 0x40000000000}, 0x400000000000) recvfrom$unix(r2, &(0x7f0000000440)=""/226, 0xe2, 0x1, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0) sendmmsg$nfc_llcp(r2, &(0x7f0000000400)=[{&(0x7f0000000280)={0x27, 0x1, 0x1, 0x3, 0x9, 0x8, "278e9801ab32bf4cbd9f9b0222aa18d427dc48259830a62f35a225893d759835ae96e61c959dcf31c5ee1516a11fa58599cef0bc407c50904c6d23b2a26570", 0x21}, 0x60, &(0x7f00000003c0)=[{&(0x7f0000000300)="7922fa4149203d6b7ae5fc4e02171f3a54212d1f1c1e108f22f4acff546df0ebf44643a21684976e9d0d31214e4313a63209bce5de00ac8d05db63d6053d9142b3b9d03e848698af684d509e50a8e2a7590db9834c2d9c2d6317fa3016a0c758b78c823d219c1d44b8204a274abd7eb0d505a511b47e502eaa303764b11895e3b6b049046f2db231ca5c63fc3a5b2ea682", 0x91}, {&(0x7f0000000200)="6d9b90c26f06d2fb2b3ff6e447f87da5f7ed023d1eb8881b1ae17de45f9b39d10c4b739d6c954b0723fa5f56d41dfb8d076d", 0x32}], 0x2, 0x0, 0x0, 0x810}], 0x1, 0x48000) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uhid\x00', 0x0, 0x0) r4 = syz_open_dev$midi(&(0x7f0000000240)='/dev/midi#\x00', 0x0, 0x80000) write$UHID_CREATE(r3, &(0x7f0000001080)={0x0, 'syz1\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/11, 0xb}, 0x120) recvmmsg(r4, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f0000000840), 0x0, &(0x7f00000008c0)=""/91, 0x5b}}], 0x1, 0x40, &(0x7f00000009c0)={0x0, 0x989680}) lstat(0x0, 0x0) getsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000100), &(0x7f00000001c0)=0x10) write(0xffffffffffffffff, 0x0, 0x0) 09:39:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) [ 1178.525803] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1178.530495] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1178.535534] ? mmu_topup_memory_caches+0x86/0x320 [ 1178.540501] ? rcu_read_lock_sched_held+0x110/0x130 [ 1178.545640] alloc_pages_current+0xec/0x1e0 [ 1178.550074] __get_free_pages+0xf/0x40 [ 1178.554413] mmu_topup_memory_caches+0x194/0x320 [ 1178.559279] kvm_mmu_load+0x21/0xd50 [ 1178.563095] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1178.568050] vcpu_enter_guest+0x2ea0/0x5270 [ 1178.572463] ? save_trace+0x290/0x290 09:39:19 executing program 0: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200)='/dev/hwrng\x00', 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xe, 0x2, 0xfff, 0x96d, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, r0, 0x1000}, 0x3c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77ffff, 0x0, 0x10020000000, 0x0}, 0x2c) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0xfffffffffffffd7d}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={r1, @in6={{0xa, 0x4e22, 0x80, @empty}}, 0x6, 0x1, 0x8, 0xffffffffffffff40, 0xa8}, &(0x7f00000001c0)=0x98) [ 1178.576538] ? lock_downgrade+0x6e0/0x6e0 [ 1178.580823] ? find_held_lock+0x100/0x130 [ 1178.585003] ? emulator_read_emulated+0x50/0x50 [ 1178.590295] ? lock_acquire+0x16f/0x430 [ 1178.594286] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1178.599758] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1178.604677] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1178.609712] kvm_vcpu_ioctl+0x401/0xd10 [ 1178.613717] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1178.617996] ? trace_hardirqs_on+0x10/0x10 [ 1178.622256] ? __f_unlock_pos+0x19/0x20 09:39:19 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x4000100000890f, &(0x7f0000000080)="08881f123c123fb4e9ae12c1c8a3746047891fa07e3eda08c7bd59506ca3996ac2d075e8e36a304a182fb252f74288795cff45c9edbccc7d69ffffffffffff6e67b0b0ce8e2338fe057699561b690d2534722a03b6260713034c37256db780de83dcffbc6d3c20daaaa9bb843436528c8cef1ad60b36f091b8893f5b8d17ecd4158de4d7e6f9611f0877c75ae054fe7c0c9f1586eb2e17e459c63783906ec710c66c4642554aad000000000000000000") mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000002, 0x400002172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x4000, 0x3, &(0x7f0000ff6000/0x4000)=nil) read(r0, &(0x7f0000000140)=""/184, 0xb8) futex(0x0, 0x85, 0x0, 0x0, &(0x7f0000000040), 0x20000000) [ 1178.626251] ? save_trace+0x290/0x290 [ 1178.630144] ? __f_unlock_pos+0x19/0x20 [ 1178.634122] ? __fget+0x210/0x370 [ 1178.637590] ? find_held_lock+0x35/0x130 [ 1178.641695] ? __fget+0x210/0x370 [ 1178.645154] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1178.649300] do_vfs_ioctl+0x7b9/0x1070 [ 1178.653196] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1178.657948] ? lock_downgrade+0x6e0/0x6e0 [ 1178.662083] ? ioctl_preallocate+0x1c0/0x1c0 [ 1178.666492] ? __fget+0x237/0x370 [ 1178.669936] ? security_file_ioctl+0x8f/0xc0 [ 1178.674338] SyS_ioctl+0x8f/0xc0 [ 1178.677692] ? do_vfs_ioctl+0x1070/0x1070 [ 1178.681851] do_syscall_64+0x1eb/0x630 [ 1178.685741] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1178.691136] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1178.696415] RIP: 0033:0x458c29 [ 1178.699677] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1178.707484] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1178.714743] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 09:39:19 executing program 1: recvmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/231, 0xe7}}], 0x1, 0x0, 0x0) uname(&(0x7f0000000140)=""/160) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) r1 = socket$unix(0x1, 0x2, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000200)={0x7f, 0x12, 0x7f, 0x6, "b7a48342083e1d955e933ac406651441d036df7b05c6c2d193e7b757f7d656f6"}) connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x410100, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000040), &(0x7f0000000080)=0x4) sendmmsg(r1, &(0x7f0000000040), 0x40000000000020f, 0x0) 09:39:19 executing program 5 (fault-call:5 fault-nth:63): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:19 executing program 4: r0 = socket$inet6(0xa, 0x800, 0x8000) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000380)={'bridge0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="11000000000000000100010000000000000000000000000000cda52abecb9711a0ae9c6bd52d737641784f7bcd82347cd3e6d2966a2531b1ae9f1faaaf9100e19bbc02546316f442d2edd6484d8b0171d97a10c17e2d3bbec9915719896db54dd88049dd009a68f9cc12e253d3d5dfff6a03899fa28d42d281c0169074b97ddd71629225df9bed1d7ea9e3a0785100"/153]}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x400002, 0x0) syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000100)=[@in={0x2, 0x4e24, @local}, @in6={0xa, 0xcdaca93, 0xdc1, @loopback, 0x6}, @in6={0xa, 0x4e24, 0x80, @rand_addr="9a5058cae45c7889a14d049b67ec62cb", 0x2}, @in={0x2, 0x4e20, @rand_addr=0x1}, @in={0x2, 0x4e24, @loopback}, @in6={0xa, 0x4e23, 0x1ff, @dev={0xfe, 0x80, [], 0x23}, 0x6}, @in={0x2, 0x4e20, @rand_addr=0xfffffffffffffffa}], 0x94) ioctl$VIDIOC_G_TUNER(r1, 0xc054561d, &(0x7f00000001c0)={0xdc5f, "b2856289795d862947bc4a8c92b04cb1962f156ef8fc783313d36f8c110262ba", 0x1, 0x80, 0xd7, 0x6, 0x12, 0x2, 0x6, 0x8}) ioctl$VIDIOC_ENUMAUDIO(r1, 0xc0345641, &(0x7f0000000040)={0x0, "48764f92e00ddf4ed1c9f5d0af70a25fb2c1ec27a7010c5cb7667b600ff06899", 0x1, 0x1}) [ 1178.722032] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1178.729298] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1178.736585] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:19 executing program 2: setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) mmap(&(0x7f00006fc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="0a0743cc05e381e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) write$binfmt_aout(r1, &(0x7f0000000100)={{0xcc, 0x8, 0x5, 0x382, 0x1be, 0x4838e046, 0x2d7, 0x9}, "82288cbb9472600660dcca0908c981f417915e32bb0b0d0fc924bb503905677ae836acba23d7fcf441118a48e1132b1bc6ec8550574c55e7286b8378c3a0affebf0a8fbbd6f241356dd0f5402567dfae0f", [[], [], [], [], [], []]}, 0x671) sendmmsg$alg(r1, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x2a0, &(0x7f0000000080)=[@op={0x18, 0x117, 0x2}], 0x18}], 0x4924944, 0x0) 09:39:19 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 09:39:19 executing program 1: r0 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) r1 = dup2(r0, r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', 0x0}) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000001c0)={0x0, 0xa5}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={r3, 0x40, &(0x7f0000000240)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e22, @loopback}]}, &(0x7f00000002c0)=0x10) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@deltclass={0x2c, 0x29, 0xe0a, 0x70bd25, 0x25dfdbfc, {0x0, r2, {0x0, 0xe}, {0xffef, 0xffff}, {0xfffb, 0xd}}, [@TCA_RATE={0x8, 0x5, {0x9, 0x401}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004010) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f00000000c0)={0x0, 0x10, "76d9b0580d5d9a0247d4d1b6f64c37c3"}, 0x0) 09:39:19 executing program 4: r0 = userfaultfd(0x0) memfd_create(&(0x7f0000000280)='#em1#+\x00', 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000007fe0)={{&(0x7f0000000000/0x4000)=nil, 0x4000}, 0x1}) ioctl$UFFDIO_UNREGISTER(r0, 0xc020aa04, &(0x7f0000007ffc)={&(0x7f0000000000/0x2000)=nil, 0x2000}) 09:39:19 executing program 2: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000002000)=@pppoe={0x18, 0x0, {0x1, @local, 'caif0\x00'}}, 0x80) sendmsg$can_bcm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x5, 0x0, 0x0, {}, {0x77359400}, {0x0, 0x0, 0x0, 0x3}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "79ed821c0943b58a"}}, 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002ff0)={&(0x7f0000000000)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x7530, @ANYBLOB="00000000010000000000001d000000005459c21bb948da5b"], 0x48}}, 0x0) getresuid(&(0x7f0000001300), &(0x7f0000001340), &(0x7f0000001380)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000013c0)={{{@in6=@mcast2, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@empty}}, &(0x7f00000014c0)=0xe8) syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0xe32, 0x2, &(0x7f00000012c0)=[{&(0x7f0000000240)="ab555ca12704ff0b6aa3a1dd107e3fd7c7ecdf2c94d302c6f929bb22e48f5b1b914cfc74bcfdfaefde832f8ea2fa8c6efec3c79c7787ca2d5611f1ecf43374ee8e691945e9ba6307e84f95aecd02f8a7845c51482bb9095f12f5473b581e21a0b2d4677da4495c2e235e3730174f89f5aa5148a7383df17f8d", 0x79, 0xfffffffffffff801}, {&(0x7f00000002c0)="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", 0x1000, 0x3}], 0x1212070, &(0x7f0000001500)={[{@noinode_cache='noinode_cache'}, {@noenospc_debug='noenospc_debug'}, {@noautodefrag='noautodefrag'}, {@noflushoncommit='noflushoncommit'}, {@fragment_metadata='fragment=metadata'}], [{@obj_user={'obj_user'}}, {@smackfsroot={'smackfsroot', 0x3d, '\''}}, {@dont_hash='dont_hash'}, {@fowner_gt={'fowner>', r1}}, {@uid_gt={'uid>', r2}}, {@subj_role={'subj_role', 0x3d, '}bdev!.'}}, {@appraise_type='appraise_type=imasig'}, {@fsmagic={'fsmagic', 0x3d, 0x5}}]}) close(r0) socket$isdn(0x22, 0x3, 0x24) 09:39:19 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x10, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) mkdir(&(0x7f0000000240)='./file0\x00', 0x110) r1 = open(&(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x0) mkdirat(r1, &(0x7f0000000280)='./file0\x00', 0x0) 09:39:19 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x20000, 0x0) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1b, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="100000008810c82ddd9eb598a2a53dc0ba666844"], &(0x7f00000000c0)=0x18) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r2, 0x401, 0x7}, &(0x7f0000000140)=0x38c) ioctl(r0, 0x1000008912, &(0x7f0000000880)="0adc1f123c123f319bd070") r3 = perf_event_open(&(0x7f0000000300)={0x400000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = geteuid() getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000200)={{{@in6=@initdev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @empty}}, 0x0, @in6=@initdev}}, &(0x7f0000000180)=0xe8) r6 = getuid() r7 = getuid() getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000380)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@broadcast}}, &(0x7f0000000480)=0xe8) bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0x4000000000005, 0x4, 0x100000001, 0x7, 0x0, 0x1}, 0x2c) bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820005, 0x0}, 0x2c) bpf$MAP_CREATE(0x2, &(0x7f00000000c0)={0x40000000003, 0x0, 0x77fffb, 0x0, 0x10020000008, 0x0}, 0x2c) r9 = getuid() getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0}, &(0x7f0000000500)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000540)={{{@in6=@remote, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@empty}}, &(0x7f0000000640)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000680)={{{@in=@local, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000000780)=0xe8) getgroups(0x2, &(0x7f00000007c0)=[0x0, 0xffffffffffffffff]) fsetxattr$system_posix_acl(r3, &(0x7f0000000100)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {0x1, 0x7}, [{0x2, 0x3, r4}, {0x2, 0x6, r5}, {0x2, 0x1, r6}, {0x2, 0x2, r7}, {0x2, 0x1, r8}, {0x2, 0x6, r9}, {0x2, 0x4, r10}, {0x2, 0x2, r11}, {0x2, 0x1, r12}], {0x4, 0x3}, [{0x8, 0x1, r13}], {0x10, 0x2}, {0x20, 0x2}}, 0x74, 0x3) dup2(r0, r3) 09:39:19 executing program 2: r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x100, 0x8000) ioctl$TIOCLINUX6(r0, 0x541c, &(0x7f0000000080)={0x6, 0x5}) r1 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000100)='/dev/capi20\x00', 0x0, 0x0) poll(&(0x7f0000000000)=[{r1}], 0x178, 0x1) [ 1178.958537] FAULT_INJECTION: forcing a failure. [ 1178.958537] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1179.024659] CPU: 0 PID: 5179 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1179.031663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1179.041246] Call Trace: [ 1179.043870] dump_stack+0x138/0x19c [ 1179.047550] should_fail.cold+0x10f/0x159 [ 1179.051710] ? __might_sleep+0x93/0xb0 [ 1179.055695] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1179.060358] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1179.065543] ? mmu_topup_memory_caches+0x86/0x320 [ 1179.070376] ? rcu_read_lock_sched_held+0x110/0x130 [ 1179.075381] alloc_pages_current+0xec/0x1e0 [ 1179.079709] __get_free_pages+0xf/0x40 [ 1179.083671] mmu_topup_memory_caches+0x194/0x320 [ 1179.088444] kvm_mmu_load+0x21/0xd50 [ 1179.092174] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1179.096926] vcpu_enter_guest+0x2ea0/0x5270 [ 1179.101237] ? save_trace+0x290/0x290 [ 1179.105112] ? lock_downgrade+0x6e0/0x6e0 [ 1179.109273] ? find_held_lock+0x100/0x130 [ 1179.113436] ? emulator_read_emulated+0x50/0x50 [ 1179.118124] ? lock_acquire+0x16f/0x430 [ 1179.122093] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1179.127235] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1179.132120] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1179.137155] kvm_vcpu_ioctl+0x401/0xd10 [ 1179.141126] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1179.145346] ? trace_hardirqs_on+0x10/0x10 [ 1179.149570] ? __f_unlock_pos+0x19/0x20 [ 1179.153654] ? save_trace+0x290/0x290 [ 1179.158957] ? __f_unlock_pos+0x19/0x20 [ 1179.162930] ? __fget+0x210/0x370 [ 1179.166375] ? find_held_lock+0x35/0x130 [ 1179.170602] ? __fget+0x210/0x370 [ 1179.174047] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1179.178190] do_vfs_ioctl+0x7b9/0x1070 [ 1179.182214] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1179.186960] ? lock_downgrade+0x6e0/0x6e0 [ 1179.191099] ? ioctl_preallocate+0x1c0/0x1c0 [ 1179.195494] ? __fget+0x237/0x370 [ 1179.198939] ? security_file_ioctl+0x8f/0xc0 [ 1179.203341] SyS_ioctl+0x8f/0xc0 [ 1179.206693] ? do_vfs_ioctl+0x1070/0x1070 [ 1179.210851] do_syscall_64+0x1eb/0x630 [ 1179.214761] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1179.219862] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1179.225042] RIP: 0033:0x458c29 [ 1179.228328] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1179.236121] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1179.243386] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1179.250649] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1179.257911] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1179.265194] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:20 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10) sendmsg$rds(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x18) getdents64(r1, &(0x7f0000000380)=""/193, 0xc1) recvmmsg(r0, &(0x7f0000001c80)=[{{0x0, 0x0, &(0x7f0000000100)}}], 0x1, 0x0, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x17, &(0x7f0000000100), &(0x7f0000000140)=0x4) 09:39:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 09:39:20 executing program 1: r0 = socket$inet6(0xa, 0x802, 0x0) connect$inet6(r0, &(0x7f0000ff6fe4)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats\x00', 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@initdev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@local}}, &(0x7f0000000180)=0xe8) accept$netrom(r1, 0x0, &(0x7f0000000200)) getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000240)={0x0, 0x8}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000002c0)={r3, 0xc3, "2da43d8237cd06bb5d8ce374f5d2676f418d90feea0dd756d48d16f71b3bbf86d2bdf4628b7b7f9aed7455d5f071c10de65d1d6ad24212caeb061f975463fd396958893501f3bdf5fe203daf999261b3909d93846377be712d56e86453ff1c00f4fbc43c136219311467ec1df9ba262a4386112358d32cd29dade579e1ed0b67a9644fb5aaf62c985ee8c965833b56c8c8f53002de83ce2c50d14298723ddd55e6bfeeb9c999ac7cb17660f64619915af74b6f497ea247c74f56d5a8cd55366bcfcaa8"}, &(0x7f00000003c0)=0xcb) bind$bt_hci(r1, &(0x7f00000001c0)={0x1f, r2}, 0xc) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0xa, 0x4e27, 0x0, @dev, 0x4}, 0x1c) 09:39:20 executing program 2: r0 = syz_init_net_socket$nfc_llcp(0x27, 0xfffffffffffffffd, 0x1) bind$nfc_llcp(r0, &(0x7f0000000100)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "8811e78754a503d39c2bd6a40fa8c8aa024d00000000ffffffff25fe48261e21ccf67e1d7b5510029663000000e565aa9a9d32c7627ffe7a54cdbd77b300", 0x2b}, 0x60) prctl$PR_GET_DUMPABLE(0x3) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r0, 0x118, 0x1, 0x0, 0x33d) getpgrp(0xffffffffffffffff) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x11) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="062fc73ca67775c541e5de2014228f04d4bf9507fb3f3e50ba74a08411005c9dfba53f3c546a6e955aa6803549aded198b5ab2271c1b131ed1"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/context\x00', 0x2, 0x0) 09:39:20 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) fgetxattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00', &(0x7f00000000c0)=""/102, 0x66) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r2 = gettid() setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000002c0)=ANY=[@ANYBLOB="6e61853167377400000080ffffffff0000000000e4dbb77487deff0000009e002c8000000000000000000000000000021803f2aafc240000ae0100000000000459d9e83804c1e090e1fe916dd282e0f3e52a000000"], 0x1) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000340)=@assoc_value={0x0, 0xfff}, &(0x7f0000000380)=0x8) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000003c0)=@sack_info={r3, 0x5, 0x8}, &(0x7f0000000400)=0xc) ptrace$setopts(0x4206, r2, 0x0, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e20, @empty}}, 0x6, 0xcb7d}, &(0x7f0000000040)=0x90) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000200)={0xfac2, 0xb, 0x5, 0xffffffff00000000, r4}, &(0x7f0000000240)=0x10) wait4(0x0, 0x0, 0x0, 0x0) tkill(r2, 0x3c) 09:39:20 executing program 5 (fault-call:5 fault-nth:64): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$VIDIOC_RESERVED(r1, 0x5601, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) r3 = socket$inet(0x2, 0x200000001, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000001c0)={0x0, @broadcast, @local}, &(0x7f0000000200)=0xc) setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000080)={@multicast1, @local, r4}, 0xc) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000100)={@multicast1, @local, 0x0, 0x1, [@local]}, 0x14) r5 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r5, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x40001, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000140)={0x0, 0x200}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000240)={r6, 0x5d, "d695f906a4a0ef2b3eab83c5d0a2c4e8c7a266694934e0a2b7bf408af0e5534e90f13d105128af17b37741a6ec3d07a13ef241f235974784898194fae0dc43c6325ff4f34459f48df677983487544357e89b7576d012e15f79adf07ddd"}, &(0x7f00000002c0)=0x65) sendto$inet(r5, 0x0, 0x0, 0x0, &(0x7f0000001480)={0x2, 0x4e23, @multicast1}, 0x10) 09:39:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 09:39:20 executing program 0: r0 = syz_open_dev$video(&(0x7f00000000c0)='/dev/video#\x00', 0x100, 0x1) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000100)={0x9, 0x310, "d8bb2b70da15e9cf8600fcbec9c1757d6b5246a804097c6b", {0x75, 0x2}}) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000000)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006, 0x20000000000}]}, 0x10) syz_emit_ethernet(0x7a, &(0x7f0000000040)={@link_local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "a1bba9", 0x44, 0x21, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x300000000000000]}, @local, {[], @gre={{0x0, 0x501}}}}}}}, 0x0) 09:39:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f123c123f319bd070") syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x0, 0x3fffc) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetl\x04\x00\x00\x00\x00\x00\x00\x00age_ir_Z\xa2\xf4es\x00(v\xd8\xeb\x8c7\x9f\xf8\xe2JNfa\x1c\x02^u\xb8mf', 0x275a, 0x0) [ 1179.604505] FAULT_INJECTION: forcing a failure. [ 1179.604505] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1179.645803] CPU: 1 PID: 5216 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1179.652792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1179.662161] Call Trace: [ 1179.664767] dump_stack+0x138/0x19c [ 1179.668413] should_fail.cold+0x10f/0x159 [ 1179.672571] ? __might_sleep+0x93/0xb0 [ 1179.676506] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1179.681345] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1179.681361] ? mmu_topup_memory_caches+0x86/0x320 [ 1179.691960] ? rcu_read_lock_sched_held+0x110/0x130 [ 1179.691973] alloc_pages_current+0xec/0x1e0 [ 1179.691987] __get_free_pages+0xf/0x40 [ 1179.691996] mmu_topup_memory_caches+0x194/0x320 [ 1179.692009] kvm_mmu_load+0x21/0xd50 [ 1179.692020] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1179.692037] vcpu_enter_guest+0x2ea0/0x5270 [ 1179.692050] ? save_trace+0x290/0x290 [ 1179.727062] ? lock_downgrade+0x6e0/0x6e0 [ 1179.731206] ? find_held_lock+0x100/0x130 [ 1179.735341] ? emulator_read_emulated+0x50/0x50 [ 1179.739999] ? lock_acquire+0x16f/0x430 [ 1179.743963] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1179.749176] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1179.754091] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1179.759799] kvm_vcpu_ioctl+0x401/0xd10 [ 1179.763759] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1179.767891] ? trace_hardirqs_on+0x10/0x10 [ 1179.772112] ? __f_unlock_pos+0x19/0x20 [ 1179.776082] ? save_trace+0x290/0x290 [ 1179.779869] ? __f_unlock_pos+0x19/0x20 [ 1179.783844] ? __fget+0x210/0x370 [ 1179.787284] ? find_held_lock+0x35/0x130 [ 1179.791328] ? __fget+0x210/0x370 [ 1179.794853] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1179.798984] do_vfs_ioctl+0x7b9/0x1070 [ 1179.802958] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1179.807735] ? lock_downgrade+0x6e0/0x6e0 [ 1179.811874] ? ioctl_preallocate+0x1c0/0x1c0 [ 1179.816270] ? __fget+0x237/0x370 [ 1179.819711] ? security_file_ioctl+0x8f/0xc0 [ 1179.824106] SyS_ioctl+0x8f/0xc0 [ 1179.827483] ? do_vfs_ioctl+0x1070/0x1070 [ 1179.831616] do_syscall_64+0x1eb/0x630 [ 1179.835493] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1179.840330] entry_SYSCALL_64_after_hwframe+0x42/0xb7 09:39:20 executing program 1: r0 = creat(&(0x7f0000000400)='./file0\x00', 0x110) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000780)={{}, {0x1, 0x1}, [{0x2, 0x2}], {}, [], {}, {0x20, 0x2}}, 0x2c, 0x0) pivot_root(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RMKDIR(r0, 0x0, 0x0) write$P9_RVERSION(r2, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x200, 0x8, '9P2000.u'}, 0x15) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f00000000c0), 0xffffffffffffffff) mount$9p_rdma(&(0x7f00000003c0)='127.0.0.1\x00', &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='9p\x00', 0xc004, &(0x7f0000000a00)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d3078303030303030303030303030346532312c72713d307830303030303030ba33a1b0353030303030303030342c73713d3078303030303030303030303030303030302c73713d3078303030303030303030303030303030382c73713d3078303030303030303030303030303030302c72713d3078303030303030303030303030301030342c74696d656f75743d30783030303030303030303027f40870a5e9786b6f774ac965f6862b35f86fdd800390ae9f183263c6ccf8c7e69d9eda16c9da337d443d92db8562c37a59b3976d9cca"]) keyctl$assume_authority(0x10, 0x0) ioctl$IOC_PR_PREEMPT(r2, 0x40046109, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x9}) fcntl$lock(0xffffffffffffffff, 0x26, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 09:39:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) [ 1179.845504] RIP: 0033:0x458c29 [ 1179.848685] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1179.856378] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1179.864174] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1179.871428] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1179.878744] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1179.886264] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:20 executing program 1: r0 = creat(&(0x7f0000000400)='./file0\x00', 0x110) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) lsetxattr$system_posix_acl(0x0, 0x0, &(0x7f0000000780)={{}, {0x1, 0x1}, [{0x2, 0x2}], {}, [], {}, {0x20, 0x2}}, 0x2c, 0x0) pivot_root(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RMKDIR(r0, 0x0, 0x0) write$P9_RVERSION(r2, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x200, 0x8, '9P2000.u'}, 0x15) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f00000000c0), 0xffffffffffffffff) mount$9p_rdma(&(0x7f00000003c0)='127.0.0.1\x00', &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='9p\x00', 0xc004, &(0x7f0000000a00)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d3078303030303030303030303030346532312c72713d307830303030303030ba33a1b0353030303030303030342c73713d3078303030303030303030303030303030302c73713d3078303030303030303030303030303030382c73713d3078303030303030303030303030303030302c72713d3078303030303030303030303030301030342c74696d656f75743d30783030303030303030303027f40870a5e9786b6f774ac965f6862b35f86fdd800390ae9f183263c6ccf8c7e69d9eda16c9da337d443d92db8562c37a59b3976d9cca"]) keyctl$assume_authority(0x10, 0x0) ioctl$IOC_PR_PREEMPT(r2, 0x40046109, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x9}) fcntl$lock(0xffffffffffffffff, 0x26, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) 09:39:20 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:39:20 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000240)=0x1, 0x4) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000200)={0x0, 0x0, 0x1, 0x3}) r1 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0xffff, 0x200000) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x7f}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000280)={r2, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x10}}}}, 0x84) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000100)=""/102) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffffffe}, 0x14) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") alarm(0x100) dup2(r3, r0) [ 1180.390112] net_ratelimit: 14 callbacks suppressed [ 1180.395168] protocol 88fb is buggy, dev hsr_slave_0 [ 1180.400289] protocol 88fb is buggy, dev hsr_slave_1 [ 1181.030145] protocol 88fb is buggy, dev hsr_slave_0 [ 1181.035301] protocol 88fb is buggy, dev hsr_slave_1 [ 1181.110176] protocol 88fb is buggy, dev hsr_slave_0 [ 1181.116745] protocol 88fb is buggy, dev hsr_slave_1 [ 1181.122077] protocol 88fb is buggy, dev hsr_slave_0 [ 1181.127744] protocol 88fb is buggy, dev hsr_slave_1 09:39:23 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_procs(r0, &(0x7f0000000500)='cgroup.procs\x00', 0x2, 0x0) 09:39:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x100, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="4400002da72acb70432516bf780687eac6fbd44fb09d535f10c8caf22ad93ac3debf23a666f128aebaccb10b4cb33600"/58, @ANYRES16=r2, @ANYBLOB="100329bd7000fcdbdf250c000000080005000300000008000600010000000c00010008000900560000002400030008000500ac1414bb0800010000000000080007004e24000008000400000000000800040002000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x4000000028, 0x0, 0x0, 0x200fffff03c}, {0x80000006}]}, 0x10) 09:39:23 executing program 5 (fault-call:5 fault-nth:65): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:39:23 executing program 1: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x1e, 0x0, 0x64}}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x1}) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x0, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000200)={{0x106004, 0xd000, 0x1f, 0x7, 0xf6e, 0x8, 0x4, 0xb4, 0x3f, 0x7, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x4, 0x2, 0x9, 0x1000, 0x2, 0x80000000, 0x0, 0x7, 0xfffffffffffffffd}, {0x5000, 0xf000, 0x4, 0x3, 0x2949eaf, 0x359, 0x1, 0x6, 0x0, 0x9, 0x1, 0x100000001}, {0x2000, 0x3000, 0x18, 0x0, 0x2, 0x4, 0x5, 0x2a5e, 0xb68, 0xffffffffffffffb5, 0x9, 0x7}, {0x0, 0x3000, 0xb, 0x2, 0x3ff, 0x9, 0x1, 0x9, 0x12ea, 0x1, 0x200, 0x10000}, {0x107000, 0x0, 0xa, 0x3, 0x3ff, 0x5, 0x8001, 0x6, 0x3, 0xfffffffffffffffc, 0xb, 0x4}, {0x106001, 0x3000, 0xd, 0x468c, 0xfffffffffffff069, 0x800, 0x0, 0x7f268950, 0x5, 0xfffffffffffffffe, 0x1, 0x3}, {0xd000, 0x2, 0xf, 0x2, 0xffffffffffffcf8f, 0x2327, 0x8, 0x0, 0x53, 0x4, 0x10001, 0x6}, {0x0, 0x6000}, {0x0, 0x4}, 0x10000, 0x0, 0xf003, 0x10000, 0x7, 0x800, 0x106000, [0x5, 0x5, 0x81, 0x8]}) 09:39:23 executing program 0: r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)}, 0x0) syz_open_dev$video4linux(&(0x7f00000000c0)='/dev/v4l-subdev#\x00', 0x7, 0x40) [ 1182.470156] protocol 88fb is buggy, dev hsr_slave_0 [ 1182.475301] protocol 88fb is buggy, dev hsr_slave_1 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 09:39:23 executing program 4: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f00000001c0)={0x3}) ioctl$PPPIOCSMRRU(r1, 0x4004743b, &(0x7f00000000c0)=0xa7) getsockopt$IP_VS_SO_GET_SERVICES(r1, 0x0, 0x482, &(0x7f0000000100)=""/91, &(0x7f0000000180)=0x5b) connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@rose, @rose, @default, @netrom, @bcast, @rose, @rose, @null]}, 0x48) listen(r0, 0x0) accept(r0, 0x0, 0x0) 09:39:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="050000000000000000000040050000a90000000000fa00000000e23f0003000001000000000000002560b700ff"]) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x400, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x40, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000200)={0x0, 0x80000, r3}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000240)={r4, 0x80000, r3}) ioctl$SIOCX25SSUBSCRIP(r3, 0x89e1, &(0x7f00000000c0)={'veth0\x00', 0x5, 0x2}) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2000000000491}]}) 09:39:23 executing program 2: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000880)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x3, 0x0) 09:39:23 executing program 0: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r0 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xffffffffbfffb7a7, 0x0) [ 1182.617733] FAULT_INJECTION: forcing a failure. [ 1182.617733] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1182.656252] CPU: 1 PID: 5271 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1182.663726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1182.673179] Call Trace: [ 1182.675775] dump_stack+0x138/0x19c [ 1182.675796] should_fail.cold+0x10f/0x159 [ 1182.675807] ? __might_sleep+0x93/0xb0 [ 1182.675823] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1182.675837] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1182.683642] ? mmu_topup_memory_caches+0x86/0x320 [ 1182.683663] ? rcu_read_lock_sched_held+0x110/0x130 [ 1182.707307] alloc_pages_current+0xec/0x1e0 [ 1182.711754] __get_free_pages+0xf/0x40 [ 1182.715650] mmu_topup_memory_caches+0x194/0x320 [ 1182.721143] kvm_mmu_load+0x21/0xd50 [ 1182.721156] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1182.721173] vcpu_enter_guest+0x2ea0/0x5270 [ 1182.721185] ? save_trace+0x290/0x290 [ 1182.721193] ? lock_downgrade+0x6e0/0x6e0 [ 1182.721204] ? find_held_lock+0x100/0x130 [ 1182.721217] ? emulator_read_emulated+0x50/0x50 [ 1182.721225] ? lock_acquire+0x16f/0x430 [ 1182.721243] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1182.721258] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 09:39:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = getpgid(0x0) wait4(r1, &(0x7f0000000080), 0xa0000000, 0x0) r2 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x4, 0x3fd) ioctl$VHOST_GET_VRING_ENDIAN(r2, 0x4008af14, &(0x7f0000000100)={0x3, 0x180000000}) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e21, @empty}]}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000200)=@assoc_id=r3, &(0x7f0000000240)=0x4) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_int(r4, 0x1, 0x2, &(0x7f000059dffc), &(0x7f0000000040)=0x4) 09:39:23 executing program 2: pipe2(&(0x7f0000000200), 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r2 = socket(0xa, 0x1, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000040)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88) getsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f0000000100)={@dev, 0x0}, &(0x7f0000000140)=0x14) setsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f00000001c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0xd}, r3}, 0xc) setsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000180), 0x4) 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1182.729740] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1182.729760] kvm_vcpu_ioctl+0x401/0xd10 [ 1182.729773] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1182.729785] ? trace_hardirqs_on+0x10/0x10 [ 1182.729795] ? __f_unlock_pos+0x19/0x20 [ 1182.729807] ? save_trace+0x290/0x290 [ 1182.750854] ? __f_unlock_pos+0x19/0x20 [ 1182.750866] ? __fget+0x210/0x370 [ 1182.750877] ? find_held_lock+0x35/0x130 [ 1182.750887] ? __fget+0x210/0x370 [ 1182.750900] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1182.750911] do_vfs_ioctl+0x7b9/0x1070 [ 1182.750923] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1182.750931] ? lock_downgrade+0x6e0/0x6e0 [ 1182.750942] ? ioctl_preallocate+0x1c0/0x1c0 [ 1182.759938] ? __fget+0x237/0x370 [ 1182.759959] ? security_file_ioctl+0x8f/0xc0 [ 1182.759973] SyS_ioctl+0x8f/0xc0 [ 1182.759982] ? do_vfs_ioctl+0x1070/0x1070 [ 1182.760000] do_syscall_64+0x1eb/0x630 [ 1182.769960] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1182.769981] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1182.769994] RIP: 0033:0x458c29 09:39:23 executing program 5 (fault-call:5 fault-nth:66): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:23 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x2002fffffffe}, 0xc) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000000040)={0x2000000005, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/hash_stats\x00', 0x0, 0x0) fchmodat(r2, &(0x7f0000000180)='./file0\x00', 0x40) setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f00000000c0)={0x1}, 0x4) getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000000000)=""/75, &(0x7f0000000100)=0x4b) 09:39:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KDGKBMODE(r2, 0x4b44, &(0x7f0000000000)) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000240)={0x79}) 09:39:23 executing program 1: openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2a3ba4254ef27a7b2dd6ec8f320fd59b75dee02d42c92d94c3eef87d7319f02f75c4a650eea1679e5e696004310cab267907a7701dd4e3b50b46773b19ba188bf85e498634d7b1e0b16e3f97e0712a43c0da6534a180e6557778ee0d924652bc5129b1eba331c7fa9cf43f929f8e84fe93ae654bb48f9c61f24d8a4b704ef3c4b547e0de9e99a845f2396c2f0dadf61e0e91677bda0f314e0224666d4f5ff1d83606523f5d88b72f9b1864b0d271e714bfbec7135eadd02d5fcc20f0bab76aeada46f609338cf9e0f19772d631"], 0x1}}, 0x44801) sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, 0x0, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendmsg$TIPC_NL_LINK_SET(r1, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f00000004c0), 0x4) epoll_create1(0x0) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000000)="0fbaa408ae043b17660f2fd10f01df66660f3832920080baf80c66b89e32128e66efbafc0cecba410066edbaf80c66b875dcec8066efbafc0cb006ee2636660ff2c945", 0x43}], 0x1, 0x22, &(0x7f00000001c0)=[@vmwrite={0x8, 0x0, 0xfff, 0x0, 0x5, 0x0, 0x6, 0x0, 0x7}, @cr0={0x0, 0x20}], 0x2) epoll_create1(0x80000) 09:39:23 executing program 2: r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0x0, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7, 0x0) ioctl$UI_BEGIN_FF_ERASE(0xffffffffffffffff, 0xc00c55ca, 0x0) ioctl$BLKPG(r0, 0x40140921, &(0x7f0000000200)={0x0, 0x1f, 0x0, 0x0}) ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000080)) write$RDMA_USER_CM_CMD_GET_EVENT(0xffffffffffffffff, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1182.770000] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1182.770011] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1182.770016] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1182.770021] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1182.770026] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1182.770032] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:23 executing program 2: r0 = socket$inet6(0xa, 0x2100000000000002, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000040)=ANY=[], 0x0) fgetxattr(r0, &(0x7f0000000080)=@random={'os2.', 'eth0selinux/procvmnet0\x00'}, &(0x7f00000000c0)=""/168, 0xa8) 09:39:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x1a19}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000140)=@assoc_value={r2, 0x6}, 0x8) r3 = socket(0x40000000015, 0x805, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000180)={0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f00000001c0)={r4, 0x80000, r1}) getsockopt(r3, 0x114, 0x5, &(0x7f0000af0fe7)=""/13, &(0x7f0000000000)=0xfcfe) 09:39:23 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r1, 0x4, 0x60fc) ftruncate(r1, 0x48207) r2 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0xffff, 0x4000008}) lsetxattr$security_evm(&(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='security.evm\x00', &(0x7f0000000100)=@md5={0x1, "d60a451d72bc91e926d7641b7394b51c"}, 0x11, 0x1) sendfile(r1, r2, 0x0, 0x80000000000400) 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x20, 0x10, 0x409}, 0x20}}, 0x0) 09:39:23 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0) sendmsg$unix(r0, &(0x7f0000001780)={&(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, &(0x7f0000001700)=[{&(0x7f00000002c0)="3ee2ec2296c1b7caf65df124cbbb6da3a0d9147051db22cb02fa51ec51066598d9f711e2aa7eb52f67309437683acfdce41086e3f97b88abd0733a2d8dc76c4f986a969713cfcb30fba1d99e019c2951a8a3aa870e8818f33310be850234c7ef3f2ac5b27b7bec429c3ab600604857ae8a71bfb6a2254440e4a8878db5b93c124960a0e449ce315d8dc4cdd5853f1376e580476fcb68d83c25b42278d819e09ab86ee8823dd0e558369fc2b336b467a037eff1f57b3e1b5e5d3c7ba70a4e75ee443fa681f997b4ab", 0xc8}, {&(0x7f00000003c0)="32b22805eb1e1a6a1b758162602b80942dd0309b0a3ab223db9a6033b3c9f953438812c67b05fd1867961a62f20aed8e603c4a5e7fb0f1ca8340d88cd83efd47fac84feac87bcfbea77214975d1dc029135172e53913e3fe2a30cae2aab6c8f5253c01a4b8f7eac0dbd4d558f0f245f0b8ddce2bf88a9edd38ee462ebf8f917d75bbccd7e8e5c111299f5cd8db47441ca5f98ce347db07e054c59ea1d830b1577ad4f88738377dee209d5ac625b316ab2b04d78902cdb45b81585d8a42dcc94a3f57ce769465e6cf06a65fa03ed15ad27da10d5d91d59ab21b9667463e9b2727aef7ff7f25e47cb7096e681a95bf4f5103ef005a8816bc78a0", 0xf9}, {&(0x7f00000004c0)="9169dc3dbd35e9c65ae4d16e218cb5297c18a3545089ff36d03f6bcbffeb2628bfc7f2e9612f6ed737623e83e3136cb08164da016ad9638e4c665056c26b91285439cec399ca5117b67c8db83cf924d5", 0x50}, {&(0x7f0000000540)="f9120cb75651f1243b798bd62a8cce158ce53bb2909e89402ab3b923e05a56d2da2c6e900b1bab9dfd2a2d3f8ba4e5b57729271d3b7794f0670eac80e3afb4f4ba1fad4c9415cbd2e3a8ea5627cf383868e760672f8421ef783130e769a3d2819da88039906130495f999f53892e55474d13", 0x72}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="c7024fcb740fcbe69e2c7256ca46a7024239d5ac4eb87e92c23f490d05291eea65cc86c6d88c94257fc9fe537e04b21720ceb63686ec17bab6eac2168befe197ce7b0bf95df962d4e29ad7c6f3d538878ce2b72263fae4e0ec35a6139d1c953823a6b2f675a51b178fd3a0010d0bf561793ed542efa3ebf4926b36313e4350a412e003421c32ab04073f254b9a753735e1c9174c7c5a719ff0d2bf", 0x9b}, {&(0x7f0000001680)="eefd1fcef425c34a39e4ba811f26a87a5c4f10174972cc852e96c5b20a334326240f8d4cb76239431949d6707bebc5886f9145ef0f89777425150d6e679e0255ff6f7f64e5ba888ac953eff1f7e39636248d221078d0ebe1424dd07865da", 0x5e}], 0x7, &(0x7f00000017c0)=ANY=[@ANYBLOB="280000000000000001000000010000001a714d2067ccc58af5ac24f96c8bcff223968d5b45c7c7f83951a5dc8abc592c8585600d592e5efbb8fdf617c960b1127e9abc5b2a0614d8079b472fdf79f5155dccac39f52b86f4bead4038c13716409d508c51b0c1512a26b1ac593da2aeadd5db8c7548990e8dd47202d5ba489d0fee5d3234d66fcbbbc180676dfd67961e42c2659037171138197f5e35aac99a8afcd8ad76f1d9dedfdf20f6d4b8410accdbcf14c1424510c8793dc508d62c59d77b512b4da98e02bc83ceb6ed87ceb42baa4e25a49c51a9e04067", @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0], 0x28, 0x881}, 0x20000000) bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240)={0x0, 0xfffffffffffffff9}, &(0x7f00000018c0)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000001900)={r4, 0x1}, 0x8) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r5 = accept(r1, 0x0, 0x0) write(r5, &(0x7f00000000c0)='\a', 0x1) syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x5, 0x20000) recvmmsg(r0, &(0x7f0000001000), 0x3fffffffffffefe, 0x0, 0x0) [ 1183.062294] FAULT_INJECTION: forcing a failure. [ 1183.062294] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1183.095089] audit: type=1804 audit(1555925963.614:170): pid=5327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir027668275/syzkaller.jpoPJ9/1356/bus" dev="sda1" ino=17394 res=1 [ 1183.128640] CPU: 0 PID: 5312 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1183.135711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1183.135716] Call Trace: [ 1183.135737] dump_stack+0x138/0x19c [ 1183.135758] should_fail.cold+0x10f/0x159 [ 1183.135770] ? __might_sleep+0x93/0xb0 [ 1183.135783] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1183.135795] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1183.135808] ? mmu_topup_memory_caches+0x86/0x320 [ 1183.135824] ? rcu_read_lock_sched_held+0x110/0x130 [ 1183.135838] alloc_pages_current+0xec/0x1e0 [ 1183.135852] __get_free_pages+0xf/0x40 [ 1183.135861] mmu_topup_memory_caches+0x194/0x320 [ 1183.135875] kvm_mmu_load+0x21/0xd50 [ 1183.135885] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1183.135899] vcpu_enter_guest+0x2ea0/0x5270 [ 1183.135912] ? save_trace+0x290/0x290 [ 1183.159833] ? lock_downgrade+0x6e0/0x6e0 [ 1183.159848] ? find_held_lock+0x100/0x130 [ 1183.159864] ? emulator_read_emulated+0x50/0x50 [ 1183.159874] ? lock_acquire+0x16f/0x430 [ 1183.159885] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1183.159901] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.237544] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.242578] kvm_vcpu_ioctl+0x401/0xd10 [ 1183.246649] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1183.250810] ? trace_hardirqs_on+0x10/0x10 [ 1183.255050] ? __f_unlock_pos+0x19/0x20 [ 1183.259032] ? save_trace+0x290/0x290 [ 1183.262843] ? __f_unlock_pos+0x19/0x20 [ 1183.266915] ? __fget+0x210/0x370 [ 1183.270480] ? find_held_lock+0x35/0x130 [ 1183.274573] ? __fget+0x210/0x370 [ 1183.278083] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1183.283239] do_vfs_ioctl+0x7b9/0x1070 [ 1183.287547] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1183.292307] ? lock_downgrade+0x6e0/0x6e0 [ 1183.296474] ? ioctl_preallocate+0x1c0/0x1c0 [ 1183.300884] ? __fget+0x237/0x370 [ 1183.304332] ? security_file_ioctl+0x8f/0xc0 [ 1183.308817] SyS_ioctl+0x8f/0xc0 [ 1183.312195] ? do_vfs_ioctl+0x1070/0x1070 [ 1183.316472] do_syscall_64+0x1eb/0x630 [ 1183.320356] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1183.325205] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1183.330385] RIP: 0033:0x458c29 [ 1183.333558] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1183.341260] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1183.348531] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1183.355810] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:39:23 executing program 5 (fault-call:5 fault-nth:67): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:23 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x20, 0x10, 0x409}, 0x20}}, 0x0) 09:39:23 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0) sendmsg$unix(r0, &(0x7f0000001780)={&(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, &(0x7f0000001700)=[{&(0x7f00000002c0)="3ee2ec2296c1b7caf65df124cbbb6da3a0d9147051db22cb02fa51ec51066598d9f711e2aa7eb52f67309437683acfdce41086e3f97b88abd0733a2d8dc76c4f986a969713cfcb30fba1d99e019c2951a8a3aa870e8818f33310be850234c7ef3f2ac5b27b7bec429c3ab600604857ae8a71bfb6a2254440e4a8878db5b93c124960a0e449ce315d8dc4cdd5853f1376e580476fcb68d83c25b42278d819e09ab86ee8823dd0e558369fc2b336b467a037eff1f57b3e1b5e5d3c7ba70a4e75ee443fa681f997b4ab", 0xc8}, {&(0x7f00000003c0)="32b22805eb1e1a6a1b758162602b80942dd0309b0a3ab223db9a6033b3c9f953438812c67b05fd1867961a62f20aed8e603c4a5e7fb0f1ca8340d88cd83efd47fac84feac87bcfbea77214975d1dc029135172e53913e3fe2a30cae2aab6c8f5253c01a4b8f7eac0dbd4d558f0f245f0b8ddce2bf88a9edd38ee462ebf8f917d75bbccd7e8e5c111299f5cd8db47441ca5f98ce347db07e054c59ea1d830b1577ad4f88738377dee209d5ac625b316ab2b04d78902cdb45b81585d8a42dcc94a3f57ce769465e6cf06a65fa03ed15ad27da10d5d91d59ab21b9667463e9b2727aef7ff7f25e47cb7096e681a95bf4f5103ef005a8816bc78a0", 0xf9}, {&(0x7f00000004c0)="9169dc3dbd35e9c65ae4d16e218cb5297c18a3545089ff36d03f6bcbffeb2628bfc7f2e9612f6ed737623e83e3136cb08164da016ad9638e4c665056c26b91285439cec399ca5117b67c8db83cf924d5", 0x50}, {&(0x7f0000000540)="f9120cb75651f1243b798bd62a8cce158ce53bb2909e89402ab3b923e05a56d2da2c6e900b1bab9dfd2a2d3f8ba4e5b57729271d3b7794f0670eac80e3afb4f4ba1fad4c9415cbd2e3a8ea5627cf383868e760672f8421ef783130e769a3d2819da88039906130495f999f53892e55474d13", 0x72}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="c7024fcb740fcbe69e2c7256ca46a7024239d5ac4eb87e92c23f490d05291eea65cc86c6d88c94257fc9fe537e04b21720ceb63686ec17bab6eac2168befe197ce7b0bf95df962d4e29ad7c6f3d538878ce2b72263fae4e0ec35a6139d1c953823a6b2f675a51b178fd3a0010d0bf561793ed542efa3ebf4926b36313e4350a412e003421c32ab04073f254b9a753735e1c9174c7c5a719ff0d2bf", 0x9b}, {&(0x7f0000001680)="eefd1fcef425c34a39e4ba811f26a87a5c4f10174972cc852e96c5b20a334326240f8d4cb76239431949d6707bebc5886f9145ef0f89777425150d6e679e0255ff6f7f64e5ba888ac953eff1f7e39636248d221078d0ebe1424dd07865da", 0x5e}], 0x7, &(0x7f00000017c0)=ANY=[@ANYBLOB="280000000000000001000000010000001a714d2067ccc58af5ac24f96c8bcff223968d5b45c7c7f83951a5dc8abc592c8585600d592e5efbb8fdf617c960b1127e9abc5b2a0614d8079b472fdf79f5155dccac39f52b86f4bead4038c13716409d508c51b0c1512a26b1ac593da2aeadd5db8c7548990e8dd47202d5ba489d0fee5d3234d66fcbbbc180676dfd67961e42c2659037171138197f5e35aac99a8afcd8ad76f1d9dedfdf20f6d4b8410accdbcf14c1424510c8793dc508d62c59d77b512b4da98e02bc83ceb6ed87ceb42baa4e25a49c51a9e04067", @ANYRES32=r2, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0], 0x28, 0x881}, 0x20000000) bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240)={0x0, 0xfffffffffffffff9}, &(0x7f00000018c0)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000001900)={r4, 0x1}, 0x8) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000040)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r5 = accept(r1, 0x0, 0x0) write(r5, &(0x7f00000000c0)='\a', 0x1) syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x5, 0x20000) recvmmsg(r0, &(0x7f0000001000), 0x3fffffffffffefe, 0x0, 0x0) [ 1183.363295] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1183.370557] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1183.478822] FAULT_INJECTION: forcing a failure. [ 1183.478822] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1183.497287] CPU: 1 PID: 5339 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1183.504256] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1183.514412] Call Trace: [ 1183.517006] dump_stack+0x138/0x19c [ 1183.520738] should_fail.cold+0x10f/0x159 [ 1183.525004] ? __might_sleep+0x93/0xb0 [ 1183.529002] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1183.533948] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1183.538994] ? mmu_topup_memory_caches+0x86/0x320 [ 1183.544042] ? rcu_read_lock_sched_held+0x110/0x130 [ 1183.549087] alloc_pages_current+0xec/0x1e0 [ 1183.553432] __get_free_pages+0xf/0x40 [ 1183.557328] mmu_topup_memory_caches+0x194/0x320 [ 1183.562099] kvm_mmu_load+0x21/0xd50 [ 1183.566000] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1183.570973] vcpu_enter_guest+0x2ea0/0x5270 [ 1183.575316] ? save_trace+0x290/0x290 [ 1183.579462] ? lock_downgrade+0x6e0/0x6e0 [ 1183.583616] ? find_held_lock+0x100/0x130 [ 1183.587848] ? emulator_read_emulated+0x50/0x50 [ 1183.592561] ? lock_acquire+0x16f/0x430 [ 1183.596616] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1183.601631] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.606465] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.611483] kvm_vcpu_ioctl+0x401/0xd10 [ 1183.615554] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1183.619757] ? trace_hardirqs_on+0x10/0x10 [ 1183.624115] ? __f_unlock_pos+0x19/0x20 [ 1183.628089] ? save_trace+0x290/0x290 [ 1183.631882] ? __f_unlock_pos+0x19/0x20 [ 1183.635866] ? __fget+0x210/0x370 [ 1183.639313] ? find_held_lock+0x35/0x130 [ 1183.643409] ? __fget+0x210/0x370 [ 1183.646855] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1183.651092] do_vfs_ioctl+0x7b9/0x1070 [ 1183.655166] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1183.659919] ? lock_downgrade+0x6e0/0x6e0 [ 1183.664059] ? ioctl_preallocate+0x1c0/0x1c0 [ 1183.668485] ? __fget+0x237/0x370 [ 1183.671986] ? security_file_ioctl+0x8f/0xc0 [ 1183.676402] SyS_ioctl+0x8f/0xc0 [ 1183.679766] ? do_vfs_ioctl+0x1070/0x1070 [ 1183.683961] do_syscall_64+0x1eb/0x630 [ 1183.687838] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1183.692677] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1183.698462] RIP: 0033:0x458c29 [ 1183.701636] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1183.709871] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1183.717159] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 09:39:24 executing program 1: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000400)={0x0, 0x55}, &(0x7f0000000440)=0x8) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000480)={r2, 0x8}, &(0x7f00000004c0)=0x8) sendto$inet(r1, 0x0, 0x0, 0x97cb06ebee444840, &(0x7f0000000080)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000500)={'filter\x00', 0x4}, 0x68) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x321) write$binfmt_elf64(r1, &(0x7f0000000040)=ANY=[], 0x379) sendto$inet(r1, &(0x7f00000005c0)="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", 0x1f8, 0x8c, 0x0, 0x0) preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/30, 0x1e}, {&(0x7f0000000140)=""/11, 0xb}, {&(0x7f00000001c0)=""/225, 0xe1}, {&(0x7f00000002c0)=""/251, 0xfb}], 0x4, 0x0) 09:39:24 executing program 2: lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000200)={{{@in6=@loopback, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@local}}, &(0x7f0000000180)=0xe8) r1 = syz_open_dev$sndpcmc(&(0x7f0000000300)='/dev/snd/pcmC#D#c\x00', 0x400, 0x101000) ioctl$SG_SET_TIMEOUT(r1, 0x2201, &(0x7f0000000340)=0xd7ab) setreuid(0x0, r0) r2 = memfd_create(&(0x7f00000001c0)='#! ', 0x1) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x72, 0x40) ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f0000000080)=0x35) 09:39:24 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_init_net_socket$ax25(0x3, 0x1, 0xcf) getsockopt$IPT_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x0, 0x42, &(0x7f0000000040)={'ah\x00'}, &(0x7f0000000080)=0x1e) 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x20, 0x10, 0x409}, 0x20}}, 0x0) 09:39:24 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) write$P9_RREADLINK(r1, &(0x7f0000000140)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) dup3(r0, r1, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) mkdir(&(0x7f0000000200)='./file0\x00', 0x0) write$P9_RVERSION(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="130094fae69e9cd8f1cc00395032303030b0ef480ccc2cc244f5f5604a847206e2afffde84d46402032dfcff0300eaff8d723c355a6bd2d657e091537a8586cccde6b7df3ef0cf9004c8e11fe15c3898713fc2ef48edc1762fb0030000000ba737af6e10205f01620df98eb7727b010a010001000000000057b98313af5d0cc35dd9f463d7181f440fe1d8737f0b892de8cd40e2280b1d2330c409b5bc8427fe87d41c016890aa3eb073a6d2ee78d531edf01b1f6802731a71ccd6bb7bf47775e432df26bc77515b9db7b82b48cc2e9ae0a0c51fb63a687ef2579cd8da76cc4c1457cbc11b718739c355ca6b4875a8fb1aa58dabe7333fb4d408ab63695a028afd1db50ff565e9c1edaadcbb2b6921d19653b97ae183c8527c3629bc5d04dead4ac1ef96cefa731991b46369d005600cfe242b650e3aed531718af59000000000000000000000000dec93d529a3639da746af738f491d1bad26181c5d2c8074856919ffe961988d63483ed0c2dc83eddbeaeab8c4acfc664c6ca93a56855c1c1ea4f8b3adfc3fb73bc586f10333f547ec3df82f77e4430d8f760437699e4605c40236f91b310a49c2f67d3abad9a968ee1da6fb9c2a25ab421110264aa2ce38e67e0268c36a7"], 0x13) set_tid_address(&(0x7f0000000280)) ioctl$PPPIOCATTACH(r2, 0x4004743d, &(0x7f00000002c0)=0x2) sched_setattr(0x0, &(0x7f0000000100)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) clock_nanosleep(0x0, 0x0, &(0x7f0000051ff0)={0x2000000000003}, 0x0) r3 = gettid() ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000080)=0x0) tgkill(r3, r4, 0x12) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000180), &(0x7f00000001c0)=0x4) 09:39:24 executing program 5 (fault-call:5 fault-nth:68): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1183.724516] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1183.731775] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1183.739035] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:24 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[@ANYBLOB="20000000320003070000000000000000000000000c00020000000ec8135dbf00"], 0x20}}, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x600000, 0x0) ioctl$CAPI_SET_FLAGS(r1, 0x80044324, &(0x7f0000000040)) 09:39:24 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x40, 0x0) ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000040)) syz_open_dev$sndtimer(&(0x7f0000000200)='/dev/snd/timer\x00', 0x0, 0x80100) 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4}}}]}, 0x30}}, 0x0) [ 1183.861380] FAULT_INJECTION: forcing a failure. [ 1183.861380] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1183.879653] CPU: 0 PID: 5355 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1183.886723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1183.896191] Call Trace: [ 1183.896211] dump_stack+0x138/0x19c [ 1183.896229] should_fail.cold+0x10f/0x159 [ 1183.896244] ? __might_sleep+0x93/0xb0 09:39:24 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x800448f0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x9}) r1 = open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x2) getpeername$ax25(r1, &(0x7f0000000080)={{0x3, @default}, [@null, @bcast, @bcast, @netrom, @null, @default, @remote, @rose]}, &(0x7f0000000100)=0x48) [ 1183.902447] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1183.902464] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1183.902475] ? mmu_topup_memory_caches+0x86/0x320 [ 1183.902488] ? rcu_read_lock_sched_held+0x110/0x130 [ 1183.902501] alloc_pages_current+0xec/0x1e0 [ 1183.902514] __get_free_pages+0xf/0x40 [ 1183.902524] mmu_topup_memory_caches+0x194/0x320 [ 1183.902537] kvm_mmu_load+0x21/0xd50 [ 1183.902547] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1183.902560] vcpu_enter_guest+0x2ea0/0x5270 [ 1183.902572] ? save_trace+0x290/0x290 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4}}}]}, 0x30}}, 0x0) [ 1183.960939] ? lock_downgrade+0x6e0/0x6e0 [ 1183.965097] ? find_held_lock+0x100/0x130 [ 1183.969274] ? emulator_read_emulated+0x50/0x50 [ 1183.974052] ? lock_acquire+0x16f/0x430 [ 1183.978138] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1183.984341] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.989206] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1183.994361] kvm_vcpu_ioctl+0x401/0xd10 [ 1183.998357] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.002543] ? trace_hardirqs_on+0x10/0x10 [ 1184.002555] ? __f_unlock_pos+0x19/0x20 09:39:24 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4}}}]}, 0x30}}, 0x0) [ 1184.002566] ? save_trace+0x290/0x290 [ 1184.014579] ? __f_unlock_pos+0x19/0x20 [ 1184.014592] ? __fget+0x210/0x370 [ 1184.014603] ? find_held_lock+0x35/0x130 [ 1184.014613] ? __fget+0x210/0x370 [ 1184.029651] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.033807] do_vfs_ioctl+0x7b9/0x1070 [ 1184.037705] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1184.042468] ? lock_downgrade+0x6e0/0x6e0 [ 1184.046628] ? ioctl_preallocate+0x1c0/0x1c0 [ 1184.051060] ? __fget+0x237/0x370 [ 1184.054536] ? security_file_ioctl+0x8f/0xc0 [ 1184.058973] SyS_ioctl+0x8f/0xc0 [ 1184.062384] ? do_vfs_ioctl+0x1070/0x1070 [ 1184.066543] do_syscall_64+0x1eb/0x630 [ 1184.070545] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1184.075410] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1184.080686] RIP: 0033:0x458c29 [ 1184.083876] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1184.091601] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1184.098875] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 09:39:24 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) sendto$unix(r2, &(0x7f0000000140), 0x14ded905162a6a4b, 0x0, 0x0, 0x195) recvmsg$kcm(r2, &(0x7f00000005c0)={&(0x7f0000000080)=@sco, 0x80, &(0x7f0000000580)=[{&(0x7f0000000480)=""/143, 0xfffffdde}], 0x8}, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x420000, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) ioctl$VIDIOC_QBUF(r3, 0xc058560f, &(0x7f00000001c0)={0x8, 0xb, 0x4, 0x8, {r4, r5/1000+30000}, {0x2, 0xc, 0x4, 0x20, 0x2, 0x1, "e80e4113"}, 0x1f, 0x6, @planes=&(0x7f0000000180)={0x6, 0x8, @fd=r2, 0x4}, 0x4}) 09:39:24 executing program 2: r0 = socket$unix(0x1, 0x801, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) shutdown(r1, 0x0) connect(r0, &(0x7f0000985ff8)=@un=@abs={0x1}, 0x8) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x22000, 0x0) write$FUSE_STATFS(r2, &(0x7f0000000040)={0x60, 0x0, 0x5, {{0xed69, 0xa6, 0x9, 0x2, 0x7fff, 0xf0d6, 0x61, 0x2}}}, 0x60) ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f00000000c0)={0x0, 0x0, {0x5, 0x0, 0x300f, 0xf, 0x9, 0x0, 0x2, 0x1}}) 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4}}}]}, 0x30}}, 0x0) 09:39:24 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = getpgid(0xffffffffffffffff) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) nanosleep(&(0x7f00000003c0)={r2, r3+30000000}, &(0x7f0000000400)) getpgid(r1) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/policy\x00', 0x0, 0x0) connect$netrom(r4, &(0x7f00000000c0)={{0x3, @bcast, 0x2}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x48) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r4, 0x111, 0x1, 0x9, 0x4) clone(0x2102009ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@nat={'nat\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06\x00', 0x19, 0x1, 0x138, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x1b0) 09:39:24 executing program 1: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x40000, 0x0) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000080), &(0x7f00000000c0)=0x4) connect$inet6(0xffffffffffffffff, 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) recvmsg(0xffffffffffffff9c, &(0x7f0000002a40)={0x0, 0x0, &(0x7f00000028c0)=[{0x0}, {0x0}, {0x0}], 0x3, &(0x7f0000002940)=""/220, 0xdc}, 0x0) socket$kcm(0x2, 0x7, 0x84) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000300)) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000003400)={{{@in6=@ipv4, @in=@remote}}, {{@in=@local}, 0x0, @in=@local}}, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000280)=0x8, 0x4) prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='ns/mnt\x00') sendmsg$unix(0xffffffffffffffff, 0x0, 0x80) unshare(0x8020000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x7fffe, 0x0) accept4$inet(0xffffffffffffff9c, &(0x7f00000003c0)={0x2, 0x0, @remote}, &(0x7f0000000400)=0x10, 0x0) ioctl$UI_BEGIN_FF_ERASE(r1, 0xc00c55ca, &(0x7f0000000000)={0x0, 0x800}) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') setns(r2, 0x0) clone(0x10062101, &(0x7f0000000040), 0x0, 0x0, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100)=0x0) ptrace$setregs(0xf, r3, 0x2, &(0x7f0000000180)="c6c7b182334c84e5ac13ebd8a3f241367bff382cc67c57e12eef6ea1e2c38d6481fe6aa1b1b16a8a8952c1685a7834049241de7036e702965d519521e6bbf9587eb8ab342b518e8be250dac9f28560a23be76d5b2c91247c69c3448426afcd86eda081a5cb3433f21f8cd12e9bb68554916face1b6746ef6275c07e1208a7c4e9560906c63b9cbf7672910311dca1c849d542e804ebd79c598317f26be8ca4471bc267310406659f4e57900e37a863d786051c8ccf081a6f391a74b8ac3716e4a938b238a31e2974fea4a620a4691ed654efd62fe650") sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x8004) [ 1184.106172] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1184.113447] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1184.120814] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:24 executing program 5 (fault-call:5 fault-nth:69): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4, 0x2, [@gre_common_policy]}}}]}, 0x30}}, 0x0) 09:39:24 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000000100)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f00000002c0)=""/186) fsetxattr$security_smack_transmute(r0, &(0x7f0000000000)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000040)='TRUE', 0x4, 0x1) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vfio/vfio\x00', 0x408202, 0x0) getsockname$ax25(r1, &(0x7f0000000140)={{0x3, @bcast}, [@default, @null, @rose, @null, @rose, @netrom, @remote, @null]}, &(0x7f00000000c0)=0x48) 09:39:24 executing program 2: r0 = socket$kcm(0x2, 0x10002, 0x73) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000100)="baf80c66b89a8c5b8a66efbafc0ced0fc271004b660f383d9a00382e65670f017a3e640f01df660f3834f32e0fb44f0b66b8f80000000f23d00f21f86635000000070f23f8260f5bd30f72f34f", 0x4d}], 0x1, 0x0, &(0x7f0000000180)=[@cr0={0x0, 0x10}], 0x1) getsockname(r0, 0x0, &(0x7f00000000c0)) 09:39:24 executing program 1: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x40000, 0x0) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000080), &(0x7f00000000c0)=0x4) connect$inet6(0xffffffffffffffff, 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) recvmsg(0xffffffffffffff9c, &(0x7f0000002a40)={0x0, 0x0, &(0x7f00000028c0)=[{0x0}, {0x0}, {0x0}], 0x3, &(0x7f0000002940)=""/220, 0xdc}, 0x0) socket$kcm(0x2, 0x7, 0x84) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000300)) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000003400)={{{@in6=@ipv4, @in=@remote}}, {{@in=@local}, 0x0, @in=@local}}, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000280)=0x8, 0x4) prctl$PR_SET_NAME(0xf, &(0x7f00000002c0)='ns/mnt\x00') sendmsg$unix(0xffffffffffffffff, 0x0, 0x80) unshare(0x8020000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, 0x0, 0x7fffe, 0x0) accept4$inet(0xffffffffffffff9c, &(0x7f00000003c0)={0x2, 0x0, @remote}, &(0x7f0000000400)=0x10, 0x0) ioctl$UI_BEGIN_FF_ERASE(r1, 0xc00c55ca, &(0x7f0000000000)={0x0, 0x800}) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') setns(r2, 0x0) clone(0x10062101, &(0x7f0000000040), 0x0, 0x0, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000100)=0x0) ptrace$setregs(0xf, r3, 0x2, &(0x7f0000000180)="c6c7b182334c84e5ac13ebd8a3f241367bff382cc67c57e12eef6ea1e2c38d6481fe6aa1b1b16a8a8952c1685a7834049241de7036e702965d519521e6bbf9587eb8ab342b518e8be250dac9f28560a23be76d5b2c91247c69c3448426afcd86eda081a5cb3433f21f8cd12e9bb68554916face1b6746ef6275c07e1208a7c4e9560906c63b9cbf7672910311dca1c849d542e804ebd79c598317f26be8ca4471bc267310406659f4e57900e37a863d786051c8ccf081a6f391a74b8ac3716e4a938b238a31e2974fea4a620a4691ed654efd62fe650") sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, 0x0, 0x8004) 09:39:24 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4, 0x2, [@gre_common_policy]}}}]}, 0x30}}, 0x0) 09:39:24 executing program 0: openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self\x00', 0x200880, 0x0) r0 = msgget$private(0x0, 0x220) msgrcv(r0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) [ 1184.326445] FAULT_INJECTION: forcing a failure. [ 1184.326445] name fail_page_alloc, interval 1, probability 0, space 0, times 0 09:39:24 executing program 2: r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x103, 0x40000) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x9, @win={{0x0, 0x0, 0x34325241}, 0x0, 0x0, 0x0, 0x0, 0x0}}) openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x6000, 0x101) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='pids.events\x00', 0x0, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/btrfs-control\x00', 0x2000, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f00000003c0)=0x0) capget(&(0x7f0000000080)={0x0, r2}, &(0x7f00000000c0)={0x833, 0x8, 0x80000000, 0x0, 0x81, 0x10001}) [ 1184.394611] CPU: 1 PID: 5393 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1184.401711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1184.411267] Call Trace: [ 1184.413880] dump_stack+0x138/0x19c [ 1184.417527] should_fail.cold+0x10f/0x159 [ 1184.421810] ? __might_sleep+0x93/0xb0 [ 1184.425712] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1184.430481] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1184.435505] ? mmu_topup_memory_caches+0x86/0x320 [ 1184.440393] ? rcu_read_lock_sched_held+0x110/0x130 [ 1184.445416] alloc_pages_current+0xec/0x1e0 [ 1184.449745] __get_free_pages+0xf/0x40 [ 1184.453810] mmu_topup_memory_caches+0x194/0x320 [ 1184.459022] kvm_mmu_load+0x21/0xd50 [ 1184.462736] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1184.467612] vcpu_enter_guest+0x2ea0/0x5270 [ 1184.471936] ? save_trace+0x290/0x290 [ 1184.475735] ? lock_downgrade+0x6e0/0x6e0 [ 1184.479890] ? find_held_lock+0x100/0x130 [ 1184.484572] ? emulator_read_emulated+0x50/0x50 [ 1184.489330] ? lock_acquire+0x16f/0x430 09:39:24 executing program 4: r0 = syz_open_dev$vbi(&(0x7f0000000400)='/dev/vbi#\x00', 0x1, 0x2) r1 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz', 0x1}, &(0x7f0000000240)="39d6efdff0de2d79b27816a55c7342a231a81c72c74d3a13008e8dca25cf984c3a5a01f07594201aa2b8445244fff4cb159198548bfc44197c73e6b71ad13dc193e8659059d5538c03c3fec16ccbb001fa5b58b369322d58072c618ca578273d00c0916a0df35d3a9e289f516903523c344f8a4da9cc36b74d2fafcf0ca053c90567f908b773aefd647868", 0x3fc, 0xfffffffffffffffe) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f0000000140)='keyring\x00', 0x0, 0x0, 0x0, 0x0) keyctl$update(0x2, r1, &(0x7f0000000440)="c0ca1cdbaa1aedbbed80dddaa28e15b9449e2e82cca4244c40ffd0fd4e6631c7d3d86e1339de17344340b02dd527f2d8b3ae6c1db3594e657da33c3ec668f143974a65753472df5319a6b83e1e86b8f2666c61a2e700d1c1e0ae1fc52494bd4885a5c64e9007d39fa11313805290dd6342f9775f01a02ec88f6bee22f25a377a9b143abba1264586d2779088006d5f9be82b00f10287031623f73470264cc5897f18f357aad6deb3883da88ae2266664933785a3ce72bb224a441437ea93c21782", 0xc1) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@mcast1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@remote}}, &(0x7f0000000100)=0xe8) bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x17, 0x9, 0x2, 0x100000001, 0x4, 0x1, 0x400, [], r2, r0, 0x4, 0x95e}, 0x3c) r3 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000005c0)={'syz'}, &(0x7f00000000c0), 0x9a, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r3, r1, r3}, &(0x7f00000009c0)=""/240, 0x4a3, 0x0) 09:39:25 executing program 4: r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x1f, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000000c0)={0x0, @aes256}) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='\x00\x00\x00\x00\x05\xa3\x00\x00\x00\x00\x00\x00\x00') fstat(r1, &(0x7f0000000100)) syz_init_net_socket$ax25(0x3, 0x5, 0xff) ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000000)=0x2e) 09:39:25 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x400000032, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$EBT_SO_GET_INIT_INFO(r2, 0x0, 0x82, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000001540)=0x47) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x20000, 0x0) ioctl$VIDIOC_S_AUDIO(r3, 0x40345622, &(0x7f0000000140)={0x6, "ad1e80efbc7747d970518a050b2328cb2dd45270336479c92bcf26f92b9f387c", 0x3, 0x1}) close(r2) close(r1) r4 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/checkreqprot\x00', 0x40000, 0x0) ioctl$UI_SET_RELBIT(r4, 0x40045566, 0xb) [ 1184.493564] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1184.498608] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1184.503454] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1184.508489] kvm_vcpu_ioctl+0x401/0xd10 [ 1184.512478] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.516635] ? trace_hardirqs_on+0x10/0x10 [ 1184.520877] ? __f_unlock_pos+0x19/0x20 [ 1184.525458] ? save_trace+0x290/0x290 [ 1184.529279] ? __f_unlock_pos+0x19/0x20 [ 1184.533259] ? __fget+0x210/0x370 [ 1184.536728] ? find_held_lock+0x35/0x130 [ 1184.540797] ? __fget+0x210/0x370 09:39:25 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='ip6gre0\x00', 0x10) r1 = socket$l2tp(0x18, 0x1, 0x1) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000080)={'TPROXY\x00'}, &(0x7f00000000c0)=0x1e) connect$l2tp(r1, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) sendmmsg(r1, &(0x7f0000005fc0)=[{{&(0x7f0000005680)=@sco, 0x80, &(0x7f0000005b00)}}, {{&(0x7f0000005b80)=@l2, 0x80, &(0x7f0000005c40), 0x1f4, &(0x7f0000005c80), 0x3a00}}], 0x3e8, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") [ 1184.544262] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.548420] do_vfs_ioctl+0x7b9/0x1070 [ 1184.552319] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1184.557271] ? lock_downgrade+0x6e0/0x6e0 [ 1184.561429] ? ioctl_preallocate+0x1c0/0x1c0 [ 1184.565858] ? __fget+0x237/0x370 [ 1184.569375] ? security_file_ioctl+0x8f/0xc0 [ 1184.573803] SyS_ioctl+0x8f/0xc0 [ 1184.577270] ? do_vfs_ioctl+0x1070/0x1070 [ 1184.581466] do_syscall_64+0x1eb/0x630 [ 1184.585535] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1184.590392] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1184.595780] RIP: 0033:0x458c29 [ 1184.598976] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1184.606718] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1184.614119] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1184.621407] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1184.628685] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1184.636231] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 09:39:25 executing program 5 (fault-call:5 fault-nth:70): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) prctl$PR_GET_FP_MODE(0x2e) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x8003, 0x0) ioctl$sock_inet_sctp_SIOCINQ(r1, 0x541b, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) syncfs(r0) futimesat(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={{r3, r4/1000+30000}, {0x77359400}}) r5 = socket(0x10, 0x6, 0x0) ioctl$DRM_IOCTL_MARK_BUFS(r1, 0x40206417, &(0x7f00000001c0)={0x1, 0x100000000, 0x0, 0x7, 0x2, 0x401}) sendmsg$nl_route(r5, &(0x7f0000000740)={0x0, 0x1c, &(0x7f0000000700)={&(0x7f0000002400)=@bridge_getneigh={0x20, 0x1e, 0x601, 0x0, 0x0, {0x1b00}}, 0x20}}, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r6, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="05000000000000000000004070d7ef0ab09cfa3054f9b7c48ee027e0bfd42c0207725644f815bc00a900000000"]) ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x2000000000486, 0x0, 0x80000021}]}) 09:39:25 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x4, 0x2, [@gre_common_policy]}}}]}, 0x30}}, 0x0) 09:39:25 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) fdatasync(r0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x800000000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000015c0)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0xb) r2 = dup2(r1, r1) sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="8b90936d300081452b05eece1d72024c6c7989"], 0x1}}, 0x44801) sendmsg$FOU_CMD_DEL(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0xc0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0) openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/validatetrans\x00', 0x1, 0x0) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, 0x0) r3 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uhid\x00', 0x0, 0x0) write$P9_RWSTAT(0xffffffffffffffff, 0x0, 0x0) read(r4, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000480)=""/136, 0x88}, 0xbf}, {{0x0, 0x0, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000580)=""/225, 0xe1}, {&(0x7f0000000800)}], 0x3, &(0x7f00000008c0)=""/91, 0x5b}, 0x3}], 0x2, 0x40000040, 0x0) r5 = accept4(r3, 0x0, 0x0, 0x0) setsockopt$bt_hci_HCI_TIME_STAMP(r5, 0x0, 0x3, &(0x7f0000000700)=0x8, 0x4) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz0\'', 0x1ff) getsockopt$TIPC_IMPORTANCE(r5, 0x10f, 0x7f, 0x0, &(0x7f0000000180)) setxattr$trusted_overlay_redirect(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='trusted.overlay.redirect\x00', &(0x7f0000000440)='\x00', 0x1, 0x3) dup2(r3, r4) getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, &(0x7f0000000680), &(0x7f0000000300)=0x68) perf_event_open(0x0, 0x0, 0x4000, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000040)) 09:39:25 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) flistxattr(r0, &(0x7f0000000100)=""/8, 0x8) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000000)={r0}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000040)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x1c) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000000c0)={r2, 0x3}, &(0x7f0000000140)=0x8) 09:39:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x10021, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='cmdline\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x1000000) [ 1184.808076] FAULT_INJECTION: forcing a failure. [ 1184.808076] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1184.835129] CPU: 0 PID: 5447 Comm: syz-executor.5 Not tainted 4.14.112 #2 [ 1184.842110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1184.851726] Call Trace: [ 1184.854336] dump_stack+0x138/0x19c [ 1184.858003] should_fail.cold+0x10f/0x159 [ 1184.858016] ? __might_sleep+0x93/0xb0 [ 1184.858031] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1184.870748] ? __alloc_pages_slowpath+0x2930/0x2930 [ 1184.875861] ? mmu_topup_memory_caches+0x86/0x320 [ 1184.880718] ? rcu_read_lock_sched_held+0x110/0x130 [ 1184.885839] alloc_pages_current+0xec/0x1e0 [ 1184.887847] FAULT_INJECTION: forcing a failure. [ 1184.887847] name failslab, interval 1, probability 0, space 0, times 0 [ 1184.890182] __get_free_pages+0xf/0x40 [ 1184.890195] mmu_topup_memory_caches+0x194/0x320 [ 1184.890211] kvm_mmu_load+0x21/0xd50 [ 1184.890222] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 1184.890236] vcpu_enter_guest+0x2ea0/0x5270 [ 1184.890247] ? save_trace+0x290/0x290 [ 1184.890255] ? lock_downgrade+0x6e0/0x6e0 [ 1184.890266] ? find_held_lock+0x100/0x130 [ 1184.890277] ? emulator_read_emulated+0x50/0x50 [ 1184.890286] ? lock_acquire+0x16f/0x430 [ 1184.890297] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 1184.890316] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1184.890324] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 1184.890343] kvm_vcpu_ioctl+0x401/0xd10 [ 1184.910398] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.910410] ? trace_hardirqs_on+0x10/0x10 [ 1184.910421] ? __f_unlock_pos+0x19/0x20 [ 1184.910433] ? save_trace+0x290/0x290 [ 1184.910443] ? __f_unlock_pos+0x19/0x20 [ 1184.910455] ? __fget+0x210/0x370 [ 1184.910464] ? find_held_lock+0x35/0x130 [ 1184.910473] ? __fget+0x210/0x370 [ 1184.910484] ? kvm_vcpu_block+0xbc0/0xbc0 [ 1184.910497] do_vfs_ioctl+0x7b9/0x1070 [ 1184.910511] ? selinux_file_mprotect+0x5d0/0x5d0 [ 1185.007408] ? lock_downgrade+0x6e0/0x6e0 [ 1185.011547] ? ioctl_preallocate+0x1c0/0x1c0 [ 1185.015956] ? __fget+0x237/0x370 [ 1185.019399] ? security_file_ioctl+0x8f/0xc0 [ 1185.023879] SyS_ioctl+0x8f/0xc0 [ 1185.027238] ? do_vfs_ioctl+0x1070/0x1070 [ 1185.031377] do_syscall_64+0x1eb/0x630 [ 1185.035266] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1185.040184] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1185.045361] RIP: 0033:0x458c29 [ 1185.048535] RSP: 002b:00007f8e984b1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 09:39:25 executing program 3 (fault-call:1 fault-nth:0): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:25 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'nr0\x01\x00', 0x3001}) r1 = dup(r0) ioctl$TUNSETLINK(r1, 0x400454cd, 0x306) r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r2) ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x3, r0}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000180)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xec\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\r\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc4\x05\x12\x0fn]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83\xf2\xf3\xcf7\x8aCZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x982\xeck+8Dk;\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x14\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95\xfe\xc5\xaa\x11\x14\x1fP\x89\xf2\xca\x97\xbb\xe0u\x12L\x9b\x1f\xf6P\rSj\x95\xd9o\x03\xd4\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85') [ 1185.056317] RAX: ffffffffffffffda RBX: 00007f8e984b1c90 RCX: 0000000000458c29 [ 1185.063658] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1185.071098] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1185.078367] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f8e984b26d4 [ 1185.085796] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000006 [ 1185.109617] CPU: 1 PID: 5456 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1185.116682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1185.126155] Call Trace: [ 1185.128759] dump_stack+0x138/0x19c [ 1185.132408] should_fail.cold+0x10f/0x159 [ 1185.132426] should_failslab+0xdb/0x130 [ 1185.132441] kmem_cache_alloc_node+0x28a/0x780 [ 1185.132461] __alloc_skb+0x9c/0x500 [ 1185.132471] ? skb_scrub_packet+0x4b0/0x4b0 [ 1185.132486] ? netlink_autobind.isra.0+0x1c9/0x290 09:39:25 executing program 5 (fault-call:5 fault-nth:71): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1185.140718] netlink_sendmsg+0x874/0xc60 [ 1185.140736] ? netlink_unicast+0x780/0x780 [ 1185.140752] ? security_socket_sendmsg+0x8f/0xc0 [ 1185.140762] ? netlink_unicast+0x780/0x780 [ 1185.140774] sock_sendmsg+0xd0/0x110 [ 1185.140785] ___sys_sendmsg+0x70c/0x850 [ 1185.140802] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1185.140812] ? __fget+0x210/0x370 [ 1185.140825] ? find_held_lock+0x35/0x130 [ 1185.176503] ? __fget+0x210/0x370 [ 1185.176522] ? lock_downgrade+0x6e0/0x6e0 [ 1185.176535] ? __fget+0x237/0x370 [ 1185.184207] ? __fget_light+0x172/0x1f0 [ 1185.184221] ? __fdget+0x1b/0x20 [ 1185.184234] ? sockfd_lookup_light+0xb4/0x160 [ 1185.184247] __sys_sendmsg+0xb9/0x140 [ 1185.184257] ? SyS_shutdown+0x180/0x180 [ 1185.184279] SyS_sendmsg+0x2d/0x50 [ 1185.211580] ? __sys_sendmsg+0x140/0x140 [ 1185.211594] do_syscall_64+0x1eb/0x630 [ 1185.211602] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1185.211620] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1185.211628] RIP: 0033:0x458c29 09:39:25 executing program 1: mkdir(&(0x7f0000000200)='./file1\x00', 0x0) symlink(0x0, &(0x7f0000000140)='.//ile0\x00') setsockopt$inet_dccp_int(0xffffffffffffffff, 0x21, 0x1b, &(0x7f0000000080)=0x7, 0x4) syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r0) open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f00000001c0)={@initdev={0xac, 0x1e, 0x1, 0x0}, @remote}, 0x8) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x89a1, 0x0) ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, 0x0) ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000280)={&(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0, 0x40, &(0x7f0000ffa000/0x4000)=nil, 0xe15}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000400)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$l2tp(0x18, 0x1, 0x1) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x8000, 0x0) r2 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) close(0xffffffffffffffff) write(r2, &(0x7f0000000400)="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", 0x200) sendfile(r2, r3, 0x0, 0x10000) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f0000000180)=ANY=[]) 09:39:25 executing program 2: r0 = socket$inet6(0xa, 0x80003, 0xff) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.ima\x00', &(0x7f0000000080)=@v1={0x2, "84b6fb2e0c9853a127c9f6"}, 0xc, 0x3) 09:39:25 executing program 3 (fault-call:1 fault-nth:1): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1185.211634] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1185.211644] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1185.211651] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1185.211657] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1185.211663] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1185.211669] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 [ 1185.326615] audit: type=1800 audit(1555925965.844:171): pid=5471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.1" name="file0" dev="sda1" ino=17377 res=0 09:39:25 executing program 4: openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video35\x00', 0x2, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3, 0x800) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000080)) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000280)={0x8, @pix_mp}) [ 1185.372169] FAULT_INJECTION: forcing a failure. [ 1185.372169] name failslab, interval 1, probability 0, space 0, times 0 [ 1185.423615] audit: type=1804 audit(1555925965.844:172): pid=5471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir477635136/syzkaller.1HaGEe/1199/file0" dev="sda1" ino=17377 res=1 [ 1185.454303] CPU: 1 PID: 5476 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1185.461536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1185.470902] Call Trace: 09:39:26 executing program 4: set_mempolicy(0x4003, &(0x7f0000000000)=0xffffffffffffffff, 0x100) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5473, &(0x7f0000000080)=0x8cea) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x1, 0x44031, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000140)='io\x00') [ 1185.473536] dump_stack+0x138/0x19c [ 1185.477183] should_fail.cold+0x10f/0x159 [ 1185.481462] should_failslab+0xdb/0x130 [ 1185.481479] kmem_cache_alloc_node_trace+0x283/0x770 [ 1185.481495] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1185.481510] __kmalloc_node_track_caller+0x3d/0x80 [ 1185.481524] __kmalloc_reserve.isra.0+0x40/0xe0 [ 1185.481536] __alloc_skb+0xcf/0x500 [ 1185.481546] ? skb_scrub_packet+0x4b0/0x4b0 [ 1185.481556] ? netlink_autobind.isra.0+0x1c9/0x290 [ 1185.481568] netlink_sendmsg+0x874/0xc60 [ 1185.481582] ? netlink_unicast+0x780/0x780 [ 1185.481598] ? security_socket_sendmsg+0x8f/0xc0 [ 1185.481607] ? netlink_unicast+0x780/0x780 [ 1185.481617] sock_sendmsg+0xd0/0x110 [ 1185.481628] ___sys_sendmsg+0x70c/0x850 [ 1185.514291] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1185.514303] ? __fget+0x210/0x370 [ 1185.514317] ? find_held_lock+0x35/0x130 [ 1185.514325] ? __fget+0x210/0x370 [ 1185.514342] ? lock_downgrade+0x6e0/0x6e0 [ 1185.532551] ? __fget+0x237/0x370 [ 1185.532568] ? __fget_light+0x172/0x1f0 [ 1185.532580] ? __fdget+0x1b/0x20 [ 1185.532594] ? sockfd_lookup_light+0xb4/0x160 [ 1185.532606] __sys_sendmsg+0xb9/0x140 [ 1185.532616] ? SyS_shutdown+0x180/0x180 [ 1185.532637] SyS_sendmsg+0x2d/0x50 [ 1185.532645] ? __sys_sendmsg+0x140/0x140 [ 1185.532656] do_syscall_64+0x1eb/0x630 [ 1185.532665] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1185.532681] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1185.609683] RIP: 0033:0x458c29 [ 1185.612903] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 09:39:26 executing program 2: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000140)={{0x80000001, 0x9}, 'port0\x00', 0x20, 0x5b956774198a3980, 0x55, 0xf834, 0x7, 0x0, 0x100, 0x0, 0x6, 0x7fffffff}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000600)) r2 = syz_open_pts(r1, 0x0) r3 = msgget$private(0x0, 0x80) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80, 0x0) ioctl$sock_ax25_SIOCADDRT(r4, 0x890b, &(0x7f0000000040)={@null, @default, 0x6, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @default, @bcast, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}) msgctl$IPC_RMID(r3, 0x0) ioctl$TIOCGSID(r2, 0x5429, 0x0) [ 1185.620712] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1185.627967] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1185.635410] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1185.642764] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1185.650299] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 09:39:26 executing program 4: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x80, 0x0) sendmsg$kcm(r2, &(0x7f0000000380)={&(0x7f0000000140)=@pptp={0x18, 0x2, {0x1, @loopback}}, 0x80, &(0x7f0000000340)=[{&(0x7f00000001c0)="f492f568cd1030f288d69d07651200e80483ab9bebcfc96b990b0210f0592292dc03ed9a2d4f586c0ac1cc416bfd96c8d2e70538a74656023a6a021d5e7d4b2294d5c2b8e322c0a5528ba6f762caf61f1640d98226b499a9baaea274087798b155657b9523e671982f0ab59aeb382e9087970b74c4612bad3da52c0b5d41eea36e49d146fc055498baa69999d1928c8109c1c4378ede8f5db11f424adc5922c97dc0f8466a7ee4791c5b9db6f5e24455be30309c94960219e0eb8cc19d02fc178cc57ab9e093245be653f52f46269616c79ba425598379b2a16e5b33461e440f931c505f22e5da1bd9b4567a901147", 0xef}, {&(0x7f00000002c0)="0fa5f8e3ffcb809408c8fcab50db76309eaeeb061ac735f8b3226094802b41a2cad8358415ee762815ffa69071eb879c346dd89e8c10b1b171bbae19182283ddf706b2c27b5b747c18113980b9ab26dce078a97e3561b3d7643372578ae7968f3bea98f3e82c21834ee6acb09d82fbecc947b8de20fc8c123c9e009897fa58", 0x7f}, {&(0x7f00000000c0)}], 0x3}, 0x4040000) setsockopt$inet_MCAST_LEAVE_GROUP(r1, 0x0, 0x2d, &(0x7f00000003c0)={0x3, {{0x2, 0x4e21, @rand_addr=0x8}}}, 0x88) listen(r0, 0x6) connect$inet(r1, &(0x7f0000000040)={0x2, 0x20000000004e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0x4) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) 09:39:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={0x0, r0, 0xe}, 0xfffffffffffffe7a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:26 executing program 3 (fault-call:1 fault-nth:2): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:26 executing program 2: r0 = socket$unix(0x1, 0x2000000000001, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56) listen(r1, 0x0) connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r2 = accept(r1, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0xfff, 0xa00) write$capi20(r3, &(0x7f0000000240)={0x10, 0x0, 0x1, 0x81, 0x4, 0x54}, 0x10) ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x80000001) getpeername$unix(r2, &(0x7f0000000080)=@abs, &(0x7f0000000000)=0x6e) shutdown(r2, 0x1) listen(r2, 0x6) 09:39:26 executing program 0: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=0x0) ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x10, &(0x7f0000000040)={0x5}) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000006c0)=0x200, 0x20) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000180)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r1, 0x1, 0x1d, &(0x7f00000000c0)=0x2, 0x4) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1}, 0x0) write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 1185.831785] FAULT_INJECTION: forcing a failure. [ 1185.831785] name failslab, interval 1, probability 0, space 0, times 0 [ 1185.849065] CPU: 1 PID: 5500 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1185.856047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1185.856054] Call Trace: [ 1185.856074] dump_stack+0x138/0x19c [ 1185.856092] should_fail.cold+0x10f/0x159 [ 1185.856109] should_failslab+0xdb/0x130 [ 1185.856123] kmem_cache_alloc+0x47/0x780 [ 1185.856134] ? find_held_lock+0x35/0x130 [ 1185.856147] ? netlink_lookup+0xb5/0x160 [ 1185.856163] skb_clone+0x129/0x310 [ 1185.856176] __netlink_deliver_tap+0x564/0x7d0 [ 1185.856192] netlink_unicast+0x66c/0x780 [ 1185.856205] ? netlink_attachskb+0x6a0/0x6a0 [ 1185.856216] ? security_netlink_send+0x87/0xb0 [ 1185.856228] netlink_sendmsg+0x7c4/0xc60 [ 1185.856241] ? netlink_unicast+0x780/0x780 [ 1185.856253] ? security_socket_sendmsg+0x8f/0xc0 [ 1185.880679] ? netlink_unicast+0x780/0x780 [ 1185.880693] sock_sendmsg+0xd0/0x110 [ 1185.880704] ___sys_sendmsg+0x70c/0x850 [ 1185.880716] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1185.880726] ? __fget+0x210/0x370 [ 1185.880743] ? find_held_lock+0x35/0x130 [ 1185.880751] ? __fget+0x210/0x370 [ 1185.880766] ? lock_downgrade+0x6e0/0x6e0 [ 1185.880778] ? __fget+0x237/0x370 [ 1185.880792] ? __fget_light+0x172/0x1f0 [ 1185.880801] ? __fdget+0x1b/0x20 [ 1185.880811] ? sockfd_lookup_light+0xb4/0x160 [ 1185.880825] __sys_sendmsg+0xb9/0x140 09:39:26 executing program 0: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x98080, 0x0) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000080)={0x2, 0x6, 0x7, 0x9}, 0x10) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x7e, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000000c0)=""/61) mount$9p_xen(&(0x7f0000000140)='/dev/hwrng\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='9p\x00', 0x144000, &(0x7f0000000200)={'trans=xen,', {[{@cachetag={'cachetag', 0x3d, 'cgroup'}}], [{@measure='measure'}, {@context={'context', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '/dev/dlm_plock\x00'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}}) write$nbd(r1, &(0x7f0000000000)={0x1000002, 0x1000000000000000, 0x0, 0x0, 0x0, "82b0cfc4336aa6771538be0633e8bd348061ec82ee1850b35616b17333ad88f7e4a258981e458e96afda2a87223ba7f4"}, 0x40) [ 1185.931452] ? SyS_shutdown+0x180/0x180 [ 1185.931479] SyS_sendmsg+0x2d/0x50 [ 1185.931487] ? __sys_sendmsg+0x140/0x140 [ 1185.931498] do_syscall_64+0x1eb/0x630 [ 1185.931506] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1185.931523] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1185.931531] RIP: 0033:0x458c29 [ 1185.931536] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1185.931546] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1185.931551] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1185.931556] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1185.931561] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1185.931566] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 [ 1186.075629] audit: type=1804 audit(1555925966.594:173): pid=5515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir477635136/syzkaller.1HaGEe/1199/file0" dev="sda1" ino=17377 res=1 [ 1186.123267] audit: type=1804 audit(1555925966.644:174): pid=5516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir477635136/syzkaller.1HaGEe/1199/file0" dev="sda1" ino=17377 res=1 09:39:26 executing program 1: r0 = socket$kcm(0x10, 0x2, 0x10) pipe(&(0x7f0000000040)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000140)=""/213, &(0x7f00000000c0)=0xd5) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="2e0000001900d927e45de087185082cf0124b0eba06ec4a86e8f32e00586f9835b3f00009148790000f8de84c5e2", 0x2e}], 0x1}, 0x0) 09:39:26 executing program 3 (fault-call:1 fault-nth:3): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:26 executing program 0: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/status\x00', 0x0, 0x0) mmap$binder(&(0x7f0000f59000/0x2000)=nil, 0x2000, 0x1000008, 0x109010, r0, 0x0) mmap$binder(&(0x7f0000f59000/0x3000)=nil, 0x3000, 0x0, 0x8011, r0, 0x0) 09:39:26 executing program 4: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@rose, @default, @netrom, @netrom, @netrom, @rose, @rose]}, 0x10) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f00000000c0)={0x0, 0x200}) listen(r0, 0x0) accept4(r0, &(0x7f0000000cc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000000d40)=0x80, 0x0) 09:39:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x4c0200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000040)={0x5, 0x0, 0x2}) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x6, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xe3, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:39:26 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/qat_adf_ctl\x00', 0x0, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000200)='cpuacct.usage_sys\x00\xc7\xec\xac\xd9&{\x0f\x96\xad\xd1\x8fl![\x8f\xb9\f\xca\x1d\xc2{\xee\xb7\x03K\x0f\xa6\xaa;\xf6\x89\xf7b^\xa5\xafI\r\xc4\x9f\v\xf2\x1c\xdc\xddp2\xb7\xbb\x1b\xfev\xea\xed\xe0\xaa\xe8\xceR`\xbb\xf2\xed;pC\x19\xbfn\x16\xaa\x199\xfe.Q\xebvB\xd2\x19&l?\x87\x17H\x1f.\xdbA\x1b\xafz\xe3\xdc};*\xec\xfe\xfa\xfb/\x18g\x80y\xfe\x89', 0x26e1, 0x0) close(r0) close(r2) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$cgroup_type(r1, &(0x7f0000000340)='threaded\x00', 0x9) timerfd_create(0x8, 0x80000) ioctl$KDGKBMODE(r3, 0x4b44, &(0x7f0000000080)) recvmsg(r0, &(0x7f0000000140)={0x0, 0x1d, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/110, 0x2000012e}], 0x1}, 0x3f00) close(r2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getpeername$ax25(r1, &(0x7f00000002c0)={{0x3, @bcast}, [@default, @default, @default, @null, @bcast, @default, @bcast, @default]}, &(0x7f0000000380)=0x48) [ 1186.229231] FAULT_INJECTION: forcing a failure. [ 1186.229231] name failslab, interval 1, probability 0, space 0, times 0 [ 1186.241000] CPU: 0 PID: 5530 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1186.247965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1186.257331] Call Trace: [ 1186.259957] dump_stack+0x138/0x19c [ 1186.263605] should_fail.cold+0x10f/0x159 [ 1186.267774] should_failslab+0xdb/0x130 [ 1186.271764] kmem_cache_alloc+0x47/0x780 [ 1186.275838] ? lock_acquire+0x16f/0x430 [ 1186.279828] ? check_preemption_disabled+0x3c/0x250 [ 1186.284914] skb_clone+0x129/0x310 [ 1186.288483] dev_queue_xmit_nit+0x29c/0x8d0 [ 1186.293610] dev_hard_start_xmit+0xa7/0x8c0 [ 1186.297958] ? check_preemption_disabled+0x20/0x250 [ 1186.303067] __dev_queue_xmit+0x1da3/0x25f0 [ 1186.303086] ? netdev_pick_tx+0x300/0x300 [ 1186.303097] ? skb_clone+0x129/0x310 [ 1186.303110] ? memcpy+0x46/0x50 [ 1186.303120] ? __copy_skb_header+0x2b8/0x3e0 [ 1186.303129] ? __skb_clone+0x271/0x800 [ 1186.303141] dev_queue_xmit+0x18/0x20 [ 1186.303150] ? dev_queue_xmit+0x18/0x20 [ 1186.303162] __netlink_deliver_tap+0x509/0x7d0 [ 1186.303177] netlink_unicast+0x66c/0x780 [ 1186.303189] ? netlink_attachskb+0x6a0/0x6a0 [ 1186.303208] ? security_netlink_send+0x87/0xb0 [ 1186.303220] netlink_sendmsg+0x7c4/0xc60 [ 1186.303236] ? netlink_unicast+0x780/0x780 [ 1186.303248] ? security_socket_sendmsg+0x8f/0xc0 [ 1186.303256] ? netlink_unicast+0x780/0x780 [ 1186.303269] sock_sendmsg+0xd0/0x110 [ 1186.315458] ___sys_sendmsg+0x70c/0x850 09:39:26 executing program 4: stat(0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc0100f5ff3e855168028dc000167dba96f51390c47c646c769c1393e5e7d78118984b1fc6a989bebfeaa8dc0503628ab8b9c74a40666e6a629341b039e60b812953c8bd05f9eb64f893e7b2095f9b9747fa131abdf3e98cf6eaba86e16a6eca1379d48ec2d119ca73d9da0762a0281b2c9f49b3e18aaa9204467e798cf809fbc8e67103be8ab3f9ac99a105a688b517824aba088f222cf7232b73fe45c1ecd6fda287") clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) futex(&(0x7f000000cffc), 0x800000000005, 0x0, 0x0, &(0x7f0000000080), 0xfffffffffffffffc) 09:39:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0xffffffffffffffc5) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x0, 0x0) setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000040)=@req3={0x800, 0xd130, 0x7, 0xffffffff, 0xfffffffffffffff9, 0xffffffffffffffff, 0x8000}, 0x1c) 09:39:26 executing program 2: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffff9c, 0x80000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0)={0xffffffffffffffff}, 0x2, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_ACCEPT(r0, &(0x7f0000000440)={0x8, 0x120, 0xfa00, {0x3, {0x101, 0x7fff, "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", 0x95, 0x0, 0x8001, 0x7b, 0x365, 0x100, 0x6908}, r1}}, 0x128) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x2400000, 0x0) ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000000)) ioctl$TIOCPKT(r3, 0x5420, &(0x7f00000002c0)=0x400000005) read(r3, &(0x7f0000000040)=""/11, 0xb) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x3) r4 = syz_open_pts(r3, 0x0) ioctl$TCSETA(r3, 0x5406, &(0x7f0000000200)) r5 = dup3(r4, r3, 0x80000) ioctl$TCSETXW(r3, 0x5435, &(0x7f0000000080)={0x4, 0x9, [0x0, 0x0, 0xfffffffffffff000, 0x6, 0x1], 0x5}) ioctl$TCSETA(r5, 0x5406, &(0x7f00000000c0)) ioctl$VIDIOC_ENUM_DV_TIMINGS(r5, 0xc0945662, &(0x7f0000000300)={0x6, 0x0, [], {0x0, @bt={0x8, 0x7, 0x1, 0x2, 0x0, 0x0, 0x100000001, 0x5d, 0xd7f, 0x1000, 0x2, 0x10000, 0x5, 0x9, 0x1d, 0x3f}}}) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x4, 0x0, 0x3d5, 0x800}, &(0x7f0000000180)=0x18) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, &(0x7f0000000280)={r6, 0xfffffffffffffff7, 0x20}, 0xc) 09:39:26 executing program 1: r0 = openat$md(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/md0\x00', 0x0, 0x0) ioctl$BLKPG(r0, 0x40140921, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0}) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x880, 0x0) bind$ax25(r1, &(0x7f0000000080)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x7}, [@bcast, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) 09:39:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) syz_emit_ethernet(0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="9fe2e7"], 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000010000/0x18000)=nil, 0x0, 0x0, 0x10, &(0x7f0000000140)=[@cr0={0x0, 0x80000010}, @cstype3={0x5, 0xb}], 0x2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c1207849bd070") ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x111, 0xf}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r3, &(0x7f0000000200)={0xf, 0x8, 0xfa00, {r5, 0xf}}, 0x10) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffec7) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1186.315471] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1186.383214] ? __fget+0x210/0x370 [ 1186.386779] ? find_held_lock+0x35/0x130 [ 1186.390846] ? __fget+0x210/0x370 [ 1186.390867] ? lock_downgrade+0x6e0/0x6e0 [ 1186.390882] ? __fget+0x237/0x370 [ 1186.390897] ? __fget_light+0x172/0x1f0 [ 1186.390908] ? __fdget+0x1b/0x20 [ 1186.390921] ? sockfd_lookup_light+0xb4/0x160 [ 1186.390942] __sys_sendmsg+0xb9/0x140 [ 1186.390952] ? SyS_shutdown+0x180/0x180 [ 1186.390975] SyS_sendmsg+0x2d/0x50 [ 1186.390983] ? __sys_sendmsg+0x140/0x140 [ 1186.390995] do_syscall_64+0x1eb/0x630 [ 1186.391003] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1186.391019] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1186.391028] RIP: 0033:0x458c29 [ 1186.391033] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1186.391043] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1186.391049] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1186.391054] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 09:39:27 executing program 0: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) ioctl$int_in(r0, 0x800000c0045003, &(0x7f0000003ff8)=0x80) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0x0, 0x0}}, 0x68) close(r0) 09:39:27 executing program 2: r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0) truncate(&(0x7f0000000240)='./bus\x00', 0x800) r1 = open(&(0x7f0000000540)='./bus\x00', 0x0, 0x0) lseek(r0, 0x0, 0x2) sendfile(r0, r1, 0x0, 0x8000fffffffe) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e21, 0x6, @mcast1, 0x2c8}}, 0x4, 0x631, 0x9, 0x200, 0x50}, &(0x7f0000000100)=0x98) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000140)={0x0, 0x9, 0x1f, 0x0, r2}, 0x10) r3 = creat(&(0x7f0000000180)='./bus\x00', 0x0) r4 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) preadv(r1, &(0x7f00000004c0)=[{&(0x7f0000000040)=""/154, 0x9a}], 0x1, 0x0) fallocate(r4, 0x0, 0x0, 0x5f5) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r5, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") write$P9_RWSTAT(r3, &(0x7f0000000200)={0x7, 0x7f, 0x2}, 0x7) lseek(r1, 0x0, 0x3) 09:39:27 executing program 3 (fault-call:1 fault-nth:4): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:27 executing program 4: syz_execute_func(&(0x7f0000000140)="98cd8080000c8a2069d00fd1b02db5d90000d20070e4e4840568ea00003c3b6446ddcb0bdc8f69289bd19d6543d0fd67450f483bc421e559609463466c61613e720b88a07a980000e1b1ac55e22c892a0f0000049f") r0 = accept$ax25(0xffffffffffffffff, &(0x7f0000000080)={{0x3, @rose}, [@remote, @rose, @default, @rose, @bcast, @netrom, @bcast, @default]}, &(0x7f0000000100)=0x48) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f00000001c0)={'lapb0\x00', 0x7}) r1 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, &(0x7f0000000040)=0x10, 0x80000) fdatasync(r1) [ 1186.391059] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1186.391064] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 [ 1186.410866] futex_wake_op: syz-executor.4 tries to shift op by 4095; fix this program [ 1186.457315] md: could not open unknown-block(0,0). [ 1186.522284] md: md_import_device returned -6 [ 1186.547161] audit: type=1804 audit(1555925967.064:175): pid=5556 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="bus" dev="sda1" ino=17634 res=1 09:39:27 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket(0x10, 0x3, 0x0) ioctl$SIOCX25SCAUSEDIAG(r1, 0x89ec, &(0x7f00000011c0)={0xfffffffffffffff9, 0x9}) r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000012c0)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f00000013c0)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x84000000}, 0xc, &(0x7f0000001380)={&(0x7f0000001300)={0x60, r2, 0x520, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffffffffff9}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x1}, @NBD_ATTR_SOCKETS={0x24, 0x7, [{0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r1}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000001200)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$FUSE_GETXATTR(r3, &(0x7f0000001240)={0x18, 0x0, 0x7, {0x9}}, 0x18) ioctl$sock_ifreq(r1, 0x89f2, &(0x7f0000000080)={'ip6gre0\x00', @ifru_data=0x0}) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f00000000c0)={0x0, 0x1000, "5c87b32839e5e1d1dbed8aeb7f24e37f293d0b8830146a4625a90d2f5e6aebeeb78f218f2cba0676dd8ca09aca574f387ceb136a68e31a7ef9ea108e4e6fde5e828b583f1886a47ecfb7ca6ebbbf66034e012bf82eba0f720a1d5881b5ef9caeefb86d49d38ea5cebd41431bbf5a1579a99839b134fe398d0418bb9e3be2f7f7b7474ae55c7082aae85d7c2cc6b78762479aab9cf4bbc8c921eee0c705337bf4f921445be11eb94901fdcd4a177a29a478267dbc86469b116db5049a10dfe011d43dd820157c76977afabbe5f23720d242c4bcd506ae732bd5439101b2b75ba6e7153358cf1e8ed536544ed7331b71ebc4944c7deaaec3ffeebe995bda68b443b646cc5dc36d57ca3c1de5de30194d9e429fe2862a3464727870ca5387ed094890218e99a072db62877a0cc18ed151934e7a8b1dcc9e85a0f8657b955bb5146f10be476ac0e8d780f956e05917bda676e07a52bec9a5c7a4121507b56065436589072170470809b9e5a1b62ee82c7ef8358a8c52ab9e503f611726b9755d5d5b50678881397e64e699b3ba83eb2dd34d8cee1375451cba872805e24a764816aca564bc28f096ddc2bd3385f64832ecb1e00020302a1e2aa85792f2a61b332d9c197b791b3d8edf6ac442fae5cd519a4ef958ea08292f22e1fd242b193b81b8147cca5fff6a312f66fddd9821b1aafa5c1d0ed3763ffbccab173f1ecc20c15f6baf62bdf4bdddb1be287d5a23089673fd1cbf159804e10154083c54240be4c897105f8c0cf10b708ec107a1a0385bbd4f214a4cc7daf243f0221d9947f3e3014363a70c8200b616172c513b0aa6eedce66e484057cd2ccf76af392ca8f9c5da03fd94a38ba4aa77a3919c0087da44e56da295905184b14e2f63f2d01499d31a36885719b80cb1152ecb01b2f111c595da4764d1f06454fc5ed0aa4209f3c98b56d8e42e2bfbea9b8a3ff2739e09dc4c65add05ceae30009e7e015b53be6e4e1db6a4e4af4bed0ece7ea9aadb10130acd735522cad19771be38380e035c8c4485295443d4779abd90a3e7951f2d0c2e4ffaf276753ba33fa5055dda59e552c9ef37e6269b494f844cea9e58a36464a66d8912c1e443b58ee1e742c176b02e9a8483af5df2b157b797b4ec321465c2cb60a5ccd3492bb643645d1520954579402a56455a21be569c7794570f5cc6365cec5d7b025f631c3b505d6c6ac15735a31922c3aa504c524f70c9495185dc146641ca3e01acec0081cef135cf08874e38c768e312f30c36014d6aa6fb45fe6ea6668b01375e65692520d9347970da62635a5998fcf92d93cd4f5b5b1035ac6993f6cd02aa3f7d1c38eae9f47a8d3044d41d66dcf41a4f3ecb9ee8996449d6765dd1766f6a0f5920f0f4dff1154230e5f8cfd3fbdd4652b7e5db5973d04cb629c11d441a9ba83633332010f21c4c73ae76f89636b4f58ea98f5b783dbd4edd041de7ff49e9294d2bea19b609b8ba56974e77f530a475cd21ac3b3606e12e4bc9c37a2a124fd085a375c769f7add5dc8144133d5bbcc9ec4eacb33236a74bafe51f120b337cbe216b214dfb9633c158ec3d07d2895a5e2d4e282de8230e9b5ace7574e5142d2aae6c778ff48e8b9244189de747b2fed0bd93096ddf7b4fc28e43233aec0daf90922075036f443b6a842e72dca0fbd96759c6daa7e5ecf523dfc830ca3eedae79cbfa8b3832fe259fc20a19d3d0074b647a24867204ba0ce8217e9bae46cfd21c656421c1ce15aaadd70829b656f80afada7a73ddb4fb10265e9a43ad46110ae39ba27dc2e5fda46f794eef2e9b96fd5b66effbd72f483bfcda4874d1d5ac0563258f380d5cd3916bad1b21d49cd3e925164bfa68b360e4c8dd6164c1cd280b761d3eefe463340a3daa904efcce6de6c76b434429bf0f06cae1fac13f05a3d0f86d1be3b2010c808c9e79c456f821dec5fda5b80bec4439a8360f49b62aa46d9e03bc300f60b999beb9e552f9243316ee8255f42c7c36a2e1650f7943b41b0c2a8700f756830000954bde7d7970363f6df73ea8195a6e9101a0e10ad047b34b3c739527280440ae5c5982e1639dd93deacc1b6b44718473f1a4384be401d1a427650bf387a7c3b294366a45f49169b2de5266a18c68c95b990c7d7eb4b79e466063ffab4d122e6bfa98c1e4ad36330a387758e1d92df63340d91d45ac3145d67a67afdad5db99c56c41be55dbaec9b64491f11e2096b12d67e1faeca833f6d342560730ca69c8a325bec63138bdaa6e5e2e031a39684370c0577bad93075a162cfaae73552bcb5b8a7958f36775caa95fa1ec776bffbe4b5d90bc61b3a0e15b1bf1e7bf7e05950e903f84774ee6df2a3acfbfe7760641d7e5888d5f7d0b7413ac91f81d6e241a0c8f62a912b6af70d4e86933b4398d2a5bb07a6ae078bcfce450d9188ca3af9e3ff9eddde8ed59a211788a9bb30f4b12ebf91acf07c687cb03ec5733ab5fd30d26b80a421f83a700a261ba6e69d2f2f78640d7599521f240fa550ec77a10c09433efb78f5a2fb08105a0273ea7812a17424bb2c98c238ad4acd623029124c74386054af2e115a37caa409efe11df8fd871f6eadd5cac9b80d61ba8c3b2ec36316f04600bb143903ef1adccc9e4f5c579ef01b002637759c88dfa00abd5f0370cb2fa1f469a493a04b57d0cf68592ad57c835c2ee2ac9137b2ddeded9e9c44f8129f878b280fe979a166157ec5072eefa6ddbf194464466e2554779afa45aaa107f8275d78a2deaf23b8eefd611dc7d3ae4ee8a33e8285a706942045ce5c5461db6ea2a3eb1d8aa8bb2e1f6912468f7d94675f937941381c7301524baab23b8e4d195ee7db82c099ea986325b60179685ee8bc78395c3aea32b3962b1b4fcd3038cc21f54d3155821bee183b6d0d48f61a5d4c0c26fa1e30bcd79355e66bbd1d863abdea42d29fcc8bf78e18e5712b93b353a3d96d6f2e757a40f4c8275c993426ca85120d1ee064e6f28825a402ba591da7b81eeb078e1e69f55ad68170714217487c3a4af99aa53f10552e274f3e66a5d9c0754e2cb9f008f1d2cd7cc512c62c409e428c9d992d9cfbfdffd0a80857ce90bf3655ab4f56adc6c7898b6ba4b82102ca222dcf3eed540834a83e90c9e2ae0d6fe236a8188011f363d533b4d97c8c56e477d9b5de303c00b2e7bb8e573916b47a68bf262b9f597a4d9b61f3a0df67975fa70767af2ac020fd51c20b16590ca5a234deac3901d3b3b8e5fb9943193055134da3a3534738b946d26eb42272eb3f72cffcd80024c82880a105a8072cf5b83b2b9afb943f4744814f85db1cebdd18e6ad66aa4e500a516bc8cee3a1fdff33f7c4d2a7df399b95e7db65568b129934401f652d43f00a36df00c7b10cfd98181fadc1e6109f786c69444f9411e667d37415fd83a6e472a1417e4074c377c6fa88ee87a964839512e0b3eb75c39ae59aee730d5656a68f5787392d940b1e4715907a4b8faf3e708a9365d8e7c343a93d02f059a26bc6cdf412f208410195114f01d886ca4963d7e2c2cb2e5d895600e884c7246bec900e29ee5183008669d89e3fa278a89fcd066ff912a28fe246bd26b1a40b4ed6d47e37baf8966dad1e5134021ad6bd5b5cbac2b11a02c36df26818f851cf294b5adc58fe152ec315fde18de35eed8780bb53e79292e894269b93554bb46cd218084199902b02c16969053bffc230274439e86e7621c9474b00e6bbab31210c9112ec32c1032b3386c4dfba298d50bbb05ede23724c0e0fa7265be42545a8df17cc760cc14faf0cb2972024bdb7e89c4f32dc01ba26ef6c0876ca69d3f55db61edec48adb080f85aae9656aadfc92edbb3c99187c2c3be8ed28c500347c81daad1934ca6014d54a2ada8b26784de9f448abd623233a4146a7a76ed1c5500540bb5255aab03f914123b5979e2b1165bd98898c0b29bef98b5755fa98d4954ec7ff4d93cdf9847e474804488749de73493c2bdcb3e0f888604f5b2cc01639c3ef3d6c501d97e4cedc40f9484d90d207ae59885b8f3fbaa386fc2cb15bf6a3851927d936a083f38688748d33f3fc531c1bfdd8283fea5337191a760ea76fde6e6a2918eda05372bb0d617c55fa094ed47554cacb320430b74da67203518a266550df78865fc477f5153b9cde960fbf413c1e5e11f85b472acbf88faf06d2246236ec5a8347c98909916a07aac22ea59d3defba74ab66415f9b97431da58a122ad5ddc573781844dd47e68641e5aef563917926859d0fafa9e63091adff3b75d090d9bb4c17a264ae05bd6ea1f6c04cfa6ac35064355d9bb554db095086123867bb6328e01445565305aa9f6b8a121f25fd066fd72733d16c418af1414a78a381df0f0a20eea5e83a8af561aa2e999d030c52154f12e9c641573340e1cd14b43ef43e67b249e0c3ba2af0d5caf1fe6e4c24e62e492fb3268268ce32b4e49707a2f3f07c0fe33781c0e4376baa10c1469ccac7e3da9ebb563528ffca954e4cd97820cf3023ca4832f3cd4a88ffe7b077ade60b336019f1ad0c1bb1cff12a4a7c9259455ff8a2245d099335fdcbafc9034ba670d5c8fa6892d1559150c356f350b22f4fdbec35ae9174e55f76fe4633dacedb34bce8e5c52654846d416a662b56d47a5ef03247ecbebc5b7e50b66ab723121fc3b5bc073e92d0b67c88d775ec1e03184888da3f3e6d205f3d4174fd83a52522f7fd405d40813f412e709f9f0793f9d3163a3a383b081c961b1518b9976297c98ae62d4429e72fe1316433707e9fddbe5ea8bfff517a07650dcbdf0dde7a71d77dca73db08da4f1180ea6d9f874c364b727afb42b4316dca6c17bafdc30a50de1ecc2ff0dcbfe1103f632cc14a8535d9371701728289337521471726215387d1a82abf6385ecb9f0fafbe3f68b3591d5c041d3e30c773581a8e4c2ed7e669890316d9ee2f55b76230a43a53b8e386d74be5d761c6c24a032d2e74bcca5c8c506fa1b0ef06566de1b5763c8886d992aae54bb1bad5dba3c8f214cd879266c93f2d86fe88e8f168ab5ea2e57898f195afe7a47fc859048233abe264a061b8a5bf2d3bd3340809d09b7a25be7fe10ad7b03e86a7558a11ec825c76f554e946b2573f99cd749e8e4ef4c28c914542f68f27084d7fed0a8d7eced4fd35bf3bd7809a10fc3de1d9a06cee36e5d51f2454635d5ff5ddeb9315be0fab1eb7580bfac4a3cbb4aa12e142073f7bcae6132a044ea60e83fbbd4d8164ad772ea92c65e4d9288ef8629ea38c4e166b603142cda5f47c5395a74a0263f17a9c6c5ede264d75a7803097187098ee004b45dc859f5205a880c4151d564b63fae8fb45467822a02345898fb3172a14c9ffc673697a51de895361de65723593428a3574a79001a7f36e1b4d40d5a69d6ed5f127723f6b8c5d852d1120cec98aabfb2b6dd218ddabfcbd442416518619eb58b817d3e56cdbaaacebff2e2d1f583682ea0a21ad8de89afbfd0503b7ff5a2366731d681a468e583632be4c308a43f6d9ddf33cb774187b52541df3d62798e697527494811c0915129e9021c8bba660c25e25ad5976b692dd33fba1f3a709c0e6a518a7c13b87f6176f582dd3730b68f0cd468f994380d74471684e4bb08f87c3ca55a10653b0cf031ae857b644029ee319510f3a64c36c490ad357d7a765197933464742e9b23cdf2ff4b25b977594d1b6e5a8b6445ff79543b312d9546c77e12bb759eecb803394c590a7ebba6176de7148d58ea2dee91c0f6806b43dc4a2e24874dd5af92f03f78b598e0858feb7fd12100f68a8e48f746"}, &(0x7f0000000040)=0x1008) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000001100)={r4, 0x67, "63bbb40358f16c59fa4f7d284a5fad89b894709dd64d22061cd4b4c6ddaf5848b010dbccf7290fb3028cdd6adb7eadf6bb85c38340abfced385bbef34bb974da925a2a9cf568c3e4d24001fd22c76f8586b44c8fc02e64d26db3640e5c2a83b9947208670ce06b"}, &(0x7f0000001180)=0x6f) 09:39:27 executing program 4: r0 = socket$inet(0x2, 0x4000000000000002, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e24, @multicast1}, 0xffffffffffffffe8) connect(r0, &(0x7f0000000140)=@nl=@unspec, 0x80) 09:39:27 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, &(0x7f0000000440)=0xfbe, 0x4) fcntl$getown(r0, 0x9) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x0, 0x400001) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r1, 0xc0105303, &(0x7f0000000040)={0x6, 0x2, 0x80000001}) r2 = openat$md(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/md0\x00', 0x0, 0x0) ioctl$BLKPG(r2, 0x40140921, 0x0) 09:39:27 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x80000001, 0x101000) ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000040)) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000080)={0x2000, 0x11f000, 0x827, 0x2, 0x7ff}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f00000000c0)) pause() ioctl$TIOCEXCL(r0, 0x540c) ioctl$TIOCSBRK(r0, 0x5427) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000100)={0x0}) ioctl$DRM_IOCTL_GET_CTX(r0, 0xc0086423, &(0x7f0000000140)={r2, 0x3}) ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000180)={0x80000000, 0x7, 0x3ff}) r3 = getpgid(0xffffffffffffffff) sched_setparam(r3, &(0x7f00000001c0)=0x1f) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000200)={0x11, @tick=0x401, 0x3ff, {0x5}, 0x7, 0x2, 0x5dd}) ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000000280)) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f00000002c0)=r3) perf_event_open(&(0x7f0000000340)={0x7, 0x70, 0xffffffffffffffc0, 0x9, 0x1, 0x100, 0x0, 0x80, 0x10000, 0x2, 0x0, 0x1ff, 0x300000000000, 0x7108, 0x72ea, 0x10000, 0x9, 0x9, 0xfffffffffffff801, 0xb, 0x3, 0x200, 0x5, 0x649c, 0x8, 0x9, 0x7fffffff, 0x2, 0x400, 0x4, 0x25, 0x0, 0x5, 0x5, 0xc5, 0x64518ff1, 0x7, 0x56ab78e6, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000300), 0x2}, 0x0, 0x7f, 0x0, 0x1, 0x200, 0x9, 0x4}, r3, 0x3, 0xffffffffffffff9c, 0x8) ioctl$TCGETS(r0, 0x5401, &(0x7f00000003c0)) fcntl$lock(r1, 0x7, &(0x7f0000000400)={0x0, 0x4, 0x0, 0x9ce, r3}) ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0) ioctl$CAPI_CLR_FLAGS(r0, 0x80044325, &(0x7f0000000440)=0x1) connect$rose(r0, &(0x7f0000000480)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f00000004c0)=0x5da2a4ca, 0x4) socket$inet6(0xa, 0x3, 0x77da) ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000500)) ioctl$TCSETX(r1, 0x5433, &(0x7f0000000540)={0x4000000000000000, 0x100, [0x7, 0x400, 0xffffffff, 0x3], 0x6}) rt_sigqueueinfo(r3, 0x2e, &(0x7f0000000580)={0x1, 0x4, 0x800}) ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f0000000600)=""/198) ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000740)=@req={0x28, &(0x7f0000000700)={'vcan0\x00', @ifru_mtu=0x9}}) r4 = getuid() sendmsg$nl_netfilter(r0, &(0x7f0000000dc0)={&(0x7f0000000780), 0xc, &(0x7f0000000d80)={&(0x7f00000007c0)={0x5a8, 0x12, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {0x3, 0x0, 0xa}, [@generic="a4c5e997a9891a264e08a86846e5ee1d03b3fe5c1dcc3b1bf0510be261100b03cf689284248240eb968735d3449ae9131137b7258e72caa9fc2eb5abf6bd1ea12c591423dbed2f2fa73519f083d2b5eab9a8fb9fcad512522e466b1246d87b8be3b25bb4ca1a87d7b75215b75a5846eeb829175e7f6786be52636e922636d35c093309c114c18a2028aaaac417e523864d2f781bb7d2830736767bd9665be97c95638d35b8eb2939b076ad39103e3af1e53c7a42c7c94464a9c17ddf4f57c390ebc5641d7ef9777aaa17f1822072", @nested={0x24, 0x71, [@typed={0x14, 0x25, @ipv6=@local}, @typed={0xc, 0x2e, @u64=0x1}]}, @nested={0x38, 0x2a, [@generic="7c5f362b47d73462026a95313d72ca29e915c3a9889c54572ef5af6243c4508cc69faf699cb310b61871d9ed7e27c2f5a2ab01"]}, @nested={0x28, 0x82, [@typed={0x1c, 0x84, @str='/dev/bus/usb/00#/00#\x00'}, @typed={0x8, 0x21, @uid=r4}]}, @nested={0x94, 0x75, [@typed={0x8, 0x91, @u32=0x200}, @generic="55e71df5047b1fe262931588d0525dd60150c01204ffc2771a411b8e7962f88737ff6b69120976cd7dbbceba0ffb76da405e487e5d3f6ffe5beb8ebf046169321b804043d856", @generic="69794051dc1ee111bd9ab45caeaaf18977d8f3ca70bfac785c30e9a455bd9d32fbb9f2d60b01579b4ea2284ba9c51d7d31c534a2ab1af895ca32baab9502d7"]}, @generic="7a7d8396b019ebcc8ec92b9955765caffd5019abde8df04ccd884fe8d8c88b3163c96ccddc2d5a338ac805db96378790be81711083a660a2b28754ac06e685d6aa4b68bcb6f02d74480e17d6b99186bfd64e149ac03d5097", @nested={0x260, 0x2d, [@generic="8b689950c340aee5d8f5ab70e0a461b5ea46ea59f23984d5d244109b446e776787407ea42bd7bfbacb75a44d3ff5e1cfa0ab4defc7aff57f96bb6e74a39d3ee6b766a6a182028c4982687477b6afc54cec938d8fea6f864779e6cf401ab92b83baf337935890b18f9c2e22a258b05c8567cf0ffd23efd4e1c4e6810bfd8b8481379984db93686da2c1b849e86af1c2d4dba28419a4250f21", @generic="28c1d8630521ce7ba968e5a54011b3db94f5c04a5ff57d948e0ba97af119074875616d98a455089a63bf0b6f5a51f22e94103f148eb7a266ce99bd42d2474681f6ff80fa42f32b3d5dadaa2b5ca1541daf28c1b603782acd080ded4b5318c8b206ae82769d2bd382d4fbaf6ba22c40bd2c57c9c3e18d3bcbdd1513cd7585875f4823f15a7927c4346981b42f2781d469ec7a612a640eae9ac9546a4f828248251dd219a25bdc1b52db0d827b3b7e8c47437eb20e803100807e0883ec64f13e49bcba9e5ff046f4", @generic="af36c688ac99b99200ff816bd7e93c0f77721322b2b6f2f4b5865dd628e113fce567ee22e074fa6ef513bc81a30296e40a35ea5d8f7358e4e0cc02322321e15914236b0d94bacc892a0a7e85621153ff9e3ae5aa8af42c7113a15c1d8f32f13cb69a0468f1fa12e5211a110186f13eb97ca8a2550be4049f1197b0dc59cab2775fdbc0030c7b24a11978900c25e6e8f2af82ee51f9cf9b32bf72cfef44b89733a643c2b0c7c602205960048d77a10b24e387", @typed={0x24, 0x5a, @str='}#&]&%/cgroup-,*wlan0em1.,/ppp0\x00'}, @typed={0x8, 0x60, @u32=0x5}, @generic="3685090b9947dd270a6787c2e97b1413cf323d89c7fff6e7d68527082317"]}, @generic="64fdaa91541898acdccb22274485997153b752d2062908a92cb996bfb30b51df5b9c51dcd5d585b5aec472bdf569e4b12dd613cc2d4cdccd99082b2c8d55e011985eeae9fdf79e69a252aa866284a7261e6a5b9ff44ff661e5735361736fd78780e1bacb353dfc041f995e88ce4ecd97f094a22c8ec45b7d1e674d83d3c440ad975cc9f83c2770b8fdb60c27db6016933ed9265cf1b3c7aeb35d92a28f5f5125c3f14c7e0c4561b476672c17262366e9895b6bca06a7760b3a90455f8a04962d7f3ca9bb48cdf6a80905b32f48a0e68a68c6380d4f9f857313d8d5b4a866578d2cee4cb9e6d21bbb957b0d6b9acf214e5d06", @typed={0x4, 0x91}]}, 0x5a8}, 0x1, 0x0, 0x0, 0x4050}, 0x20000000) [ 1186.651755] FAULT_INJECTION: forcing a failure. [ 1186.651755] name failslab, interval 1, probability 0, space 0, times 0 09:39:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1186.710094] net_ratelimit: 14 callbacks suppressed [ 1186.710099] protocol 88fb is buggy, dev hsr_slave_0 [ 1186.720330] protocol 88fb is buggy, dev hsr_slave_1 [ 1186.733830] CPU: 0 PID: 5563 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1186.740811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1186.750273] Call Trace: [ 1186.752959] dump_stack+0x138/0x19c 09:39:27 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000d10ff0)={0x2, 0x4e20}, 0x10) listen(r0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x100, 0x0) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000040)={0x7, 0x3f, 0x1, 0x1, 0xf, 0x6, 0x101, 0x8, 0x101, 0x100}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x9, &(0x7f00007d2e25)=0x2, 0x4) connect$inet(r2, &(0x7f0000ba6000)={0x2, 0x4e20, @loopback}, 0x10) 09:39:27 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x3, 0x1) ioctl$sock_ifreq(r1, 0x89f3, &(0x7f0000000000)={'ip6gre0\x00', @ifru_addrs=@in={0x2, 0x4e20}}) r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x1ff, 0x10402) ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f0000000080)) [ 1186.756604] should_fail.cold+0x10f/0x159 [ 1186.760974] should_failslab+0xdb/0x130 [ 1186.764965] kmem_cache_alloc_node_trace+0x283/0x770 [ 1186.770090] __kmalloc_node+0x3d/0x80 [ 1186.773911] kvmalloc_node+0x4e/0xe0 [ 1186.777635] alloc_netdev_mqs+0x7b/0xbc0 [ 1186.781792] ? erspan_setup+0xb0/0xb0 [ 1186.785619] rtnl_create_link+0x1b4/0x850 [ 1186.789774] ? __netlink_ns_capable+0xe2/0x130 [ 1186.794369] rtnl_newlink+0xdd5/0x1710 [ 1186.798328] ? rtnl_link_unregister+0x200/0x200 [ 1186.803007] ? avc_has_perm_noaudit+0x2b2/0x420 [ 1186.807697] ? lock_acquire+0x16f/0x430 [ 1186.811678] ? rtnetlink_rcv_msg+0x33a/0xb70 [ 1186.816127] ? rtnl_link_unregister+0x200/0x200 [ 1186.816137] rtnetlink_rcv_msg+0x3ed/0xb70 [ 1186.816150] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1186.829704] ? netdev_pick_tx+0x300/0x300 [ 1186.833859] ? skb_clone+0x129/0x310 [ 1186.837592] netlink_rcv_skb+0x152/0x3c0 [ 1186.837607] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1186.837620] ? netlink_ack+0x9a0/0x9a0 [ 1186.837635] ? lock_downgrade+0x6e0/0x6e0 [ 1186.837647] rtnetlink_rcv+0x1d/0x30 [ 1186.858186] netlink_unicast+0x466/0x780 [ 1186.862255] ? netlink_attachskb+0x6a0/0x6a0 [ 1186.866678] ? security_netlink_send+0x87/0xb0 [ 1186.871276] netlink_sendmsg+0x7c4/0xc60 [ 1186.875342] ? netlink_unicast+0x780/0x780 [ 1186.875360] ? security_socket_sendmsg+0x8f/0xc0 [ 1186.875371] ? netlink_unicast+0x780/0x780 [ 1186.875384] sock_sendmsg+0xd0/0x110 [ 1186.875396] ___sys_sendmsg+0x70c/0x850 [ 1186.884364] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1186.884374] ? __fget+0x210/0x370 [ 1186.884387] ? find_held_lock+0x35/0x130 09:39:27 executing program 2: r0 = semget$private(0x0, 0x800000000000006, 0x0) semop(r0, &(0x7f000002efe2)=[{0x0, 0x6}], 0x1) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$NBD_SET_FLAGS(r1, 0xab0a, 0xffffffffffffffff) semop(r0, &(0x7f0000000000)=[{}], 0x1) semop(r0, &(0x7f000001a000)=[{}], 0x1) fchmod(r1, 0x100) semctl$IPC_RMID(r0, 0x0, 0x0) ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000080)={'vxcan1\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2a}}}) [ 1186.884395] ? __fget+0x210/0x370 [ 1186.884412] ? lock_downgrade+0x6e0/0x6e0 [ 1186.884427] ? __fget+0x237/0x370 [ 1186.884443] ? __fget_light+0x172/0x1f0 [ 1186.884454] ? __fdget+0x1b/0x20 [ 1186.884465] ? sockfd_lookup_light+0xb4/0x160 [ 1186.884478] __sys_sendmsg+0xb9/0x140 [ 1186.884487] ? SyS_shutdown+0x180/0x180 [ 1186.884510] SyS_sendmsg+0x2d/0x50 [ 1186.884518] ? __sys_sendmsg+0x140/0x140 [ 1186.884528] do_syscall_64+0x1eb/0x630 [ 1186.884539] ? trace_hardirqs_off_thunk+0x1a/0x1c 09:39:27 executing program 3 (fault-call:1 fault-nth:5): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:27 executing program 1: ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x2080, 0xffffffff00006ae0}) [ 1186.916377] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1186.916387] RIP: 0033:0x458c29 [ 1186.916393] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1186.916404] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1186.916417] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1186.916426] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1186.923857] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1186.923864] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 09:39:27 executing program 1: mount(0x0, 0x0, &(0x7f00005f7ffa)='hfs\x00', 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f00000003c0)='/dev/usbmon#\x00', 0x5a, 0x103000) ioctl$KIOCSOUND(r0, 0x4b2f, 0x7) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000180)={0x0}, &(0x7f00000001c0)=0xc) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-control\x00', 0x801, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffff9c, 0x0, 0x4, &(0x7f0000000280)='hfs\x00', 0xffffffffffffffff}, 0x30) ioctl$TIOCMBIS(r2, 0x5416, &(0x7f0000000140)=0x3) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={r1, r2, 0x0, 0x4, &(0x7f0000000240)='hfs\x00', r3}, 0x30) r5 = socket$inet_udplite(0x2, 0x2, 0x88) set_tid_address(&(0x7f0000000400)) ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f0000000340)={0x1, 0x0, {0x1000, 0xfffffffffffffc01, 0x300f, 0xf, 0xa, 0x8, 0x0, 0x6}}) ioctl$DRM_IOCTL_RM_MAP(r5, 0x4028641b, &(0x7f0000000000)={&(0x7f0000ff9000/0x4000)=nil, 0xc71, 0x1, 0x2, &(0x7f0000ffd000/0x3000)=nil, 0xffffffff}) ioctl(r4, 0xfffffffffffffff5, 0x0) getsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000440)=0x2, &(0x7f0000000480)=0x4) mremap(&(0x7f0000331000/0x3000)=nil, 0x4cb000, 0x600000, 0x3, &(0x7f00007fc000/0x600000)=nil) getpeername(r5, &(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff}}, &(0x7f00000000c0)=0x80) ioctl$IMGETCOUNT(r6, 0x80044943, &(0x7f0000000100)) [ 1187.038681] FAULT_INJECTION: forcing a failure. [ 1187.038681] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1187.050614] CPU: 1 PID: 5593 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1187.057915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1187.067452] Call Trace: [ 1187.070082] dump_stack+0x138/0x19c [ 1187.073748] should_fail.cold+0x10f/0x159 [ 1187.078002] __alloc_pages_nodemask+0x1d6/0x7a0 [ 1187.082692] ? __alloc_pages_slowpath+0x2930/0x2930 09:39:27 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000580)={'\x00', 0x815}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x308) r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0xbc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r2) socket$kcm(0x29, 0x1, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x8914, &(0x7f0000000340)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb96\x9b\xcda\xef~Iy:\xe1\x87\x12\xec\x97\x80\xe9\xa1S\f\xc7?\xa6\x95I\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\r\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~\xff\xff\x00\x00#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xd5\x1b\xca\xa9\xc7[\xa2\xef\xacM\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83\xf2\xf3\xcf7\x8aCZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x982\xeck+8Dk;\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xb4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x14\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\x04R\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xafh_\x9c\x91\xc1q_|L\x11\x03\x94\xc0\t=\x17\x95P\xd7\xcdH\x1c8^ARL\x9b\x1f\xf6P\rSj\x95\xd9o\x03\xd4\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x13\x82Rk\x9cAz\xab\rT\xadLO\f\x17Y\x1dg\x10\xe3LL\x1fC\xfa\xd9\xb0\xfb\xb4\xf3[\xdf\xd0\xd6\x82\xf6~0\xb8\xf4\xb0X\xfew\xbdY\n\xd6\x105\x9c\xb7\xe5F\xc1:9\xb8\xc2\x85\b\xfd\x92\xb0k\x93\xd7\xc40J\xc2\xf0=p\xd6\xe3\xe4W:\xd2\xf6\xfc\x83\xb1\xcb\xd1K\xb9(\"9(~\xf4\xf4\x94`\xe8\xdb\x17\xf9\xcf#)T\xcdj^\xa61\x12\x91 \xd7\x92\xc0\xd0s\xa9\xe4\x18:') 09:39:27 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[]}}, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0x57, 0x80000) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000180)=0x9, &(0x7f00000001c0)=0x2) poll(&(0x7f00000000c0)=[{r0, 0x40}, {r0, 0x8000}, {r0, 0x2}, {r0, 0x307}, {r0, 0x9000}, {r0, 0x4002}, {r0, 0x14}], 0x7, 0xc1b6) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0) syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x3, 0x2000) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r1, 0x800442d4, &(0x7f0000000100)=0x3) [ 1187.087820] cache_grow_begin+0x80/0x410 [ 1187.091985] kmem_cache_alloc_node_trace+0x69a/0x770 [ 1187.097459] __kmalloc_node+0x3d/0x80 [ 1187.101276] kvmalloc_node+0x4e/0xe0 [ 1187.105053] alloc_netdev_mqs+0x7b/0xbc0 [ 1187.109134] ? erspan_setup+0xb0/0xb0 [ 1187.112977] rtnl_create_link+0x1b4/0x850 [ 1187.117139] ? __netlink_ns_capable+0xe2/0x130 [ 1187.121840] rtnl_newlink+0xdd5/0x1710 [ 1187.125775] ? rtnl_link_unregister+0x200/0x200 [ 1187.130454] ? avc_has_perm_noaudit+0x2b2/0x420 [ 1187.135147] ? lock_acquire+0x16f/0x430 09:39:27 executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppp\x00', 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, [], 0x26}, 0x4}}}, &(0x7f0000000140)=0x84) setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=r2, 0x4) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000004c0)=""/246) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000200)={0x1, &(0x7f0000000180)=[{0x6}]}) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x0, 0x0}) [ 1187.139131] ? rtnetlink_rcv_msg+0x33a/0xb70 [ 1187.143580] ? queuecommand+0x188/0x410 [ 1187.147592] ? rtnl_link_unregister+0x200/0x200 [ 1187.152381] rtnetlink_rcv_msg+0x3ed/0xb70 [ 1187.156634] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1187.161265] ? netdev_pick_tx+0x300/0x300 [ 1187.165414] ? skb_clone+0x129/0x310 [ 1187.165436] netlink_rcv_skb+0x152/0x3c0 [ 1187.165449] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1187.165462] ? netlink_ack+0x9a0/0x9a0 [ 1187.165480] ? lock_downgrade+0x6e0/0x6e0 09:39:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/enforce\x00', 0x40000, 0x0) accept4$nfc_llcp(r1, &(0x7f00000000c0), &(0x7f0000000140)=0x60, 0x80000) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_TSS_ADDR(r2, 0xae47, 0xd000) r4 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 1187.165493] rtnetlink_rcv+0x1d/0x30 [ 1187.173242] netlink_unicast+0x466/0x780 [ 1187.173255] ? netlink_attachskb+0x6a0/0x6a0 [ 1187.173268] ? security_netlink_send+0x87/0xb0 [ 1187.173282] netlink_sendmsg+0x7c4/0xc60 [ 1187.173298] ? netlink_unicast+0x780/0x780 [ 1187.173313] ? security_socket_sendmsg+0x8f/0xc0 [ 1187.173324] ? netlink_unicast+0x780/0x780 [ 1187.173335] sock_sendmsg+0xd0/0x110 [ 1187.173348] ___sys_sendmsg+0x70c/0x850 [ 1187.173360] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1187.173371] ? __fget+0x210/0x370 [ 1187.202900] ? find_held_lock+0x35/0x130 [ 1187.202912] ? __fget+0x210/0x370 [ 1187.202927] ? lock_downgrade+0x6e0/0x6e0 [ 1187.202941] ? __fget+0x237/0x370 [ 1187.202955] ? __fget_light+0x172/0x1f0 [ 1187.202965] ? __fdget+0x1b/0x20 [ 1187.202977] ? sockfd_lookup_light+0xb4/0x160 [ 1187.202988] __sys_sendmsg+0xb9/0x140 [ 1187.202999] ? SyS_shutdown+0x180/0x180 [ 1187.211311] SyS_sendmsg+0x2d/0x50 [ 1187.211323] ? __sys_sendmsg+0x140/0x140 [ 1187.211336] do_syscall_64+0x1eb/0x630 [ 1187.211346] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1187.211365] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1187.211373] RIP: 0033:0x458c29 [ 1187.211378] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1187.232764] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1187.232771] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 09:39:27 executing program 3 (fault-call:1 fault-nth:6): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:27 executing program 2: mkdir(&(0x7f0000000700)='./file1\x00', 0x0) mkdir(&(0x7f00000003c0)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='overlay\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=./file1,workdir=./file1\x00']) chdir(&(0x7f0000000000)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x200600) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events\x00', 0x2da8020000100000, 0x500001c) [ 1187.232777] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1187.232784] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1187.232789] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 [ 1187.272495] protocol 88fb is buggy, dev hsr_slave_0 [ 1187.272544] protocol 88fb is buggy, dev hsr_slave_1 [ 1187.277021] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1 [ 1187.355776] protocol 88fb is buggy, dev hsr_slave_0 [ 1187.355866] protocol 88fb is buggy, dev hsr_slave_1 [ 1187.355952] protocol 88fb is buggy, dev hsr_slave_0 [ 1187.355995] protocol 88fb is buggy, dev hsr_slave_1 [ 1187.490175] audit: type=1804 audit(1555925968.004:176): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="memory.events" dev="sda1" ino=17747 res=1 [ 1187.538695] FAULT_INJECTION: forcing a failure. [ 1187.538695] name failslab, interval 1, probability 0, space 0, times 0 [ 1187.557746] CPU: 1 PID: 5620 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1187.564709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1187.574069] Call Trace: [ 1187.576662] dump_stack+0x138/0x19c [ 1187.580306] should_fail.cold+0x10f/0x159 [ 1187.584726] should_failslab+0xdb/0x130 [ 1187.588740] kmem_cache_alloc_trace+0x4b/0x790 [ 1187.593350] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 1187.598898] __hw_addr_create_ex+0x5e/0x300 [ 1187.603220] __hw_addr_add_ex+0x1b8/0x280 [ 1187.609460] dev_addr_init+0xfd/0x1c0 [ 1187.613262] ? dev_mc_flush+0x40/0x40 [ 1187.617068] alloc_netdev_mqs+0x125/0xbc0 [ 1187.621216] ? erspan_setup+0xb0/0xb0 [ 1187.625026] rtnl_create_link+0x1b4/0x850 [ 1187.629171] ? __netlink_ns_capable+0xe2/0x130 [ 1187.633755] rtnl_newlink+0xdd5/0x1710 [ 1187.637846] ? rtnl_link_unregister+0x200/0x200 [ 1187.642519] ? finish_task_switch+0x178/0x660 [ 1187.647022] ? finish_task_switch+0x14d/0x660 [ 1187.651514] ? __mutex_lock+0x951/0x1470 [ 1187.655602] ? lock_downgrade+0x6e0/0x6e0 [ 1187.659783] ? add_qgroup_rb+0x2b8/0x3b0 [ 1187.664026] ? rtnl_link_unregister+0x200/0x200 [ 1187.668699] rtnetlink_rcv_msg+0x3ed/0xb70 [ 1187.673026] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1187.677635] ? netdev_pick_tx+0x300/0x300 [ 1187.681780] ? skb_clone+0x129/0x310 [ 1187.685500] netlink_rcv_skb+0x152/0x3c0 [ 1187.689572] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1187.694158] ? netlink_ack+0x9a0/0x9a0 [ 1187.698050] ? lock_downgrade+0x6e0/0x6e0 [ 1187.702205] rtnetlink_rcv+0x1d/0x30 [ 1187.705920] netlink_unicast+0x466/0x780 [ 1187.709981] ? netlink_attachskb+0x6a0/0x6a0 [ 1187.714390] ? security_netlink_send+0x87/0xb0 [ 1187.718971] netlink_sendmsg+0x7c4/0xc60 [ 1187.723039] ? netlink_unicast+0x780/0x780 [ 1187.727377] ? security_socket_sendmsg+0x8f/0xc0 [ 1187.732133] ? netlink_unicast+0x780/0x780 [ 1187.736369] sock_sendmsg+0xd0/0x110 [ 1187.740169] ___sys_sendmsg+0x70c/0x850 [ 1187.744145] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1187.748913] ? __fget+0x210/0x370 [ 1187.752370] ? find_held_lock+0x35/0x130 [ 1187.756434] ? __fget+0x210/0x370 [ 1187.759895] ? lock_downgrade+0x6e0/0x6e0 [ 1187.764148] ? __fget+0x237/0x370 [ 1187.767615] ? __fget_light+0x172/0x1f0 [ 1187.771597] ? __fdget+0x1b/0x20 [ 1187.774966] ? sockfd_lookup_light+0xb4/0x160 [ 1187.779465] __sys_sendmsg+0xb9/0x140 [ 1187.783288] ? SyS_shutdown+0x180/0x180 [ 1187.787456] SyS_sendmsg+0x2d/0x50 [ 1187.791112] ? __sys_sendmsg+0x140/0x140 [ 1187.795168] do_syscall_64+0x1eb/0x630 [ 1187.799048] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1187.804001] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1187.809195] RIP: 0033:0x458c29 [ 1187.812383] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1187.820443] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1187.826290] audit: type=1804 audit(1555925968.074:177): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.2" name="memory.events" dev="sda1" ino=16636 res=1 [ 1187.828495] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1187.828502] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1187.828508] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1187.828514] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 09:39:28 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) finit_module(r0, &(0x7f0000000040)='.selinuxuseruservboxnet1posix_acl_access/\\*wlan0\x00', 0x3) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x5c831, 0xffffffffffffffff, 0x0) write$binfmt_misc(r0, &(0x7f0000000080)={'syz1', "5f89cbecc35440486148d9a8ade3a3e074d1754c1afc3d17c6391df47d9b07d3"}, 0x24) mprotect(&(0x7f0000a00000/0x600000)=nil, 0x600000, 0xa) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0x6) ioctl$int_in(0xffffffffffffffff, 0x800000c004500a, 0x0) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0xffffffffffffff1b, 0x12, 0x100000000000f00, {0x8, 0x0, 0x4000000000000000, 0x0, 0xe000000}}, 0xfffffefd) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f00000000c0)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000180)={r3, 0x200}, &(0x7f00000001c0)=0x8) ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0) getsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000200), &(0x7f0000000240)=0x4) dup2(r1, r2) madvise(&(0x7f0000779000/0x600000)=nil, 0x600000, 0x1000000000009) 09:39:28 executing program 5: fanotify_init(0x40, 0x1) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x3, 0x121000) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4068aea3, &(0x7f00000000c0)={0x7b, 0x0, [0x0, 0x6, 0x1]}) ioctl$UI_SET_ABSBIT(r3, 0x40045567, 0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:28 executing program 3 (fault-call:1 fault-nth:7): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x802, 0x0) bind$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000003d40)={0x0, @rand_addr, @remote}, &(0x7f0000003d80)=0xc) setsockopt$inet6_mreq(r1, 0x29, 0x15, &(0x7f0000003dc0)={@remote, r2}, 0x14) sendmsg(r1, &(0x7f0000000000)={&(0x7f0000000140)=@in={0x2, 0x4e23, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x80, 0x0, 0x0, &(0x7f000001ef80)=[{0x20, 0x0, 0x7, "44100901000000f70b"}], 0x20}, 0x0) 09:39:28 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000040)=""/148, 0x94}], 0x1, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0xa200, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r0, 0xc0bc5310, &(0x7f0000000100)) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='syscall\x00') preadv(r1, &(0x7f0000000480), 0x1000000000000269, 0x0) setsockopt$ax25_SO_BINDTODEVICE(r0, 0x101, 0x19, &(0x7f0000000240)=@netrom={'nr', 0x0}, 0x10) ioctl$KDSKBMETA(r0, 0x4b63, &(0x7f0000000200)=0x4) [ 1187.884746] audit: type=1800 audit(1555925968.394:178): pid=5618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed" comm="syz-executor.2" name="memory.events" dev="sda1" ino=16636 res=0 [ 1187.934439] FAULT_INJECTION: forcing a failure. [ 1187.934439] name failslab, interval 1, probability 0, space 0, times 0 [ 1187.936396] [ 1187.947144] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1187.947584] ====================================================== [ 1187.947587] WARNING: possible circular locking dependency detected [ 1187.947593] 4.14.112 #2 Not tainted [ 1187.947595] ------------------------------------------------------ [ 1187.947600] syz-executor.1/5633 is trying to acquire lock: [ 1187.947605] ( [ 1187.963189] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1187.963527] &sig->cred_guard_mutex [ 1187.970967] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1187.973550] ){+.+.}, at: [] lock_trace+0x44/0xc0 [ 1187.973569] [ 1187.973569] but task is already holding lock: [ 1187.973572] (&p->lock){+.+.}, at: [] seq_read+0xc1/0x12a0 [ 1187.973590] [ 1187.973590] which lock already depends on the new lock. [ 1187.973590] [ 1187.973591] [ 1187.973591] the existing dependency chain (in reverse order) is: [ 1187.973594] [ 1187.973594] -> #4 (&p->lock){+.+.} [ 1187.985393] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1187.985979] : [ 1187.986004] lock_acquire+0x16f/0x430 [ 1187.986012] __mutex_lock+0xe8/0x1470 [ 1187.986021] mutex_lock_nested+0x16/0x20 [ 1187.987953] CPU: 1 PID: 5629 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 1187.994067] seq_read+0xc1/0x12a0 [ 1187.997750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1188.006779] proc_reg_read+0xfd/0x180 [ 1188.013066] Call Trace: [ 1188.019540] do_iter_read+0x3e7/0x5b0 [ 1188.026721] dump_stack+0x138/0x19c [ 1188.035011] vfs_readv+0xd3/0x130 [ 1188.042609] should_fail.cold+0x10f/0x159 [ 1188.047594] default_file_splice_read+0x421/0x7b0 [ 1188.047602] do_splice_to+0x108/0x170 [ 1188.054072] should_failslab+0xdb/0x130 [ 1188.055761] SyS_splice+0xfcb/0x13e0 [ 1188.060065] kmem_cache_alloc_node_trace+0x283/0x770 [ 1188.064364] do_syscall_64+0x1eb/0x630 [ 1188.068918] ? __hw_addr_add_ex+0x1c0/0x280 [ 1188.075839] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.079796] ? __lockdep_init_map+0x10c/0x570 [ 1188.089217] [ 1188.089217] -> #3 [ 1188.093521] __kmalloc_node+0x3d/0x80 [ 1188.096162] ( [ 1188.100471] kvmalloc_node+0x4e/0xe0 [ 1188.104068] &pipe->mutex [ 1188.108043] alloc_netdev_mqs+0x7ad/0xbc0 [ 1188.112162] /1 [ 1188.117507] rtnl_create_link+0x1b4/0x850 [ 1188.121878] ){+.+.}: [ 1188.126008] ? __netlink_ns_capable+0xe2/0x130 [ 1188.130214] lock_acquire+0x16f/0x430 [ 1188.135290] rtnl_newlink+0xdd5/0x1710 [ 1188.139779] __mutex_lock+0xe8/0x1470 [ 1188.144181] ? rtnl_link_unregister+0x200/0x200 [ 1188.149950] mutex_lock_nested+0x16/0x20 [ 1188.154597] ? avc_has_perm_noaudit+0x2b2/0x420 [ 1188.158107] pipe_lock+0x63/0x80 [ 1188.161888] ? lock_acquire+0x16f/0x430 [ 1188.163659] iter_file_splice_write+0x15e/0xae0 [ 1188.167349] ? rtnetlink_rcv_msg+0x33a/0xb70 [ 1188.170077] SyS_splice+0xd81/0x13e0 [ 1188.170088] do_syscall_64+0x1eb/0x630 [ 1188.174247] ? rtnl_link_unregister+0x200/0x200 [ 1188.176012] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.180130] rtnetlink_rcv_msg+0x3ed/0xb70 [ 1188.182422] [ 1188.182422] -> #2 [ 1188.186986] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1188.191275] ( [ 1188.195298] ? netdev_pick_tx+0x300/0x300 [ 1188.199585] sb_writers [ 1188.204233] ? skb_clone+0x129/0x310 [ 1188.208863] #6){.+.+} [ 1188.213518] netlink_rcv_skb+0x152/0x3c0 [ 1188.217367] : [ 1188.217378] lock_acquire+0x16f/0x430 [ 1188.221324] ? rtnl_bridge_getlink+0x7a0/0x7a0 [ 1188.226487] __sb_start_write+0x1ae/0x2f0 [ 1188.231054] ? netlink_ack+0x9a0/0x9a0 [ 1188.235274] mnt_want_write+0x3f/0xb0 [ 1188.239752] ? lock_downgrade+0x6e0/0x6e0 [ 1188.244478] ovl_want_write+0x76/0xa0 [ 1188.244487] ovl_create_object+0x79/0x1e0 [ 1188.250189] rtnetlink_rcv+0x1d/0x30 [ 1188.254402] ovl_create+0x28/0x30 [ 1188.257937] netlink_unicast+0x466/0x780 [ 1188.262493] lookup_open+0x11b1/0x1870 [ 1188.264271] ? netlink_attachskb+0x6a0/0x6a0 [ 1188.268389] path_openat+0xfca/0x3f70 [ 1188.270865] ? security_netlink_send+0x87/0xb0 [ 1188.274602] do_filp_open+0x18e/0x250 [ 1188.276990] netlink_sendmsg+0x7c4/0xc60 [ 1188.281042] do_sys_open+0x2c5/0x430 [ 1188.282734] ? netlink_unicast+0x780/0x780 [ 1188.287026] SyS_creat+0x27/0x30 [ 1188.291671] ? security_socket_sendmsg+0x8f/0xc0 [ 1188.296313] do_syscall_64+0x1eb/0x630 [ 1188.300188] ? netlink_unicast+0x780/0x780 [ 1188.304485] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.308790] sock_sendmsg+0xd0/0x110 [ 1188.313080] [ 1188.313080] -> #1 [ 1188.317725] ___sys_sendmsg+0x70c/0x850 [ 1188.321405] ( [ 1188.325361] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 1188.329512] &ovl_i_mutex_dir_key[depth]){++++} [ 1188.333912] ? __fget+0x210/0x370 [ 1188.338287] : [ 1188.338299] lock_acquire+0x16f/0x430 [ 1188.342594] ? find_held_lock+0x35/0x130 [ 1188.347148] down_read+0x3b/0xb0 [ 1188.347157] path_openat+0x191e/0x3f70 [ 1188.351476] ? __fget+0x210/0x370 [ 1188.355511] do_filp_open+0x18e/0x250 [ 1188.359737] ? lock_downgrade+0x6e0/0x6e0 [ 1188.363945] do_open_execat+0xe7/0x4a0 [ 1188.363955] do_execveat_common.isra.0+0x6d2/0x1dd0 [ 1188.368095] ? __fget+0x237/0x370 [ 1188.372831] SyS_execveat+0x4f/0x60 [ 1188.372842] do_syscall_64+0x1eb/0x630 [ 1188.377505] ? __fget_light+0x172/0x1f0 [ 1188.381716] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.387402] ? __fdget+0x1b/0x20 [ 1188.391174] [ 1188.391174] -> #0 [ 1188.394697] ? sockfd_lookup_light+0xb4/0x160 [ 1188.398646] ( [ 1188.400428] __sys_sendmsg+0xb9/0x140 [ 1188.405161] &sig->cred_guard_mutex [ 1188.409812] ? SyS_shutdown+0x180/0x180 [ 1188.413317] ){+.+.}: [ 1188.415024] SyS_sendmsg+0x2d/0x50 [ 1188.419405] __lock_acquire+0x2c89/0x45e0 [ 1188.423441] ? __sys_sendmsg+0x140/0x140 [ 1188.427313] lock_acquire+0x16f/0x430 [ 1188.431886] do_syscall_64+0x1eb/0x630 [ 1188.435397] __mutex_lock+0xe8/0x1470 [ 1188.435406] mutex_lock_killable_nested+0x16/0x20 [ 1188.439702] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1188.443824] lock_trace+0x44/0xc0 [ 1188.443832] proc_pid_syscall+0x8c/0x200 [ 1188.448217] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.454147] proc_single_show+0xf6/0x160 [ 1188.457684] RIP: 0033:0x458c29 [ 1188.461989] seq_read+0x52b/0x12a0 [ 1188.461999] do_iter_read+0x3e7/0x5b0 [ 1188.466392] RSP: 002b:00007fbd702eac78 EFLAGS: 00000246 [ 1188.470358] vfs_readv+0xd3/0x130 [ 1188.476140] ORIG_RAX: 000000000000002e [ 1188.479494] do_preadv+0x15d/0x200 09:39:29 executing program 0: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x200802, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) linkat(r0, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000140)='./file0\x00', 0x1400) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)) renameat(r2, &(0x7f0000000040)='./file0\x00', r2, &(0x7f0000000080)='./file0\x00') ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000000)) 09:39:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vsock\x00', 0x610001, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x3ff, 0x4100) linkat(r1, &(0x7f0000000240)='./file0\x00', r2, &(0x7f00000002c0)='./file0\x00', 0x400) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x20000, 0x0) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r3, 0x800443d2, &(0x7f00000001c0)={0x5, &(0x7f0000000140)=[{}, {}, {}, {}, {}]}) connect$unix(r3, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000600040000080000000000000006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1188.483613] RAX: ffffffffffffffda RBX: 00007fbd702eac90 RCX: 0000000000458c29 [ 1188.488293] SyS_preadv+0x31/0x40 [ 1188.490082] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1188.494037] do_syscall_64+0x1eb/0x630 [ 1188.494048] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.497564] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1188.501512] [ 1188.501512] other info that might help us debug this: [ 1188.501512] 09:39:29 executing program 4: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x4000, 0x0) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e20, @local}}}, &(0x7f00000003c0)=0x84) ioctl$PPPIOCCONNECT(r0, 0x4004743a, &(0x7f0000000080)=0x3) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f00000004c0)={r1, 0x0, &(0x7f0000000400)}, &(0x7f0000000180)=0x10) r3 = epoll_create1(0x0) r4 = epoll_create1(0x0) close(r3) syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0x2, 0x20001) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000080)) epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r3, &(0x7f00000001c0)={0x80000006}) epoll_wait(r4, &(0x7f0000000000)=[{}], 0x1, 0x0) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000001c0)={r2, 0x6, 0x3}, 0x8) seccomp(0x1, 0x2, &(0x7f0000001980)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) 09:39:29 executing program 3 (fault-call:1 fault-nth:8): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:29 executing program 0: mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3, 0x2172, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0xe000, 0x3, &(0x7f0000ff2000/0xe000)=nil) getresuid(&(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100)) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x0, &(0x7f0000000240)={[{@index_on='index=on'}, {@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@xino_on='xino=on'}, {@xino_auto='xino=auto'}, {@xino_on='xino=on'}], [{@obj_role={'obj_role', 0x3d, 'em1{^](\''}}, {@euid_eq={'euid', 0x3d, r0}}, {@subj_role={'subj_role', 0x3d, '.(&\x02[md5sum'}}, {@smackfstransmute={'smackfstransmute'}}]}) get_robust_list(0x0, &(0x7f00000001c0)=0x0, &(0x7f0000000200)) [ 1188.503822] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd702eb6d4 [ 1188.507334] Chain exists of: [ 1188.507334] [ 1188.512083] R13: 00000000004c6516 R14: 00000000004dae80 R15: 0000000000000004 [ 1188.516203] &sig->cred_guard_mutex [ 1188.546203] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1188.547975] --> &pipe->mutex/1 --> &p->lock [ 1188.547975] [ 1188.547990] Possible unsafe locking scenario: [ 1188.547990] [ 1188.547992] CPU0 CPU1 [ 1188.547994] ---- ---- 09:39:29 executing program 0: r0 = socket(0x1e, 0x805, 0x0) listen(r0, 0x0) r1 = request_key(&(0x7f0000000000)='.dead\x00', 0xffffffffffffffff, &(0x7f0000000040)='\x00', 0xfffffffffffffffd) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000200)={0x0, 0x1}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000280)={r2, 0x7f}, &(0x7f00000002c0)=0x8) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000080)={r1, 0xab, 0x4ac}, &(0x7f0000000300)=ANY=[@ANYBLOB="656e633d72617720686173683d736861332d3338342d67656e65726963000000000000000000000000000000000000000000f3ffffffffff03000000004331000000000000000000009ee3cd6e91d026b707cc310d76580ac06f0ae89b1b711736faa35ddfa2eb1ce9b59050f54e3bd525aba5034f78befe203ea72a21534b79642598db1ea33f0736cc6e858dd0da5f413c88a11cb709e747d4c514b35f3c17f67ab0c405d622358498a5169dbb2c5933040bd9336568006641e453a93eea7136335232ce5a1d4eec74b66e74757909851b89be71215aa06036de15d8bcde72daca"], &(0x7f0000000140)="dd7ea7b09b21b36453f0ec917f2ae45540a2b72df4c90c9773e5e5ffb44bb1dd3a4e9b266512e7db87e2e8547e362bf9b5aded1a96094ac19412", &(0x7f0000000180)=""/111) accept4$nfc_llcp(r0, 0x0, 0x0, 0x0) 09:39:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r2, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f00000c2000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000172000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000007000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='cmdline\x00') read$FUSE(r3, &(0x7f0000000280), 0xfffffed3) ioctl$SIOCGSTAMPNS(r3, 0x8907, &(0x7f00000000c0)) 09:39:29 executing program 0: mkdir(&(0x7f0000000500)='./file0\x00', 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) mkdir(&(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2) r2 = socket$vsock_dgram(0x28, 0x2, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f0000000040)={0x3, 'yam0\x00', 0x3}, 0x18) sendto(r2, 0x0, 0x0, 0x20048001, 0x0, 0x0) [ 1188.547995] lock(&p->lock); [ 1188.548001] lock(&pipe->mutex/1); [ 1188.548015] lock( [ 1188.616251] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1188.616288] &p->lock [ 1188.629410] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1188.631795] ); [ 1188.631797] lock(&sig->cred_guard_mutex); [ 1188.631803] [ 1188.631803] *** DEADLOCK *** [ 1188.631803] [ 1188.631808] 1 lock held by syz-executor.1/5633: [ 1188.631810] #0: (&p->lock){+.+.}, at: [] seq_read+0xc1/0x12a0 [ 1188.631833] [ 1188.631833] stack backtrace: [ 1188.631843] CPU: 0 PID: 5633 Comm: syz-executor.1 Not tainted 4.14.112 #2 [ 1188.631848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1188.631851] Call Trace: [ 1188.631865] dump_stack+0x138/0x19c [ 1188.730256] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1188.732366] ? vprintk_func+0x65/0x159 [ 1188.732379] print_circular_bug.isra.0.cold+0x1cc/0x28f [ 1188.732391] __lock_acquire+0x2c89/0x45e0 [ 1188.737245] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1188.744745] ? find_held_lock+0x35/0x130 [ 1188.744759] ? trace_hardirqs_on+0x10/0x10 [ 1188.744773] lock_acquire+0x16f/0x430 [ 1188.744781] ? lock_trace+0x44/0xc0 [ 1188.744789] ? lock_trace+0x44/0xc0 [ 1188.744800] __mutex_lock+0xe8/0x1470 [ 1188.744807] ? lock_trace+0x44/0xc0 [ 1188.744814] ? lock_trace+0x44/0xc0 [ 1188.744821] ? mutex_trylock+0x1c0/0x1c0 [ 1188.744831] ? seq_read+0x931/0x12a0 [ 1188.744839] ? do_iter_read+0x3e7/0x5b0 [ 1188.744846] ? vfs_readv+0xd3/0x130 [ 1188.744853] ? do_preadv+0x15d/0x200 [ 1188.744860] ? SyS_preadv+0x31/0x40 [ 1188.744873] ? do_syscall_64+0x1eb/0x630 [ 1188.768182] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1188.768411] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.773556] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1188.778267] ? save_trace+0x290/0x290 [ 1188.778283] mutex_lock_killable_nested+0x16/0x20 [ 1188.778291] ? save_trace+0x290/0x290 [ 1188.778298] ? mutex_lock_killable_nested+0x16/0x20 [ 1188.778306] lock_trace+0x44/0xc0 [ 1188.778319] proc_pid_syscall+0x8c/0x200 [ 1188.817918] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1188.820156] ? mem_read+0x70/0x70 [ 1188.820166] ? get_pid_task+0x98/0x140 [ 1188.820177] ? lock_downgrade+0x6e0/0x6e0 [ 1188.820187] proc_single_show+0xf6/0x160 [ 1188.820196] seq_read+0x52b/0x12a0 [ 1188.820207] ? seq_lseek+0x3c0/0x3c0 [ 1188.820219] ? security_file_permission+0x8f/0x1f0 [ 1188.824398] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1188.827615] ? rw_verify_area+0xea/0x2b0 [ 1188.827625] do_iter_read+0x3e7/0x5b0 [ 1188.827635] vfs_readv+0xd3/0x130 [ 1188.827646] ? compat_rw_copy_check_uvector+0x310/0x310 [ 1188.833681] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1188.835307] ? __fget+0x237/0x370 [ 1188.835320] ? __fget_light+0x172/0x1f0 [ 1188.839058] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1188.842992] do_preadv+0x15d/0x200 [ 1188.843000] ? do_readv+0x220/0x220 [ 1188.843008] ? SyS_clock_gettime+0xfd/0x190 [ 1188.843017] ? SyS_writev+0x30/0x30 [ 1188.843025] SyS_preadv+0x31/0x40 [ 1188.843036] do_syscall_64+0x1eb/0x630 [ 1188.843043] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1188.843054] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1188.843062] RIP: 0033:0x458c29 [ 1189.023568] RSP: 002b:00007f808cbb9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1189.023577] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000458c29 [ 1189.023581] RDX: 1000000000000269 RSI: 0000000020000480 RDI: 0000000000000003 [ 1189.023589] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1189.053083] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f808cbba6d4 [ 1189.053088] R13: 00000000004c5969 R14: 00000000004d9cc8 R15: 00000000ffffffff [ 1189.053298] protocol 88fb is buggy, dev hsr_slave_0 [ 1189.072771] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1189.072792] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' 09:39:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:29 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r1, &(0x7f0000000140)={0x1, 0x10, 0xfa00, {&(0x7f0000000080), r2}}, 0x18) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) sendmmsg(r0, &(0x7f000000ac80), 0x66, 0x0) 09:39:29 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000140)={0x0, 0xffffffffffffff7c, &(0x7f0000df6000)={&(0x7f0000b04cf4)={0x14, 0xa, 0xa, 0xfffffffffffffffd}, 0x14}}, 0x0) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x2) getsockopt$X25_QBITINCL(r1, 0x106, 0x1, &(0x7f0000000040), &(0x7f0000000080)=0xfffffffffffffda8) 09:39:29 executing program 1: syz_emit_ethernet(0xffb6, &(0x7f000000a000)={@broadcast=[0xff, 0xe0], @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0xfec3, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @udp={0x3f00, 0x3, 0xffffca88}}}}}, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7ff, 0x202500) msgget(0x2, 0x10) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000040)={0x10000, 0x2, 'client1\x00', 0xffffffff80000002, "d56404a0e533e7b4", "9bc27ae0ed163e731ac047ee1e0c1d8779a8538c6e8b557033f817ed17c98083", 0x3f}) write$apparmor_current(r0, &(0x7f0000000100)=@profile={'changeprofile ', 'client1\x00'}, 0x16) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000140)={0x0, 0x3ff}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000001c0)={r1, 0x6f8}, &(0x7f0000000200)=0x8) 09:39:29 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x200000001f) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) fcntl$setsig(r0, 0xa, 0xc) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x8000, 0x0) 09:39:29 executing program 2: unshare(0x800) 09:39:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") close(r0) r1 = getuid() lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}}}, &(0x7f0000000380)=0xe8) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_xen(&(0x7f00000000c0)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=xen,aname=/proc/sys/net/ipv4/vs/nat_icmp_send\x00,msize=0x0000000000000000,cache=mmap,fowner>', @ANYRESDEC=r1, @ANYBLOB=',euid>', @ANYRESDEC=r2, @ANYBLOB, @ANYRESDEC=r3, @ANYBLOB=',uid=', @ANYRESDEC=r4, @ANYBLOB=',obj_user=/proc/sys/net/ipv4/vs/nat_icmp_send\x00,\x00']) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, 0xffffffffffffffff, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000100)) 09:39:29 executing program 4: r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/policy\x00', 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x32) ioctl$SIOCRSSCAUSE(r0, 0x89e1, &(0x7f0000000100)=0x4) r1 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000140)={{0x2, 0x4e22, @remote}, {0x6, @broadcast}, 0x40, {0x2, 0x4e22, @rand_addr=0x3}, 'vlan0\x00'}) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f00000002c0)) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000001c0)={0x0, 0x1b3}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000240)={r2, 0x4a4}, &(0x7f0000000280)=0x8) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40bc5311, &(0x7f0000000040)={0x80, 0x1}) [ 1189.079311] protocol 88fb is buggy, dev hsr_slave_1 [ 1189.107924] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.121656] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' 09:39:29 executing program 2: symlinkat(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0x0) clone(0x40100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IP_VS_SO_SET_EDIT(r1, 0x0, 0x60, &(0x7f0000000080)={0x8000000000, @local, 0x0, 0x3, 'ovf\x00', 0x0, 0x200000, 0x40400}, 0x2c) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace(0x8, r0) tkill(r0, 0x3d) wait4(0x0, 0x0, 0x0, 0x0) 09:39:29 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$sndseq(&(0x7f0000000300)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000418f50)={{0x80}, '\nL\xea\xa0]\x9a\x00\x00\x00\x00\x00\x00\x00\x03\x9b?\xd4\xce\xc3\a\xe8\xef=\x13\xeby\x0e\xc9\xc6Z\xba\xf9\r\"\x9d\xb6\x92T.[x\xf8\xb2\x9e\n\'\x80\x0f\x00\x00\x00\x00\x00\x00\x00\t\xfbB\xf3vX\x97\x01\xa4', 0xa9824f69d1376637, 0x10800a}) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x4100, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000140)={0x0, 0xcf, "393a3953e521a36da605a5be6357888bbf32ce8a8195d1f8748e63888d51e0a553c89fb14bd72cd4f2a428692c1343695148ffe3e67fc088da6fca5df204784a66e661f9e0d41ff3f7a7f2a5ecf95c026ec103392324a39bfb9b2289f8e33aa935f703f92571cfb738cca1ffbbc3f395ddf593fe1024ce1f98a0f665e3a2a0ad318dbde3e897cb81c8ce8072fc6300f051dc4d076dc3395a49f403ba6b99ae05898487136c80fa2d8385288f5e3cd71eb61c43bd55a1823e748bce20efb5b99fede9db9cac9ebeac5d4cb3efbb0ec5"}, &(0x7f0000000040)=0xd7) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r2, 0x84, 0x78, &(0x7f0000000080)=r3, 0x4) r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000240)='fou\x00') write$FUSE_DIRENT(r2, &(0x7f00000003c0)={0x128, 0x0, 0x5, [{0x6, 0x401, 0xd, 0x1000, '/dev/snd/seq\x00'}, {0x6, 0x0, 0x4, 0x1, 'fou\x00'}, {0x1, 0x7, 0xd, 0x9, ']-ppp0selinux'}, {0x3, 0x1000, 0x4, 0xffffffffffffd782, 'fou\x00'}, {0x4, 0x7ff, 0x0, 0x80000000}, {0x0, 0x7fff, 0x40, 0x0, '\nL\xea\xa0]\x9a\x00\x00\x00\x00\x00\x00\x00\x03\x9b?\xd4\xce\xc3\a\xe8\xef=\x13\xeby\x0e\xc9\xc6Z\xba\xf9\r\"\x9d\xb6\x92T.[x\xf8\xb2\x9e\n\'\x80\x0f\x00\x00\x00\x00\x00\x00\x00\t\xfbB\xf3vX\x97\x01\xa4'}, {0x1, 0x4, 0x0, 0x2}]}, 0x128) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x50, r4, 0x9, 0x70bd2a, 0x25dfdbfe, {}, [@FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_IPPROTO={0x8}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0xbf}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_TYPE={0x8, 0x4, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) 09:39:29 executing program 0: r0 = fcntl$getown(0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000500)={0x7, 0x70, 0x80000000, 0x9, 0xe3, 0x8, 0x0, 0x4, 0x1404, 0x4, 0x20, 0x10000, 0x1d11, 0x80000000, 0x1, 0x5, 0x7ff, 0x1, 0x3, 0x6, 0x3, 0xce89, 0x5, 0x2, 0x7f, 0x9, 0x1f, 0x1e, 0x0, 0x9, 0x6, 0x2, 0xf85, 0x1a, 0x1, 0x5, 0xcd2, 0x7fff, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000004c0), 0x7}, 0x304a3, 0x5, 0x0, 0x6, 0xfc, 0x20, 0x10000}, r0, 0x5, 0xffffffffffffff9c, 0x8) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video35\x00', 0x2, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x462240, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f0000000180)=0xe8) sendmsg$nl_route(r2, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)=@ipv6_newaddr={0x5c, 0x14, 0x2, 0x70bd26, 0x25dfdbfd, {0xa, 0x3f, 0x300, 0xff, r3}, [@IFA_ADDRESS={0x14, 0x1, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @IFA_CACHEINFO={0x14, 0x6, {0x32cf8029, 0x3, 0x100, 0xffffffffffff1596}}, @IFA_LOCAL={0x14, 0x2, @dev={0xfe, 0x80, [], 0x21}}, @IFA_FLAGS={0x8, 0x8, 0x14}]}, 0x5c}}, 0x10) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f00000001c0)={0x0, 0x401, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}}) ioctl$TIOCGRS485(r2, 0x542e, &(0x7f0000000100)) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x80, 0x1, 0x4}) [ 1189.144320] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1189.164538] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.173282] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.174594] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' 09:39:29 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'vlan0\x00', 0x1000000802}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x7) r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000140), &(0x7f0000000200)=0xfffffd3b) dup3(r0, r1, 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x18}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x40000, 0x0) [ 1189.206191] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.222678] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.241291] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env 09:39:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x170) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x408100, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x48, &(0x7f0000000200)=[@in6={0xa, 0x4e24, 0x0, @empty, 0x2}, @in6={0xa, 0x4e22, 0x8000, @local, 0x80}, @in={0x2, 0x4e22, @multicast1}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000140)={r4, 0x2, 0x30}, 0xc) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:29 executing program 4: clone(0x800000409ff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) ptrace$setopts(0x4200, r0, 0x8, 0x10) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4205, r1, 0x0, 0x0) tkill(r1, 0x38) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000400)='cgroup.events\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0xc5f0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffff9c) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000240)=0xb6, 0x4) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r3, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2020000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x48, r4, 0x408, 0x70bd27, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x10) ptrace$setregs(0xf, r1, 0x10, &(0x7f0000000000)) ptrace$cont(0x7, r1, 0x0, 0x0) 09:39:29 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x8100, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000280)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000000180)=0xe8) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000001c0)={@dev={0xfe, 0x80, [], 0xb}, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @mcast2, 0x7e2, 0x4, 0x7ff, 0x400, 0x4e, 0x240, r1}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:29 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/sockcreate\x00&\xa0\xd1\xf2\x10\xf9\x16E\vv\x0e\x02z\xb6/%\xbdQe(\xe7\xe6\xce\xd0n\x83\x8d\xee\x00\x8cF\xdf\x84|vA\xc8\xe6\r:\\\x1d.\xdb\x1e\x1am\xd4]\b\v0\xd4\f') write$selinux_context(r1, &(0x7f00000000c0)='system_u:object_r:semanage_trans_lock_t:s0\n', 0x2b) socket$inet6(0xa, 0x2, 0x0) ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{}, {0x0}, {}]}) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000001c0)={0xffffffffffffffff}, 0x0, 0x7}}, 0x20) write$RDMA_USER_CM_CMD_ACCEPT(r1, &(0x7f0000000240)={0x8, 0x120, 0xfa00, {0x3, {0x3, 0x1, "2434c02833791880282e8a19024dcf0799e8444515c26475a80fc19d549617c93327677154fdd81cef56666ff64d898a3c607e93dd20f3407d5368dbfdf20e8e3ba365191e2e6a2b5b93f05203677d01efbd0a71136ff33eed1fefcbc49c3ddfe0ac2f2ff4b0a5eaf380656792c3d63bd37457f21a00fe06eddf54f49d6f7b0143a8f58031ce692b17fd651ea31f824f9f3b39220d1a6dcd964f6578c2af4f0098a69f90fae8df9f1168e4380e97cd9bd64093bf4e1f21db500340a5e38b00d1545ace30fbf10a8e4688fa32326acac9c5ec70a7528afcf2deee61ac9d74f1cd37daafeb7196f6f1db2c15ba546ccf8b1b73b63c5774250ec36330423d97d2a3", 0xef, 0x7, 0x1, 0x0, 0x7fffffff, 0x4, 0x6}, r3}}, 0x128) ioctl$DRM_IOCTL_GET_CTX(r1, 0xc0086423, &(0x7f0000000100)={r2, 0x2}) [ 1189.242860] kobject: 'vlan0' (ffff888061f91830): kobject_add_internal: parent: 'net', set: 'devices' [ 1189.247771] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.262129] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1189.274774] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1189.282377] kobject: 'vlan0' (ffff888061f91830): kobject_uevent_env [ 1189.293632] kobject: 'vlan0' (ffff888061f91830): fill_kobj_path: path = '/devices/virtual/net/vlan0' 09:39:29 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x8000400082) mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0xfffffffffffffffd, 0x31, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@loopback, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0xff}, 0x0, @in=@empty, 0x0, 0x4, 0x0, 0x6}}, 0xe8) sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0) ioctl(r2, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bc070") ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f0000000000)={0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000100)={0x0, r4}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140)={r5}) [ 1189.296826] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1189.305107] kobject: 'queues' (ffff8880982a5948): kobject_add_internal: parent: 'vlan0', set: '' [ 1189.313542] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.330660] kobject: 'queues' (ffff8880982a5948): kobject_uevent_env [ 1189.337613] kobject: 'queues' (ffff8880982a5948): kobject_uevent_env: filter function caused the event to drop! 09:39:29 executing program 3: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1189.347238] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1189.353463] kobject: 'rx-0' (ffff8880a603a790): kobject_add_internal: parent: 'queues', set: 'queues' [ 1189.367882] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.375428] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.377914] kobject: 'rx-0' (ffff8880a603a790): kobject_uevent_env [ 1189.388453] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1189.390275] kobject: 'rx-0' (ffff8880a603a790): fill_kobj_path: path = '/devices/virtual/net/vlan0/queues/rx-0' [ 1189.397384] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.408182] kobject: 'tx-0' (ffff888065313ad8): kobject_add_internal: parent: 'queues', set: 'queues' [ 1189.417917] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1189.426152] kobject: 'tx-0' (ffff888065313ad8): kobject_uevent_env [ 1189.438053] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env 09:39:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:30 executing program 4: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x41, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r1, 0x720, 0x400, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x4) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) modify_ldt$write(0x1, &(0x7f0000000000)={0x7, 0x3cdbb1bf10fa0758, 0xffffffffffffffff, 0x9, 0xa, 0x9, 0x1, 0x7, 0x3, 0x7f}, 0x10) r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) accept$netrom(r3, &(0x7f00000000c0)={{}, [@remote, @default, @null, @remote, @default, @rose, @netrom]}, &(0x7f0000000140)=0x48) r4 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x24, 0x4000) ioctl$SNDRV_CTL_IOCTL_PVERSION(r4, 0x80045500, &(0x7f0000000080)) sendmmsg(r2, &(0x7f00000064c0)=[{{&(0x7f0000000180)=@isdn={0x22, 0x6, 0xff, 0x3f, 0x6}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000280)="d1", 0x1}], 0x1}}], 0x1, 0x44) [ 1189.441989] kobject: 'tx-0' (ffff888065313ad8): fill_kobj_path: path = '/devices/virtual/net/vlan0/queues/tx-0' [ 1189.449581] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1189.462995] kobject: 'batman_adv' (ffff888099bf7f00): kobject_add_internal: parent: 'vlan0', set: '' [ 1189.476424] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.493121] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1189.500828] kobject: 'batman_adv' (ffff888099bf7f00): kobject_uevent_env [ 1189.507897] kobject: 'batman_adv' (ffff888099bf7f00): kobject_uevent_env: filter function caused the event to drop! [ 1189.508340] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.525408] kobject: 'batman_adv' (ffff888099bf7f00): kobject_cleanup, parent (null) [ 1189.533562] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1189.541148] kobject: 'batman_adv' (ffff888099bf7f00): calling ktype release [ 1189.553190] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1189.553773] kobject: (ffff888099bf7f00): dynamic_kobj_release [ 1189.561542] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1189.568035] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.582871] kobject: 'batman_adv': free name [ 1189.587614] kobject: 'rx-0' (ffff8880a603a790): kobject_cleanup, parent ffff8880982a5948 [ 1189.597584] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.606726] kobject: 'rx-0' (ffff8880a603a790): auto cleanup 'remove' event [ 1189.615088] kobject: 'rx-0' (ffff8880a603a790): kobject_uevent_env [ 1189.623352] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.629659] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.640040] kobject: 'rx-0' (ffff8880a603a790): fill_kobj_path: path = '/devices/virtual/net/vlan0/queues/rx-0' [ 1189.656338] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1189.663897] kobject: 'rx-0' (ffff8880a603a790): auto cleanup kobject_del [ 1189.670859] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1189.675017] kobject: 'rx-0' (ffff8880a603a790): calling ktype release [ 1189.687399] kobject: 'rx-0': free name [ 1189.688492] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1189.693161] kobject: 'tx-0' (ffff888065313ad8): kobject_cleanup, parent ffff8880982a5948 [ 1189.698236] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1189.706506] kobject: 'tx-0' (ffff888065313ad8): auto cleanup 'remove' event [ 1189.725087] kobject: 'tx-0' (ffff888065313ad8): kobject_uevent_env [ 1189.731688] kobject: 'tx-0' (ffff888065313ad8): fill_kobj_path: path = '/devices/virtual/net/vlan0/queues/tx-0' [ 1189.742970] kobject: 'tx-0' (ffff888065313ad8): auto cleanup kobject_del [ 1189.750162] kobject: 'tx-0' (ffff888065313ad8): calling ktype release [ 1189.756763] kobject: 'tx-0': free name [ 1189.761128] kobject: 'queues' (ffff8880982a5948): kobject_cleanup, parent (null) [ 1189.769575] kobject: 'queues' (ffff8880982a5948): calling ktype release [ 1189.776391] kobject: 'queues' (ffff8880982a5948): kset_release [ 1189.782419] kobject: 'queues': free name [ 1189.786756] kobject: 'vlan0' (ffff888061f91830): kobject_uevent_env [ 1189.793241] kobject: 'vlan0' (ffff888061f91830): fill_kobj_path: path = '/devices/virtual/net/vlan0' [ 1189.840394] kobject: 'vlan0' (ffff888061f91830): kobject_cleanup, parent (null) [ 1189.849087] kobject: 'vlan0' (ffff888061f91830): calling ktype release [ 1189.856079] kobject: 'vlan0': free name [ 1189.867873] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1189.874418] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' 09:39:32 executing program 2: symlinkat(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, 0x0) clone(0x40100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IP_VS_SO_SET_EDIT(r1, 0x0, 0x60, &(0x7f0000000080)={0x8000000000, @local, 0x0, 0x3, 'ovf\x00', 0x0, 0x200000, 0x40400}, 0x2c) ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace(0x8, r0) tkill(r0, 0x3d) wait4(0x0, 0x0, 0x0, 0x0) 09:39:32 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000180)='/dev/dri/card#\x00', 0x4, 0x2001) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(0xffffffffffffffff, 0xc08c5336, &(0x7f0000000040)={0x0, 0x16c, 0x0, 'queue0\x00'}) read(r0, &(0x7f0000000000), 0x0) ioctl(r0, 0xfeffffffffffffb2, &(0x7f0000000040)) 09:39:32 executing program 4: futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x9, 0x204000) r1 = syz_init_net_socket$ax25(0x3, 0x2, 0xcf) dup2(r0, r1) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0) futex(&(0x7f000000cffc), 0x3, 0x1, &(0x7f00000000c0), &(0x7f0000000100), 0x0) 09:39:32 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100009040000000000000000000000a5", @ANYRES32=0x0, @ANYBLOB="02000000cf02f30eaf3e9a38c56f9910a0d0c0630000"], 0x34}}, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x1000, 0x400000) recvfrom$x25(r1, &(0x7f0000000100)=""/183, 0xb7, 0x2000, &(0x7f00000001c0)={0x9, @remote={[], 0x0}}, 0x12) ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f00000000c0)={0x3, 0x3}) 09:39:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) fcntl$addseals(r0, 0x409, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 09:39:32 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:32 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4}}}, 0x108) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00') writev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)="0c79dcb5c6b7ca42f4ccca4a8e81309272c7452d63cf3d9a8b954765bf05a544d9c10f3594c3460452acedd4b93ec7ba4090021484c7682d805c67a8c160dc66318df1f78de853f15c0881a895d83da2f5fd31d0d18f51a6b52d16fe1dccb67ed08c4c406a37e742e0934183e7a4b07452d07b5d40ee104422468fc0f7c2bd7a82ee42c59fec0ea476dbbfebf2ba6ca86f4b3fe067979d0741", 0x99}, {&(0x7f0000000200)="8c3fcf681081d87e720d562f26cf3ec215b9f9a15105b121461725ec1cc2a528dc3edd1e3ce81b0ebbc9feabab944176e3d6fe78f9fdd66097feff713736a6fbb279c8cf0197d88e32c0acd2d8dc5ccae3ff42562848955a2a2f2c4f59acbe0e136c75afabe9cb46f56f70337ee6d0bf39279dff89ca834dc935ab093013bb950e2abe10731ef774221375278d0bfaaef783dce1184d19025095c24df23201e17128bac9fde9868245533193457dc1854ce1e22b066dc71305a8552188ac6df96b45273e3b9b9dc2cbba6ff0b71e114f0cb49a515510200c8e8a59c293e3d3e66672a482c8ad9eac5932f89f8aaa40c1f3618c87406f5ee9172ae9", 0xfb}, {&(0x7f0000000300)="3c6b8867ab39df4afa2b52fd8d8fe36e45f650f80e5b84843714d6e63264f2890080ffad8c9cab64b198959bf18c5ca86d68059e35ab4714dde82e226dc469cab00abe3605ffe0fe7fb088a3df85cf179f889a5e77ce32a751fa0117e8749d2bfac629d68a", 0x65}], 0x3) preadv(r2, &(0x7f0000000100), 0x2df, 0x80000000000) [ 1192.180415] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1192.194305] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.203557] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.203968] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. 09:39:32 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000100)={0x0, 0x70, 0x4, 0x5, 0x40, 0x10000, 0x0, 0x8, 0x0, 0x5, 0x0, 0xffffffffffffff80, 0x3, 0x80, 0x8001, 0xfff, 0xfff, 0x2, 0x9, 0xffffffff, 0x845, 0x65b, 0x13f, 0x0, 0x7, 0x20, 0x3, 0x80000001, 0x2, 0x5, 0x0, 0x1000, 0x7, 0x9, 0x2, 0xf5, 0x2, 0x1, 0x0, 0x7e000000000000, 0x1, @perf_config_ext={0x4, 0xfffffffffffff04b}, 0x0, 0x1, 0x8, 0x0, 0x8, 0x7, 0x1}) ioctl$TCSETXF(r1, 0x5434, &(0x7f0000000180)={0x6, 0x7, [0x87a, 0xca8, 0x2, 0xfffffffffffffff6, 0x400], 0x258d}) ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f0000000280)={"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"}) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000040)={'rose0\x00', {0x2, 0x4e21, @rand_addr=0x4}}) [ 1192.224926] kobject: 'gre1' (ffff8880691d8db0): kobject_add_internal: parent: 'net', set: 'devices' [ 1192.237924] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1192.244973] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.246247] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1192.252897] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.261754] kobject: 'gre1' (ffff8880691d8db0): kobject_uevent_env [ 1192.274404] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.278545] kobject: 'gre1' (ffff8880691d8db0): fill_kobj_path: path = '/devices/virtual/net/gre1' [ 1192.285014] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.302201] kobject: 'queues' (ffff88808cf4b648): kobject_add_internal: parent: 'gre1', set: '' [ 1192.312812] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.318378] kobject: 'queues' (ffff88808cf4b648): kobject_uevent_env 09:39:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x401, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x4200, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000000)="baf80c66b830f0578c66efbafc0c66ed8adc6526670fc76817d2a0000066b92a1001c00f3266b9800000c00f326635001000000f30baf80c66b88da2478166efbafc0cb0c1eebaf80c66b83470238566efbafc0ced3e2ee0f7ba6100ec", 0x5d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1192.319329] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.326311] kobject: 'queues' (ffff88808cf4b648): kobject_uevent_env: filter function caused the event to drop! [ 1192.345485] kobject: 'rx-0' (ffff88809c670250): kobject_add_internal: parent: 'queues', set: 'queues' [ 1192.347409] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1192.355274] kobject: 'rx-0' (ffff88809c670250): kobject_uevent_env [ 1192.366055] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1192.369796] kobject: 'rx-0' (ffff88809c670250): fill_kobj_path: path = '/devices/virtual/net/gre1/queues/rx-0' [ 1192.380426] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.390748] kobject: 'tx-0' (ffff88808cf527d8): kobject_add_internal: parent: 'queues', set: 'queues' [ 1192.398284] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.413106] kobject: 'tx-0' (ffff88808cf527d8): kobject_uevent_env 09:39:32 executing program 3: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="3c000000fe402a554d5b4a96e4b2c4443397653ade7358268114160200f1ed74321b7e683398a5f13d42eb64e9617301500f55d24033a4995b750b0ab1b14bb7"], &(0x7f0000000140)=0x44) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f00000001c0)={'raw\x00', 0x30, "7ea60b87e46370c441dea280d88f29300294a64793d1638f8c7c9f5ea25d174cf5e5a04b94312ef54955aeb441832a80"}, &(0x7f0000000280)=0x54) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r1, 0x1ff}, 0x8) socket$pppoe(0x18, 0x1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:32 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4}}}, 0x108) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00') writev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)="0c79dcb5c6b7ca42f4ccca4a8e81309272c7452d63cf3d9a8b954765bf05a544d9c10f3594c3460452acedd4b93ec7ba4090021484c7682d805c67a8c160dc66318df1f78de853f15c0881a895d83da2f5fd31d0d18f51a6b52d16fe1dccb67ed08c4c406a37e742e0934183e7a4b07452d07b5d40ee104422468fc0f7c2bd7a82ee42c59fec0ea476dbbfebf2ba6ca86f4b3fe067979d0741", 0x99}, {&(0x7f0000000200)="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", 0xfb}, {&(0x7f0000000300)="3c6b8867ab39df4afa2b52fd8d8fe36e45f650f80e5b84843714d6e63264f2890080ffad8c9cab64b198959bf18c5ca86d68059e35ab4714dde82e226dc469cab00abe3605ffe0fe7fb088a3df85cf179f889a5e77ce32a751fa0117e8749d2bfac629d68a", 0x65}], 0x3) preadv(r2, &(0x7f0000000100), 0x2df, 0x80000000000) 09:39:33 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x1) setsockopt$inet_MCAST_LEAVE_GROUP(r1, 0x0, 0x2d, &(0x7f00000000c0)={0x7, {{0x2, 0x4e24, @remote}}}, 0x88) [ 1192.423761] kobject: 'tx-0' (ffff88808cf527d8): fill_kobj_path: path = '/devices/virtual/net/gre1/queues/tx-0' [ 1192.427262] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.441072] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.459363] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1192.471505] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1192.494557] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.506468] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.518665] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1192.526000] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1192.530852] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1192.536519] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1192.543520] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1192.548632] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1192.568533] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1192.575912] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1192.586391] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1192.596511] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1193.200113] net_ratelimit: 14 callbacks suppressed [ 1193.200116] protocol 88fb is buggy, dev hsr_slave_0 [ 1193.210259] protocol 88fb is buggy, dev hsr_slave_1 [ 1193.510117] protocol 88fb is buggy, dev hsr_slave_0 [ 1193.515250] protocol 88fb is buggy, dev hsr_slave_1 [ 1193.590131] protocol 88fb is buggy, dev hsr_slave_0 [ 1193.595234] protocol 88fb is buggy, dev hsr_slave_1 [ 1193.600329] protocol 88fb is buggy, dev hsr_slave_0 [ 1193.605576] protocol 88fb is buggy, dev hsr_slave_1 09:39:35 executing program 2: r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt(r0, 0x84, 0x2, 0x0, 0x0) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000040)=0xc) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/status\x00', 0x0, 0x0) ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f00000000c0)) 09:39:35 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4}}}, 0x108) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00') writev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)="0c79dcb5c6b7ca42f4ccca4a8e81309272c7452d63cf3d9a8b954765bf05a544d9c10f3594c3460452acedd4b93ec7ba4090021484c7682d805c67a8c160dc66318df1f78de853f15c0881a895d83da2f5fd31d0d18f51a6b52d16fe1dccb67ed08c4c406a37e742e0934183e7a4b07452d07b5d40ee104422468fc0f7c2bd7a82ee42c59fec0ea476dbbfebf2ba6ca86f4b3fe067979d0741", 0x99}, {&(0x7f0000000200)="8c3fcf681081d87e720d562f26cf3ec215b9f9a15105b121461725ec1cc2a528dc3edd1e3ce81b0ebbc9feabab944176e3d6fe78f9fdd66097feff713736a6fbb279c8cf0197d88e32c0acd2d8dc5ccae3ff42562848955a2a2f2c4f59acbe0e136c75afabe9cb46f56f70337ee6d0bf39279dff89ca834dc935ab093013bb950e2abe10731ef774221375278d0bfaaef783dce1184d19025095c24df23201e17128bac9fde9868245533193457dc1854ce1e22b066dc71305a8552188ac6df96b45273e3b9b9dc2cbba6ff0b71e114f0cb49a515510200c8e8a59c293e3d3e66672a482c8ad9eac5932f89f8aaa40c1f3618c87406f5ee9172ae9", 0xfb}, {&(0x7f0000000300)="3c6b8867ab39df4afa2b52fd8d8fe36e45f650f80e5b84843714d6e63264f2890080ffad8c9cab64b198959bf18c5ca86d68059e35ab4714dde82e226dc469cab00abe3605ffe0fe7fb088a3df85cf179f889a5e77ce32a751fa0117e8749d2bfac629d68a", 0x65}], 0x3) preadv(r2, &(0x7f0000000100), 0x2df, 0x80000000000) 09:39:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x800000) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vsock\x00', 0x80040, 0x0) accept4$rose(r1, &(0x7f0000000340)=@full={0xb, @remote, @default, 0x0, [@remote, @bcast, @remote, @netrom, @rose, @bcast]}, &(0x7f0000000440)=0x40, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000000280)='/dev/vbi#\x00', 0x0, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000004c0)={0xffffffffffffffff}, 0x13f, 0x5}}, 0x20) getsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580), &(0x7f00000005c0)=0xb) write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f0000000540)={0x1, 0x10, 0xfa00, {&(0x7f0000000480), r4}}, 0x18) r5 = openat$vsock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vsock\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0xc290e2738aebda55, 0x5, 0x0, 0xff35) r6 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r6, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x24000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xf8, r7, 0x300, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40df}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}]}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1e84}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x21, 0x20}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x23, 0x11}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x6}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x514d7369b2f500b5}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x20004000}, 0x80) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0xf8) ioctl$KVM_RUN(r8, 0xae80, 0x0) 09:39:35 executing program 4: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40000020, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x50, 0x0) r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) fchdir(r0) open(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x24) r1 = inotify_init() ioctl$sock_inet6_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x200c2, 0x0) inotify_add_watch(r1, &(0x7f0000000000)='./file0\x00', 0x4000082) write$nbd(r2, &(0x7f0000000240)={0x67446698, 0x1, 0x0, 0x0, 0x0, "6517a42ac4cb7a63d1a97a7e5a31524e892eac4023b714a3202f99f16d060a35efd21affe238385d4de98c35d691bbbf35c5601687a77cfa847ae2650ba9a951858f89ecba5a489a8520ea62222483adbd77c42b5bb512d0c4af1b6e8a6978848857a7c0695d547ba26fc19f209f27cc259ce3"}, 0x83) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) sendfile(r2, r2, &(0x7f0000000200), 0xa198) 09:39:35 executing program 0: r0 = socket$unix(0x1, 0x0, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000)='security.selinux\x00', &(0x7f0000000040)='system_u:object_r:logrotate_exec_t:s0:', 0x26, 0x0) 09:39:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f00000000c0)) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$RTC_PIE_OFF(r1, 0x7006) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x8012, r2, 0x2d) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x5c832, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xc) 09:39:35 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$DRM_IOCTL_GET_MAGIC(r2, 0x80046402, &(0x7f00000000c0)=0x1000) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x21000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0x6, 0x8000031, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000100)={0x3, 0x4, 0x8}) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f00000022c0)=""/4096, &(0x7f0000000040)=0x1000) [ 1195.220486] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1195.238747] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1195.251546] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env 09:39:35 executing program 0: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000080)=ANY=[@ANYBLOB="00edd8d054b2f87313"]) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 09:39:35 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 2: r0 = socket$inet6(0xa, 0x0, 0x7fffffff) setsockopt$inet6_int(r0, 0x29, 0x16, &(0x7f0000000000), 0x4) close(r0) r1 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0xfff, 0x200) getresuid(&(0x7f0000000140), &(0x7f0000000180)=0x0, &(0x7f00000001c0)) r3 = getegid() mount$fuseblk(&(0x7f0000000040)='/dev/loop0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='fuseblk\x00', 0x0, &(0x7f0000000200)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x400}}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x1f}}, {@max_read={'max_read', 0x3d, 0x2}}, {@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}], [{@audit='audit'}, {@subj_type={'subj_type'}}]}}) 09:39:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x200, 0x0) ioctl$TIOCSERGETLSR(r1, 0x5459, &(0x7f00000000c0)) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1195.270085] protocol 88fb is buggy, dev hsr_slave_0 [ 1195.275219] protocol 88fb is buggy, dev hsr_slave_1 [ 1195.281081] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.305883] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env 09:39:35 executing program 3: openat$vimc0(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video0\x00', 0x2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="340000001010bc0400000000000000000000000029322ed29e1f3fc5009522485c23f358256e39d66a6622dd5b882a121bfc7135b0a450a0d23bf676f79e8e126f7501d3696ec7d3e23b7f6131272d06c8791b72a4ab00b696747e7c5721d6b0216e62e5b3f55d6bb3f0324afc858310906bddc9c1f675f9b623092607d61bc25ce572a5c8e69f779bc434f65942af", @ANYRES32=0x0, @ANYBLOB="00000000000000001400120008000100677265000800020004001200"], 0x34}}, 0xfffffffffffffffc) 09:39:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x4, 0xf001, 0xc, 0x1, 0x7f, 0x22, 0x1075, 0x401, 0x81, 0xfffffffffffffff7, 0xe7, 0x401}, {0x1005, 0x103000, 0x1a, 0x3cc, 0x200, 0x5, 0x6, 0x3, 0x1, 0x2, 0x1, 0x40}, {0x0, 0x6000, 0x0, 0xfffffffffffffff8, 0x2, 0xfb, 0x6, 0x4a5dab52, 0x7, 0x5, 0x2, 0x8}, {0x117000, 0xf001, 0xf, 0x8, 0xffffffff, 0x1, 0x7, 0x3, 0x2cc5307d, 0x5, 0xed, 0x9}, {0x5004, 0x10d004, 0x1b, 0x1000, 0x0, 0x200, 0x7, 0x10001, 0x100000000000, 0x3, 0x10001, 0x3}, {0x101006, 0x1000, 0xf, 0x3, 0x8, 0x5, 0x8000, 0x80000000, 0x6, 0x830d, 0x2, 0x4}, {0x1d004, 0x1000, 0x8, 0x0, 0x4, 0x5, 0x80000000, 0x3, 0x100000000, 0x20, 0x2, 0x8}, {0x4000, 0xd000, 0x4, 0x2, 0xfd, 0x2, 0x80000001, 0x100000001, 0x2, 0x80000001, 0x80000000, 0x49b17194}, {0x5000, 0xf000}, {0x2}, 0x10000, 0x0, 0x3000, 0x10000, 0x5, 0x400, 0x10000, [0x0, 0xdd, 0x800, 0xffffffffffffffff]}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r4 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x6, 0x200000) accept$inet(r4, &(0x7f0000000100)={0x2, 0x0, @remote}, &(0x7f0000000140)=0x10) bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)={&(0x7f0000000000)='./file0\x00', r4}, 0x10) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 09:39:35 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r3, 0x1e17}, &(0x7f00000001c0)=0x8) 09:39:35 executing program 2: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x200000, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="cd84d382962c8e59a717bfc64d51f6963c816a00c3014ea956e65887abb05f3a5e081d30b2e34cb4c5ba", 0x2a) getsockopt$llc_int(r0, 0x10c, 0x4, &(0x7f0000000180), &(0x7f0000000200)=0x4) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00009f3fa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-camellia-asm\x00'}, 0x58) ioctl$KDSETLED(r0, 0x4b32, 0x1) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f00000024c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) recvmsg(r2, &(0x7f00001f5000)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/154, 0x9a}], 0x1}, 0x0) 09:39:35 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) socket$nl_crypto(0x10, 0x3, 0x15) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0xd, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) r3 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x71, &(0x7f00000000c0), 0x8) dup3(r3, r2, 0x0) close(r1) [ 1195.324313] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.326769] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env 09:39:35 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r3, 0x1e17}, &(0x7f00000001c0)=0x8) [ 1195.371305] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1195.388771] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.399534] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1195.405385] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' 09:39:35 executing program 1: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000006c0)={{0x2, 0x4e21, @empty}, {0x306, @remote}, 0x8, {0x2, 0x4e22, @loopback}, 'nr0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:35 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000200)="0adc1f123c123f319bd070") preadv(0xffffffffffffffff, &(0x7f0000001280)=[{&(0x7f0000002340)=""/4096, 0x11e5}], 0x1, 0x0) r2 = socket$inet6(0xa, 0x80003, 0xfc) connect$inet6(r2, &(0x7f0000000180)={0xa, 0x0, 0x0, @mcast2, 0x20000000000004}, 0x1c) sendmmsg(r2, &(0x7f0000001300)=[{{0x0, 0x0, &(0x7f0000001180), 0x240, &(0x7f00000011c0)}}], 0x249, 0x0) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x20000, 0x0) ioctl$sock_netrom_SIOCDELRT(r3, 0x890c, &(0x7f00000000c0)={0x1, @null, @rose={'rose', 0x0}, 0x1, 'syz0\x00', @default, 0x9, 0x7, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}) ioctl$FS_IOC_GETVERSION(r3, 0x80087601, &(0x7f00000001c0)) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="3400000904006d00000000000000020000977f000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001400120008000100677265000800020004001200"], 0x34}}, 0x0) 09:39:35 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0xfffffffffffffef1, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xff}, 0x0, 0x0, 0x0, 0x0, 0x80b6a, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000942000)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) sendto$inet(r0, &(0x7f0000000140), 0x91, 0x80f, 0x0, 0xfffffffffffffef9) r1 = getpid() fsetxattr$trusted_overlay_opaque(r0, &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000100)='y\x00', 0x2, 0x2) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @broadcast}, 0x10) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000040)=r1) [ 1195.414214] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' 09:39:35 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r3, 0x1e17}, &(0x7f00000001c0)=0x8) 09:39:35 executing program 1: openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000680)='/dev/ubi_ctrl\x00', 0x40000, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x400000, 0x0) ioctl$TIOCGETD(r2, 0x5424, &(0x7f0000000180)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8900, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) getsockopt$llc_int(r4, 0x10c, 0x6, &(0x7f00000000c0), &(0x7f0000000100)=0x4) ioctl$TIOCNXCL(r2, 0x540d) ioctl$SIOCGIFHWADDR(r4, 0x8927, &(0x7f0000000040)) dup2(r3, r1) 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1195.444337] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.450516] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.458598] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.481722] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' 09:39:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)="8edcbd71e872d6dd6b83a3be6943f3e46ca95e64e089164c941bfe67527f6e3940c8741b35dc52bb0b411eb262595970d39abb8e5c28404b3101250e612d6fd0c269489f6f03c92e9335914c2717489397001d372c5f778294916b1062c5794e8e592ece85751bc9544d9395ec412ce322a623760862f76efe5adcded2381cddad165a42eb0805fad5cab475c3694e7db6f776c6b29d7de973c2ededde3223d4fbcfceb7f65d3d4bf8df7f67517ff72080bbf3a36a35b5c695", 0xb9, r0}, 0x68) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)) r1 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/full\x00', 0x501000, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000200)={[{0x7ff, 0x9, 0x20, 0x1000, 0xffffffffffffff9b, 0xe2, 0x6, 0x7, 0x8001, 0x8, 0x800, 0x621, 0x200}, {0x3, 0xf2, 0x100000000, 0x1, 0x0, 0x3bf, 0x4, 0x1, 0x6, 0xfffffffffffff7bd, 0x7, 0x62, 0x7}, {0x140000000000, 0x8000000000, 0x4, 0x2, 0x3, 0x81, 0x5, 0x101, 0x9, 0x112a, 0x6, 0x1000, 0xc14c}], 0x2}) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") set_mempolicy(0x8001, &(0x7f0000000380)=0x2, 0x6) write$P9_RFLUSH(r1, &(0x7f0000000280)={0x7, 0x6d, 0x1}, 0x7) 09:39:36 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={r3, 0x1e17}, &(0x7f00000001c0)=0x8) 09:39:36 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) fcntl$getownex(r1, 0x10, &(0x7f0000000040)={0x0, 0x0}) syz_open_procfs(r2, &(0x7f0000000080)='net/ip6_mr_vif\x00') mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x0) [ 1195.496156] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.505420] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=5850 comm=syz-executor.3 09:39:36 executing program 1: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_emit_ethernet(0x1, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket(0x15, 0xb, 0x5) getsockopt$bt_sco_SCO_CONNINFO(r3, 0x11, 0x2, &(0x7f0000000000)=""/190, &(0x7f0000000100)=0xbe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000300)={0x0, 0x0, 0x2080, {}, [], "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", "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"}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000003b000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1195.538357] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.544229] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1195.574846] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env 09:39:36 executing program 1: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) [ 1195.584714] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.605218] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1195.617624] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.628959] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.631213] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.644414] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1195.655832] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.663258] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.666103] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.688349] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1195.699269] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1195.706180] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1195.716776] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.723312] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' 09:39:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) recvmmsg(r0, &(0x7f0000001380)=[{{&(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000012c0)=[{&(0x7f0000000040)=""/38, 0x26}, {&(0x7f0000000140)=""/200, 0xc8}, {&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/33, 0x21}], 0x4, &(0x7f0000001300)=""/86, 0x56}, 0x3ff}], 0x1, 0x100, &(0x7f00000013c0)={0x77359400}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:36 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000140)=0x8) 09:39:36 executing program 1: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:36 executing program 0: r0 = syz_open_dev$binder(&(0x7f0000000400)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ppoll(&(0x7f0000000000)=[{r0, 0x8408}, {r0, 0x1}, {r0, 0x201}], 0x3, &(0x7f0000000040), &(0x7f0000000080)={0x8}, 0x8) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000200)=[@flat], 0x0}}], 0x0, 0x400000000000000, &(0x7f00000003c0)}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) sched_rr_get_interval(r1, &(0x7f0000000100)) 09:39:36 executing program 2: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0ad401003c123f319bd070") getsockopt$inet_opts(r0, 0x0, 0x0, &(0x7f0000000280)=""/233, &(0x7f0000000040)=0xe9) mknod$loop(&(0x7f0000000140)='./control\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_ima(&(0x7f0000000000)='./control\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@v1={0x2, "bd5e81d20b31a682597455e1c23fcaeda709c3"}, 0x14, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000240)='./control\x00', 0x0, 0x0) 09:39:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000000)=0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1195.725289] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=5870 comm=syz-executor.3 [ 1195.736770] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.752222] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1195.762584] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1195.769071] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' 09:39:36 executing program 0: r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x2) ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000000)={0x3, 0x37, 0x40}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/\x02roup.stap\x00', 0x2761, 0x0) ioctl$RFKILL_IOCTL_NOINPUT(r1, 0x5201) write$cgroup_int(r1, &(0x7f0000000040)=0x7ff, 0xfffffd37) 09:39:36 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 09:39:36 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x81, 0x185042) sendto$inet6(r0, &(0x7f0000000240)="9bf622", 0x3, 0x4000080, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r0, 0x0) syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x80000000, 0x101000) socket$inet6(0xa, 0x3, 0x3a) r1 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x0, 0x10008002) write(r1, &(0x7f0000000180)="b63db85e1e8d020000000000003ef0011dccffffffffffffe22c9b160096aa1fae1a0000000000000000", 0x2a) readv(r1, &(0x7f000085dff0)=[{&(0x7f0000e94000)=""/62, 0x3d87}], 0x146) eventfd2(0x0, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000300)='/dev/audio\x00', 0x10240, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getresgid(&(0x7f0000000780), &(0x7f0000000740), 0x0) openat$tun(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/net/tun\x00', 0x200, 0x0) ioctl$VT_RELDISP(r2, 0x5605) r3 = userfaultfd(0x0) open(&(0x7f000000fffa)='./bus\x00', 0x141046, 0x0) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) ioctl$UFFDIO_ZEROPAGE(r2, 0xc020aa04, &(0x7f0000000040)={{&(0x7f0000ffe000/0x1000)=nil, 0x1000}}) [ 1195.786785] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1195.800515] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1195.818539] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.826058] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 09:39:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="eea2c847c75246ae1f123c123f319bd0703ce812d28c8e1c700a23dc0ddb98398a46123753ccc17af5cb68bd24061e57bc3cc4f5105e8cc571d4489174af4e7144ba9bc3ef6c7f1b7e947ceb54e70bffffffd5bca04c56f041531a8b8ba6d5df67bebb77f9e5b83c4b8a90d092e1c5218b7a448a849611e7966c1d3ce7a41ebc4a102b9340c2972d967da41c1d5048f13f877f") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r1, &(0x7f0000000080), 0x1c) r2 = dup2(r1, r1) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() setsockopt$inet_mreqsrc(r2, 0x0, 0x20, 0x0, 0x0) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x3c) fcntl$setstatus(r2, 0x4, 0x42803) write$P9_RATTACH(r2, &(0x7f0000000000)={0x14, 0x69, 0x1, {0xa}}, 0x14) [ 1195.855081] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1195.862706] audit: type=1800 audit(1555925976.384:179): pid=5890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="vcsa9" dev="sda1" ino=17297 res=0 09:39:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0xf) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x409, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @gre={{0x8, 0x1, 'gre\x00'}, {0x8, 0x2, [@gre_common_policy=[@IFLA_GRE_COLLECT_METADATA={0x4}]]}}}]}, 0x34}}, 0x0) 09:39:36 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) pread64(r0, &(0x7f0000000000)=""/117, 0x75, 0x0) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x0) 09:39:36 executing program 0: mbind(&(0x7f0000525000/0x4000)=nil, 0x4000, 0x8001, &(0x7f0000a1a000)=0x40000000003, 0x7, 0x0) mlock(&(0x7f0000527000/0x1000)=nil, 0x1000) munlock(&(0x7f0000525000/0x4000)=nil, 0x4000) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x1, 0x8000) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000080)=r0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f00000024c0)=0x5, 0x4) fstat(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xc) write$FUSE_ENTRY(r0, &(0x7f00000001c0)={0x90, 0x0, 0x2, {0x2, 0x1, 0x8, 0x20, 0x2, 0x800, {0x3, 0x3, 0x40, 0xff, 0x3, 0x8, 0x8, 0x3ff, 0x2, 0x4, 0x0, r2, r3, 0x101, 0x5}}}, 0x90) [ 1195.898045] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1195.908952] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.915866] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1195.943967] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env 09:39:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x39b4d17d, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001000090400"/20, @ANYRES32=0x0, @ANYBLOB="e481000000f4ffff4463db1e0785a81000b6171887a0a25c6923b9bc5fa0d58094a1f56daf6bd46f04dbd90f25dcbda617e7136a4b9328a57bc6eb598dab031bc71fd28d45516f90be4558af824327c8deb3772d82b73427a1c5ab4e6e1036"], 0x34}}, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x80000000, 0x8000) openat$cgroup_procs(r1, &(0x7f0000000240)='cgroupnpr\rgVOdr%\xe1\xaf\x9ad\xf65\x01Z\xc1\x95\x1bT\x99X0u\xd3\x99\xcc\"D\xa3\xb6\xddx\xb6=sa\xe5\xc6\"<\xb9\xf4s\x10\xca\xb4wf\x95\xeem\x03\x03\x9c3\xb9D]\x99N\xc1\xa1*\xf54\xf4\x90\xbf\x0f\x1c\xa1j .\xf8\xf0\xca\xa6\x9d\xf9\xaf\x13\x9a\x19\xb0!\xdb\xfdHq\v\x8f\xb2\x03\x83\x9b\x04\x9d\x95\x90\xad(\x8cVV7Vl\xf9\x90\xc0\xd5\x00\x00\x00\x00\x00\x00\x00\x1f\x82\xe3.', 0x2, 0x0) [ 1195.953053] audit: type=1800 audit(1555925976.394:180): pid=5890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.2" name="vcsa9" dev="sda1" ino=17297 res=0 [ 1195.983430] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1195.985651] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1195.989762] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1196.014192] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1196.020289] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1196.045251] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 09:39:36 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000001600)=0x1b, 0xf2) r1 = socket$netlink(0x10, 0x3, 0x10000000004) write(r1, &(0x7f0000000100)="2700000014000707030e0000120f0a0010000100f5fe001259f338c57410e8a99f47ff00000007", 0x27) recvfrom(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 09:39:36 executing program 0: r0 = socket$inet(0x2, 0x40000000003, 0x800000800000001) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3c, &(0x7f0000000040)=0x103, 0x4) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000080)=0xc) 09:39:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000740)='/dev/dsp\x00', 0x323401, 0x0) accept$packet(0xffffffffffffff9c, &(0x7f00000038c0)={0x11, 0x0, 0x0}, &(0x7f0000003900)=0x14) connect$packet(r2, &(0x7f0000003940)={0x11, 0x17, r3, 0x1, 0x7, 0x6, @dev={[], 0x1c}}, 0x14) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000140)=0x21000) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000440)={{{@in=@broadcast, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@multicast1}}, &(0x7f00000002c0)=0xe8) fcntl$getownex(r2, 0x10, &(0x7f0000000300)={0x0, 0x0}) lstat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_netfilter(r2, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4040000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000780)={0x2a0, 0x7, 0x7, 0x500, 0x70bd2d, 0x25dfdbfb, {}, [@generic="2b0a238f1128b98155c04417a7ffee814d77ad30b284abc5670405dcac4815579242faff97bda7d0de4bf2e5e205e7ce529cd0d08a1ecd6712cf0d34333281ca220989a949aac0b82791feacf3b51720f0adf18a8d63224552a5f07415f85ccbc0d3d4e067cd2e2bf8cabef0d0d51531772e870e6027672174a2991209c9e52c7d1c0e5a08136bff2b1f1b89f1c5f1920b5defb4b7031bf8283b3e6c36a94d2bb6d879d5362cb1d4a4eb47f89452773ab50e972dfa49f8d2082cc4417696e5a753e654b2894ca7d554", @typed={0x8, 0x32, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="a511391fddc40e8f37349863732f35c8fa3e39bd80a815b3e893601ed77ccad094d7807882c3745a16de99ffde167531563b799f4f24f86f1c434df9fe4b05aa4ff771dacd0dfe95a7acff9d382e120a7ea1afe8d9418a929f", @typed={0x8, 0x56, @uid=r4}, @typed={0xc, 0x44, @u64=0x7f}, @nested={0xdc, 0x77, [@typed={0x8, 0x79, @str='\x00'}, @typed={0x8, 0x77, @u32=0x2}, @typed={0x8, 0x71, @ipv4=@dev={0xac, 0x14, 0x14, 0xb}}, @typed={0x8, 0x64, @pid=r5}, @typed={0x8, 0xc, @u32=0x80000001}, @generic="fc04beff1912b3caf75335f07cbdfe93711c4f283e2fda32565edd1ebf7576b481a144de27017a9eb9d62e48", @typed={0x8, 0x68, @uid=r6}, @generic="999939c3f618749e1ef6c84981cc7667adced14e8378721a798a717f30cb0ec7022c519a233ada1c69ef637517213308696c93c5d69106e8ca3496258741b2dc5bb0828861d4d92807c66308c3aef3534937ad343324aff3499d246cecb1051fe86685e08b65d7856055f65d042ab45fe7c9542dd87c4995a244"]}, @generic="ef356fcad0eefcd7bf6be8e22a30e074e1b4dfdc82d82a2185dbb5e9f7ab43086c8c66f035eba1f32627a772adf20b577e0823d99a32179077f3bde31124502abb19d713839481946b31f0d4dd962953632532a2b224bd93dd80b20d8b1806a6dc1b7b4759b9ccf848f1e87baf2a2eb7"]}, 0x2a0}, 0x1, 0x0, 0x0, 0x800}, 0x44) getsockname$ax25(r2, &(0x7f0000000640)={{0x3, @rose}, [@remote, @netrom, @null, @null, @rose, @bcast, @rose, @netrom]}, &(0x7f00000006c0)=0x48) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000003c0)="67360f222666470feb2ac4a241badd48b8fa000000000000000f23c00f21f835000008000f23f8c7442400c0000000c74424022bfd0000ff2c2466baf80cb82fb68a81ef66bafc0cec2e36f3470f2dfb0f21a447ac66400fd3ad00000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2, 0x0) getpeername$netrom(r8, &(0x7f0000000180)={{0x3, @null}, [@remote, @default, @default, @default, @default, @bcast, @null, @null]}, &(0x7f0000000200)=0x48) ioctl$TUNGETFILTER(r8, 0x801054db, &(0x7f0000000240)=""/1) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r9 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r9, 0x4058534c, &(0x7f00000000c0)={0x4, 0x2, 0x0, 0x7, 0x1f, 0x1}) ioctl$KVM_RUN(r7, 0xae80, 0x0) 09:39:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x3) finit_module(r0, &(0x7f00000001c0)='KX\xb5\f\x8e\x1b !#-\x00', 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000100009040000558df483b30462d6fcaa", @ANYRES32=0x0, @ANYBLOB="00000000000000001400120008000100677265000800020004001200"], 0x34}, 0x1, 0x0, 0x0, 0xffffffdffffffffd}, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x200, 0x0) 09:39:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) [ 1196.057638] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1196.060455] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1196.086575] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1196.118378] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1196.121045] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1196.125274] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1196.131747] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1196.152667] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1196.159033] kobject: 'kvm' (ffff888219ff0510): kobject_uevent_env [ 1196.167608] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1196.167700] kobject: 'kvm' (ffff888219ff0510): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 1196.180979] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1196.192697] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 1196.203047] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1196.209725] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1196.221076] kobject: 'loop3' (ffff8880a4a901e0): kobject_uevent_env [ 1196.227556] kobject: 'loop3' (ffff8880a4a901e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1196.237994] kobject: 'loop1' (ffff8880a49ed220): kobject_uevent_env [ 1196.244584] kobject: 'loop1' (ffff8880a49ed220): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 1196.255302] kobject: 'loop5' (ffff8880a4b2e2e0): kobject_uevent_env [ 1196.261907] kobject: 'loop5' (ffff8880a4b2e2e0): fill_kobj_path: path = '/devices/virtual/block/loop5'