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"], 0x2137, 0x4004084}, 0x844) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f9, &(0x7f0000000140)='sit0\x00') ioctl$EVIOCREVOKE(r3, 0x40044591, &(0x7f0000000000)=0x12) connect$bt_l2cap(r3, &(0x7f00000002c0)={0x1f, 0x2, {0x100000001, 0x4e1a08c5, 0xff, 0x8, 0xfac, 0xcfb6}, 0xfff, 0x7}, 0xe) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000640)={0xffffffffffffffff}, 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000006c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, [], 0x19}, 0x1f}, r4}}, 0x30) bind$rds(r0, &(0x7f0000000600)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) 00:13:24 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 253.200867] FAULT_INJECTION: forcing a failure. [ 253.200867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 253.213108] CPU: 0 PID: 13649 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 253.220504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 253.230113] Call Trace: [ 253.232750] dump_stack+0x1c9/0x2b4 [ 253.236530] ? dump_stack_print_info.cold.2+0x52/0x52 [ 253.241824] ? lock_downgrade+0x8f0/0x8f0 [ 253.246033] should_fail.cold.4+0xa/0x1a [ 253.250137] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 253.255312] ? graph_lock+0x170/0x170 [ 253.259170] ? is_bpf_text_address+0xd7/0x170 [ 253.263718] ? find_held_lock+0x36/0x1c0 [ 253.267831] ? __lock_is_held+0xb5/0x140 [ 253.271935] ? check_same_owner+0x340/0x340 [ 253.276294] ? rcu_note_context_switch+0x730/0x730 [ 253.281269] __alloc_pages_nodemask+0x36e/0xdb0 [ 253.285970] ? lock_downgrade+0x8f0/0x8f0 [ 253.290166] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 253.295219] ? graph_lock+0x170/0x170 [ 253.299053] ? __lock_is_held+0xb5/0x140 [ 253.303144] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 253.307609] ? __lock_is_held+0xb5/0x140 [ 253.311723] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 253.317306] alloc_pages_current+0x10c/0x210 [ 253.321773] __get_free_pages+0xf/0x40 [ 253.325708] mmu_topup_memory_caches+0x1f8/0x3a0 [ 253.330505] kvm_mmu_load+0x21/0x10e0 [ 253.334347] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 253.339961] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 253.344595] vcpu_enter_guest+0x3aa6/0x6090 [ 253.348954] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 253.353233] ? kvm_set_msr_common+0x26a0/0x26a0 [ 253.357944] ? vmx_vcpu_load+0xadf/0xff0 [ 253.362045] ? __lock_acquire+0x7fc/0x5020 [ 253.366309] ? vmx_vcpu_reset+0x1040/0x1040 [ 253.370663] ? graph_lock+0x170/0x170 [ 253.374493] ? __lock_acquire+0x7fc/0x5020 [ 253.378772] ? __lock_is_held+0xb5/0x140 [ 253.382868] ? lock_acquire+0x1e4/0x540 [ 253.386868] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 253.391924] ? lock_release+0xa30/0xa30 [ 253.395952] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 253.401262] ? kvm_arch_dev_ioctl+0x610/0x610 [ 253.405784] ? preempt_notifier_dec+0x20/0x20 [ 253.410323] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 253.415194] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 253.420291] kvm_vcpu_ioctl+0x7b8/0x1300 [ 253.424392] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 253.430130] ? find_held_lock+0x36/0x1c0 [ 253.434268] ? find_held_lock+0x36/0x1c0 [ 253.438374] ? lock_downgrade+0x8f0/0x8f0 [ 253.442576] ? kasan_check_read+0x11/0x20 [ 253.446753] ? rcu_is_watching+0x8c/0x150 [ 253.450921] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 253.455344] ? __fget+0x414/0x670 [ 253.458796] ? match_held_lock+0x821/0x8d0 [ 253.463049] ? expand_files.part.8+0x9c0/0x9c0 [ 253.467638] ? kasan_check_write+0x14/0x20 [ 253.471882] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 253.476827] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 253.482551] do_vfs_ioctl+0x1de/0x1720 [ 253.486464] ? __lock_is_held+0xb5/0x140 [ 253.490635] ? ioctl_preallocate+0x300/0x300 [ 253.495056] ? __fget_light+0x2f7/0x440 [ 253.499057] ? fget_raw+0x20/0x20 [ 253.502546] ? __sb_end_write+0xac/0xe0 [ 253.506556] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 253.512129] ? fput+0x130/0x1a0 [ 253.515667] ? ksys_write+0x1ae/0x260 [ 253.519478] ? security_file_ioctl+0x94/0xc0 [ 253.523896] ksys_ioctl+0xa9/0xd0 [ 253.527597] __x64_sys_ioctl+0x73/0xb0 [ 253.531484] do_syscall_64+0x1b9/0x820 [ 253.535377] ? finish_task_switch+0x1d3/0x870 [ 253.539878] ? syscall_return_slowpath+0x5e0/0x5e0 [ 253.545011] ? syscall_return_slowpath+0x31d/0x5e0 [ 253.549980] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 253.555364] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 253.560244] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 253.565439] RIP: 0033:0x455e29 [ 253.568628] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 253.587847] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 253.595583] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 253.602883] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 253.610169] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 253.617455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 253.624723] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000003c 00:13:25 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5405, &(0x7f0000000000)) 00:13:25 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000040)="1aea3adb80e25e1a34244504f1f43541c0a1bb965d1295eb535e800a8ed788b23da684", 0x23}, {&(0x7f0000000080)="281090c39eba05d852bfb7d5a852160407", 0x11}], 0x2, &(0x7f00000002c0)=[{0x50, 0x11d, 0x0, "0dae931937fec2a9cbdd9d6f439b958df576090b25a02c257a0d793331a10edcaadd72f9dfbb7c14aaed818548ee3504baa5ae2f7918e6acda183ddca78d"}, {0xc8, 0x118, 0x9, "af99d0deae0a9d8e6bc5eade2879a1a3e41358436c94ff81594377b05de35be19303d451a383f53dadb3fc2091df071cef23ddd7788fd454a1d5cfbf0872529352593bffffd766808230e12a70d8cae8ff7d88b63c6a9bc11cb029c895d98478c7bb186852fd3a0fe0e87f35d38917853937fdfe5c7bf341f45462b3db592c9f1bb4f550486cacebb87cbfabf737760905ed4ba495f9d2f46b444d49ac7050791a8ea0d27af4b62e0ef2d403c741ea6620d205"}, {0x78, 0x1, 0xffff, "8e860d5c26995721bd09ab927e7848147f83373b9d8557c2cd11f4b2d4085a69927c3b5ac4dd0dba39c918b304c446b3e1ae372e6ff67913b5489dde2207eda7cca730e97ce5b2ed14b1234538629bf5576c584dccb9e428d45bd0ba6349a0a29f051f78"}], 0x190}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="027ac83d6d346f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:25 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:25 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0x0, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:25 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") modify_ldt$write2(0x11, &(0x7f0000000000)={0x1f, 0x0, 0xffffffffffffffff, 0x8000, 0x6e4277de, 0x7fffffff, 0x9, 0x2241, 0x0, 0x7a}, 0x10) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:25 executing program 2 (fault-call:7 fault-nth:61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:25 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x80200, 0x0) ioctl$PIO_UNIMAPCLR(r3, 0x4b68, &(0x7f0000000040)={0x7d08, 0x8, 0xff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:25 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f00002f1000/0x1000)=nil, 0x1000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) [ 253.912577] FAULT_INJECTION: forcing a failure. [ 253.912577] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 253.924790] CPU: 0 PID: 13667 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 253.932194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 253.941572] Call Trace: [ 253.944198] dump_stack+0x1c9/0x2b4 [ 253.947889] ? dump_stack_print_info.cold.2+0x52/0x52 [ 253.953119] ? lock_downgrade+0x8f0/0x8f0 [ 253.957324] should_fail.cold.4+0xa/0x1a [ 253.960706] Unknown ioctl 19304 [ 253.961577] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 253.961599] ? graph_lock+0x170/0x170 [ 253.961620] ? is_bpf_text_address+0xd7/0x170 [ 253.978342] ? find_held_lock+0x36/0x1c0 [ 253.982446] ? __lock_is_held+0xb5/0x140 [ 253.986565] ? check_same_owner+0x340/0x340 [ 253.990942] ? rcu_note_context_switch+0x730/0x730 [ 253.995929] __alloc_pages_nodemask+0x36e/0xdb0 [ 254.000748] ? lock_downgrade+0x8f0/0x8f0 [ 254.004950] ? __alloc_pages_slowpath+0x2d90/0x2d90 00:13:25 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0x0, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:25 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:25 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = dup(r0) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000200)) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f9, &(0x7f0000000140)='sit0\x00') getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000080), &(0x7f0000000180)=0x4) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='teql0\x00') 00:13:25 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) inotify_add_watch(r0, &(0x7f0000000440)='./file0\x00', 0x400) ioctl(r0, 0x0, &(0x7f00000002c0)="025cc83d6d345f8f76207066b1a3cda7845f1214848a6b40674937742cda3cc8527a548aa6195c4cd0284a57db202de0edcce21d6f0526b80ad69655f3b7642d82210ca301db5b3e210ab4f13d7b107d19bb5077e2c0b75fad6a99a69ae2669fb69b7627ac4efe737d9f1e50780ff71807fb009f18c188eee04b1b420fdbe837c6ec9d92efbb1d27fad8a92fcf19e3d8d4a4c9eb98c8861d") getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000040)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in=@broadcast}}, &(0x7f0000000140)=0xe8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000480)={0x0, @in={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x9, 0xff, 0x6, 0x800, 0x4}, &(0x7f0000000540)=0x98) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000580)={r3, 0x8, 0xa9, "5afaf0e40b28d8484485fa2f092c46f93572a3ad577a17773333103bbb543c13a88026b5ab3d5deb620639c709710527c9906770c5ca2d39f12c5ec7eced2158663f70adc518db7defdd3b903552f6c720ba1610e6772c944c2c5c800ce96522aaff6f5ec54b6c187db36e9c55036fcd71d4d5c9e981f2c2e4c55461a805518f7b73fe51175e906ad13c2164e74348dc342b1d14528abdbd72561110ee6fa8348d01ff61b7561d19f8"}, 0xb1) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000200)={0x0, 0x7ff, 0x10}, &(0x7f0000000280)=0xc) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000380)={r4, @in6={{0xa, 0x4e23, 0x100000001, @empty, 0x1}}}, 0x84) fstat(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r0, &(0x7f0000000000)='./file0\x00', r2, r5, 0x1800) [ 254.010007] ? graph_lock+0x170/0x170 [ 254.013857] ? __lock_is_held+0xb5/0x140 [ 254.017998] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 254.022470] ? __lock_is_held+0xb5/0x140 [ 254.026613] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 254.032212] alloc_pages_current+0x10c/0x210 [ 254.036662] __get_free_pages+0xf/0x40 [ 254.040616] mmu_topup_memory_caches+0x1f8/0x3a0 [ 254.045438] kvm_mmu_load+0x21/0x10e0 [ 254.049287] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 254.054953] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 254.059581] vcpu_enter_guest+0x3aa6/0x6090 [ 254.063940] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 254.068215] ? kvm_set_msr_common+0x26a0/0x26a0 [ 254.072955] ? vmx_vcpu_load+0xadf/0xff0 [ 254.077055] ? __lock_acquire+0x7fc/0x5020 [ 254.081340] ? vmx_vcpu_reset+0x1040/0x1040 [ 254.085701] ? graph_lock+0x170/0x170 [ 254.089562] ? __lock_acquire+0x7fc/0x5020 [ 254.093843] ? __lock_is_held+0xb5/0x140 [ 254.097951] ? lock_acquire+0x1e4/0x540 [ 254.101964] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 254.107048] ? lock_release+0xa30/0xa30 [ 254.111050] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 254.116368] ? kvm_arch_dev_ioctl+0x610/0x610 [ 254.120900] ? preempt_notifier_dec+0x20/0x20 [ 254.125486] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 254.130391] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 254.135460] kvm_vcpu_ioctl+0x7b8/0x1300 [ 254.139570] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 254.145362] ? find_held_lock+0x36/0x1c0 [ 254.149465] ? find_held_lock+0x36/0x1c0 [ 254.153608] ? lock_downgrade+0x8f0/0x8f0 [ 254.157794] ? kasan_check_read+0x11/0x20 00:13:25 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x2, &(0x7f0000000040)="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") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:25 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0x0, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 254.161971] ? rcu_is_watching+0x8c/0x150 [ 254.166145] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 254.170594] ? __fget+0x414/0x670 [ 254.174079] ? match_held_lock+0x821/0x8d0 [ 254.178357] ? expand_files.part.8+0x9c0/0x9c0 [ 254.182983] ? kasan_check_write+0x14/0x20 [ 254.187249] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 254.192222] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 254.197972] do_vfs_ioctl+0x1de/0x1720 [ 254.201897] ? __lock_is_held+0xb5/0x140 [ 254.205997] ? ioctl_preallocate+0x300/0x300 [ 254.210434] ? __fget_light+0x2f7/0x440 [ 254.214443] ? fget_raw+0x20/0x20 [ 254.217963] ? __sb_end_write+0xac/0xe0 [ 254.221983] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 254.227557] ? fput+0x130/0x1a0 [ 254.230899] ? ksys_write+0x1ae/0x260 [ 254.234743] ? security_file_ioctl+0x94/0xc0 [ 254.239190] ksys_ioctl+0xa9/0xd0 [ 254.242705] __x64_sys_ioctl+0x73/0xb0 [ 254.246655] do_syscall_64+0x1b9/0x820 [ 254.250675] ? finish_task_switch+0x1d3/0x870 [ 254.255210] ? syscall_return_slowpath+0x5e0/0x5e0 00:13:25 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='eth1system#\x00', 0xffffffffffffff9c}, 0x10) socketpair$inet6(0xa, 0xe, 0x81, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_netfilter(r0, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000740)={&(0x7f00000004c0)={0x24c, 0x9, 0x9, 0x202, 0x70bd28, 0x25dfdbfe, {0xe, 0x0, 0x7}, [@nested={0xa8, 0x4e, [@generic="92303e7da86e505b3e1b303a25a1df57d6d20502e800e512fbca2b60f30165a43aae0fcc79e5ff7433d73e6e2681fc0c9a5e66cab9b8cd309fdf2514a8b722bab56f0474923ce83acbb156c1b3bf117abb3bf03036820e6aede9dafc404565ba85cad92587e131101cc76fcca415ab2669ce6163ade93035773f8f14d3f2c299a190f2894a6a563af0b1ed917b53093e2508257ef16f77b92029", @typed={0x8, 0x26, @fd=r1}]}, @generic="835ad87e02752f6c8ae63d4a2165191def3bd4bc42fec990b214254f1ed701bd0a1f440affc64bef38b3c98cf389414c135d4e09409cee2b08249c4e576ca3d2ac82aa5c70d44a1662ed838c8641204d1c8d29287ddcb84b1fddfddcd0e11dae8ec9331e9f425d3f8c1a3256b4641c1d252b16ecbf61a2b4a3213a97c1a5b8cd447f7fc2afc620632780b3ac87765a7d5788357832e5cb7d5f74", @nested={0xf4, 0x78, [@typed={0xc, 0x1e, @str='sit0\x00'}, @generic="87f2cae79fb43083f238723ca235d83731d6fa199b26dbe04b83c03586de844d105bb481c6b45ec6072c3e59467207ae505447c8eb8645e57b997dba2fc59f44f8421f2e430b8152a7cc0983006b95d4dd26f27fb31bb62b54b8079a293b961c73a180a5097f4c4f6fe18f1d82b666c2fc936c64a19cc369728e33f015342c3d62b3d6031ec91f884890fb5e427d81e878fc222b7acfcf3093e75ed66be3a184912dfdcfd3b39ed534", @generic="20f9218552786624fd9a1a9c66a26b4b12b0e32fbabc3e31c5625d0454c708b6523f4bfc38f1", @typed={0x14, 0x54, @ipv6=@loopback={0x0, 0x1}}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x41}, 0x800) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xfb, 0x0) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x800, 0x0) renameat2(r3, &(0x7f0000000080)='./file0\x00', r4, &(0x7f00000001c0)='./file0\x00', 0x2) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89f9, &(0x7f0000000140)='sit0\x00') r6 = socket$bt_bnep(0x1f, 0x3, 0x4) mkdirat(r5, &(0x7f0000000380)='./file0\x00', 0x40) getsockname(r4, &(0x7f0000000200)=@nl, &(0x7f00000002c0)=0x80) ioctl$sock_SIOCBRDELBR(r6, 0x89a1, &(0x7f0000000340)='ip6_vti0\x00') set_tid_address(&(0x7f00000008c0)) [ 254.260181] ? syscall_return_slowpath+0x31d/0x5e0 [ 254.265152] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 254.270589] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 254.275478] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 254.280688] RIP: 0033:0x455e29 [ 254.283886] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 254.303241] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:25 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x2, 0x2) [ 254.310975] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 254.318268] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 254.325567] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 254.332859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 254.340326] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000003d [ 254.535647] Unknown ioctl 19304 00:13:26 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5450, &(0x7f0000000000)) 00:13:26 executing program 2 (fault-call:7 fault-nth:62): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:26 executing program 6: r0 = socket$inet6(0xa, 0x107ffffffffff, 0xffffffffffffff6f) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) 00:13:26 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:26 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:26 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x4) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") fcntl$setflags(r0, 0x2, 0x1) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:26 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000080)={0x8, 0x9, 0x3, 0x8, 0x200, 0xfffffffffffffffc, 0x7, 0x4, 0x1, 0x6}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:26 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x20000, 0x0) write$P9_RLCREATE(r2, &(0x7f0000000140)={0x18, 0xf, 0x2, {{0x20, 0x4, 0x5}, 0x80000000}}, 0x18) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x200, 0x0) getpeername$netlink(r3, &(0x7f0000000040), &(0x7f0000000080)=0xc) getpeername$packet(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f00000001c0)=0x14) ioctl$TUNSETIFINDEX(r2, 0x400454da, &(0x7f0000000200)=r4) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r5, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 254.890712] Unknown ioctl 1074025690 [ 254.912554] FAULT_INJECTION: forcing a failure. [ 254.912554] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 254.924576] CPU: 1 PID: 13726 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 254.931958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.941331] Call Trace: [ 254.943948] dump_stack+0x1c9/0x2b4 [ 254.947608] ? dump_stack_print_info.cold.2+0x52/0x52 [ 254.952828] ? lock_downgrade+0x8f0/0x8f0 [ 254.957029] should_fail.cold.4+0xa/0x1a [ 254.961134] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 254.967855] ? graph_lock+0x170/0x170 [ 254.971696] ? is_bpf_text_address+0xd7/0x170 [ 254.976237] ? find_held_lock+0x36/0x1c0 [ 254.980338] ? __lock_is_held+0xb5/0x140 [ 254.984447] ? check_same_owner+0x340/0x340 [ 254.988803] ? rcu_note_context_switch+0x730/0x730 [ 254.993782] __alloc_pages_nodemask+0x36e/0xdb0 [ 254.998499] ? lock_downgrade+0x8f0/0x8f0 [ 255.002698] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 255.007753] ? graph_lock+0x170/0x170 [ 255.011592] ? __lock_is_held+0xb5/0x140 [ 255.015685] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 255.020139] ? __lock_is_held+0xb5/0x140 [ 255.024256] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 255.029875] alloc_pages_current+0x10c/0x210 [ 255.034317] __get_free_pages+0xf/0x40 [ 255.038239] mmu_topup_memory_caches+0x1f8/0x3a0 [ 255.043058] kvm_mmu_load+0x21/0x10e0 [ 255.046910] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 255.052485] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 255.057101] vcpu_enter_guest+0x3aa6/0x6090 [ 255.061465] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 255.065828] ? kvm_set_msr_common+0x26a0/0x26a0 [ 255.070530] ? vmx_vcpu_load+0xadf/0xff0 [ 255.074624] ? __lock_acquire+0x7fc/0x5020 [ 255.078900] ? vmx_vcpu_reset+0x1040/0x1040 [ 255.083275] ? graph_lock+0x170/0x170 [ 255.087119] ? __lock_acquire+0x7fc/0x5020 [ 255.091400] ? __lock_is_held+0xb5/0x140 [ 255.095503] ? lock_acquire+0x1e4/0x540 [ 255.099509] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 255.104566] ? lock_release+0xa30/0xa30 [ 255.108571] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 255.113886] ? kvm_arch_dev_ioctl+0x610/0x610 [ 255.118519] ? preempt_notifier_dec+0x20/0x20 [ 255.123066] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 255.127944] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 255.133020] kvm_vcpu_ioctl+0x7b8/0x1300 [ 255.137131] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 255.142875] ? find_held_lock+0x36/0x1c0 [ 255.146967] ? find_held_lock+0x36/0x1c0 [ 255.151065] ? lock_downgrade+0x8f0/0x8f0 [ 255.155256] ? kasan_check_read+0x11/0x20 [ 255.159422] ? rcu_is_watching+0x8c/0x150 [ 255.163624] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 255.168090] ? __fget+0x414/0x670 [ 255.171584] ? match_held_lock+0x821/0x8d0 [ 255.175847] ? expand_files.part.8+0x9c0/0x9c0 [ 255.180477] ? kasan_check_write+0x14/0x20 [ 255.184763] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 255.189755] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 255.195527] do_vfs_ioctl+0x1de/0x1720 [ 255.199468] ? __lock_is_held+0xb5/0x140 [ 255.203559] ? ioctl_preallocate+0x300/0x300 [ 255.208001] ? __fget_light+0x2f7/0x440 [ 255.212012] ? fget_raw+0x20/0x20 [ 255.215588] ? __sb_end_write+0xac/0xe0 [ 255.219593] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 255.225156] ? fput+0x130/0x1a0 [ 255.228463] ? ksys_write+0x1ae/0x260 [ 255.232321] ? security_file_ioctl+0x94/0xc0 [ 255.236799] ksys_ioctl+0xa9/0xd0 [ 255.240283] __x64_sys_ioctl+0x73/0xb0 [ 255.244221] do_syscall_64+0x1b9/0x820 [ 255.248131] ? finish_task_switch+0x1d3/0x870 [ 255.252676] ? syscall_return_slowpath+0x5e0/0x5e0 [ 255.257642] ? syscall_return_slowpath+0x31d/0x5e0 [ 255.262633] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 255.268078] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 255.272960] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 255.278167] RIP: 0033:0x455e29 [ 255.281350] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 255.300623] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:26 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000bc0)='/dev/vsock\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000c00)={0x0, 0x2}, &(0x7f0000000c40)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000c80)={r1, 0x3f, 0x6}, &(0x7f0000000cc0)=0x8) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000001040)='/dev/zero\x00', 0x8040, 0x0) ioctl$RTC_VL_READ(r2, 0x80047013, &(0x7f0000001080)) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x4, 0x40) sendmsg$rds(r4, &(0x7f0000000980)={&(0x7f0000000200)={0x2, 0x4e22, @multicast2=0xe0000002}, 0x10, &(0x7f0000000640)=[{&(0x7f00000002c0)=""/215, 0xd7}, {&(0x7f00000003c0)=""/166, 0xa6}, {&(0x7f0000000240)=""/11, 0xb}, {&(0x7f0000000480)=""/157, 0x9d}, {&(0x7f0000000540)=""/240, 0xf0}, {&(0x7f0000001580)=""/4096, 0x1000}, {&(0x7f0000002580)=""/4096, 0x1000}], 0x7, &(0x7f0000000840)=[@cswp={0x58, 0x114, 0x7, {{0x0, 0x4}, &(0x7f00000006c0)=0x7, &(0x7f0000000700)=0x3, 0x4, 0x6, 0x400, 0x6, 0x41, 0x2}}, @mask_fadd={0x58, 0x114, 0x8, {{0x1f, 0x101}, &(0x7f0000000740)=0x8, &(0x7f0000000780)=0x9, 0x8000, 0x4, 0x400, 0x7, 0x0, 0xfffffffffffffff9}}, @mask_cswp={0x58, 0x114, 0x9, {{0x3, 0xf53d}, &(0x7f00000007c0)=0x4, &(0x7f0000000800)=0x6, 0x7fce, 0x0, 0x275c, 0x5, 0x1, 0x6}}], 0x108, 0x10}, 0x1) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r5, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000003580)="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", 0x1000}, {&(0x7f00000009c0)="135df648f6696ae6087fb00256944f228eb8c5af768f99dc5bd0fd271e311daec14816c62e2a69af765251825473d34d5faa039415798880f9b556326192e904626b35fbc4df56270eae0c6a4418d050b2e259dac5f0b509d8345b6b98ff49bba7a9b3bef64ebd8cb65bc0907f08b064427dd5f81f0e7db75dc783735d9736a2749e344bad1f7a4b4d50f7140593ed9f5e309526bcc9564d6a7153db876bba86cd6dc907a52bbf7bdeacd955facfef0827efa07293c4e62d5679c16a22c0be70886dfefb39e860c79e7f94af91c959092aa22b988dd0cf", 0xd7}, {&(0x7f0000000ac0)="9163030067", 0x5}, {&(0x7f0000000b00)="805589923af3844d069aaa5b5fdb4cd836aefb169b4f539ddcf945f4441b1126758cc707f994ba13bdf3af9a93baf3b9566519b1fd6e831db6b5bafed99adb6821059bcd755478f8f81e2f260c87858edd23d023de5749e946ac78010bc9914e467b51a80da4899b3ed4ac83920938ee0ef7f2af", 0x74}], 0x4, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], 0x1d0, 0x4004000}, 0x20000000) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f9, &(0x7f0000000140)='sit0\x00') getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f00000010c0)={0x1, [0x0]}, &(0x7f0000000e40)=0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r6, 0x84, 0x10, &(0x7f0000000e80)=@assoc_value={r7, 0x80000001}, &(0x7f0000000ec0)=0x8) write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000f80)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000f40)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_MIGRATE_ID(r6, &(0x7f0000000fc0)={0x12, 0x10, 0xfa00, {&(0x7f0000000f00), r9, r6}}, 0x18) getresgid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000180)) setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000001000)={r8, 0x6c0, 0x4475c5f1, 0x4}, 0x10) 00:13:26 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x0, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:26 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:26 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x0, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:26 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = semget(0x0, 0x2, 0xc0) semctl$SEM_INFO(r2, 0x4, 0x13, &(0x7f0000000040)=""/107) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:26 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:26 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x0, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:26 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 255.308336] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 255.315611] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 255.322888] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 255.330154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 255.337420] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000003e [ 255.542072] Unknown ioctl 1074025690 00:13:27 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:27 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sit0\x00', 0xffffffffffffff9c}, 0x10) write$P9_RSYMLINK(r0, &(0x7f0000000240)={0x14, 0x11, 0x2, {0x80, 0x1}}, 0x14) ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000180)) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = gettid() perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x4, 0x3, 0xa994, 0x200, 0x0, 0x101, 0x10, 0x4, 0x4, 0x0, 0x80000001, 0xffffffffffffffff, 0x9, 0x3, 0x8, 0x1, 0x3f, 0x80000000, 0x1, 0x3, 0xffffffffffffff00, 0x25f, 0x3, 0x8a7, 0x3, 0x0, 0xff, 0x0, 0x75, 0x81, 0x0, 0x3, 0xff, 0x2, 0xffff, 0xfffffffffffff940, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000180), 0x2}, 0x0, 0x20, 0x1, 0x7, 0x3, 0x2a, 0x3e}, r3, 0x2, r2, 0x9) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:27 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x402c542c, &(0x7f0000000000)) 00:13:27 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) syz_extract_tcp_res(&(0x7f0000000000), 0xffffffffffffffff, 0x7f) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r1, 0x111, 0x2, 0x0, 0x4) 00:13:27 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x0, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:27 executing program 2 (fault-call:7 fault-nth:63): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:27 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:27 executing program 4: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x20000, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x3) r1 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000080)=ANY=[@ANYBLOB="73656375726974790000000000000000000d000000000000000000000000000039fcff005c2650ec29925895525c09d9280ec4ea5fb7cf009cce53afc3fdf06ee473c8fab2155df17b1181713b49bc01271fe1a08c3d7289e3992a896a"], &(0x7f0000000100)=0x5d) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:27 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:27 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000400)='/dev/rtc0\x00', 0x400000, 0x0) ioctl$SG_SET_TIMEOUT(r2, 0x2201, &(0x7f0000000440)=0x8) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) pipe(&(0x7f0000000300)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r3, 0x84, 0x74, &(0x7f0000000340)=""/76, &(0x7f00000003c0)=0x4c) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x9, 0x5, 0x8}, &(0x7f00000000c0)=0x10) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000140)={r4, 0xffffffff, 0x30}, &(0x7f0000000180)=0xc) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r5, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffff9) syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f00000001c0)="0fc75c8cb90f35ea80a922c62f01ea8ed8bee5300165f4b8010000000f01c1c4e3457e8104000000363e0fc75d2eb80b0000000f23d80f21f835c00000000f23f866660f388216", 0x47}], 0x1, 0x21, &(0x7f00000002c0)=[@dstype3={0x7, 0x8}], 0x1) keyctl$set_timeout(0xf, r6, 0x3fd) 00:13:27 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0xabbc) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000040)='\x00') 00:13:27 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x0, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 256.019355] FAULT_INJECTION: forcing a failure. [ 256.019355] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 256.031357] CPU: 1 PID: 13791 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 256.038743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 256.048241] Call Trace: [ 256.050846] dump_stack+0x1c9/0x2b4 [ 256.054487] ? dump_stack_print_info.cold.2+0x52/0x52 [ 256.059715] ? preempt_notifier_register+0x200/0x200 [ 256.064826] should_fail.cold.4+0xa/0x1a [ 256.068889] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 256.073996] ? __schedule+0x884/0x1ed0 [ 256.077889] ? __sched_text_start+0x8/0x8 [ 256.082067] ? __lock_is_held+0xb5/0x140 [ 256.086139] ? check_same_owner+0x340/0x340 [ 256.090473] ? __lock_is_held+0xb5/0x140 [ 256.094547] __alloc_pages_nodemask+0x36e/0xdb0 [ 256.099217] ? lock_downgrade+0x8f0/0x8f0 [ 256.103396] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 256.108413] ? graph_lock+0x170/0x170 [ 256.112210] ? __lock_is_held+0xb5/0x140 [ 256.116275] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 256.120695] ? __lock_is_held+0xb5/0x140 [ 256.124764] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 256.130312] alloc_pages_current+0x10c/0x210 [ 256.134725] __get_free_pages+0xf/0x40 [ 256.138617] mmu_topup_memory_caches+0x1f8/0x3a0 [ 256.143383] kvm_mmu_load+0x21/0x10e0 [ 256.147205] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.152761] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 256.157371] vcpu_enter_guest+0x3aa6/0x6090 [ 256.161714] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 256.165963] ? kvm_set_msr_common+0x26a0/0x26a0 [ 256.170663] ? vmx_vcpu_load+0xadf/0xff0 [ 256.174728] ? __lock_acquire+0x7fc/0x5020 [ 256.178970] ? vmx_vcpu_reset+0x1040/0x1040 [ 256.183299] ? graph_lock+0x170/0x170 [ 256.187095] ? __lock_acquire+0x7fc/0x5020 [ 256.191333] ? __lock_is_held+0xb5/0x140 [ 256.195411] ? lock_acquire+0x1e4/0x540 [ 256.199405] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 256.204432] ? lock_release+0xa30/0xa30 [ 256.208396] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 256.213692] ? kvm_arch_dev_ioctl+0x610/0x610 [ 256.218192] ? preempt_notifier_dec+0x20/0x20 [ 256.222703] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 256.227560] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 256.232594] kvm_vcpu_ioctl+0x7b8/0x1300 [ 256.236653] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 256.242363] ? find_held_lock+0x36/0x1c0 [ 256.246424] ? find_held_lock+0x36/0x1c0 [ 256.250486] ? lock_downgrade+0x8f0/0x8f0 [ 256.254650] ? kasan_check_read+0x11/0x20 [ 256.258808] ? rcu_is_watching+0x8c/0x150 [ 256.262955] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 256.267369] ? __fget+0x414/0x670 [ 256.270827] ? match_held_lock+0x821/0x8d0 [ 256.275069] ? expand_files.part.8+0x9c0/0x9c0 [ 256.279655] ? kasan_check_write+0x14/0x20 [ 256.283895] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 256.288843] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 256.294583] do_vfs_ioctl+0x1de/0x1720 [ 256.298498] ? __lock_is_held+0xb5/0x140 [ 256.302573] ? ioctl_preallocate+0x300/0x300 [ 256.306998] ? __fget_light+0x2f7/0x440 [ 256.310994] ? fget_raw+0x20/0x20 [ 256.314485] ? __sb_end_write+0xac/0xe0 [ 256.318470] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.324037] ? fput+0x130/0x1a0 [ 256.327318] ? ksys_write+0x1ae/0x260 [ 256.331139] ? security_file_ioctl+0x94/0xc0 [ 256.335555] ksys_ioctl+0xa9/0xd0 [ 256.339038] __x64_sys_ioctl+0x73/0xb0 [ 256.342931] do_syscall_64+0x1b9/0x820 [ 256.346818] ? finish_task_switch+0x1d3/0x870 [ 256.351334] ? syscall_return_slowpath+0x5e0/0x5e0 [ 256.356305] ? syscall_return_slowpath+0x31d/0x5e0 [ 256.361240] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 256.366615] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 256.371457] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 256.376639] RIP: 0033:0x455e29 [ 256.379826] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 256.399096] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 256.406810] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 256.414076] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 00:13:28 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)="2f70ab439ed0179fd056162ca3df726f632f7379732f6e65742f697076342f76732f63616348655fff010000737300", 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x13}}}, [0x943c, 0x6, 0x6, 0x3, 0x2626ec1f, 0x81, 0x10bd1c14, 0x782, 0x6, 0x2dc, 0x7, 0x200, 0x28913fb1, 0x100, 0x8]}, &(0x7f0000000140)=0x100) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000180)={r1, 0x8}, 0x8) r2 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r3 = socket$inet6(0xa, 0x7, 0x80000000000ff) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r2) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) [ 256.421338] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 256.428616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 256.435895] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000003f 00:13:28 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x0, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:28 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1c) 00:13:28 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f00003ec000/0x3000)=nil, 0x3000, 0x2) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000140)={0x40, 0x8, 0x3f, 0x7fffffff, 0x0}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r2, 0x4c, 0x5, 0x8}, &(0x7f0000000040)=0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f00000002c0)={r3, @in={{0x2, 0x4e22, @rand_addr=0xfffffffffffff783}}, [0x9, 0x40, 0xfffffffffffffffb, 0x2, 0x9, 0x4, 0x81, 0x7, 0x2, 0x26, 0xa6b, 0x8, 0x9f3, 0x0, 0x9]}, &(0x7f0000000100)=0x100) 00:13:28 executing program 1: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200)='/dev/zero\x00', 0x2, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000240)={0x1, 0x0, 'client0\x00', 0xffffffff80000003, "06d8a3542832e943", "c85c0b85efd1fbbd172b4b30a462e0910f9570cfc362187961faf4e31af583db", 0x40, 0x1ff}) ioctl$TIOCGPTPEER(r0, 0x5441, 0x5) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r1 = socket$inet6(0xa, 0x1000000000402, 0x0) ioctl(r1, 0x8912, &(0x7f00000001c0)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000300)={@dev, @dev}, &(0x7f0000000340)=0x8) getsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f0000000080), &(0x7f0000000180)=0x4) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x80000, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:28 executing program 2 (fault-call:7 fault-nth:64): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 256.739593] FAULT_INJECTION: forcing a failure. [ 256.739593] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 256.751838] CPU: 0 PID: 13831 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 256.759229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 256.768704] Call Trace: [ 256.771367] dump_stack+0x1c9/0x2b4 [ 256.775044] ? dump_stack_print_info.cold.2+0x52/0x52 [ 256.780306] ? lock_downgrade+0x8f0/0x8f0 [ 256.784595] should_fail.cold.4+0xa/0x1a [ 256.788866] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 256.794171] ? graph_lock+0x170/0x170 [ 256.798025] ? is_bpf_text_address+0xd7/0x170 [ 256.802592] ? find_held_lock+0x36/0x1c0 [ 256.806726] ? __lock_is_held+0xb5/0x140 [ 256.810846] ? check_same_owner+0x340/0x340 [ 256.815231] ? rcu_note_context_switch+0x730/0x730 [ 256.820211] __alloc_pages_nodemask+0x36e/0xdb0 [ 256.824916] ? lock_downgrade+0x8f0/0x8f0 [ 256.829102] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 256.834154] ? graph_lock+0x170/0x170 [ 256.838021] ? __lock_is_held+0xb5/0x140 [ 256.842120] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 256.846583] ? __lock_is_held+0xb5/0x140 [ 256.850696] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 256.856311] alloc_pages_current+0x10c/0x210 [ 256.860762] __get_free_pages+0xf/0x40 [ 256.864698] mmu_topup_memory_caches+0x1f8/0x3a0 [ 256.869509] kvm_mmu_load+0x21/0x10e0 [ 256.873369] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.878952] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 256.883618] vcpu_enter_guest+0x3aa6/0x6090 [ 256.887989] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 256.892277] ? kvm_set_msr_common+0x26a0/0x26a0 [ 256.897004] ? vmx_vcpu_load+0xadf/0xff0 [ 256.901116] ? __lock_acquire+0x7fc/0x5020 [ 256.905400] ? vmx_vcpu_reset+0x1040/0x1040 [ 256.909762] ? graph_lock+0x170/0x170 [ 256.913624] ? __lock_acquire+0x7fc/0x5020 [ 256.917917] ? __lock_is_held+0xb5/0x140 [ 256.922057] ? lock_acquire+0x1e4/0x540 [ 256.926134] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 256.931202] ? lock_release+0xa30/0xa30 [ 256.935236] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 256.940568] ? kvm_arch_dev_ioctl+0x610/0x610 [ 256.945101] ? preempt_notifier_dec+0x20/0x20 [ 256.949647] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 256.954534] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 256.959592] kvm_vcpu_ioctl+0x7b8/0x1300 [ 256.963679] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 256.969717] ? find_held_lock+0x36/0x1c0 [ 256.973835] ? find_held_lock+0x36/0x1c0 [ 256.977930] ? lock_downgrade+0x8f0/0x8f0 [ 256.982101] ? kasan_check_read+0x11/0x20 [ 256.986268] ? rcu_is_watching+0x8c/0x150 [ 256.990421] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 256.994851] ? __fget+0x414/0x670 [ 256.998332] ? match_held_lock+0x821/0x8d0 [ 257.002584] ? expand_files.part.8+0x9c0/0x9c0 [ 257.007193] ? kasan_check_write+0x14/0x20 [ 257.011455] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 257.016521] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 257.022257] do_vfs_ioctl+0x1de/0x1720 [ 257.026152] ? __lock_is_held+0xb5/0x140 [ 257.030212] ? ioctl_preallocate+0x300/0x300 [ 257.034633] ? __fget_light+0x2f7/0x440 [ 257.038620] ? fget_raw+0x20/0x20 [ 257.042095] ? __sb_end_write+0xac/0xe0 [ 257.046092] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 257.051635] ? fput+0x130/0x1a0 [ 257.054923] ? ksys_write+0x1ae/0x260 [ 257.058733] ? security_file_ioctl+0x94/0xc0 [ 257.063143] ksys_ioctl+0xa9/0xd0 [ 257.066597] __x64_sys_ioctl+0x73/0xb0 [ 257.070570] do_syscall_64+0x1b9/0x820 [ 257.074678] ? finish_task_switch+0x1d3/0x870 [ 257.079184] ? syscall_return_slowpath+0x5e0/0x5e0 [ 257.084135] ? syscall_return_slowpath+0x31d/0x5e0 [ 257.089077] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 257.094450] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 257.099318] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 257.104538] RIP: 0033:0x455e29 [ 257.107725] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 257.127766] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:28 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00') socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:28 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5424, &(0x7f0000000000)) 00:13:28 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:28 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x6, 0x1) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:28 executing program 7: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc80a2b345f8f762070") r1 = socket$inet6(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f00000001c0)={&(0x7f0000000080)=@nl=@kern={0x10}, 0x80, &(0x7f0000002000)=[{&(0x7f0000000100)="550000001e007f5300fe01b2a4a280930a06000000a8430891000000080009000a000c0000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d40000000000000000000000000000", 0x55}], 0x1, &(0x7f0000000300)}, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) fchdir(r2) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1, 0x2) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r5, 0x84, 0x20, &(0x7f0000000040), &(0x7f0000000080)=0x4) 00:13:28 executing program 0: [ 257.136495] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 257.143765] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 257.151038] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 257.158350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 257.165631] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000040 00:13:28 executing program 2 (fault-call:7 fault-nth:65): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:28 executing program 0: 00:13:28 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 257.235782] netlink: 49 bytes leftover after parsing attributes in process `syz-executor7'. 00:13:28 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socket$inet(0x2, 0x0, 0x1) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') [ 257.303767] FAULT_INJECTION: forcing a failure. [ 257.303767] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 257.315824] CPU: 0 PID: 13859 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 257.323207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.332580] Call Trace: [ 257.335203] dump_stack+0x1c9/0x2b4 [ 257.338870] ? dump_stack_print_info.cold.2+0x52/0x52 [ 257.344128] ? lock_downgrade+0x8f0/0x8f0 [ 257.348331] should_fail.cold.4+0xa/0x1a 00:13:28 executing program 0: [ 257.352445] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 257.357593] ? graph_lock+0x170/0x170 [ 257.361430] ? is_bpf_text_address+0xd7/0x170 [ 257.365971] ? find_held_lock+0x36/0x1c0 [ 257.370103] ? __lock_is_held+0xb5/0x140 [ 257.374215] ? check_same_owner+0x340/0x340 [ 257.378611] ? rcu_note_context_switch+0x730/0x730 [ 257.383604] __alloc_pages_nodemask+0x36e/0xdb0 [ 257.388356] ? lock_downgrade+0x8f0/0x8f0 [ 257.392597] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 257.397658] ? graph_lock+0x170/0x170 00:13:28 executing program 0: [ 257.401506] ? __lock_is_held+0xb5/0x140 [ 257.405614] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 257.410077] ? __lock_is_held+0xb5/0x140 [ 257.414236] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 257.419832] alloc_pages_current+0x10c/0x210 [ 257.424307] __get_free_pages+0xf/0x40 [ 257.428256] mmu_topup_memory_caches+0x1f8/0x3a0 [ 257.433092] kvm_mmu_load+0x21/0x10e0 [ 257.436959] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 257.442584] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 257.447216] vcpu_enter_guest+0x3aa6/0x6090 00:13:29 executing program 0: [ 257.451583] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 257.455859] ? kvm_set_msr_common+0x26a0/0x26a0 [ 257.460593] ? vmx_vcpu_load+0xadf/0xff0 [ 257.464697] ? __lock_acquire+0x7fc/0x5020 [ 257.468987] ? vmx_vcpu_reset+0x1040/0x1040 [ 257.473350] ? graph_lock+0x170/0x170 [ 257.477198] ? __lock_acquire+0x7fc/0x5020 [ 257.481498] ? __lock_is_held+0xb5/0x140 [ 257.485605] ? lock_acquire+0x1e4/0x540 [ 257.489617] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 257.494679] ? lock_release+0xa30/0xa30 [ 257.498685] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 257.504001] ? kvm_arch_dev_ioctl+0x610/0x610 [ 257.508540] ? preempt_notifier_dec+0x20/0x20 [ 257.513080] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 257.517961] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 257.523030] kvm_vcpu_ioctl+0x7b8/0x1300 [ 257.527131] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 257.532904] ? find_held_lock+0x36/0x1c0 [ 257.537057] ? find_held_lock+0x36/0x1c0 [ 257.541182] ? lock_downgrade+0x8f0/0x8f0 [ 257.545385] ? kasan_check_read+0x11/0x20 [ 257.549588] ? rcu_is_watching+0x8c/0x150 [ 257.553779] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 257.558242] ? __fget+0x414/0x670 [ 257.561741] ? match_held_lock+0x821/0x8d0 [ 257.566022] ? expand_files.part.8+0x9c0/0x9c0 [ 257.570665] ? kasan_check_write+0x14/0x20 [ 257.574935] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 257.579931] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 257.585684] do_vfs_ioctl+0x1de/0x1720 [ 257.589606] ? __lock_is_held+0xb5/0x140 [ 257.593706] ? ioctl_preallocate+0x300/0x300 [ 257.598172] ? __fget_light+0x2f7/0x440 [ 257.602178] ? fget_raw+0x20/0x20 [ 257.605660] ? __sb_end_write+0xac/0xe0 [ 257.609695] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 257.615257] ? fput+0x130/0x1a0 [ 257.618567] ? ksys_write+0x1ae/0x260 [ 257.622401] ? security_file_ioctl+0x94/0xc0 [ 257.626876] ksys_ioctl+0xa9/0xd0 [ 257.630389] __x64_sys_ioctl+0x73/0xb0 [ 257.634534] do_syscall_64+0x1b9/0x820 [ 257.638452] ? finish_task_switch+0x1d3/0x870 [ 257.642996] ? syscall_return_slowpath+0x5e0/0x5e0 [ 257.647961] ? syscall_return_slowpath+0x31d/0x5e0 [ 257.652934] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 257.658334] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 257.663218] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 257.668428] RIP: 0033:0x455e29 [ 257.671717] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 257.691095] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:29 executing program 0: 00:13:29 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000180)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x80000, 0x0) ioctl(r0, 0x8912, &(0x7f0000000240)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000200)='sit0\x00') getsockopt$inet6_dccp_int(r0, 0x21, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f00000001c0)=0x91e, 0x4) 00:13:29 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x6, 0x3998}) ioctl$int_out(r0, 0x2, &(0x7f0000000040)) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:29 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:29 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x4000, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40008400}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x50, r3, 0x200, 0x70bd2d, 0x25dfdbfe, {0xe}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10001}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfffffffffffff000}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x75}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfffffffffffffffa}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x5}, 0x50) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000200)={0xaf1, 0x3, 0x87, 0x102}) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r2, 0x54a3) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r4, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r2, 0xc0bc5351, &(0x7f0000000280)={0x8fe, 0x2, 'client0\x00', 0x1, "5637416c5d6d84da", "07bd40c141b23ed8c9520572e2e97616851ded4b9ecb72b9046dc441cfb972d2", 0x1, 0x1}) [ 257.698856] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 257.706158] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 257.713446] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 257.720915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 257.728218] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000041 00:13:29 executing program 0: 00:13:29 executing program 6: r0 = socket$inet6(0xa, 0xa, 0x5) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) sendfile(r1, r1, &(0x7f0000000000), 0x4d25) read(r0, &(0x7f0000000180)=""/4, 0x4) 00:13:29 executing program 2 (fault-call:7 fault-nth:66): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:29 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x545d, &(0x7f0000000000)) 00:13:29 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x8000009, 0x8800) 00:13:29 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) r0 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x3648, 0x2000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000240)={0xffffffffffffffff}}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000500)={0x13, 0x10, 0xfa00, {&(0x7f00000002c0), r1, 0x2}}, 0x18) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x80, 0x2000) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x4, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2000, 0x40) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040), 0x106, 0x4}}, 0x20) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:29 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x800000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup3(r1, r1, 0x0) ioctl$TIOCGWINSZ(r2, 0x5413, &(0x7f0000000000)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000000040)) 00:13:29 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:29 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_udp(0x2, 0x2, 0x0) connect(r1, &(0x7f00000001c0)=@in={0x2}, 0x80) r2 = syz_open_procfs(0x0, &(0x7f0000000380)='smaps\x00') sendfile(r1, r2, &(0x7f00005d4ff8), 0x2000000000000ff) 00:13:29 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 258.267864] FAULT_INJECTION: forcing a failure. [ 258.267864] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 258.280227] CPU: 1 PID: 13913 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 258.287707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.297173] Call Trace: [ 258.299835] dump_stack+0x1c9/0x2b4 [ 258.303505] ? dump_stack_print_info.cold.2+0x52/0x52 [ 258.308751] ? lock_downgrade+0x8f0/0x8f0 [ 258.312957] should_fail.cold.4+0xa/0x1a [ 258.317074] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 258.322251] ? graph_lock+0x170/0x170 [ 258.326195] ? is_bpf_text_address+0xd7/0x170 [ 258.330775] ? find_held_lock+0x36/0x1c0 [ 258.334904] ? __lock_is_held+0xb5/0x140 [ 258.339060] ? check_same_owner+0x340/0x340 [ 258.343427] ? rcu_note_context_switch+0x730/0x730 [ 258.348435] __alloc_pages_nodemask+0x36e/0xdb0 [ 258.353158] ? lock_downgrade+0x8f0/0x8f0 [ 258.357363] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 258.362460] ? graph_lock+0x170/0x170 00:13:29 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) socket$inet6(0xa, 0x1000000000002, 0x0) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) [ 258.366304] ? __lock_is_held+0xb5/0x140 [ 258.370442] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 258.374925] ? __lock_is_held+0xb5/0x140 [ 258.379046] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 258.384627] alloc_pages_current+0x10c/0x210 [ 258.389082] __get_free_pages+0xf/0x40 [ 258.393015] mmu_topup_memory_caches+0x1f8/0x3a0 [ 258.397869] kvm_mmu_load+0x21/0x10e0 [ 258.401715] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 258.407305] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 258.412031] vcpu_enter_guest+0x3aa6/0x6090 [ 258.416395] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 258.420683] ? kvm_set_msr_common+0x26a0/0x26a0 [ 258.425431] ? vmx_vcpu_load+0xadf/0xff0 [ 258.429542] ? __lock_acquire+0x7fc/0x5020 [ 258.433816] ? vmx_vcpu_reset+0x1040/0x1040 [ 258.438183] ? graph_lock+0x170/0x170 [ 258.442037] ? __lock_acquire+0x7fc/0x5020 [ 258.446415] ? __lock_is_held+0xb5/0x140 [ 258.450529] ? lock_acquire+0x1e4/0x540 [ 258.454554] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 258.459641] ? lock_release+0xa30/0xa30 [ 258.463664] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 00:13:30 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 258.468982] ? kvm_arch_dev_ioctl+0x610/0x610 [ 258.473520] ? preempt_notifier_dec+0x20/0x20 [ 258.478091] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 258.482980] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 258.488110] kvm_vcpu_ioctl+0x7b8/0x1300 [ 258.492224] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 258.497997] ? find_held_lock+0x36/0x1c0 [ 258.502140] ? find_held_lock+0x36/0x1c0 [ 258.506346] ? lock_downgrade+0x8f0/0x8f0 [ 258.510540] ? kasan_check_read+0x11/0x20 [ 258.514722] ? rcu_is_watching+0x8c/0x150 [ 258.518932] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 258.523486] ? __fget+0x414/0x670 [ 258.526974] ? match_held_lock+0x821/0x8d0 [ 258.531252] ? expand_files.part.8+0x9c0/0x9c0 [ 258.535866] ? kasan_check_write+0x14/0x20 [ 258.540133] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 258.545110] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 258.550850] do_vfs_ioctl+0x1de/0x1720 [ 258.554767] ? __lock_is_held+0xb5/0x140 [ 258.558862] ? ioctl_preallocate+0x300/0x300 [ 258.563293] ? __fget_light+0x2f7/0x440 [ 258.567294] ? fget_raw+0x20/0x20 [ 258.570802] ? __sb_end_write+0xac/0xe0 [ 258.574810] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 258.580418] ? fput+0x130/0x1a0 [ 258.583731] ? ksys_write+0x1ae/0x260 [ 258.587570] ? security_file_ioctl+0x94/0xc0 [ 258.592023] ksys_ioctl+0xa9/0xd0 [ 258.595527] __x64_sys_ioctl+0x73/0xb0 [ 258.599562] do_syscall_64+0x1b9/0x820 [ 258.603488] ? finish_task_switch+0x1d3/0x870 [ 258.608040] ? syscall_return_slowpath+0x5e0/0x5e0 [ 258.613021] ? syscall_return_slowpath+0x31d/0x5e0 [ 258.617996] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 258.623410] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 258.628333] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 258.633547] RIP: 0033:0x455e29 [ 258.636773] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 258.656169] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:30 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') select(0x40, &(0x7f0000000040)={0x4, 0x7, 0xffffffffffffffff, 0x0, 0x7, 0x2, 0xfffffffffffeffff, 0x400}, &(0x7f0000000080)={0x7fff, 0x3, 0x1000, 0x1, 0xfff, 0x3, 0x0, 0x80000001}, &(0x7f0000000180)={0x10000, 0x6, 0xffffffffffffff01, 0x200, 0xbf15, 0x4, 0x81, 0x6}, &(0x7f00000001c0)={0x0, 0x7530}) 00:13:30 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x9, 0x20000006, 0x2, &(0x7f0000000040)) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:30 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(0xffffffffffffffff, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 258.663909] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 258.671216] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 258.678518] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 258.685817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 258.693133] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000042 00:13:30 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x22080, 0x0) setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000040)={@local={0xac, 0x14, 0x14, 0xaa}, @multicast1=0xe0000001}, 0x8) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x7003, &(0x7f0000000080)) read(r2, &(0x7f0000000180)=""/4, 0x4) 00:13:30 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x800000010000000, 0x1) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000300), &(0x7f0000000340)=0x14) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x1ff, 0x60200) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000180)="dae60dd8710ef8bdf5fa958dd256b42b865f9d8e73ba2eb21da2dc07e6e7a86bcae39867df1d4fc9048eb6a21b46d5f0039796bd0474f7c0a3e1696757f13fbe25725687ae8baa972052fc44e69c0f6ca582200e07506d59919b82e73f64ed549d627e6ebe52c7b18644f452930e67f4b38df8d940af22bcfe68d2373232816e5cc22a1517191be73e5a0401fdbb7ae620a69e754388d017040f2c77cd8b5a0256ff767f947378e7c22a06a599370f605e40cd90a28e4582d02c27610e4b6979da"}, 0x10) r2 = socket$inet6(0xa, 0x7, 0x4000000) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:30 executing program 0: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_bridge\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') 00:13:30 executing program 2 (fault-call:7 fault-nth:67): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 258.960687] FAULT_INJECTION: forcing a failure. [ 258.960687] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 258.974344] CPU: 1 PID: 13967 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 258.981727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.991102] Call Trace: [ 258.993727] dump_stack+0x1c9/0x2b4 [ 258.997382] ? dump_stack_print_info.cold.2+0x52/0x52 [ 259.002600] ? lock_downgrade+0x8f0/0x8f0 [ 259.006811] should_fail.cold.4+0xa/0x1a [ 259.010903] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 259.016061] ? graph_lock+0x170/0x170 [ 259.019897] ? is_bpf_text_address+0xd7/0x170 [ 259.024415] ? find_held_lock+0x36/0x1c0 [ 259.028509] ? __lock_is_held+0xb5/0x140 [ 259.032600] ? check_same_owner+0x340/0x340 [ 259.037051] ? rcu_note_context_switch+0x730/0x730 [ 259.042052] __alloc_pages_nodemask+0x36e/0xdb0 [ 259.046750] ? lock_downgrade+0x8f0/0x8f0 [ 259.050928] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 259.055981] ? graph_lock+0x170/0x170 [ 259.059813] ? __lock_is_held+0xb5/0x140 [ 259.063904] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 259.068363] ? __lock_is_held+0xb5/0x140 [ 259.072479] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 259.078068] alloc_pages_current+0x10c/0x210 [ 259.082531] __get_free_pages+0xf/0x40 [ 259.086482] mmu_topup_memory_caches+0x1f8/0x3a0 [ 259.091318] kvm_mmu_load+0x21/0x10e0 [ 259.095165] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.100745] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 259.105392] vcpu_enter_guest+0x3aa6/0x6090 [ 259.109751] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 259.114043] ? kvm_set_msr_common+0x26a0/0x26a0 [ 259.118753] ? vmx_vcpu_load+0xadf/0xff0 [ 259.122845] ? __lock_acquire+0x7fc/0x5020 [ 259.127109] ? vmx_vcpu_reset+0x1040/0x1040 [ 259.131631] ? graph_lock+0x170/0x170 [ 259.135472] ? __lock_acquire+0x7fc/0x5020 [ 259.139740] ? __lock_is_held+0xb5/0x140 [ 259.143828] ? lock_acquire+0x1e4/0x540 [ 259.147827] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 259.152871] ? lock_release+0xa30/0xa30 [ 259.156864] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 259.162184] ? kvm_arch_dev_ioctl+0x610/0x610 [ 259.166700] ? preempt_notifier_dec+0x20/0x20 [ 259.171232] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 259.176104] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 259.181160] kvm_vcpu_ioctl+0x7b8/0x1300 [ 259.185259] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 259.191052] ? find_held_lock+0x36/0x1c0 [ 259.195139] ? find_held_lock+0x36/0x1c0 [ 259.199228] ? lock_downgrade+0x8f0/0x8f0 [ 259.203399] ? kasan_check_read+0x11/0x20 [ 259.207577] ? rcu_is_watching+0x8c/0x150 [ 259.211738] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 259.216165] ? __fget+0x414/0x670 [ 259.219634] ? match_held_lock+0x821/0x8d0 [ 259.223888] ? expand_files.part.8+0x9c0/0x9c0 [ 259.228521] ? kasan_check_write+0x14/0x20 [ 259.232802] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 259.237781] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 259.243517] do_vfs_ioctl+0x1de/0x1720 [ 259.247430] ? __lock_is_held+0xb5/0x140 [ 259.251519] ? ioctl_preallocate+0x300/0x300 [ 259.255961] ? __fget_light+0x2f7/0x440 [ 259.259972] ? fget_raw+0x20/0x20 [ 259.263462] ? __sb_end_write+0xac/0xe0 [ 259.267476] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.273054] ? fput+0x130/0x1a0 [ 259.276385] ? ksys_write+0x1ae/0x260 [ 259.280307] ? security_file_ioctl+0x94/0xc0 [ 259.284742] ksys_ioctl+0xa9/0xd0 [ 259.288235] __x64_sys_ioctl+0x73/0xb0 [ 259.292148] do_syscall_64+0x1b9/0x820 [ 259.296062] ? finish_task_switch+0x1d3/0x870 [ 259.300574] ? syscall_return_slowpath+0x5e0/0x5e0 [ 259.305530] ? syscall_return_slowpath+0x31d/0x5e0 [ 259.310486] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 259.315894] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.320770] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 259.325977] RIP: 0033:0x455e29 [ 259.329183] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 259.348591] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:30 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x540c, &(0x7f0000000000)) 00:13:30 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(0xffffffffffffffff, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:30 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000000)=0xf2, 0x4) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x123002, 0x0) 00:13:30 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x200) ioctl$KDGKBTYPE(r3, 0x4b33, &(0x7f0000000040)) 00:13:30 executing program 2 (fault-call:7 fault-nth:68): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 259.356324] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 259.363609] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 259.370897] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 259.378195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 259.385498] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000043 [ 259.396578] bridge0: port 1(bridge_slave_0) entered disabled state 00:13:31 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) setsockopt$inet_tcp_buf(r1, 0x6, 0x1c, &(0x7f0000000000)="7c625cddc82aae564114568ca56881d56ff10825bb6aa0f24096f404cfd3ea77548295222b0ad68b91eb0c4d6dda2e7fa9ea88f3f7c0d3c101189b2fb292dfb6a12f1a7cf798969a9713412e6e", 0x4d) 00:13:31 executing program 0: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x10000) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x4800002, 0x4831, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000000), &(0x7f0000000040)=0x4) symlinkat(&(0x7f0000008ff8)='./file1\x00', 0xffffffffffffffff, &(0x7f0000012ff8)='./file0\x00') bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000003c80)=0xffffffff, 0x4) madvise(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x9) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) faccessat(r2, &(0x7f0000000080)='./file1\x00', 0x40, 0x22ed640cb943ef8a) 00:13:31 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000080)='fou\x00') sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c2d177c", @ANYRES16=r3, @ANYBLOB="000226bd7000fedbdf25010000000400050004000500"], 0x1c}, 0x1, 0x0, 0x0, 0x20000004}, 0x40) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f9, &(0x7f0000000140)='sit0\x00') openat$dsp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dsp\x00', 0x123000, 0x0) 00:13:31 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(0xffffffffffffffff, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 259.539175] FAULT_INJECTION: forcing a failure. [ 259.539175] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 259.551652] CPU: 0 PID: 13987 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 259.559035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 259.568411] Call Trace: [ 259.571063] dump_stack+0x1c9/0x2b4 [ 259.574769] ? dump_stack_print_info.cold.2+0x52/0x52 [ 259.579994] ? lock_downgrade+0x8f0/0x8f0 [ 259.584196] should_fail.cold.4+0xa/0x1a [ 259.588295] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 259.593429] ? graph_lock+0x170/0x170 [ 259.597258] ? is_bpf_text_address+0xd7/0x170 [ 259.601782] ? find_held_lock+0x36/0x1c0 [ 259.605875] ? __lock_is_held+0xb5/0x140 [ 259.609977] ? check_same_owner+0x340/0x340 [ 259.614329] ? rcu_note_context_switch+0x730/0x730 [ 259.619314] __alloc_pages_nodemask+0x36e/0xdb0 [ 259.624012] ? lock_downgrade+0x8f0/0x8f0 [ 259.628204] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 259.633253] ? graph_lock+0x170/0x170 [ 259.637080] ? __lock_is_held+0xb5/0x140 [ 259.641165] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 259.645619] ? __lock_is_held+0xb5/0x140 [ 259.649731] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 259.655315] alloc_pages_current+0x10c/0x210 [ 259.659764] __get_free_pages+0xf/0x40 [ 259.663685] mmu_topup_memory_caches+0x1f8/0x3a0 [ 259.668471] ? retint_kernel+0x10/0x10 [ 259.672398] kvm_mmu_load+0x21/0x10e0 [ 259.676234] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.681810] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 259.686456] vcpu_enter_guest+0x3aa6/0x6090 [ 259.690819] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 259.695092] ? kvm_set_msr_common+0x26a0/0x26a0 [ 259.699803] ? vmx_vcpu_load+0xadf/0xff0 [ 259.703900] ? __lock_acquire+0x7fc/0x5020 [ 259.708167] ? vmx_vcpu_reset+0x1040/0x1040 [ 259.712529] ? graph_lock+0x170/0x170 [ 259.716362] ? __lock_acquire+0x7fc/0x5020 [ 259.720634] ? __lock_is_held+0xb5/0x140 [ 259.724723] ? lock_acquire+0x1e4/0x540 [ 259.728723] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 259.733766] ? lock_release+0xa30/0xa30 [ 259.737761] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 259.743069] ? kvm_arch_dev_ioctl+0x610/0x610 [ 259.747601] ? preempt_notifier_dec+0x20/0x20 [ 259.752136] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 259.757210] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 259.762266] kvm_vcpu_ioctl+0x7b8/0x1300 [ 259.766363] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 259.772107] ? find_held_lock+0x36/0x1c0 [ 259.776226] ? find_held_lock+0x36/0x1c0 [ 259.780499] ? lock_downgrade+0x8f0/0x8f0 [ 259.784694] ? kasan_check_read+0x11/0x20 00:13:31 executing program 1: bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=""/1}, 0x18) sendmsg(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f00000000c0)=@in6={0xa, 0x0, 0x0, @empty={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa]}}, 0x80, &(0x7f00000013c0), 0x0, &(0x7f0000001400)}, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f9, &(0x7f0000000140)='sit0\x00') r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xa00}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x8c, r2, 0x20, 0x70bd27, 0x25dfdbfe, {0x1}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4a45}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}]}, 0x8c}, 0x1}, 0x0) write$P9_RREAD(r1, &(0x7f0000000300)={0x5e, 0x75, 0x2, {0x53, "c883610bc3a979210673164692ada3323a632f003d73e107f07bd0ca95787a17ff64a481622ef14623ab6bbfd9497f4a9338e4a84825495f2e5740d02d473d0562c8e9109a2c71052c4a1d77295b37df51c611"}}, 0x5e) 00:13:31 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:31 executing program 1 (fault-call:2 fault-nth:0): r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:31 executing program 0: r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7ff, 0x204400) ioctl$KDENABIO(r0, 0x4b36) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f00000000c0)}) 00:13:31 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:31 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x106}}, 0x20) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='map_files\x00') ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000040)={0xb2b, 0x1e62, 0x3, 0x8b, 0x8000, 0x8}) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {r1, 0x10, 0x0, @in={0x2, 0x0, @loopback=0x7f000001}}}, 0x90) 00:13:31 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0x2, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 259.788870] ? rcu_is_watching+0x8c/0x150 [ 259.793056] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 259.797502] ? __fget+0x414/0x670 [ 259.800999] ? match_held_lock+0x821/0x8d0 [ 259.805263] ? expand_files.part.8+0x9c0/0x9c0 [ 259.809881] ? kasan_check_write+0x14/0x20 [ 259.814140] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 259.819104] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 259.824850] do_vfs_ioctl+0x1de/0x1720 [ 259.828762] ? __lock_is_held+0xb5/0x140 [ 259.832825] ? ioctl_preallocate+0x300/0x300 [ 259.837233] ? __fget_light+0x2f7/0x440 [ 259.841203] ? fget_raw+0x20/0x20 [ 259.844667] ? __sb_end_write+0xac/0xe0 [ 259.848635] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.854164] ? fput+0x130/0x1a0 [ 259.857445] ? ksys_write+0x1ae/0x260 [ 259.861257] ? security_file_ioctl+0x94/0xc0 [ 259.865745] ksys_ioctl+0xa9/0xd0 [ 259.869190] __x64_sys_ioctl+0x73/0xb0 [ 259.873072] do_syscall_64+0x1b9/0x820 [ 259.876958] ? syscall_slow_exit_work+0x500/0x500 [ 259.881800] ? syscall_return_slowpath+0x5e0/0x5e0 [ 259.886733] ? syscall_return_slowpath+0x31d/0x5e0 [ 259.891835] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 259.897196] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.902136] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 259.907325] RIP: 0033:0x455e29 [ 259.910505] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 259.929833] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 259.937538] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 259.944814] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 259.952082] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 259.959351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 259.966610] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000044 00:13:32 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0x4, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:32 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x80045432, &(0x7f0000000000)) 00:13:32 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x0, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:32 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='task\x00') getdents(r1, &(0x7f0000000300)=""/103, 0xfffffffffffffff0) r2 = socket$inet6_sctp(0xa, 0x80000000005, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000001000)={0x0, @in6={{0xa, 0x0, 0x0, @loopback={0x0, 0x1}}}}, 0x98) setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f00000000c0)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}}, 0x88) setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000000240)={0x0, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x88) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001000)={{{@in=@rand_addr=0x1000000, @in6=@mcast1={0xff, 0x1, [], 0x1}}}, {{@in=@multicast2=0xe0000002}, 0x0, @in6=@mcast1={0xff, 0x1, [], 0x1}}}, 0xe8) getsockopt$inet6_buf(r2, 0x29, 0x30, &(0x7f0000001000)=""/144, &(0x7f0000001ffc)=0x90) getdents(r1, &(0x7f0000000100)=""/181, 0x20) 00:13:32 executing program 4: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)={0x70, 0x9, 0x1000, "38bcb66af517ff8b6bf6807a3c3080b250051a6b3eea6ad258ecd412321dc70747ec222d223fce4d1e72c0e8773c3df2c08432544223eb71398d5915dc9cd8f6b42c08f7d37f88129dc3af885fe11adb4aabb91f83fe63b6a3ff882704d6fcf5e9701074cb33db123447fd3ccdfacd88"}) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000240)={0x100000000, 0x8, 0x80, 0x3, 0x5, 0x1f, 0x8001, 0x8, 0x4, 0x1}) syz_open_dev$dspn(&(0x7f0000002940)='/dev/dsp#\x00', 0x40000, 0x80000000000000) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000180)=[@in={0x2, 0x4e23, @loopback=0x7f000001}, @in={0x2, 0x4e20, @multicast1=0xe0000001}, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, @in6={0xa, 0x4e20, 0xffffffff, @dev={0xfe, 0x80, [], 0x14}, 0x40}, @in6={0xa, 0x4e24, 0x1f, @local={0xfe, 0x80, [], 0xaa}, 0x100000001}, @in={0x2, 0x4e21}, @in={0x2, 0x4e22, @multicast2=0xe0000002}], 0x88) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0xfffffffffffffffe) sendmsg$nfc_llcp(r0, &(0x7f00000028c0)={&(0x7f00000000c0)={0x27, 0x1, 0x0, 0x7, 0x5, 0x80, "3ceddf01b192c5e5827f44c2486fa0cb4c324e130df2155915fc1b65218fed8b96a3c26add4deb7ca60497f8d9b399234f8ea36ebdccb6f8ee39646df75651", 0x2c}, 0x60, &(0x7f00000027c0)=[{&(0x7f00000002c0)="91835c03ba9385870669dea9a5a9267341ac56e14241b682d7e4214bda2caa5fd81ac1e4dda79f8324d44727b7f62bcac6753270ea4adc144374df16724846a5f28a2296f72bedacd1ca6c49ccbb740527611d2473e017e4af5f15fd67f7d6134a3380ae398ec6ac9bd85b9ad305563e9d1761107ab03b2f7c35a67d50fa6c8286b4da9d52af8ac7d304864db907b14db9cbc4b331bcc0d8b7e86638e443426bfef91b40801a3f323489f3e3547fa84f3471bb356a11c8f1fb8809cfe06b440f67ca3c6be075580d99b9c77571d1a126c5dcc595615bc81d1dfbe6683fbcd54fffc2", 0xe2}, {&(0x7f00000003c0)="9bbaad8936f87abd23385d6e8d10d83f041ad009e09e3d7f07fe09a4a2576228a9d948fad7c5eb242271de7804d152aa222c546efe42a7d16a2adc7ab56497c71ad09acc5e74bd18000735a23358a2d482a05727e205ee237162af4b4ec4d9e913e9d304191971d400e259ba71256535cb3e292a79cb97f43357c9ba23e5d4291efa4579e7b4de30d5ed0596dc5139051e33ef50ff6507f4", 0x98}, {&(0x7f0000000480)="51e159aa3d000ec5c74eb2d645ccfc7e485039c315ded9bfeafe286d542bcc39d5b6de12425e692328ade24f8c2bcf6f4c604fa36461f5396fad85cb3bdf42521a6629ba630341ef17cc62cf4121d87f21eae124eee55f37dad32a27d5a62c45ae0213b2b7395aa912663fbf6bc468a26ce41ee7d8663d92348a3cfded2fbf", 0x7f}, {&(0x7f0000000500)="33f9e198c344d512c13b75d76ddcfd6f892b61f89e6497b849ac6a8bd1a6a2b5a1c174711df6547b687cf15700e66645429c4551235ebe9205aaab5f39bf059e2e7be6f1c6231043c5e5aebbe711abc71d43a415c55dfb8e7c2837f4f6914bc5eb3ece2920c850c62f9358753d9e5aca0b6779c6176bd57d1d5d0800b95d804ddeb19d3616adbdb71324468cbfeb514a18578c1a274bebda0ac391edb81543243ada5b5a0c0ac76bbbc894b621e7413efc18fc36b53f8007", 0xb8}, {&(0x7f00000005c0)="f84cf423a5839694d0519df0bc", 0xd}, {&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000001600)="1d6c064952887e9466891e6f260a5eb68f572ba41473f657097d1950446c3a4b2e90b0aa6aa7f71d94615827a02c40f80172e3ec3ccbc100046ec8e848e9c7dd9839bee35020c8cf0852feb268e87f355017813e610ca5593a649ae779f5404b61e2fcd545f0e7643cbeb044330b1b89770c7c43ad876b3238fd2a7cf8ec7cc152d9d1ebed", 0x85}, {&(0x7f00000016c0)="e22e5b4356e4876c5807ba57cf3488574faa911f1a60b8d7b1efa6e3c0c04a61fbb50fdd998344122a19f5c8f803583fe0cf4cac3eb93810afde062bb0754a4fea66ae6b4fcdfa2b23fd0e3687879fca0198fc5b6e911d0362ca25937c53c76b25a5f8bb0a6a2de7e5b8ad3db212d24ead6d", 0x72}, {&(0x7f0000001740)="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", 0x1000}, {&(0x7f0000002740)="20f4e2d1a04503eff9b6a5c3f0a23833da95baa0c0ed8dfa8ad28ef1ef86fd13d65a0f16beac357a89f4255544af23eb90acb5c4823ee609264a3e829f9cf96ca0dbf9e9fe279207901f9ab4fade12aa2b719e3fe9cf30cb3dbd34ca0363361148bce268a66bc3f7e8295c1b4c2338092622de7ffc75f2", 0x77}], 0xa, &(0x7f0000002980)=ANY=[@ANYBLOB="40000000000000001b0100003f0000006af67dab574e1fefdbfbd174b667d4ae74c94710f7ffd688c2a93e2fea74e2a751ed0af40ad5274654c3cfa02d15e1a4000000004a00"], 0x40, 0x20048004}, 0x2011732df248f559) 00:13:32 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x843, 0x110) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000040)="b8cf000f00d86765f23e0f0017660f07b896000f00d0dd79f5660f1860000fc76c000f3266b9800000c00f326635004000000f300f01c9", 0x37}], 0x1, 0x1, &(0x7f00000000c0)=[@vmwrite={0x8, 0x0, 0x7f, 0x0, 0xc7, 0x0, 0x8, 0x0, 0xd037}, @flags={0x3, 0x4000}], 0x2) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:13:32 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") add_key(&(0x7f0000000000)='trusted\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x1}, &(0x7f00000001c0)="e126eb1cc0abd7e447adf71bea792bf4c974df5f5bbebd8bb2d25bab418aa51cecd277e26691f8a045fd332603ad9eecfa075ebb1438bc9e403472c8443ef8bac06be169672e579d217d8e160d9f80096f3d3695048568b5e69ce14d387d4fa3732aa26efcb851e2545300c1c55c49de13a336ba0bb12c3d5ca5fc9855ae402693193891755418135a78e3f8e040d78a0ffdc5584f9e48fb8050debbf3e3d7b237dcf1365b7c5654b92b9f71e0b78c8c37934968aed9f7c54f2404e5", 0xbc, 0xffffffffffffffff) r1 = fcntl$dupfd(r0, 0x406, r0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x7ff}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="c20000007800a6c15596895bd0db4d5a4e2d40d94956b622cab423470a801afaaf85ee7e796e2cb4e560c26d411f12e25391226f64b3c7be7fe636cdfd821bb95b2a4d7a72bcf95cf527ca624155c5a4102e881513189af124fcd1e6c2d4b821754cad9fd8f4d311ecc2cf3238b5ccd7e8d289d6e926c34862f46c6d956b1022b0dd7583dd185dcf79bad131bce2eddf4978424ffb18448173f4d314be2c817461f4c5cc14d91592f24e68576dce7856be89754888f2f0364a7e737b6d2f382072d7f25e1c6993663518de50b728b253b42d90285e95df0e30ae2466f80f05958c4ed5ad9f6471cf41ba18e13cf2dd"], &(0x7f00000003c0)=0xca) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x7003, &(0x7f0000000080)) read(r2, &(0x7f0000000180)=""/4, 0x4) syz_open_dev$adsp(&(0x7f0000000400)='/dev/adsp#\x00', 0x6, 0x101000) 00:13:32 executing program 2 (fault-call:7 fault-nth:69): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 260.507552] FAULT_INJECTION: forcing a failure. [ 260.507552] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 260.520621] CPU: 1 PID: 14041 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 260.528041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.537414] Call Trace: [ 260.540045] dump_stack+0x1c9/0x2b4 [ 260.543704] ? dump_stack_print_info.cold.2+0x52/0x52 [ 260.548921] ? lock_downgrade+0x8f0/0x8f0 [ 260.553112] should_fail.cold.4+0xa/0x1a [ 260.557291] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 260.562434] ? graph_lock+0x170/0x170 [ 260.566272] ? is_bpf_text_address+0xd7/0x170 [ 260.570836] ? find_held_lock+0x36/0x1c0 [ 260.574937] ? __lock_is_held+0xb5/0x140 [ 260.579055] ? check_same_owner+0x340/0x340 [ 260.583407] ? rcu_note_context_switch+0x730/0x730 [ 260.588382] __alloc_pages_nodemask+0x36e/0xdb0 [ 260.593085] ? lock_downgrade+0x8f0/0x8f0 [ 260.597267] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 260.602315] ? graph_lock+0x170/0x170 [ 260.606177] ? __lock_is_held+0xb5/0x140 [ 260.610264] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 260.614709] ? __lock_is_held+0xb5/0x140 [ 260.618807] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 260.624403] alloc_pages_current+0x10c/0x210 [ 260.628849] __get_free_pages+0xf/0x40 [ 260.632774] mmu_topup_memory_caches+0x1f8/0x3a0 [ 260.637605] kvm_mmu_load+0x21/0x10e0 [ 260.641442] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 260.647031] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 260.651676] vcpu_enter_guest+0x3aa6/0x6090 [ 260.656100] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 260.660369] ? kvm_set_msr_common+0x26a0/0x26a0 [ 260.665097] ? vmx_vcpu_load+0xadf/0xff0 [ 260.669199] ? __lock_acquire+0x7fc/0x5020 [ 260.673463] ? vmx_vcpu_reset+0x1040/0x1040 [ 260.677811] ? graph_lock+0x170/0x170 [ 260.681650] ? __lock_acquire+0x7fc/0x5020 [ 260.685925] ? __lock_is_held+0xb5/0x140 [ 260.690024] ? lock_acquire+0x1e4/0x540 [ 260.694033] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 260.699078] ? lock_release+0xa30/0xa30 [ 260.703094] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 260.708420] ? kvm_arch_dev_ioctl+0x610/0x610 [ 260.712946] ? preempt_notifier_dec+0x20/0x20 [ 260.717480] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 260.722346] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 260.727403] kvm_vcpu_ioctl+0x7b8/0x1300 [ 260.731526] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 260.737294] ? find_held_lock+0x36/0x1c0 [ 260.741391] ? find_held_lock+0x36/0x1c0 [ 260.745490] ? lock_downgrade+0x8f0/0x8f0 [ 260.749670] ? kasan_check_read+0x11/0x20 [ 260.753836] ? rcu_is_watching+0x8c/0x150 [ 260.758007] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 260.762439] ? __fget+0x414/0x670 [ 260.765915] ? match_held_lock+0x821/0x8d0 [ 260.770181] ? expand_files.part.8+0x9c0/0x9c0 [ 260.774805] ? kasan_check_write+0x14/0x20 [ 260.779062] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 260.784107] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 260.789844] do_vfs_ioctl+0x1de/0x1720 [ 260.793758] ? __lock_is_held+0xb5/0x140 [ 260.797844] ? ioctl_preallocate+0x300/0x300 [ 260.802301] ? __fget_light+0x2f7/0x440 [ 260.806430] ? fget_raw+0x20/0x20 [ 260.810009] ? __sb_end_write+0xac/0xe0 [ 260.814031] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 260.819611] ? fput+0x130/0x1a0 [ 260.822945] ? ksys_write+0x1ae/0x260 [ 260.826776] ? security_file_ioctl+0x94/0xc0 [ 260.831209] ksys_ioctl+0xa9/0xd0 [ 260.834681] __x64_sys_ioctl+0x73/0xb0 [ 260.838597] do_syscall_64+0x1b9/0x820 [ 260.842542] ? finish_task_switch+0x1d3/0x870 [ 260.847065] ? syscall_return_slowpath+0x5e0/0x5e0 [ 260.852374] ? syscall_return_slowpath+0x31d/0x5e0 [ 260.857343] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 260.862740] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 260.867639] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 260.872855] RIP: 0033:0x455e29 [ 260.876060] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 260.895512] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:32 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x0, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:32 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xfffffffd, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:32 executing program 0: r0 = socket(0x2, 0x2, 0x0) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f00000000c0)={0x1}, 0x10) sendto$inet(r0, &(0x7f0000000280), 0x0, 0x0, &(0x7f0000821ff0)={0x2, 0x4e20}, 0x10) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'ip6tnl0\x00', 0x3}, 0x18) 00:13:32 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0xfffffffffffffffe, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:32 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2, 0x0) ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f00000000c0)={0x5, [0x7, 0x2, 0xc1, 0x1ff, 0x6]}) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000140)={0x2, 0x0, [{0x9, 0x4, 0x0, 0x0, @irqchip={0x8, 0xfff}}, {0x8, 0x2, 0x0, 0x0, @sint={0x0, 0x3ff}}]}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) init_module(&(0x7f0000000000)='vboxnet1$\x00', 0xa, &(0x7f0000000040)='/dev/kvm\x00') ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:13:32 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x6, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:32 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x0, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:32 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x20000, 0x0) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:32 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x400000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:32 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)) getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 260.903249] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 260.910538] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 260.917851] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 260.925143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 260.932454] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000045 [ 260.981144] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6tnl0, syncid = 3, id = 0 00:13:33 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5460, &(0x7f0000000000)) 00:13:33 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x7000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:33 executing program 0: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000140)={0x24, 0x4000000000002, 0x1, 0xffffffffffffffff, 0x0, 0x0, {0x1}, [@typed={0x8, 0x15, @u32}, @nested={0x8, 0x8, [@typed={0x4}]}]}, 0x24}, 0x1}, 0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) get_robust_list(r0, &(0x7f0000000200)=&(0x7f00000001c0)={&(0x7f0000000080), 0x0, &(0x7f0000000180)={&(0x7f00000000c0)}}, &(0x7f0000000240)=0x18) 00:13:33 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)) getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:33 executing program 2 (fault-call:7 fault-nth:70): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:33 executing program 4: syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7fff, 0xffffffffffffffff) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:33 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000000)=""/60) fremovexattr(r0, &(0x7f0000000040)=@known='security.selinux\x00') 00:13:33 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = fcntl$dupfd(r0, 0x406, r0) getsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000000)={0x0, 0x25, 0x9, 0x80000001, 0x400000, 0x101}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000000100)=r2, 0x4) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x7003, &(0x7f0000000080)) read(r3, &(0x7f0000000180)=""/4, 0x4) [ 261.626924] FAULT_INJECTION: forcing a failure. [ 261.626924] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 261.638916] CPU: 1 PID: 14104 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 261.646325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.655702] Call Trace: [ 261.658329] dump_stack+0x1c9/0x2b4 [ 261.662054] ? dump_stack_print_info.cold.2+0x52/0x52 [ 261.667306] ? lock_downgrade+0x8f0/0x8f0 [ 261.671495] should_fail.cold.4+0xa/0x1a 00:13:33 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3100, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:33 executing program 0: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e9, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x28, &(0x7f0000000040)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000000c0)={r0, 0x5, 0x18}, 0xc) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x2) r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x25ffbb838e78a39b) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x0, 0x310, 0x7, "9246c3eac5e65d04e8e42114705b618f274d59ad3ffa2c2d0d3cc11175e355e212882b67e54f2001270d0fe6255a3770ba9d2e08626ae0ee28e40d80864e3a8c76c2308f1b6b964842eafa2f1b04815a"}, 0xd8) [ 261.675604] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 261.680751] ? graph_lock+0x170/0x170 [ 261.684654] ? is_bpf_text_address+0xd7/0x170 [ 261.689195] ? find_held_lock+0x36/0x1c0 [ 261.693299] ? __lock_is_held+0xb5/0x140 [ 261.697497] ? check_same_owner+0x340/0x340 [ 261.701862] ? rcu_note_context_switch+0x730/0x730 [ 261.706843] __alloc_pages_nodemask+0x36e/0xdb0 [ 261.711565] ? lock_downgrade+0x8f0/0x8f0 [ 261.715784] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 261.720830] ? graph_lock+0x170/0x170 00:13:33 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000040)={0x0, 0xffffffffffffff9c}) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") read(r1, &(0x7f00000000c0)=""/162, 0xa2) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x800, 0x0) close(r2) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:33 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)) getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 261.724682] ? __lock_is_held+0xb5/0x140 [ 261.728778] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 261.733258] ? __lock_is_held+0xb5/0x140 [ 261.737394] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 261.743089] alloc_pages_current+0x10c/0x210 [ 261.747552] __get_free_pages+0xf/0x40 [ 261.751478] mmu_topup_memory_caches+0x1f8/0x3a0 [ 261.756301] kvm_mmu_load+0x21/0x10e0 [ 261.760178] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 261.765753] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 261.770374] vcpu_enter_guest+0x3aa6/0x6090 [ 261.774731] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 261.779006] ? __lock_is_held+0xb5/0x140 [ 261.783106] ? kvm_set_msr_common+0x26a0/0x26a0 [ 261.787812] ? vmx_vcpu_load+0xadf/0xff0 [ 261.791922] ? __lock_is_held+0xb5/0x140 [ 261.796019] ? __account_cfs_rq_runtime+0x770/0x770 [ 261.801074] ? vmx_vcpu_reset+0x1040/0x1040 [ 261.805449] ? graph_lock+0x170/0x170 [ 261.809293] ? __lock_acquire+0x7fc/0x5020 [ 261.813569] ? __lock_is_held+0xb5/0x140 [ 261.817646] ? lock_acquire+0x1e4/0x540 [ 261.821631] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 261.826672] ? lock_release+0xa30/0xa30 [ 261.830658] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 261.835947] ? kvm_arch_dev_ioctl+0x610/0x610 [ 261.840447] ? preempt_notifier_dec+0x20/0x20 [ 261.845658] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 261.850508] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 261.855553] kvm_vcpu_ioctl+0x7b8/0x1300 [ 261.859625] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 261.865341] ? _raw_spin_unlock_irq+0x56/0x70 [ 261.869847] ? find_held_lock+0x36/0x1c0 [ 261.873906] ? lock_downgrade+0x8f0/0x8f0 [ 261.878067] ? kasan_check_read+0x11/0x20 [ 261.882221] ? rcu_is_watching+0x8c/0x150 [ 261.886388] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 261.890798] ? __fget+0x414/0x670 [ 261.894260] ? match_held_lock+0x821/0x8d0 [ 261.898495] ? expand_files.part.8+0x9c0/0x9c0 [ 261.903078] ? kasan_check_write+0x14/0x20 [ 261.907327] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 261.912269] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 261.917999] do_vfs_ioctl+0x1de/0x1720 [ 261.921905] ? ioctl_preallocate+0x300/0x300 [ 261.926304] ? __fget_light+0x2f7/0x440 [ 261.930270] ? __schedule+0x1ed0/0x1ed0 [ 261.934247] ? fget_raw+0x20/0x20 [ 261.937717] ? __sb_end_write+0xac/0xe0 [ 261.941703] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 261.947240] ? exit_to_usermode_loop+0x8c/0x370 [ 261.951914] ? security_file_ioctl+0x94/0xc0 [ 261.956324] ksys_ioctl+0xa9/0xd0 [ 261.959775] __x64_sys_ioctl+0x73/0xb0 [ 261.963676] do_syscall_64+0x1b9/0x820 [ 261.967574] ? finish_task_switch+0x1d3/0x870 [ 261.972070] ? syscall_return_slowpath+0x5e0/0x5e0 [ 261.977025] ? syscall_return_slowpath+0x31d/0x5e0 [ 261.982148] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 261.988045] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 261.992892] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 261.998087] RIP: 0033:0x455e29 [ 262.001261] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 262.020516] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 262.028219] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 262.035489] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 262.042749] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 262.050015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 262.057291] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000046 00:13:33 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:33 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x300, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:33 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:33 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xa00, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x31, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:34 executing program 2 (fault-call:7 fault-nth:71): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:34 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x2, &(0x7f0000000000)) 00:13:34 executing program 0: mkdir(&(0x7f0000000440)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)="636f6e666967660200", 0x0, &(0x7f0000000100)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_fuseblk_mount(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x1, 0x80) getpeername$netlink(r0, &(0x7f0000000140), &(0x7f0000000200)=0xc) 00:13:34 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:34 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0x80000000, 0x7289}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6(0xa, 0x2, 0x2000000000) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x1b, &(0x7f0000000040)={@dev={0xfe, 0x80}}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f0000e95fe0)={@remote={0xfe, 0x80, [], 0xffffffffffffffff}}, 0x20) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/anycast6\x00') readv(r5, &(0x7f0000000100)=[{&(0x7f0000000080)=""/94, 0x43}], 0x1) readv(r5, &(0x7f0000000680)=[{&(0x7f0000000640)=""/55, 0x37}], 0x1) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r6, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x5, 0x100) ioctl$EVIOCGABS20(r7, 0x80184560, &(0x7f0000000140)=""/236) 00:13:34 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0xe0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @empty, @broadcast}, &(0x7f0000000100)=0xc) sendto$packet(r1, &(0x7f00000002c0)="c87d7347870acc1cf024b68c11e5c7110d3b969fec5552742d336af7461489bc65b87a88772e3bd910a187a02f907f99f8aa73d598e8c0f45e48583a950e83a64f59b0ec9b11a7e0bf5be30b18e8a681697cb3949e99073abb68074de4f75180aa0dc244ac37b6ca1507f931317029f29ef6a7aa23b682f1986c0dcbca70e244a488e373a052c80550cb3a8b8602de919880e64c19db0c40e8cd1fa83980670540d79a78e0b7df1e1e36f543d3df93326596bfbe496c50a3d88e37b969e7ced856737711321b", 0xc6, 0x1, &(0x7f0000000140)={0x11, 0xff, r2, 0x1, 0x8, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000000)=0x10001, 0x4) 00:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x10000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:34 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f47767") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) [ 262.640408] FAULT_INJECTION: forcing a failure. [ 262.640408] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 262.652497] CPU: 1 PID: 14156 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 262.660011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 262.669567] Call Trace: [ 262.672189] dump_stack+0x1c9/0x2b4 [ 262.675873] ? dump_stack_print_info.cold.2+0x52/0x52 [ 262.681099] ? zap_class+0x740/0x740 [ 262.684830] should_fail.cold.4+0xa/0x1a [ 262.688905] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 262.694027] ? graph_lock+0x170/0x170 [ 262.697825] ? is_bpf_text_address+0xd7/0x170 [ 262.702321] ? find_held_lock+0x36/0x1c0 [ 262.706417] ? __lock_is_held+0xb5/0x140 [ 262.710489] ? check_same_owner+0x340/0x340 [ 262.714814] ? rcu_note_context_switch+0x730/0x730 [ 262.719775] __alloc_pages_nodemask+0x36e/0xdb0 [ 262.724471] ? lock_downgrade+0x8f0/0x8f0 [ 262.728629] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 262.733639] ? graph_lock+0x170/0x170 [ 262.737433] ? __lock_is_held+0xb5/0x140 [ 262.741494] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 262.745922] ? __lock_is_held+0xb5/0x140 [ 262.750097] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 262.755637] alloc_pages_current+0x10c/0x210 [ 262.760058] __get_free_pages+0xf/0x40 [ 262.764480] mmu_topup_memory_caches+0x1f8/0x3a0 [ 262.769240] kvm_mmu_load+0x21/0x10e0 [ 262.773040] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 262.778574] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 262.783170] vcpu_enter_guest+0x3aa6/0x6090 [ 262.788539] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 262.792777] ? kvm_set_msr_common+0x26a0/0x26a0 [ 262.797452] ? zap_class+0x740/0x740 [ 262.801179] ? vmx_vcpu_load+0xadf/0xff0 [ 262.805240] ? __lock_acquire+0x7fc/0x5020 [ 262.809474] ? vmx_vcpu_reset+0x1040/0x1040 [ 262.813795] ? graph_lock+0x170/0x170 [ 262.817626] ? __lock_is_held+0xb5/0x140 [ 262.821702] ? lock_acquire+0x1e4/0x540 [ 262.825680] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 262.830720] ? lock_release+0xa30/0xa30 [ 262.834699] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 262.839974] ? kvm_arch_dev_ioctl+0x610/0x610 [ 262.844477] ? preempt_notifier_dec+0x20/0x20 [ 262.849012] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 262.853856] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 262.858889] kvm_vcpu_ioctl+0x7b8/0x1300 [ 262.862963] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 262.868697] ? find_held_lock+0x36/0x1c0 [ 262.872776] ? lock_downgrade+0x8f0/0x8f0 [ 262.876929] ? rcu_is_watching+0x8c/0x150 [ 262.881082] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 262.885490] ? __fget+0x414/0x670 [ 262.888938] ? match_held_lock+0x821/0x8d0 [ 262.893167] ? expand_files.part.8+0x9c0/0x9c0 [ 262.897800] ? kasan_check_write+0x14/0x20 [ 262.902045] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 262.906986] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 262.912697] do_vfs_ioctl+0x1de/0x1720 [ 262.916579] ? ioctl_preallocate+0x300/0x300 [ 262.920992] ? __fget_light+0x2f7/0x440 [ 262.924959] ? fget_raw+0x20/0x20 [ 262.928411] ? __sb_end_write+0xac/0xe0 [ 262.932393] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 262.937934] ? fput+0x130/0x1a0 [ 262.941208] ? ksys_write+0x1ae/0x260 [ 262.945013] ? security_file_ioctl+0x94/0xc0 [ 262.949434] ksys_ioctl+0xa9/0xd0 [ 262.952893] __x64_sys_ioctl+0x73/0xb0 [ 262.956781] do_syscall_64+0x1b9/0x820 [ 262.960739] ? finish_task_switch+0x1d3/0x870 [ 262.965233] ? syscall_return_slowpath+0x5e0/0x5e0 [ 262.971761] ? syscall_return_slowpath+0x31d/0x5e0 [ 262.976703] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 262.982062] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 262.986916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 262.992114] RIP: 0033:0x455e29 [ 262.995289] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 263.014560] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.022266] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 263.029628] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 263.036890] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 263.044150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 263.051427] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000047 00:13:34 executing program 0: mkdir(&(0x7f0000000440)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)="636f6e666967660200", 0x0, &(0x7f0000000100)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_fuseblk_mount(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x1, 0x80) getpeername$netlink(r0, &(0x7f0000000140), &(0x7f0000000200)=0xc) 00:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf5ffffff00000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:34 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000000c0)="4df1734067a4784a9f1c6175b266e7ebddc0b80f03f1dc4bad50c581a1b0afbb2c7e276f3b7b37d1c3429d66bc9958b954674842924d2ec73419601112000000096ebbe479aebefd0507df1ac40a3c809419b7f244") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:34 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f47767") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:34 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="0247e22f05d02c99240970") mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = dup2(r1, r0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f00000001c0)=[{0x8, 0x4d4}, {0x2, 0xffffffffffff75a3}], 0x2) sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f0000000000000000000ffffffffffff000000003200000000000000000000000000ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000400000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x138}, 0x1}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x3, 0x0, 0x4}, 0x14) r3 = open(&(0x7f0000000080)='./file0\x00', 0x800, 0x10) ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000880)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x800, &(0x7f0000000980)) chroot(&(0x7f0000000240)='./file0\x00') chdir(&(0x7f0000000780)='./file0\x00') unshare(0x40000000) recvfrom$inet6(r2, &(0x7f00000008c0)=""/4096, 0x1000, 0x1, &(0x7f0000000200)={0xa, 0x4e22, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x401}, 0x1c) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00', 0x101}) 00:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x500000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:34 executing program 2 (fault-call:7 fault-nth:72): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:34 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f47767") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:34 executing program 6: r0 = socket$inet6(0xa, 0x1000000000001, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) setsockopt$inet_dccp_buf(r1, 0x21, 0xe, &(0x7f00000002c0)="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", 0xfd) [ 263.368455] IPVS: ftp: loaded support on port[0] = 21 [ 263.405770] FAULT_INJECTION: forcing a failure. [ 263.405770] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 263.417976] CPU: 0 PID: 14209 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 263.425587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.434951] Call Trace: [ 263.437590] dump_stack+0x1c9/0x2b4 [ 263.441257] ? dump_stack_print_info.cold.2+0x52/0x52 [ 263.446508] ? lock_downgrade+0x8f0/0x8f0 [ 263.450807] should_fail.cold.4+0xa/0x1a [ 263.454920] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 263.460077] ? graph_lock+0x170/0x170 [ 263.463915] ? is_bpf_text_address+0xd7/0x170 [ 263.468446] ? find_held_lock+0x36/0x1c0 [ 263.468451] device lo entered promiscuous mode [ 263.477180] ? __lock_is_held+0xb5/0x140 [ 263.481304] ? check_same_owner+0x340/0x340 [ 263.485665] ? rcu_note_context_switch+0x730/0x730 [ 263.485721] IPVS: ftp: loaded support on port[0] = 21 [ 263.490643] __alloc_pages_nodemask+0x36e/0xdb0 [ 263.490670] ? lock_downgrade+0x8f0/0x8f0 [ 263.490693] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 263.490706] ? graph_lock+0x170/0x170 [ 263.490718] ? __lock_is_held+0xb5/0x140 [ 263.490731] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 263.490754] ? __lock_is_held+0xb5/0x140 [ 263.510088] device lo entered promiscuous mode [ 263.513639] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 263.513669] alloc_pages_current+0x10c/0x210 [ 263.513690] __get_free_pages+0xf/0x40 [ 263.513706] mmu_topup_memory_caches+0x1f8/0x3a0 [ 263.513729] kvm_mmu_load+0x21/0x10e0 [ 263.513748] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 263.513763] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 263.513782] vcpu_enter_guest+0x3aa6/0x6090 [ 263.513797] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 263.513821] ? kvm_set_msr_common+0x26a0/0x26a0 [ 263.513840] ? vmx_vcpu_load+0xadf/0xff0 [ 263.513857] ? __lock_acquire+0x7fc/0x5020 [ 263.513873] ? vmx_vcpu_reset+0x1040/0x1040 [ 263.590164] ? graph_lock+0x170/0x170 [ 263.594025] ? __lock_acquire+0x7fc/0x5020 [ 263.598300] ? __lock_is_held+0xb5/0x140 [ 263.602439] ? lock_acquire+0x1e4/0x540 [ 263.606499] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 263.611550] ? lock_release+0xa30/0xa30 [ 263.615547] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 263.620855] ? kvm_arch_dev_ioctl+0x610/0x610 [ 263.625378] ? preempt_notifier_dec+0x20/0x20 [ 263.629941] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 263.634816] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 263.639895] kvm_vcpu_ioctl+0x7b8/0x1300 [ 263.643993] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 263.649732] ? find_held_lock+0x36/0x1c0 [ 263.653831] ? find_held_lock+0x36/0x1c0 [ 263.657931] ? lock_downgrade+0x8f0/0x8f0 [ 263.662112] ? kasan_check_read+0x11/0x20 [ 263.666279] ? rcu_is_watching+0x8c/0x150 [ 263.670506] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 263.674956] ? __fget+0x414/0x670 [ 263.678441] ? match_held_lock+0x821/0x8d0 [ 263.682793] ? expand_files.part.8+0x9c0/0x9c0 [ 263.687406] ? kasan_check_write+0x14/0x20 [ 263.691677] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 263.696653] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 263.702440] do_vfs_ioctl+0x1de/0x1720 [ 263.706381] ? __lock_is_held+0xb5/0x140 [ 263.710466] ? ioctl_preallocate+0x300/0x300 [ 263.715445] ? __fget_light+0x2f7/0x440 [ 263.719449] ? fget_raw+0x20/0x20 [ 263.723030] ? __sb_end_write+0xac/0xe0 [ 263.727038] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 263.732633] ? fput+0x130/0x1a0 [ 263.735941] ? ksys_write+0x1ae/0x260 [ 263.739771] ? security_file_ioctl+0x94/0xc0 [ 263.744219] ksys_ioctl+0xa9/0xd0 [ 263.747703] __x64_sys_ioctl+0x73/0xb0 [ 263.751624] do_syscall_64+0x1b9/0x820 [ 263.755559] ? finish_task_switch+0x1d3/0x870 [ 263.760086] ? syscall_return_slowpath+0x5e0/0x5e0 [ 263.765070] ? syscall_return_slowpath+0x31d/0x5e0 [ 263.770072] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 263.775483] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 263.780368] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 263.785592] RIP: 0033:0x455e29 00:13:35 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5428, &(0x7f0000000000)) 00:13:35 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") 00:13:35 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f4776710") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:35 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x600000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:35 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80010}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getanyicast={0x14, 0x3e, 0x120, 0x70bd2a, 0x25dfdbfb, {0xa}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000050}, 0x5) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) sync_file_range(0xffffffffffffffff, 0x164, 0xffffffffffffffc1, 0x4) 00:13:35 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x101040, 0x0) ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x7ff, 0xffff, 0x0, 0x5}, {0x1, 0x3, 0xfffffffffffffffa, 0x1}, {0xe2, 0x695, 0x4b06, 0x7}]}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) clock_gettime(0x0, &(0x7f0000000480)={0x0, 0x0}) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r0, 0x28, 0x6, &(0x7f00000004c0)={r2, r3/1000+30000}, 0x10) close(r1) socket$pppoe(0x18, 0x1, 0x0) io_setup(0x8, &(0x7f0000000100)=0x0) syz_mount_image$vfat(&(0x7f00000000c0)='vfat\x00', &(0x7f0000000180)='./file0\x00', 0x7, 0x3, &(0x7f0000000340)=[{&(0x7f00000001c0)="31d7386d7f90f3bb79f26d96cb2034082a", 0x11, 0x20}, {&(0x7f0000000200)="281151543822d5d4d1074f3ef4b69f470d7f354704dd28244b8d1f5b9417b6555d29f702e7b2caadf16e3c9f7dd6e5a443d19f15a991eaa38595cbdee70c3dfabbd8234ad3a5be4cd3f242acb7e00caf3b5e9d852b19aaceffbee4afe7916df83b997157c0eaf5652ab1314d4ab19a53eae9d4feef3c615aa784697b1b240e9ebfc419dff29fe8a9ae303f603ce96078f9d4aa143edc0bbfecd14e60248cc495f7404f48c0fa96178bcca38bda4805f54cf7a3a6b7595e2e2062fb562d521e5552b12ee724d9a6879e990b96d3c46b9fd27f585faf82fa3c9bd8dc0a0e748d7cae29a562621e047f8ece42ad2e08cb4c45fe423173cdf30458", 0xf9, 0xf42e}, {&(0x7f0000000300)="f4e210b42d825cd12bc1e1ee2c0ecb4bddeb2e860c91d5c214c435a908ac37c9203c2b9fd70a5dc514", 0x29, 0x1}], 0x20c0000, &(0x7f0000000640)=ANY=[@ANYBLOB="757466383d312c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c756e695f786c6174653d312c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030312c696f63686172f40d743d6b6f69382d312c756e695f786c6174653d302c000d94bdfb3862655e8528e108fea05ef533c6a45a4b47672f82d3dc92a970edf051e6a264f6065177d8cab88030cc77935b21b9b1c0a5f9bea37e91ab92ee80d424a4646855a435214f55ca5c088b7c88e04900000000000000000000000000"]) io_submit(r4, 0x1, &(0x7f0000000600)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r1}]) [ 263.788792] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 263.808198] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.815946] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 263.823226] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 263.830498] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 263.837886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 263.845174] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000048 00:13:35 executing program 2 (fault-call:7 fault-nth:73): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:35 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) ioctl$KVM_SMI(r0, 0xaeb7) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) sendmsg(r2, &(0x7f0000001640)={&(0x7f0000000000)=@in6={0xa, 0x4e23, 0x3, @empty, 0x2e}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000080)="928bb3d5b41cad8aaa9989b326792134717c42b951dcf655c0ba5aeedecd567e220efdd7a4428fcda888a49b8c5d9a9665d889e434c5d1b277f6729f4ec44bb6823645505e4bfa778d60816d4b4438cf54ec8f562c1dc5878ee4d62a91b179e41e757be57a8d332ec4d02500878f6916294807b99872956f67", 0x79}, {&(0x7f0000000100)="1f85d2b53e72f95d0b965420fa3a5fc3de", 0x11}, {&(0x7f0000000140)="6dce6989a1adfaa5298599de10187325277214319febbe177773c797ca02b18ef0cb552e8954c3ec0e83cd65f586808f3854b0e5e74b8408fda43552ab947213404c779200fd4ee41ab934e1c9677ca039c34deea67d731813db6d609f271435d8343f0669d3a0a9b437a9781b865d46a801e57d3ea51bd6a9c4bfa37f028312df3aca35ac87ae5d0817", 0x8a}, {&(0x7f0000000200)="e6919cba7902882d6819ed09321221295c85596b9c65e78f7ca1d74c99113aac55ff752ff1827d2bfac0b26ad051e0", 0x2f}], 0x4, &(0x7f0000000300)=[{0x1010, 0x29, 0xc9, "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"}, {0xf8, 0x0, 0x100, "42c5992a92903d6d11bb902b4c7e5607967e3b81c63e1f2fa46f7a8ff812eb7752dc13e29baa9655ac62b8197ed7acdef80adfa00b9939b4adf172a092b3883da301d19f8ba7912468624907227d9201065aeaf50c3f2dd90ba1ca854418d4effb99ad9d7b90e5501ee0f868a0792da0aa810e728c2db0ef75394354bd80d6129d33b311216752132d844ca0364c32b34e9394bd1c6a18dc22648ebb6a68c12e3559b8cdb67dbe704a8fe858868c65a845548568da582a28438e672b53526883d29425e49adcc65afe768458fcfd4dd03202d854d1c1d493e39455458dc091139c6907cd24bd23"}, {0xe0, 0x101, 0x8000, "be301e1bd5fe4f60ed166fd51dd6a1b770ec97ac55bab70bcb38b81868e393122a4a9c13f8946eb4830acaa9d183a0cf0ddbab2c8b9c7e7c6fa825c7d7661ce48a5ecc9c8f0ca4d3752ab457328d6002a1d8c3ac9efd5a87e06728a61effcbfe6d569ae67099fd3fac18ce2019c3481119d3c1f5da75dc218d6574fc1383b4188087d99b3cf6628c359a111873f7b1a72070ba51a461375b79a0777adbba5b9525434bb947e6ffdee724f3cf6a34c1a1f14c5f3ae0faa3fbcc6d0661698b4f1c45cc00e5ee9bbd28e6d79c708b"}, {0xc0, 0x103, 0x2, "b16bfb966c784d5f1e9d1a454d47b95ef8f7efc804b78d30277b1d7bc7f3f90487e8b25ff88479cd8ca183646cd0fc822dc26d8835344f7679785d39b98aedc443e48b80bc762ecde64a0e791911e5538672aff2fc1a0b8900cf25396a97ee6621402fc4833e8c33598456bd43aa90ae7db10335a964cfe96ec9974eb1df24c8f30ebfe0e7997dde059d73086aab0bac3d38653689f08e61c56528ffe6d75482558d6af8962528b0428492"}, {0x98, 0xff, 0x9, "775f746560c8fa1b316ff0e8581aa5b472bdf66b0290482b09f4055252a9fb0c5300b77ebb2c34b0ebdddeaf4949e60aa285d1718fab97fe8b8c13ec9c6d801186da506425fdb9c05de5350d7bb5908650ca11363841dfa8bac1048ee4f4c0b817438aea92d2ae3cada05ae6e345982615366bdbc3bb3839e5dfd01c6816a41dc8b9b3ae2745"}], 0x1340, 0x10}, 0x0) [ 263.993621] FAULT_INJECTION: forcing a failure. [ 263.993621] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 264.005769] CPU: 1 PID: 14243 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 264.013264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.022658] Call Trace: [ 264.025359] dump_stack+0x1c9/0x2b4 [ 264.029038] ? dump_stack_print_info.cold.2+0x52/0x52 [ 264.034288] ? lock_downgrade+0x8f0/0x8f0 [ 264.038519] should_fail.cold.4+0xa/0x1a [ 264.042661] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 264.047825] ? graph_lock+0x170/0x170 [ 264.051680] ? is_bpf_text_address+0xd7/0x170 [ 264.056229] ? find_held_lock+0x36/0x1c0 [ 264.060504] ? __lock_is_held+0xb5/0x140 [ 264.064630] ? check_same_owner+0x340/0x340 [ 264.069004] ? rcu_note_context_switch+0x730/0x730 [ 264.073998] __alloc_pages_nodemask+0x36e/0xdb0 [ 264.078747] ? lock_downgrade+0x8f0/0x8f0 [ 264.082955] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 264.088031] ? graph_lock+0x170/0x170 00:13:35 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4000000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:35 executing program 0: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0}, &(0x7f0000000180)=0xfffffffffffffebb) prctl$seccomp(0x16, 0x1, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x5, 0x3b, 0x20, 0x4}]}) ioprio_set$uid(0x3, r1, 0x0) 00:13:35 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f4776710") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) [ 264.091869] ? __lock_is_held+0xb5/0x140 [ 264.095979] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 264.100451] ? __lock_is_held+0xb5/0x140 [ 264.105208] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 264.110821] alloc_pages_current+0x10c/0x210 [ 264.115279] __get_free_pages+0xf/0x40 [ 264.119209] mmu_topup_memory_caches+0x1f8/0x3a0 [ 264.124022] kvm_mmu_load+0x21/0x10e0 [ 264.128822] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 264.134394] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 264.139070] vcpu_enter_guest+0x3aa6/0x6090 [ 264.143429] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 264.147741] ? kvm_set_msr_common+0x26a0/0x26a0 [ 264.152458] ? vmx_vcpu_load+0xadf/0xff0 [ 264.156557] ? __lock_acquire+0x7fc/0x5020 [ 264.160832] ? vmx_vcpu_reset+0x1040/0x1040 [ 264.165210] ? graph_lock+0x170/0x170 [ 264.169054] ? __lock_acquire+0x7fc/0x5020 [ 264.173341] ? __lock_is_held+0xb5/0x140 [ 264.177451] ? lock_acquire+0x1e4/0x540 [ 264.178228] audit: type=1326 audit(1531354415.567:7): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=14249 comm="syz-executor0" exe="/root/syz-executor0" sig=9 arch=c000003e syscall=202 compat=0 ip=0x455e29 code=0x0 [ 264.181451] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 264.181479] ? lock_release+0xa30/0xa30 [ 264.181494] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 264.181513] ? kvm_arch_dev_ioctl+0x610/0x610 [ 264.181527] ? preempt_notifier_dec+0x20/0x20 [ 264.181549] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 264.229797] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 264.234897] kvm_vcpu_ioctl+0x7b8/0x1300 [ 264.239013] ? kvm_uevent_notify_change.part.31+0x440/0x440 00:13:35 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) process_vm_writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/51, 0x33}], 0x1, &(0x7f0000000480)=[{&(0x7f0000000140)=""/49, 0x31}, {&(0x7f0000000280)=""/218, 0xda}, {&(0x7f0000000180)=""/132, 0x84}, {&(0x7f0000000380)=""/236, 0xec}], 0x4, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 264.244777] ? find_held_lock+0x36/0x1c0 [ 264.248871] ? find_held_lock+0x36/0x1c0 [ 264.252981] ? lock_downgrade+0x8f0/0x8f0 [ 264.257163] ? kasan_check_read+0x11/0x20 [ 264.261373] ? rcu_is_watching+0x8c/0x150 [ 264.265544] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 264.269993] ? __fget+0x414/0x670 [ 264.273484] ? match_held_lock+0x821/0x8d0 [ 264.277778] ? expand_files.part.8+0x9c0/0x9c0 [ 264.282433] ? kasan_check_write+0x14/0x20 [ 264.286703] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 264.291698] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 264.297443] do_vfs_ioctl+0x1de/0x1720 [ 264.301380] ? __lock_is_held+0xb5/0x140 [ 264.305483] ? ioctl_preallocate+0x300/0x300 [ 264.309927] ? __fget_light+0x2f7/0x440 [ 264.313939] ? fget_raw+0x20/0x20 [ 264.317473] ? __sb_end_write+0xac/0xe0 [ 264.321510] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 264.327094] ? fput+0x130/0x1a0 [ 264.330427] ? ksys_write+0x1ae/0x260 [ 264.334266] ? security_file_ioctl+0x94/0xc0 [ 264.338722] ksys_ioctl+0xa9/0xd0 [ 264.342213] __x64_sys_ioctl+0x73/0xb0 [ 264.346149] do_syscall_64+0x1b9/0x820 [ 264.350072] ? finish_task_switch+0x1d3/0x870 [ 264.354610] ? syscall_return_slowpath+0x5e0/0x5e0 [ 264.360114] ? syscall_return_slowpath+0x31d/0x5e0 [ 264.365094] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 264.370509] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 264.375400] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 264.380631] RIP: 0033:0x455e29 [ 264.383845] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 264.403414] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 264.411785] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 264.419089] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 264.426399] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 264.433694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 264.441004] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000049 00:13:36 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) 00:13:36 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f4776710") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:36 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x1000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:36 executing program 2 (fault-call:7 fault-nth:74): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 264.697267] FAULT_INJECTION: forcing a failure. [ 264.697267] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 264.709809] CPU: 0 PID: 14281 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 264.717203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 264.726571] Call Trace: [ 264.729194] dump_stack+0x1c9/0x2b4 [ 264.732842] ? dump_stack_print_info.cold.2+0x52/0x52 [ 264.738067] ? lock_downgrade+0x8f0/0x8f0 [ 264.742247] should_fail.cold.4+0xa/0x1a [ 264.746330] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 264.751435] ? graph_lock+0x170/0x170 [ 264.755234] ? is_bpf_text_address+0xd7/0x170 [ 264.759726] ? find_held_lock+0x36/0x1c0 [ 264.763788] ? __lock_is_held+0xb5/0x140 [ 264.767878] ? check_same_owner+0x340/0x340 [ 264.772219] ? rcu_note_context_switch+0x730/0x730 [ 264.777176] __alloc_pages_nodemask+0x36e/0xdb0 [ 264.781856] ? lock_downgrade+0x8f0/0x8f0 [ 264.786024] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 264.791129] ? graph_lock+0x170/0x170 [ 264.794946] ? __lock_is_held+0xb5/0x140 [ 264.799010] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 264.803456] ? __lock_is_held+0xb5/0x140 [ 264.807547] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 264.813104] alloc_pages_current+0x10c/0x210 [ 264.817540] __get_free_pages+0xf/0x40 [ 264.821446] mmu_topup_memory_caches+0x1f8/0x3a0 [ 264.826226] kvm_mmu_load+0x21/0x10e0 [ 264.830059] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 264.835626] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 264.840237] vcpu_enter_guest+0x3aa6/0x6090 [ 264.844580] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 264.848836] ? kvm_set_msr_common+0x26a0/0x26a0 [ 264.853516] ? vmx_vcpu_load+0xadf/0xff0 [ 264.857591] ? __lock_acquire+0x7fc/0x5020 [ 264.861830] ? vmx_vcpu_reset+0x1040/0x1040 [ 264.866166] ? graph_lock+0x170/0x170 [ 264.869968] ? __lock_acquire+0x7fc/0x5020 [ 264.874214] ? __lock_is_held+0xb5/0x140 [ 264.878294] ? lock_acquire+0x1e4/0x540 [ 264.882290] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 264.887320] ? lock_release+0xa30/0xa30 [ 264.891295] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 264.896578] ? kvm_arch_dev_ioctl+0x610/0x610 [ 264.901170] ? preempt_notifier_dec+0x20/0x20 [ 264.905703] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 264.910595] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 264.915631] kvm_vcpu_ioctl+0x7b8/0x1300 [ 264.919706] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 264.925444] ? find_held_lock+0x36/0x1c0 [ 264.929532] ? find_held_lock+0x36/0x1c0 [ 264.933605] ? lock_downgrade+0x8f0/0x8f0 [ 264.937755] ? kasan_check_read+0x11/0x20 [ 264.941907] ? rcu_is_watching+0x8c/0x150 [ 264.946049] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 264.950493] ? __fget+0x414/0x670 [ 264.953948] ? match_held_lock+0x821/0x8d0 [ 264.958210] ? expand_files.part.8+0x9c0/0x9c0 [ 264.962803] ? kasan_check_write+0x14/0x20 [ 264.967084] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 264.972037] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 264.977756] do_vfs_ioctl+0x1de/0x1720 [ 264.981661] ? __lock_is_held+0xb5/0x140 [ 264.985733] ? ioctl_preallocate+0x300/0x300 [ 264.990169] ? __fget_light+0x2f7/0x440 [ 264.994139] ? fget_raw+0x20/0x20 [ 264.997608] ? __sb_end_write+0xac/0xe0 [ 265.001605] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 265.007160] ? fput+0x130/0x1a0 [ 265.010455] ? ksys_write+0x1ae/0x260 [ 265.014274] ? security_file_ioctl+0x94/0xc0 [ 265.018876] ksys_ioctl+0xa9/0xd0 [ 265.022341] __x64_sys_ioctl+0x73/0xb0 [ 265.026233] do_syscall_64+0x1b9/0x820 [ 265.030172] ? syscall_slow_exit_work+0x500/0x500 [ 265.035021] ? syscall_return_slowpath+0x5e0/0x5e0 [ 265.039963] ? syscall_return_slowpath+0x31d/0x5e0 [ 265.044904] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 265.050277] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 265.055138] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 265.060322] RIP: 0033:0x455e29 [ 265.063507] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 265.082751] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 265.090563] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 265.097838] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 265.105102] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 265.112491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 265.119774] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004a [ 265.134947] audit: type=1326 audit(1531354416.694:8): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=14249 comm="syz-executor0" exe="/root/syz-executor0" sig=9 arch=c000003e syscall=202 compat=0 ip=0x455e29 code=0x0 00:13:36 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x540e, &(0x7f0000000000)) 00:13:36 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000040)={0x0, 0x3f, 0x0, 0x2}, &(0x7f0000000080)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0x7fffffff, 0x8203, 0x4, 0x40, r1}, 0x10) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000000)={0x3, 0x2d, 0x7, 0x9, 0x5}) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) 00:13:36 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) r3 = shmget(0x2, 0x3000, 0x940, &(0x7f0000ffc000/0x3000)=nil) shmctl$SHM_INFO(r3, 0xe, &(0x7f0000000000)=""/128) r4 = dup(r1) r5 = gettid() ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r4, 0xc1105511, &(0x7f0000000280)={{0xa, 0x5, 0x1, 0x0, 'syz0\x00', 0xbbf}, 0x4, 0x148, 0x1f, r5, 0x7, 0x6, 'syz1\x00', &(0x7f00000000c0)=['/dev/kvm\x00', '/dev/kvm\x00', '/dev/kvm\x00', '/dev/kvm\x00', '/dev/null\x00', '\x00', '\x00'], 0x30, [], [0x81, 0x6, 0x5, 0x5a8c0231]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x2, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, &(0x7f0000000140)={0x2, 0x80000001, 0x4, 0x0, 0xe}) 00:13:36 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:36 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:36 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffffffffffe, @local={0xfe, 0x80, [], 0xaa}, 0xb}, 0x1f8) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x7, 0x101000) ioctl$SCSI_IOCTL_STOP_UNIT(r1, 0x6) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) 00:13:36 executing program 2 (fault-call:7 fault-nth:75): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:36 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x0, r0) write$P9_RCLUNK(r2, &(0x7f0000000140)={0x7, 0x79, 0x1}, 0x7) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047"}], 0x0, 0x0, &(0x7f0000000080), 0x0) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="010a0000001e00fb034d564b0000000001"]) r5 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r5, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$KVM_ENABLE_CAP_CPU(r4, 0x4008ae89, &(0x7f00000001c0)={0x2, 0x0, [0x40000071, 0x91048501]}) r6 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r6, 0x111, 0x2, 0x1, 0x4) ioctl$sock_inet_tcp_SIOCATMARK(r6, 0x7003, &(0x7f0000000080)) read(r6, &(0x7f0000000180)=""/4, 0x4) 00:13:36 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:36 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3f00000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:36 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) io_setup(0x5, &(0x7f0000000140)=0x0) link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00') r2 = creat(&(0x7f0000000180)='./file0\x00', 0x80) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f00000001c0)={0x0, 0xe, "ef6fcb669dca7f450170c15f336f"}, &(0x7f0000000200)=0x16) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r2, 0x84, 0x78, &(0x7f0000000240)=r3, 0x4) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x20, &(0x7f0000000040)=[@in={0x2, 0x0, @loopback=0x7f000001}, @in={0x2, 0x0, @rand_addr}]}, &(0x7f0000000100)=0x10) io_submit(r1, 0x12f, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000001000)}]) 00:13:37 executing program 4: syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") [ 265.458732] FAULT_INJECTION: forcing a failure. [ 265.458732] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 265.470936] CPU: 1 PID: 14312 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 265.478363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 265.488008] Call Trace: [ 265.490649] dump_stack+0x1c9/0x2b4 [ 265.494358] ? dump_stack_print_info.cold.2+0x52/0x52 [ 265.499590] ? lock_downgrade+0x8f0/0x8f0 [ 265.503803] should_fail.cold.4+0xa/0x1a [ 265.507931] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 265.513116] ? graph_lock+0x170/0x170 [ 265.517029] ? is_bpf_text_address+0xd7/0x170 [ 265.521570] ? find_held_lock+0x36/0x1c0 [ 265.525708] ? __lock_is_held+0xb5/0x140 [ 265.529832] ? check_same_owner+0x340/0x340 [ 265.534200] ? rcu_note_context_switch+0x730/0x730 [ 265.539222] __alloc_pages_nodemask+0x36e/0xdb0 [ 265.543942] ? lock_downgrade+0x8f0/0x8f0 [ 265.548141] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 265.553194] ? graph_lock+0x170/0x170 00:13:37 executing program 4: r0 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x2) ioctl(r1, 0x8912, &(0x7f0000000280)="075cb663c07f002070") ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f0000000000)=""/168) syz_open_dev$dspn(&(0x7f000000bff6)='/dev/dsp#\x00', 0x1, 0x2) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e21}}, 0xffffffff, 0x40, 0x401, 0xffffffff, 0x80}, &(0x7f0000000180)=0x98) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={r2, 0x80000001}, &(0x7f0000000200)=0x8) [ 265.557046] ? __lock_is_held+0xb5/0x140 [ 265.561142] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 265.565642] ? __lock_is_held+0xb5/0x140 [ 265.569789] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 265.575377] alloc_pages_current+0x10c/0x210 [ 265.579827] __get_free_pages+0xf/0x40 [ 265.583760] mmu_topup_memory_caches+0x1f8/0x3a0 [ 265.588591] kvm_mmu_load+0x21/0x10e0 [ 265.592438] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 265.598032] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 265.602679] vcpu_enter_guest+0x3aa6/0x6090 [ 265.607148] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 265.611518] ? kvm_set_msr_common+0x26a0/0x26a0 [ 265.616231] ? vmx_vcpu_load+0xadf/0xff0 [ 265.620335] ? __lock_acquire+0x7fc/0x5020 [ 265.624622] ? vmx_vcpu_reset+0x1040/0x1040 [ 265.628984] ? graph_lock+0x170/0x170 [ 265.632822] ? __lock_acquire+0x7fc/0x5020 [ 265.637114] ? __lock_is_held+0xb5/0x140 [ 265.641222] ? lock_acquire+0x1e4/0x540 [ 265.645240] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 265.650310] ? lock_release+0xa30/0xa30 [ 265.654325] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 265.659643] ? kvm_arch_dev_ioctl+0x610/0x610 [ 265.664391] ? preempt_notifier_dec+0x20/0x20 [ 265.668995] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 265.673878] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 265.678949] kvm_vcpu_ioctl+0x7b8/0x1300 [ 265.683063] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 265.688808] ? find_held_lock+0x36/0x1c0 [ 265.692951] ? find_held_lock+0x36/0x1c0 [ 265.697087] ? lock_downgrade+0x8f0/0x8f0 [ 265.701272] ? kasan_check_read+0x11/0x20 [ 265.705442] ? rcu_is_watching+0x8c/0x150 00:13:37 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0xfffffe4d, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x20000, 0x0, 0xfffffffffffffffc, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) get_mempolicy(&(0x7f00000000c0), &(0x7f0000000040), 0xff, &(0x7f0000fff000/0x1000)=nil, 0x5) r0 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x9, 0x141000) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f0000000100)) write$P9_RSTATFS(r0, &(0x7f0000000200)={0x43, 0x9, 0x1, {0x4, 0x8, 0x8, 0x100000001, 0x2, 0x6, 0x80000001, 0x474c}}, 0x43) accept$alg(r0, 0x0, 0x0) [ 265.709620] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 265.714353] ? __fget+0x414/0x670 [ 265.717847] ? match_held_lock+0x821/0x8d0 [ 265.722131] ? expand_files.part.8+0x9c0/0x9c0 [ 265.727104] ? kasan_check_write+0x14/0x20 [ 265.731385] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 265.736456] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 265.742236] do_vfs_ioctl+0x1de/0x1720 [ 265.746165] ? __lock_is_held+0xb5/0x140 [ 265.750291] ? ioctl_preallocate+0x300/0x300 [ 265.754745] ? __fget_light+0x2f7/0x440 00:13:37 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='setgroups\x00') close(r0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000000)=0x7) [ 265.758760] ? fget_raw+0x20/0x20 [ 265.762257] ? __sb_end_write+0xac/0xe0 [ 265.766323] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 265.772102] ? fput+0x130/0x1a0 [ 265.775428] ? ksys_write+0x1ae/0x260 [ 265.779303] ? security_file_ioctl+0x94/0xc0 [ 265.783777] ksys_ioctl+0xa9/0xd0 [ 265.787274] __x64_sys_ioctl+0x73/0xb0 [ 265.791194] do_syscall_64+0x1b9/0x820 [ 265.795111] ? finish_task_switch+0x1d3/0x870 [ 265.799634] ? syscall_return_slowpath+0x5e0/0x5e0 [ 265.804608] ? syscall_return_slowpath+0x31d/0x5e0 [ 265.809609] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 265.815042] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 265.819946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 265.825207] RIP: 0033:0x455e29 [ 265.828422] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 265.847869] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:37 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x1, 0x100008001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x0, 0x0) r1 = semget$private(0x0, 0x0, 0x0) semctl$IPC_RMID(r1, 0x0, 0x0) read$eventfd(r0, &(0x7f0000000280), 0x8) [ 265.855768] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 265.863071] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 265.870368] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 265.877665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 265.884991] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004b 00:13:37 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:37 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x6000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:37 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:37 executing program 0: r0 = fanotify_init(0x4, 0x40000) syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x1) r1 = dup(r0) write$fuse(r1, &(0x7f0000000000)={0x18, 0x11, 0x0, @fuse_bmap_out}, 0x18) 00:13:37 executing program 2 (fault-call:7 fault-nth:76): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:37 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0xfffffffffffff29f}, @in6={0xa, 0x4e21, 0x9, @dev={0xfe, 0x80, [], 0x20}, 0x1f}], 0x38) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) 00:13:37 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) statfs(&(0x7f0000001300)='./file0/../file0\x00', &(0x7f0000001340)=""/105) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqsrc(r2, 0x0, 0x5, &(0x7f0000000080)={@multicast1=0xe0000001, @remote={0xac, 0x14, 0x14, 0xbb}}, 0xc) socketpair(0x0, 0xa, 0x35d, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) recvfrom$unix(r3, &(0x7f0000000280)=""/4096, 0x1000, 0x2000, &(0x7f0000001280)=@file={0x0, './file0\x00'}, 0x6e) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x5, 0x10000) ioctl$int_out(r1, 0x2, &(0x7f0000000000)) ioctl$SG_SET_RESERVED_SIZE(r5, 0x2275, &(0x7f00000000c0)=0x7fff) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) ioctl$TUNSETPERSIST(r5, 0x400454cb, 0x1) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000040)=0x1f) setsockopt$inet_dccp_buf(r2, 0x21, 0x80, &(0x7f0000000140)="2220157e0c49337d02aca551693d46757a50a15511686f3681c35a87a06b96969c93adf1fa399d979b14bcea919767cc4bece4367ab961987935f2904c85d8ca466436db03c17f9fb938f33b2644a090e46e78e236928f4501459ebcf832fcb7cf962b80019c08cbac5fc23985137ebfdeb44fc804601ad0769716ed180690cc9c6885e56a7e28f6cf9490cf99a79d4e7ffc01afbe6868f7f19895f6e99d6cb4f71dda3cbdffb52dca3aecd597022fb0d69dbfa45f53840316a472df5fa9d176e15cf2d8aaa5", 0xc6) 00:13:38 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x900, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 266.436425] FAULT_INJECTION: forcing a failure. [ 266.436425] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 266.448627] CPU: 0 PID: 14370 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 266.456286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.465672] Call Trace: [ 266.468336] dump_stack+0x1c9/0x2b4 [ 266.472010] ? dump_stack_print_info.cold.2+0x52/0x52 [ 266.477257] ? zap_class+0x740/0x740 [ 266.481016] should_fail.cold.4+0xa/0x1a [ 266.485600] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 266.490721] ? graph_lock+0x170/0x170 [ 266.494546] ? find_held_lock+0x36/0x1c0 [ 266.498703] ? __lock_is_held+0xb5/0x140 [ 266.502796] ? check_same_owner+0x340/0x340 [ 266.507129] ? rcu_note_context_switch+0x730/0x730 [ 266.512089] __alloc_pages_nodemask+0x36e/0xdb0 [ 266.516907] ? lock_downgrade+0x8f0/0x8f0 [ 266.521158] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 266.526214] ? graph_lock+0x170/0x170 [ 266.530050] ? __lock_is_held+0xb5/0x140 [ 266.534137] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 266.538671] ? __lock_is_held+0xb5/0x140 [ 266.542759] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 266.548345] alloc_pages_current+0x10c/0x210 [ 266.552944] __get_free_pages+0xf/0x40 [ 266.556858] mmu_topup_memory_caches+0x1f8/0x3a0 [ 266.561642] kvm_mmu_load+0x21/0x10e0 [ 266.565450] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 266.570998] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 266.575715] vcpu_enter_guest+0x3aa6/0x6090 [ 266.580065] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 266.584326] ? kvm_set_msr_common+0x26a0/0x26a0 [ 266.589096] ? zap_class+0x740/0x740 [ 266.592919] ? vmx_vcpu_load+0xadf/0xff0 [ 266.597013] ? __lock_acquire+0x7fc/0x5020 [ 266.601361] ? vmx_vcpu_reset+0x1040/0x1040 [ 266.605711] ? graph_lock+0x170/0x170 [ 266.609548] ? __lock_is_held+0xb5/0x140 [ 266.614067] ? lock_acquire+0x1e4/0x540 [ 266.618059] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 266.623086] ? lock_release+0xa30/0xa30 [ 266.627060] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 266.632357] ? kvm_arch_dev_ioctl+0x610/0x610 [ 266.636958] ? preempt_notifier_dec+0x20/0x20 [ 266.641478] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 266.646340] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 266.651391] kvm_vcpu_ioctl+0x7b8/0x1300 [ 266.655680] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 266.661425] ? find_held_lock+0x36/0x1c0 [ 266.665527] ? lock_downgrade+0x8f0/0x8f0 [ 266.669683] ? rcu_is_watching+0x8c/0x150 [ 266.673847] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 266.678289] ? __fget+0x414/0x670 [ 266.681773] ? match_held_lock+0x821/0x8d0 [ 266.686049] ? expand_files.part.8+0x9c0/0x9c0 [ 266.690658] ? kasan_check_write+0x14/0x20 [ 266.694905] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 266.699850] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 266.705753] do_vfs_ioctl+0x1de/0x1720 [ 266.709649] ? ioctl_preallocate+0x300/0x300 [ 266.714079] ? __fget_light+0x2f7/0x440 [ 266.718233] ? fget_raw+0x20/0x20 [ 266.721698] ? __sb_end_write+0xac/0xe0 [ 266.725691] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 266.731231] ? fput+0x130/0x1a0 [ 266.734537] ? ksys_write+0x1ae/0x260 [ 266.738342] ? security_file_ioctl+0x94/0xc0 [ 266.742769] ksys_ioctl+0xa9/0xd0 [ 266.746422] __x64_sys_ioctl+0x73/0xb0 [ 266.750319] do_syscall_64+0x1b9/0x820 [ 266.754221] ? finish_task_switch+0x1d3/0x870 [ 266.758719] ? syscall_return_slowpath+0x5e0/0x5e0 [ 266.763662] ? syscall_return_slowpath+0x31d/0x5e0 [ 266.768616] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 266.774011] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 266.778869] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 266.784089] RIP: 0033:0x455e29 [ 266.787283] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 266.806891] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.814611] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 266.821900] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 266.829288] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 00:13:38 executing program 0: socket$inet6(0xa, 0x1000000000002, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x7, 0x8000) ioctl$GIO_CMAP(r0, 0x4b70, &(0x7f0000000080)) clock_getres(0xfffffffffffffffb, &(0x7f0000000000)) 00:13:38 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) [ 266.836573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 266.843862] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004c 00:13:38 executing program 2 (fault-call:7 fault-nth:77): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:38 executing program 4: r0 = memfd_create(&(0x7f0000000140)='hugetlb.2MB.usage_in_bytes\x00', 0x0) pwrite64(r0, &(0x7f000003bfff)='/', 0x1, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='\x00', r0}, 0x10) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') socket$l2tp(0x18, 0x1, 0x1) creat(&(0x7f0000000040)='./file0/file0\x00', 0x0) 00:13:38 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[], 0x0) 00:13:38 executing program 0: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000300)=@assoc_id=0x0, &(0x7f0000000340)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000380)={0x6cb7, 0x0, 0x203, 0x26fb80000000, 0x0, 0x5, 0x1, 0x7, r1}, &(0x7f00000003c0)=0x20) getsockopt$netlink(r0, 0x10e, 0xb, &(0x7f0000000240)=""/182, &(0x7f0000000100)=0xb6) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000000)=""/246) connect$l2tp(r0, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e23, @loopback=0x7f000001}, 0x0, 0x0, 0x2, 0x2}}, 0x2e) ppoll(&(0x7f0000000180)=[{r0, 0x3510}], 0x1, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000200), 0x8) 00:13:38 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x10aaaafeffaaaaa8, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 267.072581] FAULT_INJECTION: forcing a failure. [ 267.072581] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 267.084648] CPU: 1 PID: 14394 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 267.092033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 267.101423] Call Trace: [ 267.104066] dump_stack+0x1c9/0x2b4 [ 267.107740] ? dump_stack_print_info.cold.2+0x52/0x52 [ 267.112973] ? lock_downgrade+0x8f0/0x8f0 [ 267.117159] should_fail.cold.4+0xa/0x1a [ 267.121273] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 267.126406] ? graph_lock+0x170/0x170 [ 267.130229] ? is_bpf_text_address+0xd7/0x170 [ 267.134884] ? find_held_lock+0x36/0x1c0 [ 267.138987] ? __lock_is_held+0xb5/0x140 [ 267.143076] ? check_same_owner+0x340/0x340 [ 267.147409] ? rcu_note_context_switch+0x730/0x730 [ 267.152374] __alloc_pages_nodemask+0x36e/0xdb0 [ 267.157054] ? lock_downgrade+0x8f0/0x8f0 [ 267.161226] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 267.166277] ? graph_lock+0x170/0x170 [ 267.170185] ? __lock_is_held+0xb5/0x140 [ 267.174262] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 267.178713] ? __lock_is_held+0xb5/0x140 [ 267.182797] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 267.188535] alloc_pages_current+0x10c/0x210 [ 267.192973] __get_free_pages+0xf/0x40 [ 267.197002] mmu_topup_memory_caches+0x1f8/0x3a0 [ 267.201778] kvm_mmu_load+0x21/0x10e0 [ 267.205604] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 267.211154] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 267.215839] vcpu_enter_guest+0x3aa6/0x6090 [ 267.220186] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 267.224434] ? kvm_set_msr_common+0x26a0/0x26a0 [ 267.229114] ? vmx_vcpu_load+0xadf/0xff0 [ 267.233190] ? __lock_acquire+0x7fc/0x5020 [ 267.237523] ? vmx_vcpu_reset+0x1040/0x1040 [ 267.241855] ? graph_lock+0x170/0x170 [ 267.245678] ? __lock_acquire+0x7fc/0x5020 [ 267.249941] ? __lock_is_held+0xb5/0x140 [ 267.254040] ? lock_acquire+0x1e4/0x540 [ 267.258052] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 267.263110] ? lock_release+0xa30/0xa30 [ 267.267097] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 267.273693] ? kvm_arch_dev_ioctl+0x610/0x610 [ 267.278198] ? preempt_notifier_dec+0x20/0x20 [ 267.282722] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 267.287570] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 267.292603] kvm_vcpu_ioctl+0x7b8/0x1300 [ 267.296850] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 267.302574] ? find_held_lock+0x36/0x1c0 [ 267.306648] ? find_held_lock+0x36/0x1c0 [ 267.310737] ? lock_downgrade+0x8f0/0x8f0 [ 267.314919] ? kasan_check_read+0x11/0x20 [ 267.319070] ? rcu_is_watching+0x8c/0x150 [ 267.323258] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 267.327681] ? __fget+0x414/0x670 [ 267.331142] ? match_held_lock+0x821/0x8d0 [ 267.335401] ? expand_files.part.8+0x9c0/0x9c0 [ 267.339992] ? kasan_check_write+0x14/0x20 [ 267.344238] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 267.349195] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 267.354926] do_vfs_ioctl+0x1de/0x1720 [ 267.358845] ? __lock_is_held+0xb5/0x140 [ 267.362909] ? ioctl_preallocate+0x300/0x300 [ 267.367405] ? __fget_light+0x2f7/0x440 [ 267.371382] ? fget_raw+0x20/0x20 [ 267.374838] ? __sb_end_write+0xac/0xe0 [ 267.378830] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 267.384371] ? fput+0x130/0x1a0 [ 267.387664] ? ksys_write+0x1ae/0x260 [ 267.391489] ? security_file_ioctl+0x94/0xc0 [ 267.395900] ksys_ioctl+0xa9/0xd0 [ 267.399411] __x64_sys_ioctl+0x73/0xb0 [ 267.403305] do_syscall_64+0x1b9/0x820 [ 267.407205] ? finish_task_switch+0x1d3/0x870 [ 267.411706] ? syscall_return_slowpath+0x5e0/0x5e0 [ 267.416661] ? syscall_return_slowpath+0x31d/0x5e0 [ 267.421816] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 267.427198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 267.432055] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 267.437243] RIP: 0033:0x455e29 [ 267.440425] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 267.459780] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:39 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 267.467495] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 267.474768] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 267.482035] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 267.489305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 267.496574] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004d 00:13:39 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x540f, &(0x7f0000000000)) 00:13:39 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'gre0\x00', 0x0}) modify_ldt$read(0x0, &(0x7f0000000040)=""/47, 0x2f) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x1}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e24, 0x7, @remote={0xfe, 0x80, [], 0xbb}, 0x8}}}, 0x84) bind$packet(r1, &(0x7f0000000000)={0x11, 0x0, r2, 0x1, 0x0, 0x6}, 0x14) sendmmsg$inet_sctp(r1, &(0x7f0000871fc8)=[{&(0x7f000086c000)=@in6={0xa, 0x6558, 0x2}, 0x1c, &(0x7f0000d1e000), 0x0, &(0x7f0000dda000)}], 0x492492492492510, 0x0) 00:13:39 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfffffffffffff000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:39 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[], 0x0) 00:13:39 executing program 2 (fault-call:7 fault-nth:78): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:39 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000000)={0x100000000, 0x3f, 0x100000001}) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETGROUP(r1, 0x400454ce, r2) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x4, 0x200) 00:13:39 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:39 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[], 0x0) 00:13:39 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x9, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:39 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x0) 00:13:39 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x2000000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 268.030734] FAULT_INJECTION: forcing a failure. [ 268.030734] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 268.042956] CPU: 0 PID: 14439 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 268.050369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 268.059748] Call Trace: [ 268.062360] dump_stack+0x1c9/0x2b4 [ 268.066004] ? dump_stack_print_info.cold.2+0x52/0x52 [ 268.071214] ? lock_downgrade+0x8f0/0x8f0 [ 268.075408] should_fail.cold.4+0xa/0x1a [ 268.079517] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 268.084647] ? graph_lock+0x170/0x170 [ 268.088473] ? is_bpf_text_address+0xd7/0x170 [ 268.092986] ? find_held_lock+0x36/0x1c0 [ 268.097080] ? __lock_is_held+0xb5/0x140 [ 268.101175] ? check_same_owner+0x340/0x340 [ 268.105518] ? rcu_note_context_switch+0x730/0x730 [ 268.110499] __alloc_pages_nodemask+0x36e/0xdb0 [ 268.115195] ? lock_downgrade+0x8f0/0x8f0 [ 268.119366] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 268.124395] ? graph_lock+0x170/0x170 [ 268.128389] ? __lock_is_held+0xb5/0x140 [ 268.132483] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 268.136929] ? __lock_is_held+0xb5/0x140 [ 268.141011] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 268.146596] alloc_pages_current+0x10c/0x210 [ 268.151026] __get_free_pages+0xf/0x40 [ 268.154924] mmu_topup_memory_caches+0x1f8/0x3a0 [ 268.159878] kvm_mmu_load+0x21/0x10e0 [ 268.163701] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 268.169244] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 268.173833] vcpu_enter_guest+0x3aa6/0x6090 [ 268.178159] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 268.182590] ? kvm_set_msr_common+0x26a0/0x26a0 [ 268.187711] ? vmx_vcpu_load+0xadf/0xff0 [ 268.191789] ? __lock_acquire+0x7fc/0x5020 [ 268.196131] ? vmx_vcpu_reset+0x1040/0x1040 [ 268.200456] ? graph_lock+0x170/0x170 [ 268.204263] ? __lock_acquire+0x7fc/0x5020 [ 268.208514] ? __lock_is_held+0xb5/0x140 [ 268.212595] ? lock_acquire+0x1e4/0x540 [ 268.216659] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 268.221692] ? lock_release+0xa30/0xa30 [ 268.225663] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 268.230955] ? kvm_arch_dev_ioctl+0x610/0x610 [ 268.235461] ? preempt_notifier_dec+0x20/0x20 [ 268.239963] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 268.244806] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 268.249850] kvm_vcpu_ioctl+0x7b8/0x1300 [ 268.254041] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 268.259764] ? find_held_lock+0x36/0x1c0 [ 268.263864] ? find_held_lock+0x36/0x1c0 [ 268.268018] ? lock_downgrade+0x8f0/0x8f0 [ 268.272185] ? kasan_check_read+0x11/0x20 [ 268.276336] ? rcu_is_watching+0x8c/0x150 [ 268.280493] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 268.284991] ? __fget+0x414/0x670 [ 268.288476] ? match_held_lock+0x821/0x8d0 [ 268.292722] ? expand_files.part.8+0x9c0/0x9c0 [ 268.297327] ? kasan_check_write+0x14/0x20 [ 268.301660] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 268.306594] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 268.312317] do_vfs_ioctl+0x1de/0x1720 [ 268.316214] ? __lock_is_held+0xb5/0x140 [ 268.320279] ? ioctl_preallocate+0x300/0x300 [ 268.324685] ? __fget_light+0x2f7/0x440 [ 268.328651] ? fget_raw+0x20/0x20 [ 268.332119] ? __sb_end_write+0xac/0xe0 [ 268.336112] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 268.341659] ? fput+0x130/0x1a0 [ 268.344952] ? ksys_write+0x1ae/0x260 [ 268.348747] ? security_file_ioctl+0x94/0xc0 [ 268.353171] ksys_ioctl+0xa9/0xd0 [ 268.356642] __x64_sys_ioctl+0x73/0xb0 [ 268.360533] do_syscall_64+0x1b9/0x820 [ 268.364433] ? finish_task_switch+0x1d3/0x870 [ 268.368936] ? syscall_return_slowpath+0x5e0/0x5e0 [ 268.373874] ? syscall_return_slowpath+0x31d/0x5e0 [ 268.378807] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 268.384280] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 268.389154] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 268.394364] RIP: 0033:0x455e29 [ 268.397643] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 268.416898] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 268.424617] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 268.431884] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 268.439269] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 268.446539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 268.453976] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004e 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x0) 00:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf0ffff, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:40 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000240), 0xffffffffffffff29) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000000)={&(0x7f00002ca000/0x3000)=nil, 0x3000}, &(0x7f0000000040)=0x10) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote, @in=@dev}}, {{@in6=@dev}, 0x0, @in6=@dev}}, &(0x7f0000000140)=0xe8) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) read(r0, &(0x7f00000001c0)=""/4, 0x4) 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x0) 00:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:40 executing program 7: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x80000, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000200)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000280)=0x14) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000002c0)={r1, 0x100000001, 0x20, 0x5, 0x7, 0x7fff}, 0x14) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) recvfrom$inet(r5, &(0x7f0000000040)=""/133, 0x85, 0x60, &(0x7f0000000140)={0x2, 0x4e23, @multicast1=0xe0000001}, 0x10) syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x100000001, 0x80801) 00:13:40 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5422, &(0x7f0000000000)) 00:13:40 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$sndpcmc(&(0x7f0000001fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) accept(r1, &(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast2}}}, &(0x7f0000000080)=0x80) ioctl(r1, 0x200080984120, &(0x7f0000008000)) 00:13:40 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:40 executing program 2 (fault-call:7 fault-nth:79): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x2d2) 00:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x5000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:40 executing program 4: r0 = socket$inet6(0xa, 0x1000000000004, 0x2) fstat(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_netfilter(r0, &(0x7f0000001500)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000008}, 0xc, &(0x7f00000014c0)={&(0x7f0000000200)={0x12a0, 0x12, 0xf, 0x200, 0x70bd27, 0x25dfdbfe, {0xb, 0x0, 0x7}, [@generic="7735a7797ab1882cf34a768a47a43b02fe7f0c99a5275826ee0ee5ea5389b882b1b2133e55c2ee5998ccd07769303451b000007c199c3b8feddb06661f14a32358295d9cfcf44e1e41978b690fcda91603c807dafbaaa5a866b0aa504802ba10beb5230bfaa90add733376951406bd52dedeb3c83d8e9fb1", @generic="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", @nested={0x204, 0x2c, [@typed={0xbc, 0x33, @binary="6e2302ee918512a2591aeaf9f50fff4c8b827dc80d6fe18939dd63c08f6d2c0a5af9c24049bca9303eda55868c56e9c10cfad2c980f3b7649ced584e50d1c40516e4348fd75ab4f2ef38a79afbc510af3f7776d06c5c32db299d838c694647e77c9e4ebf1ff43257ebf0cc00306d20d2e3f127b7b39b0864a2b25e97ad8d3c32c7fc53c44c53359805f54ef320d8fff7697761de2d0adb29b6280bac3a315b975218812d0fdbc21dd610cf3237e81072711b0863df5d"}, @generic="d0bda2611320d3061d46d5cd8057b6c35bae095d690d131f5523e85142b17b405f0629f59beb93e41187c07377e3d2319b1ab838bced1b52fac2cfbefc6741fb6a57ae5214a8e272a07b6d8945e34547c1e02b208aa3d796117b47c56a3a736d4a7033af40c3c4555ddb5ea6e9ed1565250b041a75aa3339fed51aaf940d11c389459422796f8dd54d93a1f113469d435ad5ff5d2815b4bf0e323753449a364387da5e4ea5b277bd916d82c3ca1b0a521c3c129c24f3afd04bea492b12de1a7f881e8aed72e09b845afb1483f4c397df61a2bfc84b64f843b9703214b894d058e6a13fd045ff2251d7f10de87d5cea3fc7", @generic="b8f87a6fe53ffc4f1fc7eebcb15b18bc200ae1a3a66bbacb07cddc3258b13634b4d221609e8694f698bde91534015e075011ddc78c548ea2", @typed={0x8, 0x8b, @uid=r1}, @generic="ed9d1fc6b4b7b6b4e007eccfe1", @generic="fcfa78"]}, @typed={0x8, 0x1f, @fd=r0}, @typed={0x8, 0x41, @ipv4=@rand_addr=0x8}]}, 0x12a0}, 0x1, 0x0, 0x0, 0x4800}, 0x4040) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") mmap(&(0x7f00008f2000/0x3000)=nil, 0x3000, 0x40001005, 0x10010, r0, 0x0) r2 = socket$packet(0x11, 0x0, 0x300) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x10082, 0x0) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f0000000100)=0x9, 0x4) syz_mount_image$iso9660(&(0x7f0000001540)='iso9660\x00', &(0x7f0000001580)='./file0\x00', 0xfffffffffffffff7, 0x7, &(0x7f0000001ac0)=[{&(0x7f00000015c0)="111ecc6055da825726918fe8161bc42cd0fa87ff2d917c1b012256d8b286de84d7c1fdc3bd65e6f4502d81d06e4df23dfa3a5a7af1a45354e7b5dccc80c92f4da9938b3405d5431df5d50faae1d733ec9556247b073a58608537b0f3918c517adc7848488cc8aa830900809d04e0f43e9ac7a75e691a598687c254130780a07518bea55ef08277b2df89b28b85dcf2eed3cb5e1e55d46b6f8e90ef5ec371e69a1eb463d2e72c30c3de6328213706487a54286b81997ebdf6ba606ada84cd5f9fef192b4a9c4df7e3fd6c52fe9cc82826fb1050ae3f3d52f5cd", 0xd9, 0x9}, {&(0x7f00000016c0)="ca8bd77e5cd6bf4cebdcd500d5d9a0e7be0636585ecc4379fe6e332ae934952718f530299ffc08b41e762762c37c253269d3d4ee8b5dbc1b7ec27d40e1fcbefd36cd4c67104511d6c3dde24d7663555e75965208c22df7d9543fc16030103112479bd5990064debab979f3baf6422afc684b7ead3bc813e606a63b6932235064", 0x80, 0x5}, {&(0x7f0000001740)="4dd89cba5a360e1ba64010890eaf9c8c27ffed0be35ece43b758b2d0084a6a298424aba2c4d5f038fa2f70c10307d170cf9cf73bfd13a0fe65777648cedfe213196c4ad13050b7aa28692a538ee6778b7bfd88a980a3f86736299a52453653fff668fcbe6422a3937c47cf852e157b6a643cb39559850e1ea7a9cccd67ca1cb60c19844d7eee50b96ef5e169116c", 0x8e, 0x1}, {&(0x7f0000001800)="dd340725eb7daf4b5ac4fbf20cd5cfbb0d859cb2816cbf1630f1b47809f551", 0x1f, 0x6735}, {&(0x7f0000001840)="b5ace361b916f66605f38fc02c8ee05ca2cfa66d92fdba5552e14a020670e5a3dd9ac1eb060655335a0ac44415bbb0c75abee251b9c76303b3f10d59040e8617df02154b6b0d983523804de77d3503c12825a70a69d9be1033e994fa2a18d186d26c02731b501a8cb3cd1c35f552ed2a833b0f7cd80c617f9155ba6748d9034c370da7b3ec91cd4ba8f47731520dcd6d49e61d6b79f1828123e144fba246a29cd67240", 0xa3, 0x100000000}, {&(0x7f0000001900)="5c74c462f9a39f6e597cf0be12782a2333f2608e2b8c06fde1161b3d47e50aea10967d972b8620f0227ca7153dddb2c19f081395cce453a1245787c548ff6b0d6e65d1d8b6dc5e79af028f2f26e7096a11215bd8417b8e026fedf3bd8f3b78e2a257014aa752f4e9355686ce126aa0c7108ab7665fb9788ff2586ed2ba2a2c8132c00ca63d01aadd3ae97439801d8ea0ec5c0becda6656c6966f30eec6c630173fc3d8e274a33cbe30c92d8bd917203e4a1e4a826bd16d377dce47bb0c87963ff270c06bda490064dbc85a117bbcc4ff2e7c9028862ae81aca", 0xd9, 0x1a71bf14}, {&(0x7f0000001a00)="57b087ff208dba92cc377dcb45dc3a8d36c583d834f508344cb98f3f87840b2c54513963993f2309eae7f76060310e44ccac64cc2493051eb59303b02553a4b36495fdfdd599d8521950e7e3706287df4b770d99395d6d4dd865f587da2ac95ca27c436fce9ead0007694066a23708b8170e0adc54e1abc1f452ca7b86b1e1a789eebde5f23e23824c429d5a208c6e246815c3", 0x93, 0x8}], 0x1000020, &(0x7f0000001b80)={[{@session={'session', 0x3d, 0x31}, 0x2c}, {@sbsector={'sbsector', 0x3d, 0x3ff}, 0x2c}, {@hide='hide', 0x2c}]}) socket$packet(0x11, 0x3, 0x300) socketpair$inet(0x2, 0x3, 0x1, &(0x7f0000000040)) openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x40002, 0x0) fcntl$getflags(r2, 0x40b) 00:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 269.000275] FAULT_INJECTION: forcing a failure. [ 269.000275] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 269.012340] CPU: 1 PID: 14491 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 269.019778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.029177] Call Trace: [ 269.031895] dump_stack+0x1c9/0x2b4 [ 269.035617] ? dump_stack_print_info.cold.2+0x52/0x52 [ 269.040976] ? lock_downgrade+0x8f0/0x8f0 [ 269.045170] should_fail.cold.4+0xa/0x1a [ 269.049257] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 269.054401] ? graph_lock+0x170/0x170 [ 269.058229] ? is_bpf_text_address+0xd7/0x170 [ 269.062762] ? find_held_lock+0x36/0x1c0 [ 269.066877] ? __lock_is_held+0xb5/0x140 [ 269.070998] ? check_same_owner+0x340/0x340 [ 269.075429] ? rcu_note_context_switch+0x730/0x730 [ 269.080386] __alloc_pages_nodemask+0x36e/0xdb0 [ 269.085094] ? lock_downgrade+0x8f0/0x8f0 [ 269.089294] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 269.094409] ? graph_lock+0x170/0x170 [ 269.098331] ? __lock_is_held+0xb5/0x140 [ 269.102415] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 269.106862] ? __lock_is_held+0xb5/0x140 [ 269.110988] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 269.116572] alloc_pages_current+0x10c/0x210 [ 269.121005] __get_free_pages+0xf/0x40 [ 269.124924] mmu_topup_memory_caches+0x1f8/0x3a0 [ 269.129717] kvm_mmu_load+0x21/0x10e0 [ 269.133585] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 269.139341] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 269.143985] vcpu_enter_guest+0x3aa6/0x6090 00:13:40 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00') setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f0000000140)={'filter\x00', 0x0, 0x0, 0x0, [], 0x1, &(0x7f0000000040)=[{}], 0x0, [{}]}, 0x88) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x2d2) [ 269.148340] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 269.152741] ? kvm_set_msr_common+0x26a0/0x26a0 [ 269.157568] ? vmx_vcpu_load+0xadf/0xff0 [ 269.161672] ? __lock_acquire+0x7fc/0x5020 [ 269.165985] ? vmx_vcpu_reset+0x1040/0x1040 [ 269.170357] ? graph_lock+0x170/0x170 [ 269.174208] ? __lock_acquire+0x7fc/0x5020 [ 269.178533] ? __lock_is_held+0xb5/0x140 [ 269.182664] ? lock_acquire+0x1e4/0x540 [ 269.186676] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 269.191740] ? lock_release+0xa30/0xa30 [ 269.195785] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 269.201167] ? kvm_arch_dev_ioctl+0x610/0x610 [ 269.205999] ? preempt_notifier_dec+0x20/0x20 [ 269.210553] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 269.215475] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 269.220799] kvm_vcpu_ioctl+0x7b8/0x1300 [ 269.224920] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 269.230674] ? find_held_lock+0x36/0x1c0 [ 269.234788] ? find_held_lock+0x36/0x1c0 [ 269.238898] ? lock_downgrade+0x8f0/0x8f0 [ 269.243092] ? kasan_check_read+0x11/0x20 [ 269.247277] ? rcu_is_watching+0x8c/0x150 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x2d2) [ 269.251459] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 269.255914] ? __fget+0x414/0x670 [ 269.259492] ? match_held_lock+0x821/0x8d0 [ 269.263772] ? expand_files.part.8+0x9c0/0x9c0 [ 269.268402] ? kasan_check_write+0x14/0x20 [ 269.272866] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 269.277875] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 269.283643] do_vfs_ioctl+0x1de/0x1720 [ 269.287804] ? __lock_is_held+0xb5/0x140 [ 269.291931] ? ioctl_preallocate+0x300/0x300 [ 269.296450] ? __fget_light+0x2f7/0x440 00:13:40 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x43b) [ 269.300596] ? fget_raw+0x20/0x20 [ 269.304116] ? __sb_end_write+0xac/0xe0 [ 269.308237] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 269.313808] ? fput+0x130/0x1a0 [ 269.317138] ? ksys_write+0x1ae/0x260 [ 269.321051] ? security_file_ioctl+0x94/0xc0 [ 269.325531] ksys_ioctl+0xa9/0xd0 [ 269.329067] __x64_sys_ioctl+0x73/0xb0 [ 269.333076] do_syscall_64+0x1b9/0x820 [ 269.337006] ? finish_task_switch+0x1d3/0x870 [ 269.341554] ? syscall_return_slowpath+0x5e0/0x5e0 [ 269.346539] ? syscall_return_slowpath+0x31d/0x5e0 [ 269.351699] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 269.357486] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 269.362671] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 269.367899] RIP: 0033:0x455e29 [ 269.371115] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 269.390689] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 269.398618] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 269.405931] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 269.413337] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 269.420653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 269.428098] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000004f 00:13:41 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) ioctl$TCGETA(r1, 0x5405, &(0x7f0000000000)) read(r1, &(0x7f0000000180)=""/4, 0x4) 00:13:41 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd45"], 0x43b) 00:13:41 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x80fe, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:41 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x43b) 00:13:41 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x802c542a, &(0x7f0000000000)) 00:13:41 executing program 4: r0 = creat(&(0x7f0000001380)='./file0\x00', 0xfffffffffffffffc) ioctl$SG_GET_LOW_DMA(r0, 0x227a, &(0x7f0000000000)) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={0x0, 0xfffffffffffffff8, 0x9}, &(0x7f0000000100)=0xc) ioctl$fiemap(r0, 0x40086602, &(0x7f0000000140)=ANY=[]) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r0, 0xc08c5334, &(0x7f0000000140)={0x6, 0x1ff, 0x1, 'queue0\x00', 0x74ba}) ioctl(r0, 0x7fff, &(0x7f0000000040)="0378cae040621c5a1a9500") 00:13:41 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xffffffff00000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:41 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x4f0) 00:13:41 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:41 executing program 2 (fault-call:7 fault-nth:80): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:41 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = fcntl$dupfd(r0, 0x406, r1) getsockname$packet(r3, &(0x7f0000000000), &(0x7f0000000040)=0x14) [ 269.895372] FAULT_INJECTION: forcing a failure. [ 269.895372] name failslab, interval 1, probability 0, space 0, times 0 [ 269.907027] CPU: 0 PID: 14553 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 269.914416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.923799] Call Trace: [ 269.926413] dump_stack+0x1c9/0x2b4 [ 269.930076] ? dump_stack_print_info.cold.2+0x52/0x52 [ 269.935316] ? graph_lock+0x170/0x170 [ 269.939414] ? __lock_is_held+0xb5/0x140 00:13:41 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7"], 0x4f0) [ 269.943555] should_fail.cold.4+0xa/0x1a [ 269.947682] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 269.952829] ? __lock_is_held+0xb5/0x140 [ 269.956927] ? graph_lock+0x170/0x170 [ 269.960959] ? find_held_lock+0x36/0x1c0 [ 269.965108] ? __lock_is_held+0xb5/0x140 [ 269.969246] ? check_same_owner+0x340/0x340 [ 269.973615] ? rcu_note_context_switch+0x730/0x730 [ 269.978622] __should_failslab+0x124/0x180 [ 269.982940] should_failslab+0x9/0x14 [ 269.986957] kmem_cache_alloc+0x2af/0x760 [ 269.991160] ? alloc_pages_current+0x114/0x210 00:13:41 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xa00000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 269.995830] mmu_topup_memory_caches+0x2fa/0x3a0 [ 270.000650] kvm_mmu_load+0x21/0x10e0 [ 270.004551] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.010140] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 270.014822] vcpu_enter_guest+0x3aa6/0x6090 [ 270.019227] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 270.023517] ? kvm_set_msr_common+0x26a0/0x26a0 [ 270.028263] ? vmx_vcpu_load+0xadf/0xff0 [ 270.032371] ? __lock_acquire+0x7fc/0x5020 [ 270.036654] ? vmx_vcpu_reset+0x1040/0x1040 [ 270.041024] ? graph_lock+0x170/0x170 [ 270.044878] ? __lock_acquire+0x7fc/0x5020 [ 270.049202] ? __lock_is_held+0xb5/0x140 [ 270.053304] ? lock_acquire+0x1e4/0x540 [ 270.057389] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 270.062466] ? lock_release+0xa30/0xa30 [ 270.066468] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 270.071877] ? kvm_arch_dev_ioctl+0x610/0x610 [ 270.076394] ? preempt_notifier_dec+0x20/0x20 [ 270.080902] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 270.085759] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 270.091235] kvm_vcpu_ioctl+0x7b8/0x1300 [ 270.095300] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 270.101031] ? find_held_lock+0x36/0x1c0 [ 270.105107] ? find_held_lock+0x36/0x1c0 [ 270.109180] ? lock_downgrade+0x8f0/0x8f0 [ 270.113338] ? kasan_check_read+0x11/0x20 [ 270.117496] ? rcu_is_watching+0x8c/0x150 [ 270.121683] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 270.126113] ? __fget+0x414/0x670 [ 270.129582] ? match_held_lock+0x821/0x8d0 [ 270.133850] ? expand_files.part.8+0x9c0/0x9c0 [ 270.138605] ? kasan_check_write+0x14/0x20 [ 270.142873] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 270.147838] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 270.153575] do_vfs_ioctl+0x1de/0x1720 [ 270.157478] ? __lock_is_held+0xb5/0x140 [ 270.161579] ? ioctl_preallocate+0x300/0x300 [ 270.165995] ? __fget_light+0x2f7/0x440 [ 270.170002] ? fget_raw+0x20/0x20 [ 270.173477] ? __sb_end_write+0xac/0xe0 [ 270.177504] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.183056] ? fput+0x130/0x1a0 [ 270.186375] ? ksys_write+0x1ae/0x260 [ 270.190182] ? security_file_ioctl+0x94/0xc0 [ 270.194609] ksys_ioctl+0xa9/0xd0 [ 270.198098] __x64_sys_ioctl+0x73/0xb0 [ 270.202001] do_syscall_64+0x1b9/0x820 [ 270.205912] ? finish_task_switch+0x1d3/0x870 [ 270.210444] ? syscall_return_slowpath+0x5e0/0x5e0 [ 270.215407] ? syscall_return_slowpath+0x31d/0x5e0 [ 270.220367] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 270.225749] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 270.230605] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 270.235809] RIP: 0033:0x455e29 [ 270.239006] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 270.258384] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.266119] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 270.273391] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 270.280661] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 270.287941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 00:13:41 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000200)="093fbf4098bb221f880000d0d26ad36d7ceeae78126fd317f5bac6095a60ca314d886ab6090650ee35b42a7daacfe1e26d24c317d087c0ae2576d2c9b1a3b94239cc6ac887e1326784b4b76d924e4cafa53ca942c3e2ba1dc4c1ce8c0bbcf4fe14d3fe3094b66b22405e5f9dca6a32374e44c63b6f045952099366f25245d4de1b") mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2000, 0xffffffffffffffff) setxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)=@known='trusted.syz\x00', &(0x7f0000000100)='/vmnet0\x00', 0x11f, 0x0) unlink(&(0x7f00000000c0)='./file0\x00') [ 270.295311] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000050 00:13:41 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x4f0) 00:13:41 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000200)="025cc83d6d345f8f762070") r1 = syz_open_dev$evdev(&(0x7f0000000600)='/dev/input/event#\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e23, 0xdb, @dev={0xfe, 0x80, [], 0x20}, 0x7}}, 0x8, 0x9f, 0x400, 0x7, 0x80}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000240)={r2, 0xe6, "008458879bc4326c54f7dc1b8e8a3b4e50a619cf6e92200de89ba95e3bcebd8eaac5bd32dd88c3c9d78f1c2186714ad05bc8181588d10b3aef87fdd61da242532c7605d014ca539e5c74b1b214beebf295547d5e886f1198cb8234d6694a4f8d747203041ef4158064c78201b11407c735e8c8cc1f1e934e7a378b96e54e38c2daf172719c60d072cffbe8da03624f50de86da84d78e0e769803d235223f51a85fec12330daa03beaa83540616536ee666b974cc5aa8054e7960d9bb7b0b3219d75db6989d38c68b56724a415d46413d0bd740ecd412e913d54db6f986f060efd1b3b8e598a5"}, &(0x7f0000000340)=0xee) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1000002, 0x32, 0xffffffffffffffff, 0x0) ioctl$EVIOCGKEYCODE(r1, 0x80084502, &(0x7f0000000100)=""/202) 00:13:42 executing program 6: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xffffffff, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000040), &(0x7f0000000100)=0x30) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r2, 0x111, 0x2, 0x1, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x7003, &(0x7f0000000080)) read(r2, &(0x7f0000000180)=""/4, 0x4) 00:13:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x2000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:42 executing program 2 (fault-call:7 fault-nth:81): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:42 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x54a) [ 270.588379] FAULT_INJECTION: forcing a failure. [ 270.588379] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 270.600277] CPU: 1 PID: 14588 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 270.607660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.617043] Call Trace: [ 270.619668] dump_stack+0x1c9/0x2b4 [ 270.623375] ? dump_stack_print_info.cold.2+0x52/0x52 [ 270.628669] should_fail.cold.4+0xa/0x1a [ 270.632771] ? find_held_lock+0x36/0x1c0 [ 270.636899] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 270.642057] ? lock_downgrade+0x8f0/0x8f0 [ 270.646242] ? find_held_lock+0x36/0x1c0 [ 270.650348] ? graph_lock+0x170/0x170 [ 270.654179] ? lock_acquire+0x1e4/0x540 [ 270.658298] ? lock_downgrade+0x8f0/0x8f0 [ 270.662516] __alloc_pages_nodemask+0x36e/0xdb0 [ 270.667223] ? __alloc_pages_slowpath+0x2d90/0x2d90 [ 270.672263] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 270.676715] ? __lock_is_held+0xb5/0x140 [ 270.680808] ? check_same_owner+0x340/0x340 [ 270.685164] cache_grow_begin+0x91/0x710 [ 270.689253] kmem_cache_alloc+0x689/0x760 [ 270.693442] ? alloc_pages_current+0x114/0x210 [ 270.698054] mmu_topup_memory_caches+0x2fa/0x3a0 [ 270.702846] kvm_mmu_load+0x21/0x10e0 [ 270.706679] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.712266] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 270.716981] vcpu_enter_guest+0x3aa6/0x6090 [ 270.721343] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.726906] ? vmcs_load+0x144/0x1a0 [ 270.730740] ? kvm_set_msr_common+0x26a0/0x26a0 [ 270.735434] ? vmx_vcpu_load+0xadf/0xff0 [ 270.739523] ? vmx_vcpu_reset+0x1040/0x1040 [ 270.743882] ? graph_lock+0x170/0x170 [ 270.747741] ? __lock_acquire+0x7fc/0x5020 [ 270.752005] ? __lock_is_held+0xb5/0x140 [ 270.756095] ? lock_acquire+0x1e4/0x540 [ 270.760104] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 270.765161] ? lock_release+0xa30/0xa30 [ 270.769173] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 270.774510] ? kvm_arch_dev_ioctl+0x610/0x610 [ 270.779030] ? preempt_notifier_dec+0x20/0x20 [ 270.783556] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 270.788411] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 270.793462] kvm_vcpu_ioctl+0x7b8/0x1300 [ 270.797586] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 270.803335] ? find_held_lock+0x36/0x1c0 [ 270.807436] ? find_held_lock+0x36/0x1c0 [ 270.811567] ? lock_downgrade+0x8f0/0x8f0 [ 270.815765] ? kasan_check_read+0x11/0x20 [ 270.819950] ? rcu_is_watching+0x8c/0x150 [ 270.824115] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 270.828559] ? __fget+0x414/0x670 [ 270.832038] ? match_held_lock+0x821/0x8d0 [ 270.836303] ? expand_files.part.8+0x9c0/0x9c0 [ 270.841093] ? kasan_check_write+0x14/0x20 [ 270.845346] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 270.850301] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 270.856057] do_vfs_ioctl+0x1de/0x1720 [ 270.859991] ? __lock_is_held+0xb5/0x140 [ 270.864075] ? ioctl_preallocate+0x300/0x300 [ 270.868500] ? __fget_light+0x2f7/0x440 [ 270.872504] ? fget_raw+0x20/0x20 [ 270.876076] ? __sb_end_write+0xac/0xe0 [ 270.880075] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.885629] ? fput+0x130/0x1a0 [ 270.888952] ? ksys_write+0x1ae/0x260 [ 270.892792] ? security_file_ioctl+0x94/0xc0 [ 270.897242] ksys_ioctl+0xa9/0xd0 [ 270.900722] __x64_sys_ioctl+0x73/0xb0 [ 270.904625] do_syscall_64+0x1b9/0x820 [ 270.908538] ? finish_task_switch+0x1d3/0x870 [ 270.913065] ? syscall_return_slowpath+0x5e0/0x5e0 [ 270.918011] ? syscall_return_slowpath+0x31d/0x5e0 [ 270.922972] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 270.928412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 270.933273] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 270.938469] RIP: 0033:0x455e29 [ 270.941655] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 270.961071] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.970239] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 270.977522] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 270.984980] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 270.992345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 270.999640] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000051 00:13:42 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5441, &(0x7f0000000000)) 00:13:42 executing program 4: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={0x4}, 0x8, 0x800) lseek(r0, 0x5d, 0x7) r1 = socket$inet6(0xa, 0x802, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000000)="295ee1311f16f477671070") signalfd4(r0, &(0x7f0000000100)={0x55dd}, 0x8, 0x80000) getsockopt$inet6_buf(r1, 0x29, 0x48, &(0x7f0000000080)=""/100, &(0x7f0000000140)=0x64) 00:13:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x9000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:42 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x54a) 00:13:42 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:42 executing program 2 (fault-call:7 fault-nth:82): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:42 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:42 executing program 4: syz_init_net_socket$bt_hci(0x1f, 0x2, 0x1) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x8102, 0x0) ioctl$KDMKTONE(r0, 0x4b30, 0x5) 00:13:42 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) ioctl$TCSETSF(0xffffffffffffffff, 0x5419, &(0x7f0000000000)) 00:13:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x700, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:42 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = creat(&(0x7f0000000000)='./file0\x00', 0x8) openat$cgroup_procs(r1, &(0x7f0000000040)='tasks\x00', 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000214fd4)={0x3, 0x4, 0x4, 0x801, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0xa]}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r1, &(0x7f0000000080)="8eec941a732b0232e7a4754555ee66b84da4088493c74a32ad08672b626a2ad3992d36636e1858572f751039020bb9467ae6425ae656222f209a38aae00ec2d76bcec7d6d5d03fa029fc3e7efd62488845caa1425c3e9a9d8b14232aec857631931c8d0540005e02cda6cdf79006e828a84ce78e3d5b822f301255b002d824717f49d530a3097983943e427f4be76a145c4b076541d1e90449fd07d1491bdd517bc337b45a3948e307fa307df1fb09f4ecfcf789fc", &(0x7f0000000140)=""/89}, 0x18) setsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000200)=0x1, 0x4) [ 271.299199] FAULT_INJECTION: forcing a failure. [ 271.299199] name failslab, interval 1, probability 0, space 0, times 0 [ 271.310841] CPU: 0 PID: 14610 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 271.318402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 271.327779] Call Trace: [ 271.330405] dump_stack+0x1c9/0x2b4 [ 271.334078] ? dump_stack_print_info.cold.2+0x52/0x52 [ 271.339322] should_fail.cold.4+0xa/0x1a [ 271.343442] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 271.348608] ? kasan_kmalloc+0xc4/0xe0 [ 271.352569] ? kasan_slab_alloc+0x12/0x20 [ 271.356768] ? kmem_cache_alloc+0x12e/0x760 [ 271.361119] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 271.366082] ? kvm_mmu_load+0x21/0x10e0 [ 271.370098] ? vcpu_enter_guest+0x3aa6/0x6090 [ 271.374633] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 271.379670] ? graph_lock+0x170/0x170 [ 271.383527] ? do_syscall_64+0x1b9/0x820 [ 271.387633] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 271.393017] ? find_held_lock+0x36/0x1c0 00:13:42 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x54a) [ 271.397194] ? __lock_is_held+0xb5/0x140 [ 271.401314] ? check_same_owner+0x340/0x340 [ 271.405702] ? rcu_note_context_switch+0x730/0x730 [ 271.410682] __should_failslab+0x124/0x180 [ 271.414953] should_failslab+0x9/0x14 [ 271.418826] kmem_cache_alloc+0x2af/0x760 [ 271.423014] ? alloc_pages_current+0x114/0x210 [ 271.427631] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 271.432601] mmu_topup_memory_caches+0x2fa/0x3a0 [ 271.437393] kvm_mmu_load+0x21/0x10e0 [ 271.441236] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 00:13:43 executing program 6: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000600)={0x6, 0x2, 0x9, 0x1, 0x8527, 0x4, 0x0, 0x200, 0x7ff, 0x8, 0xfffffffffffffffb}, 0xb) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x7f, 0x84c3) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") write$binfmt_script(r1, &(0x7f00000007c0)=ANY=[@ANYRESHEX=r1, @ANYRES32=r1, @ANYRES16=r2, @ANYBLOB="45e3dcdf3e93e07418400da92e941fdf4d8571d3c95cf55e2c778675ef501e303922dca3e54eec08db40619da9956ce5b2b34345039e1b99274f827c26d2c4d1a30386740971910cc7b70f835f73a6c76e71132b1c3dfc707cf4f8ba1792217cafa5d5fd89a34294f216ed043124db2b586a6d670f26d5b47b6b1d6fdbd20e776d2016562f6b3f1c80da5a986a70b3c33f5ae38e32b1e392e9a243084e93404e8268f878dac2d46b7d", @ANYRES32=r1, @ANYRESOCT, @ANYRES32=r1], 0xe0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000040)={0x1fd, 0x0, &(0x7f00004ba000/0x1000)=nil}) fgetxattr(r1, &(0x7f0000000640)=@known='system.sockprotoname\x00', &(0x7f0000000680)=""/169, 0xa9) mprotect(&(0x7f00004ef000/0x3000)=nil, 0x3000, 0x200000d) ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x7003, &(0x7f0000000080)) read(r3, &(0x7f0000000180)=""/4, 0x4) io_setup(0x1, &(0x7f0000000000)=0x0) ioctl$BLKROGET(r3, 0x125e, &(0x7f0000000140)) io_submit(r4, 0x4, &(0x7f0000000540)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x8, r1, &(0x7f00000001c0)="82ba3fe45e5c0eecdd", 0x9, 0x8, 0x0, 0x1, r3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2, 0x6, r1, &(0x7f0000000240)="0cd5f632c8a886e0f856238efc507c6f493e372c2858aa6f8fa8eaf47f04aae7898ca3b9b016cf", 0x27, 0x1ff, 0x0, 0x1, r3}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2, 0xd3, r1, &(0x7f0000000300)="c6ba1fd22c17b4d60a3412a18b45b2645568474c300d058e17bd37f52a99c28dfe377d78084d5189fd0a2b7d4c7bd0d6febfd1b8594904ceb7716162b73f9332b0c06811ac9b4c222c2632ca6566604e6706331c1a920f546e795cbfcc5b524d1a3fed640130d6a00afc17381225857331c35e07697cebb4ab4c0ff6afb41d0915657de0a43f2ac16fe799066edf368f9ebd415ec91c5ef26b7f87a51e92d1b7e871c74aecad76a1c6cfe37bcbab4b44f8a4b7571e5f5d54b972b86c83790b8f383f60b8bbf868827638635808a134ce797a72e4adad8e", 0xfffffffffffffe5d, 0x9, 0x0, 0x1, r3}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, r1, &(0x7f0000000440)="e226860e92d805e36b1690fd1f36ef884d56e0db761323abbd46316926b1e9fafa0d356a1fc27d1b80bab244e58f7445f9ccc10eaaf02fdad56d12320612ffd096c8c919a493974cc84311ada43cd7c40f49e19072f340781e5273845e84f250d1553c62815eb5d432ba4e86ccefba14546bfc93b9a93e0e1cd9f41697d502256a0691d155ca8ea4ed30cdb378f49990274b89ae425aa71b2594a0f4898be9b7dcef24accd4c90036e110eb0ea2a29439a540337f6", 0xb5, 0x4, 0x0, 0x0, r3}]) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000580)={@loopback=0x7f000001, @local={0xac, 0x14, 0x14, 0xaa}, 0x0, 0x3, [@multicast2=0xe0000002, @empty, @multicast1=0xe0000001]}, 0x1c) [ 271.446835] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 271.451449] vcpu_enter_guest+0x3aa6/0x6090 [ 271.455833] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 271.460511] ? kvm_set_msr_common+0x26a0/0x26a0 [ 271.465312] ? vmx_vcpu_load+0xadf/0xff0 [ 271.469421] ? __lock_acquire+0x7fc/0x5020 [ 271.473732] ? vmx_vcpu_reset+0x1040/0x1040 [ 271.478111] ? graph_lock+0x170/0x170 [ 271.481968] ? __lock_acquire+0x7fc/0x5020 [ 271.486259] ? __lock_is_held+0xb5/0x140 [ 271.490369] ? lock_acquire+0x1e4/0x540 [ 271.494389] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 271.499475] ? lock_release+0xa30/0xa30 [ 271.503488] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 271.508820] ? kvm_arch_dev_ioctl+0x610/0x610 [ 271.513360] ? preempt_notifier_dec+0x20/0x20 [ 271.517917] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 271.522799] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 271.527861] kvm_vcpu_ioctl+0x7b8/0x1300 [ 271.531966] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 271.537710] ? find_held_lock+0x36/0x1c0 [ 271.541811] ? find_held_lock+0x36/0x1c0 [ 271.545947] ? lock_downgrade+0x8f0/0x8f0 [ 271.550136] ? kasan_check_read+0x11/0x20 [ 271.554524] ? rcu_is_watching+0x8c/0x150 [ 271.558713] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 271.563179] ? __fget+0x414/0x670 [ 271.566692] ? match_held_lock+0x821/0x8d0 [ 271.570983] ? expand_files.part.8+0x9c0/0x9c0 [ 271.575684] ? kasan_check_write+0x14/0x20 [ 271.580039] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 271.585020] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 271.590767] do_vfs_ioctl+0x1de/0x1720 [ 271.594690] ? __lock_is_held+0xb5/0x140 [ 271.598783] ? ioctl_preallocate+0x300/0x300 [ 271.603239] ? __fget_light+0x2f7/0x440 [ 271.607258] ? fget_raw+0x20/0x20 [ 271.610854] ? __sb_end_write+0xac/0xe0 [ 271.614886] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 271.620468] ? fput+0x130/0x1a0 [ 271.623807] ? ksys_write+0x1ae/0x260 [ 271.627675] ? security_file_ioctl+0x94/0xc0 [ 271.632125] ksys_ioctl+0xa9/0xd0 [ 271.635619] __x64_sys_ioctl+0x73/0xb0 [ 271.639548] do_syscall_64+0x1b9/0x820 [ 271.643482] ? syscall_return_slowpath+0x5e0/0x5e0 00:13:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xa8aaaafffeaaaa10, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 271.648621] ? syscall_return_slowpath+0x31d/0x5e0 [ 271.653606] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 271.659008] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 271.663900] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 271.669118] RIP: 0033:0x455e29 [ 271.672351] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 271.691736] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 00:13:43 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:43 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x577) [ 271.699475] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 271.706795] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 271.714082] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 271.721372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 271.728862] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000052 00:13:43 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5407, &(0x7f0000000000)) 00:13:43 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x18, 0x22, 0x1, 0x0, 0x0, {0x4}, [@nested={0x4, 0xd}]}, 0x18}, 0x1}, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x40, 0x0) ioctl$LOOP_SET_CAPACITY(r2, 0x4c07) 00:13:43 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000580)={0xffffffffffffff9c}) getsockopt$inet6_buf(r3, 0x29, 0x6f, &(0x7f00000005c0)=""/13, &(0x7f0000000680)=0xd) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:43 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:43 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x577) 00:13:43 executing program 2 (fault-call:7 fault-nth:83): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 272.293787] FAULT_INJECTION: forcing a failure. [ 272.293787] name failslab, interval 1, probability 0, space 0, times 0 [ 272.305509] CPU: 0 PID: 14668 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 272.312962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.322334] Call Trace: [ 272.324963] dump_stack+0x1c9/0x2b4 [ 272.328706] ? dump_stack_print_info.cold.2+0x52/0x52 [ 272.333931] should_fail.cold.4+0xa/0x1a [ 272.338014] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 272.343139] ? kasan_kmalloc+0xc4/0xe0 [ 272.347038] ? kasan_slab_alloc+0x12/0x20 [ 272.351235] ? kmem_cache_alloc+0x12e/0x760 [ 272.355641] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 272.360585] ? kvm_mmu_load+0x21/0x10e0 [ 272.364571] ? vcpu_enter_guest+0x3aa6/0x6090 [ 272.369064] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 272.374091] ? graph_lock+0x170/0x170 [ 272.377892] ? do_syscall_64+0x1b9/0x820 [ 272.381975] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 272.387347] ? find_held_lock+0x36/0x1c0 [ 272.391409] ? __lock_is_held+0xb5/0x140 [ 272.395479] ? check_same_owner+0x340/0x340 [ 272.399811] ? rcu_note_context_switch+0x730/0x730 [ 272.404757] __should_failslab+0x124/0x180 [ 272.408993] should_failslab+0x9/0x14 [ 272.412794] kmem_cache_alloc+0x2af/0x760 [ 272.416969] ? alloc_pages_current+0x114/0x210 [ 272.421575] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 272.426526] mmu_topup_memory_caches+0x2fa/0x3a0 [ 272.431297] kvm_mmu_load+0x21/0x10e0 [ 272.435117] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 272.440663] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 272.445271] vcpu_enter_guest+0x3aa6/0x6090 [ 272.449771] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 272.454016] ? kvm_set_msr_common+0x26a0/0x26a0 [ 272.458708] ? vmx_vcpu_load+0xadf/0xff0 [ 272.462899] ? __lock_acquire+0x7fc/0x5020 [ 272.467141] ? vmx_vcpu_reset+0x1040/0x1040 [ 272.471465] ? graph_lock+0x170/0x170 [ 272.475280] ? __lock_acquire+0x7fc/0x5020 [ 272.479522] ? __lock_is_held+0xb5/0x140 [ 272.483583] ? lock_acquire+0x1e4/0x540 [ 272.487565] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 272.492592] ? lock_release+0xa30/0xa30 [ 272.496576] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 272.501864] ? kvm_arch_dev_ioctl+0x610/0x610 [ 272.506356] ? preempt_notifier_dec+0x20/0x20 [ 272.510950] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 272.515796] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 272.520829] kvm_vcpu_ioctl+0x7b8/0x1300 [ 272.524986] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 272.530696] ? find_held_lock+0x36/0x1c0 [ 272.534764] ? find_held_lock+0x36/0x1c0 [ 272.538836] ? lock_downgrade+0x8f0/0x8f0 [ 272.543072] ? kasan_check_read+0x11/0x20 [ 272.547215] ? rcu_is_watching+0x8c/0x150 [ 272.551360] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 272.555790] ? __fget+0x414/0x670 [ 272.559252] ? match_held_lock+0x821/0x8d0 [ 272.563612] ? expand_files.part.8+0x9c0/0x9c0 [ 272.568210] ? kasan_check_write+0x14/0x20 [ 272.572460] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 272.577418] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 272.583156] do_vfs_ioctl+0x1de/0x1720 [ 272.587056] ? __lock_is_held+0xb5/0x140 [ 272.591119] ? ioctl_preallocate+0x300/0x300 [ 272.595529] ? __fget_light+0x2f7/0x440 [ 272.599507] ? fget_raw+0x20/0x20 [ 272.602976] ? __sb_end_write+0xac/0xe0 [ 272.606986] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 272.612531] ? fput+0x130/0x1a0 [ 272.615901] ? ksys_write+0x1ae/0x260 [ 272.619712] ? security_file_ioctl+0x94/0xc0 [ 272.624134] ksys_ioctl+0xa9/0xd0 [ 272.627598] __x64_sys_ioctl+0x73/0xb0 [ 272.631483] do_syscall_64+0x1b9/0x820 [ 272.635454] ? finish_task_switch+0x1d3/0x870 [ 272.639954] ? syscall_return_slowpath+0x5e0/0x5e0 [ 272.644897] ? syscall_return_slowpath+0x31d/0x5e0 [ 272.649840] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 272.655221] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 272.660076] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 272.665382] RIP: 0033:0x455e29 [ 272.668560] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:44 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x2, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:44 executing program 0: ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r0, 0x5419, &(0x7f0000000000)) 00:13:44 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x577) 00:13:44 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f0000000100)={0xf, 0x184, 0xfa00, {r2, 0xd}}, 0xb) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) read(r1, &(0x7f0000000180)=""/4, 0x4) getpeername$packet(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f00000001c0)=0x14) bind$xdp(r1, &(0x7f0000000200)={0x2c, 0x0, r3, 0x6, r1}, 0x10) [ 272.687877] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 272.695766] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 272.703040] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 272.710310] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 272.718050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 272.725337] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000053 00:13:44 executing program 0: ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r0, 0x5419, &(0x7f0000000000)) 00:13:44 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3100000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:44 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x58e) 00:13:44 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:44 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfe80, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:45 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5429, &(0x7f0000000000)) 00:13:45 executing program 2 (fault-call:7 fault-nth:84): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:45 executing program 0: ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r0, 0x5419, &(0x7f0000000000)) 00:13:45 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:45 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x58e) 00:13:45 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:45 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x6, 0x400) getsockopt$IPT_SO_GET_REVISION_TARGET(r4, 0x0, 0x43, &(0x7f00000000c0)={'IDLETIMER\x00'}, &(0x7f0000000140)=0x1e) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$PPPIOCGL2TPSTATS(r2, 0x80487436, &(0x7f0000000000)="9931d261d3ebe62c00733bcbd001cddb216176f13a77eb9c4ccc9ee4628cc5e336245d74623508294bcc6d2aefd92f2aaf54102e4b126a4e10dacbf35448df88d4b51ba4faee78c63c91d2fe243f34a8f7e6952601e498d96ca32e91530119759d4caff74025076151e4d9f4e3ae23de7b87401b581a051a5182c422") 00:13:45 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc\x00', 0x80, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x7003, &(0x7f0000000080)) getsockopt$inet_dccp_int(r1, 0x21, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4) read(r1, &(0x7f0000000180)=""/4, 0x4) sendmsg$nfc_llcp(r1, &(0x7f0000000240)={&(0x7f00000001c0)={0x27, 0x1, 0x1, 0x7, 0x0, 0x4, "3e96dffe577a1013e6fbcf787d1bb38904c081125ac62c8bacd2ac55a17815a6e5a7af687297fa1a15dc12ef4e9a85d2b29248fb57516551b19b85902f0eff", 0x29}, 0x60, &(0x7f0000001500)=[{&(0x7f00000002c0)="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", 0xfd}, {&(0x7f00000003c0)="4846d6794528882cacc88cf162ead989d4580158aec1af640bbeec545aa6cb78c6092dfc09fb6f57e56652b55e55f16b2cd05aef8bd9ef4fa4af2466c68d2137417f0444316c82d976794138ca6c9ef3fd45905e3c73a656be6cb58174e70a2f80dcbc4f884344b95de0bd6f778844315c97b9c8cd790be68953dd34dd7aa13a01f553f0378db17e8bbbc73e6554ce7f6db5b842ada684a32490660ab041f49982cd0cd5efecd4ab", 0xa8}, {&(0x7f0000000480)="8f1abd961c5cbae9185ac2572c99eb6443cc63f40c0871d84ca9ac8904499494a5e2e74fd1740f4562c9010d4889057a6359863b855510216bfc4af197e07b6d7f3ae44a4269c9", 0x47}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000140)="a9068dfe8d36249fd049946b16e5806392497954cd24e0dd8d8764fd84", 0x1d}], 0x5, &(0x7f0000001580)={0x78, 0x11f, 0x100, "47fc1d1451078534487b250b52c728b16f7b08ea5d29ebb68ce6152284dd96bf0dd001d811aed05a5a7fbe8599cde93c9db6276c6ab34ad2a92cc70d11eec7d8dd886f42237bb901d9c551de98ce6cf7d6ba4a9649f476b667661d546c94ccc9bff9"}, 0x78, 0x4001}, 0x80) ioctl$KDSIGACCEPT(r1, 0x4b4e, 0x12) write$P9_RSYMLINK(r1, &(0x7f00000000c0)={0x14, 0x11, 0x1, {0x57, 0x2, 0x4}}, 0x14) 00:13:45 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:45 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:45 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf0ffffffffffff, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:45 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x58e) [ 273.962784] FAULT_INJECTION: forcing a failure. [ 273.962784] name failslab, interval 1, probability 0, space 0, times 0 [ 273.974507] CPU: 1 PID: 14719 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 273.981945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 273.991483] Call Trace: [ 273.994151] dump_stack+0x1c9/0x2b4 [ 273.997845] ? dump_stack_print_info.cold.2+0x52/0x52 [ 274.003108] should_fail.cold.4+0xa/0x1a [ 274.007255] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 274.012619] ? kasan_kmalloc+0xc4/0xe0 [ 274.016558] ? kasan_slab_alloc+0x12/0x20 [ 274.020760] ? kmem_cache_alloc+0x12e/0x760 [ 274.025286] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 274.030290] ? kvm_mmu_load+0x21/0x10e0 [ 274.034435] ? vcpu_enter_guest+0x3aa6/0x6090 [ 274.039004] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 274.044077] ? graph_lock+0x170/0x170 [ 274.047955] ? do_syscall_64+0x1b9/0x820 [ 274.052070] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.057531] ? find_held_lock+0x36/0x1c0 00:13:45 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x599) 00:13:45 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:45 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfe800000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 274.061666] ? __lock_is_held+0xb5/0x140 [ 274.065784] ? check_same_owner+0x340/0x340 [ 274.070148] ? rcu_note_context_switch+0x730/0x730 [ 274.075124] __should_failslab+0x124/0x180 [ 274.079404] should_failslab+0x9/0x14 [ 274.083247] kmem_cache_alloc+0x2af/0x760 [ 274.087467] ? alloc_pages_current+0x114/0x210 [ 274.092107] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 274.097108] mmu_topup_memory_caches+0x2fa/0x3a0 [ 274.101932] kvm_mmu_load+0x21/0x10e0 [ 274.105825] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 00:13:45 executing program 4: r0 = socket(0x1b, 0x0, 0x7) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff7, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000001000df000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012000500010069703667726500000000000000060000"], 0x38}, 0x1}, 0x0) sched_yield() pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) r3 = shmat(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil, 0x1000) shmdt(r3) rt_sigprocmask(0xfffffffffffffffc, &(0x7f0000000240)={0x6}, &(0x7f0000000200), 0x8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'veth0_to_bond\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000280)={@remote={0xfe, 0x80, [], 0xbb}, 0x29, r4}) ioctl$TUNGETVNETHDRSZ(r2, 0x800454d7, &(0x7f00000000c0)) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 274.111424] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 274.116595] vcpu_enter_guest+0x3aa6/0x6090 [ 274.120976] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 274.126003] ? kvm_set_msr_common+0x26a0/0x26a0 [ 274.130725] ? vmx_vcpu_load+0xadf/0xff0 [ 274.134844] ? __lock_acquire+0x7fc/0x5020 [ 274.139360] ? vmx_vcpu_reset+0x1040/0x1040 [ 274.143730] ? graph_lock+0x170/0x170 [ 274.147594] ? __lock_acquire+0x7fc/0x5020 [ 274.151931] ? __lock_is_held+0xb5/0x140 [ 274.156051] ? lock_acquire+0x1e4/0x540 [ 274.160082] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 274.165156] ? lock_release+0xa30/0xa30 [ 274.169205] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 274.174528] ? kvm_arch_dev_ioctl+0x610/0x610 [ 274.179173] ? preempt_notifier_dec+0x20/0x20 [ 274.183746] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 274.188617] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 274.193685] kvm_vcpu_ioctl+0x7b8/0x1300 [ 274.197811] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 274.203591] ? find_held_lock+0x36/0x1c0 [ 274.207786] ? find_held_lock+0x36/0x1c0 [ 274.211907] ? lock_downgrade+0x8f0/0x8f0 [ 274.216115] ? kasan_check_read+0x11/0x20 [ 274.220289] ? rcu_is_watching+0x8c/0x150 [ 274.224465] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 274.228925] ? __fget+0x414/0x670 [ 274.232436] ? match_held_lock+0x821/0x8d0 [ 274.236711] ? expand_files.part.8+0x9c0/0x9c0 [ 274.241340] ? kasan_check_write+0x14/0x20 [ 274.245644] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 274.250626] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 274.256406] do_vfs_ioctl+0x1de/0x1720 [ 274.260352] ? __lock_is_held+0xb5/0x140 [ 274.264455] ? ioctl_preallocate+0x300/0x300 [ 274.268899] ? __fget_light+0x2f7/0x440 [ 274.272931] ? fget_raw+0x20/0x20 [ 274.276436] ? __sb_end_write+0xac/0xe0 [ 274.280465] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 274.286231] ? fput+0x130/0x1a0 [ 274.289556] ? ksys_write+0x1ae/0x260 [ 274.293414] ? security_file_ioctl+0x94/0xc0 [ 274.297875] ksys_ioctl+0xa9/0xd0 [ 274.301375] __x64_sys_ioctl+0x73/0xb0 [ 274.305329] do_syscall_64+0x1b9/0x820 [ 274.309273] ? finish_task_switch+0x1d3/0x870 [ 274.313810] ? syscall_return_slowpath+0x5e0/0x5e0 [ 274.318793] ? syscall_return_slowpath+0x31d/0x5e0 [ 274.323816] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 274.329238] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 274.334132] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.339439] RIP: 0033:0x455e29 [ 274.342642] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 274.362062] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 274.369809] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 274.377102] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 274.384400] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 274.391697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 274.398997] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000054 00:13:46 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5406, &(0x7f0000000000)) 00:13:46 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:46 executing program 6: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x40, 0x0) mkdirat$cgroup(r0, &(0x7f00000000c0)='syz0\x00', 0x1ff) syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaa0180c200000008004500001c0000000000329078ac1414bbac1414aa00009078e000000100"], &(0x7f0000000080)={0x0, 0x0, [0x0, 0x0, 0xfffffffffffffffe, 0x3f4]}) 00:13:46 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:46 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x599) 00:13:46 executing program 4: r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x105000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000080)={0x3, [0x0, 0x0, 0x0]}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={r1, 0x1}, 0x8) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000180)="36303b4458bcaf5fd894bc74f1fe5eb4fc06cf9a04710665abaa9f9a6e39167d7b2fca28e5cf72330e7db99e930779a3e68ece341051e34b86ff16fc306abc9db8f7ba36e220d2dff2e1bffe46c0d57d5d6b75aaa79098b0178aa3aa2271baf6603c55686e388125ad7cef7b160177ee87f206e1cfedcbde3b714b78052b241c6143b8c651c593772713ee2532ee9f50d18e08aee80f5aec8b8067bf4d19d23d38567e0215db097b0e000e7599ee758d5c35", 0xb2}, {&(0x7f0000000500)="2a982f36de964dcc22a7958f5b235132f8335ade0c87c50e06056c29c3627f549912c6f0ec5f484f2e79a49273c1436b1b141ff0cb5b4e3837bfe3ea983deacf96b50af5cdac0d95936f390865d7ce36a9b9ebb1e654ddbae9e988d5679169832860b6e0ddca90c669defb563ef819287c3b30d68d4daeb716153448ab1450be8b072986d194d2089254c80b285ebd7caf5fb634504e513547540ba5ecc213cb2936d4804b9914a07467d69affaae347ac0742f01ec124afa5536a743f2eb7c8ee25d94aa0f80989c6e8b2eaf5ec378dac1aeaf8268c012966bc4fe7c7", 0xdd}], 0x2, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0xb69, 0x2081) writev(r3, &(0x7f00000004c0)=[{&(0x7f0000000040)="a7e00a", 0x3}, {&(0x7f0000000380)="bfc8f42cc2eb3ba15b299f26b1e6e45225a22af55724c09a7ae24a00e929436bd9eb19a4243c5f627ec3f598d7e0fb87c9b6e8340bca641711d0e42a0c00472ab68ad65cbf34a317b014529a062a0b02864e0d5d3af42ff92dd30dca1922486ae5e6099b553948f40a385a584cc6c52587d87e6a3a4f9b7ec29266fb08620c3d481e5012e3f96540e49bf5be62664cf2e19bcf566e6e1de6bb489bb4c7f00ebf78219b60739d961276907f91a235869e464913ae993bb8be5932fe37a2d4b45b7e3caee6df1f8ae49310103b1223de6756cba69640874a3e3dd15bc25013fa9774c5e2e990f4b331beeea4", 0xeb}], 0x2) 00:13:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x10000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:46 executing program 2 (fault-call:7 fault-nth:85): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 274.866548] FAULT_INJECTION: forcing a failure. [ 274.866548] name failslab, interval 1, probability 0, space 0, times 0 [ 274.878262] CPU: 0 PID: 14779 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 274.885688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 274.895089] Call Trace: [ 274.897738] dump_stack+0x1c9/0x2b4 [ 274.901514] ? dump_stack_print_info.cold.2+0x52/0x52 [ 274.907154] should_fail.cold.4+0xa/0x1a [ 274.911307] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 274.916840] ? kasan_kmalloc+0xc4/0xe0 [ 274.920774] ? kasan_slab_alloc+0x12/0x20 [ 274.924962] ? kmem_cache_alloc+0x12e/0x760 [ 274.929330] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 274.934310] ? kvm_mmu_load+0x21/0x10e0 [ 274.938396] ? vcpu_enter_guest+0x3aa6/0x6090 [ 274.943083] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 274.948586] ? graph_lock+0x170/0x170 [ 274.952526] ? do_syscall_64+0x1b9/0x820 [ 274.956670] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.962091] ? find_held_lock+0x36/0x1c0 [ 274.966202] ? __lock_is_held+0xb5/0x140 [ 274.970332] ? check_same_owner+0x340/0x340 [ 274.974687] ? rcu_note_context_switch+0x730/0x730 [ 274.979646] __should_failslab+0x124/0x180 [ 274.983906] should_failslab+0x9/0x14 [ 274.987742] kmem_cache_alloc+0x2af/0x760 [ 274.991917] ? alloc_pages_current+0x114/0x210 [ 274.996536] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 275.001478] mmu_topup_memory_caches+0x2fa/0x3a0 [ 275.006256] kvm_mmu_load+0x21/0x10e0 [ 275.010072] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 275.017124] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 275.021739] vcpu_enter_guest+0x3aa6/0x6090 [ 275.026197] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 275.030486] ? kvm_set_msr_common+0x26a0/0x26a0 [ 275.035205] ? vmx_vcpu_load+0xadf/0xff0 [ 275.039283] ? __lock_acquire+0x7fc/0x5020 [ 275.043531] ? vmx_vcpu_reset+0x1040/0x1040 [ 275.047890] ? graph_lock+0x170/0x170 [ 275.051709] ? __lock_acquire+0x7fc/0x5020 [ 275.055974] ? __lock_is_held+0xb5/0x140 [ 275.060062] ? lock_acquire+0x1e4/0x540 [ 275.064069] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 275.069121] ? lock_release+0xa30/0xa30 [ 275.073109] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 275.078417] ? kvm_arch_dev_ioctl+0x610/0x610 [ 275.082919] ? preempt_notifier_dec+0x20/0x20 [ 275.087452] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 275.092841] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 275.097885] kvm_vcpu_ioctl+0x7b8/0x1300 [ 275.101962] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 275.107695] ? find_held_lock+0x36/0x1c0 [ 275.111781] ? find_held_lock+0x36/0x1c0 [ 275.115890] ? lock_downgrade+0x8f0/0x8f0 [ 275.120066] ? kasan_check_read+0x11/0x20 [ 275.124238] ? rcu_is_watching+0x8c/0x150 [ 275.128446] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 275.132879] ? __fget+0x414/0x670 [ 275.137989] ? match_held_lock+0x821/0x8d0 [ 275.142334] ? expand_files.part.8+0x9c0/0x9c0 [ 275.146929] ? kasan_check_write+0x14/0x20 [ 275.151261] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 275.156235] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 275.162054] do_vfs_ioctl+0x1de/0x1720 [ 275.165956] ? __lock_is_held+0xb5/0x140 [ 275.170032] ? ioctl_preallocate+0x300/0x300 [ 275.174573] ? __fget_light+0x2f7/0x440 [ 275.178564] ? fget_raw+0x20/0x20 [ 275.182037] ? __sb_end_write+0xac/0xe0 [ 275.186034] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 275.191586] ? fput+0x130/0x1a0 [ 275.194875] ? ksys_write+0x1ae/0x260 [ 275.198698] ? security_file_ioctl+0x94/0xc0 [ 275.203126] ksys_ioctl+0xa9/0xd0 [ 275.207454] __x64_sys_ioctl+0x73/0xb0 [ 275.211351] do_syscall_64+0x1b9/0x820 [ 275.215264] ? finish_task_switch+0x1d3/0x870 [ 275.219790] ? syscall_return_slowpath+0x5e0/0x5e0 [ 275.224747] ? syscall_return_slowpath+0x31d/0x5e0 [ 275.229689] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 275.235077] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 275.240050] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.245241] RIP: 0033:0x455e29 [ 275.248441] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00:13:46 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x4) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000080)={0x2000}) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x66) sendmsg$nl_generic(r0, &(0x7f0000005000)={&(0x7f0000000040)={0x10, 0xf0ffffff00000f00}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x48, 0x14, 0x207, 0x0, 0x0, {0x2, 0xf0ffff, 0x600}, [@nested={0x0, 0x0, [@typed={0x0, 0x0, @fd}]}]}, 0x24c}, 0x1}, 0x0) 00:13:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x500, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:46 executing program 6: getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x400001ff}, &(0x7f000000affc)=0x20) sigaltstack(&(0x7f0000001000/0x1000)=nil, &(0x7f0000000ff8)) sigaltstack(&(0x7f0000001000/0x1000)=nil, &(0x7f0000000000)) sigaltstack(&(0x7f0000001000/0x4000)=nil, &(0x7f0000000040)) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0xc0000, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000180)={0x7, 0x69bb, 0x6, 0x4}, 0x10) pipe(&(0x7f0000000080)={0xffffffffffffffff}) setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x7ff, 0x7, 0x400, 0x4}, {0x1a51, 0x9, 0x6, 0xf3db}]}, 0x10) 00:13:46 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x599) 00:13:46 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) [ 275.267724] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.275700] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 275.282970] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 275.290252] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 275.297528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 275.304822] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000055 00:13:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x7, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:46 executing program 6: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = gettid() process_vm_writev(r1, &(0x7f0000000580)=[{&(0x7f0000000040)=""/58, 0x3a}, {&(0x7f0000000080)=""/228, 0xe4}, {&(0x7f0000000180)=""/81, 0x51}, {&(0x7f0000000200)=""/94, 0x5e}, {&(0x7f0000000280)=""/186, 0xba}, {&(0x7f0000000340)=""/79, 0x4f}, {&(0x7f00000003c0)=""/113, 0x71}, {&(0x7f0000000440)=""/146, 0x92}, {&(0x7f0000000500)=""/81, 0x51}], 0x9, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/96, 0x60}], 0x1, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000700)='/dev/audio\x00', 0x400000, 0x0) getsockopt$XDP_STATISTICS(r2, 0x11b, 0x7, &(0x7f0000000740), &(0x7f0000000780)=0x18) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f00000007c0)={'team_slave_1\x00', {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}) recvfrom$inet(r2, &(0x7f0000000800)=""/70, 0x46, 0x40000000, &(0x7f0000000880)={0x2, 0x4e21, @rand_addr=0x2b623524}, 0x10) connect$unix(r2, &(0x7f00000008c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r0) getpeername$packet(r2, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000a40)=0x14) ioctl$TUNSETIFINDEX(r2, 0x400454da, &(0x7f0000000a80)=r3) ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000ac0)) ioctl$EVIOCSABS0(r2, 0x401845c0, &(0x7f0000000b00)={0xff, 0x790d3bf6, 0x4, 0x1, 0x100000000, 0x100000000}) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000b40)={0x29, @loopback=0x7f000001, 0x4e23, 0x0, 'fo\x00', 0x20, 0x2, 0x68}, 0x2c) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000b80)={0x0, 0x5a8, 0x4, [0xf05, 0x2, 0x10001, 0x3]}, &(0x7f0000000bc0)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000c00)={0x6, 0x8, 0x7f, 0x2, r4}, 0x10) getsockopt$bt_l2cap_L2CAP_CONNINFO(r2, 0x6, 0x2, &(0x7f0000000c40), &(0x7f0000000c80)=0x6) write$vnet(r2, &(0x7f0000001dc0)={0x1, {&(0x7f0000000cc0)=""/4096, 0x1000, &(0x7f0000001cc0)=""/211, 0x1, 0x7}}, 0x68) ioctl(r2, 0x0, &(0x7f0000001e40)="18c24a951a238757fafd5d9f443c48ff3428afd48b2cbf2719a9960f5dd1be3f7fa34136220d3be9fe1eff14e5396826e89c58cef05980248e96ccae3cdaa9f5f8e4ea160dd64de66bb4c21bbe087f1e07a60e789c76") syz_mount_image$vfat(&(0x7f0000001ec0)='vfat\x00', &(0x7f0000001f00)='./file0\x00', 0x71eb, 0x2, &(0x7f0000002080)=[{&(0x7f0000001f40)="c5d1b83d94bbba3498d7431790c2d2ff30ca42762d3d67470708d6cfd4560c93ae7bcf5213e1f7b64815018434e65c384e20d7aebc356d6023ce21d7b830414e35e30ae285cbbaec1e73b09c3d0d8bdc8f96b6545531564603ce5e1846d7cf3d8f3ec6bac6c81575a63e0a0e66b97c29dc8382db1ba90f4ae0ff2cb677291bbd39779a4c0979badc0ee4d710852c181c4b3aecf949eadc4aeac0675469f8f7aa80fb3091b58bed6ae1697e8941dc", 0xae, 0x1}, {&(0x7f0000002000)="c783ca9b45076df05bbe006086bf36759eded82349d2276eb18eb128b6e89680d869218d4d9f7305e2522ed0b2532e5869b50885226b677b503d430a508bbe712b162720868061707ef0651a63b5de2c6bc32ba43291d167a42db57ce791f23453612c0a63ea99c813738c8f27a942831e3c1d9e46f94c39", 0x78, 0x3f}], 0x2000000, &(0x7f00000020c0)={[{@utf8no='utf8=0', 0x2c}, {@uni_xlateno='uni_xlate=0', 0x2c}]}) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000002100)) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000002140)="a9819261cbf4883e05193e09c2a8ca86", 0x10) ioctl$EVIOCGEFFECTS(r2, 0x80044584, &(0x7f0000002180)=""/125) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000002200)=""/96) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f0000002280)={0x6, 0x7e, 0x3, 0x0, 0x0, [], [], [], 0x9c, 0x4}) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r2, 0xc1205531, &(0x7f00000023c0)={0x6, 0x3fc, 0x0, 0x3, [], [], [], 0xe5a1, 0x1000, 0x6, 0x3, "f160f91a068be5cb348ce20430bd0423"}) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, &(0x7f0000002500)) timerfd_create(0x6, 0x80800) setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000002540)={@in6={{0xa, 0x4e21, 0x80000001, @loopback={0x0, 0x1}, 0x8}}, 0x0, 0x6, 0x0, "9603cc0db3b6400f325a16c7933ede374f872e51719590e317d7caf8660f35dc61863ffa868ef64a7c383348c5c3d0dcf11b5847631a088844f83ab1164dda388c58734f5006b3fdecab6d8516719ddd"}, 0xd8) 00:13:46 executing program 4: r0 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x88040) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f00000000c0)) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) write$binfmt_elf32(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='X'], 0x1) eventfd2(0x1, 0x80001) ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000000140)=0x100000035) [ 275.490527] FAT-fs (loop6): invalid media value (0x2d) [ 275.496190] FAT-fs (loop6): Can't find a valid FAT filesystem [ 275.600401] FAT-fs (loop6): invalid media value (0x2d) [ 275.605918] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:47 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5415, &(0x7f0000000000)) 00:13:47 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:47 executing program 2 (fault-call:7 fault-nth:86): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:47 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x59f) 00:13:47 executing program 4: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000c26fec)={0x1, 0x8, 0x5, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) clock_nanosleep(0x6, 0x0, &(0x7f0000000000)={0x0, 0x1c9c380}, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r0, &(0x7f0000000000), &(0x7f0000000140)=""/144}, 0x18) 00:13:47 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xa, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:47 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002140)=[{{&(0x7f0000000080)=@ax25, 0x80, &(0x7f0000000440)=[{&(0x7f0000000100)=""/177, 0xb1}, {&(0x7f00000001c0)=""/181, 0xb5}, {&(0x7f0000000280)=""/202, 0xca}, {&(0x7f0000000380)=""/179, 0xb3}], 0x4, &(0x7f0000000480)=""/89, 0x59}, 0x80000001}, {{&(0x7f0000000500)=@nl=@proc, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)=""/178, 0xb2}, {&(0x7f0000000640)=""/31, 0x1f}], 0x2, &(0x7f00000006c0)=""/139, 0x8b, 0x6}, 0x4}, {{0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000000780)=""/32, 0x20}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/245, 0xf5}, {&(0x7f00000018c0)=""/17, 0x11}], 0x4, &(0x7f0000001940)=""/121, 0x79, 0x520}, 0xfff}, {{&(0x7f00000019c0)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast2}}}, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001a40)=""/205, 0xcd}, {&(0x7f0000001b40)=""/216, 0xd8}, {&(0x7f0000001c40)=""/29, 0x1d}, {&(0x7f0000001c80)=""/145, 0x91}, {&(0x7f0000001d40)=""/215, 0xd7}], 0x5, &(0x7f0000001ec0)=""/238, 0xee, 0x3ff}, 0x10000}, {{&(0x7f0000001fc0)=@in={0x0, 0x0, @multicast2}, 0x80, &(0x7f0000002100)=[{&(0x7f0000002040)=""/159, 0x9f}], 0x1, 0x0, 0x0, 0x3f}, 0x3}], 0x5, 0x2, &(0x7f0000002280)={0x77359400}) getsockopt$inet_dccp_int(r1, 0x21, 0x1, &(0x7f00000022c0), &(0x7f0000002300)=0x4) capset(&(0x7f00001e8ff8)={0x19980330}, &(0x7f0000032fe8)) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000000)=""/5, &(0x7f0000000040)=0x5) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000002340)={0x0, 0x2000000000}, &(0x7f0000002380)=0x8) getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000002480), &(0x7f00000024c0)=0x8) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000023c0)={r2, 0x4f, "eff1dafc66885c6ac6e734a4506944c5d37e61e20ea9c43adf3932fbba2e7493917edd3007bbfa3ff85179c880b3ccc7a1a2af65ba610da7dd66d9962a740aa7973fd8564f5ce970029d9baf15edab"}, &(0x7f0000002440)=0x57) 00:13:47 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x10000, 0x800) ioctl$EVIOCSKEYCODE(r3, 0x40084504, &(0x7f0000000040)=[0x8, 0x80000000]) 00:13:47 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(0xffffffffffffffff, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:47 executing program 6: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x102d}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x5, 0x8, &(0x7f0000000000)=@raw=[@call={0x85, 0x0, 0x0, 0x4d}, @alu={0x7, 0x0, 0xc, 0x3, 0x7, 0x100, 0x10}, @initr0={0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x7}, @exit={0x95}], &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00001a7f05)=""/251, 0x0, 0x0, [], 0x0, 0x2}, 0x48) 00:13:47 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162ade"], 0x59f) 00:13:47 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x800000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:47 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0x11, 0x3, 0x0) bind$packet(r1, &(0x7f0000000480)={0x11, 0x3, 0x0, 0x1, 0x0, 0x6, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}, 0x14) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x2}, 0x4) r2 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x4}, 0x1c) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='bpf\x00', 0x900004, &(0x7f0000000d80)=ANY=[@ANYBLOB="6d6f64653d30303030303030303030303030303030303030303031302c6d6f64653d30303030303030303030303030303030303030303430302c6d6f64653d30303030303030303030303030303030303030303030352c6d6f64653d3030303030303030303030091de80fb0e94f81a43030303030303030303030372c00"]) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000000c0)={0x0, @dev, @loopback}, &(0x7f0000000200)=0xc) bind$packet(r1, &(0x7f0000000240)={0x11, 0xff, r3, 0x1, 0x1000, 0x6, @random="b26ced9abe5c"}, 0x14) sendmmsg(r2, &(0x7f0000001740)=[{{&(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e22, @loopback=0x7f000001}, 0x1, 0x1}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000340)="4dbaca9647f46db3e2117f3dafb5beca5e204a3982186eac3d9749778377e2e1e7701ca1ecd171cabddf68e9567153e488389d9530527f581f502d19082070441b20c6db6e9462efc4b3b1b3010d66906a3855bddae3d88740fef4b5c0558ca1780c13f2f332c5f33a2e1f6915f611e3236d302aaad742a70eb68d2f5577ae6a0cd3b0c1c06a3c41e46a92fddbc2a737408293ff13540622", 0x98}, {&(0x7f00000004c0)="d94bac3416150c14d1be2695332436ba91a7552f9aba34d7acade655095a14d4e6cfa983ba6ed33fab2fcd3dba7377a5ce77e49a295acab9f7c223ea89fa3b497672a81d047cfaf3c9e2a4c1e62a7d9b622af1594ab3f7373fd0a795c3b6be4972d0869fc746caf24c8843a0dab4cfa60919c24b3434433002769e89e48c7506c025901929fef915e8395f5b630fa54621105f3661d7ce1efdc8bc", 0x9b}, {&(0x7f0000000580)="9757be09cfa5a5581a0db3e4241d730229fe3505f2d24302b5640bd722980beccfc5dff1ad7b6b2f30723581ed06daa58155a180f4a81a4af5dc4a0b1984827e59e41d596ca0993b91ba67d7ee33dae3a5aef5d00e4fc804c783ff32ea3724ae88334a52cd2633d6618be7816d5d8b93f6a1006db949f178294bd36fd34d3c3913767c29f228dd2fb6b8664e281181dbfad93e24f155502d0ecafbee4e7b22c2dcb74606ed8ba7196881afb72cd87973d69b4f37c79d25ec2e7d22645420fa4b9326908058bc46b753", 0xc9}, {&(0x7f0000000680)="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", 0xfb}], 0x4, &(0x7f0000000780)=[{0x98, 0x0, 0x3, "4db838d5875700ec2ad5a84bfe32766b8fca75b2ef70fbb4dc19002c111c4cc5958b5490441739e98efa4a3ca5b205b2c8c14442c8e5ddf9c0d232564380e2c0c6cc67d50b9a9fc611dabf0e721bd9050b46b1773cb9457829e8f303515a3a783a9cbd53c6c13c1e8172a440a8fa9134d5a26aadbb8c382fa339f6ce5f69842c2a"}, {0xfffffffffffffda3, 0x6, 0x8001, "cfb38da4fa411bac55360d8b78ae7c197b43dc3238fbcee11d3274712cc06c73ac6a6ad9522d9279be0abc37771aceaa35f6b76875768a5e485acb703b42784ae5846c14909a0286d824ca7bb9fbd8c4d4e3f8d7df8175bd436ccb3e3a1565f4d3674096f199176a1586936a416c830b5614d53d58e02fe4d574de87ccb1222ec7236796fe77aa60b3b60eb95379feb9cdda2c4fa9b4bbca021d7fc6afca677b4ed4f8030b9c78df"}], 0x150, 0x20000004}, 0x1f}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000900)="e167b4135b1c252652518e1309514724241bc3eec8c17684e829c9d6bcaa14b367041e57b34988bd56dc9f4af755e745aa32e4963fa79a2dcc4c1f7adc066f4c4b0eba59417f55ba9086a394ee690eecff6309a8fdb9b84018cb16756185ebdf0dab036da9f6385efba025d86ed5c8765be9f882e49fcedf82786b384b1e6ecff5b3f5980df5e71ed3", 0x89}, {&(0x7f00000009c0)="dad0088d7af6e9458d3168273b624033c1a461974ae07956e994d3b503197707e6eeb3ef5ba57c508db48815b6e48ee7d97c7cefedf2f6dac82c4ce6c8d44269e7cbd30d0e3eba696515e692142941f896a82ce5b69299740931a3e472fe0cf6c5deb6172f24cfbe5761416c792033b17b3f4d4f7e281217b869d04610a6025270fb179be38596a2ad56aafdb011a5701061c1891dac7b1caf199e6ac1831a9f3466861fc6a2d800d234cc49b4ce722864df83aa7789c16ccd2439f2", 0xbc}, {&(0x7f0000000a80)="7f51d1429d4ab11431ecb41a13b1acfd1069635bbad0e3f89a02d0b9d879c6b333a51c80a837621cc7f17b9792ea3bb055da9d120b931c3c1c25170456430f877d09a00eed881b8a81eb243b46ebb57e3da5e9040ab805b5c44c0fde9429d00a16ced8bbe67c439f1787e2614350cf7f5c53391ee982d178d7f1c1b974f488634ff8c12caa0e69acfdb3113f471a91fdcbf9d25c415d6c579986d9a0575fddfaaead0c27432f6c8fb764f0c22d7ba946e205cda4602cd472919afc9277a7604d8773486cd965ba93aea582f9d6545267bad78f", 0xd3}, {&(0x7f0000000b80)="4680b9fa75297908cd2b78340c060fd86bead06289d602929c238e5e47efde1a42eac9c057c682ff34c502a36a2c707bfb8aafe74127656a5f158cec08f3d242262c18c94547d13f3a04fd8c2472b5a3dff5ffbb89cb922f5d61f07c0a61c7945b9f673a1ea4c5204f4018509fd2f3fa503e4f21b365be9e84105ba6f7e6a67d39d42945db2ca491007c3c21d1935212f6b869bf6c4ac997d5429b218b305ea7c58aefa28430d89aa24c6fa435c20fe760ddba715ad66087537600cf8743df9a79041ca195c0062666eeb1baa6c9daeabc54559c26b742c892c21e2d", 0xdc}, {&(0x7f0000000c80)="6dbf8d10e6e6a0f9c4783195214dc9f38194bbd151c21e4f84a72e8cef3461efc45cc658b16e76d2cedf9e2994d1a2a363d6eb853b23608a100c1df66d71cbb533f58ffe83456cbb79e7059b30842325a5f5", 0x52}], 0x5, &(0x7f0000001840)=ANY=[@ANYBLOB="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"], 0x180, 0x20040040}, 0x3}, {{&(0x7f0000000f00)=@un=@abs={0x0, 0x0, 0x4e20}, 0x80, &(0x7f0000000f80)=[{&(0x7f0000000440)="80a205a034", 0x5}], 0x1, 0x0, 0x0, 0x40000}, 0x8}, {{&(0x7f0000000fc0)=@nfc={0x27, 0x1, 0x2, 0x1}, 0x80, &(0x7f0000001240)=[{&(0x7f0000001040)="f016126a3ce04961356a62076e1905fde9f6bcca4b593185ec759c21ae34bf651c63d2fe75f3d0ac9ea19cde61b855273795cf3ee120a60419e45f17ef3060632bd52813d6e113ea2586dd81d722569a577eeaa21598df44793fc874330845136cebb28772470456e2faa81a8ab1984729d45c41a41b7e15a308515f3c3ffa3e5bc0e849362bfb491519791f7593b36492d2fbccd62a0207c2f6fcc1b567da4b6ca8a1ed9dacd75ab66c533aa2510461e82485d5918babd689367ecaf9cc8ce0c8e6e4f374c3e862eddb01bd05dde1a19cabbaa357e0028ee84f9a24c505aa26364c7991b88911147ea21e46", 0xffffffffffffffe8}, {&(0x7f0000001140)="deb6f18becfb33add829c2f6f21131b62f57c171d2b3f8e20ead85e4f87309", 0x1f}, {&(0x7f0000001180)="f926740741b943f6445675c0a004fbbf8a2a3819b2b89ec5c1ab0fb8fbaa2474fc71f5f9dcdfc6d4eec8616473310302986f0538d3dbdc012f644688f6f2e33bd0f95d3ede175cead9bb2c79b9660278fa452b11da142e3a8c49c5ab60110cf54b3ea5d6b6b499b4cd581e0ff0cb7c271f2f07d8c2764d5e01ed678181f01827f0ccf593adbc8c907b002f02eabb6a21576477933e0ff4ebff07a366e6d95982", 0xa0}], 0x3, &(0x7f0000001280)=[{0xf8, 0x115, 0xffff, "85218757296ef64f9189df3080bae7ce90d638886c4bc45fcc50c67dfca983fe18e87f8c0e958d45bc1fd394eba223a7840481b4a93ec69ee25e467cb6be1ff27c06b8149bc6e9f3d49c7cbbc2fad4bb23f101c7e2be754edc4044a41f2588d18f54108bef1bdb8eacd8c4fb6532a8627afde2008f5c4aafa41702112a2f4dfb3759d104746761d3451fcdb1231a26998a467762f83de974cf2ce60cc77bbe60be1f431d33e7d26bff62f001f55c3346b42602e6e75995d17111af10a34ba98446536ef5fd70a821a35eb5ff45bae31c5278e54c7f71b2517b53"}, {0x20, 0x117, 0x0, "120579d54e1aa9d6ef39653e"}, {0x108, 0x10c, 0x5, "ed7e4a11a8770832baec961e69b12b86b09a6a109e8338d219230e8a1594495495fb8a7c911b4c758d9d94542b5f23c149d2d38505dade7c4ec4fc679029c87581894ffa013b71d4ef4c8fcb00cb82cb524749cbc9063d37df959275d39c8261af37bebd1d10cd0384e79c57ef79ebfe4776068a6077a3aab0b52086b5e2253e8d1ebcba76f99f0147ef7b296696a2ee0d5ddc2524fa4fc316a51e912a0790a0651cfc3547102a6fd502818a6ef6a0ee4d81beb5a5149403bd38e392f62a9a0ab4aefaf8075f36bae1927e0acee207a9ec83127d730eb4d2692e74abb91363edd22197e44bb7be6e437155ed2274b004d4"}, {0x98, 0x105, 0x5, "0c4aa5e6282ed8107b832bea312aa6e46aab931aa7a218ffde019617228569bd3e99b8044826e8c9128bebba530a3c357be28adc0251871bf7914b4f5f4908b5ab8fd7b7ff59c7bf850d7e4463271d7ebfcf8fd4788edbe4088bdad2b9746d17222a3a791be4d029fb49c124066f6bcbfd40e847c0307ec4f01a7ff50325ae68a8b5f6e8"}, {0x50, 0x103, 0x9, "3dfadca6897611e0b1c540bef7ad483f0e8e5e87ac1259ac2c4f592bdd0eeb8aff98f22da7c2539a39d7202648d70d2e4b505ecbb29abf14d5524d09b5a083"}, {0x28, 0x11, 0x7, "75f5ea60c5162b422321d0f431d83a7e49"}, {0xd8, 0x3b, 0x9, "8707f9ba222bc319b7ab2ce625190980788092818598ec4f16626982dce6fc4c9a425b748c377e691344c6fb17f61abc376651275e524cf79388caa70d1bf398febe2b423b41f8d86b2c065cb78842d793469121fed1f96efc296b5b0d2f80ddf160d6490024c4de96de52478a6d04c17d52c39f845c11bd95bf4f93d6c84eb0ea1485f46fad341cdb4814f9816046947d434bac10df3d8f0d939779dac8cb7740ba7c507af9515b51763ca58b056efef89a30acc67b30cc9c94cfd98f2a0a7864a0f6f8"}, {0x88, 0x6, 0xd2dc3f4, "8a59f7f531f34b5cf5caa240d7b7b1e2361a60b3c5ad5f50393f1f7c718ff9b31df917876e95eba8b59255a9b9c4be018eb45fa344270929cd585c2cc05b2829a3032e01325632efba2db6541bbaf7cef93e48269a2cf00d4e45fb7907810701493d547bec6d384ba5c2d0c9fafdc3a9ba79"}, {0x30, 0x107, 0x0, "7fe06b1f56108ef200661bdc81f37f2c3847abb40d0bca30b374051306f06858"}], 0x4c0, 0x1}, 0x8}], 0x4, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) 00:13:47 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(0xffffffffffffffff, 0x5419, &(0x7f0000000000)) 00:13:47 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x300000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:47 executing program 6: perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x3, 0x0, 0x0, 0x200000, 0x0, 0x2, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000880)}, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000580)='ip6_vti0\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000600)={{{@in6=@ipv4, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@multicast1}}, &(0x7f0000000700)=0xffffffffffffff54) setsockopt$inet6_mreq(r0, 0x29, 0x1f, &(0x7f0000000780)={@dev={0xfe, 0x80, [], 0x12}, r1}, 0x14) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$RNDGETENTCNT(r0, 0x80045200, &(0x7f0000000100)) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)) [ 276.195520] FAULT_INJECTION: forcing a failure. [ 276.195520] name failslab, interval 1, probability 0, space 0, times 0 [ 276.206983] CPU: 0 PID: 14874 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 276.214484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 276.223883] Call Trace: [ 276.226552] dump_stack+0x1c9/0x2b4 [ 276.230499] ? dump_stack_print_info.cold.2+0x52/0x52 [ 276.235761] should_fail.cold.4+0xa/0x1a [ 276.239872] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 276.245047] ? kasan_kmalloc+0xc4/0xe0 [ 276.248969] ? kasan_slab_alloc+0x12/0x20 [ 276.253161] ? kmem_cache_alloc+0x12e/0x760 [ 276.257537] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 276.262511] ? kvm_mmu_load+0x21/0x10e0 [ 276.266526] ? vcpu_enter_guest+0x3aa6/0x6090 [ 276.271089] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 276.276149] ? graph_lock+0x170/0x170 [ 276.279993] ? do_syscall_64+0x1b9/0x820 [ 276.284105] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 276.289588] ? find_held_lock+0x36/0x1c0 [ 276.293713] ? __lock_is_held+0xb5/0x140 [ 276.297841] ? check_same_owner+0x340/0x340 [ 276.302222] ? rcu_note_context_switch+0x730/0x730 [ 276.307206] __should_failslab+0x124/0x180 [ 276.311478] should_failslab+0x9/0x14 [ 276.315312] kmem_cache_alloc+0x2af/0x760 [ 276.319491] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 276.324440] mmu_topup_memory_caches+0x2fa/0x3a0 [ 276.329251] kvm_mmu_load+0x21/0x10e0 [ 276.333089] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 276.338653] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 276.343497] vcpu_enter_guest+0x3aa6/0x6090 [ 276.347869] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 276.352154] ? kvm_set_msr_common+0x26a0/0x26a0 [ 276.356888] ? vmx_vcpu_load+0xadf/0xff0 [ 276.360987] ? __lock_acquire+0x7fc/0x5020 [ 276.365251] ? vmx_vcpu_reset+0x1040/0x1040 [ 276.369593] ? graph_lock+0x170/0x170 [ 276.373440] ? __lock_acquire+0x7fc/0x5020 [ 276.377705] ? __lock_is_held+0xb5/0x140 [ 276.381781] ? lock_acquire+0x1e4/0x540 [ 276.385770] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 276.390827] ? lock_release+0xa30/0xa30 [ 276.394919] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 276.400226] ? kvm_arch_dev_ioctl+0x610/0x610 [ 276.404757] ? preempt_notifier_dec+0x20/0x20 [ 276.409300] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 276.414161] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 276.419198] kvm_vcpu_ioctl+0x7b8/0x1300 [ 276.423384] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 276.429141] ? find_held_lock+0x36/0x1c0 [ 276.433235] ? find_held_lock+0x36/0x1c0 [ 276.437333] ? lock_downgrade+0x8f0/0x8f0 [ 276.441500] ? kasan_check_read+0x11/0x20 [ 276.445680] ? rcu_is_watching+0x8c/0x150 [ 276.449847] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 276.454269] ? __fget+0x414/0x670 [ 276.457767] ? match_held_lock+0x821/0x8d0 [ 276.462015] ? expand_files.part.8+0x9c0/0x9c0 [ 276.466716] ? kasan_check_write+0x14/0x20 [ 276.470972] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 276.475950] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 276.481673] do_vfs_ioctl+0x1de/0x1720 [ 276.485571] ? __lock_is_held+0xb5/0x140 [ 276.489689] ? ioctl_preallocate+0x300/0x300 [ 276.494148] ? __fget_light+0x2f7/0x440 [ 276.498156] ? fget_raw+0x20/0x20 [ 276.501655] ? __sb_end_write+0xac/0xe0 [ 276.505654] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 276.511208] ? fput+0x130/0x1a0 [ 276.514538] ? ksys_write+0x1ae/0x260 [ 276.518355] ? security_file_ioctl+0x94/0xc0 [ 276.522780] ksys_ioctl+0xa9/0xd0 [ 276.526253] __x64_sys_ioctl+0x73/0xb0 [ 276.530175] do_syscall_64+0x1b9/0x820 [ 276.534075] ? syscall_slow_exit_work+0x500/0x500 [ 276.538960] ? syscall_return_slowpath+0x5e0/0x5e0 [ 276.543917] ? syscall_return_slowpath+0x31d/0x5e0 [ 276.548872] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 276.554272] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 276.559153] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 276.564525] RIP: 0033:0x455e29 [ 276.567747] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 276.587118] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 276.594854] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 276.602143] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 276.609443] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 276.616725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 276.624017] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000056 00:13:48 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5435, &(0x7f0000000000)) 00:13:48 executing program 4: r0 = socket$inet6(0xa, 0x100000001, 0x0) ioctl(r0, 0x4000008d12, &(0x7f0000000140)="b00fa715d565352d81435e5ab24a654c334f77e8e5f299ef2f9be339c3a6df802f582bc3b640e8e506e864da783b510cb71248c3a60400acb0c73e3592a4b780c9d66e96e3d764a46faa6294c51e43ed62f2d6bb9c2dccf23887ba46c915c97d86b1abc23528c4087f1127533990fed3041b76423bd2b73a7e6929f1c9379d102fb65bb2a87ca5") r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt(r1, 0x400000000000003a, 0x1, &(0x7f0000261f44)=""/188, &(0x7f0000000040)=0xbc) ioctl$RTC_WIE_OFF(r0, 0x7010) getsockopt$inet6_udp_int(r0, 0x11, 0x69, &(0x7f0000000240), &(0x7f0000000200)=0x2) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='\x00', r1}, 0x10) ioctl$KVM_SET_TSS_ADDR(r2, 0xae47, 0xd000) ioctl$SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f0000000500)) 00:13:48 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162ade"], 0x59f) 00:13:48 executing program 0 (fault-call:3 fault-nth:0): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) 00:13:48 executing program 6: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f7ca041, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setitimer(0x1, &(0x7f0000000080), &(0x7f00000000c0)) 00:13:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x700000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:48 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x880, 0x0) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) connect$l2tp(r3, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e23, @rand_addr=0x80000000}, 0x1, 0x1, 0x2, 0x3}}, 0x2e) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:48 executing program 2 (fault-call:7 fault-nth:87): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 276.888008] FAULT_INJECTION: forcing a failure. [ 276.888008] name failslab, interval 1, probability 0, space 0, times 0 [ 276.899729] CPU: 1 PID: 14891 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 276.907239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 276.916658] Call Trace: [ 276.919303] dump_stack+0x1c9/0x2b4 [ 276.923145] ? dump_stack_print_info.cold.2+0x52/0x52 [ 276.928394] should_fail.cold.4+0xa/0x1a [ 276.932653] ? fault_create_debugfs_attr+0x1f0/0x1f0 00:13:48 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5419, &(0x7f0000000000)) [ 276.937825] ? kasan_kmalloc+0xc4/0xe0 [ 276.941757] ? kasan_slab_alloc+0x12/0x20 [ 276.945974] ? kmem_cache_alloc+0x12e/0x760 [ 276.950344] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 276.955320] ? kvm_mmu_load+0x21/0x10e0 [ 276.959376] ? vcpu_enter_guest+0x3aa6/0x6090 [ 276.963927] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 276.970265] ? graph_lock+0x170/0x170 [ 276.974320] ? do_syscall_64+0x1b9/0x820 [ 276.978477] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 276.983976] ? find_held_lock+0x36/0x1c0 00:13:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xa000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 276.988098] ? __lock_is_held+0xb5/0x140 [ 276.992230] ? check_same_owner+0x340/0x340 [ 276.996622] ? rcu_note_context_switch+0x730/0x730 [ 277.001639] __should_failslab+0x124/0x180 [ 277.006003] should_failslab+0x9/0x14 [ 277.009846] kmem_cache_alloc+0x2af/0x760 [ 277.014070] ? alloc_pages_current+0x114/0x210 [ 277.018697] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 277.023674] mmu_topup_memory_caches+0x2fa/0x3a0 [ 277.028495] kvm_mmu_load+0x21/0x10e0 [ 277.032358] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 00:13:48 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x541f, &(0x7f0000000000)) 00:13:48 executing program 4: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23}, 0x1c) listen(r0, 0x5eb857) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r2 = accept4(r1, &(0x7f0000975000)=@can, &(0x7f0000000080)=0x80, 0x80802) sendmmsg(r2, &(0x7f0000000c00), 0x70967c17166daa5c, 0x0) recvmsg(r1, &(0x7f00000016c0)={&(0x7f00000000c0)=@rc, 0x80, &(0x7f0000000440), 0x0, &(0x7f0000001640)=""/112, 0x70}, 0x0) recvmsg(r2, &(0x7f0000001580)={&(0x7f0000000140)=@in={0x0, 0x0, @remote}, 0x80, &(0x7f0000000540), 0x0, &(0x7f0000000580)=""/4096, 0x1000}, 0x0) write(r1, &(0x7f0000000840), 0xff98) 00:13:48 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a"], 0x5a2) [ 277.037975] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 277.042620] vcpu_enter_guest+0x3aa6/0x6090 [ 277.046988] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 277.051276] ? kvm_set_msr_common+0x26a0/0x26a0 [ 277.056141] ? vmx_vcpu_load+0xadf/0xff0 [ 277.060287] ? __lock_acquire+0x7fc/0x5020 [ 277.064583] ? vmx_vcpu_reset+0x1040/0x1040 [ 277.068996] ? graph_lock+0x170/0x170 [ 277.073066] ? __lock_acquire+0x7fc/0x5020 [ 277.077876] ? __lock_is_held+0xb5/0x140 [ 277.082005] ? lock_acquire+0x1e4/0x540 00:13:48 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000001000)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg(r2, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f}, 0x80}}, {{&(0x7f0000007500)=@hci={0x1f}, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x400080, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffff9c, 0x84, 0xe, &(0x7f00000000c0)={0x0, 0x8, 0x101, 0x0, 0xffffffff, 0x9afc, 0x7, 0xffffffff80000000, {0x0, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x21}}}, 0x7, 0x8, 0x6, 0x8, 0xa460}}, &(0x7f0000000200)=0xb0) setsockopt$inet_sctp_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f00000003c0)=ANY=[@ANYRES32=r4, @ANYBLOB="00105d0099fa9f631987c97bd44377a6f9f6db5eb4613e73357a4572dac0e1c7e9effc13915c855b2d80ce2d3bd73a8ce571c4f6887e5fe2665b03d3eb9f8049e78ae35bb520c0eb54b526659c52e141a944aaf1868c4386a5a52505e2c0dca40902b9f6eae17910dee6fe7a84055655e6808a627f74e8bbced24e475e15ed8a01434355d1f828b11d359f676fa2f5e43f22d29e4d286e27126e9f0cf97fdc055ce5a4aafe8c2f36f32a7d0115ab82fcf11006b98a16f4270124684b80968fb04bc9a19b84ed883de978f559f347b9324c80f38e254a3c6fe81538d03bd47063860e8eb6edf436e528a6b826a90a278dd15e120c2e0917"], 0x65) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$HDIO_GETGEO(r0, 0x301, &(0x7f0000000000)) write$eventfd(r1, &(0x7f0000000040)=0x4, 0x8) [ 277.086056] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 277.091146] ? lock_release+0xa30/0xa30 [ 277.095189] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 277.100535] ? kvm_arch_dev_ioctl+0x610/0x610 [ 277.105112] ? preempt_notifier_dec+0x20/0x20 [ 277.109706] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 277.114634] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 277.119733] kvm_vcpu_ioctl+0x7b8/0x1300 [ 277.123876] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 277.129643] ? find_held_lock+0x36/0x1c0 [ 277.133776] ? find_held_lock+0x36/0x1c0 [ 277.137998] ? lock_downgrade+0x8f0/0x8f0 [ 277.142195] ? kasan_check_read+0x11/0x20 [ 277.146424] ? rcu_is_watching+0x8c/0x150 [ 277.150618] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 277.155111] ? __fget+0x414/0x670 [ 277.158616] ? match_held_lock+0x821/0x8d0 [ 277.162964] ? expand_files.part.8+0x9c0/0x9c0 [ 277.167633] ? kasan_check_write+0x14/0x20 [ 277.171927] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 277.176938] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 277.182730] do_vfs_ioctl+0x1de/0x1720 [ 277.186688] ? __lock_is_held+0xb5/0x140 [ 277.190838] ? ioctl_preallocate+0x300/0x300 [ 277.195297] ? __fget_light+0x2f7/0x440 [ 277.199305] ? fget_raw+0x20/0x20 [ 277.202816] ? __sb_end_write+0xac/0xe0 [ 277.206991] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 277.212748] ? fput+0x130/0x1a0 [ 277.216074] ? ksys_write+0x1ae/0x260 [ 277.221327] ? security_file_ioctl+0x94/0xc0 [ 277.225781] ksys_ioctl+0xa9/0xd0 [ 277.229284] __x64_sys_ioctl+0x73/0xb0 [ 277.233223] do_syscall_64+0x1b9/0x820 [ 277.237163] ? finish_task_switch+0x1d3/0x870 [ 277.241714] ? syscall_return_slowpath+0x5e0/0x5e0 [ 277.246839] ? syscall_return_slowpath+0x31d/0x5e0 [ 277.251845] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 277.257281] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 277.262196] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 277.267430] RIP: 0033:0x455e29 00:13:48 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a2) 00:13:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 277.270671] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 277.290149] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 277.297916] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 277.305327] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 277.312637] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 277.319961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 277.327267] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000057 00:13:49 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x402c542d, &(0x7f0000000000)) 00:13:49 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0xc0189436, &(0x7f0000000000)) 00:13:49 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x6000, 0x0) getdents64(r1, &(0x7f00000005c0)=""/4096, 0x1000) setsockopt$inet6_buf(r0, 0x29, 0xff, &(0x7f0000000240)="f4eaa25e0955867a9fa4bd49b8c8440aa5bf0a79b84064136edfe5c7202952892f85d22cb97efc849fc4f8bd831b06e4ed174b02c9bf", 0x36) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = syz_open_dev$evdev(&(0x7f0000dfdfee)='/dev/input/event#\x00', 0x0, 0x2) r3 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) readv(r3, &(0x7f0000000580)=[{&(0x7f0000000140)=""/252, 0xfc}], 0x1) dup2(r2, r3) syslog(0x2, &(0x7f00000002c0)=""/222, 0xde) fcntl$getownex(r1, 0x10, &(0x7f0000000080)={0x0, 0x0}) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f00000000c0)={[], 0x3, 0x7, 0x10001, 0x1, 0x4, r4}) 00:13:49 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a2) 00:13:49 executing program 2 (fault-call:7 fault-nth:88): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x1000000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:49 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f0000000000)={0x4, 0x1, 'client1\x00', 0x1, "df1197a0cb0a1a4e", "6f66e575a8e2a2ce8a5f2726aef759d872a6bc70481ffc091a84f8fdaf97d23d", 0x5, 0x2}) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000680)='net/ip6_mr_vif\x00') getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f00000006c0), &(0x7f0000000700)=0x8) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 277.916988] FAULT_INJECTION: forcing a failure. [ 277.916988] name failslab, interval 1, probability 0, space 0, times 0 [ 277.928522] CPU: 0 PID: 14941 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 277.935926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.945327] Call Trace: [ 277.947983] dump_stack+0x1c9/0x2b4 [ 277.951690] ? dump_stack_print_info.cold.2+0x52/0x52 [ 277.956961] should_fail.cold.4+0xa/0x1a [ 277.961155] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 277.966349] ? kasan_kmalloc+0xc4/0xe0 [ 277.970416] ? kasan_slab_alloc+0x12/0x20 [ 277.974613] ? kmem_cache_alloc+0x12e/0x760 [ 277.979001] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 277.984011] ? kvm_mmu_load+0x21/0x10e0 [ 277.988064] ? vcpu_enter_guest+0x3aa6/0x6090 [ 277.992617] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 277.997713] ? graph_lock+0x170/0x170 [ 278.001593] ? do_syscall_64+0x1b9/0x820 [ 278.005726] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 278.011193] ? find_held_lock+0x36/0x1c0 [ 278.015355] ? __lock_is_held+0xb5/0x140 [ 278.019498] ? check_same_owner+0x340/0x340 [ 278.023913] ? rcu_note_context_switch+0x730/0x730 [ 278.028903] __should_failslab+0x124/0x180 [ 278.033208] should_failslab+0x9/0x14 [ 278.037066] kmem_cache_alloc+0x2af/0x760 [ 278.041302] ? alloc_pages_current+0x114/0x210 [ 278.045963] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 278.050983] mmu_topup_memory_caches+0x2fa/0x3a0 [ 278.055815] kvm_mmu_load+0x21/0x10e0 [ 278.059682] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 278.065383] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 278.066949] dccp_xmit_packet: Payload too large (65432) for featneg. [ 278.070215] vcpu_enter_guest+0x3aa6/0x6090 [ 278.070238] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 278.070260] ? __lock_is_held+0xb5/0x140 [ 278.070281] ? kvm_set_msr_common+0x26a0/0x26a0 [ 278.070308] ? vmx_vcpu_load+0xadf/0xff0 [ 278.070322] ? __lock_is_held+0xb5/0x140 [ 278.102650] ? __account_cfs_rq_runtime+0x770/0x770 [ 278.107715] ? vmx_vcpu_reset+0x1040/0x1040 [ 278.112125] ? graph_lock+0x170/0x170 [ 278.116069] ? __lock_acquire+0x7fc/0x5020 [ 278.120455] ? __lock_is_held+0xb5/0x140 [ 278.124550] ? lock_acquire+0x1e4/0x540 [ 278.128554] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 278.133616] ? lock_release+0xa30/0xa30 [ 278.137645] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 278.142965] ? kvm_arch_dev_ioctl+0x610/0x610 [ 278.147496] ? preempt_notifier_dec+0x20/0x20 [ 278.152073] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 278.156979] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 278.162103] kvm_vcpu_ioctl+0x7b8/0x1300 [ 278.166222] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 278.171998] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 278.177065] ? trace_hardirqs_on+0xd/0x10 [ 278.181284] ? find_held_lock+0x36/0x1c0 [ 278.185410] ? lock_downgrade+0x8f0/0x8f0 [ 278.189615] ? kasan_check_read+0x11/0x20 [ 278.193823] ? rcu_is_watching+0x8c/0x150 [ 278.198035] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 278.202515] ? __fget+0x414/0x670 [ 278.206115] ? match_held_lock+0x821/0x8d0 [ 278.210452] ? expand_files.part.8+0x9c0/0x9c0 [ 278.215088] ? kasan_check_write+0x14/0x20 [ 278.219372] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 278.224368] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 278.230361] do_vfs_ioctl+0x1de/0x1720 [ 278.234320] ? ioctl_preallocate+0x300/0x300 [ 278.238893] ? __fget_light+0x2f7/0x440 [ 278.242910] ? __schedule+0x1ed0/0x1ed0 [ 278.246926] ? fget_raw+0x20/0x20 [ 278.250451] ? __sb_end_write+0xac/0xe0 [ 278.254474] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 278.260056] ? exit_to_usermode_loop+0x8c/0x370 [ 278.264762] ? security_file_ioctl+0x94/0xc0 [ 278.269237] ksys_ioctl+0xa9/0xd0 [ 278.272749] __x64_sys_ioctl+0x73/0xb0 [ 278.276682] do_syscall_64+0x1b9/0x820 [ 278.280609] ? finish_task_switch+0x1d3/0x870 [ 278.285136] ? syscall_return_slowpath+0x5e0/0x5e0 [ 278.290197] ? syscall_return_slowpath+0x31d/0x5e0 [ 278.295264] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 278.300682] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 278.305578] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 278.310845] RIP: 0033:0x455e29 [ 278.314061] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 278.333613] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 278.341365] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 278.348712] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 278.356010] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 00:13:49 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0xc0045878, &(0x7f0000000000)) 00:13:49 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a3) 00:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfffffff5, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:49 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000001c0)={0x20, 0x1, 0x8, 0x7, 0x7, 0x4, 0x5b, 0x0, 0x100000000, 0x3}) syz_mount_image$iso9660(&(0x7f0000000100)='iso9660\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000800), 0x0, &(0x7f0000000880)={[{@iocharset={'iocharset', 0x3d, 'macroman'}, 0x2c}, {@iocharset={'iocharset', 0x3d, 'ascii'}, 0x2c}]}) socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f0000000040)={0x6, 0x3, 0x201, 0x8, 0xfffffffffffffffd, 0x3, 0x0, 0x3, 0x0}, &(0x7f0000000080)=0x20) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000000c0)={r2, 0x1, 0x5}, 0x8) sync_file_range(0xffffffffffffff9c, 0xfffffffffffff801, 0x6, 0x4) 00:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x31000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:49 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5432, &(0x7f0000000000)) 00:13:49 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a3) 00:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x100000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 278.363315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 278.370608] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000058 00:13:50 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a3) [ 278.504775] ISOFS: Unable to identify CD-ROM format. [ 278.586122] ISOFS: Unable to identify CD-ROM format. 00:13:50 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0xc0045878, &(0x7f0000000000)) 00:13:50 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x4000000000000000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@mcast1}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @dev}}}, &(0x7f0000000180)=0xe8) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000000680)={"1774b6c3868dda51fcba6b608dfe4f44d9497af860ef2c6e67c3d7b979226f479df68a9d923121fbff73677a1bbd0f192d980385c1849add348557a397f0682dc579938bef79475f381b34d8aa8a202b21cadac31b59ec7d46d6b7b0f4ca20885f50952d55a435cdc5e17b1961a0474ad4ad7df229add5383c26c2f0c69ac3b7a1c3efec5a38160144f8d358b4cb67c9c7d13ad15cd4e3150a553028f48a19ba4f64e1335ce46cc8a7fee685c292cef79aee74875ba2c2689d0e2878974e7b35980bd3790cbfc00050a0b21fefabec7a1785c1653ead52473950e3f8344ed2381c8cc19add4fc4142de227c3886b44d6c69094279941a6238e785019b9b7ba5c03c726473fa9d423c62bf39133466c0bef9b7093aa9a822f04bbf2750f1fcef183ffc79b59c0f4ad745affd92adc7a51ba52f58f94778c561834a6b1dc1c0d63e0b2d538031a3baee45446cf8f3d507c6f27d29690b6ad98547ae5fc2c4c8e6b82bb7c84d6ecc466eb25e26ada34680e2ae03a2a18e89d4026cbd17fd8e4f979b69bbaaacc83c5afbd67f7b2ee8374c6a51ac4df8828d199eff997ace3fe15585781eb126fcedc32d24b2bc95681874cc521dde16a1badee2d1bf3285982ea4c9aaecc591e3b5888630e6c14052311b0a63d49ff591d5761cb5aba01ec86a05be1fdfb6947e07cdca7607792f08d2745dfd8fc0abada58df9925dfd65a5ba8bee818e30d9d34728b5b2de074e69a3f97e36a6998f7662d81819d3a16a9f8424dd2666157a96001d4efbebb985161a633b138443df2cbbe448136caf580b4f313a5bce4d5e5d22c0fc384ca7ff0b1e0b9300ced63bba31d4476e4f2d335873f68f125ea59236a07aa52bfda72fb7b9068b4fcb4dd74035a2b2ac2df5b8c4a7b0504b57dcc5c3ae39cb38e46ec3ce8fe2711ba207b2e6761f934150b8fa357b1394038a6b458d0880ab423d14137042937233144066c5c4b23098afc1f947609e79d5a4f3286a0e973d0a83455c8a1cdbefa17a1f507f37494af25ff32aec9dbb3739629a3376f1e9b599eb36fcc544f682c1cce573e2af68732d7896c1c094876a9c00c59ee26a200de7faba169285343ad5ca03eb05f9c0f9a84a578c261d0d8a3b7e47557b8667d2233bd2ac1957359d294cb9f05fca83b25d3b7f0e6239ac2bf73d3228cb7dfec26a9f95260c48abaa439e37d178cf5bb87149d8337aa0ee38157542c0d90c6e46f6976251aa1932e0361b894f3a69a0c654535ea92c96d14677c970d9d68b1ce862a9c0938079c3658fa451143e890fcd05a3f2209494bded9e6f323966a15464d7be49accf3d4216012cf366a0668dc849a20fe8ec56fabf29fb51af230c23648ebf5d753fc8534c8d785681b23e0103ea1280d3ac21a835ab4c16d79cda232fca6d7eeb6228f81ce3875b2cc08080e95f14b976de2aca6"}) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-simd\x00'}, 0x58) r4 = accept$alg(r3, 0x0, 0x0) r5 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0) fallocate(r5, 0x0, 0x0, 0x73e0) sendfile(r4, r5, &(0x7f00007ed000), 0xf) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r6, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r6, 0xae80, 0x0) 00:13:50 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x402c542b, &(0x7f0000000000)) 00:13:50 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xf5ffffff, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:50 executing program 2 (fault-call:7 fault-nth:89): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:50 executing program 5 (fault-call:13 fault-nth:0): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000000)={0x2, 0x0, [0x0, 0x0, 0x0, 0x8000000000, 0x0, 0x0, 0x1, 0x1]}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000080)="670f23d4f2f3f2450f08450f009763dc0000660f388126b90c060000b868940000ba000000000f30c74424000d000000c74424026cde0000ff1c24c443a16e4215003e0f01c82e0f320f06", 0x4b}], 0x1, 0x0, &(0x7f0000000140), 0x297) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:50 executing program 6: r0 = perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) readv(r1, &(0x7f00000001c0)=[{&(0x7f00000003c0)=""/146, 0x92}, {&(0x7f0000000480)=""/210, 0xd2}], 0x2) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000580)={{{@in6=@dev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@remote}}, &(0x7f00000000c0)=0xe8) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000740)={'bridge_slave_1\x00', &(0x7f00000006c0)=@ethtool_link_settings={0x4d, 0x9, 0x8, 0x80000000, 0x81, 0x1, 0x1, 0x4, 0x1, 0x4, [0xffff, 0x6, 0x7, 0x2, 0x0, 0x8, 0x1, 0x74e5], [0x9b, 0x3ff, 0x8, 0x2, 0x4, 0xffffffffffff7fff, 0x1, 0x0]}}) ioprio_set$uid(0x3, r2, 0x2) r3 = accept4(0xffffffffffffff9c, &(0x7f0000000200)=@rc, &(0x7f0000000100)=0xffffffb1, 0x0) getsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000040), &(0x7f0000000080)=0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x804, 0x0) ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e22, @multicast1=0xe0000001}}}, &(0x7f0000000140)=0x84) getsockopt$inet_sctp6_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=r5, &(0x7f0000000680)=0x4) syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0x0, 0x100) r6 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) ioctl$LOOP_CTL_ADD(r4, 0x4c80, r6) [ 278.905792] FAULT_INJECTION: forcing a failure. [ 278.905792] name failslab, interval 1, probability 0, space 0, times 0 [ 278.917188] CPU: 0 PID: 15003 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 278.924677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.934051] Call Trace: [ 278.936679] dump_stack+0x1c9/0x2b4 [ 278.940345] ? dump_stack_print_info.cold.2+0x52/0x52 [ 278.945582] ? perf_trace_lock+0xde/0x920 [ 278.949771] should_fail.cold.4+0xa/0x1a [ 278.953868] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 278.958995] ? zap_class+0x740/0x740 [ 278.962735] ? graph_lock+0x170/0x170 [ 278.966575] ? find_held_lock+0x36/0x1c0 [ 278.970778] ? find_held_lock+0x36/0x1c0 [ 278.974989] __should_failslab+0x124/0x180 [ 278.979263] should_failslab+0x9/0x14 [ 278.983076] kmem_cache_alloc+0x47/0x760 [ 278.987146] ? rcu_is_watching+0x8c/0x150 [ 278.991303] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 278.995749] ? xfrm_user_net_init+0x2e0/0x2e0 [ 279.000273] xfrm_state_alloc+0xa1/0x650 [ 279.004362] ? xfrm_get_acqseq+0x50/0x50 [ 279.008478] ? km_is_alive+0x215/0x350 [ 279.012409] ? km_new_mapping+0x360/0x360 [ 279.016579] ? rcu_is_watching+0x8c/0x150 [ 279.020744] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 279.025189] ? xfrm_state_find+0x3d1/0x3550 [ 279.029532] xfrm_state_find+0x1f72/0x3550 [ 279.033803] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 279.038931] ? __lock_is_held+0xb5/0x140 [ 279.043010] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.048583] ? rt6_score_route+0x118/0x400 [ 279.052833] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.058374] ? find_match+0x484/0xec0 [ 279.062193] ? rt6_remove_exception_rt+0x550/0x550 [ 279.067139] ? graph_lock+0x170/0x170 [ 279.070949] ? __lock_is_held+0xb5/0x140 [ 279.075041] ? __lock_acquire+0x7fc/0x5020 [ 279.079310] ? __lock_is_held+0xb5/0x140 [ 279.083410] ? __lock_is_held+0xb5/0x140 [ 279.087480] ? print_usage_bug+0xc0/0xc0 [ 279.091557] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.097111] ? fib6_table_lookup+0xcac/0x14f0 [ 279.101646] ? print_usage_bug+0xc0/0xc0 [ 279.105721] xfrm_tmpl_resolve+0x383/0xe10 [ 279.109984] ? __xfrm_decode_session+0x140/0x140 [ 279.114782] ? graph_lock+0x170/0x170 [ 279.118610] ? trace_hardirqs_on+0x10/0x10 [ 279.122881] xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 279.128441] ? perf_trace_lock+0xde/0x920 [ 279.132605] ? graph_lock+0x170/0x170 [ 279.137995] ? xfrm_migrate+0x19d0/0x19d0 [ 279.142162] ? find_held_lock+0x36/0x1c0 [ 279.146229] ? lock_downgrade+0x8f0/0x8f0 [ 279.150390] ? rcu_is_watching+0x8c/0x150 [ 279.154539] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 279.158962] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.164505] ? security_xfrm_policy_lookup+0x9e/0xd0 [ 279.169618] ? xfrm_sk_policy_lookup+0x480/0x610 [ 279.174404] ? xfrm_selector_match+0xf90/0xf90 [ 279.179019] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 279.184055] xfrm_lookup+0x3b3/0x2880 [ 279.187870] ? xfrm_lookup+0x3b3/0x2880 [ 279.191852] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 279.196632] ? addrconf_rs_timer+0x690/0x690 [ 279.201159] ? xfrm_policy_lookup+0x70/0x70 [ 279.205584] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 279.211143] ? ip6_dst_lookup_tail+0x3ca/0x1da0 [ 279.215927] ? dst_output+0x180/0x180 [ 279.219750] ? graph_lock+0x170/0x170 [ 279.223571] ? graph_lock+0x170/0x170 [ 279.227395] ? find_held_lock+0x36/0x1c0 [ 279.231470] xfrm_lookup_route+0x39/0x1f0 [ 279.235644] ip6_dst_lookup_flow+0x1c6/0x270 [ 279.240064] ? ip6_dst_lookup+0x60/0x60 [ 279.244093] rawv6_sendmsg+0xec9/0x45c0 [ 279.248084] ? compat_rawv6_getsockopt+0x140/0x140 [ 279.253111] ? trace_hardirqs_on+0x10/0x10 [ 279.257354] ? perf_trace_lock+0xde/0x920 [ 279.261536] ? perf_trace_lock+0xde/0x920 [ 279.265699] ? graph_lock+0x170/0x170 [ 279.269517] ? zap_class+0x740/0x740 [ 279.273230] ? graph_lock+0x170/0x170 [ 279.277053] ? lock_acquire+0x1e4/0x540 [ 279.281151] ? perf_trace_lock+0xde/0x920 [ 279.285579] ? graph_lock+0x170/0x170 [ 279.289489] ? zap_class+0x740/0x740 [ 279.293414] ? find_held_lock+0x36/0x1c0 [ 279.297488] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.303057] ? _parse_integer+0x13b/0x190 [ 279.307220] ? find_held_lock+0x36/0x1c0 [ 279.311309] inet_sendmsg+0x1a1/0x690 [ 279.315117] ? inet_sendmsg+0x1a1/0x690 [ 279.319121] ? ipip_gro_receive+0x100/0x100 [ 279.323481] ? security_socket_sendmsg+0x94/0xc0 [ 279.328244] ? ipip_gro_receive+0x100/0x100 [ 279.332584] sock_sendmsg+0xd5/0x120 [ 279.336328] sock_write_iter+0x362/0x5c0 [ 279.340430] ? sock_sendmsg+0x120/0x120 [ 279.344429] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 279.350014] ? iov_iter_init+0xc9/0x1f0 [ 279.354028] __vfs_write+0x6c6/0x9f0 [ 279.357752] ? kernel_read+0x120/0x120 [ 279.361668] ? wait_for_completion+0x8d0/0x8d0 [ 279.366312] ? rw_verify_area+0x118/0x360 [ 279.370485] vfs_write+0x1f8/0x560 [ 279.374059] ksys_write+0x101/0x260 [ 279.377709] ? __ia32_sys_read+0xb0/0xb0 [ 279.381774] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 279.387330] __x64_sys_write+0x73/0xb0 [ 279.391286] do_syscall_64+0x1b9/0x820 [ 279.395182] ? finish_task_switch+0x1d3/0x870 [ 279.399695] ? syscall_return_slowpath+0x5e0/0x5e0 [ 279.404641] ? syscall_return_slowpath+0x31d/0x5e0 [ 279.409586] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 279.414985] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 279.419854] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.425052] RIP: 0033:0x455e29 [ 279.428238] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.447557] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 00:13:51 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x80, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x10, 0x4, 0x4, 0x6, 0x2000, r0}, 0x2c) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, @in6={0xa, 0x4e24, 0x9, @local={0xfe, 0x80, [], 0xaa}, 0x5}, @in={0x2, 0x4e24, @rand_addr=0x6}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x14}}, @in={0x2, 0x4e22, @multicast2=0xe0000002}, @in={0x2, 0x4e21, @rand_addr=0xfffffffffffeffff}, @in6={0xa, 0x4e23, 0x3928a756, @remote={0xfe, 0x80, [], 0xbb}, 0x7}, @in={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}], 0x98) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x28, &(0x7f0000000180)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)={r2, 0xd2, 0x8}, 0xc) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0xa687, 0x7, 0x10001, 0x0, 0xfffffffffffffff7}, 0x14) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r1, &(0x7f0000000100), &(0x7f0000000200), 0x3}, 0x20) [ 279.455301] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 279.462597] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 279.469889] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 279.477179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 279.484470] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000000 [ 279.501909] hrtimer: interrupt took 30331 ns 00:13:51 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5423, &(0x7f0000000000)) 00:13:51 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 279.605248] FAULT_INJECTION: forcing a failure. [ 279.605248] name failslab, interval 1, probability 0, space 0, times 0 [ 279.616773] CPU: 0 PID: 15010 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 279.624165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.633807] Call Trace: [ 279.636431] dump_stack+0x1c9/0x2b4 [ 279.640129] ? dump_stack_print_info.cold.2+0x52/0x52 [ 279.645435] should_fail.cold.4+0xa/0x1a [ 279.649528] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 279.654662] ? kasan_kmalloc+0xc4/0xe0 [ 279.658566] ? kasan_slab_alloc+0x12/0x20 [ 279.662746] ? kmem_cache_alloc+0x12e/0x760 [ 279.667181] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 279.672138] ? kvm_mmu_load+0x21/0x10e0 [ 279.676130] ? vcpu_enter_guest+0x3aa6/0x6090 [ 279.680658] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 279.685706] ? graph_lock+0x170/0x170 [ 279.689640] ? do_syscall_64+0x1b9/0x820 [ 279.693756] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.699144] ? find_held_lock+0x36/0x1c0 [ 279.703226] ? __lock_is_held+0xb5/0x140 [ 279.707315] ? check_same_owner+0x340/0x340 [ 279.711654] ? rcu_note_context_switch+0x730/0x730 [ 279.716624] __should_failslab+0x124/0x180 [ 279.720887] should_failslab+0x9/0x14 [ 279.724717] kmem_cache_alloc+0x2af/0x760 [ 279.728877] ? alloc_pages_current+0x114/0x210 [ 279.733568] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 279.738512] mmu_topup_memory_caches+0x2fa/0x3a0 [ 279.743302] kvm_mmu_load+0x21/0x10e0 [ 279.747136] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 279.752693] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 279.757317] vcpu_enter_guest+0x3aa6/0x6090 [ 279.761696] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 279.765968] ? kvm_set_msr_common+0x26a0/0x26a0 [ 279.770667] ? zap_class+0x740/0x740 [ 279.774428] ? vmx_vcpu_load+0xadf/0xff0 [ 279.778597] ? __lock_acquire+0x7fc/0x5020 [ 279.782854] ? vmx_vcpu_reset+0x1040/0x1040 [ 279.787301] ? graph_lock+0x170/0x170 [ 279.791129] ? __lock_is_held+0xb5/0x140 [ 279.795211] ? lock_acquire+0x1e4/0x540 [ 279.799204] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 279.804235] ? lock_release+0xa30/0xa30 [ 279.808316] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 279.813616] ? kvm_arch_dev_ioctl+0x610/0x610 [ 279.818121] ? preempt_notifier_dec+0x20/0x20 [ 279.822662] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 279.827538] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 279.832604] kvm_vcpu_ioctl+0x7b8/0x1300 [ 279.836697] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 279.842457] ? find_held_lock+0x36/0x1c0 [ 279.846548] ? lock_downgrade+0x8f0/0x8f0 [ 279.850719] ? rcu_is_watching+0x8c/0x150 [ 279.854886] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 279.859323] ? __fget+0x414/0x670 [ 279.862848] ? match_held_lock+0x821/0x8d0 [ 279.867089] ? expand_files.part.8+0x9c0/0x9c0 [ 279.871785] ? kasan_check_write+0x14/0x20 [ 279.876032] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 279.880986] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 279.886742] do_vfs_ioctl+0x1de/0x1720 [ 279.890652] ? ioctl_preallocate+0x300/0x300 [ 279.895065] ? __fget_light+0x2f7/0x440 [ 279.899045] ? fget_raw+0x20/0x20 [ 279.902625] ? __sb_end_write+0xac/0xe0 [ 279.906630] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 279.912178] ? fput+0x130/0x1a0 [ 279.915485] ? ksys_write+0x1ae/0x260 [ 279.919300] ? security_file_ioctl+0x94/0xc0 [ 279.923724] ksys_ioctl+0xa9/0xd0 [ 279.927203] __x64_sys_ioctl+0x73/0xb0 [ 279.931115] do_syscall_64+0x1b9/0x820 [ 279.935035] ? finish_task_switch+0x1d3/0x870 [ 279.939550] ? syscall_return_slowpath+0x5e0/0x5e0 [ 279.944521] ? syscall_return_slowpath+0x31d/0x5e0 [ 279.949481] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 279.955035] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 279.959894] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.965093] RIP: 0033:0x455e29 [ 279.968276] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.987682] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 279.995429] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 00:13:51 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x800, 0x200000) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000200)={0x0, 0xfffffffffffffffc, 0x30}, &(0x7f0000000240)=0xb) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000280)={r1, @in6={{0xa, 0x4e22, 0x7, @mcast2={0xff, 0x2, [], 0x1}, 0x240000000}}, 0x82f6, 0xf2}, &(0x7f0000000340)=0x90) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x2, 0x2, 0x0) getsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000080)=""/176, &(0x7f0000000140)=0xb0) [ 280.002702] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 280.009977] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 280.017254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 280.024634] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 0000000000000059 00:13:51 executing program 5 (fault-call:13 fault-nth:1): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:51 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x541b, &(0x7f0000000000)) 00:13:51 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x5, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 280.171497] FAULT_INJECTION: forcing a failure. [ 280.171497] name failslab, interval 1, probability 0, space 0, times 0 [ 280.183018] CPU: 0 PID: 15039 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 280.190430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.199835] Call Trace: [ 280.202466] dump_stack+0x1c9/0x2b4 [ 280.206154] ? dump_stack_print_info.cold.2+0x52/0x52 [ 280.211453] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 280.217086] should_fail.cold.4+0xa/0x1a 00:13:51 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x7fffffff, 0x10d000) ioctl$TUNSETNOCSUM(r3, 0x400454c8, 0x1) [ 280.221215] ? print_usage_bug+0xc0/0xc0 [ 280.225343] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 280.230543] ? find_held_lock+0x36/0x1c0 [ 280.234686] ? __lock_acquire+0x7fc/0x5020 [ 280.238972] ? lock_downgrade+0x8f0/0x8f0 [ 280.243170] ? lock_downgrade+0x8f0/0x8f0 [ 280.247383] ? trace_hardirqs_on+0x10/0x10 [ 280.251675] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 280.256771] ? trace_hardirqs_on+0xd/0x10 [ 280.261004] ? __debug_object_init+0x581/0x12e0 [ 280.265726] __should_failslab+0x124/0x180 [ 280.270035] should_failslab+0x9/0x14 [ 280.273892] kmem_cache_alloc_node+0x56/0x780 [ 280.278434] ? graph_lock+0x170/0x170 [ 280.282300] ? kasan_slab_alloc+0x12/0x20 [ 280.286529] ? kmem_cache_alloc+0x12e/0x760 [ 280.291006] ? xfrm_state_alloc+0xa1/0x650 [ 280.295309] ? xfrm_state_find+0x1f72/0x3550 [ 280.299785] __alloc_skb+0x119/0x790 [ 280.303598] ? skb_scrub_packet+0x580/0x580 [ 280.307999] ? __lock_is_held+0xb5/0x140 [ 280.312103] ? graph_lock+0x170/0x170 [ 280.315979] ? memset+0x31/0x40 [ 280.319351] ? __lock_is_held+0xb5/0x140 [ 280.323492] xfrm_send_acquire+0x181/0xbd0 [ 280.327793] ? km_query+0x360/0x360 [ 280.331475] ? xfrm_send_report+0x570/0x570 [ 280.335855] ? kasan_check_read+0x11/0x20 [ 280.340053] ? rcu_is_watching+0x8c/0x150 [ 280.344255] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 280.348711] km_query+0x1a2/0x360 [ 280.352198] ? km_migrate+0x3d0/0x3d0 [ 280.356015] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.361652] ? xfrm_state_afinfo_get_rcu+0xf1/0x1b0 [ 280.366678] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 280.371873] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.377423] ? security_xfrm_state_alloc_acquire+0x94/0xc0 [ 280.383067] xfrm_state_find+0x2323/0x3550 [ 280.387319] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 280.392439] ? __lock_is_held+0xb5/0x140 [ 280.396519] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.402074] ? rt6_score_route+0x118/0x400 [ 280.406314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.412130] ? find_match+0x484/0xec0 [ 280.415943] ? rt6_remove_exception_rt+0x550/0x550 [ 280.420882] ? graph_lock+0x170/0x170 [ 280.424714] ? __lock_is_held+0xb5/0x140 [ 280.428789] ? __lock_acquire+0x7fc/0x5020 [ 280.433040] ? __lock_is_held+0xb5/0x140 [ 280.437120] ? __lock_is_held+0xb5/0x140 [ 280.441190] ? print_usage_bug+0xc0/0xc0 [ 280.445308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.450863] ? fib6_table_lookup+0xcac/0x14f0 [ 280.455391] ? print_usage_bug+0xc0/0xc0 [ 280.459467] xfrm_tmpl_resolve+0x383/0xe10 [ 280.463716] ? __xfrm_decode_session+0x140/0x140 [ 280.468492] ? graph_lock+0x170/0x170 [ 280.472309] ? trace_hardirqs_on+0x10/0x10 [ 280.476555] xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 280.482042] ? graph_lock+0x170/0x170 [ 280.485854] ? __d_alloc+0xc8/0xd50 [ 280.489485] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 280.493910] ? xfrm_migrate+0x19d0/0x19d0 [ 280.498071] ? ip6_pol_route+0x3d6/0x1050 [ 280.502242] ? find_held_lock+0x36/0x1c0 [ 280.506329] ? lock_downgrade+0x8f0/0x8f0 [ 280.510591] ? kasan_check_read+0x11/0x20 [ 280.514750] ? rcu_is_watching+0x8c/0x150 [ 280.518899] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 280.523320] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.528862] ? security_xfrm_policy_lookup+0x9e/0xd0 [ 280.534764] ? xfrm_sk_policy_lookup+0x480/0x610 [ 280.539538] ? xfrm_selector_match+0xf90/0xf90 [ 280.544122] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 280.549143] xfrm_lookup+0x3b3/0x2880 [ 280.552949] ? xfrm_lookup+0x3b3/0x2880 [ 280.556933] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 280.561701] ? addrconf_rs_timer+0x690/0x690 [ 280.566227] ? xfrm_policy_lookup+0x70/0x70 [ 280.570556] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.576102] ? ip6_dst_lookup_tail+0x3ca/0x1da0 [ 280.580777] ? dst_output+0x180/0x180 [ 280.584579] ? graph_lock+0x170/0x170 [ 280.588386] ? graph_lock+0x170/0x170 [ 280.592203] ? reacquire_held_locks+0xbc/0x3e0 [ 280.596799] ? find_held_lock+0x36/0x1c0 [ 280.600956] xfrm_lookup_route+0x39/0x1f0 [ 280.605111] ip6_dst_lookup_flow+0x1c6/0x270 [ 280.609528] ? ip6_dst_lookup+0x60/0x60 [ 280.613511] rawv6_sendmsg+0xec9/0x45c0 [ 280.617496] ? compat_rawv6_getsockopt+0x140/0x140 [ 280.622436] ? trace_hardirqs_on+0x10/0x10 [ 280.626679] ? graph_lock+0x170/0x170 [ 280.630495] ? do_raw_spin_lock+0xc1/0x200 [ 280.634743] ? graph_lock+0x170/0x170 [ 280.638545] ? lock_acquire+0x1e4/0x540 [ 280.642518] ? __fdget_pos+0x1bb/0x200 [ 280.646404] ? graph_lock+0x170/0x170 [ 280.650204] ? graph_lock+0x170/0x170 [ 280.654018] ? find_held_lock+0x36/0x1c0 [ 280.658115] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.663674] ? _parse_integer+0x13b/0x190 [ 280.667839] ? find_held_lock+0x36/0x1c0 [ 280.671926] inet_sendmsg+0x1a1/0x690 [ 280.675733] ? inet_sendmsg+0x1a1/0x690 [ 280.679716] ? ipip_gro_receive+0x100/0x100 [ 280.684050] ? security_socket_sendmsg+0x94/0xc0 [ 280.688815] ? ipip_gro_receive+0x100/0x100 [ 280.693158] sock_sendmsg+0xd5/0x120 [ 280.696883] sock_write_iter+0x362/0x5c0 [ 280.701661] ? sock_sendmsg+0x120/0x120 [ 280.705654] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.711293] ? iov_iter_init+0xc9/0x1f0 [ 280.715298] __vfs_write+0x6c6/0x9f0 [ 280.719024] ? kernel_read+0x120/0x120 [ 280.722943] ? wait_for_completion+0x8d0/0x8d0 [ 280.727585] ? rw_verify_area+0x118/0x360 [ 280.731735] vfs_write+0x1f8/0x560 [ 280.735277] ksys_write+0x101/0x260 [ 280.738916] ? __ia32_sys_read+0xb0/0xb0 [ 280.743003] ? syscall_slow_exit_work+0x500/0x500 [ 280.747864] __x64_sys_write+0x73/0xb0 [ 280.751767] do_syscall_64+0x1b9/0x820 [ 280.755671] ? finish_task_switch+0x1d3/0x870 [ 280.760177] ? syscall_return_slowpath+0x5e0/0x5e0 [ 280.765110] ? syscall_return_slowpath+0x31d/0x5e0 [ 280.770076] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 280.775476] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 280.780331] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.785518] RIP: 0033:0x455e29 [ 280.788709] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.808083] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 280.815797] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 280.823076] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 280.830361] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 280.837647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 280.844944] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000001 00:13:52 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5418, &(0x7f0000000000)) 00:13:52 executing program 4: mmap(&(0x7f0000000000/0x48000)=nil, 0x48000, 0x1, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x18000)=nil, 0x18000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000013ff6)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000000)) ioctl$int_in(r0, 0x5407, &(0x7f0000026ffa)) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f0000000040)) 00:13:52 executing program 6: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000f86000)='./control/file0\x00') r2 = syz_fuseblk_mount(&(0x7f0000000140)='./control\x00', &(0x7f0000000180)='./control/file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) lseek(r2, 0x0, 0x3) perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 00:13:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x200000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:52 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0xc0045877, &(0x7f0000000000)) 00:13:52 executing program 5 (fault-call:13 fault-nth:2): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:52 executing program 2 (fault-call:7 fault-nth:90): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 281.069021] FAULT_INJECTION: forcing a failure. [ 281.069021] name failslab, interval 1, probability 0, space 0, times 0 [ 281.080519] CPU: 1 PID: 15059 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 281.083629] FAULT_INJECTION: forcing a failure. [ 281.083629] name failslab, interval 1, probability 0, space 0, times 0 [ 281.087906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.087918] Call Trace: [ 281.087947] dump_stack+0x1c9/0x2b4 [ 281.087970] ? dump_stack_print_info.cold.2+0x52/0x52 [ 281.087993] ? kernel_text_address+0x79/0xf0 [ 281.088025] should_fail.cold.4+0xa/0x1a [ 281.088043] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 281.088067] ? save_stack+0xa9/0xd0 [ 281.088095] ? save_stack+0x43/0xd0 [ 281.141010] ? kasan_kmalloc+0xc4/0xe0 [ 281.144908] ? kasan_slab_alloc+0x12/0x20 [ 281.149068] ? kmem_cache_alloc_node+0x144/0x780 [ 281.153857] ? __alloc_skb+0x119/0x790 [ 281.157792] ? xfrm_send_acquire+0x181/0xbd0 [ 281.162211] ? km_query+0x1a2/0x360 [ 281.165857] ? xfrm_state_find+0x2323/0x3550 [ 281.170279] ? xfrm_tmpl_resolve+0x383/0xe10 [ 281.174720] ? xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 281.180371] ? xfrm_lookup+0x3b3/0x2880 [ 281.184350] ? xfrm_lookup_route+0x39/0x1f0 [ 281.188679] ? ip6_dst_lookup_flow+0x1c6/0x270 [ 281.193306] ? rawv6_sendmsg+0xec9/0x45c0 [ 281.197470] ? inet_sendmsg+0x1a1/0x690 [ 281.201466] ? sock_sendmsg+0xd5/0x120 [ 281.205376] ? sock_write_iter+0x362/0x5c0 [ 281.209640] ? __vfs_write+0x6c6/0x9f0 [ 281.213539] ? vfs_write+0x1f8/0x560 [ 281.217268] ? ksys_write+0x101/0x260 [ 281.221092] ? __x64_sys_write+0x73/0xb0 [ 281.225183] ? do_syscall_64+0x1b9/0x820 [ 281.229300] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.234798] ? __lock_acquire+0x7fc/0x5020 [ 281.239049] ? lock_downgrade+0x8f0/0x8f0 [ 281.243213] ? lock_downgrade+0x8f0/0x8f0 [ 281.247390] ? graph_lock+0x170/0x170 [ 281.251207] ? trace_hardirqs_on+0x10/0x10 [ 281.255479] __should_failslab+0x124/0x180 [ 281.259725] should_failslab+0x9/0x14 [ 281.263539] kmem_cache_alloc_node_trace+0x5a/0x770 [ 281.268603] __kmalloc_node_track_caller+0x33/0x70 [ 281.273550] __kmalloc_reserve.isra.40+0x3a/0xe0 [ 281.278324] __alloc_skb+0x155/0x790 [ 281.282062] ? skb_scrub_packet+0x580/0x580 [ 281.286423] ? __lock_is_held+0xb5/0x140 [ 281.290519] ? graph_lock+0x170/0x170 [ 281.294357] ? memset+0x31/0x40 [ 281.297667] ? __lock_is_held+0xb5/0x140 [ 281.301757] xfrm_send_acquire+0x181/0xbd0 [ 281.306020] ? km_query+0x360/0x360 [ 281.309674] ? xfrm_send_report+0x570/0x570 [ 281.314013] ? kasan_check_read+0x11/0x20 [ 281.318191] ? rcu_is_watching+0x8c/0x150 [ 281.322354] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 281.326788] km_query+0x1a2/0x360 [ 281.330272] ? km_migrate+0x3d0/0x3d0 [ 281.334113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.339671] ? xfrm_state_afinfo_get_rcu+0xf1/0x1b0 [ 281.344710] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 281.349927] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.355493] ? security_xfrm_state_alloc_acquire+0x94/0xc0 [ 281.361140] xfrm_state_find+0x2323/0x3550 [ 281.365417] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 281.370805] ? __lock_is_held+0xb5/0x140 [ 281.374908] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.380474] ? rt6_score_route+0x118/0x400 [ 281.384724] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.390287] ? find_match+0x484/0xec0 [ 281.394109] ? rt6_remove_exception_rt+0x550/0x550 [ 281.399066] ? graph_lock+0x170/0x170 [ 281.402892] ? __lock_is_held+0xb5/0x140 [ 281.406982] ? __lock_acquire+0x7fc/0x5020 [ 281.411247] ? __lock_is_held+0xb5/0x140 [ 281.415321] ? __lock_is_held+0xb5/0x140 [ 281.419403] ? print_usage_bug+0xc0/0xc0 [ 281.423507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.429181] ? fib6_table_lookup+0xcac/0x14f0 [ 281.433700] ? print_usage_bug+0xc0/0xc0 [ 281.437780] xfrm_tmpl_resolve+0x383/0xe10 [ 281.442057] ? __xfrm_decode_session+0x140/0x140 [ 281.446825] ? graph_lock+0x170/0x170 [ 281.450647] ? trace_hardirqs_on+0x10/0x10 [ 281.454934] xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 281.460760] ? graph_lock+0x170/0x170 [ 281.464573] ? __d_alloc+0xc8/0xd50 [ 281.468218] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 281.472645] ? xfrm_migrate+0x19d0/0x19d0 [ 281.476828] ? ip6_pol_route+0x3d6/0x1050 [ 281.481017] ? find_held_lock+0x36/0x1c0 [ 281.485108] ? lock_downgrade+0x8f0/0x8f0 [ 281.489294] ? kasan_check_read+0x11/0x20 [ 281.493450] ? rcu_is_watching+0x8c/0x150 [ 281.497610] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 281.502125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.507791] ? security_xfrm_policy_lookup+0x9e/0xd0 [ 281.513005] ? xfrm_sk_policy_lookup+0x480/0x610 [ 281.517785] ? xfrm_selector_match+0xf90/0xf90 [ 281.522389] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 281.527425] xfrm_lookup+0x3b3/0x2880 [ 281.531334] ? xfrm_lookup+0x3b3/0x2880 [ 281.535323] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 281.540111] ? addrconf_rs_timer+0x690/0x690 [ 281.544544] ? xfrm_policy_lookup+0x70/0x70 [ 281.548895] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.554449] ? ip6_dst_lookup_tail+0x3ca/0x1da0 [ 281.559167] ? dst_output+0x180/0x180 [ 281.562989] ? graph_lock+0x170/0x170 [ 281.566810] ? graph_lock+0x170/0x170 [ 281.570642] ? reacquire_held_locks+0xbc/0x3e0 [ 281.575334] ? find_held_lock+0x36/0x1c0 [ 281.579420] xfrm_lookup_route+0x39/0x1f0 [ 281.583597] ip6_dst_lookup_flow+0x1c6/0x270 [ 281.588041] ? ip6_dst_lookup+0x60/0x60 [ 281.592036] rawv6_sendmsg+0xec9/0x45c0 [ 281.596045] ? compat_rawv6_getsockopt+0x140/0x140 [ 281.600998] ? trace_hardirqs_on+0x10/0x10 [ 281.605261] ? graph_lock+0x170/0x170 [ 281.609076] ? do_raw_spin_lock+0xc1/0x200 [ 281.613328] ? graph_lock+0x170/0x170 [ 281.617152] ? lock_acquire+0x1e4/0x540 [ 281.621137] ? __fdget_pos+0x1bb/0x200 [ 281.625049] ? graph_lock+0x170/0x170 [ 281.628888] ? graph_lock+0x170/0x170 [ 281.632703] ? find_held_lock+0x36/0x1c0 [ 281.636772] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.642338] ? _parse_integer+0x13b/0x190 [ 281.646502] ? find_held_lock+0x36/0x1c0 [ 281.650601] inet_sendmsg+0x1a1/0x690 [ 281.654409] ? inet_sendmsg+0x1a1/0x690 [ 281.658420] ? ipip_gro_receive+0x100/0x100 [ 281.662783] ? security_socket_sendmsg+0x94/0xc0 [ 281.667557] ? ipip_gro_receive+0x100/0x100 [ 281.671917] sock_sendmsg+0xd5/0x120 [ 281.675679] sock_write_iter+0x362/0x5c0 [ 281.679753] ? sock_sendmsg+0x120/0x120 [ 281.683757] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.689305] ? iov_iter_init+0xc9/0x1f0 [ 281.693293] __vfs_write+0x6c6/0x9f0 [ 281.697274] ? kernel_read+0x120/0x120 [ 281.701201] ? wait_for_completion+0x8d0/0x8d0 [ 281.705819] ? rw_verify_area+0x118/0x360 [ 281.709990] vfs_write+0x1f8/0x560 [ 281.713571] ksys_write+0x101/0x260 [ 281.717214] ? __ia32_sys_read+0xb0/0xb0 [ 281.721313] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 281.726885] __x64_sys_write+0x73/0xb0 [ 281.731214] do_syscall_64+0x1b9/0x820 [ 281.735127] ? finish_task_switch+0x1d3/0x870 [ 281.739642] ? syscall_return_slowpath+0x5e0/0x5e0 [ 281.744688] ? syscall_return_slowpath+0x31d/0x5e0 [ 281.749647] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 281.755052] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 281.759919] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.765118] RIP: 0033:0x455e29 [ 281.768305] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 281.787676] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 281.795413] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 281.802690] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 281.809963] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 281.817269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 281.824549] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000002 [ 281.831943] CPU: 0 PID: 15062 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 281.839353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.848733] Call Trace: [ 281.851332] dump_stack+0x1c9/0x2b4 [ 281.854960] ? dump_stack_print_info.cold.2+0x52/0x52 [ 281.860166] should_fail.cold.4+0xa/0x1a [ 281.864235] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 281.869352] ? kasan_kmalloc+0xc4/0xe0 [ 281.873256] ? kasan_slab_alloc+0x12/0x20 [ 281.877491] ? kmem_cache_alloc+0x12e/0x760 [ 281.881826] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 281.886780] ? kvm_mmu_load+0x21/0x10e0 [ 281.890861] ? vcpu_enter_guest+0x3aa6/0x6090 [ 281.895362] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 281.900407] ? graph_lock+0x170/0x170 [ 281.904225] ? do_syscall_64+0x1b9/0x820 [ 281.908293] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.913688] ? find_held_lock+0x36/0x1c0 [ 281.917766] ? __lock_is_held+0xb5/0x140 [ 281.921843] ? check_same_owner+0x340/0x340 [ 281.926184] ? rcu_note_context_switch+0x730/0x730 [ 281.931131] __should_failslab+0x124/0x180 [ 281.935385] should_failslab+0x9/0x14 [ 281.939192] kmem_cache_alloc+0x2af/0x760 [ 281.943348] ? alloc_pages_current+0x114/0x210 [ 281.947953] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 281.952984] mmu_topup_memory_caches+0x2fa/0x3a0 [ 281.957765] kvm_mmu_load+0x21/0x10e0 [ 281.961590] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 281.967154] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 281.971759] vcpu_enter_guest+0x3aa6/0x6090 [ 281.976084] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 281.980341] ? __lock_is_held+0xb5/0x140 [ 281.984417] ? kvm_set_msr_common+0x26a0/0x26a0 [ 281.989097] ? vmx_vcpu_load+0xadf/0xff0 [ 281.993161] ? __lock_is_held+0xb5/0x140 [ 281.997241] ? __account_cfs_rq_runtime+0x770/0x770 [ 282.002275] ? vmx_vcpu_reset+0x1040/0x1040 [ 282.006601] ? graph_lock+0x170/0x170 [ 282.010419] ? __lock_acquire+0x7fc/0x5020 [ 282.014676] ? __perf_event_task_sched_out+0x2f0/0x1a60 [ 282.020056] ? __lock_is_held+0xb5/0x140 [ 282.024126] ? lock_acquire+0x1e4/0x540 [ 282.028119] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 282.033155] ? lock_release+0xa30/0xa30 [ 282.037151] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 282.042436] ? kvm_arch_dev_ioctl+0x610/0x610 [ 282.046941] ? preempt_notifier_dec+0x20/0x20 [ 282.051450] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 282.056313] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 282.061338] kvm_vcpu_ioctl+0x7b8/0x1300 [ 282.065411] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 282.071136] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 282.076170] ? trace_hardirqs_on+0xd/0x10 [ 282.080362] ? find_held_lock+0x36/0x1c0 [ 282.084443] ? lock_downgrade+0x8f0/0x8f0 [ 282.088625] ? kasan_check_read+0x11/0x20 [ 282.092772] ? rcu_is_watching+0x8c/0x150 [ 282.097005] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 282.101433] ? __fget+0x414/0x670 [ 282.104887] ? match_held_lock+0x821/0x8d0 [ 282.109129] ? expand_files.part.8+0x9c0/0x9c0 [ 282.113744] ? kasan_check_write+0x14/0x20 [ 282.117992] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 282.122938] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 282.128661] do_vfs_ioctl+0x1de/0x1720 [ 282.132562] ? ioctl_preallocate+0x300/0x300 [ 282.136979] ? __fget_light+0x2f7/0x440 [ 282.140952] ? __schedule+0x1ed0/0x1ed0 [ 282.144931] ? fget_raw+0x20/0x20 [ 282.148391] ? __sb_end_write+0xac/0xe0 [ 282.152382] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.157929] ? exit_to_usermode_loop+0x8c/0x370 [ 282.162637] ? security_file_ioctl+0x94/0xc0 [ 282.167060] ksys_ioctl+0xa9/0xd0 [ 282.170526] __x64_sys_ioctl+0x73/0xb0 [ 282.174414] do_syscall_64+0x1b9/0x820 [ 282.178303] ? syscall_slow_exit_work+0x500/0x500 [ 282.183148] ? syscall_return_slowpath+0x5e0/0x5e0 [ 282.188096] ? syscall_return_slowpath+0x31d/0x5e0 [ 282.193040] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 282.198515] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.203548] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.208739] RIP: 0033:0x455e29 [ 282.211932] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.231213] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 282.238922] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 282.246185] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 282.253450] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 282.260715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 00:13:53 executing program 4: r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='/dev/infiniband/rdma_cm\x00'}, 0x10) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000440), 0x2) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000340)={0x13, 0x10, 0xfa00, {&(0x7f0000000100), r2}}, 0x18) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x2, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000380)=[@in6={0xa, 0x4e24, 0x4, @remote={0xfe, 0x80, [], 0xbb}, 0x5}, @in6={0xa, 0x4e20, 0x1, @mcast1={0xff, 0x1, [], 0x1}, 0x383}, @in={0x2, 0x4e20, @rand_addr=0x3d60}, @in={0x2, 0x4e24, @rand_addr=0x196}, @in6={0xa, 0x4e24, 0x81, @remote={0xfe, 0x80, [], 0xbb}, 0x2}], 0x74) [ 282.267995] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000005a 00:13:53 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3f00, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:53 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5441, &(0x7f0000000000)) 00:13:53 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) fcntl$setlease(r1, 0x400, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f0000000000), 0x0) 00:13:53 executing program 4: madvise(&(0x7f0000006000/0x400000)=nil, 0x400000, 0xf) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_all\x00', 0x0, 0x0) ioctl$KVM_SET_FPU(r1, 0x41a0ae8d, &(0x7f0000000080)={[], 0x6, 0x64, 0x6, 0x0, 0x8001, 0x0, 0x3007, [], 0x4c37}) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) madvise(&(0x7f0000003000/0x3000)=nil, 0x3000, 0xf) 00:13:53 executing program 2 (fault-call:7 fault-nth:91): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfffff000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:54 executing program 5 (fault-call:13 fault-nth:3): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:54 executing program 6: mmap(&(0x7f0000000000/0xfd4000)=nil, 0xfd4000, 0x2000001, 0x40000000000031, 0xffffffffffffffff, 0x0) socketpair(0x11, 0x2, 0xfec, &(0x7f0000000000)={0xffffffffffffffff}) sendto$llc(r0, &(0x7f0000000040)="357d39364026a619510293c9565ab4e15eee6e3cdc3534c14d964672333b12f1dd98015b2fbdbc412cf6f8e62249ffe9fe170a474c81c67906ef1810144ca0c3b97c35b6e0aceab77e89a4ac5c00335c295cc80566f0baec7491bf82455429d87a2c20924be45aea2ddfc00d43e7a5cc7e26714b19e0e5e529e601d915f83059b80e8849908f83e109f18e679833a65ed51172c2e9262741380024f28f85edf00a294c1d8c442ee1c1b22b997b449708cb07a5e19abe74b1e9f667df528dd91fa8a27c7d2a35994b5d", 0xc9, 0x0, &(0x7f0000000140)={0x1a, 0x335, 0x2, 0xc0e, 0x1}, 0x10) mmap(&(0x7f0000000000/0xfc1000)=nil, 0xfc1000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(&(0x7f0000008ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000fc1000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000a20000)={0x8, 0x0, &(0x7f0000fc1ffc)=[@acquire={0x40106309}], 0x0, 0x0, &(0x7f00000000c0)}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) [ 282.535604] FAULT_INJECTION: forcing a failure. [ 282.535604] name failslab, interval 1, probability 0, space 0, times 0 [ 282.546992] CPU: 1 PID: 15096 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 282.552729] binder: 15104:15105 BC_ACQUIRE_DONE u0000000000000000 no match [ 282.554402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.554411] Call Trace: [ 282.554444] dump_stack+0x1c9/0x2b4 [ 282.554467] ? dump_stack_print_info.cold.2+0x52/0x52 [ 282.554496] should_fail.cold.4+0xa/0x1a [ 282.554519] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 282.591526] ? kasan_kmalloc+0xc4/0xe0 [ 282.595414] ? kasan_slab_alloc+0x12/0x20 [ 282.599566] ? kmem_cache_alloc+0x12e/0x760 [ 282.603896] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 282.608830] ? kvm_mmu_load+0x21/0x10e0 [ 282.612810] ? vcpu_enter_guest+0x3aa6/0x6090 [ 282.617307] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 282.622333] ? graph_lock+0x170/0x170 [ 282.626135] ? do_syscall_64+0x1b9/0x820 [ 282.630198] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.635585] ? find_held_lock+0x36/0x1c0 [ 282.639650] ? __lock_is_held+0xb5/0x140 [ 282.643716] ? check_same_owner+0x340/0x340 [ 282.648051] ? rcu_note_context_switch+0x730/0x730 [ 282.652986] __should_failslab+0x124/0x180 [ 282.657242] should_failslab+0x9/0x14 [ 282.661048] kmem_cache_alloc+0x2af/0x760 [ 282.665212] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 282.670182] mmu_topup_memory_caches+0x2fa/0x3a0 [ 282.674946] kvm_mmu_load+0x21/0x10e0 [ 282.678755] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.684324] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 282.688914] vcpu_enter_guest+0x3aa6/0x6090 [ 282.693262] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 282.697500] ? print_usage_bug+0xc0/0xc0 [ 282.701569] ? kvm_set_msr_common+0x26a0/0x26a0 [ 282.706264] ? vmx_vcpu_load+0xadf/0xff0 [ 282.710351] ? __lock_acquire+0x7fc/0x5020 [ 282.714591] ? vmx_vcpu_reset+0x1040/0x1040 [ 282.718927] ? graph_lock+0x170/0x170 [ 282.722750] ? __lock_acquire+0x7fc/0x5020 [ 282.727127] ? __lock_is_held+0xb5/0x140 [ 282.731191] ? lock_acquire+0x1e4/0x540 [ 282.735169] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 282.740370] ? lock_release+0xa30/0xa30 [ 282.744446] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 282.749741] ? kvm_arch_dev_ioctl+0x610/0x610 [ 282.754246] ? preempt_notifier_dec+0x20/0x20 [ 282.758755] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 282.763607] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 282.768634] kvm_vcpu_ioctl+0x7b8/0x1300 [ 282.772697] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 282.778413] ? find_held_lock+0x36/0x1c0 [ 282.782474] ? find_held_lock+0x36/0x1c0 [ 282.786539] ? lock_downgrade+0x8f0/0x8f0 [ 282.790705] ? kasan_check_read+0x11/0x20 [ 282.794869] ? rcu_is_watching+0x8c/0x150 [ 282.799110] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 282.803531] ? __fget+0x414/0x670 [ 282.806988] ? match_held_lock+0x821/0x8d0 [ 282.811242] ? expand_files.part.8+0x9c0/0x9c0 [ 282.815839] ? kasan_check_write+0x14/0x20 [ 282.820091] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 282.825033] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 282.830744] do_vfs_ioctl+0x1de/0x1720 [ 282.834659] ? __lock_is_held+0xb5/0x140 [ 282.838732] ? ioctl_preallocate+0x300/0x300 [ 282.843144] ? __fget_light+0x2f7/0x440 [ 282.847127] ? fget_raw+0x20/0x20 [ 282.850592] ? __sb_end_write+0xac/0xe0 [ 282.854670] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.860221] ? fput+0x130/0x1a0 [ 282.863518] ? ksys_write+0x1ae/0x260 [ 282.867323] ? security_file_ioctl+0x94/0xc0 [ 282.871748] ksys_ioctl+0xa9/0xd0 [ 282.875225] __x64_sys_ioctl+0x73/0xb0 [ 282.879116] do_syscall_64+0x1b9/0x820 [ 282.883017] ? finish_task_switch+0x1d3/0x870 [ 282.887520] ? syscall_return_slowpath+0x5e0/0x5e0 [ 282.892460] ? syscall_return_slowpath+0x31d/0x5e0 [ 282.897413] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 282.902963] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.907814] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.913004] RIP: 0033:0x455e29 [ 282.916213] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.935477] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 282.943189] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 282.950468] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 282.957751] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 282.965116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 282.974095] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000005b [ 282.991146] binder: 15104:15106 unknown command 0 [ 283.002146] FAULT_INJECTION: forcing a failure. [ 283.002146] name failslab, interval 1, probability 0, space 0, times 0 [ 283.011130] binder: 15104:15106 ioctl c0306201 20a20000 returned -22 [ 283.013487] CPU: 0 PID: 15107 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 283.027380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.036763] Call Trace: [ 283.039431] dump_stack+0x1c9/0x2b4 [ 283.043114] ? dump_stack_print_info.cold.2+0x52/0x52 [ 283.048355] should_fail.cold.4+0xa/0x1a [ 283.052480] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 283.057638] ? kasan_check_read+0x11/0x20 [ 283.061884] ? do_raw_spin_unlock+0xa7/0x2f0 [ 283.066294] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 283.070909] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 283.076033] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 283.081068] ? trace_hardirqs_on+0xd/0x10 [ 283.085246] ? consume_skb+0x1a0/0x560 [ 283.089161] ? alloc_skb_with_frags+0x770/0x770 [ 283.093833] ? __wake_up_common+0x740/0x740 [ 283.098179] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 283.103205] ? trace_hardirqs_on+0xd/0x10 [ 283.107481] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.113055] ? netlink_broadcast_filtered+0x7ea/0x1630 [ 283.118390] __should_failslab+0x124/0x180 [ 283.122675] should_failslab+0x9/0x14 [ 283.126490] kmem_cache_alloc_node+0x56/0x780 [ 283.131027] __alloc_skb+0x119/0x790 [ 283.136461] ? skb_scrub_packet+0x580/0x580 [ 283.140824] ? __lock_is_held+0xb5/0x140 [ 283.144898] ? netlink_broadcast+0x3a/0x50 [ 283.149150] ? xfrm_send_acquire+0x934/0xbd0 [ 283.153584] pfkey_send_acquire+0x1af/0x25e0 [ 283.158016] ? rcu_is_watching+0x8c/0x150 [ 283.162198] km_query+0x1a2/0x360 [ 283.165665] ? km_migrate+0x3d0/0x3d0 [ 283.169468] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.175025] ? xfrm_state_afinfo_get_rcu+0xf1/0x1b0 [ 283.180240] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.185782] ? security_xfrm_state_alloc_acquire+0x94/0xc0 [ 283.191412] xfrm_state_find+0x2323/0x3550 [ 283.195662] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 283.200780] ? __lock_is_held+0xb5/0x140 [ 283.204845] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.210414] ? rt6_score_route+0x118/0x400 [ 283.215025] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.220579] ? find_match+0x484/0xec0 [ 283.224421] ? rt6_remove_exception_rt+0x550/0x550 [ 283.229387] ? graph_lock+0x170/0x170 [ 283.233449] ? __lock_is_held+0xb5/0x140 [ 283.237526] ? __lock_acquire+0x7fc/0x5020 [ 283.241769] ? __lock_is_held+0xb5/0x140 [ 283.245835] ? __lock_is_held+0xb5/0x140 [ 283.249918] ? print_usage_bug+0xc0/0xc0 [ 283.254007] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.259580] ? fib6_table_lookup+0xcac/0x14f0 [ 283.264084] ? print_usage_bug+0xc0/0xc0 [ 283.268161] xfrm_tmpl_resolve+0x383/0xe10 [ 283.272428] ? __xfrm_decode_session+0x140/0x140 [ 283.277327] ? graph_lock+0x170/0x170 [ 283.281167] ? trace_hardirqs_on+0x10/0x10 [ 283.285415] xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 283.290892] ? graph_lock+0x170/0x170 [ 283.294705] ? __d_alloc+0xc8/0xd50 [ 283.298337] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 283.302767] ? xfrm_migrate+0x19d0/0x19d0 [ 283.306921] ? ip6_pol_route+0x3d6/0x1050 [ 283.311088] ? find_held_lock+0x36/0x1c0 [ 283.315173] ? lock_downgrade+0x8f0/0x8f0 [ 283.319330] ? kasan_check_read+0x11/0x20 [ 283.323564] ? rcu_is_watching+0x8c/0x150 [ 283.327717] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 283.332137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.337695] ? security_xfrm_policy_lookup+0x9e/0xd0 [ 283.342804] ? xfrm_sk_policy_lookup+0x480/0x610 [ 283.347590] ? xfrm_selector_match+0xf90/0xf90 [ 283.352198] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 283.357232] xfrm_lookup+0x3b3/0x2880 [ 283.361033] ? xfrm_lookup+0x3b3/0x2880 [ 283.365010] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 283.369782] ? addrconf_rs_timer+0x690/0x690 [ 283.374215] ? xfrm_policy_lookup+0x70/0x70 [ 283.378557] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.384107] ? ip6_dst_lookup_tail+0x3ca/0x1da0 [ 283.388791] ? dst_output+0x180/0x180 [ 283.392606] ? graph_lock+0x170/0x170 [ 283.396418] ? graph_lock+0x170/0x170 [ 283.400227] ? reacquire_held_locks+0xbc/0x3e0 [ 283.404823] ? find_held_lock+0x36/0x1c0 [ 283.408919] xfrm_lookup_route+0x39/0x1f0 [ 283.413076] ip6_dst_lookup_flow+0x1c6/0x270 [ 283.417497] ? ip6_dst_lookup+0x60/0x60 [ 283.421484] rawv6_sendmsg+0xec9/0x45c0 [ 283.425496] ? compat_rawv6_getsockopt+0x140/0x140 [ 283.430445] ? trace_hardirqs_on+0x10/0x10 [ 283.434696] ? graph_lock+0x170/0x170 [ 283.438498] ? do_raw_spin_lock+0xc1/0x200 [ 283.442777] ? graph_lock+0x170/0x170 [ 283.446616] ? lock_acquire+0x1e4/0x540 [ 283.450691] ? __fdget_pos+0x1bb/0x200 [ 283.454597] ? graph_lock+0x170/0x170 [ 283.458412] ? graph_lock+0x170/0x170 [ 283.462229] ? find_held_lock+0x36/0x1c0 [ 283.466314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.471871] ? _parse_integer+0x13b/0x190 [ 283.476120] ? find_held_lock+0x36/0x1c0 [ 283.480393] inet_sendmsg+0x1a1/0x690 [ 283.484202] ? inet_sendmsg+0x1a1/0x690 [ 283.488200] ? ipip_gro_receive+0x100/0x100 [ 283.492533] ? security_socket_sendmsg+0x94/0xc0 [ 283.497294] ? ipip_gro_receive+0x100/0x100 [ 283.501632] sock_sendmsg+0xd5/0x120 [ 283.505390] sock_write_iter+0x362/0x5c0 [ 283.509476] ? sock_sendmsg+0x120/0x120 [ 283.513485] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.519243] ? iov_iter_init+0xc9/0x1f0 [ 283.523326] __vfs_write+0x6c6/0x9f0 [ 283.527065] ? kernel_read+0x120/0x120 [ 283.531055] ? wait_for_completion+0x8d0/0x8d0 [ 283.535656] ? rw_verify_area+0x118/0x360 [ 283.539843] vfs_write+0x1f8/0x560 [ 283.543618] ksys_write+0x101/0x260 [ 283.547262] ? __ia32_sys_read+0xb0/0xb0 [ 283.551454] ? syscall_slow_exit_work+0x500/0x500 [ 283.556306] __x64_sys_write+0x73/0xb0 [ 283.560203] do_syscall_64+0x1b9/0x820 [ 283.564101] ? finish_task_switch+0x1d3/0x870 [ 283.568604] ? syscall_return_slowpath+0x5e0/0x5e0 [ 283.573546] ? syscall_return_slowpath+0x31d/0x5e0 [ 283.578538] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 283.583929] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.588790] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.594081] RIP: 0033:0x455e29 [ 283.597278] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.616660] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 283.624812] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 283.632089] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 283.639458] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 283.646993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 283.654380] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000003 00:13:55 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x541b, &(0x7f0000000000)) 00:13:55 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x540e, &(0x7f0000000000)) 00:13:55 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x40000, 0x0) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x0, 0x4, 0x4, 0x4, {0xa, 0x4e22, 0x5, @local={0xfe, 0x80, [], 0xaa}, 0x2}}}, 0x80) r2 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x4, r2, r2) 00:13:55 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x40000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:55 executing program 6: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c23, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) syz_genetlink_get_family_id$fou(&(0x7f0000000100)='fou\x00') setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0)='tls\x00', 0x4) bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10) bind$can_raw(r0, &(0x7f0000000040)={0x1d}, 0x10) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x4c380, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x9) 00:13:55 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000480)) socketpair(0xb, 0x0, 0xfffffffffffff0e5, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r3, 0x800448d3, &(0x7f0000000140)={{0x4, 0x6, 0x1, 0x7, 0x9, 0x7ff}, 0x8, 0x0, 0x7, 0xff, 0x81, "1be21795317e89bd055a842e57e6ca32fb90eedea797ae4216c212329ec65aeb2014522ca1016e1989bce389aa57d4eb3197585265c1480b430c6f8d4810cb5da7865248a6d031db2c54c9ee4fd54cf76e4e87a15e6132c0756c23c600e78b5420993efc0cee6904f955be82f25df7b5c0df651d23b9e3aaa6b334a0634a569a"}) accept4$packet(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000280)=0x14, 0x80000) r5 = getuid() setsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f00000002c0)={{{@in=@rand_addr, @in6=@remote={0xfe, 0x80, [], 0xbb}, 0x4e21, 0x100000001, 0x4e22, 0x0, 0xa, 0x80, 0xa0, 0x73, r4, r5}, {0x4, 0x40, 0x0, 0xd82, 0x4, 0xffffffff, 0x0, 0x3ac2800000}, {0xffffffffffffff51, 0x7, 0x5, 0x5}, 0x100000001, 0x6e6bb8, 0x1, 0x1, 0x9c43fb748c2c49da, 0x3}, {{@in6=@local={0xfe, 0x80, [], 0xaa}, 0x4d3, 0xff}, 0xa, @in=@broadcast=0xffffffff, 0x3503, 0x4, 0x3, 0x2, 0x10001, 0x6, 0x4}}, 0xe8) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000080)={0x0, 0x6211, 0xfffffffffffffffb, &(0x7f0000000040)=0x79}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r6, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r3, 0x800448d3, &(0x7f00000003c0)={{0x6, 0x7fffffff, 0xffffffffffff7fff, 0x6, 0x7fff, 0x800}, 0x45, 0x349, 0x7, 0x7fffffff, 0x1ff, "315ada5c51528865bcba47c2586c70cd2c14e8f1a13d881dd41b6fc38b869251d619c974c083c5aa1ccfc4df61d55514c64938df5995d8e10780405aca8e764001203237b1efaaa5fff89755593c57c2867b2bc80e7b81b2be01895de1667909764c54a146c40dcadecf084f7c4cca84a6cef6656ddfe0752febb3ecb8665d27"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 00:13:55 executing program 5 (fault-call:13 fault-nth:4): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:55 executing program 2 (fault-call:7 fault-nth:92): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 283.860862] FAULT_INJECTION: forcing a failure. [ 283.860862] name failslab, interval 1, probability 0, space 0, times 0 [ 283.872218] CPU: 1 PID: 15119 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 283.879606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.888974] Call Trace: [ 283.891592] dump_stack+0x1c9/0x2b4 [ 283.895301] ? dump_stack_print_info.cold.2+0x52/0x52 [ 283.900528] ? kernel_text_address+0x79/0xf0 [ 283.904969] should_fail.cold.4+0xa/0x1a [ 283.909050] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 283.914186] ? save_stack+0xa9/0xd0 [ 283.917833] ? save_stack+0x43/0xd0 [ 283.921484] ? kasan_kmalloc+0xc4/0xe0 [ 283.925383] ? kasan_slab_alloc+0x12/0x20 [ 283.929557] ? kmem_cache_alloc_node+0x144/0x780 [ 283.934446] ? __alloc_skb+0x119/0x790 [ 283.938366] ? pfkey_send_acquire+0x1af/0x25e0 [ 283.942985] ? km_query+0x1a2/0x360 [ 283.946621] ? xfrm_state_find+0x2323/0x3550 [ 283.951040] ? xfrm_tmpl_resolve+0x383/0xe10 [ 283.955461] ? xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 283.961104] ? xfrm_lookup+0x3b3/0x2880 [ 283.965086] ? xfrm_lookup_route+0x39/0x1f0 [ 283.969551] ? ip6_dst_lookup_flow+0x1c6/0x270 [ 283.974145] ? rawv6_sendmsg+0xec9/0x45c0 [ 283.978307] ? inet_sendmsg+0x1a1/0x690 [ 283.982386] ? sock_sendmsg+0xd5/0x120 [ 283.986278] ? sock_write_iter+0x362/0x5c0 [ 283.990515] ? __vfs_write+0x6c6/0x9f0 [ 283.994589] ? vfs_write+0x1f8/0x560 [ 283.998319] ? ksys_write+0x101/0x260 [ 284.002133] ? __x64_sys_write+0x73/0xb0 [ 284.006568] ? do_syscall_64+0x1b9/0x820 [ 284.010638] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.016040] ? alloc_skb_with_frags+0x770/0x770 [ 284.020732] ? __wake_up_common+0x740/0x740 [ 284.025080] ? graph_lock+0x170/0x170 [ 284.028903] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 284.033941] ? trace_hardirqs_on+0xd/0x10 [ 284.038102] __should_failslab+0x124/0x180 [ 284.042348] should_failslab+0x9/0x14 [ 284.046157] kmem_cache_alloc_node_trace+0x5a/0x770 [ 284.051199] __kmalloc_node_track_caller+0x33/0x70 [ 284.056159] __kmalloc_reserve.isra.40+0x3a/0xe0 [ 284.060929] __alloc_skb+0x155/0x790 [ 284.064932] ? skb_scrub_packet+0x580/0x580 [ 284.069376] ? __lock_is_held+0xb5/0x140 [ 284.073452] ? netlink_broadcast+0x3a/0x50 [ 284.077703] ? xfrm_send_acquire+0x934/0xbd0 [ 284.082138] pfkey_send_acquire+0x1af/0x25e0 [ 284.086570] ? rcu_is_watching+0x8c/0x150 [ 284.090739] km_query+0x1a2/0x360 [ 284.094212] ? km_migrate+0x3d0/0x3d0 [ 284.098046] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.103590] ? xfrm_state_afinfo_get_rcu+0xf1/0x1b0 [ 284.108636] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 284.114205] ? security_xfrm_state_alloc_acquire+0x94/0xc0 [ 284.119884] xfrm_state_find+0x2323/0x3550 [ 284.124187] ? xfrm_state_afinfo_get_rcu+0x1b0/0x1b0 [ 284.129323] ? __lock_is_held+0xb5/0x140 [ 284.133403] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.138946] ? rt6_score_route+0x118/0x400 [ 284.143208] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.148768] ? find_match+0x484/0xec0 [ 284.152668] ? rt6_remove_exception_rt+0x550/0x550 [ 284.157704] ? graph_lock+0x170/0x170 [ 284.161522] ? __lock_is_held+0xb5/0x140 [ 284.165630] ? __lock_acquire+0x7fc/0x5020 [ 284.169905] ? __lock_is_held+0xb5/0x140 [ 284.173982] ? __lock_is_held+0xb5/0x140 [ 284.178079] ? print_usage_bug+0xc0/0xc0 [ 284.182156] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.187728] ? fib6_table_lookup+0xcac/0x14f0 [ 284.192238] ? print_usage_bug+0xc0/0xc0 [ 284.196322] xfrm_tmpl_resolve+0x383/0xe10 [ 284.200599] ? __xfrm_decode_session+0x140/0x140 [ 284.205408] ? graph_lock+0x170/0x170 [ 284.209227] ? trace_hardirqs_on+0x10/0x10 [ 284.213486] xfrm_resolve_and_create_bundle+0x184/0x2c20 [ 284.218957] ? perf_trace_lock+0x920/0x920 [ 284.223222] ? perf_trace_lock+0xde/0x920 [ 284.227384] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 284.232242] ? graph_lock+0x170/0x170 [ 284.236075] ? xfrm_migrate+0x19d0/0x19d0 [ 284.240244] ? find_held_lock+0x36/0x1c0 [ 284.244349] ? lock_downgrade+0x8f0/0x8f0 [ 284.248531] ? rcu_is_watching+0x8c/0x150 [ 284.252708] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 284.257152] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.262720] ? security_xfrm_policy_lookup+0x9e/0xd0 [ 284.267843] ? xfrm_sk_policy_lookup+0x480/0x610 [ 284.272649] ? xfrm_selector_match+0xf90/0xf90 [ 284.277261] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 284.282305] xfrm_lookup+0x3b3/0x2880 [ 284.286133] ? xfrm_lookup+0x3b3/0x2880 [ 284.290123] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 284.294905] ? addrconf_rs_timer+0x690/0x690 [ 284.299428] ? xfrm_policy_lookup+0x70/0x70 [ 284.303793] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 284.309338] ? ip6_dst_lookup_tail+0x3ca/0x1da0 [ 284.314048] ? dst_output+0x180/0x180 [ 284.317893] ? graph_lock+0x170/0x170 [ 284.321700] ? graph_lock+0x170/0x170 [ 284.325533] ? find_held_lock+0x36/0x1c0 [ 284.329732] xfrm_lookup_route+0x39/0x1f0 [ 284.333909] ip6_dst_lookup_flow+0x1c6/0x270 [ 284.338340] ? ip6_dst_lookup+0x60/0x60 [ 284.342348] rawv6_sendmsg+0xec9/0x45c0 [ 284.346377] ? compat_rawv6_getsockopt+0x140/0x140 [ 284.351338] ? trace_hardirqs_on+0x10/0x10 [ 284.355582] ? perf_trace_lock+0xde/0x920 [ 284.359766] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 284.364702] ? perf_trace_lock+0x920/0x920 [ 284.368950] ? perf_trace_lock+0xde/0x920 [ 284.373118] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 284.377979] ? zap_class+0x740/0x740 [ 284.381729] ? perf_trace_lock+0x920/0x920 [ 284.385986] ? perf_trace_lock+0xde/0x920 [ 284.390157] ? perf_trace_lock_acquire+0xeb/0x9a0 [ 284.395106] ? graph_lock+0x170/0x170 [ 284.398924] ? zap_class+0x740/0x740 [ 284.402661] ? perf_trace_lock+0x920/0x920 [ 284.406918] ? find_held_lock+0x36/0x1c0 [ 284.411015] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.416590] ? _parse_integer+0x13b/0x190 [ 284.420776] ? find_held_lock+0x36/0x1c0 [ 284.424887] inet_sendmsg+0x1a1/0x690 [ 284.428701] ? inet_sendmsg+0x1a1/0x690 [ 284.432703] ? ipip_gro_receive+0x100/0x100 [ 284.437058] ? security_socket_sendmsg+0x94/0xc0 [ 284.441823] ? ipip_gro_receive+0x100/0x100 [ 284.446257] sock_sendmsg+0xd5/0x120 [ 284.449982] sock_write_iter+0x362/0x5c0 [ 284.454071] ? sock_sendmsg+0x120/0x120 [ 284.458079] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 284.463659] ? iov_iter_init+0xc9/0x1f0 [ 284.467674] __vfs_write+0x6c6/0x9f0 [ 284.471406] ? kernel_read+0x120/0x120 [ 284.475324] ? wait_for_completion+0x8d0/0x8d0 [ 284.479951] ? rw_verify_area+0x118/0x360 [ 284.484129] vfs_write+0x1f8/0x560 [ 284.487705] ksys_write+0x101/0x260 [ 284.491351] ? __ia32_sys_read+0xb0/0xb0 [ 284.495441] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 284.501010] __x64_sys_write+0x73/0xb0 [ 284.504916] do_syscall_64+0x1b9/0x820 [ 284.508810] ? finish_task_switch+0x1d3/0x870 [ 284.513315] ? syscall_return_slowpath+0x5e0/0x5e0 [ 284.518264] ? syscall_return_slowpath+0x31d/0x5e0 [ 284.523231] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 284.528629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.533504] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.538715] RIP: 0033:0x455e29 [ 284.541904] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.561450] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 284.569188] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 284.576481] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 284.583824] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 284.591131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 284.598495] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000004 [ 284.637522] FAULT_INJECTION: forcing a failure. [ 284.637522] name failslab, interval 1, probability 0, space 0, times 0 [ 284.648967] CPU: 0 PID: 15128 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 284.656378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.665769] Call Trace: [ 284.668403] dump_stack+0x1c9/0x2b4 [ 284.672070] ? dump_stack_print_info.cold.2+0x52/0x52 [ 284.677433] should_fail.cold.4+0xa/0x1a [ 284.681579] ? fault_create_debugfs_attr+0x1f0/0x1f0 00:13:56 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x311442, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$EVIOCGID(r1, 0x80084502, &(0x7f00000002c0)=""/142) r2 = socket(0x1e, 0x4, 0x0) recvfrom(r2, &(0x7f00000000c0)=""/79, 0x4f, 0x0, &(0x7f0000000140)=@rc={0x1f}, 0x709000) linkat(r1, &(0x7f0000000080)='.\x00', r1, &(0x7f00000001c0)='./file0\x00', 0x400) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000000)={0x0, 0x100, 0x3, 0x3, 0x5}) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x0, 0xfffffffffffffff7}, 0x124) 00:13:56 executing program 5 (fault-call:13 fault-nth:5): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:13:56 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x2000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 284.686756] ? kasan_kmalloc+0xc4/0xe0 [ 284.690790] ? kasan_slab_alloc+0x12/0x20 [ 284.695003] ? kmem_cache_alloc+0x12e/0x760 [ 284.699414] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 284.704440] ? kvm_mmu_load+0x21/0x10e0 [ 284.708463] ? vcpu_enter_guest+0x3aa6/0x6090 [ 284.713000] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 284.718065] ? graph_lock+0x170/0x170 [ 284.721931] ? do_syscall_64+0x1b9/0x820 [ 284.726290] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.731713] ? find_held_lock+0x36/0x1c0 [ 284.735803] ? __lock_is_held+0xb5/0x140 [ 284.739887] ? check_same_owner+0x340/0x340 [ 284.744397] ? rcu_note_context_switch+0x730/0x730 [ 284.749419] __should_failslab+0x124/0x180 [ 284.753663] should_failslab+0x9/0x14 [ 284.757467] kmem_cache_alloc+0x2af/0x760 [ 284.761616] ? alloc_pages_current+0x114/0x210 [ 284.766194] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 284.771127] mmu_topup_memory_caches+0x2fa/0x3a0 [ 284.775906] kvm_mmu_load+0x21/0x10e0 [ 284.779726] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 284.785275] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 284.789881] vcpu_enter_guest+0x3aa6/0x6090 [ 284.794310] ? kvm_set_msr_common+0x26a0/0x26a0 [ 284.799087] ? vmx_vcpu_load+0xadf/0xff0 [ 284.803165] ? vmx_vcpu_reset+0x1040/0x1040 [ 284.807589] ? graph_lock+0x170/0x170 [ 284.811427] ? __lock_acquire+0x7fc/0x5020 [ 284.815677] ? __lock_is_held+0xb5/0x140 [ 284.819752] ? lock_acquire+0x1e4/0x540 [ 284.823731] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 284.828772] ? lock_release+0xa30/0xa30 [ 284.832754] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 284.838062] ? kvm_arch_dev_ioctl+0x610/0x610 [ 284.842570] ? preempt_notifier_dec+0x20/0x20 [ 284.847086] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 284.851971] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 284.857023] kvm_vcpu_ioctl+0x7b8/0x1300 [ 284.861096] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 284.866831] ? find_held_lock+0x36/0x1c0 [ 284.870909] ? find_held_lock+0x36/0x1c0 [ 284.874983] ? lock_downgrade+0x8f0/0x8f0 [ 284.879135] ? kasan_check_read+0x11/0x20 [ 284.883279] ? rcu_is_watching+0x8c/0x150 [ 284.887427] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 284.891851] ? __fget+0x414/0x670 [ 284.895323] ? match_held_lock+0x821/0x8d0 [ 284.899563] ? expand_files.part.8+0x9c0/0x9c0 [ 284.904144] ? kasan_check_write+0x14/0x20 [ 284.908410] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 284.913360] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 284.919070] do_vfs_ioctl+0x1de/0x1720 [ 284.923013] ? __lock_is_held+0xb5/0x140 [ 284.927083] ? ioctl_preallocate+0x300/0x300 [ 284.931504] ? __fget_light+0x2f7/0x440 [ 284.935474] ? fget_raw+0x20/0x20 [ 284.938922] ? __sb_end_write+0xac/0xe0 [ 284.942989] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 284.948531] ? fput+0x130/0x1a0 [ 284.951815] ? ksys_write+0x1ae/0x260 [ 284.955632] ? security_file_ioctl+0x94/0xc0 [ 284.960051] ksys_ioctl+0xa9/0xd0 [ 284.963507] __x64_sys_ioctl+0x73/0xb0 [ 284.967421] do_syscall_64+0x1b9/0x820 [ 284.971311] ? finish_task_switch+0x1d3/0x870 [ 284.975832] ? syscall_return_slowpath+0x5e0/0x5e0 [ 284.980771] ? syscall_return_slowpath+0x31d/0x5e0 [ 284.985708] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 284.991074] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.996278] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.001551] RIP: 0033:0x455e29 [ 285.004723] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.023977] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 285.031694] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 00:13:56 executing program 4: mmap(&(0x7f0000b88000/0x1000)=nil, 0x1000, 0x4, 0x4011, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000461000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, &(0x7f00009ecff8), 0x2, 0x0) fcntl$notify(r0, 0x402, 0x20) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x3, 0x50000) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x200000, 0x0) ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f00000000c0)=0x1d9) [ 285.038986] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 285.046266] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 285.053563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 285.060834] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000005c 00:13:56 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5450, &(0x7f0000000000)) 00:13:56 executing program 2 (fault-call:7 fault-nth:93): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:56 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5409, &(0x7f0000000000)) 00:13:56 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x10, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 285.252948] FAULT_INJECTION: forcing a failure. [ 285.252948] name failslab, interval 1, probability 0, space 0, times 0 [ 285.263313] FAULT_INJECTION: forcing a failure. [ 285.263313] name failslab, interval 1, probability 0, space 0, times 0 [ 285.264372] CPU: 1 PID: 15153 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 285.264383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.264402] Call Trace: [ 285.264431] dump_stack+0x1c9/0x2b4 [ 285.299040] ? dump_stack_print_info.cold.2+0x52/0x52 [ 285.304257] should_fail.cold.4+0xa/0x1a [ 285.308452] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 285.313575] ? kasan_kmalloc+0xc4/0xe0 [ 285.317488] ? kasan_slab_alloc+0x12/0x20 [ 285.321650] ? kmem_cache_alloc+0x12e/0x760 [ 285.325990] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 285.330938] ? kvm_mmu_load+0x21/0x10e0 [ 285.334930] ? vcpu_enter_guest+0x3aa6/0x6090 [ 285.339452] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 285.344498] ? graph_lock+0x170/0x170 [ 285.348309] ? do_syscall_64+0x1b9/0x820 [ 285.352380] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.357761] ? find_held_lock+0x36/0x1c0 [ 285.361834] ? __lock_is_held+0xb5/0x140 [ 285.365942] ? check_same_owner+0x340/0x340 [ 285.370299] ? rcu_note_context_switch+0x730/0x730 [ 285.375269] __should_failslab+0x124/0x180 [ 285.379527] should_failslab+0x9/0x14 [ 285.383340] kmem_cache_alloc+0x2af/0x760 [ 285.387507] ? alloc_pages_current+0x114/0x210 [ 285.392142] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 285.397087] mmu_topup_memory_caches+0x2fa/0x3a0 [ 285.401880] kvm_mmu_load+0x21/0x10e0 [ 285.405694] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 285.411245] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 285.415889] vcpu_enter_guest+0x3aa6/0x6090 [ 285.420237] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 285.424509] ? kvm_set_msr_common+0x26a0/0x26a0 [ 285.429201] ? zap_class+0x740/0x740 [ 285.432943] ? vmx_vcpu_load+0xadf/0xff0 [ 285.437019] ? __lock_acquire+0x7fc/0x5020 [ 285.441281] ? vmx_vcpu_reset+0x1040/0x1040 [ 285.445623] ? graph_lock+0x170/0x170 [ 285.449456] ? __lock_is_held+0xb5/0x140 [ 285.453558] ? lock_acquire+0x1e4/0x540 [ 285.457549] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 285.462590] ? lock_release+0xa30/0xa30 [ 285.466594] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 285.471895] ? kvm_arch_dev_ioctl+0x610/0x610 [ 285.476407] ? preempt_notifier_dec+0x20/0x20 [ 285.480938] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 285.485801] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 285.490879] kvm_vcpu_ioctl+0x7b8/0x1300 [ 285.494962] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 285.500708] ? find_held_lock+0x36/0x1c0 [ 285.504794] ? lock_downgrade+0x8f0/0x8f0 [ 285.509076] ? rcu_is_watching+0x8c/0x150 [ 285.513239] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 285.517676] ? __fget+0x414/0x670 [ 285.521145] ? match_held_lock+0x821/0x8d0 [ 285.525395] ? expand_files.part.8+0x9c0/0x9c0 [ 285.530004] ? kasan_check_write+0x14/0x20 [ 285.534270] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 285.539222] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 285.544960] do_vfs_ioctl+0x1de/0x1720 [ 285.548875] ? ioctl_preallocate+0x300/0x300 [ 285.553314] ? __fget_light+0x2f7/0x440 [ 285.557350] ? fget_raw+0x20/0x20 [ 285.560824] ? __sb_end_write+0xac/0xe0 [ 285.564836] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 285.570423] ? fput+0x130/0x1a0 [ 285.573743] ? ksys_write+0x1ae/0x260 [ 285.577568] ? security_file_ioctl+0x94/0xc0 [ 285.582016] ksys_ioctl+0xa9/0xd0 [ 285.585516] __x64_sys_ioctl+0x73/0xb0 [ 285.589424] do_syscall_64+0x1b9/0x820 [ 285.593347] ? finish_task_switch+0x1d3/0x870 [ 285.597870] ? syscall_return_slowpath+0x5e0/0x5e0 [ 285.602821] ? syscall_return_slowpath+0x31d/0x5e0 [ 285.608483] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 285.613884] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.618750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.623959] RIP: 0033:0x455e29 [ 285.627147] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.646568] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 285.654344] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 285.661640] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 285.668922] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 285.676217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 285.683510] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000005d [ 285.690812] CPU: 0 PID: 15161 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 285.698228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.707626] Call Trace: [ 285.710247] dump_stack+0x1c9/0x2b4 [ 285.714012] ? dump_stack_print_info.cold.2+0x52/0x52 [ 285.719277] should_fail.cold.4+0xa/0x1a [ 285.723471] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 285.728645] ? graph_lock+0x170/0x170 [ 285.732507] ? print_usage_bug+0xc0/0xc0 [ 285.736638] ? graph_lock+0x170/0x170 [ 285.740479] ? __lock_acquire+0x7fc/0x5020 [ 285.744793] ? find_held_lock+0x36/0x1c0 [ 285.748993] ? __lock_is_held+0xb5/0x140 [ 285.753126] ? check_same_owner+0x340/0x340 [ 285.757528] ? rcu_note_context_switch+0x730/0x730 [ 285.762511] ? trace_hardirqs_on+0x10/0x10 [ 285.766800] __should_failslab+0x124/0x180 [ 285.771072] should_failslab+0x9/0x14 [ 285.774922] kmem_cache_alloc_node+0x272/0x780 [ 285.779545] ? print_usage_bug+0xc0/0xc0 [ 285.783656] ? perf_event_update_userpage+0xd30/0xd30 [ 285.788890] __alloc_skb+0x119/0x790 [ 285.792691] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.798268] ? skb_scrub_packet+0x580/0x580 [ 285.802659] ? zap_class+0x740/0x740 [ 285.806426] ? __lock_acquire+0x7fc/0x5020 [ 285.810707] ? find_held_lock+0x36/0x1c0 [ 285.814837] ? graph_lock+0x170/0x170 [ 285.818673] ? trace_hardirqs_on+0x10/0x10 [ 285.822920] __ip6_append_data.isra.47+0x28c2/0x3a20 [ 285.828045] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 285.833080] ? ip6_setup_cork+0x1830/0x1830 [ 285.837421] ? ip6_mtu+0x160/0x520 [ 285.840971] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 285.845147] ? __schedule+0x884/0x1ed0 [ 285.849058] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.854637] ? ip6_setup_cork+0x1116/0x1830 [ 285.858970] ? find_held_lock+0x36/0x1c0 [ 285.863065] ? ip6_autoflowlabel.part.48+0x80/0x80 [ 285.868089] ? lock_acquire+0x1e4/0x540 [ 285.872082] ? rawv6_sendmsg+0x1111/0x45c0 [ 285.876358] ip6_append_data+0x1bd/0x2e0 [ 285.880438] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 285.885472] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 285.890518] rawv6_sendmsg+0x1193/0x45c0 [ 285.894611] ? compat_rawv6_getsockopt+0x140/0x140 [ 285.899556] ? trace_hardirqs_on+0x10/0x10 [ 285.903914] ? perf_trace_lock+0xde/0x920 [ 285.908089] ? perf_trace_lock+0xde/0x920 [ 285.912243] ? graph_lock+0x170/0x170 [ 285.916058] ? zap_class+0x740/0x740 [ 285.919790] ? graph_lock+0x170/0x170 [ 285.923601] ? lock_acquire+0x1e4/0x540 [ 285.927677] ? perf_trace_lock+0xde/0x920 [ 285.931836] ? graph_lock+0x170/0x170 [ 285.935710] ? zap_class+0x740/0x740 [ 285.939449] ? find_held_lock+0x36/0x1c0 [ 285.943527] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.949083] ? _parse_integer+0x13b/0x190 [ 285.953258] ? find_held_lock+0x36/0x1c0 [ 285.957351] inet_sendmsg+0x1a1/0x690 [ 285.961156] ? inet_sendmsg+0x1a1/0x690 [ 285.965143] ? ipip_gro_receive+0x100/0x100 [ 285.969473] ? security_socket_sendmsg+0x94/0xc0 [ 285.974241] ? ipip_gro_receive+0x100/0x100 [ 285.978590] sock_sendmsg+0xd5/0x120 [ 285.982311] sock_write_iter+0x362/0x5c0 [ 285.986497] ? sock_sendmsg+0x120/0x120 [ 285.990495] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 285.996060] ? iov_iter_init+0xc9/0x1f0 [ 286.000051] __vfs_write+0x6c6/0x9f0 [ 286.003787] ? kernel_read+0x120/0x120 [ 286.007699] ? wait_for_completion+0x8d0/0x8d0 [ 286.012313] ? rw_verify_area+0x118/0x360 [ 286.016484] vfs_write+0x1f8/0x560 [ 286.020043] ksys_write+0x101/0x260 [ 286.023679] ? __ia32_sys_read+0xb0/0xb0 [ 286.027765] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 286.033318] __x64_sys_write+0x73/0xb0 [ 286.037227] do_syscall_64+0x1b9/0x820 [ 286.041120] ? finish_task_switch+0x1d3/0x870 [ 286.045621] ? syscall_return_slowpath+0x5e0/0x5e0 [ 286.050754] ? syscall_return_slowpath+0x31d/0x5e0 [ 286.055720] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 286.061114] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.065974] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.071174] RIP: 0033:0x455e29 [ 286.074401] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.093711] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 00:13:57 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000)={0x1000, 0x7, 0x40, 0x1, 0x2}) 00:13:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfe80000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:57 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000000)) [ 286.101516] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 286.108891] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 286.116170] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 286.123460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 286.130745] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000005 00:13:57 executing program 4: mmap(&(0x7f0000b88000/0x1000)=nil, 0x1000, 0x4, 0x4011, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000461000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, &(0x7f00009ecff8), 0x2, 0x0) fcntl$notify(r0, 0x402, 0x20) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x3, 0x50000) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x200000, 0x0) ioctl$RTC_ALM_READ(r1, 0x80247008, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f00000000c0)=0x1d9) 00:13:57 executing program 5 (fault-call:13 fault-nth:6): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3f000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:57 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5425, &(0x7f0000000000)) 00:13:57 executing program 2 (fault-call:7 fault-nth:94): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 286.394354] FAULT_INJECTION: forcing a failure. [ 286.394354] name failslab, interval 1, probability 0, space 0, times 0 [ 286.405993] CPU: 1 PID: 15189 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 286.413391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.422766] Call Trace: [ 286.425383] dump_stack+0x1c9/0x2b4 [ 286.429041] ? dump_stack_print_info.cold.2+0x52/0x52 [ 286.434261] ? kernel_text_address+0x79/0xf0 [ 286.438714] should_fail.cold.4+0xa/0x1a [ 286.443406] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 286.448538] ? graph_lock+0x170/0x170 [ 286.452367] ? save_stack+0x43/0xd0 [ 286.456015] ? kasan_kmalloc+0xc4/0xe0 [ 286.459947] ? find_held_lock+0x36/0x1c0 [ 286.464066] ? __lock_is_held+0xb5/0x140 [ 286.468177] ? check_same_owner+0x340/0x340 [ 286.472532] ? rcu_note_context_switch+0x730/0x730 [ 286.477478] __should_failslab+0x124/0x180 [ 286.481726] should_failslab+0x9/0x14 [ 286.485573] kmem_cache_alloc_node_trace+0x26f/0x770 [ 286.490720] __kmalloc_node_track_caller+0x33/0x70 [ 286.495672] __kmalloc_reserve.isra.40+0x3a/0xe0 [ 286.500542] __alloc_skb+0x155/0x790 [ 286.504282] ? skb_scrub_packet+0x580/0x580 [ 286.508648] ? __lock_acquire+0x7fc/0x5020 [ 286.512900] ? graph_lock+0x170/0x170 [ 286.516715] ? trace_hardirqs_on+0x10/0x10 [ 286.520961] __ip6_append_data.isra.47+0x28c2/0x3a20 [ 286.526082] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 286.531127] ? ip6_setup_cork+0x1830/0x1830 [ 286.535471] ? ip6_mtu+0x160/0x520 [ 286.539032] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 286.543219] ? find_held_lock+0x36/0x1c0 [ 286.547304] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 286.552860] ? ip6_setup_cork+0x1116/0x1830 [ 286.557193] ? find_held_lock+0x36/0x1c0 [ 286.561278] ? ip6_autoflowlabel.part.48+0x80/0x80 [ 286.566232] ? lock_acquire+0x1e4/0x540 [ 286.570309] ? rawv6_sendmsg+0x1111/0x45c0 [ 286.574654] ip6_append_data+0x1bd/0x2e0 [ 286.578722] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 286.583768] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 286.588803] rawv6_sendmsg+0x1193/0x45c0 [ 286.592898] ? compat_rawv6_getsockopt+0x140/0x140 [ 286.597872] ? trace_hardirqs_on+0x10/0x10 [ 286.602137] ? graph_lock+0x170/0x170 [ 286.605944] ? do_raw_spin_lock+0xc1/0x200 [ 286.610208] ? graph_lock+0x170/0x170 [ 286.614025] ? lock_acquire+0x1e4/0x540 [ 286.618028] ? __fdget_pos+0x1bb/0x200 [ 286.621925] ? graph_lock+0x170/0x170 [ 286.625727] ? graph_lock+0x170/0x170 [ 286.629548] ? find_held_lock+0x36/0x1c0 [ 286.633634] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 286.639197] ? _parse_integer+0x13b/0x190 [ 286.643379] ? find_held_lock+0x36/0x1c0 [ 286.647466] inet_sendmsg+0x1a1/0x690 [ 286.651270] ? inet_sendmsg+0x1a1/0x690 [ 286.655259] ? ipip_gro_receive+0x100/0x100 [ 286.659593] ? security_socket_sendmsg+0x94/0xc0 [ 286.664361] ? ipip_gro_receive+0x100/0x100 [ 286.668799] sock_sendmsg+0xd5/0x120 [ 286.672521] sock_write_iter+0x362/0x5c0 [ 286.676607] ? sock_sendmsg+0x120/0x120 [ 286.680612] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 286.686171] ? iov_iter_init+0xc9/0x1f0 [ 286.690154] __vfs_write+0x6c6/0x9f0 [ 286.693891] ? kernel_read+0x120/0x120 [ 286.697799] ? wait_for_completion+0x8d0/0x8d0 [ 286.702409] ? rw_verify_area+0x118/0x360 [ 286.706567] vfs_write+0x1f8/0x560 [ 286.710127] ksys_write+0x101/0x260 [ 286.713764] ? __ia32_sys_read+0xb0/0xb0 [ 286.717851] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 286.723404] __x64_sys_write+0x73/0xb0 [ 286.727337] do_syscall_64+0x1b9/0x820 [ 286.731251] ? finish_task_switch+0x1d3/0x870 [ 286.735774] ? syscall_return_slowpath+0x5e0/0x5e0 [ 286.740723] ? syscall_return_slowpath+0x31d/0x5e0 [ 286.745703] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 286.751189] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.756064] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.761260] RIP: 0033:0x455e29 [ 286.764443] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.785458] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 286.793194] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 286.800474] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 286.807747] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 286.815044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 286.822330] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000006 00:13:58 executing program 6: syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0xe004, 0x1, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020401000200027000f8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[]) r0 = open(&(0x7f0000032ff8)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000056ff8)='./*ile0\x00', 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x35, 0x2, @thr={&(0x7f0000000040)="5aff4a549b5f3de4e33d17bc35418666d1111eb602ac2cd541478aac7498dedaae2094ad3feacf165e9201a38c6c7e7aad8fd3ef388e4f648d1cb471068a6056cc7ed9effa0ca4162ee08e715027ce119cd39bde95d1cb6058c27c5401043e9a", &(0x7f0000000140)="ea6dae41bf3346b84ddd95f39a1a990029b96ed6d2499bebd3f534960ae1be25e2f88739abb00c175524f33575d7f3d422da43a6aab1c62b98c5e1dbc3be23c812f83d858ca9200835abc4b76686fb73c829b9fffa9eaeb676"}}, &(0x7f00000001c0)=0x0) timer_getoverrun(r1) 00:13:58 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5403, &(0x7f0000000000)) 00:13:58 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x8, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:58 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)) 00:13:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x5d, &(0x7f0000000580), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000580), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:58 executing program 5 (fault-call:13 fault-nth:7): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:58 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x100000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:58 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5418, &(0x7f0000000000)) [ 287.136302] FAULT_INJECTION: forcing a failure. [ 287.136302] name failslab, interval 1, probability 0, space 0, times 0 [ 287.147696] CPU: 0 PID: 15221 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 287.155178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.164568] Call Trace: [ 287.167218] dump_stack+0x1c9/0x2b4 [ 287.170906] ? dump_stack_print_info.cold.2+0x52/0x52 [ 287.173503] FAULT_INJECTION: forcing a failure. [ 287.173503] name failslab, interval 1, probability 0, space 0, times 0 [ 287.176149] ? unwind_get_return_address+0x61/0xa0 [ 287.176173] ? graph_lock+0x170/0x170 [ 287.176198] should_fail.cold.4+0xa/0x1a [ 287.176224] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 287.205403] ? __lock_is_held+0xb5/0x140 [ 287.209473] ? __kmalloc_node_track_caller+0x47/0x70 [ 287.214681] ? graph_lock+0x170/0x170 [ 287.218497] ? find_held_lock+0x36/0x1c0 [ 287.222574] ? __lock_is_held+0xb5/0x140 [ 287.226660] ? check_same_owner+0x340/0x340 [ 287.231014] ? rcu_note_context_switch+0x730/0x730 [ 287.235960] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 287.241258] __should_failslab+0x124/0x180 [ 287.245508] should_failslab+0x9/0x14 [ 287.249320] kmem_cache_alloc_node+0x272/0x780 [ 287.253918] ? __kmalloc_node_track_caller+0x47/0x70 [ 287.259043] __alloc_skb+0x119/0x790 [ 287.262850] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.268403] ? skb_scrub_packet+0x580/0x580 [ 287.272739] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.278284] ? ip_generic_getfrag+0x124/0x2e0 [ 287.282789] ? ip_reply_glue_bits+0xc0/0xc0 [ 287.287146] ? graph_lock+0x170/0x170 [ 287.291070] ? raw6_getfrag+0x15b/0x220 [ 287.295052] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 287.300080] __ip6_append_data.isra.47+0x28c2/0x3a20 [ 287.305200] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 287.310245] ? ip6_setup_cork+0x1830/0x1830 [ 287.314584] ? ip6_mtu+0x160/0x520 [ 287.318127] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 287.322307] ? __schedule+0x884/0x1ed0 [ 287.326232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.331786] ? ip6_setup_cork+0x1116/0x1830 [ 287.336116] ? find_held_lock+0x36/0x1c0 [ 287.340200] ? ip6_autoflowlabel.part.48+0x80/0x80 [ 287.345147] ? lock_acquire+0x1e4/0x540 [ 287.349131] ? rawv6_sendmsg+0x1111/0x45c0 [ 287.353390] ip6_append_data+0x1bd/0x2e0 [ 287.357464] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 287.362494] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 287.367523] rawv6_sendmsg+0x1193/0x45c0 [ 287.371626] ? compat_rawv6_getsockopt+0x140/0x140 [ 287.376585] ? trace_hardirqs_on+0x10/0x10 [ 287.380856] ? graph_lock+0x170/0x170 [ 287.384679] ? do_raw_spin_lock+0xc1/0x200 [ 287.388927] ? graph_lock+0x170/0x170 [ 287.392733] ? lock_acquire+0x1e4/0x540 [ 287.396716] ? __fdget_pos+0x1bb/0x200 [ 287.400609] ? graph_lock+0x170/0x170 [ 287.404426] ? graph_lock+0x170/0x170 [ 287.408238] ? find_held_lock+0x36/0x1c0 [ 287.412325] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.417890] ? _parse_integer+0x13b/0x190 [ 287.422069] ? find_held_lock+0x36/0x1c0 [ 287.426156] inet_sendmsg+0x1a1/0x690 [ 287.429958] ? inet_sendmsg+0x1a1/0x690 [ 287.433949] ? ipip_gro_receive+0x100/0x100 [ 287.438281] ? security_socket_sendmsg+0x94/0xc0 [ 287.443040] ? ipip_gro_receive+0x100/0x100 [ 287.447376] sock_sendmsg+0xd5/0x120 [ 287.451449] sock_write_iter+0x362/0x5c0 [ 287.455545] ? sock_sendmsg+0x120/0x120 [ 287.459557] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 287.465114] ? iov_iter_init+0xc9/0x1f0 [ 287.469099] __vfs_write+0x6c6/0x9f0 [ 287.472832] ? kernel_read+0x120/0x120 [ 287.476729] ? wait_for_completion+0x8d0/0x8d0 [ 287.481331] ? rw_verify_area+0x118/0x360 [ 287.485487] vfs_write+0x1f8/0x560 [ 287.489055] ksys_write+0x101/0x260 [ 287.492697] ? __ia32_sys_read+0xb0/0xb0 [ 287.496770] ? syscall_slow_exit_work+0x500/0x500 [ 287.501634] __x64_sys_write+0x73/0xb0 [ 287.505539] do_syscall_64+0x1b9/0x820 [ 287.509447] ? finish_task_switch+0x1d3/0x870 [ 287.513972] ? syscall_return_slowpath+0x5e0/0x5e0 [ 287.518909] ? syscall_return_slowpath+0x31d/0x5e0 [ 287.523863] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 287.529254] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.534144] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.539346] RIP: 0033:0x455e29 [ 287.542532] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.561912] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 287.569651] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 287.576935] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 287.584309] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 287.591596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 287.599755] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000007 [ 287.607069] CPU: 1 PID: 15196 Comm: syz-executor2 Not tainted 4.18.0-rc4+ #142 [ 287.614458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.623862] Call Trace: [ 287.626460] dump_stack+0x1c9/0x2b4 [ 287.630088] ? dump_stack_print_info.cold.2+0x52/0x52 [ 287.635295] should_fail.cold.4+0xa/0x1a [ 287.639355] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 287.644460] ? kasan_kmalloc+0xc4/0xe0 [ 287.648345] ? kasan_slab_alloc+0x12/0x20 [ 287.652493] ? kmem_cache_alloc+0x12e/0x760 [ 287.656809] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 287.661766] ? kvm_mmu_load+0x21/0x10e0 [ 287.665766] ? vcpu_enter_guest+0x3aa6/0x6090 [ 287.670259] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 287.675274] ? graph_lock+0x170/0x170 [ 287.679064] ? do_syscall_64+0x1b9/0x820 [ 287.683129] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.688501] ? find_held_lock+0x36/0x1c0 [ 287.692565] ? __lock_is_held+0xb5/0x140 [ 287.696624] ? check_same_owner+0x340/0x340 [ 287.700942] ? rcu_note_context_switch+0x730/0x730 [ 287.705873] __should_failslab+0x124/0x180 [ 287.710117] should_failslab+0x9/0x14 [ 287.713911] kmem_cache_alloc+0x2af/0x760 [ 287.718076] ? alloc_pages_current+0x114/0x210 [ 287.722663] ? mmu_topup_memory_caches+0x2fa/0x3a0 [ 287.727774] mmu_topup_memory_caches+0x2fa/0x3a0 [ 287.732536] kvm_mmu_load+0x21/0x10e0 [ 287.736343] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.741887] ? vmx_clear_hlt.isra.39+0xa8/0xd0 [ 287.746478] vcpu_enter_guest+0x3aa6/0x6090 [ 287.750820] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 287.755085] ? kvm_set_msr_common+0x26a0/0x26a0 [ 287.759768] ? vmx_vcpu_load+0xadf/0xff0 [ 287.763839] ? __lock_acquire+0x7fc/0x5020 [ 287.768082] ? vmx_vcpu_reset+0x1040/0x1040 [ 287.772418] ? graph_lock+0x170/0x170 [ 287.776222] ? __lock_acquire+0x7fc/0x5020 [ 287.780482] ? __lock_is_held+0xb5/0x140 [ 287.784557] ? lock_acquire+0x1e4/0x540 [ 287.788532] ? kvm_arch_vcpu_ioctl_run+0x234/0x1690 [ 287.793554] ? lock_release+0xa30/0xa30 [ 287.797534] ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340 [ 287.802810] ? kvm_arch_dev_ioctl+0x610/0x610 [ 287.807321] ? preempt_notifier_dec+0x20/0x20 [ 287.811823] kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 287.816674] ? kvm_arch_vcpu_ioctl_run+0x33e/0x1690 [ 287.821846] kvm_vcpu_ioctl+0x7b8/0x1300 [ 287.825914] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 287.831890] ? find_held_lock+0x36/0x1c0 [ 287.835952] ? find_held_lock+0x36/0x1c0 [ 287.840016] ? lock_downgrade+0x8f0/0x8f0 [ 287.844170] ? kasan_check_read+0x11/0x20 [ 287.848340] ? rcu_is_watching+0x8c/0x150 [ 287.852485] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 287.856896] ? __fget+0x414/0x670 [ 287.860351] ? match_held_lock+0x821/0x8d0 [ 287.864592] ? expand_files.part.8+0x9c0/0x9c0 [ 287.869184] ? kasan_check_write+0x14/0x20 [ 287.873424] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 287.878356] ? kvm_uevent_notify_change.part.31+0x440/0x440 [ 287.884067] do_vfs_ioctl+0x1de/0x1720 [ 287.887961] ? __lock_is_held+0xb5/0x140 [ 287.892051] ? ioctl_preallocate+0x300/0x300 [ 287.897501] ? __fget_light+0x2f7/0x440 [ 287.901473] ? fget_raw+0x20/0x20 [ 287.904926] ? __sb_end_write+0xac/0xe0 [ 287.908910] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.914533] ? fput+0x130/0x1a0 [ 287.917823] ? ksys_write+0x1ae/0x260 [ 287.921646] ? security_file_ioctl+0x94/0xc0 [ 287.926057] ksys_ioctl+0xa9/0xd0 [ 287.929504] __x64_sys_ioctl+0x73/0xb0 [ 287.933393] do_syscall_64+0x1b9/0x820 [ 287.937279] ? finish_task_switch+0x1d3/0x870 [ 287.941785] ? syscall_return_slowpath+0x5e0/0x5e0 [ 287.946727] ? syscall_return_slowpath+0x31d/0x5e0 [ 287.951672] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 287.957044] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.961888] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.967069] RIP: 0033:0x455e29 [ 287.970256] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.989504] RSP: 002b:00007fa16caf4c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.997209] RAX: ffffffffffffffda RBX: 00007fa16caf56d4 RCX: 0000000000455e29 [ 288.004487] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000015 [ 288.011763] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 288.019041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 288.026321] R13: 00000000004be063 R14: 00000000004cc8f0 R15: 000000000000005e 00:13:59 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x4, 0x400000) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x1f) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000000)={0x0, 0x6000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 00:13:59 executing program 4: mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d4, &(0x7f00000011c0)) r1 = getpgid(0xffffffffffffffff) sched_setparam(r1, &(0x7f0000000000)=0x7) 00:13:59 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xd, 0x4, 0x4, 0x100000001}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r1, &(0x7f00000001c0), &(0x7f0000000080)}, 0x20) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x400, 0x0) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x9, 0x9, 0x3, 0x11, "dc05a5acb3821ade46d4fd0f71f7d639bd00babfe0770d4cf85afb102cd825bc9fb44022c90c2318954b39b6bf891fa700923bb0b74b3918140ccc8439843207", "f758979225951cf26c6ab8b9200cc4d27d454fcee00b82cef85e98867fd095ca", [0x7, 0x9]}) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r1, &(0x7f0000000300), &(0x7f0000000100)=""/108}, 0x10) 00:13:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x900000000000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:13:59 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x802c542a, &(0x7f0000000000)) 00:13:59 executing program 5 (fault-call:13 fault-nth:8): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:13:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:13:59 executing program 4: r0 = socket$inet(0x2b, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") mkdir(&(0x7f0000c92000)='./file0\x00', 0xfffffffffffffffd) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x40000) r2 = creat(&(0x7f0000f66ff4)='./file0/bus\x00', 0x0) r3 = open$dir(&(0x7f0000000180)='./file0/bus\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value={0x0}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r4, 0x9}, &(0x7f0000000200)=0x8) writev(r2, &(0x7f00002c8000)=[{&(0x7f00007fbf5f)="b7", 0x1}], 0x1) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x8, 0x8002, 0x2, 0x3, 0x3, 0x0, 0x2, 0x0}, &(0x7f0000000040)=0x20) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={r5, 0x5}, 0x8) r6 = dup(r3) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x2011, r6, 0x0) bind$inet(r0, &(0x7f0000000600)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 00:13:59 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:13:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x20000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 288.273860] FAULT_INJECTION: forcing a failure. [ 288.273860] name failslab, interval 1, probability 0, space 0, times 0 [ 288.285372] CPU: 0 PID: 15256 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 288.292776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.302153] Call Trace: [ 288.304763] dump_stack+0x1c9/0x2b4 [ 288.308403] ? dump_stack_print_info.cold.2+0x52/0x52 [ 288.313615] ? kernel_text_address+0x79/0xf0 [ 288.318048] should_fail.cold.4+0xa/0x1a [ 288.322146] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 288.327275] ? graph_lock+0x170/0x170 [ 288.331076] ? save_stack+0x43/0xd0 [ 288.334710] ? kasan_kmalloc+0xc4/0xe0 [ 288.338601] ? find_held_lock+0x36/0x1c0 [ 288.342680] ? __lock_is_held+0xb5/0x140 [ 288.346749] ? check_same_owner+0x340/0x340 [ 288.351086] ? rcu_note_context_switch+0x730/0x730 [ 288.356040] __should_failslab+0x124/0x180 [ 288.360285] should_failslab+0x9/0x14 [ 288.364091] kmem_cache_alloc_node_trace+0x26f/0x770 [ 288.369224] __kmalloc_node_track_caller+0x33/0x70 [ 288.374352] __kmalloc_reserve.isra.40+0x3a/0xe0 [ 288.379110] __alloc_skb+0x155/0x790 [ 288.382844] ? skb_scrub_packet+0x580/0x580 [ 288.387171] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.392714] ? ip_generic_getfrag+0x124/0x2e0 [ 288.397215] ? ip_reply_glue_bits+0xc0/0xc0 [ 288.401552] ? graph_lock+0x170/0x170 [ 288.405366] ? raw6_getfrag+0x15b/0x220 [ 288.409365] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 288.414389] __ip6_append_data.isra.47+0x28c2/0x3a20 [ 288.419496] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 288.424519] ? ip6_setup_cork+0x1830/0x1830 [ 288.428850] ? ip6_mtu+0x160/0x520 [ 288.432387] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 288.436554] ? find_held_lock+0x36/0x1c0 [ 288.440633] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.446171] ? ip6_setup_cork+0x1116/0x1830 [ 288.450487] ? find_held_lock+0x36/0x1c0 [ 288.454552] ? ip6_autoflowlabel.part.48+0x80/0x80 [ 288.459485] ? lock_acquire+0x1e4/0x540 [ 288.463642] ? rawv6_sendmsg+0x1111/0x45c0 [ 288.467969] ip6_append_data+0x1bd/0x2e0 [ 288.472033] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 288.477066] ? rawv6_mh_filter_unregister+0xe0/0xe0 [ 288.482096] rawv6_sendmsg+0x1193/0x45c0 [ 288.486182] ? compat_rawv6_getsockopt+0x140/0x140 [ 288.491114] ? trace_hardirqs_on+0x10/0x10 [ 288.495379] ? graph_lock+0x170/0x170 [ 288.499191] ? do_raw_spin_lock+0xc1/0x200 [ 288.503434] ? graph_lock+0x170/0x170 [ 288.507237] ? lock_acquire+0x1e4/0x540 [ 288.511237] ? __fdget_pos+0x1bb/0x200 [ 288.515140] ? graph_lock+0x170/0x170 [ 288.518941] ? graph_lock+0x170/0x170 [ 288.522759] ? find_held_lock+0x36/0x1c0 [ 288.526830] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.532407] ? _parse_integer+0x13b/0x190 [ 288.536556] ? find_held_lock+0x36/0x1c0 [ 288.540630] inet_sendmsg+0x1a1/0x690 [ 288.544439] ? inet_sendmsg+0x1a1/0x690 [ 288.548437] ? ipip_gro_receive+0x100/0x100 [ 288.552761] ? security_socket_sendmsg+0x94/0xc0 [ 288.557527] ? ipip_gro_receive+0x100/0x100 [ 288.561852] sock_sendmsg+0xd5/0x120 [ 288.565561] sock_write_iter+0x362/0x5c0 [ 288.569633] ? sock_sendmsg+0x120/0x120 [ 288.573649] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 288.579202] ? iov_iter_init+0xc9/0x1f0 [ 288.583187] __vfs_write+0x6c6/0x9f0 [ 288.586911] ? kernel_read+0x120/0x120 [ 288.590803] ? wait_for_completion+0x8d0/0x8d0 [ 288.595396] ? rw_verify_area+0x118/0x360 [ 288.599553] vfs_write+0x1f8/0x560 [ 288.603100] ksys_write+0x101/0x260 [ 288.606761] ? __ia32_sys_read+0xb0/0xb0 [ 288.610832] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.616399] __x64_sys_write+0x73/0xb0 [ 288.620305] do_syscall_64+0x1b9/0x820 [ 288.624204] ? finish_task_switch+0x1d3/0x870 [ 288.628758] ? syscall_return_slowpath+0x5e0/0x5e0 [ 288.633691] ? syscall_return_slowpath+0x31d/0x5e0 [ 288.638634] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 288.644011] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.648866] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.654057] RIP: 0033:0x455e29 00:14:00 executing program 6: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(0x0, r1) r2 = socket$inet6(0xa, 0x2000000802, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@loopback={0x0, 0x1}, 0x0, 0x1, 0x0, 0x0, 0x100, 0x2}, 0x20) 00:14:00 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5428, &(0x7f0000000000)) [ 288.657238] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 288.676596] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 288.684306] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 288.691578] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 288.698853] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 288.706150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 288.713421] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000008 00:14:00 executing program 5 (fault-call:13 fault-nth:9): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 00:14:00 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5435, &(0x7f0000000000)) 00:14:00 executing program 6: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(0x0, r1) r2 = socket$inet6(0xa, 0x2000000802, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000000)={@loopback={0x0, 0x1}, 0x0, 0x1, 0x0, 0x0, 0x100, 0x2}, 0x20) [ 288.917216] FAULT_INJECTION: forcing a failure. [ 288.917216] name failslab, interval 1, probability 0, space 0, times 0 [ 288.928668] CPU: 0 PID: 15279 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 288.936085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.945510] Call Trace: [ 288.948135] dump_stack+0x1c9/0x2b4 [ 288.951807] ? dump_stack_print_info.cold.2+0x52/0x52 [ 288.957058] should_fail.cold.4+0xa/0x1a [ 288.961147] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 288.966295] ? memcpy+0x45/0x50 [ 288.969652] ? trace_hardirqs_on+0x10/0x10 [ 288.973920] ? graph_lock+0x170/0x170 [ 288.977761] ? prandom_u32_state+0x13/0x180 [ 288.982110] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 288.987138] ? lock_downgrade+0x8f0/0x8f0 [ 288.991308] ? kasan_check_read+0x11/0x20 [ 288.995593] ? rcu_is_watching+0x8c/0x150 [ 288.999841] __should_failslab+0x124/0x180 [ 289.004112] should_failslab+0x9/0x14 [ 289.007921] __kmalloc_track_caller+0x5f/0x760 [ 289.012609] ? ipv6_select_ident+0x91/0x150 [ 289.016958] ? ip6_mtu+0x160/0x520 [ 289.020508] ? ipv6_proxy_select_ident+0x330/0x330 [ 289.025458] ? ip6_fragment+0x22a0/0x3930 [ 289.029627] kmemdup+0x24/0x50 [ 289.032830] ip6_fragment+0x22a0/0x3930 [ 289.036847] ? ip6_flush_pending_frames+0xc0/0xc0 [ 289.041708] ? ip6_forward+0x3970/0x3970 [ 289.045792] ? ip6_mtu+0x160/0x520 [ 289.049333] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 289.053495] ? kasan_check_read+0x11/0x20 [ 289.057656] ? rcu_is_watching+0x8c/0x150 [ 289.061815] ip6_finish_output+0x621/0xbc0 [ 289.066055] ip6_output+0x234/0x9d0 [ 289.069698] ? ip6_finish_output+0xbc0/0xbc0 [ 289.074121] ? ip6_fragment+0x3930/0x3930 [ 289.078269] ? rawv6_sendmsg+0x1111/0x45c0 [ 289.082529] ip6_local_out+0xc5/0x1b0 [ 289.086366] ip6_send_skb+0xba/0x340 [ 289.090081] ip6_push_pending_frames+0xc5/0xf0 [ 289.094661] rawv6_sendmsg+0x359e/0x45c0 [ 289.098825] ? compat_rawv6_getsockopt+0x140/0x140 [ 289.103768] ? trace_hardirqs_on+0x10/0x10 [ 289.108050] ? graph_lock+0x170/0x170 [ 289.111862] ? do_raw_spin_lock+0xc1/0x200 [ 289.116110] ? graph_lock+0x170/0x170 [ 289.119912] ? lock_acquire+0x1e4/0x540 [ 289.123885] ? __fdget_pos+0x1bb/0x200 [ 289.128128] ? graph_lock+0x170/0x170 [ 289.131931] ? graph_lock+0x170/0x170 [ 289.136933] ? find_held_lock+0x36/0x1c0 [ 289.141000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.146553] ? _parse_integer+0x13b/0x190 [ 289.150718] ? find_held_lock+0x36/0x1c0 [ 289.154801] inet_sendmsg+0x1a1/0x690 [ 289.158610] ? inet_sendmsg+0x1a1/0x690 [ 289.162590] ? ipip_gro_receive+0x100/0x100 [ 289.166920] ? security_socket_sendmsg+0x94/0xc0 [ 289.171763] ? ipip_gro_receive+0x100/0x100 [ 289.176100] sock_sendmsg+0xd5/0x120 [ 289.179814] sock_write_iter+0x362/0x5c0 [ 289.183961] ? sock_sendmsg+0x120/0x120 [ 289.187952] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 289.193498] ? iov_iter_init+0xc9/0x1f0 [ 289.197484] __vfs_write+0x6c6/0x9f0 [ 289.201217] ? kernel_read+0x120/0x120 [ 289.205113] ? wait_for_completion+0x8d0/0x8d0 [ 289.209707] ? rw_verify_area+0x118/0x360 [ 289.213856] vfs_write+0x1f8/0x560 [ 289.217410] ksys_write+0x101/0x260 [ 289.221040] ? __ia32_sys_read+0xb0/0xb0 [ 289.225115] ? syscall_slow_exit_work+0x500/0x500 [ 289.230004] __x64_sys_write+0x73/0xb0 [ 289.233906] do_syscall_64+0x1b9/0x820 [ 289.237799] ? finish_task_switch+0x1d3/0x870 [ 289.242307] ? syscall_return_slowpath+0x5e0/0x5e0 [ 289.247368] ? syscall_return_slowpath+0x31d/0x5e0 [ 289.252484] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 289.257866] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.262738] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.267941] RIP: 0033:0x455e29 [ 289.271124] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 289.290424] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 289.298166] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 289.305440] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 289.312717] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 289.320004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 289.327280] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 0000000000000009 00:14:01 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet(0x10, 0x3, 0x4) r3 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r5, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r5, 0xae80, 0x0) 00:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x8000000, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:01 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) bind$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @rand_addr}}, 0x1e) 00:14:01 executing program 6: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80100, 0x0) finit_module(r0, &(0x7f00000000c0)='\x00', 0x1) r1 = socket$inet6(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x24, &(0x7f0000000040)={&(0x7f0000ffc000/0x2000)=nil, 0x2000}, &(0x7f0000000080)=0x10) 00:14:01 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x80045432, &(0x7f0000000000)) 00:14:01 executing program 5 (fault-call:13 fault-nth:10): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 00:14:01 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5414, &(0x7f0000000000)) 00:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x600, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:01 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5414, &(0x7f0000000000)) 00:14:01 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:01 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) bind$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @rand_addr}}, 0x1e) 00:14:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 00:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x700000000000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:01 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) bind$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @rand_addr}}, 0x1e) 00:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x300, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 289.977006] FAULT_INJECTION: forcing a failure. [ 289.977006] name failslab, interval 1, probability 0, space 0, times 0 [ 289.989017] CPU: 1 PID: 15320 Comm: syz-executor5 Not tainted 4.18.0-rc4+ #142 [ 289.996399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.005772] Call Trace: [ 290.008401] dump_stack+0x1c9/0x2b4 [ 290.012113] ? dump_stack_print_info.cold.2+0x52/0x52 [ 290.017369] should_fail.cold.4+0xa/0x1a [ 290.021512] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 290.026666] ? lock_downgrade+0x8f0/0x8f0 [ 290.030845] ? trace_hardirqs_off+0xd/0x10 [ 290.035103] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 290.040329] ? mark_held_locks+0xc9/0x160 [ 290.044485] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 290.049116] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 290.054236] ? trace_hardirqs_on_caller+0x19e/0x5c0 [ 290.059268] ? trace_hardirqs_on+0xd/0x10 [ 290.063453] ? mod_timer+0x5f3/0x13d0 [ 290.067297] ? mod_timer_pending+0x14b0/0x14b0 [ 290.071905] __should_failslab+0x124/0x180 [ 290.076156] should_failslab+0x9/0x14 [ 290.079962] kmem_cache_alloc+0x47/0x760 [ 290.084054] skb_clone+0x1f5/0x500 [ 290.087596] ? skb_split+0x11f0/0x11f0 [ 290.091493] ? lock_release+0xa30/0xa30 [ 290.095483] neigh_probe+0x59/0x120 [ 290.099119] __neigh_event_send+0x435/0x1260 [ 290.103540] ? neightbl_fill_parms+0x11b0/0x11b0 [ 290.108313] ? kernel_text_address+0x79/0xf0 [ 290.112917] ? __kernel_text_address+0xd/0x40 [ 290.117414] ? unwind_get_return_address+0x61/0xa0 [ 290.122367] neigh_resolve_output+0x6e5/0xaf0 [ 290.126881] ? kasan_check_read+0x11/0x20 [ 290.131125] ? rcu_is_watching+0x8c/0x150 [ 290.135271] ? __neigh_event_send+0x1260/0x1260 [ 290.139948] ? ip6_local_out+0xc5/0x1b0 [ 290.143931] ? ip6_send_skb+0xba/0x340 [ 290.147824] ? ip6_push_pending_frames+0xc5/0xf0 [ 290.152582] ip6_finish_output2+0xc95/0x2820 [ 290.157002] ? ip6_flush_pending_frames+0xc0/0xc0 [ 290.161860] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 290.166892] ? ip_idents_reserve+0x224/0x310 [ 290.171318] ? __lock_is_held+0xb5/0x140 [ 290.175397] ? kasan_check_write+0x14/0x20 [ 290.179629] ? ip6_copy_metadata+0x6a7/0xaf0 [ 290.184037] ? __kmalloc_track_caller+0x521/0x760 [ 290.188886] ? ip6_forward_finish+0x430/0x430 [ 290.193389] ip6_fragment+0x2bcc/0x3930 [ 290.197367] ? ip6_flush_pending_frames+0xc0/0xc0 [ 290.202213] ? ip6_fragment+0x2bcc/0x3930 [ 290.206373] ? ip6_flush_pending_frames+0xc0/0xc0 [ 290.211235] ? ip6_forward+0x3970/0x3970 [ 290.215309] ? ip6_mtu+0x160/0x520 [ 290.218867] ? ip6_dst_ifdown+0x4e0/0x4e0 [ 290.223019] ? kasan_check_read+0x11/0x20 [ 290.227173] ? rcu_is_watching+0x8c/0x150 [ 290.231327] ip6_finish_output+0x621/0xbc0 [ 290.235561] ip6_output+0x234/0x9d0 [ 290.239546] ? ip6_finish_output+0xbc0/0xbc0 [ 290.243953] ? ip6_fragment+0x3930/0x3930 [ 290.248108] ? rawv6_sendmsg+0x1111/0x45c0 [ 290.252345] ip6_local_out+0xc5/0x1b0 [ 290.256155] ip6_send_skb+0xba/0x340 [ 290.259876] ip6_push_pending_frames+0xc5/0xf0 [ 290.264462] rawv6_sendmsg+0x359e/0x45c0 [ 290.268540] ? compat_rawv6_getsockopt+0x140/0x140 [ 290.273487] ? trace_hardirqs_on+0x10/0x10 [ 290.277741] ? graph_lock+0x170/0x170 [ 290.281534] ? do_raw_spin_lock+0xc1/0x200 [ 290.285764] ? graph_lock+0x170/0x170 [ 290.289569] ? lock_acquire+0x1e4/0x540 [ 290.293536] ? __fdget_pos+0x1bb/0x200 [ 290.297418] ? graph_lock+0x170/0x170 [ 290.301232] ? graph_lock+0x170/0x170 [ 290.305038] ? find_held_lock+0x36/0x1c0 [ 290.309097] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.314647] ? _parse_integer+0x13b/0x190 [ 290.318798] ? find_held_lock+0x36/0x1c0 [ 290.322869] inet_sendmsg+0x1a1/0x690 [ 290.326666] ? inet_sendmsg+0x1a1/0x690 [ 290.330695] ? ipip_gro_receive+0x100/0x100 [ 290.335014] ? security_socket_sendmsg+0x94/0xc0 [ 290.340123] ? ipip_gro_receive+0x100/0x100 [ 290.344441] sock_sendmsg+0xd5/0x120 [ 290.348154] sock_write_iter+0x362/0x5c0 [ 290.352209] ? sock_sendmsg+0x120/0x120 [ 290.356201] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 290.361730] ? iov_iter_init+0xc9/0x1f0 [ 290.365802] __vfs_write+0x6c6/0x9f0 [ 290.369524] ? kernel_read+0x120/0x120 [ 290.373408] ? wait_for_completion+0x8d0/0x8d0 [ 290.378011] ? rw_verify_area+0x118/0x360 [ 290.382166] vfs_write+0x1f8/0x560 [ 290.385702] ksys_write+0x101/0x260 [ 290.389325] ? __ia32_sys_read+0xb0/0xb0 [ 290.393382] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.398923] __x64_sys_write+0x73/0xb0 [ 290.402814] do_syscall_64+0x1b9/0x820 [ 290.406711] ? finish_task_switch+0x1d3/0x870 [ 290.411208] ? syscall_return_slowpath+0x5e0/0x5e0 [ 290.416144] ? syscall_return_slowpath+0x31d/0x5e0 [ 290.421113] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 290.426476] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.431317] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.436500] RIP: 0033:0x455e29 [ 290.439688] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.458956] RSP: 002b:00007f5b4da70c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 290.466680] RAX: ffffffffffffffda RBX: 00007f5b4da716d4 RCX: 0000000000455e29 [ 290.473952] RDX: 00000000000005a4 RSI: 0000000020000a80 RDI: 0000000000000014 [ 290.481211] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 290.488475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000017 [ 290.495760] R13: 00000000004c2e51 R14: 00000000004d4c30 R15: 000000000000000a 00:14:02 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x800, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0x40405515, &(0x7f0000000040)={0x9, 0x3, 0x9, 0x8, 'syz1\x00', 0xffffffffffff8001}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:02 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5413, &(0x7f0000000000)) 00:14:02 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) bind$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @rand_addr}}, 0x1e) 00:14:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x5, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 00:14:02 executing program 5 (fault-call:13 fault-nth:11): r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:02 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:02 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x540a, &(0x7f0000000000)) 00:14:02 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) 00:14:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x10aaaafeffaaaaa8, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:02 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0xc020660b, &(0x7f0000000000)) [ 290.691727] QAT: Invalid ioctl 00:14:02 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 00:14:02 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) 00:14:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x100000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:02 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5457, &(0x7f0000000000)) 00:14:02 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x6000, 0x2000, 0xfffffffffffffffa, 0x2, 0x9}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x3, 0x40000) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000140)=0xc) ptrace$peek(0x1, r4, &(0x7f0000000180)) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x5, 0xfff, 0x7, 0x5}]}) wait4(r4, &(0x7f00000001c0), 0x2, 0x0) setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f0000000280)={{0xff, @multicast1=0xe0000001, 0x4e24, 0x0, 'sh\x00', 0x0, 0x5, 0x35}, {@rand_addr=0x80, 0x4e24, 0x7, 0x3, 0x9, 0x1}}, 0x44) 00:14:02 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 00:14:02 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) 00:14:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xa, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:02 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5415, &(0x7f0000000000)) [ 291.046688] QAT: Invalid ioctl 00:14:02 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:03 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5452, &(0x7f0000000000)) 00:14:03 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) 00:14:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x10, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:03 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x540c, &(0x7f0000000000)) 00:14:03 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x5451, 0x0) 00:14:03 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = memfd_create(&(0x7f0000000000)='/dev/kvm\x00', 0x1) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f00000000c0)={r4, 0x6d81fbc8}, &(0x7f0000000140)=0x8) 00:14:03 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) 00:14:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x7000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:03 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x40049409, &(0x7f0000000000)) 00:14:03 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:03 executing program 4: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 00:14:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) 00:14:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x2000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:03 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5403, &(0x7f0000000000)) 00:14:03 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:04 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5423, &(0x7f0000000000)) 00:14:04 executing program 4: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 00:14:04 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x500, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 00:14:04 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5401, &(0x7f0000000000)) 00:14:04 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl(r2, 0x4, &(0x7f0000000000)="addc96034122571afa88f90ea44bdef86053f3e5f3db7717dc6916aa4fd8cbe57919ee3b6f283ff8f54bac3d26bdaddd42962ae13b876207336aa756cc034772cb2af0e0ae3ccfab9617eee431bd052a4e91d387fad4dd33ce954a2bf6f77e8b36993d9ae8cfc2f9849c253f9e2dab5cab4bc943faf52f6755b3675dc7ec9319382fbb20db0783b04ab08b07b9c1cca906b39730b18c3a5dfa7ebcd6c48fc02fa604c9eca41a56629c32a12ffb46") pwritev(r1, &(0x7f0000000480)=[{&(0x7f00000005c0)="e73536e485a1c8e7450b745144566890bc0066", 0x13}, {&(0x7f0000000540)="a901493292b91e4dc8d492", 0xb}, {&(0x7f0000000180)="301fd76c79157f9302a0dcc06001dc420bd31f37e3595a447c58647c982824883b06fd03e13b2dda674241acf9f2b628a7c4dc51b9ad425544293b75453b2acc33cf3e78a7a427b141da32a33170813c7c14", 0x52}, {&(0x7f0000000280)="79baf85f78b65d4438f31ec2b33a0bb1b877615c8392f71d838e9523514b17ad47b782f1308bdf715c1d2cfd50b0d1693658cb033e3d9f15b713517b08535eff6b767cad442d9e9be4131de4537e9fe8f4e312e8e1a441a31d742bdc81cbda4f7f73b6cf491544ae54d73603534f68cbaa25dd0fc43939093ba903f8a0faf0877793", 0x82}, {&(0x7f0000000340)="6bccfd3451b4fc459a1b3e16cc2af28169a78be44d1a89cca116673dde3dea696b59f30f9a14eaa4cbf99cf4b52aac3aee1c38a1a3274908894d269998cd3ed3c15908144a0fd1206b3e90a3f2b55b2c7ccc8f05ed7c07433929043af778fe73accb6439c83a084cb9d3e4d3484eaacca27b51e7513c7c97ac6144fff104bdaedd18eac56e0bbf05fac026ce97da08b363817894b4", 0x95}, {&(0x7f0000001700)="7c414476e390773a630b316e8d21c4b1ed3d4bd310bcec0261e991ded25750f9a4152d19e713853097e8b7578d50263c9173fe9f0b3d923329ec6429658091366a709bb73c13d1", 0xfd74}, {&(0x7f0000000680)="c4c97c1f9b80ec87e9473fc0e7595aaccf3283cbb1fa8817e2c933b030bbfa97a718364eab133722e4b2f6a11c5b9afbd276a32379c5f2259716c716c12ef21717c7774ca92badf0cea5739416859ba1d7460428210c7cebc6f24597ffb613720c8b3f4ba02502c57859ca79ba6d699421028d47429f6b2680c8c894133b337cbf4363db133b808225347b635d1f51e1846818d4b13e28bfcacc223c8472c5f021ccca843a6fe0c47ce61c7be164ebf04426792b8facb683cebe147198bf4fb9d94ac74b4ecbd81af80a28f21e850bc8fe11bdd99c74823f47581fbd52a1a64cdd6780d7ed59b21a9c8dbdfe42478a2506240e821d2d7453a5c18c3b3771711b5b89fed162b8a5018019c635f2ace0e8cbfdbc9be14ebaf838a2bfa01c6aeb51ca52c119ee0245a0c52a0400000047d9090335634cfcc4098b1b0bc2a55a9839108a8af59e81195125038c44c45d5b91b2fcdb9531fdaa4cd8c289857cf82add45f4bb3005a3d7573a4665fc6749cc58216062754ff4756a91237ea7897fa6a29d5cab9140e39a5caef75b4b2a7f0831b010f75f20ae57bf98f15f6de5c7c6dcc5d282a2a053558ffda90a0ca6f0cbb800bbe0b52806687db93210c9b5cf802491e74dc23418f9dd1d668b5244591957ce235a986cba0968bdeabf831e9a519bcdeb8dc41cd69d867a3fd01d31fe6d0a86a5a28924a62c96ede5dc68cbe4c2dc0c58608a19c98fb95396c549ea148a5be0ca95bed65d79ccd018f3cfe8552d597d8011f517239231dbc819f903289c5adeeb1672062c4d18b0811682178cf326ac60542f076129def19fa13c5a8d12f0c760b0c686127fb95c6295c06d4f8d205a2e1b76151d849394178270ded6a4f90fc9c06c2a8ebbba206ef696b861e0737057af0d898716591c88c49b03237a79194080245732083172750e1c791c9620f8285ca18bcd9e25640b8576f380699e23cafaa4af1d3e1c82434009c3ba62d843400781db2acce1d683accb361e64a2261e2f9062a03e7aa6e5fb9f8e77d6d89a32ff6ed4ed3c2e9d394d1da26f7cd603e6bf3f03449668539c7c5590f6ef8ed6512addf8046ba87d0a61bdccb7d407028683f037d04d5d7768075e0939ce64a6a716e389af7771d6f90a1154f41d2c6a3a59ae699a63d989fb866b9ba9747ac15fc303ccb846eaa66e8059caa2b1f94abbe2715c7cb4ce9f7ddad8aecba86d79c632137f2c1400d22398876c4e38591d17cafdc4d015bd3553b89fdbca286e4bd1e2af6f702e80e4a02599f8ff3aea77a6bbfb0a4d90a274284b69f69c5d8b04a3351fa670832e34ffb9d222d5ad481cd4bd8d9e361a76e8ee91026e1d5dae92defaff4887747962e83fa7528f138339a5b5577550955d04552b354addc101fed1af6f73fcfcec710131251e96a886e891911f1c2bacd520fca732e4694c41a88688609259d494115da922455bafef4ab70752e3618124db8dd4168d4ddb65ef5049b80831ad6ac303ba4bb823909d880040829e9218355b967d29aca58fea17f7ff75840721dd185a18b76a08b4fb2064e8e8aaf84f34cf82d74c3d8d7fbe52ab46fb3aeb35086565c7c4ec392789380e840871f8f8e518c5f280dc9aa7b6d92e0ce1215701f1864f4cbcc77824075a6244e8dbbc89df01fb233d25eb26e74acbd5c25c332c82411564a5f7088c24ebb46abc312629e090cabf2722aff50877384ad3ab23c9ae8e6b5e70d812166d77534b258e034195e8597ff708330283dbe8b33fde8baab1e6c9f02f58c457db427ff606a17c2e6e62801eab42b5b6a1af45321dedba5110e1a6729ab34d076f0ca22b387dd17557d852676cdda734f22f5238e27daf4358a887590a35f1ef01841ee1ab5847ab5450bea249c38efc2bcf876f146fdac1b56ea9b31f98287b93d0d73603ba1b70747994afa8ae59978b4d4a41e1ec16a1cc3e313fa40312948244d69b7dcb8848ac706cc3d1fdbb9dce314ef20eb8e969cfde22d74675fac611f132dc767c84318aec0cbae8663cf2e6661e6510a122a72f4e8254eddfd6e571a22c3c313f1101cb001cee1371a07605eb1dc8e9e84627fc0329512c755a08131f41350fa3c0e0ff01470b3a3a0181623e5a02ba96bc8326360df277f7431d7a2996e3bd8d6f2e1fda3132e6cbb54f5b7f779e9d7725aa636e1c524080f0fed3756dd3d153083139ff72a8e0b810fc9a4e06a273bff24ad83f17fabafcf02b6d98e5a9ad33120d47add4bca3e8f7f3eed3348d55a854341d5581e4c1df6c14e5bd61a78b401cb0e2b216dc9789e569241a5938c95c8fb081d122b7f4045d49e242549d25426e3a7c5a1347cdf1de7883d38e8ea4af79f20cb02bb87bf48e5826cf71d090a1d01fc5655b4b83ec05e4d609f1a8617e9d6149e404c424f01a38124b4e061009f05677b125ce927b5f95371ce828771d74196731c7e1da4c9829ae1470263ae1e12b3fc2f6a92dc71c11e1422c235667a5b2674f4e03d2b25f08dcc48242de771f9c8522594a18631e2a6845ff593ff1b9f170353fd72aef58da3b10e934cfc3a1053b2d2d4474ef76f8750bc0407ef41db6c0a55de281f3cf7e74ed992c317601883331be0f02edfe7407554b258839ddc4f3109d0415683fd3356dc93b2fd1d6c3979d732d2677960dc32af07e9445912d918824b18fe5915476c74691b69ad1e688d4398f959c385079347b371ad585c6e304b31e7dbfe1e0fca2b43ae7ec5acd43cb52747b09f0b928ad3e86406b62868e6e187be4ab6898b5b640f4627dee11dbde93ad737e87a6855d8c30f326aabd95a8f1c9d1a40fe1da0eb866f3ff662189d3f499df96ea675bfd067ede234bb00962993c1e288e2e02141ea29fdb982f9e7409366a0fa4466efa2992e4011e4fea0777472aef488fcd9481319950f284f28c235248ca665dc659d8d31c15ea9d09647e5ab9cff81917b740d0e43ed51db807b0981c827531bccef053c2edfa27be40243607460b789d9e3909b2f867fd9e254384cfcbb89a52ad0b67b2557c3a31b3efb4ae1675698330fdc1d19c77cb2c03310569a0e12ba27d69b951a8e5aa26a0cef38b85c7a6e85ede286b2de2cd74b8c1570674b2d0b3313009e33c207823c5b01454e71ed5768954c9c65d1b4538a44baf05ca158cb30fee0950f22d70e3fe9688b1d1c769e8dafab27261612718a8f0bfbbb01d93b468815d156df272d1b58c708d6dee1036ccce961fae43101565ae1d29240c6c37f3bc80213c3ce214a3392e268547b791bd013a9bd55796010fd50ac28a8480abb5bcf94e0d6a59b6b96efe9ee1f41572367f13b4fd402a60ff0eac21d6e0d9cc44db973889f13d6c060b824a7c8a51f53f10cfcbe28a7f4a188b3d99257073be9df879fa6bead832ddfc6d7327a6f3aa3ce1db2b535bb7675ff864a3240feb7444717bb6ef5337708ae5b2f9381f55193ca99a30523118dce4afd0e18af9cffc3484676249f2d6de11bcd6bf4548e73e7d6c60dbb900b81597f2d68beaf5e2006607e90e578aaccd5d55db95961e8b53f9a0a4a322d8b5441c8d2b24ea21419e63121587f828442bccc66d7e9c90193569a38449703b363e242908797e2717be74520f018234d17f2ee093c991bdc22377e81ffd0f4e18c1a850acacae2bcd1eedf4604692ed3ef2d9a7aed26b5e8e641cb0f9b42ff32daa534d9489484f1278b45e3600ad4a8dfa3c2dd4b004e3eeeae67b72d0b98fb1753d7692efc2f94c1fd1f5d0ea317486c160b62ce1b43e0840ce91caedf0dc6555304438d9856c4c830ffdf116f1651ce6bab1339cae27a2b41555ba8c0c0b3e202202356e69db23098f6c882a7aef59011bb717ec03976d353d365fca4691fc21968ba277e09a9449e41eb557f3316c054ba0ed01537913fe28d9858622b6b0ff62be7c76c1c109bdb3f24d89cdff55120f19b1ec9009a07c8c7d436ac69cfdec23cde2306d444a667286c06ae85ffbee397def98549ea0123d186c1cc76d75cadee65dde1e70d1118139112a7f31165830027d741714a80ed06056c26dab962eb19457cb6620c72bc2311eec2701a9b91ae1ba83997e1be00ed30d7910c3af3c176651e11c3cd7aa6b08b8afb3ce33eaa463fbdaa653b74d596dca288033845bcb2340b16260f4c5391c9f3447a696d353cf262ceef7a3cc96c4fb324052652a93db8814757b6b7e4c4ddeacc978124aa36d7fc0bf5e1a34d85b4e12aac407e43eb4dd8760c13466ae37a249a2786ff88f09b3486a8ad675250f72100f5b91646aefc5fcecc7bd847adfc9d8bd924196b15bf79bcbdafdb258e4447ea1a9e405e3f0a3abbb8c3d24e3efc63541a4aeb9c3e2122a17abc1b6c64e40c023fef6eec5c567e57a5505a7fb4c70f6c994cacaa5737c7c6a716a72b6255ceadfc34ea48355ec9eb5b678ba2458597f0799775d9c2f31e8e59c896baf0ba25a226526d2c2945fe29a57f26eef0f55424b90f190cfe0f70ea340b4bfc9681706c774768397511227a7bb72a442bab45d15be255d027af5ac10f0c5107633d1cf287551e920e7586e7c0170572bcdc4a97cce4ca158678b8df7646552f9be1e973b7bee4fc0355c41b90b7dec29a94580873086679b6b9691c6680103f77824922507ce9f3dc8e339b5b70ee573162664752c414b169d8b74248f7cd2da356bd5e4fbb36399e7c96077efe48d1fe10fbf6dfaaaffbcfadda64329c27a5a42b90dc63dc644456559f3c5acf5a6d57ba534f28f04428fb2c6ba5e8d532d8181d292ad7a932d8921e93d3e732f1d6403ae29e935d55dbe35417ca85532053867c21f1cb91d546050b12db4803a6a30875b2c1cafc05ad0762dbf167e755135f8db939638decca78514c52a3b50ca4205997c2208acedd7f25a465bcdd81c8742941ff8d0d13967ad6d8b6d73d8e17e2b3847d46c2c0a6308a949a8c9ce0ed15ab16ed1666e6692b2bc0f03957159d75af4d1c5b30b8c528adc1cf8f2ba2e3b1f97ad6c39bbdb216e63f4d2315884a4aa6e4966b6da57d4279eb101ef8f0dc820b9e1354ef64656d118a789bf9124bde86df3b98475dfe8b399823d67779070b2fc8c5c863535564ef8aec47d9b221ab6488cb58f83f36e3154afb2821c12cd0d4a5a8f25ee10458880bdb5183c268702a9814fd2cd3ab94e61e0fd09e57916f4ff9c03c4cbbd497c3da9784aeee7c84a32309989af0c1925b897a70985e2667cf752f6b17a8b0043f3a92988e9e7075a55c5735a868350fd72b37be0b30aee9a5f1883bb7f0a8a0724432cf75743cb93e4ee415ef7a4f1012abd0549df06d18e817b92655ebdda44ffb8ede97d8dd83971b83645dcf2fde3c5e3b7bf07169b910e51e684d9688ecd8089d270d3a1b0af716e17c635027caf3cb32ba86555e107873e501cb13c45068b2e5a61953c7e4d662dee7be90adc7a54492b48a6697b87e9d78fb26354d4731e3232637c8b819531dcac02e1d1cf090bbcc9d341feefed0279203e8bd952aa2d52e134a5fdc945681168ef4a7dccf7b32c082327cb60d459ad0c63418a0f02afd6306e243f94bc44f06622298df19bccec73f5355db364e74f8a007045a715222d30e89db7064c0b087eafa830e441853eef5cd013b943565d7e3587421a350867c3705dfa53353b096fa75fb257f4a22ede3e40b4108d2cbb9e2b53bf2e3408031637623ab286b3cd08f01511847812a9ef1e07894a1b350d305a9372b15be914dc5605053e000000000000000000000000000000", 0x1118}, {&(0x7f0000000400)="8de936a610f76fd775b8bf08b520dbe8b84384f340668459865cf57774262cb8f50fb78b17cff8c29b32efd2ee14d84237f3a286755d675770", 0x39}, {&(0x7f0000001780)="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", 0x1d}], 0x9, 0x0) r3 = fcntl$dupfd(r0, 0x0, r2) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000001680)={0x5, 0x70, 0xab, 0x5, 0xffffffffffffea99, 0x1680000000000000, 0x0, 0xc13, 0x9000, 0x6, 0x53b6, 0x0, 0xfffffffffffffbff, 0xf0ae, 0x200, 0x4, 0xfff, 0x1, 0x0, 0xfffffffffffffffd, 0x4, 0x1, 0x6, 0x401, 0x561a, 0x9, 0x100000000, 0x7fffffff, 0xfffffffffffffff7, 0xdd6, 0x7, 0x5, 0xfffffffffffffff9, 0xfffffffffffff30b, 0x7fffffff, 0xb261, 0x4, 0x4, 0x0, 0x9, 0x2, @perf_bp={&(0x7f00000000c0)}, 0x2, 0x1fc, 0x2, 0x6, 0x80000000, 0x4, 0x87d8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:04 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:04 executing program 4: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) 00:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xfffffff5, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:04 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:04 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:04 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5416, &(0x7f0000000000)) 00:14:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) 00:14:04 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) 00:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xa8aaaafffeaaaa10, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:05 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x540b, &(0x7f0000000000)) 00:14:05 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:05 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) read(0xffffffffffffffff, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(0xffffffffffffffff, 0x5437, &(0x7f0000000000)) 00:14:05 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) 00:14:05 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5407, &(0x7f0000000000)) 00:14:05 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x3100, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xc0045877, 0x0) 00:14:05 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000000)={@dev, @dev, @local}, &(0x7f0000000040)=0xc) 00:14:05 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0) 00:14:05 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:05 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:05 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xf5ffffff00000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:05 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5429, &(0x7f0000000000)) 00:14:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x5450, 0x0) 00:14:05 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) 00:14:05 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:06 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5416, &(0x7f0000000000)) 00:14:06 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x2000, 0x0) ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f0000000040)=0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x800000000000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:06 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x402c542d, &(0x7f0000000000)) 00:14:06 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) 00:14:06 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a3aa88dca03e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:14:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 00:14:06 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:06 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5406, &(0x7f0000000000)) 00:14:06 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, 0xffffffffffffffff) 00:14:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x20000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:06 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x5452, 0x0) 00:14:06 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5460, &(0x7f0000000000)) 00:14:06 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) r1 = memfd_create(&(0x7f0000000040)="2f64ff0000006f6f702300", 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000080)={r1, 0x0, 0x3, 0x9, 0x7e}) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) clock_gettime(0x0, &(0x7f0000000000)) ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0xffffffffffffffff) bind$pptp(r1, &(0x7f00000000c0)={0x18, 0x2, {0x2, @rand_addr}}, 0x1e) 00:14:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x3000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:07 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5411, &(0x7f0000000000)) 00:14:07 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="73797a31a88dca05e0df93730006de53f42b0e74d443bdc28645bf2fda74ed24e6e8c68e8db8a84e46c37f178cb27c9565c3a83c69b78119d9b2702314ac3909fe9231cb8adb75f50bae8905453e6e9f063581bca5fa2a4b260cd869bb4e76bffaf1b8d086df0d73741e0eb1593694d4c4c15b8ab5bebc9be916c232b3e943939491539a1472563b37ff20a7fda49531554872c9ff70e67a0420e7884795e8c99aa42a6f0b84bb92a92644963c0f4d1d1977cb3e0e190a2e53aba41631d5acecde7efdc7c0df3b3b76bcb1140b3dd5e99a15b999ce6cfb774a54ca01270810d90c6ae0d70e63486f389e68e4ce99c217bcaaf7449f52599029b3512e420a7d029642f2f86b69bd75315f71081ed1f29b9544dbf84bf3ae9e0248563a89cd7f6da74d7be34e6823118dc8fc4da7c48a1f319a3e4d1e588da603282a19f8d4d0ac67ea6e386db7c75a7021043baa416b38c44bca1158a68f44e75e466c88237adb81adf42d0440a3ccdff0bf6ce64416ee4781dbbdc8f8fdcc87250b791646673618b2f2a9afe74141ab1f5215b2885241b5dc6ed4d897dbd36e2009df097d9ee332184bc71e986b59eda38f0ac207b73ced382743189e29a6c13953382221efdcfe3e5c052d2ba3c7212d9de396c7580b48e8df689818beecdd1ee9acb0664f35a38d848f6caa8148a0fc34e39122a814c167e2f6ff17c6f7f56f5a40616244163c37afa3af6c05230766654e7ce37cfea899826f8d023b27e642d158102d60db112abecce457b8f8bb6835d8a7fa5fa1f8f94f5457fa648273ccd60bb7e2b4ed319e4d528c8de12428da3be485c0679d0d72f2311e992008b65f2a158fb89e6e9812c0729f22a970247bd2467366976e069021c871c20229129f1f99e0d369fcd70d10687671464490063c982c93dcccf9c1ef5c6131001af41c4366c2ec9150d4e6a8f8b04d8de782f7264f1e781da519b4d5f1c148e49166c60d4a5839c7b12da608ad2326129dc4d0ebad6fb7f6b49d59c912c4e9c68ddee45f50cdd95aec9c9b83f3dbef53f5ecfdc5e7504697a47e165683ff5225856888857b787aec43b8ecd7ee7bbaa9701e3a05974faf805e8e0775bebdb99b58cfab7d972429cf5b7da560424fc93db1e49856dd96e617faf0cbc48c39e0cf034d85695ce0b8d46b0cd8d15db8a06a9c21dbb1a4a579f9719728e3eca4e51d0ad77a097def02c2fee0006a5d9bdc0f5167286849e6825334b3730b0c664dc1acb87ab65b14f2d43fbb81746f3094d490f20fecc75e6af39b97155b2ec00317496dba1f356dfd3f44b668f95c14288c703bf957eda82d24569c9ef7009f3f927545c864ae7298539f520de1da316515c3812532f38f6f280e330863d1a520f299c3d04a01f3d6ed0e668f0379f9052b72ad30fa12d91f1b0fc90b705b8ab7c3c116f6dccf64ee29cabdc9de741b6aab1229f792478330b7d97bdf30f08da4606baa717328b83e8b7e9deb0da3e96080bc856d8e135e7c3417435c0ef95b0db61acfcd450744e51cbb88745a3036bb286fff8268fb7f89cc96d2efced0747f985f0b7b1c1207e99036a947cc9259a90824713dc885606c006a976270f860d603f69439817976475d655f7140f0631f467c14ed535e557394cc380ad6cc6a9516485dc81aa4a91357243ae568e7bba2284024a89fa4f5d59b4db6a89918f6343042d0660ee6a5469cbc695c11972349afb6f0170fd7140906592f74d6529d348f2862a1bf12c7f96cff1c4371da42ec6483a0ff687694d0a2e7cf55ec64aafa201f8ef096bcfe6b6ff0f6710420a9189e46b93c45fb478293437e92baa0bd00fc12d93642eb804be1e480838d53169f42253c951fe2dfaef229d866fed18db0ed5ea0e5bd5cedb969d1b3c64fe9e9ae03a31895b5954ddb899ad1def85a835c4191f884fee1756bcc8483a9dd498b1eefb69911136bc287481f3e1e05894bf402d8cfefd5edaf30c77d10f7a5bfc29d88e78eea17175f8e424e3024fd79d0322294017e4933162adea1a50a688e"], 0x5a4) 00:14:07 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5405, &(0x7f0000000000)) 00:14:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x4000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:07 executing program 4 (fault-call:1 fault-nth:0): r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) 00:14:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x5460, 0x0) 00:14:07 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 00:14:07 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:07 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r0) 00:14:07 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5411, &(0x7f0000000000)) 00:14:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x2, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:07 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x2, 0x0) 00:14:07 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5427, &(0x7f0000000000)) 00:14:07 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x401070cd, r0) 00:14:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x7, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:08 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5425, &(0x7f0000000000)) 00:14:08 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:08 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5410, &(0x7f0000000000)) 00:14:08 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x80081272, r0) 00:14:08 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x2000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 00:14:08 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:08 executing program 6: sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r0, 0x5437, &(0x7f0000000000)) 00:14:08 executing program 6: sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r0, 0x5437, &(0x7f0000000000)) 00:14:08 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0xc0045878, r0) 00:14:08 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x2000000000000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:08 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:08 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5408, &(0x7f0000000000)) 00:14:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x5421, 0x0) 00:14:08 executing program 6: sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000500)) r0 = syz_open_pts(0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r0, 0x5437, &(0x7f0000000000)) 00:14:08 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c05, r0) 00:14:09 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xf0ffffffffffff, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:09 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0xc0189436, &(0x7f0000000000)) 00:14:09 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x1276, r0) 00:14:09 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:09 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5424, &(0x7f0000000000)) 00:14:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 00:14:09 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$EVIOCGABS0(r1, 0x80184540, &(0x7f0000000000)=""/105) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f0000000080)=[@cr0={0x0, 0x40010}, @cr4={0x1, 0x4020}], 0x1e) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:09 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x1260, r0) 00:14:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xa000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:09 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5422, &(0x7f0000000000)) [ 297.934459] *** Guest State *** [ 297.937970] CR0: actual=0x0000000000040020, shadow=0x0000000060040000, gh_mask=fffffffffffffff7 [ 297.947071] CR4: actual=0x0000000000006040, shadow=0x0000000000004000, gh_mask=ffffffffffffe871 [ 297.955993] CR3 = 0x0000000000000000 [ 297.959808] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 297.965856] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 297.971926] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 297.978678] CS: sel=0x0000, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 297.986781] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 297.994832] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.002906] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.010960] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.019229] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 00:14:09 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) [ 298.027292] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 298.035389] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 298.043433] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 298.051509] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 298.059555] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 298.066432] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 298.074078] Interruptibility = 00000000 ActivityState = 00000000 [ 298.080480] *** Host State *** 00:14:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x3f000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) [ 298.083850] RIP = 0xffffffff811f4664 RSP = 0xffff8801c7caf350 [ 298.089928] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 298.099219] FSBase=00007f182851b700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 298.107158] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 298.113119] CR0=0000000080050033 CR3=00000001cba1d000 CR4=00000000001426f0 [ 298.120335] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87a01380 [ 298.127114] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 298.133372] *** Control State *** [ 298.136895] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000cb [ 298.143663] EntryControls=0000d1ff ExitControls=0023efff [ 298.149201] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 298.156230] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 298.162966] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 298.169644] reason=80000021 qualification=0000000000000000 [ 298.176059] IDTVectoring: info=00000000 errcode=00000000 00:14:09 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x5460, r0) [ 298.181597] TSC Offset = 0xffffff5ccb51225e [ 298.185984] TPR Threshold = 0x00 [ 298.189490] EPT pointer = 0x00000001d863401e 00:14:09 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x540a, &(0x7f0000000000)) [ 298.227227] *** Guest State *** [ 298.230683] CR0: actual=0x0000000000040020, shadow=0x0000000060040000, gh_mask=fffffffffffffff7 [ 298.239644] CR4: actual=0x0000000000006040, shadow=0x0000000000004000, gh_mask=ffffffffffffe871 [ 298.248627] CR3 = 0x0000000000000000 [ 298.252472] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 298.258589] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 298.264672] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 298.271427] CS: sel=0x0000, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 298.279531] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.287716] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.295894] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.303960] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.312082] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 298.320135] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 298.328326] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 298.336380] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 298.344441] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 298.352494] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 298.358991] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 298.366527] Interruptibility = 00000000 ActivityState = 00000000 [ 298.372842] *** Host State *** [ 298.376144] RIP = 0xffffffff811f4664 RSP = 0xffff8801982ef350 [ 298.382234] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 298.388786] FSBase=00007f18284f9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 298.396771] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 298.402746] CR0=0000000080050033 CR3=00000001cba1d000 CR4=00000000001426f0 [ 298.409955] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87a01380 [ 298.416701] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 298.422839] *** Control State *** [ 298.426369] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000cb [ 298.433105] EntryControls=0000d1ff ExitControls=0023efff [ 298.438635] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 298.445640] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 298.452371] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 298.459052] reason=80000021 qualification=0000000000000000 [ 298.465511] IDTVectoring: info=00000000 errcode=00000000 [ 298.471301] TSC Offset = 0xffffff5ccb51225e [ 298.475734] TPR Threshold = 0x00 [ 298.479167] EPT pointer = 0x00000001d863401e 00:14:10 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:10 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x600, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:10 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c02, r0) 00:14:10 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000000)) 00:14:10 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x4020940d, &(0x7f0000000000)) 00:14:10 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000000)=""/11) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0x0) fchmod(r1, 0x60) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x40049409, 0x0) 00:14:10 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:10 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:10 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x125d, r0) 00:14:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xfffffffffffff000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:10 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5456, &(0x7f0000000000)) 00:14:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 00:14:10 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x31, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:11 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x5437, &(0x7f0000000000)) 00:14:11 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:11 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x1279, r0) 00:14:11 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0xf0ffff, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:11 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000600)="0f01cbbad004b00cee66d35d4666b80b0000000f23c00f21f86635020006000f23f80f009a0000baf80c66b84b243f8766efbafc0cb000ee0fc75897369ecbbaf80c66b82809ab8266efbafc0c66b88435489f66ef", 0x55}], 0x1, 0x0, &(0x7f00000002c0), 0xee) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:14:11 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x540f, &(0x7f0000000000)) 00:14:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 00:14:11 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0xd) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f0000000280)=""/1, 0x1) ioctl$TCSETSF(r1, 0x40049409, &(0x7f0000000000)) 00:14:11 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x600000000000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:11 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:11 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x40049409, r0) 00:14:11 executing program 4: r0 = syz_open_dev$loop(&(0x7f00000001c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0xc0045877, r0) 00:14:11 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000500)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5421, &(0x7f0000000000)) 00:14:11 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x31) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x300000000000000, @dev={0xfe, 0x80}, 0x4}, 0x1c) 00:14:11 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x3, 0x31) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@remote={0xac, 0x14, 0x14, 0xbb}, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1=0xe0000001, 0xfffffffffffffffd, 0x33}, 0x0, @in6=@loopback={0x0, 0x1}, 0x0, 0x0, 0x0, 0x90}}, 0xe8) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x4}, 0x1c) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x6, 0x20400) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000580)={0x1, [0x9]}, 0x6) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000005c0)={0x3, {{0x2, 0x4e22, @multicast2=0xe0000002}}}, 0x88) openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x240800, 0x0) setsockopt$inet_group_source_req(r3, 0x0, 0x0, &(0x7f0000000140)={0x2d, {{0x2, 0x4e21, @rand_addr=0x6}}, {{0x2, 0x4e24, @multicast2=0xe0000002}}}, 0x108) ioctl(r0, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'IDLETIMER\x00'}, &(0x7f0000000540)=0x1e) write$binfmt_misc(r1, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x5a4) 00:14:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) ioctl$KVM_NMI(r2, 0xae9a) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="66e9f0a413"], 0x5) ioctl$KVM_RUN(r2, 0xae80, 0x1400000000000000) [ 569.056533] kworker/dying (58) used greatest stack depth: 12776 bytes left [ 574.432331] INFO: task syz-executor0:4597 blocked for more than 140 seconds. [ 574.439803] Not tainted 4.18.0-rc4+ #142 [ 574.444468] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 574.452790] syz-executor0 D21232 4597 4588 0x00000000 [ 574.458598] Call Trace: [ 574.461338] __schedule+0x87c/0x1ed0 [ 574.465190] ? __sched_text_start+0x8/0x8 [ 574.469562] ? graph_lock+0x170/0x170 [ 574.473431] ? __lock_acquire+0x7fc/0x5020 [ 574.477756] schedule+0xfb/0x450 [ 574.481202] ? lock_downgrade+0x8f0/0x8f0 [ 574.485582] ? __schedule+0x1ed0/0x1ed0 [ 574.489641] ? mark_held_locks+0xc9/0x160 [ 574.493845] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 574.498478] ? _raw_spin_unlock_irq+0x27/0x70 [ 574.503057] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 574.508448] rwsem_down_read_failed+0x362/0x600 [ 574.513279] ? rwsem_down_write_failed_killable+0x10/0x10 [ 574.518947] ? lock_downgrade+0x8f0/0x8f0 [ 574.523201] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 574.527727] ? rcuwait_wake_up+0x1cc/0x2f0 [ 574.532080] call_rwsem_down_read_failed+0x18/0x30 [ 574.537240] __percpu_down_read+0x16e/0x210 [ 574.541628] ? percpu_free_rwsem+0xa0/0xa0 [ 574.545954] __sb_start_write+0x2d7/0x300 [ 574.550230] mnt_want_write+0x3f/0xc0 [ 574.554177] do_unlinkat+0x2b7/0xa30 [ 574.558332] ? do_raw_spin_unlock+0xa7/0x2f0 [ 574.563374] ? __ia32_sys_rmdir+0x40/0x40 [ 574.567787] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 574.573548] ? strncpy_from_user+0x3be/0x510 [ 574.578114] ? mpi_free.cold.1+0x19/0x19 [ 574.582394] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 574.588775] ? getname_flags+0x26e/0x5a0 [ 574.593077] ? do_syscall_64+0x9a/0x820 [ 574.597326] __x64_sys_unlink+0x42/0x50 [ 574.602140] do_syscall_64+0x1b9/0x820 [ 574.606567] ? syscall_slow_exit_work+0x500/0x500 [ 574.611643] ? syscall_return_slowpath+0x5e0/0x5e0 [ 574.617731] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 574.623548] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 574.628741] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 574.634108] RIP: 0033:0x455b77 [ 574.637371] Code: c0 48 89 44 24 30 48 8b 2c 24 48 83 c4 08 c3 89 74 24 28 48 83 c0 02 48 89 44 24 30 48 8b 2c 24 48 83 c4 08 c3 8d 7e 20 40 80 10 73 64 48 83 fa 02 7e c2 0f b6 54 0b 01 8d 7a 80 40 80 ff 3f [ 574.658306] RSP: 002b:00007ffec3f0f9e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057 [ 574.666187] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77 [ 574.673581] RDX: 00007ffec3f0f9f0 RSI: 00007ffec3f0fa80 RDI: 00007ffec3f0fa80 [ 574.681006] RBP: 00007ffec3f11790 R08: 0000000000000000 R09: 0000000000000010 [ 574.688387] R10: 000000000000000a R11: 0000000000000206 R12: 00000000025b2940 [ 574.695801] R13: 0000000000000000 R14: 00007ffec3f11160 R15: 0000000000702140 [ 574.703228] INFO: task syz-executor1:4598 blocked for more than 140 seconds. [ 574.710489] Not tainted 4.18.0-rc4+ #142 [ 574.715108] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 574.724570] syz-executor1 D21208 4598 4591 0x00000000 [ 574.730590] Call Trace: [ 574.733323] __schedule+0x87c/0x1ed0 [ 574.737813] ? __sched_text_start+0x8/0x8 [ 574.742147] ? graph_lock+0x170/0x170 [ 574.747192] ? __lock_acquire+0x7fc/0x5020 [ 574.751534] schedule+0xfb/0x450 [ 574.755013] ? lock_downgrade+0x8f0/0x8f0 [ 574.759247] ? __schedule+0x1ed0/0x1ed0 [ 574.763288] ? mark_held_locks+0xc9/0x160 [ 574.767505] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 574.772346] ? _raw_spin_unlock_irq+0x27/0x70 [ 574.776918] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 574.782905] rwsem_down_read_failed+0x362/0x600 [ 574.787942] ? rwsem_down_write_failed_killable+0x10/0x10 [ 574.793847] ? lock_downgrade+0x8f0/0x8f0 [ 574.798790] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 574.803455] ? rcuwait_wake_up+0x1cc/0x2f0 [ 574.807764] call_rwsem_down_read_failed+0x18/0x30 [ 574.812949] __percpu_down_read+0x16e/0x210 [ 574.817597] ? percpu_free_rwsem+0xa0/0xa0 [ 574.821920] __sb_start_write+0x2d7/0x300 [ 574.826167] mnt_want_write+0x3f/0xc0 [ 574.830055] do_unlinkat+0x2b7/0xa30 [ 574.833865] ? do_raw_spin_unlock+0xa7/0x2f0 [ 574.838555] ? __ia32_sys_rmdir+0x40/0x40 [ 574.842959] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 574.848613] ? strncpy_from_user+0x3be/0x510 [ 574.853079] ? mpi_free.cold.1+0x19/0x19 [ 574.857305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 574.862892] ? getname_flags+0x26e/0x5a0 [ 574.867295] ? do_syscall_64+0x9a/0x820 [ 574.871350] __x64_sys_unlink+0x42/0x50 [ 574.875405] do_syscall_64+0x1b9/0x820 [ 574.879367] ? syscall_slow_exit_work+0x500/0x500 [ 574.884316] ? syscall_return_slowpath+0x5e0/0x5e0 [ 574.889342] ? syscall_return_slowpath+0x31d/0x5e0 [ 574.894370] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 574.899824] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 574.904774] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 574.910121] RIP: 0033:0x455b77 [ 574.913378] Code: c0 48 89 44 24 30 48 8b 2c 24 48 83 c4 08 c3 89 74 24 28 48 83 c0 02 48 89 44 24 30 48 8b 2c 24 48 83 c4 08 c3 8d 7e 20 40 80 10 73 64 48 83 fa 02 7e c2 0f b6 54 0b 01 8d 7a 80 40 80 ff 3f [ 574.932868] RSP: 002b:00007ffd318b0608 EFLAGS: 00000202 ORIG_RAX: 0000000000000057 [ 574.940834] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000455b77 [ 574.948392] RDX: 00007ffd318b0610 RSI: 00007ffd318b06a0 RDI: 00007ffd318b06a0 [ 574.955954] RBP: 00007ffd318b23b0 R08: 0000000000000000 R09: 0000000000000010 [ 574.963526] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000fed940 [ 574.971036] R13: 0000000000000000 R14: 00007ffd318b1d80 R15: 0000000000702140 [ 574.978596] INFO: task syz-executor6:15938 blocked for more than 140 seconds. [ 574.986440] Not tainted 4.18.0-rc4+ #142 [ 574.991167] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 574.999469] syz-executor6 D24696 15938 4602 0x00000004 [ 575.005256] Call Trace: [ 575.008023] __schedule+0x87c/0x1ed0 [ 575.011855] ? __sched_text_start+0x8/0x8 [ 575.016087] ? trace_hardirqs_on+0x10/0x10 [ 575.020374] ? graph_lock+0x170/0x170 [ 575.024295] ? __lock_acquire+0x7fc/0x5020 [ 575.028751] schedule+0xfb/0x450 [ 575.032277] ? lock_downgrade+0x8f0/0x8f0 [ 575.036497] ? __schedule+0x1ed0/0x1ed0 [ 575.040574] ? mark_held_locks+0xc9/0x160 [ 575.044815] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.049832] ? _raw_spin_unlock_irq+0x27/0x70 [ 575.054394] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 575.059495] rwsem_down_read_failed+0x362/0x600 [ 575.064476] ? rwsem_down_write_failed_killable+0x10/0x10 [ 575.070194] ? lock_downgrade+0x8f0/0x8f0 [ 575.074863] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.079376] call_rwsem_down_read_failed+0x18/0x30 [ 575.084573] __percpu_down_read+0x16e/0x210 [ 575.089872] ? percpu_free_rwsem+0xa0/0xa0 [ 575.094282] __sb_start_write+0x2d7/0x300 [ 575.098511] ext4_page_mkwrite+0x1d0/0x1430 [ 575.102913] ? ext4_change_inode_journal_flag+0x3e0/0x3e0 [ 575.108703] ? find_held_lock+0x36/0x1c0 [ 575.112859] do_page_mkwrite+0x14e/0x520 [ 575.116987] ? print_bad_pte+0x5f0/0x5f0 [ 575.121126] ? do_raw_spin_unlock+0xa7/0x2f0 [ 575.125962] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.130606] ? __pte_alloc_kernel+0x2e0/0x2e0 [ 575.135200] do_wp_page+0xf78/0x19b0 [ 575.139115] ? finish_mkwrite_fault+0x610/0x610 [ 575.143905] ? trace_hardirqs_on+0x10/0x10 [ 575.148261] ? lock_acquire+0x1e4/0x540 [ 575.153304] ? __handle_mm_fault+0x1cc8/0x4460 [ 575.158004] ? lock_release+0xa30/0xa30 [ 575.162087] ? pmd_val+0x88/0x100 [ 575.165639] ? add_mm_counter_fast+0xd0/0xd0 [ 575.170663] ? kasan_check_write+0x14/0x20 [ 575.174993] ? do_raw_spin_lock+0xc1/0x200 [ 575.179407] __handle_mm_fault+0x2a84/0x4460 [ 575.184684] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 575.189632] ? graph_lock+0x170/0x170 [ 575.193615] ? lock_downgrade+0x8f0/0x8f0 [ 575.198111] ? kasan_check_read+0x11/0x20 [ 575.202878] ? rcu_is_watching+0x8c/0x150 [ 575.207123] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.211753] ? handle_mm_fault+0x8c4/0xc80 [ 575.216376] handle_mm_fault+0x53e/0xc80 [ 575.220982] ? __handle_mm_fault+0x4460/0x4460 [ 575.225968] ? find_vma+0x34/0x190 [ 575.229627] __do_page_fault+0x620/0xe50 [ 575.233778] ? mm_fault_error+0x380/0x380 [ 575.238012] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.243635] ? __x64_sys_clock_gettime+0x170/0x250 [ 575.248690] ? __ia32_sys_clock_settime+0x290/0x290 [ 575.253898] do_page_fault+0xf6/0x8c0 [ 575.257883] ? vmalloc_sync_all+0x30/0x30 [ 575.262399] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.268091] ? do_syscall_64+0x497/0x820 [ 575.272348] ? syscall_return_slowpath+0x5e0/0x5e0 [ 575.277757] ? syscall_return_slowpath+0x31d/0x5e0 [ 575.282758] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 575.288266] ? page_fault+0x8/0x30 [ 575.291867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 575.296777] ? page_fault+0x8/0x30 [ 575.300410] page_fault+0x1e/0x30 [ 575.303948] RIP: 0033:0x4084b0 [ 575.307191] Code: 24 1f e9 d2 00 00 00 48 ff c2 48 83 fa 08 0f 83 ad 00 00 00 84 01 0f b6 1c 11 38 d8 75 e9 48 89 54 24 20 48 8b 5c 24 48 0f b6 <73> 50 48 0f af f2 0f b6 5b 51 48 89 cf 48 8d 74 3e 08 84 db 74 7c [ 575.326860] RSP: 002b:00007fffb942a3c0 EFLAGS: 00010287 [ 575.332302] RAX: 0000001b32d219a0 RBX: 0000000000000000 RCX: 0000001b33d20000 [ 575.339822] RDX: 0000001b32d219a4 RSI: 00000000007306c0 RDI: 0000000000000005 [ 575.347197] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 575.354762] R10: 00007fffb942a400 R11: 0000000000000246 R12: 0000000000000000 [ 575.362433] R13: 0000000000000002 R14: 000000000072bf48 R15: 000000000072bf48 [ 575.369833] INFO: task syz-executor7:15944 blocked for more than 140 seconds. [ 575.377212] Not tainted 4.18.0-rc4+ #142 [ 575.381980] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 575.390039] syz-executor7 D24696 15944 4596 0x00000004 [ 575.395848] Call Trace: [ 575.398514] __schedule+0x87c/0x1ed0 [ 575.402293] ? __sched_text_start+0x8/0x8 [ 575.406525] ? trace_hardirqs_on+0x10/0x10 [ 575.410833] ? graph_lock+0x170/0x170 [ 575.414706] ? __lock_acquire+0x7fc/0x5020 [ 575.418999] schedule+0xfb/0x450 [ 575.422637] ? lock_downgrade+0x8f0/0x8f0 [ 575.426839] ? __schedule+0x1ed0/0x1ed0 [ 575.430909] ? mark_held_locks+0xc9/0x160 [ 575.435742] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.440447] ? _raw_spin_unlock_irq+0x27/0x70 [ 575.445098] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 575.450264] rwsem_down_read_failed+0x362/0x600 [ 575.455098] ? rwsem_down_write_failed_killable+0x10/0x10 [ 575.460717] ? lock_downgrade+0x8f0/0x8f0 [ 575.465049] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.469544] call_rwsem_down_read_failed+0x18/0x30 [ 575.474549] __percpu_down_read+0x16e/0x210 [ 575.478949] ? percpu_free_rwsem+0xa0/0xa0 [ 575.483272] __sb_start_write+0x2d7/0x300 [ 575.487518] ext4_page_mkwrite+0x1d0/0x1430 [ 575.491918] ? ext4_change_inode_journal_flag+0x3e0/0x3e0 [ 575.497673] ? find_held_lock+0x36/0x1c0 [ 575.501912] do_page_mkwrite+0x14e/0x520 [ 575.506421] ? print_bad_pte+0x5f0/0x5f0 [ 575.511305] ? do_raw_spin_unlock+0xa7/0x2f0 [ 575.515963] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.520813] ? __pte_alloc_kernel+0x2e0/0x2e0 [ 575.525464] do_wp_page+0xf78/0x19b0 [ 575.529315] ? finish_mkwrite_fault+0x610/0x610 [ 575.534570] ? trace_hardirqs_on+0x10/0x10 [ 575.538945] ? __schedule+0x884/0x1ed0 [ 575.543083] ? lock_acquire+0x1e4/0x540 [ 575.547325] ? __handle_mm_fault+0x1cc8/0x4460 [ 575.552159] ? lock_release+0xa30/0xa30 [ 575.556450] ? pmd_val+0x88/0x100 [ 575.560019] ? add_mm_counter_fast+0xd0/0xd0 [ 575.564674] ? kasan_check_write+0x14/0x20 [ 575.569015] ? do_raw_spin_lock+0xc1/0x200 [ 575.573496] __handle_mm_fault+0x2a84/0x4460 [ 575.578230] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 575.583349] ? graph_lock+0x170/0x170 [ 575.587346] ? lock_downgrade+0x8f0/0x8f0 [ 575.591654] ? kasan_check_read+0x11/0x20 [ 575.595965] ? rcu_is_watching+0x8c/0x150 [ 575.600223] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.604765] ? handle_mm_fault+0x8c4/0xc80 [ 575.609238] handle_mm_fault+0x53e/0xc80 [ 575.613432] ? __handle_mm_fault+0x4460/0x4460 [ 575.618106] ? find_vma+0x34/0x190 [ 575.621716] __do_page_fault+0x620/0xe50 [ 575.626237] ? clock_was_set_work+0x30/0x30 [ 575.630686] ? mm_fault_error+0x380/0x380 [ 575.634899] ? __x64_sys_nanosleep+0x1f8/0x280 [ 575.639993] ? hrtimer_nanosleep+0x620/0x620 [ 575.644794] do_page_fault+0xf6/0x8c0 [ 575.648727] ? vmalloc_sync_all+0x30/0x30 [ 575.652997] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 575.658709] ? do_syscall_64+0x497/0x820 [ 575.662924] ? syscall_slow_exit_work+0x500/0x500 [ 575.667828] ? syscall_return_slowpath+0x5e0/0x5e0 [ 575.672819] ? syscall_return_slowpath+0x31d/0x5e0 [ 575.677835] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 575.683363] ? page_fault+0x8/0x30 [ 575.686960] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 575.691855] ? page_fault+0x8/0x30 [ 575.695553] page_fault+0x1e/0x30 [ 575.699082] RIP: 0033:0x4084b0 [ 575.702318] Code: 24 1f e9 d2 00 00 00 48 ff c2 48 83 fa 08 0f 83 ad 00 00 00 84 01 0f b6 1c 11 38 d8 75 e9 48 89 54 24 20 48 8b 5c 24 48 0f b6 <73> 50 48 0f af f2 0f b6 5b 51 48 89 cf 48 8d 74 3e 08 84 db 74 7c [ 575.722152] RSP: 002b:00007ffd9f3e9b00 EFLAGS: 00010287 [ 575.727806] RAX: 0000001b3292530c RBX: 0000000000000000 RCX: 0000001b33920000 [ 575.735506] RDX: 0000001b32925310 RSI: 0000000000730470 RDI: 0000000000000005 [ 575.743082] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 575.750470] R10: 00007ffd9f3e9b40 R11: 0000000000000000 R12: 0000000000000000 [ 575.758121] R13: 0000000000000002 R14: 000000000072bea0 R15: 000000000072bea0 [ 575.765518] INFO: task syz-executor3:15962 blocked for more than 140 seconds. [ 575.772951] Not tainted 4.18.0-rc4+ #142 [ 575.777627] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 575.785755] syz-executor3 D24696 15962 4603 0x00000004 [ 575.791681] Call Trace: [ 575.794382] __schedule+0x87c/0x1ed0 [ 575.798372] ? __sched_text_start+0x8/0x8 [ 575.802659] ? trace_hardirqs_on+0x10/0x10 [ 575.807008] ? graph_lock+0x170/0x170 [ 575.812066] ? __lock_acquire+0x7fc/0x5020 [ 575.816473] schedule+0xfb/0x450 [ 575.819925] ? lock_downgrade+0x8f0/0x8f0 [ 575.824158] ? __schedule+0x1ed0/0x1ed0 [ 575.828223] ? mark_held_locks+0xc9/0x160 [ 575.832471] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.837153] ? _raw_spin_unlock_irq+0x27/0x70 [ 575.841846] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 575.847292] rwsem_down_read_failed+0x362/0x600 [ 575.852102] ? rwsem_down_write_failed_killable+0x10/0x10 [ 575.858091] ? lock_downgrade+0x8f0/0x8f0 [ 575.862429] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.867008] call_rwsem_down_read_failed+0x18/0x30 [ 575.872230] __percpu_down_read+0x16e/0x210 [ 575.876761] ? percpu_free_rwsem+0xa0/0xa0 [ 575.881104] __sb_start_write+0x2d7/0x300 [ 575.885392] ext4_page_mkwrite+0x1d0/0x1430 [ 575.889827] ? ext4_change_inode_journal_flag+0x3e0/0x3e0 [ 575.895857] ? find_held_lock+0x36/0x1c0 [ 575.900080] do_page_mkwrite+0x14e/0x520 [ 575.904274] ? print_bad_pte+0x5f0/0x5f0 [ 575.908449] ? do_raw_spin_unlock+0xa7/0x2f0 [ 575.913161] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 575.920224] ? __pte_alloc_kernel+0x2e0/0x2e0 [ 575.925126] do_wp_page+0xf78/0x19b0 [ 575.928939] ? finish_mkwrite_fault+0x610/0x610 [ 575.933719] ? trace_hardirqs_on+0x10/0x10 [ 575.938043] ? lock_acquire+0x1e4/0x540 [ 575.942095] ? __handle_mm_fault+0x1cc8/0x4460 [ 575.946773] ? lock_release+0xa30/0xa30 [ 575.950819] ? pmd_val+0x88/0x100 [ 575.954335] ? add_mm_counter_fast+0xd0/0xd0 [ 575.959716] ? kasan_check_write+0x14/0x20 [ 575.964011] ? do_raw_spin_lock+0xc1/0x200 [ 575.968325] __handle_mm_fault+0x2a84/0x4460 [ 575.972865] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 575.977798] ? graph_lock+0x170/0x170 [ 575.981710] ? lock_downgrade+0x8f0/0x8f0 [ 575.985950] ? kasan_check_read+0x11/0x20 [ 575.990866] ? rcu_is_watching+0x8c/0x150 [ 575.995080] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 575.999609] ? handle_mm_fault+0x8c4/0xc80 [ 576.003948] handle_mm_fault+0x53e/0xc80 [ 576.008087] ? __handle_mm_fault+0x4460/0x4460 [ 576.012821] ? find_vma+0x34/0x190 [ 576.016846] __do_page_fault+0x620/0xe50 [ 576.020987] ? mm_fault_error+0x380/0x380 [ 576.025214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.030828] ? __x64_sys_clock_gettime+0x170/0x250 [ 576.036191] ? __ia32_sys_clock_settime+0x290/0x290 [ 576.041325] do_page_fault+0xf6/0x8c0 [ 576.045291] ? vmalloc_sync_all+0x30/0x30 [ 576.049497] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.055156] ? do_syscall_64+0x497/0x820 [ 576.059348] ? syscall_slow_exit_work+0x500/0x500 [ 576.064293] ? syscall_return_slowpath+0x5e0/0x5e0 [ 576.069376] ? syscall_return_slowpath+0x31d/0x5e0 [ 576.074605] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 576.080156] ? page_fault+0x8/0x30 [ 576.083849] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 576.088794] ? page_fault+0x8/0x30 [ 576.093130] page_fault+0x1e/0x30 [ 576.098145] RIP: 0033:0x4084b0 [ 576.101668] Code: 24 1f e9 d2 00 00 00 48 ff c2 48 83 fa 08 0f 83 ad 00 00 00 84 01 0f b6 1c 11 38 d8 75 e9 48 89 54 24 20 48 8b 5c 24 48 0f b6 <73> 50 48 0f af f2 0f b6 5b 51 48 89 cf 48 8d 74 3e 08 84 db 74 7c [ 576.121075] RSP: 002b:00007fffe553d0c0 EFLAGS: 00010287 [ 576.126583] RAX: 0000001b32f21a5c RBX: 0000000000000000 RCX: 0000001b33f20000 [ 576.134431] RDX: 0000001b32f21a60 RSI: 0000000000000005 RDI: 0000000000000005 [ 576.141804] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 576.149249] R10: 00007fffe553d100 R11: 0000000000000246 R12: 0000000000000009 [ 576.156755] R13: 0000000000000002 R14: 000000000072bf48 R15: 000000000072bf48 [ 576.164251] INFO: task syz-executor4:15965 blocked for more than 140 seconds. [ 576.171642] Not tainted 4.18.0-rc4+ #142 [ 576.176346] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 576.184493] syz-executor4 D24696 15965 4599 0x00000004 [ 576.190816] Call Trace: [ 576.193493] __schedule+0x87c/0x1ed0 [ 576.197302] ? __sched_text_start+0x8/0x8 [ 576.201673] ? trace_hardirqs_on+0x10/0x10 [ 576.206430] ? graph_lock+0x170/0x170 [ 576.210358] ? __lock_acquire+0x7fc/0x5020 [ 576.214710] ? print_usage_bug+0xc0/0xc0 [ 576.218903] schedule+0xfb/0x450 [ 576.222369] ? lock_downgrade+0x8f0/0x8f0 [ 576.226685] ? __schedule+0x1ed0/0x1ed0 [ 576.230793] ? mark_held_locks+0xc9/0x160 [ 576.235067] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 576.240259] ? _raw_spin_unlock_irq+0x27/0x70 [ 576.244896] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 576.250100] rwsem_down_read_failed+0x362/0x600 [ 576.254984] ? rwsem_down_write_failed_killable+0x10/0x10 [ 576.260651] ? lock_downgrade+0x8f0/0x8f0 [ 576.265462] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 576.270096] call_rwsem_down_read_failed+0x18/0x30 [ 576.275126] __percpu_down_read+0x16e/0x210 [ 576.279615] ? percpu_free_rwsem+0xa0/0xa0 [ 576.283929] __sb_start_write+0x2d7/0x300 [ 576.288191] ext4_page_mkwrite+0x1d0/0x1430 [ 576.292722] ? ext4_change_inode_journal_flag+0x3e0/0x3e0 [ 576.298433] ? find_held_lock+0x36/0x1c0 [ 576.302596] do_page_mkwrite+0x14e/0x520 [ 576.306759] ? print_bad_pte+0x5f0/0x5f0 [ 576.310985] ? do_raw_spin_unlock+0xa7/0x2f0 [ 576.315489] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 576.320142] ? __pte_alloc_kernel+0x2e0/0x2e0 [ 576.325059] do_wp_page+0xf78/0x19b0 [ 576.328844] ? finish_mkwrite_fault+0x610/0x610 [ 576.333767] ? trace_hardirqs_on+0x10/0x10 [ 576.338077] ? __schedule+0x884/0x1ed0 [ 576.342080] ? lock_acquire+0x1e4/0x540 [ 576.346241] ? __handle_mm_fault+0x1cc8/0x4460 [ 576.351179] ? lock_release+0xa30/0xa30 [ 576.355227] ? pmd_val+0x88/0x100 [ 576.358812] ? add_mm_counter_fast+0xd0/0xd0 [ 576.363386] ? kasan_check_write+0x14/0x20 [ 576.367698] ? do_raw_spin_lock+0xc1/0x200 [ 576.372019] __handle_mm_fault+0x2a84/0x4460 [ 576.376629] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 576.381543] ? graph_lock+0x170/0x170 [ 576.385427] ? lock_downgrade+0x8f0/0x8f0 [ 576.389659] ? kasan_check_read+0x11/0x20 [ 576.393918] ? rcu_is_watching+0x8c/0x150 [ 576.398154] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 576.402662] ? handle_mm_fault+0x8c4/0xc80 [ 576.406965] handle_mm_fault+0x53e/0xc80 [ 576.411098] ? __handle_mm_fault+0x4460/0x4460 [ 576.415772] ? find_vma+0x34/0x190 [ 576.419387] __do_page_fault+0x620/0xe50 [ 576.423514] ? clock_was_set_work+0x30/0x30 [ 576.427903] ? mm_fault_error+0x380/0x380 [ 576.432097] ? __x64_sys_nanosleep+0x1f8/0x280 [ 576.436728] ? hrtimer_nanosleep+0x620/0x620 [ 576.441236] do_page_fault+0xf6/0x8c0 [ 576.445115] ? vmalloc_sync_all+0x30/0x30 [ 576.449337] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.454949] ? do_syscall_64+0x497/0x820 [ 576.459068] ? syscall_slow_exit_work+0x500/0x500 [ 576.463977] ? syscall_return_slowpath+0x5e0/0x5e0 [ 576.468977] ? syscall_return_slowpath+0x31d/0x5e0 [ 576.473992] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 576.479480] ? page_fault+0x8/0x30 [ 576.483137] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 576.488101] ? page_fault+0x8/0x30 [ 576.491702] page_fault+0x1e/0x30 [ 576.495247] RIP: 0033:0x4084b0 [ 576.498507] Code: 24 1f e9 d2 00 00 00 48 ff c2 48 83 fa 08 0f 83 ad 00 00 00 84 01 0f b6 1c 11 38 d8 75 e9 48 89 54 24 20 48 8b 5c 24 48 0f b6 <73> 50 48 0f af f2 0f b6 5b 51 48 89 cf 48 8d 74 3e 08 84 db 74 7c [ 576.517814] RSP: 002b:00007ffe6223fb10 EFLAGS: 00010283 [ 576.523272] RAX: 0000001b32a20db0 RBX: 0000000000000000 RCX: 0000001b33a20000 [ 576.530636] RDX: 0000001b32a20db4 RSI: 0000000000730128 RDI: 0000000000000001 [ 576.537975] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 576.545363] R10: 00007ffe6223fb50 R11: 0000000000000000 R12: 0000000000000000 [ 576.552918] R13: 0000000000000002 R14: 000000000072bea0 R15: 000000000072bea0 [ 576.560286] INFO: task syz-executor5:15976 blocked for more than 140 seconds. [ 576.567616] Not tainted 4.18.0-rc4+ #142 [ 576.572272] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 576.580330] syz-executor5 D26296 15976 4601 0x00000004 [ 576.586051] Call Trace: [ 576.588702] __schedule+0x87c/0x1ed0 [ 576.592488] ? __handle_mm_fault+0x94b/0x4460 [ 576.597247] ? __sched_text_start+0x8/0x8 [ 576.601475] ? graph_lock+0x170/0x170 [ 576.605431] ? __lock_acquire+0x7fc/0x5020 [ 576.609750] ? retint_kernel+0x10/0x10 [ 576.613705] schedule+0xfb/0x450 [ 576.617119] ? lock_downgrade+0x8f0/0x8f0 [ 576.621340] ? __schedule+0x1ed0/0x1ed0 [ 576.625392] ? mark_held_locks+0xc9/0x160 [ 576.629601] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 576.634258] ? _raw_spin_unlock_irq+0x27/0x70 [ 576.639020] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 576.644124] rwsem_down_read_failed+0x362/0x600 [ 576.648898] ? rwsem_down_write_failed_killable+0x10/0x10 [ 576.654507] ? lock_downgrade+0x8f0/0x8f0 [ 576.658840] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 576.663326] ? rcuwait_wake_up+0x1cc/0x2f0 [ 576.667629] call_rwsem_down_read_failed+0x18/0x30 [ 576.672647] __percpu_down_read+0x16e/0x210 [ 576.677034] ? percpu_free_rwsem+0xa0/0xa0 [ 576.681433] __sb_start_write+0x2d7/0x300 [ 576.685650] mnt_want_write+0x3f/0xc0 [ 576.689538] filename_create+0x13e/0x5b0 [ 576.693687] ? kern_path_mountpoint+0x40/0x40 [ 576.698283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.704021] ? getname_flags+0x26e/0x5a0 [ 576.708194] ? __close_fd+0x24c/0x3a0 [ 576.712098] do_symlinkat+0xfe/0x2d0 [ 576.715899] ? __ia32_sys_unlink+0x50/0x50 [ 576.720256] ? __ia32_sys_access+0x80/0x80 [ 576.724586] __x64_sys_symlink+0x59/0x80 [ 576.728738] do_syscall_64+0x1b9/0x820 [ 576.733869] ? syscall_return_slowpath+0x5e0/0x5e0 [ 576.738896] ? syscall_return_slowpath+0x31d/0x5e0 [ 576.743902] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 576.749447] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 576.754361] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 576.760158] RIP: 0033:0x455b57 [ 576.763445] Code: 80 80 fa 3f 77 10 83 e6 1f c1 e6 06 83 e1 3f 09 ce 83 fe 7f 7f 19 c7 44 24 28 fd ff 00 00 48 ff c0 48 89 44 24 30 48 8b 2c 24 <48> 83 c4 08 c3 89 74 24 28 48 83 c0 02 48 89 44 24 30 48 8b 2c 24 [ 576.782755] RSP: 002b:00007fff93544a38 EFLAGS: 00000217 ORIG_RAX: 0000000000000058 [ 576.790558] RAX: ffffffffffffffda RBX: 0000000000000013 RCX: 0000000000455b57 [ 576.798397] RDX: 0000000000000000 RSI: 00000000004bb371 RDI: 00007fff93545730 [ 576.806903] RBP: 0000000000000013 R08: 0000000000000000 R09: 0000000000ee2940 [ 576.814739] R10: 0000000000000000 R11: 0000000000000217 R12: 0000000000000000 [ 576.822127] R13: 0000000000000000 R14: 00007fff935450e0 R15: 00000000007034c0 [ 576.829545] INFO: task syz-executor2:15977 blocked for more than 140 seconds. [ 576.836948] Not tainted 4.18.0-rc4+ #142 [ 576.841654] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 576.849957] syz-executor2 D26296 15977 4600 0x00000004 [ 576.855701] Call Trace: [ 576.858440] __schedule+0x87c/0x1ed0 [ 576.862407] ? __handle_mm_fault+0x94b/0x4460 [ 576.866986] ? __sched_text_start+0x8/0x8 [ 576.871317] ? graph_lock+0x170/0x170 [ 576.875261] ? __lock_acquire+0x7fc/0x5020 [ 576.879646] schedule+0xfb/0x450 [ 576.883141] ? lock_downgrade+0x8f0/0x8f0 [ 576.887488] ? __schedule+0x1ed0/0x1ed0 [ 576.891651] ? mark_held_locks+0xc9/0x160 [ 576.896169] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 576.900859] ? _raw_spin_unlock_irq+0x27/0x70 [ 576.905493] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 576.910623] rwsem_down_read_failed+0x362/0x600 [ 576.915390] ? rwsem_down_write_failed_killable+0x10/0x10 [ 576.920996] ? lock_downgrade+0x8f0/0x8f0 [ 576.925253] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 576.929771] ? rcuwait_wake_up+0x1cc/0x2f0 [ 576.934244] call_rwsem_down_read_failed+0x18/0x30 [ 576.939296] __percpu_down_read+0x16e/0x210 [ 576.943738] ? percpu_free_rwsem+0xa0/0xa0 [ 576.948065] __sb_start_write+0x2d7/0x300 [ 576.952323] mnt_want_write+0x3f/0xc0 [ 576.956238] filename_create+0x13e/0x5b0 [ 576.960543] ? kern_path_mountpoint+0x40/0x40 [ 576.965127] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 576.970781] ? getname_flags+0x26e/0x5a0 [ 576.974921] ? __close_fd+0x24c/0x3a0 [ 576.978803] do_symlinkat+0xfe/0x2d0 [ 576.982573] ? __ia32_sys_unlink+0x50/0x50 [ 576.986877] ? __ia32_sys_access+0x80/0x80 [ 576.991206] __x64_sys_symlink+0x59/0x80 [ 576.995383] do_syscall_64+0x1b9/0x820 [ 576.999362] ? syscall_return_slowpath+0x5e0/0x5e0 [ 577.004414] ? syscall_return_slowpath+0x31d/0x5e0 [ 577.009466] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 577.014947] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 577.019860] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 577.025151] RIP: 0033:0x455b57 [ 577.028447] Code: 80 80 fa 3f 77 10 83 e6 1f c1 e6 06 83 e1 3f 09 ce 83 fe 7f 7f 19 c7 44 24 28 fd ff 00 00 48 ff c0 48 89 44 24 30 48 8b 2c 24 <48> 83 c4 08 c3 89 74 24 28 48 83 c0 02 48 89 44 24 30 48 8b 2c 24 [ 577.047887] RSP: 002b:00007ffdaba8ede8 EFLAGS: 00000217 ORIG_RAX: 0000000000000058 [ 577.055729] RAX: ffffffffffffffda RBX: 0000000000000013 RCX: 0000000000455b57 [ 577.063222] RDX: 0000000000000000 RSI: 00000000004bb371 RDI: 00007ffdaba8fae0 [ 577.070572] RBP: 0000000000000013 R08: 0000000000000000 R09: 00000000016e3940 [ 577.077971] R10: 0000000000000000 R11: 0000000000000217 R12: 0000000000000000 [ 577.085368] R13: 0000000000000000 R14: 00007ffdaba8f490 R15: 00000000007034c0 [ 577.092763] [ 577.092763] Showing all locks held in the system: [ 577.099178] 1 lock held by khungtaskd/897: [ 577.103511] #0: 0000000072d9a3e5 (rcu_read_lock){....}, at: debug_show_all_locks+0xd0/0x428 [ 577.112295] 2 locks held by rs:main Q:Reg/4455: [ 577.117150] #0: 00000000656ae79d (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1bb/0x200 [ 577.125251] #1: 00000000e76d92bc (sb_writers#6){++++}, at: vfs_write+0x452/0x560 [ 577.133060] 1 lock held by rsyslogd/4457: [ 577.137304] #0: 0000000048535a21 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0x1bb/0x200 [ 577.145448] 2 locks held by getty/4547: [ 577.149482] #0: 00000000c32b6b95 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.157838] #1: 00000000b53ec945 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.166830] 2 locks held by getty/4548: [ 577.170917] #0: 00000000672ea175 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.179269] #1: 00000000942dc25a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.188267] 2 locks held by getty/4549: [ 577.192322] #0: 000000003713d823 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.200732] #1: 000000008aed517d (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.209728] 2 locks held by getty/4550: [ 577.213765] #0: 0000000058215eaa (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.222127] #1: 00000000b0e2d894 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.231138] 2 locks held by getty/4551: [ 577.235184] #0: 00000000bb6cc5a5 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.243545] #1: 0000000092bcb092 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.252499] 2 locks held by getty/4552: [ 577.256520] #0: 000000006ac8bb6d (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.264837] #1: 000000007cd44af3 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.273804] 2 locks held by getty/4553: [ 577.277820] #0: 000000006f67ea37 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40 [ 577.286144] #1: 0000000019f9076f (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x335/0x1ce0 [ 577.295123] 1 lock held by syz-executor0/4597: [ 577.299766] #0: 00000000e76d92bc (sb_writers#6){++++}, at: mnt_want_write+0x3f/0xc0 [ 577.307775] 1 lock held by syz-executor1/4598: [ 577.312427] #0: 00000000e76d92bc (sb_writers#6){++++}, at: mnt_want_write+0x3f/0xc0 [ 577.320441] 2 locks held by syz-executor6/15938: [ 577.325269] #0: 000000005a244f59 (&mm->mmap_sem){++++}, at: __do_page_fault+0x389/0xe50 [ 577.333641] #1: 00000000a3aa1b19 (sb_pagefaults){++++}, at: ext4_page_mkwrite+0x1d0/0x1430 [ 577.342269] 2 locks held by syz-executor7/15944: [ 577.347067] #0: 0000000060e4bdd6 (&mm->mmap_sem){++++}, at: __do_page_fault+0x389/0xe50 [ 577.355430] #1: 00000000a3aa1b19 (sb_pagefaults){++++}, at: ext4_page_mkwrite+0x1d0/0x1430 [ 577.364092] 2 locks held by syz-executor3/15962: [ 577.368954] #0: 00000000c35ade3c (&mm->mmap_sem){++++}, at: __do_page_fault+0x389/0xe50 [ 577.377326] #1: 00000000a3aa1b19 (sb_pagefaults){++++}, at: ext4_page_mkwrite+0x1d0/0x1430 [ 577.385996] 2 locks held by syz-executor4/15965: [ 577.390801] #0: 00000000fe629c03 (&mm->mmap_sem){++++}, at: __do_page_fault+0x389/0xe50 [ 577.399131] #1: 00000000a3aa1b19 (sb_pagefaults){++++}, at: ext4_page_mkwrite+0x1d0/0x1430 [ 577.407773] 1 lock held by syz-executor5/15976: [ 577.412508] #0: 00000000e76d92bc (sb_writers#6){++++}, at: mnt_want_write+0x3f/0xc0 [ 577.420514] 1 lock held by syz-executor2/15977: [ 577.425284] #0: 00000000e76d92bc (sb_writers#6){++++}, at: mnt_want_write+0x3f/0xc0 [ 577.433331] 1 lock held by cron/15980: [ 577.437335] #0: 00000000e76d92bc (sb_writers#6){++++}, at: mnt_want_write+0x3f/0xc0 [ 577.445375] [ 577.447078] ============================================= [ 577.447078] [ 577.454183] NMI backtrace for cpu 1 [ 577.457916] CPU: 1 PID: 897 Comm: khungtaskd Not tainted 4.18.0-rc4+ #142 [ 577.464877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 577.474260] Call Trace: [ 577.476905] dump_stack+0x1c9/0x2b4 [ 577.480549] ? dump_stack_print_info.cold.2+0x52/0x52 [ 577.485779] ? vprintk_default+0x28/0x30 [ 577.489864] nmi_cpu_backtrace.cold.4+0x19/0xce [ 577.494540] ? rcu_report_qs_rnp+0x7a0/0x7a0 [ 577.498962] ? lapic_can_unplug_cpu.cold.27+0x3f/0x3f [ 577.504199] nmi_trigger_cpumask_backtrace+0x151/0x192 [ 577.509500] arch_trigger_cpumask_backtrace+0x14/0x20 [ 577.514698] watchdog+0x9c4/0xf80 [ 577.518186] ? reset_hung_task_detector+0xd0/0xd0 [ 577.523037] ? kasan_check_read+0x11/0x20 [ 577.527202] ? do_raw_spin_unlock+0xa7/0x2f0 [ 577.531638] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 577.536779] ? __kthread_parkme+0x58/0x1b0 [ 577.541036] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 577.546049] ? trace_hardirqs_on+0xd/0x10 [ 577.550195] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 577.555745] ? __kthread_parkme+0x106/0x1b0 [ 577.560085] kthread+0x345/0x410 [ 577.563456] ? reset_hung_task_detector+0xd0/0xd0 [ 577.568312] ? kthread_bind+0x40/0x40 [ 577.572120] ret_from_fork+0x3a/0x50 [ 577.575960] Sending NMI from CPU 1 to CPUs 0: [ 577.580519] NMI backtrace for cpu 0 [ 577.580533] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 4.18.0-rc4+ #142 [ 577.580538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 577.580562] RIP: 0010:trace_softirqs_off+0x1fd/0x380 [ 577.580564] Code: 08 84 c0 0f 85 68 01 00 00 8b 15 3e a9 45 09 85 d2 75 10 65 8b 05 a3 cb a2 7e f6 c4 ff 0f 84 a9 00 00 00 5b 41 5c 41 5d 5d c3 <48> c7 c7 60 b0 f1 88 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 [ 577.580693] RSP: 0018:ffff8801dae07c88 EFLAGS: 00000046 [ 577.580701] RAX: 0000000000000003 RBX: ffffffff88e75dc0 RCX: 1ffff1003b5c46d5 [ 577.580707] RDX: 0000000000000004 RSI: 0000000080000001 RDI: 0000000000000000 [ 577.580712] RBP: ffff8801dae07ca0 R08: 0000000000000000 R09: 0000000000000001 [ 577.580718] R10: ffffed003b5c46d6 R11: ffff8801dae236b3 R12: ffffffff8aa4cb60 [ 577.580724] R13: ffffffff81491bf0 R14: ffff8801dae07e68 R15: 0000000000000000 [ 577.580731] FS: 0000000000000000(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000 [ 577.580737] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 577.580742] CR2: 00000000020740f8 CR3: 00000001b1db6000 CR4: 00000000001426f0 [ 577.580750] DR0: 000000000000000b DR1: 0000000000000000 DR2: 0000000000000000 [ 577.580755] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 577.580757] Call Trace: [ 577.580761] [ 577.580773] ? irq_enter+0xa0/0xd0 [ 577.580783] __local_bh_disable_ip+0xe9/0x120 [ 577.580791] irq_enter+0xb1/0xd0 [ 577.580804] scheduler_ipi+0x3a9/0xa50 [ 577.580813] ? migration_cpu_stop+0x470/0x470 [ 577.580827] ? kasan_check_read+0x11/0x20 [ 577.580837] ? rcu_nmi_exit+0xe0/0x2d0 [ 577.580845] ? rcu_idle_enter+0x480/0x480 [ 577.580857] ? clockevents_program_event+0x140/0x370 [ 577.580868] ? task_prio+0x50/0x50 [ 577.580884] smp_reschedule_interrupt+0xf5/0x670 [ 577.580893] ? smp_thermal_interrupt+0x820/0x820 [ 577.580904] ? kvm_clock_read+0x25/0x30 [ 577.580913] ? kvm_sched_clock_read+0x9/0x20 [ 577.580922] ? sched_clock+0x31/0x40 [ 577.580930] ? sched_clock_cpu+0x1b/0x180 [ 577.580938] ? task_prio+0x50/0x50 [ 577.580952] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 577.580962] reschedule_interrupt+0xf/0x20 [ 577.580965] [ 577.580976] RIP: 0010:native_safe_halt+0x6/0x10 [ 577.580977] Code: c7 48 89 45 d8 e8 0a 00 26 fa 48 8b 45 d8 e9 d2 fe ff ff 48 89 df e8 f9 ff 25 fa eb 8a 90 90 90 90 90 90 90 55 48 89 e5 fb f4 <5d> c3 0f 1f 84 00 00 00 00 00 55 48 89 e5 f4 5d c3 90 90 90 90 90 [ 577.581104] RSP: 0018:ffffffff88e07bc0 EFLAGS: 00000286 ORIG_RAX: ffffffffffffff02 [ 577.581112] RAX: dffffc0000000000 RBX: 1ffffffff11c0f7b RCX: 0000000000000000 [ 577.581117] RDX: 1ffffffff11e3610 RSI: 0000000000000001 RDI: ffffffff88f1b080 [ 577.581122] RBP: ffffffff88e07bc0 R08: ffffed003b5c46d7 R09: 0000000000000000 [ 577.581127] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 577.581133] R13: ffffffff88e07c78 R14: ffffffff899ed060 R15: 0000000000000000 [ 577.581145] default_idle+0xc7/0x450 [ 577.581155] ? __sched_text_end+0x3/0x3 [ 577.581164] ? rcu_idle_enter+0x30a/0x480 [ 577.581172] ? rcu_eqs_special_set+0x1b0/0x1b0 [ 577.581185] ? tsc_verify_tsc_adjust+0x109/0x380 [ 577.581194] ? mark_tsc_async_resets+0x20/0x20 [ 577.581203] ? tick_nohz_idle_enter+0x219/0x320 [ 577.581213] arch_cpu_idle+0x10/0x20 [ 577.581222] default_idle_call+0x6d/0x90 [ 577.581230] do_idle+0x3aa/0x570 [ 577.581239] ? retint_kernel+0x10/0x10 [ 577.581248] ? arch_cpu_idle_exit+0x70/0x70 [ 577.581258] cpu_startup_entry+0x10c/0x120 [ 577.581266] ? cpu_in_idle+0x20/0x20 [ 577.581276] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 577.581285] ? trace_hardirqs_on+0xd/0x10 [ 577.581294] rest_init+0xe1/0xe4 [ 577.581305] start_kernel+0x90e/0x949 [ 577.581312] ? mem_encrypt_init+0xb/0xb [ 577.581323] ? early_idt_handler_common+0x3b/0x60 [ 577.581339] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 577.581350] ? x86_family+0x3e/0x50 [ 577.581359] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 577.581370] x86_64_start_reservations+0x29/0x2b [ 577.581380] x86_64_start_kernel+0x76/0x79 [ 577.581389] secondary_startup_64+0xa5/0xb0 [ 577.581522] Kernel panic - not syncing: hung_task: blocked tasks [ 577.978820] CPU: 1 PID: 897 Comm: khungtaskd Not tainted 4.18.0-rc4+ #142 [ 577.985733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 577.995094] Call Trace: [ 577.997688] dump_stack+0x1c9/0x2b4 [ 578.001304] ? dump_stack_print_info.cold.2+0x52/0x52 [ 578.006487] ? printk_safe_log_store+0x2f0/0x2f0 [ 578.011260] panic+0x238/0x4e7 [ 578.014465] ? add_taint.cold.5+0x16/0x16 [ 578.018609] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 578.024140] ? nmi_trigger_cpumask_backtrace+0x13a/0x192 [ 578.029586] ? printk_safe_flush+0xd7/0x130 [ 578.033906] watchdog+0x9d5/0xf80 [ 578.037454] ? reset_hung_task_detector+0xd0/0xd0 [ 578.042312] ? kasan_check_read+0x11/0x20 [ 578.046465] ? do_raw_spin_unlock+0xa7/0x2f0 [ 578.050892] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 578.056011] ? __kthread_parkme+0x58/0x1b0 [ 578.060258] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 578.065318] ? trace_hardirqs_on+0xd/0x10 [ 578.069477] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 578.075039] ? __kthread_parkme+0x106/0x1b0 [ 578.079358] kthread+0x345/0x410 [ 578.083065] ? reset_hung_task_detector+0xd0/0xd0 [ 578.087896] ? kthread_bind+0x40/0x40 [ 578.091694] ret_from_fork+0x3a/0x50 [ 578.096525] Dumping ftrace buffer: [ 578.100403] (ftrace buffer empty) [ 578.104115] Kernel Offset: disabled [ 578.107745] Rebooting in 86400 seconds..