8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:33 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) 15:12:33 executing program 1 (fault-call:4 fault-nth:2): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:33 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) 15:12:33 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:33 executing program 2: mkdir(0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:33 executing program 2: mkdir(0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:33 executing program 3: r0 = creat(0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) 15:12:33 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:33 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:33 executing program 3: r0 = creat(0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) [ 214.419017] FAULT_INJECTION: forcing a failure. [ 214.419017] name failslab, interval 1, probability 0, space 0, times 0 15:12:33 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 214.485499] CPU: 1 PID: 11032 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 214.493414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.502765] Call Trace: [ 214.505356] dump_stack+0x1b2/0x283 [ 214.508996] should_fail.cold+0x10a/0x154 [ 214.513153] should_failslab+0xd6/0x130 [ 214.517134] kmem_cache_alloc_node+0x25f/0x400 [ 214.521722] __alloc_skb+0x9a/0x4c0 [ 214.525352] ? __kmalloc_reserve.isra.0+0xd0/0xd0 [ 214.530732] ? trace_hardirqs_on+0x10/0x10 [ 214.535487] sock_wmalloc+0xa5/0xf0 [ 214.539117] __ip6_append_data.isra.0+0x21c2/0x28d0 [ 214.544150] ? ip6_sk_dst_lookup_flow+0x7d0/0x7d0 [ 214.548992] ? ip6_mtu+0x13c/0x410 [ 214.552623] ? ip6_setup_cork+0xc9d/0x12a0 [ 214.556861] ip6_append_data+0x1c3/0x300 [ 214.560920] ? rawv6_recvmsg+0xbb0/0xbb0 [ 214.564982] ? rawv6_recvmsg+0xbb0/0xbb0 [ 214.569053] rawv6_sendmsg+0x10b8/0x2d50 [ 214.573117] ? ima_add_template_entry.cold+0x3d/0x3d [ 214.578221] ? rawv6_ioctl+0x190/0x190 [ 214.582112] ? __lock_acquire+0x655/0x42a0 [ 214.586361] ? trace_hardirqs_on+0x10/0x10 [ 214.590592] ? rw_copy_check_uvector+0x1ee/0x290 [ 214.595356] ? selinux_tun_dev_create+0xc0/0xc0 [ 214.600033] ? lock_downgrade+0x6e0/0x6e0 [ 214.604179] ? inet_sendmsg+0x116/0x4d0 [ 214.608145] inet_sendmsg+0x116/0x4d0 [ 214.611940] ? inet_recvmsg+0x4c0/0x4c0 [ 214.615907] sock_sendmsg+0xb5/0x100 [ 214.619620] ___sys_sendmsg+0x349/0x840 [ 214.623589] ? copy_msghdr_from_user+0x380/0x380 [ 214.628886] ? __fget+0x1ff/0x360 [ 214.632422] ? lock_acquire+0x170/0x3f0 [ 214.636383] ? lock_downgrade+0x6e0/0x6e0 [ 214.640513] ? __fget+0x226/0x360 [ 214.643955] ? __fget_light+0x199/0x1f0 [ 214.647916] ? sockfd_lookup_light+0xb2/0x160 [ 214.667770] __sys_sendmmsg+0x129/0x330 [ 214.671729] ? SyS_sendmsg+0x40/0x40 [ 214.675423] ? SyS_write+0x1b7/0x210 [ 214.679122] ? __mutex_unlock_slowpath+0x75/0x780 [ 214.683942] ? wait_for_completion_io+0x10/0x10 [ 214.688599] ? vfs_write+0x319/0x4d0 [ 214.692403] ? fput+0xb/0x140 [ 214.695497] ? SyS_write+0x14d/0x210 [ 214.699197] ? SyS_read+0x210/0x210 [ 214.702805] SyS_sendmmsg+0x2f/0x50 [ 214.706503] ? __sys_sendmmsg+0x330/0x330 [ 214.710641] do_syscall_64+0x1d5/0x640 [ 214.714533] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 214.719709] RIP: 0033:0x45cb29 [ 214.722883] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 214.730572] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 214.737826] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 214.745081] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 214.752388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 214.759769] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 15:12:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:34 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:34 executing program 3: r0 = creat(0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) 15:12:34 executing program 1 (fault-call:4 fault-nth:3): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:34 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) 15:12:34 executing program 3: creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) 15:12:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:34 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:34 executing program 3: creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) 15:12:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 215.277603] FAULT_INJECTION: forcing a failure. [ 215.277603] name failslab, interval 1, probability 0, space 0, times 0 15:12:34 executing program 3: creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}, {0x801}]}) [ 215.329512] CPU: 1 PID: 11075 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 215.337430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 215.346790] Call Trace: [ 215.349390] dump_stack+0x1b2/0x283 [ 215.353026] should_fail.cold+0x10a/0x154 [ 215.357181] should_failslab+0xd6/0x130 [ 215.361160] kmem_cache_alloc_node_trace+0x25a/0x400 [ 215.366269] __kmalloc_node_track_caller+0x38/0x70 [ 215.371206] __kmalloc_reserve.isra.0+0x35/0xd0 [ 215.375878] __alloc_skb+0xca/0x4c0 [ 215.379505] ? __kmalloc_reserve.isra.0+0xd0/0xd0 [ 215.384347] ? trace_hardirqs_on+0x10/0x10 [ 215.388589] sock_wmalloc+0xa5/0xf0 [ 215.392319] __ip6_append_data.isra.0+0x21c2/0x28d0 [ 215.397354] ? ip6_sk_dst_lookup_flow+0x7d0/0x7d0 [ 215.402298] ? ip6_mtu+0x13c/0x410 [ 215.405846] ? ip6_setup_cork+0xc9d/0x12a0 [ 215.410083] ip6_append_data+0x1c3/0x300 [ 215.414147] ? rawv6_recvmsg+0xbb0/0xbb0 [ 215.418209] ? rawv6_recvmsg+0xbb0/0xbb0 [ 215.422391] rawv6_sendmsg+0x10b8/0x2d50 [ 215.426548] ? ima_add_template_entry.cold+0x3d/0x3d [ 215.431656] ? rawv6_ioctl+0x190/0x190 [ 215.435544] ? __lock_acquire+0x655/0x42a0 [ 215.439792] ? trace_hardirqs_on+0x10/0x10 [ 215.444026] ? rw_copy_check_uvector+0x1ee/0x290 [ 215.448790] ? selinux_tun_dev_create+0xc0/0xc0 [ 215.453468] ? lock_downgrade+0x6e0/0x6e0 [ 215.457621] ? inet_sendmsg+0x116/0x4d0 [ 215.461592] inet_sendmsg+0x116/0x4d0 [ 215.465393] ? inet_recvmsg+0x4c0/0x4c0 [ 215.469365] sock_sendmsg+0xb5/0x100 [ 215.473077] ___sys_sendmsg+0x349/0x840 [ 215.477052] ? copy_msghdr_from_user+0x380/0x380 [ 215.481815] ? __fget+0x1ff/0x360 [ 215.485271] ? lock_acquire+0x170/0x3f0 [ 215.489244] ? lock_downgrade+0x6e0/0x6e0 [ 215.493395] ? __fget+0x226/0x360 [ 215.496946] ? __fget_light+0x199/0x1f0 [ 215.500919] ? sockfd_lookup_light+0xb2/0x160 [ 215.505616] __sys_sendmmsg+0x129/0x330 [ 215.509594] ? SyS_sendmsg+0x40/0x40 [ 215.513312] ? SyS_write+0x1b7/0x210 [ 215.517039] ? __mutex_unlock_slowpath+0x75/0x780 [ 215.522142] ? wait_for_completion_io+0x10/0x10 [ 215.526929] ? vfs_write+0x319/0x4d0 [ 215.530642] ? fput+0xb/0x140 [ 215.539561] ? SyS_write+0x14d/0x210 [ 215.543271] ? SyS_read+0x210/0x210 [ 215.546896] SyS_sendmmsg+0x2f/0x50 [ 215.550537] ? __sys_sendmmsg+0x330/0x330 [ 215.554685] do_syscall_64+0x1d5/0x640 [ 215.558575] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 215.563758] RIP: 0033:0x45cb29 [ 215.566942] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 215.574648] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 215.581912] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 215.589174] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 215.596518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 215.603766] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 15:12:35 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:35 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:35 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0) 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:35 executing program 1 (fault-call:4 fault-nth:4): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:35 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) 15:12:35 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0) 15:12:35 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 216.109097] FAULT_INJECTION: forcing a failure. [ 216.109097] name failslab, interval 1, probability 0, space 0, times 0 [ 216.120525] CPU: 1 PID: 11125 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 216.128404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.137754] Call Trace: [ 216.140348] dump_stack+0x1b2/0x283 [ 216.143983] should_fail.cold+0x10a/0x154 [ 216.148137] should_failslab+0xd6/0x130 [ 216.152110] __kmalloc+0x6d/0x400 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 216.155561] ? __neigh_create+0x1da/0x1980 [ 216.159798] __neigh_create+0x1da/0x1980 [ 216.163868] ? ip6_finish_output2+0x1e2/0x21b0 [ 216.168448] ? check_preemption_disabled+0x35/0x240 [ 216.173466] ip6_finish_output2+0x869/0x21b0 [ 216.177885] ? ip6_forward_finish+0x470/0x470 [ 216.182380] ? lock_acquire+0x170/0x3f0 [ 216.186351] ? lock_downgrade+0x6e0/0x6e0 [ 216.190507] ? ip6_finish_output+0x702/0xaf0 [ 216.194915] ip6_finish_output+0x702/0xaf0 [ 216.199153] ip6_output+0x1c5/0x660 [ 216.202786] ? ip6_finish_output+0xaf0/0xaf0 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', 0x0, &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 216.207199] ? ip6_mtu+0x13c/0x410 [ 216.210757] ? ip6_fragment+0x2e70/0x2e70 [ 216.214910] ip6_local_out+0x93/0x170 [ 216.218712] ip6_send_skb+0x9b/0x2f0 [ 216.222427] ip6_push_pending_frames+0xaf/0xd0 [ 216.227010] rawv6_sendmsg+0x22c4/0x2d50 [ 216.231070] ? ima_add_template_entry.cold+0x3d/0x3d [ 216.236179] ? rawv6_ioctl+0x190/0x190 [ 216.240067] ? __lock_acquire+0x655/0x42a0 [ 216.244311] ? trace_hardirqs_on+0x10/0x10 [ 216.248546] ? rw_copy_check_uvector+0x1ee/0x290 [ 216.253309] ? selinux_tun_dev_create+0xc0/0xc0 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', 0x0, &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 216.257987] ? lock_downgrade+0x6e0/0x6e0 [ 216.262135] ? inet_sendmsg+0x116/0x4d0 [ 216.266110] inet_sendmsg+0x116/0x4d0 [ 216.269906] ? inet_recvmsg+0x4c0/0x4c0 [ 216.273879] sock_sendmsg+0xb5/0x100 [ 216.277593] ___sys_sendmsg+0x349/0x840 [ 216.281566] ? copy_msghdr_from_user+0x380/0x380 [ 216.286420] ? __fget+0x1ff/0x360 [ 216.289880] ? lock_acquire+0x170/0x3f0 [ 216.293852] ? lock_downgrade+0x6e0/0x6e0 [ 216.298018] ? __fget+0x226/0x360 [ 216.301473] ? __fget_light+0x199/0x1f0 [ 216.305450] ? sockfd_lookup_light+0xb2/0x160 [ 216.309948] __sys_sendmmsg+0x129/0x330 [ 216.313923] ? SyS_sendmsg+0x40/0x40 [ 216.317763] ? SyS_write+0x1b7/0x210 [ 216.321486] ? __mutex_unlock_slowpath+0x75/0x780 [ 216.326329] ? wait_for_completion_io+0x10/0x10 [ 216.330996] ? vfs_write+0x319/0x4d0 [ 216.334708] ? fput+0xb/0x140 [ 216.337811] ? SyS_write+0x14d/0x210 [ 216.341519] ? SyS_read+0x210/0x210 [ 216.345157] SyS_sendmmsg+0x2f/0x50 [ 216.348783] ? __sys_sendmmsg+0x330/0x330 [ 216.352942] do_syscall_64+0x1d5/0x640 [ 216.356833] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 216.362019] RIP: 0033:0x45cb29 [ 216.365203] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 216.372908] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 216.380174] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 216.387551] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 216.394903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 216.402222] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 15:12:35 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', 0x0, &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:35 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0) 15:12:35 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:35 executing program 1 (fault-call:4 fault-nth:5): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:35 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) tkill(r0, 0x14) 15:12:35 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}]}) 15:12:35 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:35 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:36 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}]}) [ 216.957754] FAULT_INJECTION: forcing a failure. [ 216.957754] name failslab, interval 1, probability 0, space 0, times 0 [ 217.007585] CPU: 0 PID: 11178 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 217.015585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.024942] Call Trace: [ 217.027537] dump_stack+0x1b2/0x283 [ 217.031172] should_fail.cold+0x10a/0x154 [ 217.035329] should_failslab+0xd6/0x130 [ 217.039306] kmem_cache_alloc_node+0x25f/0x400 [ 217.043898] __alloc_skb+0x9a/0x4c0 [ 217.047538] ? __kmalloc_reserve.isra.0+0xd0/0xd0 [ 217.052379] ? trace_hardirqs_on+0x10/0x10 15:12:36 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:36 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 217.056618] sock_wmalloc+0xa5/0xf0 [ 217.060247] __ip6_append_data.isra.0+0x21c2/0x28d0 [ 217.065274] ? ip6_sk_dst_lookup_flow+0x7d0/0x7d0 [ 217.070115] ? ip6_mtu+0x13c/0x410 [ 217.073658] ? ip6_setup_cork+0xc9d/0x12a0 [ 217.077890] ip6_append_data+0x1c3/0x300 [ 217.081942] ? rawv6_recvmsg+0xbb0/0xbb0 [ 217.086088] ? rawv6_recvmsg+0xbb0/0xbb0 [ 217.090152] rawv6_sendmsg+0x10b8/0x2d50 [ 217.094219] ? ima_add_template_entry.cold+0x3d/0x3d [ 217.099326] ? rawv6_ioctl+0x190/0x190 [ 217.103212] ? trace_hardirqs_on+0x10/0x10 [ 217.107446] ? __lock_acquire+0x655/0x42a0 [ 217.111691] ? __might_fault+0x104/0x1b0 [ 217.115749] ? rw_copy_check_uvector+0x1ee/0x290 [ 217.120507] ? sock_has_perm+0x1c0/0x230 [ 217.124571] ? selinux_tun_dev_create+0xc0/0xc0 [ 217.129251] ? inet_sendmsg+0x116/0x4d0 [ 217.133223] inet_sendmsg+0x116/0x4d0 [ 217.137021] ? inet_recvmsg+0x4c0/0x4c0 [ 217.140994] sock_sendmsg+0xb5/0x100 [ 217.144708] ___sys_sendmsg+0x349/0x840 [ 217.148687] ? copy_msghdr_from_user+0x380/0x380 [ 217.153447] ? trace_hardirqs_on+0x10/0x10 [ 217.157687] ? __fget+0x1ff/0x360 [ 217.161141] ? lock_acquire+0x170/0x3f0 [ 217.165371] ? lock_downgrade+0x6e0/0x6e0 [ 217.169519] ? __might_fault+0x104/0x1b0 [ 217.173580] ? lock_acquire+0x170/0x3f0 [ 217.177567] __sys_sendmmsg+0x129/0x330 [ 217.181541] ? SyS_sendmsg+0x40/0x40 [ 217.185249] ? SyS_write+0x1b7/0x210 [ 217.188971] ? __mutex_unlock_slowpath+0x75/0x780 [ 217.193803] ? wait_for_completion_io+0x10/0x10 [ 217.198453] ? vfs_write+0x319/0x4d0 [ 217.202144] ? fput+0xb/0x140 [ 217.205228] ? SyS_write+0x14d/0x210 [ 217.208918] ? SyS_read+0x210/0x210 [ 217.212529] SyS_sendmmsg+0x2f/0x50 [ 217.216134] ? __sys_sendmmsg+0x330/0x330 [ 217.220261] do_syscall_64+0x1d5/0x640 [ 217.224129] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 217.229299] RIP: 0033:0x45cb29 [ 217.232466] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 217.240150] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 217.247405] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 217.254661] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 217.261908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 217.269156] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 15:12:36 executing program 5: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:36 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:36 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:36 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{0x0, 0x0, 0x507de1f42f000000}]}) 15:12:36 executing program 1 (fault-call:4 fault-nth:6): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 217.776923] FAULT_INJECTION: forcing a failure. [ 217.776923] name failslab, interval 1, probability 0, space 0, times 0 [ 217.799160] CPU: 0 PID: 11216 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 217.807063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.817368] Call Trace: [ 217.819961] dump_stack+0x1b2/0x283 [ 217.823706] should_fail.cold+0x10a/0x154 [ 217.827861] should_failslab+0xd6/0x130 [ 217.831837] __kmalloc+0x2c1/0x400 [ 217.835374] ? rw_copy_check_uvector+0x1d4/0x290 [ 217.840133] rw_copy_check_uvector+0x1d4/0x290 [ 217.844722] import_iovec+0x94/0x360 [ 217.848436] ? dup_iter+0x240/0x240 [ 217.852060] ? __might_fault+0x177/0x1b0 [ 217.856125] copy_msghdr_from_user+0x258/0x380 [ 217.860710] ? move_addr_to_kernel.part.0+0xf0/0xf0 [ 217.865750] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 217.871330] ___sys_sendmsg+0xeb/0x840 [ 217.875219] ? copy_msghdr_from_user+0x380/0x380 [ 217.879977] ? trace_hardirqs_on+0x10/0x10 [ 217.884212] ? __fget+0x1ff/0x360 [ 217.887663] ? lock_acquire+0x170/0x3f0 [ 217.891633] ? lock_downgrade+0x6e0/0x6e0 [ 217.898734] ? __might_fault+0x104/0x1b0 [ 217.902797] ? lock_acquire+0x170/0x3f0 [ 217.906779] __sys_sendmmsg+0x129/0x330 [ 217.910749] ? SyS_sendmsg+0x40/0x40 [ 217.914462] ? SyS_write+0x1b7/0x210 [ 217.918361] ? __mutex_unlock_slowpath+0x75/0x780 [ 217.923203] ? wait_for_completion_io+0x10/0x10 [ 217.933843] ? vfs_write+0x319/0x4d0 [ 217.937839] ? fput+0xb/0x140 [ 217.941116] ? SyS_write+0x14d/0x210 [ 217.944914] ? SyS_read+0x210/0x210 [ 217.948544] SyS_sendmmsg+0x2f/0x50 [ 217.952170] ? __sys_sendmmsg+0x330/0x330 [ 217.956317] do_syscall_64+0x1d5/0x640 [ 217.960210] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 217.965387] RIP: 0033:0x45cb29 [ 217.968555] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 217.976241] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 217.983493] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 217.990749] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 217.997998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 218.005336] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 15:12:38 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) tkill(r0, 0x14) 15:12:38 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:38 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, 0x0) 15:12:38 executing program 3: r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:38 executing program 5: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:38 executing program 1 (fault-call:4 fault-nth:7): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:38 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:38 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, 0x0) 15:12:38 executing program 3 (fault-call:1 fault-nth:0): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:39 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 220.003381] FAULT_INJECTION: forcing a failure. [ 220.003381] name failslab, interval 1, probability 0, space 0, times 0 [ 220.005077] FAULT_INJECTION: forcing a failure. [ 220.005077] name failslab, interval 1, probability 0, space 0, times 0 [ 220.045252] CPU: 1 PID: 11251 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 220.053161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.062510] Call Trace: [ 220.065101] dump_stack+0x1b2/0x283 [ 220.068738] should_fail.cold+0x10a/0x154 [ 220.072889] should_failslab+0xd6/0x130 [ 220.076896] kmem_cache_alloc_node+0x25f/0x400 [ 220.081482] __alloc_skb+0x9a/0x4c0 [ 220.085103] ? __kmalloc_reserve.isra.0+0xd0/0xd0 [ 220.089942] ? trace_hardirqs_on+0x10/0x10 [ 220.094176] sock_wmalloc+0xa5/0xf0 [ 220.097794] __ip6_append_data.isra.0+0x21c2/0x28d0 [ 220.102813] ? ip6_sk_dst_lookup_flow+0x7d0/0x7d0 [ 220.107651] ? ip6_mtu+0x13c/0x410 [ 220.111180] ? ip6_setup_cork+0xc9d/0x12a0 [ 220.115399] ip6_append_data+0x1c3/0x300 [ 220.119468] ? rawv6_recvmsg+0xbb0/0xbb0 [ 220.123510] ? rawv6_recvmsg+0xbb0/0xbb0 [ 220.127554] rawv6_sendmsg+0x10b8/0x2d50 [ 220.131600] ? ima_add_template_entry.cold+0x3d/0x3d [ 220.136689] ? rawv6_ioctl+0x190/0x190 [ 220.140558] ? lock_acquire+0x170/0x3f0 [ 220.144514] ? lock_downgrade+0x6e0/0x6e0 [ 220.148652] ? rw_copy_check_uvector+0x1ee/0x290 [ 220.153394] ? sock_has_perm+0x1c0/0x230 [ 220.157436] ? selinux_tun_dev_create+0xc0/0xc0 [ 220.162094] ? inet_sendmsg+0x116/0x4d0 [ 220.166050] inet_sendmsg+0x116/0x4d0 [ 220.169832] ? inet_recvmsg+0x4c0/0x4c0 [ 220.173786] sock_sendmsg+0xb5/0x100 [ 220.177480] ___sys_sendmsg+0x349/0x840 [ 220.181435] ? copy_msghdr_from_user+0x380/0x380 [ 220.186260] ? trace_hardirqs_on+0x10/0x10 [ 220.199157] ? __fget+0x1ff/0x360 [ 220.202591] ? lock_acquire+0x170/0x3f0 [ 220.206548] ? lock_downgrade+0x6e0/0x6e0 [ 220.210681] ? __might_fault+0x104/0x1b0 [ 220.214721] ? lock_acquire+0x170/0x3f0 [ 220.218681] __sys_sendmmsg+0x129/0x330 [ 220.222637] ? SyS_sendmsg+0x40/0x40 [ 220.226334] ? SyS_write+0x1b7/0x210 [ 220.230035] ? __mutex_unlock_slowpath+0x75/0x780 [ 220.234860] ? wait_for_completion_io+0x10/0x10 [ 220.239530] ? vfs_write+0x319/0x4d0 [ 220.243240] ? fput+0xb/0x140 [ 220.246332] ? SyS_write+0x14d/0x210 [ 220.250024] ? SyS_read+0x210/0x210 [ 220.253646] SyS_sendmmsg+0x2f/0x50 [ 220.257251] ? __sys_sendmmsg+0x330/0x330 [ 220.261379] do_syscall_64+0x1d5/0x640 [ 220.265252] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 220.270423] RIP: 0033:0x45cb29 [ 220.273591] RSP: 002b:00007f5dfc99fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 220.281290] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 220.288543] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 15:12:39 executing program 5: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:39 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, 0x0) [ 220.295792] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 220.303046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 220.310301] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9a06d4 [ 220.317564] CPU: 0 PID: 11249 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 220.325450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.334800] Call Trace: [ 220.337389] dump_stack+0x1b2/0x283 [ 220.341020] should_fail.cold+0x10a/0x154 [ 220.345171] should_failslab+0xd6/0x130 [ 220.349144] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 220.353819] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 220.359537] ext4_getfsmap_datadev+0x3e3/0x1150 [ 220.364206] ? static_obj+0x50/0x50 [ 220.367833] ? unwind_get_return_address+0x51/0x90 [ 220.372763] ? __save_stack_trace+0x7b/0xd0 [ 220.377180] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 220.383149] ? sort+0x255/0x2c0 [ 220.386435] ext4_getfsmap+0x651/0x880 [ 220.390325] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 220.396413] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 220.401340] ? trace_hardirqs_on+0x10/0x10 [ 220.405583] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 220.411563] ? swap_inode_data+0x690/0x690 [ 220.415818] ext4_ioc_getfsmap+0x250/0x830 [ 220.420051] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 220.424720] ? trace_hardirqs_on+0x10/0x10 [ 220.428960] ? __lock_acquire+0x655/0x42a0 [ 220.433204] ? avc_has_extended_perms+0x6e2/0xbe0 [ 220.438059] ext4_ioctl+0x24b/0x39f0 [ 220.441944] ? avc_ss_reset+0x100/0x100 [ 220.446006] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 220.451199] ? __lock_acquire+0x655/0x42a0 [ 220.455428] ? lock_downgrade+0x6e0/0x6e0 [ 220.459581] ? trace_hardirqs_on+0x10/0x10 [ 220.463813] ? fsnotify+0x897/0x1110 [ 220.467529] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 220.472716] do_vfs_ioctl+0x75a/0xfe0 [ 220.476527] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 220.483451] ? ioctl_preallocate+0x1a0/0x1a0 [ 220.487867] ? security_file_ioctl+0x76/0xb0 [ 220.492273] ? security_file_ioctl+0x83/0xb0 [ 220.496681] SyS_ioctl+0x7f/0xb0 [ 220.500044] ? do_vfs_ioctl+0xfe0/0xfe0 [ 220.504019] do_syscall_64+0x1d5/0x640 [ 220.507909] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 220.513099] RIP: 0033:0x45cb29 [ 220.516291] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 220.523995] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 220.531259] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 220.538641] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 220.545906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 220.553172] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:12:41 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) tkill(r0, 0x14) 15:12:41 executing program 1 (fault-call:4 fault-nth:8): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:41 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:41 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x0, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:41 executing program 3 (fault-call:1 fault-nth:1): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:41 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:41 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:41 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x0, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 222.949178] FAULT_INJECTION: forcing a failure. [ 222.949178] name failslab, interval 1, probability 0, space 0, times 0 [ 222.984035] CPU: 1 PID: 11294 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 222.992034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.001388] Call Trace: [ 223.003980] dump_stack+0x1b2/0x283 [ 223.007614] should_fail.cold+0x10a/0x154 [ 223.011769] should_failslab+0xd6/0x130 [ 223.015746] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 223.020418] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 223.026138] ext4_getfsmap_datadev+0x3e3/0x1150 [ 223.030805] ? __lock_acquire+0x655/0x42a0 [ 223.035129] ? unwind_get_return_address+0x51/0x90 [ 223.040057] ? __save_stack_trace+0x7b/0xd0 [ 223.044385] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.050353] ? sort+0x255/0x2c0 [ 223.053632] ext4_getfsmap+0x651/0x880 [ 223.061336] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.067304] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 223.070502] FAULT_INJECTION: forcing a failure. [ 223.070502] name failslab, interval 1, probability 0, space 0, times 0 [ 223.072227] ? trace_hardirqs_on+0x10/0x10 [ 223.072239] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.072258] ? swap_inode_data+0x690/0x690 [ 223.105641] ext4_ioc_getfsmap+0x250/0x830 [ 223.109861] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 223.114512] ? trace_hardirqs_on+0x10/0x10 [ 223.118732] ? __lock_acquire+0x655/0x42a0 [ 223.122956] ? avc_has_extended_perms+0x6e2/0xbe0 [ 223.127780] ext4_ioctl+0x24b/0x39f0 [ 223.131476] ? avc_ss_reset+0x100/0x100 [ 223.135432] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 223.140602] ? __lock_acquire+0x655/0x42a0 [ 223.144819] ? lock_downgrade+0x6e0/0x6e0 [ 223.148953] ? trace_hardirqs_on+0x10/0x10 [ 223.153316] ? fsnotify+0x897/0x1110 [ 223.157040] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 223.162215] do_vfs_ioctl+0x75a/0xfe0 [ 223.165998] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 223.171602] ? ioctl_preallocate+0x1a0/0x1a0 [ 223.176105] ? security_file_ioctl+0x76/0xb0 [ 223.180582] ? security_file_ioctl+0x83/0xb0 [ 223.184982] SyS_ioctl+0x7f/0xb0 [ 223.188336] ? do_vfs_ioctl+0xfe0/0xfe0 [ 223.192396] do_syscall_64+0x1d5/0x640 [ 223.196266] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 223.201435] RIP: 0033:0x45cb29 [ 223.204602] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.212289] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 223.219632] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 223.226973] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 223.234226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 223.241588] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 223.248851] CPU: 0 PID: 11291 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 223.256736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.266086] Call Trace: [ 223.268676] dump_stack+0x1b2/0x283 [ 223.272328] should_fail.cold+0x10a/0x154 [ 223.276570] should_failslab+0xd6/0x130 [ 223.280544] kmem_cache_alloc_node_trace+0x25a/0x400 [ 223.285911] __kmalloc_node_track_caller+0x38/0x70 [ 223.290843] __kmalloc_reserve.isra.0+0x35/0xd0 [ 223.295512] __alloc_skb+0xca/0x4c0 15:12:42 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:42 executing program 3 (fault-call:1 fault-nth:2): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:42 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 223.299143] ? __kmalloc_reserve.isra.0+0xd0/0xd0 [ 223.303982] ? trace_hardirqs_on+0x10/0x10 [ 223.308215] sock_wmalloc+0xa5/0xf0 [ 223.311845] __ip6_append_data.isra.0+0x21c2/0x28d0 [ 223.316877] ? ip6_sk_dst_lookup_flow+0x7d0/0x7d0 [ 223.321719] ? ip6_mtu+0x13c/0x410 [ 223.325382] ? ip6_setup_cork+0xc9d/0x12a0 [ 223.329654] ip6_append_data+0x1c3/0x300 [ 223.333713] ? rawv6_recvmsg+0xbb0/0xbb0 [ 223.337775] ? rawv6_recvmsg+0xbb0/0xbb0 [ 223.341839] rawv6_sendmsg+0x10b8/0x2d50 [ 223.345903] ? ima_add_template_entry.cold+0x3d/0x3d 15:12:42 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 223.351009] ? rawv6_ioctl+0x190/0x190 [ 223.354898] ? lock_acquire+0x170/0x3f0 [ 223.358870] ? lock_downgrade+0x6e0/0x6e0 [ 223.363027] ? rw_copy_check_uvector+0x1ee/0x290 [ 223.367787] ? sock_has_perm+0x1c0/0x230 [ 223.371843] ? selinux_tun_dev_create+0xc0/0xc0 [ 223.376532] ? inet_sendmsg+0x116/0x4d0 [ 223.380503] inet_sendmsg+0x116/0x4d0 [ 223.384304] ? inet_recvmsg+0x4c0/0x4c0 [ 223.388283] sock_sendmsg+0xb5/0x100 [ 223.391997] ___sys_sendmsg+0x349/0x840 [ 223.395975] ? copy_msghdr_from_user+0x380/0x380 [ 223.400735] ? trace_hardirqs_on+0x10/0x10 [ 223.404973] ? __fget+0x1ff/0x360 [ 223.408431] ? lock_acquire+0x170/0x3f0 [ 223.412518] ? lock_downgrade+0x6e0/0x6e0 [ 223.416666] ? __might_fault+0x104/0x1b0 [ 223.420729] ? lock_acquire+0x170/0x3f0 [ 223.424711] __sys_sendmmsg+0x129/0x330 [ 223.427979] FAULT_INJECTION: forcing a failure. [ 223.427979] name failslab, interval 1, probability 0, space 0, times 0 [ 223.428683] ? SyS_sendmsg+0x40/0x40 [ 223.428695] ? SyS_write+0x1b7/0x210 [ 223.428719] ? __mutex_unlock_slowpath+0x75/0x780 [ 223.428729] ? wait_for_completion_io+0x10/0x10 [ 223.428738] ? vfs_write+0x319/0x4d0 [ 223.428747] ? fput+0xb/0x140 [ 223.428756] ? SyS_write+0x14d/0x210 [ 223.428764] ? SyS_read+0x210/0x210 [ 223.428774] SyS_sendmmsg+0x2f/0x50 [ 223.428790] ? __sys_sendmmsg+0x330/0x330 [ 223.480759] do_syscall_64+0x1d5/0x640 [ 223.484731] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 223.489904] RIP: 0033:0x45cb29 [ 223.493074] RSP: 002b:00007f5dfc9c0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 223.500762] RAX: ffffffffffffffda RBX: 00000000004fd900 RCX: 000000000045cb29 [ 223.508013] RDX: 0000000000000146 RSI: 00000000200000c0 RDI: 0000000000000003 [ 223.515272] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 223.522522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 223.529774] R13: 0000000000000907 R14: 00000000004cbe4e R15: 00007f5dfc9c16d4 [ 223.537220] CPU: 1 PID: 11319 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 223.545106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.555070] Call Trace: [ 223.557656] dump_stack+0x1b2/0x283 [ 223.561298] should_fail.cold+0x10a/0x154 [ 223.565451] should_failslab+0xd6/0x130 [ 223.569422] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 223.574093] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 223.579814] ext4_getfsmap_datadev+0x3e3/0x1150 [ 223.584479] ? static_obj+0x50/0x50 [ 223.588145] ? unwind_get_return_address+0x51/0x90 [ 223.593072] ? __save_stack_trace+0x7b/0xd0 [ 223.597396] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.603363] ? sort+0x255/0x2c0 [ 223.606647] ext4_getfsmap+0x651/0x880 [ 223.610534] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.616507] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 223.621426] ? trace_hardirqs_on+0x10/0x10 [ 223.625642] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 223.631619] ? swap_inode_data+0x690/0x690 [ 223.635839] ext4_ioc_getfsmap+0x250/0x830 [ 223.640483] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 223.646284] ? trace_hardirqs_on+0x10/0x10 [ 223.650512] ? __lock_acquire+0x655/0x42a0 [ 223.654743] ? avc_has_extended_perms+0x6e2/0xbe0 [ 223.659572] ext4_ioctl+0x24b/0x39f0 [ 223.663261] ? avc_ss_reset+0x100/0x100 [ 223.667221] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 223.672427] ? __lock_acquire+0x655/0x42a0 [ 223.676762] ? lock_downgrade+0x6e0/0x6e0 [ 223.680890] ? trace_hardirqs_on+0x10/0x10 [ 223.685105] ? fsnotify+0x897/0x1110 [ 223.688828] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 223.694188] do_vfs_ioctl+0x75a/0xfe0 [ 223.698058] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 223.703661] ? ioctl_preallocate+0x1a0/0x1a0 [ 223.708052] ? security_file_ioctl+0x76/0xb0 [ 223.712451] ? security_file_ioctl+0x83/0xb0 [ 223.716857] SyS_ioctl+0x7f/0xb0 [ 223.720217] ? do_vfs_ioctl+0xfe0/0xfe0 [ 223.724180] do_syscall_64+0x1d5/0x640 [ 223.728049] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 223.733213] RIP: 0033:0x45cb29 [ 223.736378] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 223.744062] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 223.751312] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 223.758740] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 223.766222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 223.773852] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:12:44 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x0, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:44 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:44 executing program 1 (fault-call:4 fault-nth:9): r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:44 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) 15:12:44 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:44 executing program 3 (fault-call:1 fault-nth:3): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:45 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:45 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}]}}) [ 226.013198] FAULT_INJECTION: forcing a failure. [ 226.013198] name failslab, interval 1, probability 0, space 0, times 0 [ 226.063537] CPU: 1 PID: 11345 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 226.071454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.080810] Call Trace: [ 226.083400] dump_stack+0x1b2/0x283 [ 226.087035] should_fail.cold+0x10a/0x154 [ 226.091194] should_failslab+0xd6/0x130 [ 226.095172] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 226.099852] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 226.105571] ext4_getfsmap_datadev+0x3e3/0x1150 [ 226.110237] ? static_obj+0x50/0x50 [ 226.113859] ? unwind_get_return_address+0x51/0x90 [ 226.118789] ? __save_stack_trace+0x7b/0xd0 [ 226.123115] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 226.129087] ? sort+0x255/0x2c0 [ 226.132373] ext4_getfsmap+0x651/0x880 [ 226.136257] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 226.142228] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 226.147155] ? trace_hardirqs_on+0x10/0x10 [ 226.151387] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 226.157364] ? swap_inode_data+0x690/0x690 15:12:45 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:45 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:45 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 226.161617] ext4_ioc_getfsmap+0x250/0x830 [ 226.165852] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 226.170518] ? trace_hardirqs_on+0x10/0x10 [ 226.174792] ? __lock_acquire+0x655/0x42a0 [ 226.179041] ? avc_has_extended_perms+0x6e2/0xbe0 [ 226.183898] ext4_ioctl+0x24b/0x39f0 [ 226.187609] ? avc_ss_reset+0x100/0x100 [ 226.191587] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 226.196780] ? __lock_acquire+0x655/0x42a0 [ 226.201050] ? lock_downgrade+0x6e0/0x6e0 [ 226.205206] ? trace_hardirqs_on+0x10/0x10 [ 226.209440] ? fsnotify+0x897/0x1110 15:12:45 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 226.213162] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 226.218350] do_vfs_ioctl+0x75a/0xfe0 [ 226.222150] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 226.227778] ? ioctl_preallocate+0x1a0/0x1a0 [ 226.232197] ? security_file_ioctl+0x76/0xb0 [ 226.236603] ? security_file_ioctl+0x83/0xb0 [ 226.241010] SyS_ioctl+0x7f/0xb0 [ 226.244372] ? do_vfs_ioctl+0xfe0/0xfe0 [ 226.248346] do_syscall_64+0x1d5/0x640 [ 226.252238] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 226.257596] RIP: 0033:0x45cb29 15:12:45 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 226.260781] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 226.268494] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 226.275766] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 226.283032] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 226.290284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 226.297529] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:12:47 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:47 executing program 3 (fault-call:1 fault-nth:4): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:47 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:47 executing program 2 (fault-call:2 fault-nth:0): mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:12:47 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) shmctl$SHM_LOCK(r2, 0xb) shmctl$SHM_STAT_ANY(r2, 0xf, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="00100001048dffffff00"/20, @ANYRES32=r4, @ANYBLOB="010000000000000008000a00", @ANYRES32=r6, @ANYBLOB], 0x28}}, 0x0) sendmsg(r3, &(0x7f0000001ac0)={&(0x7f0000001180)=@nfc_llcp={0x27, 0x0, 0x2, 0x4, 0x5f, 0x19, "f83d5d15d62b81895cf067765a59bbc8fc5079c6d65c4dcd97c4e4b5acd23c686975d8723e338382b813ec45a095eada9a0fe88c918dd02011a7f53238171d", 0xb}, 0x80, &(0x7f0000001600)=[{&(0x7f0000000040)="8923d257918436304403b71593", 0xd}, {&(0x7f0000001200)="77bcd6e1a05cc3d7e9699c31a965446b1071bd1d4fd3ef56cd6a1403b4d83de7b3563095401ce6402b4c3ba2155f4a1e54c69fb5b781ddc7487ee7e9e2c0e7763a5009eac3dc9d30717be56e9a49453a9d3959ca30094c8f28e05c674518bc1383d1fd8a5f0adee47ef7c607ae9f45a4f20c26508c5caeea73245d38c26c992dab9b4a0100af339fe5599a41e6ae212d3c54224895b8ec20e8c556b1b24754a8a08f4852a9d666de2e0d858c1d8f88031e2410c9e5b0f90084ec781bc9210251c3c8c9d704b9115dca7abcb26ab1422d78f95bbcb15ac16174acfda08d818009c648e222bdad", 0xe6}, {&(0x7f0000001300)="1ebd9515918e2ddbfe58afa4e397148cf95574e23d89bca8b905641c0a85c8467339b5156357b35111ab614dff8b69e71a668550ebff12b611e70a37985b5704e3ff0d7e9dfca70cc55a6c952298bb258faeb056e3bcbc33f8cc3a821ac4d341c3f898930d5e79f7d1271f53cb0028284cf7ac309069316384f8f0cedf5a79c2899b5d3f1716501262492d1bd81e936903bd1e9997249aedf1f2b8fda5839de58a56c9f7e1e721af0bf3338c524948d380db3a20d1cff9287581cfab63aa3849e75d7d9898e63651bacf64d918ab275d3ec16cd7dae106e8ba5b9fc68e8dc54596", 0xe1}, {&(0x7f0000001400)="e3c9d30c60058617fe03ff69eddcad3087d8957a69106af0d7a7aeb611fa12f4b4f8c67baabade45784c167dacf9301d0de3f4e462be51ec02f96d400e82b26549b4e416638202b595d15b259341d07af91904858d7914d62571c99d6b9d1e993d30a0a8a0eb81192025ede4d50310b474cf34bf29cdf246ecf6e4fc", 0x7c}, {&(0x7f0000001480)="c593f046e0054f5dbfb84b09d6f9d98bcff5f3d536cdb2c77b16a2ea91c57ea11175fb79a220", 0x26}, {&(0x7f00000014c0)="be3527e4d68c4f357dffcaa742f78949021849e0a5a5d27ee3b679608da7aa39da6ccc1bcd73388adf572271b9f5b70f2983bac4b9ef7584650b6d32823fb2d8f7f3d318a64fa39555ab69084f452f6fb8fd291e2446700b1d7ed4130f0ae7fb757900eaa2ce46ae1610756f576105364a9ee959042fc25c51b415ea9cb2a522ddf78f730cc3ac59495c9855c3fc64b4ab577b23033816c0a6100118f42ba302e6037d5ab8294cd3679a77acdf3b87bbc6f39cd6e145ab82bc2792fde04a2b6f9786e6", 0xc3}, {&(0x7f00000015c0)="2aa01a46f6e88ac3a92f34", 0xb}], 0x7, &(0x7f0000001680)=ANY=[@ANYBLOB="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"], 0x408}, 0x4041) shmctl$SHM_STAT(r2, 0xd, &(0x7f0000000000)=""/32) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) write(r1, &(0x7f0000000180)="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", 0x1000) r7 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r7, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:47 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 229.038357] FAULT_INJECTION: forcing a failure. [ 229.038357] name failslab, interval 1, probability 0, space 0, times 0 [ 229.043828] FAULT_INJECTION: forcing a failure. [ 229.043828] name failslab, interval 1, probability 0, space 0, times 0 [ 229.074690] CPU: 1 PID: 11400 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 229.082604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.091953] Call Trace: [ 229.094533] dump_stack+0x1b2/0x283 [ 229.098156] should_fail.cold+0x10a/0x154 [ 229.102306] should_failslab+0xd6/0x130 [ 229.106278] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 229.110950] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 229.116660] ext4_getfsmap_datadev+0x3e3/0x1150 [ 229.121311] ? static_obj+0x50/0x50 [ 229.124918] ? unwind_get_return_address+0x51/0x90 [ 229.129827] ? __save_stack_trace+0x7b/0xd0 [ 229.134132] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.140083] ? sort+0x255/0x2c0 [ 229.143344] ext4_getfsmap+0x651/0x880 [ 229.147212] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.153167] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 229.158081] ? trace_hardirqs_on+0x10/0x10 [ 229.162294] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.168255] ? swap_inode_data+0x690/0x690 [ 229.172504] ext4_ioc_getfsmap+0x250/0x830 [ 229.176740] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 229.181403] ? trace_hardirqs_on+0x10/0x10 [ 229.185639] ? __lock_acquire+0x655/0x42a0 [ 229.189881] ? avc_has_extended_perms+0x6e2/0xbe0 [ 229.194712] ext4_ioctl+0x24b/0x39f0 [ 229.198407] ? avc_ss_reset+0x100/0x100 [ 229.202363] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 229.207532] ? __lock_acquire+0x655/0x42a0 [ 229.211745] ? lock_downgrade+0x6e0/0x6e0 [ 229.215880] ? trace_hardirqs_on+0x10/0x10 [ 229.220095] ? fsnotify+0x897/0x1110 [ 229.223805] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 229.228976] do_vfs_ioctl+0x75a/0xfe0 [ 229.232762] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 229.238362] ? ioctl_preallocate+0x1a0/0x1a0 [ 229.242752] ? security_file_ioctl+0x76/0xb0 [ 229.247158] ? security_file_ioctl+0x83/0xb0 [ 229.251543] SyS_ioctl+0x7f/0xb0 [ 229.254888] ? do_vfs_ioctl+0xfe0/0xfe0 [ 229.258845] do_syscall_64+0x1d5/0x640 [ 229.262717] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 229.267886] RIP: 0033:0x45cb29 [ 229.271055] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.278742] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 229.285989] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 229.293239] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 229.300484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 229.307730] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 229.314995] CPU: 0 PID: 11398 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 229.322878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.332235] Call Trace: [ 229.334829] dump_stack+0x1b2/0x283 [ 229.338462] should_fail.cold+0x10a/0x154 [ 229.342619] should_failslab+0xd6/0x130 [ 229.346595] __kmalloc_track_caller+0x2bc/0x400 [ 229.351348] ? strndup_user+0x5b/0xf0 [ 229.355150] memdup_user+0x22/0xa0 [ 229.358691] strndup_user+0x5b/0xf0 [ 229.362314] ? copy_mnt_ns+0x8a0/0x8a0 [ 229.366200] SyS_mount+0x39/0x120 [ 229.369647] ? copy_mnt_ns+0x8a0/0x8a0 [ 229.373537] do_syscall_64+0x1d5/0x640 [ 229.377427] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 229.382614] RIP: 0033:0x45cb29 [ 229.385797] RSP: 002b:00007f618a473c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 229.393501] RAX: ffffffffffffffda RBX: 00000000004f7640 RCX: 000000000045cb29 [ 229.400765] RDX: 0000000020000100 RSI: 0000000020000200 RDI: 0000000020000180 [ 229.408030] RBP: 000000000078bf00 R08: 00000000200004c0 R09: 0000000000000000 [ 229.415292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 229.422555] R13: 000000000000077c R14: 00000000004ca740 R15: 00007f618a4746d4 15:12:48 executing program 3 (fault-call:1 fault-nth:5): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:48 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 229.518469] FAULT_INJECTION: forcing a failure. [ 229.518469] name failslab, interval 1, probability 0, space 0, times 0 [ 229.543190] CPU: 0 PID: 11421 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 229.551101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.560455] Call Trace: [ 229.563047] dump_stack+0x1b2/0x283 [ 229.566678] should_fail.cold+0x10a/0x154 [ 229.570831] should_failslab+0xd6/0x130 [ 229.574802] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 229.579478] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 229.585194] ext4_getfsmap_datadev+0x3e3/0x1150 [ 229.589858] ? static_obj+0x50/0x50 [ 229.593483] ? unwind_get_return_address+0x51/0x90 [ 229.598410] ? __save_stack_trace+0x7b/0xd0 [ 229.602740] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.608713] ? sort+0x255/0x2c0 [ 229.612001] ext4_getfsmap+0x651/0x880 [ 229.615891] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.621861] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 229.626787] ? trace_hardirqs_on+0x10/0x10 [ 229.631020] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 229.636994] ? swap_inode_data+0x690/0x690 [ 229.641247] ext4_ioc_getfsmap+0x250/0x830 [ 229.645492] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 229.650164] ? trace_hardirqs_on+0x10/0x10 [ 229.654405] ? __lock_acquire+0x655/0x42a0 [ 229.658649] ? avc_has_extended_perms+0x6e2/0xbe0 [ 229.663491] ext4_ioctl+0x24b/0x39f0 [ 229.667201] ? avc_ss_reset+0x100/0x100 [ 229.671183] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 229.676367] ? __lock_acquire+0x655/0x42a0 [ 229.680595] ? lock_downgrade+0x6e0/0x6e0 [ 229.684746] ? trace_hardirqs_on+0x10/0x10 [ 229.688979] ? fsnotify+0x897/0x1110 [ 229.692694] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 229.697880] do_vfs_ioctl+0x75a/0xfe0 [ 229.701680] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 229.707301] ? ioctl_preallocate+0x1a0/0x1a0 [ 229.711716] ? security_file_ioctl+0x76/0xb0 [ 229.716120] ? security_file_ioctl+0x83/0xb0 [ 229.720521] SyS_ioctl+0x7f/0xb0 [ 229.723885] ? do_vfs_ioctl+0xfe0/0xfe0 [ 229.727867] do_syscall_64+0x1d5/0x640 [ 229.731759] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 229.736942] RIP: 0033:0x45cb29 [ 229.740124] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 229.747824] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 229.755084] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 229.762348] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 15:12:48 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 229.769610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 229.776871] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:12:48 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:48 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 231.458537] NOHZ: local_softirq_pending 08 15:12:51 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:51 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:51 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:12:51 executing program 3 (fault-call:1 fault-nth:6): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:51 executing program 1: r0 = socket$inet6(0xa, 0x80000, 0x8) restart_syscall() socket(0x10, 0x800000000080003, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmmsg$alg(r1, &(0x7f0000002540)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000040), 0x0, &(0x7f0000000040)=[@assoc={0x18, 0x117, 0x4, 0x6}], 0x6a}, {0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000240)="4bd833291fc3f27c4133e1d27fe23968dabe94ae14d160c7c5900852e5b42a7a3b7723c2302f0f40118fb44397379a0c39461c67fb8dfd1ef15bbd7fd9552724f074820255ef0a5975b1d24fbd34e7ada35015256dc44e01db4ed5e985caaff71d1c4009db18584ca79b6207a6d3e13aa03ac70d124c52806dab2a935d481038986378c7207ce5", 0x87}, {&(0x7f0000000400)="d5a094fb85e5110a576d1eba38a9f56229efa23db7e9c54d4fffa0d347", 0x1d}, {&(0x7f0000000440)="17cf79cf48747f1e5d0c774d3675c2a975223d467f4797382c48b062afeb3c70300d9e034404d613e814942fc7b1dd5f6955d2898d71d8be38c0b787e5470c1ea7f9a4ce4682ac9197658fb9c7be353505c7e44799b90525bbb9315ae4b04fd7d60645998420ab7b1bb63c8ccce3edb12a2d565bed2995e5014fa6ee3fd8437a452fd89abaa9c7b53b12478f70ed4d971aba64197d", 0x95}, {&(0x7f0000000500)="35b56ec2f5ccd217ffd5e19407dc4e8554409ce0248743eca651fee59ff78e59474d4b08bb6c4cfa07df40ab7f0aa6f5d8", 0x31}, {&(0x7f0000000cc0)="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", 0x1000}, {&(0x7f0000001cc0)="fa584540023247c6336a72e1b503af97189ebb2996825a4fb2dab2d3297ca4c8caacd84dc22f52b50d5eed8504368384e0fbb6341b7f0bef08c54d01ff024b8d14daf28c4e7ce378427a86bb0ae6215dba616445ead69636adba72b0222144fb397224fbefd91e74f258662d39ed2a2d9313be8393036598cec3b37b6a2f1b943820", 0x82}, {&(0x7f0000001d80)="845748e5d37ebb69aea2ccd5ed967875280a49b13a783cb26127bd2b12d5f82baf334fa1a9b6246cd770c208d80e6d5478d57a1546", 0x35}], 0x7, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], 0x1b8, 0x20000000}, {0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000002000)="aca8f782620aee388375e21d9616d64ac13f63b82a41d128f646aca509b516db428fbf58bbc369ed896f3b3c93dc0a60d0350fd2353d7c757af873596e8149d717a0c83345275904d02885746163600d7d6c276a1a1d4b7034aec3c6dea76d4163c2ee1746ca2bfd60497b5f63b3786936ffa8a56841408e232748022761aa3617d8ac80518888ca766db89b399294e587cd51c374f5e83e3ad3eafa34b40d1077fd284feab6e43b7a8f36f8a656cf5fcecc41cc8c56ad26e47ee7441af9156a64a426c0ffe7b6a7fcf09a369ae3ffc5d56af46490188c83288c76eb5caa96982bcc763f81a02f752fc6516ff25e4f8bd99f2c", 0xf3}, {&(0x7f0000002100)="8a4cfa22646b3cd3014496873134f57de21493edba7c3b12be7b7640ac5c1a30cea2b4eda5feb2cf375dd5f7c3ba010f1550e45ff54f72dea3ac53b7b7caa26cfde1293bd162f9bfeee058fbe44221d6e63299e7d0e41c775958456c199eae5b6e2fe659a24d10824fd5c2d6aecffb2f4d09b157f5ddd3e012a259a5f2122d72e9a45477e193d9ed75550a845e7170fe04e325eb55b16876", 0x98}, {&(0x7f00000021c0)="375bec7fb6d60b1c7c138d605feef6dc45a35464e3a1e61c5b1d1b0a3d13235e408c796ae9ac7f354e670f62b3a98a2bf2cf71", 0x33}, {&(0x7f0000002200)="a23403bef7ef057e34acd82eb793782a", 0x10}, {&(0x7f0000002240)="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", 0xfa}, {&(0x7f0000002340)="33ca7c06e6589a3b960d58597f401c42a122f295e4f744f4afe28a18", 0x1c}], 0x6, &(0x7f0000002400)=[@op={0x18}, @iv={0xc8, 0x117, 0x2, 0xae, "37588fb681dbaf9d86b298df707ce56ef6d2518b176925e7328c5e9ee08e8cea384e8762c5d1f24157f2c0127c9ea1800f8877e53371d4afd381e78d4018e550f19982cd7282c19e66b3970ea0e7f78d244bf72e89b23a24c8b22088bab83ef35df00d69a272edb0e3cf87bb6830604d56e046ac9908ab773e48df4ac729089c43a207d8e191e8261d3ca344ad70dc3695100ce9e3a01ad37889aee5f3ae345ec4a6426f5d786b941f0e66ab7c61"}, @iv={0x20, 0x117, 0x2, 0xa, "93e2b59a19fd8208a200"}, @iv={0x18}, @op={0x18}], 0x130, 0x4000000}], 0x3, 0x40001) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0xffffffffffffff82}}, 0xd0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x2, 0x0, @remote, 0xe865}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x8000}], 0x1, 0x20000000) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = inotify_init() r5 = inotify_add_watch(r4, &(0x7f0000000000)='.\x00', 0x21d) inotify_rm_watch(0xffffffffffffffff, r5) inotify_rm_watch(0xffffffffffffffff, r5) r6 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x710, 0x640, 0x408, 0x408, 0x310, 0x408, 0x640, 0x640, 0x640, 0x640, 0x640, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'ip6_vti0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x15}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x770) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000340)={0x0, 0x8, 0xa, &(0x7f0000000300)=0xfff}) [ 232.066684] FAULT_INJECTION: forcing a failure. [ 232.066684] name failslab, interval 1, probability 0, space 0, times 0 [ 232.082913] CPU: 1 PID: 11453 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 232.090818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.100165] Call Trace: [ 232.102756] dump_stack+0x1b2/0x283 [ 232.106390] should_fail.cold+0x10a/0x154 [ 232.110547] should_failslab+0xd6/0x130 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 232.114537] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 232.119212] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 232.124928] ext4_getfsmap_datadev+0x3e3/0x1150 [ 232.129591] ? static_obj+0x50/0x50 [ 232.133221] ? unwind_get_return_address+0x51/0x90 [ 232.138148] ? __save_stack_trace+0x7b/0xd0 [ 232.142475] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 232.148454] ? sort+0x255/0x2c0 [ 232.151736] ext4_getfsmap+0x651/0x880 [ 232.155625] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 232.161598] ? ext4_getfsmap_datadev+0x1150/0x1150 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, 0x0, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 232.166531] ? trace_hardirqs_on+0x10/0x10 [ 232.170769] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 232.176746] ? swap_inode_data+0x690/0x690 [ 232.180996] ext4_ioc_getfsmap+0x250/0x830 [ 232.185246] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 232.189918] ? trace_hardirqs_on+0x10/0x10 [ 232.194157] ? __lock_acquire+0x655/0x42a0 [ 232.198407] ? avc_has_extended_perms+0x6e2/0xbe0 [ 232.203250] ext4_ioctl+0x24b/0x39f0 [ 232.206953] ? avc_ss_reset+0x100/0x100 [ 232.210929] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, 0x0, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, 0x0, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 232.216117] ? __lock_acquire+0x655/0x42a0 [ 232.220359] ? lock_downgrade+0x6e0/0x6e0 [ 232.224512] ? trace_hardirqs_on+0x10/0x10 [ 232.228750] ? fsnotify+0x897/0x1110 [ 232.232463] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 232.237650] do_vfs_ioctl+0x75a/0xfe0 [ 232.241454] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 232.247077] ? ioctl_preallocate+0x1a0/0x1a0 [ 232.251495] ? security_file_ioctl+0x76/0xb0 [ 232.255903] ? security_file_ioctl+0x83/0xb0 [ 232.260307] SyS_ioctl+0x7f/0xb0 [ 232.263671] ? do_vfs_ioctl+0xfe0/0xfe0 [ 232.267645] do_syscall_64+0x1d5/0x640 [ 232.271543] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 232.276725] RIP: 0033:0x45cb29 [ 232.279905] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 232.287607] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 232.294870] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 232.302133] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 232.309398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 15:12:51 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x0, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:51 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@deltaction={0x40, 0x31, 0x20, 0x70bd25, 0x25dfdbfd, {}, [@TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x800}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x5, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfff}}]}]}, 0x40}}, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0xb8482, 0x0) ioctl$vim2m_VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000, r4}) [ 232.316659] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:12:54 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket$inet_smc(0x2b, 0x1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'geneve1\x00', r7}) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x0, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:54 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:54 executing program 3 (fault-call:1 fault-nth:7): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:54 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$PNPIPE_INITSTATE(r1, 0x113, 0x4, &(0x7f0000000000), 0x4) execveat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0)=[&(0x7f0000000140)='/dev/fuse\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)='#\'F*\x00'], &(0x7f00000003c0)=[&(0x7f0000000300)='$\x00', &(0x7f0000000340)='group_id', &(0x7f0000000380)='}@\x00'], 0x1000) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r3, r4) setfsgid(r4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r7}, [@IFLA_MASTER={0x8, 0xa, r9}]}, 0x28}}, 0x0) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0x378, 0x13, 0x300, 0x70bd27, 0x25dfdbff, {0x21, 0x40, 0x3, 0x6, {0x4e22, 0x4e21, [0x2, 0x4, 0x20, 0x200], [0x2, 0x101, 0x20, 0x4], r9, [0x9, 0x401]}, 0x998, 0x2}, [@INET_DIAG_REQ_BYTECODE={0xfc, 0x1, "c466421ed131d21a6df1ce305e29157a3254f7e8724a953482951fa166198bdffb7f87589de3d731ce9568d2d006c74ca02f7b6d691d5b90f5a0a42b4d4ea5a6dee4a2c96bc72204da1baa5eb5349829e7f76869cfd316ea4a649511ff13fb4421a788cb1ba5926b0ec635045f20a7415fba072dd69d23bf6d82b7d3d79b638b6642ac29035e3638c354eed9d7a8d48f139155003c78d84f8393bdd884b51d613e5755959a80966a01b6e4e6457c50771dee2530e82b4a0d2a1cdbbd3297ff9c022f3a4aba64f37a4254ba9ea40b40a1504e56a32d83c92bfcd6f6e3e170ea87bd31dad17130ffd80a3cc9dcf48010cdc4c73a142ed2135a"}, @INET_DIAG_REQ_BYTECODE={0xcb, 0x1, "cdbc29bfee7db3a54d4fa1e491baf3e76dc01ad860a19b1767f4dfb5aa8caf42a74e125021bd294e10b516144c4812c7327594ebe6fda9709d2ccbe114f15b62746c5e7a65be8302659396f218c634a7911f3bce308f8b9331538b424e5eecd99ad461c5df9e51fc16a8f49b2f18ba24069bec451b47ce03f49df5bbf72368797906a3adf7441df3938bb2806b1f210fa73988a2a46d9a8b21babf29e9912afb5df2e5dde05f1f403fbd3445484f6affcb8888704ec2aa47913c4bb91d7d2896476cbdfb273385"}, @INET_DIAG_REQ_BYTECODE={0xf, 0x1, "bcceee423b478392132ef4"}, @INET_DIAG_REQ_BYTECODE={0x4}, @INET_DIAG_REQ_BYTECODE={0xf4, 0x1, "c0e9c07f87606b670940ab68ca5475d54addc388704a1d34254f8c8ea1e6d277787f8b116109638c00f6797f718fff030d6de8392d4f884ef4307795c0c861cf81c1a179cf28ba9854a4475b77d557bba41cf1a969f6310bb4004813a2e8f308310f5c514c43cc15e90aa3dbe8fc3101f386b53f6aa3a0b11e1e49899f55857eed01c05dad9f455a73ac880253cd2859ad52e8e730993d133d95324604011a739eb82ba534c3325d8dc8292fc519361f1b61617983892b56acb96dc7b6851e2a6b0f35bc8ffbd669889ec6c32444e94e46af32352a8921ca5747636643ed2f103b69683db29f0280bd7c9dd0d7a627c5"}, @INET_DIAG_REQ_BYTECODE={0x5a, 0x1, "1ba3c0e358317aa97ef3ad9571642c3bfb12a7e33c8925f34e00f1fc6198ce0bf328408ef5c8c909accb6ae55d5af37100011a6bcbdc06bed5f8a760aad61f8c263f4a328e781b74bf3a4dc8d2dbb370a443ec993cb8"}]}, 0x378}}, 0x840) 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x0, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 235.091229] device bridge_slave_0 left promiscuous mode [ 235.099747] bridge0: port 1(bridge_slave_0) entered disabled state [ 235.143398] FAULT_INJECTION: forcing a failure. [ 235.143398] name failslab, interval 1, probability 0, space 0, times 0 [ 235.173265] CPU: 1 PID: 11523 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 235.181181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.190529] Call Trace: 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 235.193128] dump_stack+0x1b2/0x283 [ 235.196761] should_fail.cold+0x10a/0x154 [ 235.200911] should_failslab+0xd6/0x130 [ 235.204885] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 235.209558] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 235.215277] ext4_getfsmap_datadev+0x3e3/0x1150 [ 235.219943] ? static_obj+0x50/0x50 [ 235.223566] ? unwind_get_return_address+0x51/0x90 [ 235.228502] ? __save_stack_trace+0x7b/0xd0 [ 235.232832] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 235.238799] ? sort+0x255/0x2c0 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:12:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x1e, 0x6, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ocfs2_control\x00', 0x20000, 0x0) ioctl$ASHMEM_SET_NAME(r3, 0x41007701, &(0x7f0000000280)='\\{@[\x00') sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) ioctl$SIOCRSSCAUSE(r3, 0x89e1, &(0x7f00000002c0)=0x20) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x0) getsockname$packet(r6, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000002, 0x4000010, r6, 0xd9467000) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000040)={r7}, 0x10) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={r7, 0x6}, 0x8) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 235.242081] ext4_getfsmap+0x651/0x880 [ 235.245965] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 235.251938] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 235.256864] ? trace_hardirqs_on+0x10/0x10 [ 235.261104] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 235.267082] ? swap_inode_data+0x690/0x690 [ 235.271333] ext4_ioc_getfsmap+0x250/0x830 [ 235.275575] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 235.280246] ? trace_hardirqs_on+0x10/0x10 [ 235.284483] ? __lock_acquire+0x655/0x42a0 [ 235.288728] ? avc_has_extended_perms+0x6e2/0xbe0 15:12:54 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, 0x0, 0x0) [ 235.293571] ext4_ioctl+0x24b/0x39f0 [ 235.297281] ? avc_ss_reset+0x100/0x100 [ 235.301256] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 235.306445] ? __lock_acquire+0x655/0x42a0 [ 235.310676] ? lock_downgrade+0x6e0/0x6e0 [ 235.314830] ? trace_hardirqs_on+0x10/0x10 [ 235.319074] ? fsnotify+0x897/0x1110 [ 235.322794] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 235.327982] do_vfs_ioctl+0x75a/0xfe0 [ 235.331782] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 235.337400] ? ioctl_preallocate+0x1a0/0x1a0 [ 235.341813] ? security_file_ioctl+0x76/0xb0 [ 235.346215] ? security_file_ioctl+0x83/0xb0 [ 235.350620] SyS_ioctl+0x7f/0xb0 [ 235.353978] ? do_vfs_ioctl+0xfe0/0xfe0 [ 235.357949] do_syscall_64+0x1d5/0x640 [ 235.361839] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 235.367021] RIP: 0033:0x45cb29 [ 235.370205] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 235.377915] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 235.385178] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 235.392443] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 235.399706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 235.406970] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 235.434436] device bridge_slave_0 left promiscuous mode [ 235.463945] bridge0: port 1(bridge_slave_0) entered disabled state 15:12:57 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:57 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, 0x0, 0x0) 15:12:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r7 = accept4$inet(r5, 0x0, &(0x7f0000000240), 0x80000) ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r7, 0x8982, &(0x7f0000000280)={0x7, 'team_slave_1\x00', {0x3}, 0x1ee}) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MASTER={0x8, 0xa, r6}]}, 0x28}}, 0x0) getsockopt$IP_SET_OP_GET_BYNAME(r3, 0x1, 0x53, &(0x7f0000000000)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000040)=0x28) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r8 = syz_open_dev$mouse(&(0x7f00000002c0)='/dev/input/mouse#\x00', 0x3f, 0x290400) ioctl$EVIOCSMASK(r8, 0x40104593, &(0x7f0000000400)={0x5, 0x85, &(0x7f0000000340)="23863a4ff8a83bca9c89a35fabdc0c2cb9eb6726f9948e9cd53a51edeb1e0387cc5fb29800477c4082e5612a3ee86e9893ca629719d94245111fc0d9520b8bc95a6c6a79b6b9fd63f0d16062b0daa9f3956d0749a253a337d8a0c4ad6253ddbf4400e821b172e5ae4236a5cf4c127ea641bb9109bfe84a5250e0a2a2b3c1ec5cd04a89ea32"}) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:57 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:12:57 executing program 3 (fault-call:1 fault-nth:8): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:12:57 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:12:57 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, 0x0, 0x0) 15:12:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback, 0x10000}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 238.166419] FAULT_INJECTION: forcing a failure. [ 238.166419] name failslab, interval 1, probability 0, space 0, times 0 [ 238.204985] CPU: 1 PID: 11566 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 15:12:57 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x121) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 238.212894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.222246] Call Trace: [ 238.224836] dump_stack+0x1b2/0x283 [ 238.228464] should_fail.cold+0x10a/0x154 [ 238.232613] should_failslab+0xd6/0x130 [ 238.236585] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 238.241258] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 238.246978] ext4_getfsmap_datadev+0x3e3/0x1150 [ 238.251639] ? static_obj+0x50/0x50 [ 238.255260] ? unwind_get_return_address+0x51/0x90 [ 238.260294] ? __save_stack_trace+0x7b/0xd0 [ 238.264621] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 238.270587] ? sort+0x255/0x2c0 [ 238.273878] ext4_getfsmap+0x651/0x880 [ 238.277766] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 238.283735] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 238.288664] ? trace_hardirqs_on+0x10/0x10 [ 238.292897] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 238.298875] ? swap_inode_data+0x690/0x690 [ 238.303128] ext4_ioc_getfsmap+0x250/0x830 [ 238.307357] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 238.312024] ? trace_hardirqs_on+0x10/0x10 [ 238.316435] ? __lock_acquire+0x655/0x42a0 [ 238.320678] ? avc_has_extended_perms+0x6e2/0xbe0 [ 238.325518] ext4_ioctl+0x24b/0x39f0 [ 238.329222] ? avc_ss_reset+0x100/0x100 [ 238.333195] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 238.338378] ? __lock_acquire+0x655/0x42a0 [ 238.342607] ? lock_downgrade+0x6e0/0x6e0 [ 238.346762] ? trace_hardirqs_on+0x10/0x10 [ 238.350994] ? fsnotify+0x897/0x1110 [ 238.354707] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 238.359894] do_vfs_ioctl+0x75a/0xfe0 15:12:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x3, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) ioctl$VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, &(0x7f0000000240)={0x1, 0x0, 0x3, {0x5, @sliced={0xabfc, [0x2, 0x6, 0x3, 0x3, 0x80, 0x6, 0x1, 0x7f, 0x800, 0x1e, 0x5, 0xa48b, 0x21, 0x1, 0x71, 0x1f, 0xf5, 0x100, 0x400, 0x0, 0x1f, 0x800, 0x8, 0x401, 0x0, 0x14, 0x101, 0x5, 0x4, 0x81, 0x3ff, 0x3, 0x7, 0x0, 0x0, 0x18, 0xbb0, 0x2, 0x4, 0x0, 0x4, 0x400, 0x4, 0x6, 0x2, 0x4, 0x80, 0x8], 0x1}}, 0x9}) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$inet6(r2, &(0x7f0000000100)={&(0x7f0000000000)={0xa, 0x4e24, 0x5, @remote}, 0x1c, &(0x7f0000000040)}, 0x4008014) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:12:57 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180), 0x10) [ 238.363694] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 238.369319] ? ioctl_preallocate+0x1a0/0x1a0 [ 238.373738] ? security_file_ioctl+0x76/0xb0 [ 238.378143] ? security_file_ioctl+0x83/0xb0 [ 238.382551] SyS_ioctl+0x7f/0xb0 [ 238.385911] ? do_vfs_ioctl+0xfe0/0xfe0 [ 238.389886] do_syscall_64+0x1d5/0x640 [ 238.393774] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 238.398961] RIP: 0033:0x45cb29 [ 238.402141] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 238.409842] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:12:57 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 238.417108] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 238.424372] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 238.431647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 238.438910] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:00 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:00 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180), 0x10) 15:13:00 executing program 3 (fault-call:1 fault-nth:9): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:00 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$kcm(0x10, 0x2, 0x10) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000009000000280003800800010002000000140002007663616e300000000000000000000002"], 0x3c}}, 0x0) sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0xdc931d24982ca14e}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0xc4, r4, 0x300, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x5}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0xc, 0x1d}}]}, @IPVS_CMD_ATTR_DAEMON={0x2c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x2000}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x200}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@remote}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x16}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x10}, 0x4000) 15:13:00 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:00 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmmsg$alg(r1, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@assoc={0x0, 0x117, 0x4, 0x9}], 0x4, 0x80}], 0x1, 0x488d5) r3 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$VT_GETSTATE(r3, 0x5603, &(0x7f0000000000)={0x2, 0x8}) 15:13:00 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180), 0x10) [ 241.192199] FAULT_INJECTION: forcing a failure. [ 241.192199] name failslab, interval 1, probability 0, space 0, times 0 [ 241.233099] CPU: 0 PID: 11625 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 241.241007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.250360] Call Trace: [ 241.252950] dump_stack+0x1b2/0x283 [ 241.256582] should_fail.cold+0x10a/0x154 [ 241.260728] should_failslab+0xd6/0x130 [ 241.264696] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 241.269361] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 241.275074] ext4_getfsmap_datadev+0x3e3/0x1150 [ 241.279734] ? static_obj+0x50/0x50 15:13:00 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) fcntl$setown(r0, 0x8, r1) [ 241.283356] ? unwind_get_return_address+0x51/0x90 [ 241.288277] ? __save_stack_trace+0x7b/0xd0 [ 241.292601] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 241.298569] ? sort+0x255/0x2c0 [ 241.301853] ext4_getfsmap+0x651/0x880 [ 241.305748] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 241.311723] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 241.316657] ? trace_hardirqs_on+0x10/0x10 [ 241.320888] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 241.326862] ? swap_inode_data+0x690/0x690 15:13:00 executing program 0 (fault-call:19 fault-nth:0): socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:00 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 241.331108] ext4_ioc_getfsmap+0x250/0x830 [ 241.335339] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 241.340012] ? trace_hardirqs_on+0x10/0x10 [ 241.344254] ? __lock_acquire+0x655/0x42a0 [ 241.348502] ? avc_has_extended_perms+0x6e2/0xbe0 [ 241.353348] ext4_ioctl+0x24b/0x39f0 [ 241.357072] ? avc_ss_reset+0x100/0x100 [ 241.361224] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 241.366416] ? __lock_acquire+0x655/0x42a0 [ 241.370737] ? lock_downgrade+0x6e0/0x6e0 [ 241.374892] ? trace_hardirqs_on+0x10/0x10 [ 241.379126] ? fsnotify+0x897/0x1110 [ 241.382845] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 241.388039] do_vfs_ioctl+0x75a/0xfe0 [ 241.392013] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 241.397637] ? ioctl_preallocate+0x1a0/0x1a0 [ 241.402148] ? security_file_ioctl+0x76/0xb0 [ 241.406554] ? security_file_ioctl+0x83/0xb0 [ 241.410972] SyS_ioctl+0x7f/0xb0 [ 241.414345] ? do_vfs_ioctl+0xfe0/0xfe0 [ 241.418321] do_syscall_64+0x1d5/0x640 [ 241.422206] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 241.427377] RIP: 0033:0x45cb29 [ 241.430544] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 241.438231] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 241.445486] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 241.452739] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 241.459989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 241.467239] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:00 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x24000001) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r5 = creat(&(0x7f0000000240)='./file0\x00', 0x8) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f0000000280)="0000000000000000228cb41e8279e3e3", 0x10) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 241.483840] FAULT_INJECTION: forcing a failure. [ 241.483840] name failslab, interval 1, probability 0, space 0, times 0 [ 241.495520] CPU: 0 PID: 11649 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 241.503416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.512761] Call Trace: [ 241.515350] dump_stack+0x1b2/0x283 [ 241.518983] should_fail.cold+0x10a/0x154 [ 241.523141] should_failslab+0xd6/0x130 [ 241.527115] kmem_cache_alloc+0x40/0x3c0 [ 241.531177] dst_alloc+0xe4/0x170 [ 241.534633] rt_dst_alloc+0x6b/0x430 [ 241.538350] ip_route_output_key_hash_rcu+0xab7/0x27e0 [ 241.543626] ip_route_output_key_hash+0x18c/0x290 [ 241.548463] ? ip_route_output_key_hash_rcu+0x27e0/0x27e0 [ 241.554000] tcp_v4_connect+0x73c/0x1a70 [ 241.558070] ? tcp_v4_init_ts_off+0x110/0x110 [ 241.562563] ? selinux_socket_connect+0x125/0x3f0 [ 241.567405] __inet_stream_connect+0x6ad/0xb90 [ 241.571989] ? inet_bind+0x950/0x950 [ 241.575698] ? mark_held_locks+0xa6/0xf0 [ 241.579755] ? __local_bh_enable_ip+0xc1/0x160 [ 241.584333] ? __inet_stream_connect+0xb90/0xb90 [ 241.589091] ? __inet_stream_connect+0xb90/0xb90 [ 241.593847] inet_stream_connect+0x53/0xa0 [ 241.598081] SyS_connect+0x186/0x260 [ 241.601798] ? SyS_accept+0x30/0x30 [ 241.605423] ? vfs_write+0x319/0x4d0 [ 241.609142] ? fput+0xb/0x140 [ 241.612246] ? SyS_write+0x14d/0x210 [ 241.615956] ? SyS_read+0x210/0x210 [ 241.619575] ? SyS_clock_settime+0x1a0/0x1a0 [ 241.623975] ? do_syscall_64+0x4c/0x640 [ 241.627944] ? SyS_accept+0x30/0x30 15:13:00 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) rt_sigreturn() r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000000)}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) [ 241.631569] do_syscall_64+0x1d5/0x640 [ 241.635459] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 241.640647] RIP: 0033:0x45cb29 [ 241.643829] RSP: 002b:00007f2f7533ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 241.651534] RAX: ffffffffffffffda RBX: 00000000004db980 RCX: 000000000045cb29 [ 241.658797] RDX: 0000000000000010 RSI: 0000000020000180 RDI: 0000000000000005 [ 241.666064] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 241.673326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 241.680589] R13: 0000000000000089 R14: 00000000004c3551 R15: 00007f2f7533b6d4 15:13:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:03 executing program 1: r0 = socket$inet6(0xa, 0xa, 0xb) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) getsockopt$IP_VS_SO_GET_DAEMON(r1, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r3, 0xc02064b9, &(0x7f00000001c0)={&(0x7f0000000100), &(0x7f0000000200), 0x0, 0x5, 0xc0c0c0c0}) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:03 executing program 3 (fault-call:1 fault-nth:10): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:03 executing program 0 (fault-call:19 fault-nth:1): socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:03 executing program 2: ioctl$SIOCRSSCAUSE(0xffffffffffffffff, 0x89e1, &(0x7f0000000000)) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x700, 0x0, 0x0, 0x510, 0x420, 0x228, 0x630, 0x630, 0x630, 0x630, 0x630, 0x6, 0x0, {[{{@uncond, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote, 0x22}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x2, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev={0xac, 0x14, 0x14, 0x10}, @ipv4=@broadcast, 0x0, 0x40, 0x6}}}, {{@ipv6={@mcast2, @local, [0xff, 0xffffff00, 0xffff00, 0xffffffff], [0xff, 0x0, 0xffffff00, 0xff000000], 'vcan0\x00', 'bond_slave_0\x00', {}, {0xff}, 0x2b, 0x81, 0x4, 0x1}, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00', 0x0, {0x0, 0xe0}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x760) ioctl$TIOCNOTTY(r1, 0x5422) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$TIPC_NL_NODE_GET(r4, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000000d00)=ANY=[@ANYBLOB="d0030000", @ANYRES16=r5, @ANYBLOB="0100a93162d66d7a80ef0d000000c400058014000280080004007f000000080001001900000014000280080001001c000000080002000000000038000280080004000000000008000300fbf20000080001001e000000080004000500000008000400040000000800020083050000080001001f000000540002800800020005000000080002002000000008000400ffff00000800030052000000080004000800000008000400040000000800020005000000080002002000000008000200b85e000008000400ffffffff07000100696200000c00058008000100756470008c00048014000780080065790fa6d5369a1356e08048bc01000100000008000200f58800001300010062726f6164636173742d6c696e6b0000340007800800010013000000080004000000000008000200080000000800030006000000080001000900000008000300020000001300010062726f6164636173742d6c696e6b00000900010073797a30000400000900010073797a31000000003000058008000100756470001c00028008000300f8ffffff080004003365bd19271207000008000200040000000800010065746800140206800800010001000100ce000300b423d319b9abfb9cf6397cff5bdb3c325e8fcbea6b1aed181fac04ba132429cb4def3db549fc3b23a193892ad0d5057b635a8a4bbcccb0168f9d8dd77429ce7acd9e73c31861af328443012c5451e1c9e909b4917b1297eee7ac828e4dd60eb690534c093773186e9030a42bf8552172bded2dda653c2d97b8adfa4217cdaf008b69ab72fed334ca601b97e9416211dd21934a2b358b78e3890c8fb5955a9d2b8e95b2cb7c226bb8a7d0f667327e9f8cfccbb3e627610c190cc5c5ac183a68631c87d087fa4e37f72ac20000041f0000000000000000030005079ff79b9f79f762fbd09f43b386abe395c0e5a1b31f0d391a232e604b7c171bc6e75ba9d79d8378c6c28048d2becf4feaf92f3b67efcbc703bee99c404384807193a8c839f591faa68d0a71fe901888cdaa7a679274a4253c7d3c6c2d815ddcce2679762c7374181e8724eae4facf79de0cf5423936a33f8ff380f3608b64897befa350a53f3ab61fa1a1a409cb08ac2b61bfc935db58d5472913c931fd99015dcc0008000100b18700004000040067636d2861657329000000000000000000000000000000000000000000000000180000006a11f994626a64823bc69c99ac603d00040067636d2861657329000000000000000000000000000000000000000000000000150000001fb63cde5cb9b24761b2983daa95a2d8e3873336170000001c000280040004000800"/970], 0x3d0}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB(r4, 0xc01c64ae, &(0x7f0000000040)={0x1000, 0x0, 0x1, 0xda0, 0x3f, 0x5, 0x4}) 15:13:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x2000c810) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @local}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 244.229535] FAULT_INJECTION: forcing a failure. [ 244.229535] name failslab, interval 1, probability 0, space 0, times 0 [ 244.267289] CPU: 0 PID: 11682 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 244.275203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.284563] Call Trace: [ 244.287165] dump_stack+0x1b2/0x283 [ 244.290803] should_fail.cold+0x10a/0x154 [ 244.294962] should_failslab+0xd6/0x130 [ 244.298943] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 244.303626] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 244.309346] ext4_getfsmap_datadev+0x3e3/0x1150 [ 244.314014] ? static_obj+0x50/0x50 [ 244.317641] ? unwind_get_return_address+0x51/0x90 [ 244.322569] ? __save_stack_trace+0x7b/0xd0 15:13:03 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c020000000000000000", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) [ 244.326899] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.332872] ? sort+0x255/0x2c0 [ 244.336157] ext4_getfsmap+0x651/0x880 [ 244.340048] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.346021] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 244.350949] ? trace_hardirqs_on+0x10/0x10 [ 244.355184] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.361165] ? swap_inode_data+0x690/0x690 [ 244.365417] ext4_ioc_getfsmap+0x250/0x830 [ 244.369651] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 244.374322] ? trace_hardirqs_on+0x10/0x10 15:13:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f0000000100)=0x2, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 244.378567] ? __lock_acquire+0x655/0x42a0 [ 244.382827] ? avc_has_extended_perms+0x6e2/0xbe0 [ 244.387672] ext4_ioctl+0x24b/0x39f0 [ 244.391380] ? avc_ss_reset+0x100/0x100 [ 244.395355] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 244.400550] ? __lock_acquire+0x655/0x42a0 [ 244.404787] ? lock_downgrade+0x6e0/0x6e0 [ 244.408947] ? trace_hardirqs_on+0x10/0x10 [ 244.413187] ? fsnotify+0x897/0x1110 [ 244.416908] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 244.422099] do_vfs_ioctl+0x75a/0xfe0 [ 244.425903] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 244.431532] ? ioctl_preallocate+0x1a0/0x1a0 [ 244.435950] ? security_file_ioctl+0x76/0xb0 [ 244.440357] ? security_file_ioctl+0x83/0xb0 [ 244.444768] SyS_ioctl+0x7f/0xb0 [ 244.448742] ? do_vfs_ioctl+0xfe0/0xfe0 [ 244.452718] do_syscall_64+0x1d5/0x640 [ 244.457045] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 244.462233] RIP: 0033:0x45cb29 [ 244.465420] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 15:13:03 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:03 executing program 3 (fault-call:1 fault-nth:11): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 244.473126] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 244.481431] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 244.488737] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 244.496009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 244.503290] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2000000000000000) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x40044}, 0x20008081) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x20, r2, 0xb03, 0x0, 0x0, {0x13}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1003}]}]}, 0x20}}, 0x0) sendmsg$TIPC_NL_BEARER_DISABLE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000180)={0x210, r2, 0x310, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x144, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x80000000, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xe59f}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}]}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe374}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e21, @loopback}}}}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7d2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x64c0}]}]}, @TIPC_NLA_MEDIA={0xb8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x31}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6083}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}]}]}]}, 0x210}, 0x1, 0x0, 0x0, 0x4}, 0x20000000) [ 244.641061] FAULT_INJECTION: forcing a failure. [ 244.641061] name failslab, interval 1, probability 0, space 0, times 0 15:13:03 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) readahead(r1, 0x1f, 0x8) [ 244.682506] CPU: 0 PID: 11737 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 244.690421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.699775] Call Trace: [ 244.702370] dump_stack+0x1b2/0x283 [ 244.706004] should_fail.cold+0x10a/0x154 [ 244.710161] should_failslab+0xd6/0x130 [ 244.714140] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 244.718830] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 244.724551] ext4_getfsmap_datadev+0x3e3/0x1150 [ 244.729218] ? static_obj+0x50/0x50 15:13:03 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 244.732842] ? unwind_get_return_address+0x51/0x90 [ 244.737769] ? __save_stack_trace+0x7b/0xd0 [ 244.742099] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.748071] ? sort+0x255/0x2c0 [ 244.751360] ext4_getfsmap+0x651/0x880 [ 244.755257] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.761234] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 244.766160] ? trace_hardirqs_on+0x10/0x10 [ 244.770401] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 244.776379] ? swap_inode_data+0x690/0x690 15:13:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 244.780633] ext4_ioc_getfsmap+0x250/0x830 [ 244.784866] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 244.789535] ? trace_hardirqs_on+0x10/0x10 [ 244.793777] ? __lock_acquire+0x655/0x42a0 [ 244.798022] ? avc_has_extended_perms+0x6e2/0xbe0 [ 244.802865] ext4_ioctl+0x24b/0x39f0 [ 244.806576] ? avc_ss_reset+0x100/0x100 [ 244.810551] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 244.815735] ? __lock_acquire+0x655/0x42a0 [ 244.819970] ? lock_downgrade+0x6e0/0x6e0 [ 244.824130] ? trace_hardirqs_on+0x10/0x10 [ 244.828370] ? fsnotify+0x897/0x1110 [ 244.832088] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 244.837273] do_vfs_ioctl+0x75a/0xfe0 [ 244.841084] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 244.846717] ? ioctl_preallocate+0x1a0/0x1a0 [ 244.851130] ? security_file_ioctl+0x76/0xb0 [ 244.855535] ? security_file_ioctl+0x83/0xb0 [ 244.859940] SyS_ioctl+0x7f/0xb0 [ 244.863298] ? do_vfs_ioctl+0xfe0/0xfe0 [ 244.867271] do_syscall_64+0x1d5/0x640 [ 244.871156] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 244.876341] RIP: 0033:0x45cb29 15:13:03 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r1) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r3) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r1}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r3}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x280000, &(0x7f0000000240)={[{@index_on='index=on'}, {@nfs_export_off='nfs_export=off'}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on='index=on'}, {@index_off='index=off'}, {@workdir={'workdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file0'}}, {@default_permissions='default_permissions'}], [{@euid_eq={'euid', 0x3d, r3}}]}) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e20, 0x4, @mcast2, 0x7fffffff}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 244.879538] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.887239] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 244.894505] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 244.901767] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 244.909031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 244.916296] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000001500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x1348, r2, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x1050, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "6005b98297ecd3c9754ceb40ecfcec9e7630ca9579fd99efcf63938ffffbcb"}}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MEDIA={0x30, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xee}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}]}]}, @TIPC_NLA_NODE={0x1f0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "10e6288579e6561754130d82163c7383ff0494a65a0ddb69a7bf42dd43d50686c5132f"}}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "baf17c6cd0be21ff888de56770fe3907510d2094640d"}}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "6803454e43a3b72201063f7f2af4c26dd7876e275a"}}, @TIPC_NLA_NODE_ID={0x2c, 0x3, "93c6254d1c3432d2586f76c51d236dcb79f41f43b5c3052fe3d4e1c54f5bf30b980d3adbe17b24be"}, @TIPC_NLA_NODE_ID={0xe8, 0x3, "d8924347197604f4a0d2f2b7012612fb98f4cce9ef37d35eb3172bfed625c5e03a6255b3e2af385811b1197c4008c631f2448d133fd030f47dc027b92bbddbd6bb9f3ad0310d5014c76ca76cde629311c3ba3f7dcbc1ecd4e08c5db76cf6af1c61a722cf71b19965dec8d9353746a8baa1060138da17ba015090a77c4b1b5a2333f3fff42bb45c5ad6eecbca699447c9a3105d95b8ed8891147dc4d7472b3b9ac3e932674da19a95aac746884dbaeea1ff3e38107756bb76e4c1b90565adabafa8ca498ff642b475a2d291063ec804982be416ed1535a7d8a5ad51eab808f332455fb196"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x56ee}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7fffffff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x401}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xfffffffa}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xac6d}]}, @TIPC_NLA_SOCK={0x40, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3600}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7f}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1f}]}]}, 0x1348}, 0x1, 0x0, 0x0, 0x4040}, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:04 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid'}}, {@measure='measure'}, {@euid_eq={'euid'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) lsetxattr$security_capability(&(0x7f00000031c0)='./file0\x00', &(0x7f0000003200)='security.capability\x00', &(0x7f0000003240)=@v3={0x3000000, [{0x8001, 0x9}, {0x10000, 0x5}]}, 0x18, 0x1) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_MASTER={0x8, 0xa, r4}]}, 0x28}}, 0x0) sendmmsg(r1, &(0x7f0000003040)=[{{&(0x7f0000000300)=@un=@file={0x2, './file0\x00'}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000380)="afa54a14265e03e494a4d28c6fb1685a070af1b13101c179302e52860a4ee502df76e6a1324db41939fcb8d89c77546521d0602d5495d735ff6e8fb0bde51c1b80c285cec067d1ba71962544a57aa36c1f047b05b9435a37a034fb443864de857c531bc6f49b40f6f47912a981ccea8740f59df299", 0x75}, {&(0x7f0000000000)="f34496e59c6bf2184ea7dfb9ac9262", 0xf}, {&(0x7f0000000400)="afe1dd3f08185f9cef27e1fc20ed97b9dc40a5d0e0f5dc18e280363d1cedcdcd484406e0fb1bc7aa1f772c57ed34d715e5da6fb084b1c2955763969f3f602cedec9154bb0c1b3e87003cf72cebef01ea78c3fdebed2f44ae47512558167c2f478a86386e2b8c97ed87728f7f55d12cdef12d394e7b468d24f0140249aab49c2e004674812434202704ba6b2ea6278f08161ae33ba0ce3720406e", 0x9a}, {&(0x7f0000000540)="f22f3ef5639ac811ec02ba0703d5d87c6bacd8088b3426732f94abe6230a44ed1e6ce3c245db14d77b0b70c17e8fb27b89e3c16ce18873bed93e9240deffc939b155fb4958ba31a4ee2a5f718a15b0a4c20532ecc5884c448fb6c5ca5d7d2cbf7c437b32895b6a24b48a3ed82aac3d4979ac4c5d1ecc918f", 0x78}, {&(0x7f00000005c0)="ef676acab1620abe2c84bf4cd230d15e3a9473ca959315a7c206f68b747e0bed3f9714060a4d672b7a1b9e9d474e91bf8da08ad1cb2b22278aca920b760c953a4b8ee4e80ca6bb2e20b9987e80025807f86dc791c1ac95962afe7f1a2eafb743faeecc34babdcedf8acaa9738cdd25f6d7d30ce0b5fe57e6dbe10fda41af2967d3c7b92a3f1e9f1a3c3be24f0a09057c9e049255", 0x94}, {&(0x7f0000000680)="9864432306f829f747746264ecf348f55d994dfed2c289830df3d07514178eb3e4b9ee6f9c8a87215584e7dc9297102db64edc92f1cdc6e32f4472e0c14269dfa78153a69f3483651101a3d7c9cadebfbd0a883cddb2656017f21ef35461beebd32bf06e7886a576100d99927df8bb0fd19102996ffdae67a799a8aac5025297050264e99dd14e84ec242f30b4c08a0d275143d3e013b573a9e0d97d7715fe92fd11168791b595f570783932edc5ebc6d20967099a24d6a984612c8b05d6a35f986fc68978745c1a3a872faae37e8e", 0xcf}], 0x6, &(0x7f0000000800)=[{0x78, 0x10a, 0xfe, "92d3b3b9fa7b2d244f727c5a6e724c40e2eb4378309d1bf67f362aa3cbf3a419400818de3a27d07e4eb74dcec35ca8d1693e5a1f9cb24f938f167fba03e2babe1f26e78ad39c7a194fae7421f51a1fc9b3bdb42a2e7093d1aaae2510f01683ba261844d0321833bf"}, {0xb8, 0x117, 0x8, "d40b1b1cb88c363e6c15d77c543476b7c7493fafb00c4710463bfd62e072cea1ae19070446f49115388f9c4b0d07db7d7cb31a7657483b41a8869971e376574ee05ebd968e8cfcaef5763ae0d576c6bcf9edd9901770c97a3e065d053cf45979c4876d81ac4540d3ce9b24777c66713823f0d5f898fd506a98ecccf63d68e0628b1c2e125ca845ba55cffbf9407794363be4d0bc53f941e3996fcf2d5007cfbe4dcf5897c27bb60e"}, {0x50, 0x119, 0x401, "13288bba81b988b3004bd46f28d177b9a7d2d656b0bb96551d55670069589eb7e0fe4ad2106d86379d778cffb1b2334628573e4686472ed6d01e20"}, {0x98, 0x101, 0x4, "ecca1a55a15a41557fb281223cc581852830630d4f830b0c182f2214e1837db2cf79c36f9c2ad451154712713a8f540417b011796f26b35b9c88a38ece15e79a206c2ee21d3591cb59460b431e2c6b851a665ab44d56ffd034055dca11f10db0994e03aab43584c7822ab7427cd1e06d5df9b167fadf2da4b4f6e60851bc51e0672d"}], 0x218}}, {{&(0x7f0000000a40)=@pppoe={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}, 'geneve1\x00'}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="887fb7b1cf086debc372ec46424f99cdd06457ea4d587126873950d1052a3e3513de17a560ead1101bad448d8aa4aa6ddeee5bf02e04ec11dddf657ad4accf44da99371aedd558228d37b340a0304a40b9ac2d616b77c9bba0f4ba7b17b20a6412c93256ff317925b54de06f3496a972208fa782ff71f412504984d935778edd2aa9ca7eb5a4f70337b5b134828fc3115f24b1c12bc1e80376f931d0db2d2cdade8a0c1c74397c3bf78b36efe909367962fd7179cb4805500993ed", 0xbb}], 0x1}}, {{&(0x7f0000000b80)=@nl=@kern={0x10, 0x0, 0x0, 0x800000}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000c00)="8715a238216bfdcd0632dac3898d181c6abfda24369c8d46abb93dda9967f5e07db3", 0x22}], 0x1, &(0x7f0000000c80)=[{0x20, 0x105, 0x1, "7f9db37a0850dedf4422879359"}, {0x98, 0x3a, 0x3, "7ea8620fce219883abf12078293b9cc85e543ee604308e2c40c2abb1cc3876626126e9d7b0a3b1556afce8a482f66b0636890d01b79874bf42e0d9d8a6f168e30a29aa558b132eb8f2915c6404476fee98101244f0dc2185c9d88433f8f37abc80721d05467e8bebfade3e01e0ba0906d14498484e55d6c7a4cde69ea22f9c77f736c860ab7d00"}, {0x80, 0x10f, 0x2, "d91869076f4ba4cf01eefbc7c4701894be5f6f4bfe28c2a58c90434b8bf9147f93b590c98b783af7fa0e913102443a0d659f6c7e022c9c4b853f62f5bc131419a31552dd912fcc7c39494ae9f82acf4f480bf08102154cac9559dfdd814b3deedf00ba9c0e28e5f867c85f"}, {0x20, 0x0, 0x4d, "bbf71d0f895c044f01"}, {0xe0, 0x109, 0xfffff8e8, "6d134a24ee56eddf0da7ef4e2104aeba2b87b02ecdf808a959ab93799d11f5516c278fdae562c5a69ec7e088927077236b8ae05c2594811a7c647ea3a753e13dbffc67fc91484e480c032856382331b0cf5f8ac36531509b07a823cb8b856476e5c09f88775242e7a5843360724efee052906ee34e81d622044023fe8d7ef7504721f1f4d651e224a7630520e7b3f860d98da36e94efd895004c0831d92239b66b1ba0977e05aaa31ad4fd142c729c6f5cac0fb9c309976fb6b7ded0cd14027455e0c4d64464fe5653"}, {0x1010, 0x0, 0x0, "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"}], 0x1248}}, {{0x0, 0x0, &(0x7f0000002340)=[{&(0x7f0000001f00)="a4bbc8f22a91ec736903d5d271f1d0ae778403dd6001de2513232830908cb9e1e8c938151353a4e7b7f57957e9befb6ab89c05bcade2e4ca73be1d4518d6f5d75ec534986885c56377ac0baa00a76f7cd976da059c540aefbe24e15c1e3c782a8c7c259d1fc8eb2d7566793be24de20d0c47344c2df8520a895d412fd5cd100a9992fb64b8973506e6f2c97925d7fe70348727c05f7eccb7a4b8d1e4f075eae44f1c5e23d0862ddd9afa45a5b40a8f1f381c7ef91f9e34752ca593f36aefc5a9fa1e4ffc804e677326f433182ce65bdff0c79db8facb0f88", 0xd8}, {&(0x7f0000002000)="c044c5d7c99e12f68d35f4f7d7ffc992807f26391fc01e9036f34c7d2df3da52a8b7e6bd68cebdf28320ef058244d0e9149116a0a5bae3113dbed6f1dec1f045628748f397b50c8127cd7796051043352c644ceefd8a65898af89957a83cb6f72208eaf5057dfff9c374d8006218c0c6f83a83a81ea44aaee5e0b6d1ab2e09c98a15f668b5a7798ecd703c9268e86e7f2e8a5be9d5e907f5b1ccc45651bf934b072313d62a643a54ddcf8a2431200f783f326c46d03ce7ce7a3896e1f868802b52e9731779a6dd3cfb01c13ff29656e88d6aa9db29401598639c5406ab493b7de214b0f8f4541e1993122ffbcd2b5a5702d5747bb465", 0xf6}, {&(0x7f0000002100)="ef42562682a883e227e66a09f2e55c777b94a152902be19138442b7f66b2e9a11f4a7adf7a12f3469e02f5cb26c4e9e857dff0eee8fb7961388d310f609886118c772937e857b23db2ee199b4d2275c74e589dd2e10009a48ece2f28063d8ea7bbaa640efacb053776", 0x69}, {&(0x7f0000002180)="e4fe54e10a435c9af1ea2130575103f21dae4baf8cdae71cb1338298090b5b4cda6c3cd976cd293bae04dc3b7be6a5e039aa57eecf4e61a58b109f10", 0x3c}, {&(0x7f00000021c0)="d19f221c080570ab0e4639ea34c51f7e8fc76af702bfb45497ef3d5591152844a59670803600fdfa59a5742a2bfa59f0f0ef81e3d94f0bb1fd1778b2", 0x3c}, {&(0x7f0000002200)="d368a565b2b82b88817b12c2765f30f7bd043b886a478b6539842a6c8a2dd0e57e154760326c0024493c184c22a9b925569e9019a5bbf5474c460b620fd20722287b9bc5d5ba284d2714dabfb8a8512d222ee7a4bd08868b551c947beee351fe372c2eaf94065ff4eb4f2b1b6fde240ece0963eada6f935de0c93bd8c04e6a6698ce3afccac49cb38264d78c4b855daf244d5a7534482e877150754493d81614bad2af0f316c9e925d2bec9b4713aea9b11530ebaafbaf68aceb2bf46664846f7d5aecbbd22465665372e9c13c035ca942c73729ac15a25c19e7c53e5bf21fbb24fb", 0xe2}, {&(0x7f0000002300)="6bdac0166c58b6358f14be47e9ef445661edd2a829626ffe3f22630e976a7e4f5315e273996b97a63d62b3b8bd6f", 0x2e}], 0x7}}, {{&(0x7f00000023c0)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e22, 0x3}}, 0x80, &(0x7f0000002640)=[{&(0x7f0000002440)="15db6b03e21db1bc439f0c1cd19efd7ccd15a77d353ae39cf3ef7a7be24c68903428720e2ef8714f57a2cc584922764c0137d03781598177ec7ec457cdb29cfae2198349b51a6df8affe97c58e17c0efbf62550435b071f41c69f89295e5ff80249eea0e1692fc77cbd3ea88537a4a12435d8c271e765a4beea6cc6648241a6a3621bee3c8c945839ed9fa02c745ff37a5b3f8534c3a8deb3499f532b39784987b638ecfca744e3deef8b208e9e527c58c0ab659fff70ad1e66fb34422ad41aada71ba46c2dcc89fda4e3f9b6f0b21562c1dcd2e170d572e3eab7a26c8434842c16c1fa27788ffa90aa760829f8558df8ca41cf02790217bf9928fb9", 0xfc}, {&(0x7f0000002540)="8d379225ee25478597e934c1e5debc4d2b7d4cdb68fe3bc326e66f99650dc18e7e5fa665b22e33525b4ffbb95d4f4af2ce43ec54fa90aa0b34c6b6d2c4154e5dffb748c335710683ee01194ea9d5e2fafd2d4f19a893f233b91b58b7bd1b2ca8da957b589d517bbbd304ef701bbb1180c456dec637362a6cbc2f732518aa8162efcf4be3187d3b0ad53ad2f7ca9d7452cafe3d80b2cf18f461f37dfd08d0d1a9e91215475534157665ac83035bcb82d280623fff41522e4cdb897455622d373f9cfad4393eca4f6c4e65be86c8fef55d51db46104ca3eec863e7eefde94d853b0d0028cd35db02384c", 0xe9}], 0x2}}, {{&(0x7f0000002680)=@x25={0x9, @remote={[], 0x0}}, 0x80, &(0x7f0000002ac0)=[{&(0x7f0000002700)="f5e971c0e60e0409c466bc818ba24679090e555fd7ebb14bdeec24abbba36de604919f3bcd79497f2cc7ac9182de3aad11279d33242692fd74a52b0dceb3bc4726c79ee9018d5d6c150cba8de6c268d6d4d2b868fe6129d9e6378eed65f11973cccb9b279abeb3656090df10d89952fcc644ae77592774895c19a975ef3cf88dd73517afc2", 0x85}, {&(0x7f00000027c0)="6724a1b4edc8edf430a87ac35ffccb6f3a21ce6327a0836571feb2f653fe2ac57d3a6f35e3828736cd3d10a45f8a428b1f91c0684c681a7c06a50a92cfa4159940ca02f61e4d4e15d34ea617af73fca8dc7849", 0x53}, {&(0x7f0000002840)="fb57b4249b5bf43125cfec185f93729a2ad816e971673de1f0c42f4cbde1c0f97c1a7068ee6de589d5e38127bbab66a2b59cf9442760b89817eeefeb2c488c41fb467013e03bcf8a2fd4f81f96fe1c76e930c2cc317a8a0d14b88a4d1ed8af4f0d51ba6855dcde9e4c5a41bce7ed79ed5533d02571a990620ffdf16dec473102b38f66f54db2", 0x86}, {&(0x7f0000002900)="196ed0c5c5808bdf3ebb5262845c5ba39121adbc5d5cb3025037", 0x1a}, {&(0x7f0000002940)="e6f28d824aeb98081b54ee26c1299067aa7bdcba9d5af3e5a041c37d9e3bdc407a32c1e1bd972085acebd6f46cf5ecb310a2a800a877379d84fd2b1a2900f72cfc17485eb8c86b55e3a5056bf7c1790e8240c0d1aac18e59d5e4848540400bd68ad48ba72a3f6719cfdd9f7992befad52eecfbc2443fe35ed1f34cf9f00b4b64e53aeac196d835cff6074eb030e6ce9bf0e8e4a065", 0x95}, {&(0x7f0000002a00)="eb65e308cb461fb0d40efa44252f88261cc580c695dd6146fa55532ec955", 0x1e}, {&(0x7f0000002a40)="2cc38d1e8b30186987f6613dc65a1e017d85e854f3b5ea7f0d88f07d71c0fcd34b724b1d41e657b7946cd363aeef78e9787bbc9ebc55249eabd9f906927b8069ee71e4d0", 0x44}], 0x7, &(0x7f0000002b40)=ANY=[@ANYBLOB="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"], 0x4c8}}], 0x6, 0x20000004) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r7) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r9) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r7}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r9}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x20000, &(0x7f00000004c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r7}, 0x2c, {'group_id'}}) [ 245.164807] 9pnet: Could not find request transport: xen 15:13:04 executing program 3 (fault-call:1 fault-nth:12): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:04 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cd3"]) 15:13:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 245.209121] 9pnet: Could not find request transport: xen 15:13:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4048080}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 245.282028] FAULT_INJECTION: forcing a failure. [ 245.282028] name failslab, interval 1, probability 0, space 0, times 0 [ 245.309912] CPU: 0 PID: 11802 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 245.317825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.327187] Call Trace: [ 245.329779] dump_stack+0x1b2/0x283 [ 245.333412] should_fail.cold+0x10a/0x154 [ 245.338089] should_failslab+0xd6/0x130 [ 245.342068] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 245.346742] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 245.352462] ext4_getfsmap_datadev+0x3e3/0x1150 [ 245.357128] ? static_obj+0x50/0x50 [ 245.360751] ? unwind_get_return_address+0x51/0x90 [ 245.365677] ? __save_stack_trace+0x7b/0xd0 [ 245.370007] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 245.375974] ? sort+0x255/0x2c0 [ 245.379258] ext4_getfsmap+0x651/0x880 [ 245.383149] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 245.389125] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 245.394052] ? trace_hardirqs_on+0x10/0x10 [ 245.398284] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 245.404259] ? swap_inode_data+0x690/0x690 [ 245.408511] ext4_ioc_getfsmap+0x250/0x830 [ 245.412781] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 245.417456] ? trace_hardirqs_on+0x10/0x10 [ 245.421696] ? __lock_acquire+0x655/0x42a0 [ 245.425941] ? avc_has_extended_perms+0x6e2/0xbe0 [ 245.430786] ext4_ioctl+0x24b/0x39f0 [ 245.434499] ? avc_ss_reset+0x100/0x100 [ 245.438473] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 245.443666] ? __lock_acquire+0x655/0x42a0 [ 245.447894] ? lock_downgrade+0x6e0/0x6e0 [ 245.452049] ? trace_hardirqs_on+0x10/0x10 [ 245.456286] ? fsnotify+0x897/0x1110 [ 245.460000] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 245.465186] do_vfs_ioctl+0x75a/0xfe0 [ 245.468986] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 245.474604] ? ioctl_preallocate+0x1a0/0x1a0 [ 245.479020] ? security_file_ioctl+0x76/0xb0 [ 245.483417] ? security_file_ioctl+0x83/0xb0 [ 245.487807] SyS_ioctl+0x7f/0xb0 [ 245.491160] ? do_vfs_ioctl+0xfe0/0xfe0 [ 245.495113] do_syscall_64+0x1d5/0x640 [ 245.499763] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 245.504926] RIP: 0033:0x45cb29 [ 245.508091] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 245.515772] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 245.523015] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 245.530260] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 245.537502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 245.544746] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:04 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:06 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:06 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @sack_perm], 0x2) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) getsockopt$inet_sctp_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8) 15:13:06 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0xa1) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c1cb52ef567da37a3d300"]) socket$inet_tcp(0x2, 0x1, 0x0) 15:13:06 executing program 3 (fault-call:1 fault-nth:13): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 247.859331] FAULT_INJECTION: forcing a failure. [ 247.859331] name failslab, interval 1, probability 0, space 0, times 0 [ 247.885802] CPU: 1 PID: 11837 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 247.893719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.903177] Call Trace: [ 247.905774] dump_stack+0x1b2/0x283 [ 247.909414] should_fail.cold+0x10a/0x154 [ 247.913573] should_failslab+0xd6/0x130 [ 247.917552] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 247.922233] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 247.927954] ext4_getfsmap_datadev+0x3e3/0x1150 [ 247.932620] ? static_obj+0x50/0x50 [ 247.936337] ? unwind_get_return_address+0x51/0x90 [ 247.941267] ? __save_stack_trace+0x7b/0xd0 [ 247.945598] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 247.951572] ? sort+0x255/0x2c0 [ 247.955211] ext4_getfsmap+0x651/0x880 [ 247.959107] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 247.965102] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 247.970032] ? trace_hardirqs_on+0x10/0x10 [ 247.970892] gfs2: invalid mount option: appraise_type=imasig [ 247.974265] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 247.974285] ? swap_inode_data+0x690/0x690 [ 247.984206] gfs2: can't parse mount arguments [ 247.986122] ext4_ioc_getfsmap+0x250/0x830 [ 247.986132] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 247.986145] ? trace_hardirqs_on+0x10/0x10 15:13:06 executing program 2: prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$EVIOCGLED(r3, 0x80404519, &(0x7f00000002c0)=""/73) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000280)={0x3, &(0x7f0000000240)=[{0x7, 0x1, 0x1, 0x4}, {0xfffa, 0x0, 0x7, 0x44f7b0a9}, {0xf800, 0x0, 0x31, 0x3}]}) sendmsg$AUDIT_TTY_GET(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x3f8, 0x200, 0x70bd29, 0x25dfdbfc, "", ["", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000}, 0x44044851) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f00000012c0)={{{@in=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@ipv4={[], [], @empty}}}, &(0x7f0000000480)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000013c0)={0x0, 0x0}, &(0x7f0000001400)=0xc) syz_mount_image$gfs2(&(0x7f0000000340)='gfs2\x00', &(0x7f0000000380)='./file0\x00', 0x1, 0x8, &(0x7f0000001200)=[{&(0x7f00000003c0)="58308dbf7feb606a5624d0c15eae495e614d9b014868656e4d83359968997e20a4cc2388cb0f818c0e49e89355cf5b31916bb2ff7f15b0d3409fd729d9c1a20fde1cc5dfc65d1efd62f5fba6ece385c4dc6146", 0x53, 0x35}, {&(0x7f0000000d00)="e424c3c3c9531a168c827f5661a291e31d632f064e15cefe0064e45464a0d5b8fdf04bb230f980e78d6ec412a94becd8944f2e4ed120a7e7ea0a506b3a71d5af71e7608ed1e34dd7f0596e1c90125da02aea18fafacae1f2b508eb39b44786e0bdaefe4e2bb54a17abc23abb59b419f7921ed49d514ccc3590448453622040f33c5e259148f854b7b02de73992c81d367420ce786d8a2b5e28fadf1705df9e18a7d1b404888ae6e812fc061ae8f4267edae86db2674ab2d970ef1e04573ad01db9477e64d8cc201963216fdb7a497357a2da9ee636b8593c8ab26445f5fc7be5fdff014f54a6b717a3c1d2cb847672c0def15e", 0xf3, 0x6}, {&(0x7f0000000e00)="6130b5dd7f7708bd95a1a4f5d392bec74256e4b8980ba7e7af8b6aadd4a2a8d3b21ec19b09c4fae6e2b175c5b15b27a95c5973620e53e61317260f6262e971c9038360ad77791e8bb73ca807861e4971e691fb256792b3e34db17e839b0a8136fef423015d531671c0fa0321c0e2d3fcd57094e965ae3d60e3ecce793a44fb606fc6849c01cb250e3b68169036e8eb5f5784fc751ca9f6cb24da3917128ac6daf722d420ddceb008f18299980c30b87b0551e73f91c576a847de9e3c5a833fc444db506ffeb6ac16a161ec1ab95e47032d066b88bc99d781ec67", 0xda, 0x1}, {&(0x7f0000000440), 0x0, 0x4}, {&(0x7f0000000f00)="4e063dc94e18a82f5f928e7194971c506e8ff8d67c1de7c0a9dfcfd64c8ef47845b759c0b697045945b854859ede25521cf7ee3ff61cfb233690d9195201a5260754578e36a0b12a60c068aa2f5e935617741d28c43170d77d9df94b8ce7148822f642d54128478fc765785c54645ca34f949eee8f2284e6513861cd184bb677a71605999a288c018d6097b4e57ab746780f0fd220c147b8513a106aa1639e881213e64e61c8b2bf7318117075951a535d0c88bd7720f23ccb92f6", 0xbb, 0x6}, {&(0x7f0000000fc0)="be86ee03e435f7883431c008b9c802ec4c7b8ac239a4b4ba996e1f4f7474f67393e95405467a7f9e8f696691d580b3f3aeb84f49a3cb568f27ac7bf8f8fd13345f0e4dc68828cd2b6a9bbab3de4833bc9069287712874764712d893b68d154f719dfbe8e19eeda92d3f6542677612bad010c9a2786235d9cf325a35826a4b6f4c30f595a3d6affb0d94d70f4db430c3d0db0cac152166f55bce3902d5e95a66c1ad53f68f242a301136b0b6ad973b256ed5bee3903a9c07c42f8d45c22f245f38972814de9c73c35f1fad9c033660212c4da3b42fb3f1f4efba179df609af8eed4c12d476aa411c49c1fbd8877b6af22754838d292", 0xf5, 0x8}, {&(0x7f00000010c0)="20d29005130edbc092d8cdc7b75d64d872de08d7785a90703ae2291a8a9185d6797ac3060e0d5e5dbe0e1449a3ff1d5daf5761c4ecce2d4f66b541043a90358ba010e8c983e4a13ba9fa505305435672c31cd84c4c729814a17f4aa14b486a6abbcfcbcc549d9ae1f318d92ea403f200e3b0aff2347362fe535dc92b01d2ac003c19c317c7bb6be12ab429c925afbf7bda120b", 0x93, 0x7ff}, {&(0x7f0000001180)="34180beaaf2a4a4a075cc972f0b2a8fec7507bac7dcd249e4297f227289c2272d760fa00e31f2a0c17a4f3f29348611502e1d7faaf3ee93433808f7c711f57164f43fb7ee73abb5aa0fa7aed6c5cff87f82aff0d36780e151799f29e1fe8420a102806d2109aacf2f7b7718062591bbc3019ed473770672ef4a33160a7", 0x7d, 0x401}], 0x1000002, &(0x7f0000001440)={[{@quota_quantum={'quota_quantum', 0x3d, 0x8}}, {@norecovery='norecovery'}], [{@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@appraise_type='appraise_type=imasig'}, {@uid_eq={'uid', 0x3d, r5}}, {@fowner_lt={'fowner<', r6}}]}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x10) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$BLKREPORTZONE(r3, 0xc0101282, &(0x7f0000000180)={0x9, 0x4, 0x0, [{0x6, 0x8, 0x8c, 0x7, 0x2, 0xff, 0xff}, {0x65, 0x7ff, 0x3, 0x81, 0x7, 0x74, 0x1}, {0xf2, 0x8, 0x3, 0x4, 0x0, 0x6, 0x9}, {0x5, 0x9, 0x8, 0x7f, 0xff, 0xff, 0x8}]}) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0xa, 0x7) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 247.986161] ? __lock_acquire+0x655/0x42a0 [ 247.986183] ? avc_has_extended_perms+0x6e2/0xbe0 [ 248.017037] ext4_ioctl+0x24b/0x39f0 [ 248.020757] ? avc_ss_reset+0x100/0x100 [ 248.024737] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 248.029932] ? __lock_acquire+0x655/0x42a0 [ 248.034170] ? lock_downgrade+0x6e0/0x6e0 [ 248.038339] ? trace_hardirqs_on+0x10/0x10 [ 248.042586] ? fsnotify+0x897/0x1110 [ 248.046306] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 248.051495] do_vfs_ioctl+0x75a/0xfe0 [ 248.056083] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 248.061712] ? ioctl_preallocate+0x1a0/0x1a0 [ 248.066131] ? security_file_ioctl+0x76/0xb0 [ 248.070546] ? security_file_ioctl+0x83/0xb0 [ 248.074957] SyS_ioctl+0x7f/0xb0 [ 248.078323] ? do_vfs_ioctl+0xfe0/0xfe0 [ 248.082300] do_syscall_64+0x1d5/0x640 [ 248.086196] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 248.091385] RIP: 0033:0x45cb29 [ 248.094568] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.102274] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:13:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000005) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:07 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @timestamp, @mss, @sack_perm, @timestamp, @sack_perm, @timestamp, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e23}, 0x10) 15:13:07 executing program 3 (fault-call:1 fault-nth:14): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 248.109541] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 248.116810] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 248.124791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 248.132064] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 248.234061] FAULT_INJECTION: forcing a failure. [ 248.234061] name failslab, interval 1, probability 0, space 0, times 0 [ 248.271409] CPU: 0 PID: 11874 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 248.279340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 248.288956] Call Trace: [ 248.291554] dump_stack+0x1b2/0x283 [ 248.295196] should_fail.cold+0x10a/0x154 [ 248.299353] should_failslab+0xd6/0x130 [ 248.303326] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 248.307999] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 248.313733] ext4_getfsmap_datadev+0x3e3/0x1150 [ 248.318403] ? static_obj+0x50/0x50 [ 248.322030] ? unwind_get_return_address+0x51/0x90 [ 248.326959] ? __save_stack_trace+0x7b/0xd0 [ 248.331289] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 248.337260] ? sort+0x255/0x2c0 [ 248.340552] ext4_getfsmap+0x651/0x880 [ 248.344443] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 248.350414] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 248.355342] ? trace_hardirqs_on+0x10/0x10 [ 248.359751] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 248.365730] ? swap_inode_data+0x690/0x690 [ 248.369994] ext4_ioc_getfsmap+0x250/0x830 [ 248.374234] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 248.378908] ? trace_hardirqs_on+0x10/0x10 [ 248.383154] ? __lock_acquire+0x655/0x42a0 [ 248.387405] ? avc_has_extended_perms+0x6e2/0xbe0 [ 248.392428] ext4_ioctl+0x24b/0x39f0 [ 248.396140] ? avc_ss_reset+0x100/0x100 [ 248.400118] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 248.405308] ? __lock_acquire+0x655/0x42a0 [ 248.409536] ? lock_downgrade+0x6e0/0x6e0 [ 248.413665] ? trace_hardirqs_on+0x10/0x10 [ 248.417882] ? fsnotify+0x897/0x1110 [ 248.421574] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 248.426740] do_vfs_ioctl+0x75a/0xfe0 [ 248.430524] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 248.436125] ? ioctl_preallocate+0x1a0/0x1a0 [ 248.440518] ? security_file_ioctl+0x76/0xb0 [ 248.444905] ? security_file_ioctl+0x83/0xb0 [ 248.449332] SyS_ioctl+0x7f/0xb0 [ 248.452673] ? do_vfs_ioctl+0xfe0/0xfe0 [ 248.456852] do_syscall_64+0x1d5/0x640 [ 248.460896] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 248.466063] RIP: 0033:0x45cb29 [ 248.469229] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 248.477469] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 248.484717] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 248.491964] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 248.499261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 248.506570] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:07 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 250.656101] NOHZ: local_softirq_pending 08 [ 250.660353] NOHZ: local_softirq_pending 08 15:13:09 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:09 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @private=0xa010100}, 0x10) 15:13:09 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) r2 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', r1, 0xa}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r5, r6) keyctl$chown(0x4, r2, r3, r6) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:09 executing program 3 (fault-call:1 fault-nth:15): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:09 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000040)={r3}, 0x10) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000180)={r3, @in6={{0xa, 0x4e23, 0x20, @mcast2, 0x7}}}, 0x84) r4 = socket$inet6(0xa, 0x3, 0x8) r5 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r5, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r4, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) io_setup(0x2003, &(0x7f0000000000)=0x0) io_submit(r7, 0x2, &(0x7f00000003c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0}]) io_getevents(r7, 0x2, 0xa, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000380)={0x77359400}) 15:13:09 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x8}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e25}, 0x10) [ 250.908353] FAULT_INJECTION: forcing a failure. [ 250.908353] name failslab, interval 1, probability 0, space 0, times 0 [ 250.941662] CPU: 0 PID: 11904 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 250.949579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.958940] Call Trace: [ 250.961534] dump_stack+0x1b2/0x283 [ 250.965172] should_fail.cold+0x10a/0x154 [ 250.969333] should_failslab+0xd6/0x130 [ 250.973307] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 250.977983] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 250.983706] ext4_getfsmap_datadev+0x3e3/0x1150 [ 250.988639] ? static_obj+0x50/0x50 [ 250.992265] ? unwind_get_return_address+0x51/0x90 [ 250.997199] ? __save_stack_trace+0x7b/0xd0 [ 251.001529] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.007501] ? sort+0x255/0x2c0 [ 251.010785] ext4_getfsmap+0x651/0x880 [ 251.014676] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.020649] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 251.025578] ? trace_hardirqs_on+0x10/0x10 [ 251.029812] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.035799] ? swap_inode_data+0x690/0x690 [ 251.040067] ext4_ioc_getfsmap+0x250/0x830 [ 251.044302] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 251.049233] ? trace_hardirqs_on+0x10/0x10 [ 251.053473] ? __lock_acquire+0x655/0x42a0 15:13:10 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r9 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r8}]}, 0x28}}, 0x0) fstat(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r10}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) [ 251.057721] ? avc_has_extended_perms+0x6e2/0xbe0 [ 251.062564] ext4_ioctl+0x24b/0x39f0 [ 251.066274] ? avc_ss_reset+0x100/0x100 [ 251.070250] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 251.075439] ? __lock_acquire+0x655/0x42a0 [ 251.079774] ? lock_downgrade+0x6e0/0x6e0 [ 251.083942] ? trace_hardirqs_on+0x10/0x10 [ 251.088177] ? fsnotify+0x897/0x1110 [ 251.091897] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 251.097085] do_vfs_ioctl+0x75a/0xfe0 [ 251.100886] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 15:13:10 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000003c0)=[@timestamp, @sack_perm, @mss, @mss={0x2, 0x4}, @sack_perm, @sack_perm, @timestamp, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 251.106505] ? ioctl_preallocate+0x1a0/0x1a0 [ 251.110920] ? security_file_ioctl+0x76/0xb0 [ 251.115331] ? security_file_ioctl+0x83/0xb0 [ 251.119736] SyS_ioctl+0x7f/0xb0 [ 251.123092] ? do_vfs_ioctl+0xfe0/0xfe0 [ 251.127064] do_syscall_64+0x1d5/0x640 [ 251.130954] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 251.136137] RIP: 0033:0x45cb29 [ 251.139331] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 251.147038] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:13:10 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x43, 0x5, 0x1, 0x0, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4404c804}, 0x0) sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000400)={&(0x7f0000006480)=ANY=[@ANYBLOB="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"], 0x5ea4}, 0x1, 0x0, 0x0, 0x8000}, 0xc801) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss={0x2, 0x200}, @window={0x3, 0x4, 0x403}, @mss={0x2, 0x70}, @mss={0x2, 0x1}, @window={0x3, 0xffff, 0x5}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @private=0xa010100}, 0x10) [ 251.154307] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 251.161568] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 251.168831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 251.176092] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:10 executing program 3 (fault-call:1 fault-nth:16): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:10 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @timestamp, @mss, @sack_perm, @mss, @mss={0x2, 0x8}, @sack_perm, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 251.273424] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 [ 251.293813] FAULT_INJECTION: forcing a failure. [ 251.293813] name failslab, interval 1, probability 0, space 0, times 0 [ 251.328816] CPU: 0 PID: 11941 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 251.336726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.346077] Call Trace: [ 251.348671] dump_stack+0x1b2/0x283 [ 251.352309] should_fail.cold+0x10a/0x154 [ 251.356461] should_failslab+0xd6/0x130 [ 251.360438] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 251.365111] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 251.370830] ext4_getfsmap_datadev+0x3e3/0x1150 [ 251.375499] ? static_obj+0x50/0x50 [ 251.379126] ? unwind_get_return_address+0x51/0x90 [ 251.384056] ? __save_stack_trace+0x7b/0xd0 [ 251.388375] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.394366] ? sort+0x255/0x2c0 [ 251.397655] ext4_getfsmap+0x651/0x880 [ 251.401522] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.407470] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 251.412400] ? trace_hardirqs_on+0x10/0x10 [ 251.416619] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 251.422581] ? swap_inode_data+0x690/0x690 [ 251.426834] ext4_ioc_getfsmap+0x250/0x830 [ 251.431306] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 251.435953] ? trace_hardirqs_on+0x10/0x10 [ 251.440348] ? __lock_acquire+0x655/0x42a0 [ 251.444567] ? avc_has_extended_perms+0x6e2/0xbe0 [ 251.449387] ext4_ioctl+0x24b/0x39f0 [ 251.453089] ? avc_ss_reset+0x100/0x100 [ 251.457041] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 251.462205] ? __lock_acquire+0x655/0x42a0 [ 251.466414] ? lock_downgrade+0x6e0/0x6e0 [ 251.470544] ? trace_hardirqs_on+0x10/0x10 [ 251.474757] ? fsnotify+0x897/0x1110 [ 251.478460] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 251.483627] do_vfs_ioctl+0x75a/0xfe0 [ 251.487424] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 251.493025] ? ioctl_preallocate+0x1a0/0x1a0 [ 251.497691] ? security_file_ioctl+0x76/0xb0 [ 251.502078] ? security_file_ioctl+0x83/0xb0 [ 251.506463] SyS_ioctl+0x7f/0xb0 [ 251.509809] ? do_vfs_ioctl+0xfe0/0xfe0 [ 251.513761] do_syscall_64+0x1d5/0x640 [ 251.517629] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 251.522797] RIP: 0033:0x45cb29 [ 251.525971] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 251.533792] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 251.541040] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 251.548377] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 251.555626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 251.562872] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:10 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:12 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) 15:13:12 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:12 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x44) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00') 15:13:12 executing program 3 (fault-call:1 fault-nth:17): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:12 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r2 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r6) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=xen,dfltuid=', @ANYRESHEX=0x0, @ANYBLOB="8a6e6f6465766d61702c7569643d2ccf02baa47ee932d6b25df232f83eb074bd80bc75ed747d67e21bf0e7379d66eea5b19b4e0c3cbb5883c3801a2fa0b7c299", @ANYRESDEC=r4, @ANYBLOB=',measure,euid=', @ANYRESDEC=r6, @ANYBLOB=',smackfstransmute=/dev/binder#\x00,dont_measure,measure,dont_appraise,seclabel,\x00']) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000000)={0xffff, 0x100, {r2}, {r6}, 0x2, 0xbe56}) r7 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r7, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x40000) fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000180)) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x20, @loopback}, 0x1c) syz_open_dev$ptys(0xc, 0x3, 0x1) sendmmsg$alg(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x52, &(0x7f0000002780), 0x18}], 0x146, 0x0) [ 253.935486] FAULT_INJECTION: forcing a failure. [ 253.935486] name failslab, interval 1, probability 0, space 0, times 0 15:13:13 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="402c287bee2e28eec547120f722bfd34"]) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$SMC_PNETID_FLUSH(0xffffffffffffffff, &(0x7f0000003800)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000037c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="2810a9f647197b083ed4b3913729006753a425dde8b0d803cc393bb6bb41c68d2eedf61b4691282639e357daaf8605dbff7952977633464758b834511c139f3a09bef3c861723eb4e8b96f3992fdcdff203bcdb6a7e942a3f05c3aa0ef6a558b6571e3be49a20735cfd6891b11c61f6744644bb686592d8cee3f344a90ae8dcbf75c0b464d1108cc724e254a7bd2a47e4a429692c444af56137dae9a114015804e43910a8bf20c9b31f49bad90516eb694fcf8a961d3bb960160da87a91d06c586d32f47b75ac27d444123a05b66f39143bed2335740c02d0e9df1ffe88b24bf38185e3d85dcd9a8e2281fad2df7d8be295add13424a36ca60768d2db3170fbba0054a68d37923e40168afa8cb0dccb605cf3898a2d342f4eded9023c9553ab87f770c79adf3eed966ef", @ANYRES16, @ANYBLOB="08002bbd7000fedbdf25040000140002e8000000"], 0x28}, 0x1, 0x0, 0x0, 0x801}, 0x20000000) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x4c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000080}, 0x24004000) sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x8, 0x70bd29, 0x25dfdbfe, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x20004001) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x48, 0x0, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0xb0, 0x0, 0x8, 0x70bd2d, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6tnl0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip_vti0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gretap0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_vlan\x00'}]}, 0xb0}, 0x1, 0x0, 0x0, 0x5}, 0x20040000) sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x38}}, 0x81) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MASTER={0x8, 0xa, r6}]}, 0x28}}, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000000)={@remote, 0x66, r6}) [ 253.999202] CPU: 1 PID: 11969 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 254.007122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.016482] Call Trace: [ 254.019082] dump_stack+0x1b2/0x283 [ 254.022738] should_fail.cold+0x10a/0x154 [ 254.026916] should_failslab+0xd6/0x130 [ 254.030907] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 254.035589] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 254.041317] ext4_getfsmap_datadev+0x3e3/0x1150 [ 254.045994] ? static_obj+0x50/0x50 [ 254.049643] ? unwind_get_return_address+0x51/0x90 [ 254.054581] ? __save_stack_trace+0x7b/0xd0 [ 254.058920] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.064916] ? sort+0x255/0x2c0 [ 254.068209] ext4_getfsmap+0x651/0x880 [ 254.072115] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.078204] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 254.083143] ? trace_hardirqs_on+0x10/0x10 [ 254.087383] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.093371] ? swap_inode_data+0x690/0x690 [ 254.097635] ext4_ioc_getfsmap+0x250/0x830 [ 254.101876] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 254.106555] ? trace_hardirqs_on+0x10/0x10 [ 254.110806] ? __lock_acquire+0x655/0x42a0 [ 254.115062] ? avc_has_extended_perms+0x6e2/0xbe0 [ 254.119914] ext4_ioctl+0x24b/0x39f0 [ 254.123636] ? avc_ss_reset+0x100/0x100 [ 254.127621] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 254.132835] ? __lock_acquire+0x655/0x42a0 [ 254.137081] ? lock_downgrade+0x6e0/0x6e0 [ 254.141242] ? trace_hardirqs_on+0x10/0x10 [ 254.145490] ? fsnotify+0x897/0x1110 15:13:13 executing program 1: r0 = socket$inet6(0xa, 0x4, 0x101) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') sendmsg$SEG6_CMD_SET_TUNSRC(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)={0x28, r3, 0x1, 0x0, 0x0, {0x3, 0x0, 0x2644}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast2}]}, 0x28}}, 0x0) sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x3c, r3, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@SEG6_ATTR_SECRET={0x14, 0x4, [0x3, 0x1, 0x5, 0x6]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x5, 0x1, 0x2, 0x1f]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0) r4 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 254.149214] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 254.154408] do_vfs_ioctl+0x75a/0xfe0 [ 254.158214] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 254.163843] ? ioctl_preallocate+0x1a0/0x1a0 [ 254.168268] ? security_file_ioctl+0x76/0xb0 [ 254.172694] ? security_file_ioctl+0x83/0xb0 [ 254.177112] SyS_ioctl+0x7f/0xb0 [ 254.180491] ? do_vfs_ioctl+0xfe0/0xfe0 [ 254.184473] do_syscall_64+0x1d5/0x640 [ 254.188370] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 254.193559] RIP: 0033:0x45cb29 15:13:13 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:13 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x900, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000ff0000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x21) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @window={0x3, 0x1, 0x6}, @mss, @window={0x3, 0x4, 0x401}, @timestamp, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x4, 0x87ffe, 0x7fffffdc, 0x2, 0x8}, 0x14) shutdown(r1, 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000500)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e24, @remote}, 0x10) [ 254.196769] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 254.204480] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 254.211748] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 254.219029] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 254.226331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 254.233602] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 254.256520] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=11991 comm=syz-executor.1 [ 254.278367] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=11985 comm=syz-executor.1 15:13:13 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 254.299676] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=11985 comm=syz-executor.1 15:13:13 executing program 3 (fault-call:1 fault-nth:18): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 254.365021] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39 sclass=netlink_route_socket pid=11985 comm=syz-executor.1 [ 254.386191] FAULT_INJECTION: forcing a failure. [ 254.386191] name failslab, interval 1, probability 0, space 0, times 0 [ 254.418879] CPU: 1 PID: 12008 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 254.426792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 254.436152] Call Trace: [ 254.438755] dump_stack+0x1b2/0x283 [ 254.442396] should_fail.cold+0x10a/0x154 [ 254.446560] should_failslab+0xd6/0x130 [ 254.450569] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 254.455251] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 254.460972] ext4_getfsmap_datadev+0x3e3/0x1150 [ 254.465642] ? static_obj+0x50/0x50 [ 254.469267] ? unwind_get_return_address+0x51/0x90 [ 254.474280] ? __save_stack_trace+0x7b/0xd0 [ 254.478594] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.484553] ? sort+0x255/0x2c0 [ 254.487964] ext4_getfsmap+0x651/0x880 [ 254.491843] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.497815] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 254.502740] ? trace_hardirqs_on+0x10/0x10 [ 254.506965] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 254.513066] ? swap_inode_data+0x690/0x690 [ 254.517323] ext4_ioc_getfsmap+0x250/0x830 [ 254.521554] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 254.526211] ? trace_hardirqs_on+0x10/0x10 [ 254.530435] ? __lock_acquire+0x655/0x42a0 [ 254.534688] ? avc_has_extended_perms+0x6e2/0xbe0 [ 254.539529] ext4_ioctl+0x24b/0x39f0 [ 254.543231] ? avc_ss_reset+0x100/0x100 [ 254.547195] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 254.552371] ? __lock_acquire+0x655/0x42a0 [ 254.556597] ? lock_downgrade+0x6e0/0x6e0 [ 254.560742] ? trace_hardirqs_on+0x10/0x10 [ 254.564966] ? fsnotify+0x897/0x1110 [ 254.568667] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 254.573841] do_vfs_ioctl+0x75a/0xfe0 [ 254.577655] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 254.583279] ? ioctl_preallocate+0x1a0/0x1a0 [ 254.587683] ? security_file_ioctl+0x76/0xb0 [ 254.592078] ? security_file_ioctl+0x83/0xb0 [ 254.596482] SyS_ioctl+0x7f/0xb0 [ 254.599840] ? do_vfs_ioctl+0xfe0/0xfe0 [ 254.603801] do_syscall_64+0x1d5/0x640 [ 254.607689] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 254.612886] RIP: 0033:0x45cb29 15:13:13 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) [ 254.616073] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 254.623772] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 254.631025] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 254.638281] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 254.645534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 254.652793] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:15 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) 15:13:15 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000400)={0x0, 0xffffffff}, &(0x7f0000000440)=0x8) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) socket(0x10, 0x803, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf, 0x0, 0x5c4b}, 0x14) shutdown(r0, 0x1) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e1e}, 0x10) 15:13:15 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r1, r2) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x8000c0, &(0x7f0000000540)=ANY=[@ANYBLOB='fd\r', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d303030303030303030307365725f69643d6dfc3f23ef3ea010f53215d4a4391855e645d390f9ade9cfbfe5de874d414718372ebb19b3ba502063636265b9f2691a55c69ea1f12103d686209440579fb3734a60f7293bded016eb7d9105f86cf75c2fcb54ff157c612c1387b57315930fb2ebf5cb2443f892e3fa40f40d78a8", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r2, @ANYBLOB=',hash,fowner>', @ANYRESDEC=r1, @ANYBLOB="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"]) getrusage(0x0, &(0x7f0000000480)) 15:13:15 executing program 3 (fault-call:1 fault-nth:19): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:15 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) recvmsg(r2, &(0x7f0000000600)={&(0x7f0000000000)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000180)=""/159, 0x9f}, {&(0x7f0000000100)=""/19, 0x13}, {&(0x7f0000000240)=""/219, 0xdb}, {&(0x7f0000000340)=""/39, 0x27}, {&(0x7f0000000380)=""/150, 0x96}, {&(0x7f0000000440)=""/54, 0x36}], 0x6, &(0x7f0000000500)=""/218, 0xda}, 0x40) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r3 = socket(0x10, 0x803, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r5, 0xc00c642d, &(0x7f00000007c0)={0x0, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_SETCRTC(r6, 0xc06864a2, &(0x7f0000000840)={&(0x7f0000000800)=[0x1, 0x4, 0x4], 0x3, 0x3, 0x88d, 0x9, 0x0, 0x8, 0x5, {0x5, 0x5, 0x738b, 0x800, 0x87, 0x0, 0x0, 0x4, 0xb98d, 0x100, 0xfe00, 0x5, 0x9, 0x0, "5711d5ee64f322d18f14c3524b2f1b18d19ac089730728d3f98e003b219d9e46"}}) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000780)=0x14) r7 = syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r7, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {}, {0x14, 0x19, {0x2, 0x7fff, 0xfffff001, 0xffff}}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r3, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x1c, r7, 0x400, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40100}, 0x4000081) [ 256.977563] FAULT_INJECTION: forcing a failure. [ 256.977563] name failslab, interval 1, probability 0, space 0, times 0 [ 257.007001] CPU: 0 PID: 12028 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 257.014913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.024289] Call Trace: [ 257.026890] dump_stack+0x1b2/0x283 [ 257.030534] should_fail.cold+0x10a/0x154 [ 257.034695] should_failslab+0xd6/0x130 [ 257.039044] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 257.043743] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 257.049469] ext4_getfsmap_datadev+0x3e3/0x1150 [ 257.054141] ? static_obj+0x50/0x50 [ 257.057774] ? unwind_get_return_address+0x51/0x90 [ 257.062731] ? __save_stack_trace+0x7b/0xd0 [ 257.067072] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.073058] ? sort+0x255/0x2c0 15:13:16 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.evm\x00', &(0x7f00000000c0)=@v1={0x2, "a7723234f435ddfdb378bfee53252c310cce"}, 0x13, 0x1) [ 257.076346] ext4_getfsmap+0x651/0x880 [ 257.080233] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.086199] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 257.091114] ? trace_hardirqs_on+0x10/0x10 [ 257.095348] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.101434] ? swap_inode_data+0x690/0x690 [ 257.105696] ext4_ioc_getfsmap+0x250/0x830 [ 257.109944] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 257.114626] ? trace_hardirqs_on+0x10/0x10 [ 257.118876] ? __lock_acquire+0x655/0x42a0 [ 257.123134] ? avc_has_extended_perms+0x6e2/0xbe0 15:13:16 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="28000000100001047fffffff0000000000000000", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB="45371c331d383e769a64cb9b459885f109f7f6e531666592f60347f7d0de84122f08efd3c63f733a47f90207119458537c60422ceb44a80b38ca0be24bb22ff4a64adda28ab7e5f6af4fde9f46df56935c6aa5e151e6696338323da907b7f96398813cb3c1b88beaf258a91f36e2a81fa7674a6b06768abba8f769670a55"], 0x28}}, 0x0) ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, &(0x7f0000000040)) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRES32=r3, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r1, @ANYBLOB='\x00\x00']) [ 257.127985] ext4_ioctl+0x24b/0x39f0 [ 257.131705] ? avc_ss_reset+0x100/0x100 [ 257.135694] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 257.140895] ? __lock_acquire+0x655/0x42a0 [ 257.145138] ? lock_downgrade+0x6e0/0x6e0 [ 257.149305] ? trace_hardirqs_on+0x10/0x10 [ 257.153548] ? fsnotify+0x897/0x1110 [ 257.157275] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 257.162470] do_vfs_ioctl+0x75a/0xfe0 [ 257.166279] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 257.172002] ? ioctl_preallocate+0x1a0/0x1a0 [ 257.176684] ? security_file_ioctl+0x76/0xb0 [ 257.181102] ? security_file_ioctl+0x83/0xb0 [ 257.185516] SyS_ioctl+0x7f/0xb0 [ 257.188883] ? do_vfs_ioctl+0xfe0/0xfe0 [ 257.192867] do_syscall_64+0x1d5/0x640 [ 257.196767] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 257.201960] RIP: 0033:0x45cb29 [ 257.205149] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.212861] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 257.220137] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 15:13:16 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0xc, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:16 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x5, &(0x7f0000000100)=0xffffffff, 0x31) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0xfffffd7d}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @window={0x3, 0x3, 0x2}, @mss, @window={0x3, 0x4, 0x401}, @mss, @mss={0x2, 0x7}, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 257.227407] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 257.234678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 257.241953] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:16 executing program 3 (fault-call:1 fault-nth:20): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:16 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xf13bbe85db21a077) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 257.326082] FAULT_INJECTION: forcing a failure. [ 257.326082] name failslab, interval 1, probability 0, space 0, times 0 [ 257.350479] CPU: 0 PID: 12064 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 257.358394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.367838] Call Trace: [ 257.370440] dump_stack+0x1b2/0x283 [ 257.374083] should_fail.cold+0x10a/0x154 [ 257.378247] should_failslab+0xd6/0x130 [ 257.382230] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 257.386909] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 257.392636] ext4_getfsmap_datadev+0x3e3/0x1150 [ 257.397316] ? static_obj+0x50/0x50 [ 257.400951] ? unwind_get_return_address+0x51/0x90 [ 257.405885] ? __save_stack_trace+0x7b/0xd0 [ 257.410231] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.416208] ? sort+0x255/0x2c0 [ 257.419501] ext4_getfsmap+0x651/0x880 [ 257.423396] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.429373] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 257.434306] ? trace_hardirqs_on+0x10/0x10 [ 257.438548] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 257.444525] ? swap_inode_data+0x690/0x690 [ 257.448759] ext4_ioc_getfsmap+0x250/0x830 [ 257.452980] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 257.457639] ? trace_hardirqs_on+0x10/0x10 [ 257.461875] ? __lock_acquire+0x655/0x42a0 [ 257.466122] ? avc_has_extended_perms+0x6e2/0xbe0 [ 257.470968] ext4_ioctl+0x24b/0x39f0 [ 257.474675] ? avc_ss_reset+0x100/0x100 [ 257.478774] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 257.484043] ? __lock_acquire+0x655/0x42a0 [ 257.488273] ? lock_downgrade+0x6e0/0x6e0 [ 257.492412] ? trace_hardirqs_on+0x10/0x10 [ 257.496645] ? fsnotify+0x897/0x1110 [ 257.500359] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 257.505542] do_vfs_ioctl+0x75a/0xfe0 [ 257.509339] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 257.514974] ? ioctl_preallocate+0x1a0/0x1a0 [ 257.519394] ? security_file_ioctl+0x76/0xb0 [ 257.523805] ? security_file_ioctl+0x83/0xb0 [ 257.528213] SyS_ioctl+0x7f/0xb0 [ 257.531565] ? do_vfs_ioctl+0xfe0/0xfe0 [ 257.535540] do_syscall_64+0x1d5/0x640 [ 257.539438] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 257.544623] RIP: 0033:0x45cb29 [ 257.547799] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.555500] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 257.562756] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 257.570014] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 257.577270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 257.584527] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:16 executing program 1: r0 = semget$private(0x0, 0x4, 0x28) semctl$IPC_INFO(r0, 0x2, 0x3, &(0x7f0000000000)=""/75) r1 = socket$inet6(0xa, 0x3, 0x8) r2 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r1, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:18 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) 15:13:18 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) clock_getres(0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r2}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r6, r7) mount$fuseblk(&(0x7f0000000040)='/dev/loop0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='fuseblk\x00', 0x2000, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r7}, 0x2c, {[{@default_permissions='default_permissions'}, {@max_read={'max_read', 0x3d, 0x9}}, {@allow_other='allow_other'}], [{@smackfsdef={'smackfsdef'}}, {@fsmagic={'fsmagic'}}, {@context={'context', 0x3d, 'system_u'}}, {@subj_role={'subj_role', 0x3d, ':^-}'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@audit='audit'}, {@fsname={'fsname', 0x3d, '\xdd$'}}]}}) 15:13:18 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x717, 0x6}, @window={0x3, 0x4, 0x401}, @mss={0x2, 0x2}, @sack_perm, @window={0x3, 0xffff, 0x4}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:18 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) 15:13:18 executing program 3 (fault-call:1 fault-nth:21): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:18 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket$kcm(0x10, 0x2, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000009000000280003800800010002000000140002007663616e300000000000000000000002"], 0x3c}}, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="7b52797000ffdbdf250a00"/20], 0x38}, 0x1, 0x0, 0x0, 0x4000040}, 0x31725c2e3f2a9d06) r3 = socket$inet6(0xa, 0x3, 0x8) r4 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r4, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r3, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:19 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0), 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 260.021026] FAULT_INJECTION: forcing a failure. [ 260.021026] name failslab, interval 1, probability 0, space 0, times 0 [ 260.050731] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 260.086702] CPU: 0 PID: 12092 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 260.094613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.103961] Call Trace: [ 260.106555] dump_stack+0x1b2/0x283 [ 260.110196] should_fail.cold+0x10a/0x154 [ 260.114352] should_failslab+0xd6/0x130 [ 260.118326] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 260.123001] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 260.128718] ext4_getfsmap_datadev+0x3e3/0x1150 [ 260.133385] ? static_obj+0x50/0x50 15:13:19 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x80000, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_MODE_GETFB(0xffffffffffffffff, 0xc01c64ad, &(0x7f0000000180)={0x1, 0x80000000, 0x5ae7b016, 0x279, 0x9, 0x0, 0x100}) ioctl$VIDIOC_TRY_EXT_CTRLS(r2, 0xc0205649, &(0x7f00000001c0)={0x4, 0x9, 0x6, 0xffffffffffffffff, 0x0, &(0x7f0000000140)={0x9b0953, 0x1, [], @p_u8=&(0x7f0000000040)=0x1}}) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000240)={0x800, 0x200, 0x0, 'queue0\x00', 0x20}) 15:13:19 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e20, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 260.137011] ? unwind_get_return_address+0x51/0x90 [ 260.141936] ? __save_stack_trace+0x7b/0xd0 [ 260.146264] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.152236] ? sort+0x255/0x2c0 [ 260.155521] ext4_getfsmap+0x651/0x880 [ 260.159403] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.165370] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 260.170296] ? trace_hardirqs_on+0x10/0x10 [ 260.174525] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.177074] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 260.180499] ? swap_inode_data+0x690/0x690 [ 260.180526] ext4_ioc_getfsmap+0x250/0x830 [ 260.197518] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 260.201398] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 260.202180] ? trace_hardirqs_on+0x10/0x10 [ 260.214968] ? __lock_acquire+0x655/0x42a0 [ 260.219215] ? avc_has_extended_perms+0x6e2/0xbe0 [ 260.222563] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'. [ 260.224052] ext4_ioctl+0x24b/0x39f0 [ 260.224063] ? avc_ss_reset+0x100/0x100 [ 260.224076] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 260.224087] ? __lock_acquire+0x655/0x42a0 [ 260.224095] ? lock_downgrade+0x6e0/0x6e0 [ 260.224113] ? trace_hardirqs_on+0x10/0x10 [ 260.224126] ? fsnotify+0x897/0x1110 [ 260.224139] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 260.237503] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 260.240362] do_vfs_ioctl+0x75a/0xfe0 [ 260.240376] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 15:13:19 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x17, &(0x7f0000000280)=0x81b, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x300, 0x0, 0x0, {0x2, 0x0, 0xc}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x64044894}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfffffffe}}, 0x0, 0x6, 0x15, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @empty}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @timestamp, @window={0x3, 0x3ff}, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 260.240387] ? ioctl_preallocate+0x1a0/0x1a0 [ 260.240405] ? security_file_ioctl+0x76/0xb0 [ 260.293721] ? security_file_ioctl+0x83/0xb0 [ 260.298128] SyS_ioctl+0x7f/0xb0 [ 260.301492] ? do_vfs_ioctl+0xfe0/0xfe0 [ 260.305466] do_syscall_64+0x1d5/0x640 [ 260.309358] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 260.314543] RIP: 0033:0x45cb29 [ 260.317738] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 260.325446] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:13:19 executing program 3 (fault-call:1 fault-nth:22): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 260.332712] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 260.339973] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 260.347233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 260.354480] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:19 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss={0x2, 0xffffffff}, @window={0x3, 0x4, 0x401}, @mss, @mss={0x2, 0x2}, @window={0x3, 0xffff, 0x97}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 260.445706] FAULT_INJECTION: forcing a failure. [ 260.445706] name failslab, interval 1, probability 0, space 0, times 0 [ 260.482454] CPU: 1 PID: 12130 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 260.490364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.499713] Call Trace: [ 260.502303] dump_stack+0x1b2/0x283 [ 260.505941] should_fail.cold+0x10a/0x154 [ 260.510090] should_failslab+0xd6/0x130 [ 260.514323] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 260.518995] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 260.524715] ext4_getfsmap_datadev+0x3e3/0x1150 [ 260.529383] ? static_obj+0x50/0x50 [ 260.533005] ? unwind_get_return_address+0x51/0x90 [ 260.537935] ? __save_stack_trace+0x7b/0xd0 [ 260.542266] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.548234] ? sort+0x255/0x2c0 [ 260.551520] ext4_getfsmap+0x651/0x880 [ 260.555406] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.561377] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 260.566302] ? trace_hardirqs_on+0x10/0x10 [ 260.570534] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 260.576511] ? swap_inode_data+0x690/0x690 [ 260.580758] ext4_ioc_getfsmap+0x250/0x830 [ 260.584989] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 260.589658] ? trace_hardirqs_on+0x10/0x10 [ 260.593905] ? __lock_acquire+0x655/0x42a0 [ 260.598155] ? avc_has_extended_perms+0x6e2/0xbe0 [ 260.603004] ext4_ioctl+0x24b/0x39f0 [ 260.606724] ? avc_ss_reset+0x100/0x100 [ 260.610699] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 260.615974] ? __lock_acquire+0x655/0x42a0 [ 260.620206] ? lock_downgrade+0x6e0/0x6e0 [ 260.624360] ? trace_hardirqs_on+0x10/0x10 [ 260.628593] ? fsnotify+0x897/0x1110 [ 260.632310] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 260.637510] do_vfs_ioctl+0x75a/0xfe0 [ 260.641308] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 260.646928] ? ioctl_preallocate+0x1a0/0x1a0 [ 260.651445] ? security_file_ioctl+0x76/0xb0 [ 260.655860] ? security_file_ioctl+0x83/0xb0 [ 260.660264] SyS_ioctl+0x7f/0xb0 [ 260.663625] ? do_vfs_ioctl+0xfe0/0xfe0 [ 260.667599] do_syscall_64+0x1d5/0x640 [ 260.671493] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 260.676678] RIP: 0033:0x45cb29 [ 260.679861] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 260.687562] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 260.694826] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 260.702088] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 260.709351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 260.716612] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:22 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r1}], 0x1, 0xfffffffffffffff8) dup2(r0, r1) fcntl$setown(r1, 0x8, 0x0) tkill(0x0, 0x14) 15:13:22 executing program 3 (fault-call:1 fault-nth:23): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:22 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e22, @remote}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:22 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) sendmsg$AUDIT_SET(r1, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, 0x3e9, 0x4, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x1, r2, 0xff, 0x2, 0x7f, 0x8, 0x0, 0x9}, ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x4810}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockname$l2tp(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, &(0x7f0000000380)=0x10) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f0000000040), &(0x7f0000000080)=0xc) r5 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, r5) pkey_free(r5) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x80, 0x0, @private2={0xfc, 0x2, [], 0x1}, 0x2}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:22 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{}], 0x1, 0xfffffffffffffff8) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setown(0xffffffffffffffff, 0x8, r0) tkill(r0, 0x14) 15:13:22 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) 15:13:22 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYRESOCT=r1, @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c65726f7570ee42643d2e6e510327ffa27cec6ad2b346276331221336901f3ee51636ed54a11f26b4332cb501453abc7c602e61f6d913ab1143a9551177b29a6695983f7a811d6111196e22ed238a913a3e3a0fff0266183a13da3dbb3d65d3d618f9eb7f53409da8155d4edd58769a1f8e569cf0", @ANYRESDEC, @ANYRES16]) [ 263.062724] FAULT_INJECTION: forcing a failure. [ 263.062724] name failslab, interval 1, probability 0, space 0, times 0 [ 263.110188] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1001 sclass=netlink_route_socket pid=12171 comm=syz-executor.1 [ 263.121589] CPU: 1 PID: 12160 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 263.130404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.139756] Call Trace: [ 263.142346] dump_stack+0x1b2/0x283 [ 263.145980] should_fail.cold+0x10a/0x154 [ 263.150128] should_failslab+0xd6/0x130 [ 263.154102] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 263.158771] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 263.164492] ext4_getfsmap_datadev+0x3e3/0x1150 [ 263.169163] ? static_obj+0x50/0x50 [ 263.172788] ? unwind_get_return_address+0x51/0x90 [ 263.177710] ? __save_stack_trace+0x7b/0xd0 [ 263.182033] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.188000] ? sort+0x255/0x2c0 [ 263.191283] ext4_getfsmap+0x651/0x880 [ 263.195168] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.201139] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 263.206059] ? trace_hardirqs_on+0x10/0x10 [ 263.210290] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.216267] ? swap_inode_data+0x690/0x690 [ 263.220518] ext4_ioc_getfsmap+0x250/0x830 [ 263.224745] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 263.229413] ? trace_hardirqs_on+0x10/0x10 [ 263.233649] ? __lock_acquire+0x655/0x42a0 [ 263.237892] ? avc_has_extended_perms+0x6e2/0xbe0 [ 263.242731] ext4_ioctl+0x24b/0x39f0 [ 263.246436] ? avc_ss_reset+0x100/0x100 [ 263.250406] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 263.255592] ? __lock_acquire+0x655/0x42a0 [ 263.259822] ? lock_downgrade+0x6e0/0x6e0 [ 263.263977] ? trace_hardirqs_on+0x10/0x10 [ 263.268208] ? fsnotify+0x897/0x1110 [ 263.271911] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 263.277076] do_vfs_ioctl+0x75a/0xfe0 [ 263.280856] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 263.286454] ? ioctl_preallocate+0x1a0/0x1a0 [ 263.290841] ? security_file_ioctl+0x76/0xb0 [ 263.295222] ? security_file_ioctl+0x83/0xb0 [ 263.299605] SyS_ioctl+0x7f/0xb0 [ 263.302944] ? do_vfs_ioctl+0xfe0/0xfe0 [ 263.306896] do_syscall_64+0x1d5/0x640 [ 263.310763] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 263.315931] RIP: 0033:0x45cb29 [ 263.319096] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.326788] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 263.334074] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 263.341320] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 263.348565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 15:13:22 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100), 0x0, 0x8040}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:22 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x5, 0x0, 0x0, {0x0, 0x0, 0x2}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40004001}, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x29}}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e25, @private=0xa010101}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0x7, 0x3f}, @mss={0x2, 0x10003}, @mss={0x2, 0xfffffffd}, @window={0x3, 0x4, 0x401}, @timestamp, @sack_perm, @window={0x3, 0xffff, 0x1}, @window={0x3, 0x8}], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 263.355820] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:22 executing program 3 (fault-call:1 fault-nth:24): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:22 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r2}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id'}}) 15:13:22 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20000000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 263.459078] FAULT_INJECTION: forcing a failure. [ 263.459078] name failslab, interval 1, probability 0, space 0, times 0 [ 263.501494] CPU: 1 PID: 12191 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 263.509406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.518754] Call Trace: [ 263.521348] dump_stack+0x1b2/0x283 [ 263.524987] should_fail.cold+0x10a/0x154 [ 263.529146] should_failslab+0xd6/0x130 [ 263.533128] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 263.537805] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 263.543522] ext4_getfsmap_datadev+0x3e3/0x1150 [ 263.548186] ? static_obj+0x50/0x50 [ 263.551811] ? unwind_get_return_address+0x51/0x90 [ 263.556734] ? __save_stack_trace+0x7b/0xd0 [ 263.561057] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.571365] ? sort+0x255/0x2c0 [ 263.574647] ext4_getfsmap+0x651/0x880 [ 263.578535] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.584537] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 263.589462] ? trace_hardirqs_on+0x10/0x10 [ 263.593692] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 263.599670] ? swap_inode_data+0x690/0x690 [ 263.603921] ext4_ioc_getfsmap+0x250/0x830 [ 263.608158] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 263.612818] ? trace_hardirqs_on+0x10/0x10 [ 263.617038] ? __lock_acquire+0x655/0x42a0 [ 263.621263] ? avc_has_extended_perms+0x6e2/0xbe0 [ 263.626083] ext4_ioctl+0x24b/0x39f0 [ 263.629791] ? avc_ss_reset+0x100/0x100 [ 263.633758] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 263.638942] ? __lock_acquire+0x655/0x42a0 [ 263.643168] ? lock_downgrade+0x6e0/0x6e0 [ 263.647317] ? trace_hardirqs_on+0x10/0x10 [ 263.651533] ? fsnotify+0x897/0x1110 [ 263.655234] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 263.660408] do_vfs_ioctl+0x75a/0xfe0 [ 263.664196] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 263.669801] ? ioctl_preallocate+0x1a0/0x1a0 [ 263.674203] ? security_file_ioctl+0x76/0xb0 [ 263.678588] ? security_file_ioctl+0x83/0xb0 [ 263.682987] SyS_ioctl+0x7f/0xb0 [ 263.686368] ? do_vfs_ioctl+0xfe0/0xfe0 [ 263.690321] do_syscall_64+0x1d5/0x640 [ 263.694189] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 263.699379] RIP: 0033:0x45cb29 [ 263.702543] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.710225] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 263.717468] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 263.724712] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 263.731959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 263.739206] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:22 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r1}], 0x1, 0xfffffffffffffff8) dup2(r0, r1) fcntl$setown(r1, 0x8, 0x0) tkill(0x0, 0x14) 15:13:22 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) syz_init_net_socket$rose(0xb, 0x5, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='fuseblk\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x382}}]}}) 15:13:22 executing program 3 (fault-call:1 fault-nth:25): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:22 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_IRQ_BUSID(r4, 0xc0106403, &(0x7f0000000340)={0x7, 0xf8, 0x10000, 0x8}) setrlimit(0x7, &(0x7f0000000000)) socket$alg(0x26, 0x5, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$TIPC_DEST_DROPPABLE(r6, 0x10f, 0x81, &(0x7f0000000180)=0xce9, 0x4) sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="090000000000000089fffec1b8095a8f9620b300001f000000"], 0x14}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="ac00ffffaad147e8c12c427526fab9aab46d", @ANYRES16=r5, @ANYBLOB="08002bbd7000ffdbdf25110000008f00ac00cb422f90b61e17286bc937862a880f9ceb80e1c91b1184a7852a13a315f7561cd42bc982e117868276695efa864cf6866f12248314d18ceea1c2dcb94ec7aa377f1fb2529c4c947c07692ad9bed6fc8e635fa3835fc27079755c27ab2464752f3de1e016b95902123ff357af11ebe2bd5a2a19fb974fc0ff1f34189fa4ec0abfa8013a0dbec6ec677a8051000600140102000000"], 0xac}, 0x1, 0x0, 0x0, 0x800}, 0x604c800) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)}], 0x1, 0x0) 15:13:22 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x201, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x6004c095}, 0x2000c000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e22, 0x0, @mcast2, 0x7}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, &(0x7f0000000400)={0x0, @bt={0x40, 0x5b, 0x0, 0x1, 0x10001, 0x7, 0x401, 0x6, 0xfffffffd, 0x0, 0x7fffffff, 0x0, 0x1, 0xef6f, 0x0, 0x8, {0x0, 0x7fff}, 0x1, 0x5}}) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000540)=[@timestamp, @timestamp, @timestamp, @window={0x3, 0x4, 0x401}, @window={0x3, 0x7, 0xb0a}, @sack_perm, @window={0x3, 0xffff, 0x1}, @mss={0x2, 0x8}, @timestamp], 0x9) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e23, @private=0xa010101}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 263.911239] FAULT_INJECTION: forcing a failure. [ 263.911239] name failslab, interval 1, probability 0, space 0, times 0 [ 263.947923] CPU: 0 PID: 12224 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 263.956360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.965711] Call Trace: [ 263.968331] dump_stack+0x1b2/0x283 [ 263.971969] should_fail.cold+0x10a/0x154 [ 263.976121] should_failslab+0xd6/0x130 [ 263.980098] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 263.984779] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 263.990498] ext4_getfsmap_datadev+0x3e3/0x1150 [ 263.995165] ? static_obj+0x50/0x50 [ 263.998785] ? unwind_get_return_address+0x51/0x90 [ 264.003709] ? __save_stack_trace+0x7b/0xd0 [ 264.008032] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 264.014002] ? sort+0x255/0x2c0 [ 264.017284] ext4_getfsmap+0x651/0x880 [ 264.021170] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 264.027137] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 264.032062] ? trace_hardirqs_on+0x10/0x10 [ 264.036290] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 264.042265] ? swap_inode_data+0x690/0x690 [ 264.046517] ext4_ioc_getfsmap+0x250/0x830 [ 264.050743] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 264.055410] ? trace_hardirqs_on+0x10/0x10 [ 264.059652] ? __lock_acquire+0x655/0x42a0 [ 264.063905] ? avc_has_extended_perms+0x6e2/0xbe0 [ 264.068748] ext4_ioctl+0x24b/0x39f0 [ 264.072457] ? avc_ss_reset+0x100/0x100 [ 264.076439] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 264.081627] ? __lock_acquire+0x655/0x42a0 [ 264.085856] ? lock_downgrade+0x6e0/0x6e0 [ 264.090048] ? trace_hardirqs_on+0x10/0x10 [ 264.094270] ? fsnotify+0x897/0x1110 [ 264.097975] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 264.103141] do_vfs_ioctl+0x75a/0xfe0 [ 264.106929] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 264.112589] ? ioctl_preallocate+0x1a0/0x1a0 [ 264.116981] ? security_file_ioctl+0x76/0xb0 [ 264.121365] ? security_file_ioctl+0x83/0xb0 [ 264.125760] SyS_ioctl+0x7f/0xb0 [ 264.129116] ? do_vfs_ioctl+0xfe0/0xfe0 [ 264.133068] do_syscall_64+0x1d5/0x640 [ 264.136934] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 264.142097] RIP: 0033:0x45cb29 [ 264.145266] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 264.153061] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 264.160306] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 264.167588] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 264.174833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 264.182111] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:25 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:25 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0x1, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r1, 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:25 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726fc57a0f0d4d93060b09c333a3ca7e380375705f69643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$TCXONC(r4, 0x540a, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r7}, [@IFLA_MASTER={0x8, 0xa, r9}]}, 0x28}}, 0x0) ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000300)={@mcast1, @local, @remote, 0x2, 0x40, 0x2, 0x100, 0x6, 0xe00082, r9}) ioctl$FBIOGET_FSCREENINFO(r2, 0x4602, &(0x7f0000000000)) 15:13:25 executing program 3 (fault-call:1 fault-nth:26): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:25 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) setsockopt$netrom_NETROM_IDLE(0xffffffffffffffff, 0x103, 0x7, &(0x7f0000000240)=0x5, 0x4) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) accept$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @dev}}, &(0x7f0000000040)=0x1c) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:25 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r1}], 0x1, 0xfffffffffffffff8) dup2(r0, r1) fcntl$setown(r1, 0x8, 0x0) tkill(0x0, 0x14) [ 266.110274] FAULT_INJECTION: forcing a failure. [ 266.110274] name failslab, interval 1, probability 0, space 0, times 0 [ 266.141868] CPU: 1 PID: 12258 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 266.149784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.159140] Call Trace: [ 266.161732] dump_stack+0x1b2/0x283 [ 266.165366] should_fail.cold+0x10a/0x154 [ 266.169517] should_failslab+0xd6/0x130 [ 266.173488] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 266.178166] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 266.183884] ext4_getfsmap_datadev+0x3e3/0x1150 [ 266.188556] ? static_obj+0x50/0x50 [ 266.192180] ? unwind_get_return_address+0x51/0x90 [ 266.197106] ? __save_stack_trace+0x7b/0xd0 [ 266.201432] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 266.207398] ? sort+0x255/0x2c0 [ 266.210676] ext4_getfsmap+0x651/0x880 [ 266.214560] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 266.220532] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 266.225457] ? trace_hardirqs_on+0x10/0x10 [ 266.229688] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 266.235667] ? swap_inode_data+0x690/0x690 [ 266.239922] ext4_ioc_getfsmap+0x250/0x830 [ 266.244156] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 266.248825] ? trace_hardirqs_on+0x10/0x10 [ 266.253074] ? __lock_acquire+0x655/0x42a0 [ 266.257324] ? avc_has_extended_perms+0x6e2/0xbe0 [ 266.262173] ext4_ioctl+0x24b/0x39f0 [ 266.265884] ? avc_ss_reset+0x100/0x100 [ 266.269863] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 266.275050] ? __lock_acquire+0x655/0x42a0 [ 266.279281] ? lock_downgrade+0x6e0/0x6e0 [ 266.283436] ? trace_hardirqs_on+0x10/0x10 [ 266.287669] ? fsnotify+0x897/0x1110 [ 266.291382] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 266.296572] do_vfs_ioctl+0x75a/0xfe0 [ 266.300373] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 266.305993] ? ioctl_preallocate+0x1a0/0x1a0 [ 266.310411] ? security_file_ioctl+0x76/0xb0 [ 266.314823] ? security_file_ioctl+0x83/0xb0 [ 266.319238] SyS_ioctl+0x7f/0xb0 [ 266.322597] ? do_vfs_ioctl+0xfe0/0xfe0 [ 266.330743] do_syscall_64+0x1d5/0x640 [ 266.334637] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 266.339819] RIP: 0033:0x45cb29 [ 266.342998] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.350702] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:13:25 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffff5f}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:25 executing program 1: socket$bt_rfcomm(0x1f, 0x1, 0x3) r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000040)={r3, r4/1000+60000}, 0x10) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:25 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e22, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @sack_perm, @mss, @sack_perm, @mss={0x2, 0x40}, @mss={0x2, 0x1}], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:25 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @mss={0x2, 0x5}, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @private=0xa010101}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 266.357966] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 266.365231] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 266.380742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 266.388007] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:25 executing program 0: setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x580, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x41, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xe, 0xb, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xdbe5}, [@jmp={0x5, 0x1, 0x9, 0x5, 0x2, 0xc, 0xffffffffffffffff}, @map, @map_val={0x18, 0x7, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x5}, @map, @generic={0x5, 0x0, 0x3, 0x2800, 0x9}]}, &(0x7f0000000480)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x1, [], 0x0, 0x2a, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x4, 0x2, 0x5, 0x5}, 0x10, 0xffffffffffffffff}, 0x78) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xfc}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e25}, 0x10) 15:13:25 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0f3a587bce14fc8e5b1aa8a74764643d", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) r1 = socket(0x10, 0x803, 0x0) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000340)='/dev/full\x00', 0x846c02, 0x0) sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x34, 0x3, 0x3, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x1000}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x81}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xacd}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendto$rose(r3, &(0x7f0000000240)="2afbb4a18ff96c45679d013edee977cd97ad2b0c642a59b70f2478122d763c2fadfde4b4f2afa0dc602c64897490ff588316d45e6598a1277d1c6ec98e7db34bf5ff070c3eb1a6774a04077e23bf444e1e3d4d00b6e22d056fb3df26ea3763cd9888242310f86d82ee8debbc105f7c7d09dcda9d378ad9e2", 0x78, 0x81, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000140), &(0x7f00000001c0)=0x4) prctl$PR_GET_TIMERSLACK(0x1e) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/mixer\x00', 0x0, 0x0) ioctl$SOUND_MIXER_READ_CAPS(r4, 0x80044dfc, &(0x7f0000000300)) 15:13:28 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:28 executing program 3 (fault-call:1 fault-nth:27): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:28 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:28 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r2}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x1, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x7}}, {@max_read={'max_read', 0x3d, 0x3f}}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}]}}) 15:13:28 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0xfffffffd, @local, 0xfffffff9}, 0x1c) setuid(0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r3) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x2000d0, &(0x7f0000000440)=ANY=[@ANYBLOB='^rans=xen,dfltuid=', @ANYRESHEX=0x0, @ANYBLOB="0000009755696400000000000000000000000000000400", @ANYRESDEC=0x0, @ANYBLOB=',measure,euid=', @ANYRESDEC=r3, @ANYBLOB=',smackfstransmute=/dev/binder#\x00,dont_measure,measure,dont_appraise,seclabel,\x00']) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@remote, @in=@local, 0x4e23, 0xfff, 0x4e21, 0x0, 0x2, 0xa0, 0x0, 0x87, 0x0, r3}, {0x10000, 0xffffffff, 0xd54, 0xda90, 0xffffffff7fffffff, 0x3, 0x2, 0x1}, {0xffffffffffff7fff, 0x2, 0x2, 0x9}, 0x7f, 0x0, 0x0, 0x1, 0x3, 0x2}, {{@in=@multicast1, 0x4d5, 0x3c}, 0xa, @in=@empty, 0x3503, 0x3, 0x3, 0x7f, 0x1, 0x3ff, 0x40}}, 0xe8) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r8 = dup2(r7, r6) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r8, &(0x7f0000000200)={0x3, 0x40, 0xfa04, {{0x6000000, 0x0, 0x0, @private0={0xfc, 0x0, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7]}}, {0xa, 0x0, 0x0, @mcast1}, r9}}, 0x48) write$RDMA_USER_CM_CMD_ACCEPT(r5, &(0x7f0000000180)={0x8, 0x120, 0xfa00, {0x3, {0x2, 0x2, "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", 0x1f, 0xfa, 0x5, 0x80, 0xd, 0xff, 0x0, 0x1}, r9}}, 0x128) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:28 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 269.105848] FAULT_INJECTION: forcing a failure. [ 269.105848] name failslab, interval 1, probability 0, space 0, times 0 [ 269.141569] CPU: 0 PID: 12327 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 15:13:28 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000400)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 269.149488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.158840] Call Trace: [ 269.161427] dump_stack+0x1b2/0x283 [ 269.165066] should_fail.cold+0x10a/0x154 [ 269.169219] should_failslab+0xd6/0x130 [ 269.173190] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 269.177861] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 269.183580] ext4_getfsmap_datadev+0x3e3/0x1150 [ 269.188243] ? static_obj+0x50/0x50 [ 269.191864] ? unwind_get_return_address+0x51/0x90 [ 269.196787] ? __save_stack_trace+0x7b/0xd0 [ 269.201114] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 269.207084] ? sort+0x255/0x2c0 [ 269.210371] ext4_getfsmap+0x651/0x880 [ 269.214263] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 269.220236] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 269.225160] ? trace_hardirqs_on+0x10/0x10 [ 269.229394] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 269.235370] ? swap_inode_data+0x690/0x690 [ 269.239623] ext4_ioc_getfsmap+0x250/0x830 [ 269.243856] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 269.248610] ? trace_hardirqs_on+0x10/0x10 15:13:28 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20000885) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 269.252854] ? __lock_acquire+0x655/0x42a0 [ 269.257097] ? avc_has_extended_perms+0x6e2/0xbe0 [ 269.261941] ext4_ioctl+0x24b/0x39f0 [ 269.265655] ? avc_ss_reset+0x100/0x100 [ 269.269652] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 269.274838] ? __lock_acquire+0x655/0x42a0 [ 269.279073] ? lock_downgrade+0x6e0/0x6e0 [ 269.283223] ? trace_hardirqs_on+0x10/0x10 [ 269.287454] ? fsnotify+0x897/0x1110 [ 269.291168] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 269.296356] do_vfs_ioctl+0x75a/0xfe0 [ 269.300153] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 15:13:28 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 269.305774] ? ioctl_preallocate+0x1a0/0x1a0 [ 269.310189] ? security_file_ioctl+0x76/0xb0 [ 269.314594] ? security_file_ioctl+0x83/0xb0 [ 269.319018] SyS_ioctl+0x7f/0xb0 [ 269.322394] ? do_vfs_ioctl+0xfe0/0xfe0 [ 269.326369] do_syscall_64+0x1d5/0x640 [ 269.330259] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 269.335440] RIP: 0033:0x45cb29 [ 269.338631] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 269.346336] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 15:13:28 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:28 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000000)={0xc, 0x8, [], [@ra={0x5, 0x2, 0x3f}, @jumbo={0xc2, 0x4, 0x3}, @pad1, @pad1, @jumbo={0xc2, 0x4, 0x6cbacdf6}, @hao={0xc9, 0x10, @remote}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @jumbo={0xc2, 0x4, 0x1}, @ra={0x5, 0x2, 0xfff7}]}, 0x50) r1 = socket$inet6(0xa, 0x3, 0x8) r2 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r1, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:28 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x53, &(0x7f0000000000), &(0x7f0000000040)=0x4) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 269.353598] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 269.360868] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 269.368132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 269.375395] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:31 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:31 executing program 3 (fault-call:1 fault-nth:28): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:31 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f00000002c0)=0x11, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0xffffffe0, 0x7fffffdf, 0x0, 0x3ff}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000400)={@in={0x2, 0x4e20, @local}, {&(0x7f0000000300)=""/129, 0x81}, &(0x7f00000003c0)}, 0xa0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:31 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000040)='./file0\x00', 0x8000, 0x7, &(0x7f0000001440)=[{&(0x7f0000000100), 0x0, 0x7}, {&(0x7f0000000180)="37b1", 0x2, 0xc2be}, {&(0x7f00000001c0)="929ca00c93c42f285d330d06a64a71c001ca12fc4f5cfcacee43ce4be7ec53442d6f8d2a3d05d24e69cb614022b376f1a7f33c582fce95707d04c4a114873698e3874cad7635f5be1cb49bc51b6feedf33eb71b3", 0x54, 0x4}, {&(0x7f0000000240)="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", 0x1000, 0x91}, {&(0x7f0000001240)="36ebab568cec1a82d3bc7f1b0615331f1ecac8785af9b15a5dd7bbbbe0074b69ba298281f59f67d37eabb4ff09f9910c8e7de3f1ca75381a26807096d9b7531bab5fba69ee8752255030dddaf702bb2eb153e5dde29367c6838c750d22d4cb990f25ee47621741222a862733a4ed36805e7c2ceddbb82b34d9fb2aeea46944976bc04c47d7fc067a08252d36f679ca63775ea99bd8cec186ab877f8c7b3b5f86bf75837db7bf7da4c5260677a9a43e89ea25940e1408cd", 0xb7, 0x10000}, {&(0x7f0000001300)="da2b819399dc399548039b060476fd3b213f7deebb9b4129f55e64916e39eb6caffa635accba0169829c2803f5b4c76c7549e24b6ab5ddbaf36909f0b2c4d4d987504c9e052660fb2650af64510d64e7c65db9c817724ae5d7ec4f358c3b15b039d61904f6d1a218756098b42895d4b0453341abb46bdd2896ebe09b50dd2dc634fafa135d1a5565eca784044cccbc9a41b91d2c01bea038bd4db363b4ffae6659a39c22b5bacc0fd66fd105ab3ba9", 0xaf}, {&(0x7f0000001580)="67e3694b623547f1cf2585ee435a625d3dace69fda340d2439c79bdd7fe01d700460c18108f8fea4e2e408603efc894c39cc7c3eafc2d86286e8f8c5a0270909beee0614730fe072ce507af63c4791381f2bd2837011273e5d7cc81b4e54c0e028c75815ed1573a227cf0a054af015419eb5b8ee40d7", 0x76, 0x2}], 0x44008, &(0x7f0000001500)={[{@treelog='treelog'}, {@space_cache_v2='space_cache=v2'}, {@compress_algo={'compress', 0x3d, 'no'}}, {@ref_verify='ref_verify'}], [{@hash='hash'}, {@subj_role={'subj_role', 0x3d, ':$'}}, {@hash='hash'}, {@subj_role={'subj_role', 0x3d, '#({'}}, {@obj_user={'obj_user', 0x3d, '\xf1\xdc{V%)['}}]}) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$BLKTRACESTART(r3, 0x1274, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:31 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:31 executing program 2: r0 = socket(0x10, 0x803, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x32101, 0x0) ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000140)={0x6, 0x101, 0x20, 0x20, 0x8, "772332c93c8c4a86f2c56e93082b36c71d325c", 0x5, 0xe0}) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000)=0xffff0000, 0x4) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/vcs\x00', 0x100, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ') r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100)='NLBL_CIPSOv4\x00') sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYRESDEC, @ANYRES16=r4, @ANYRESOCT], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB="50200000914362f6e9a5d0cb6b1427c95fb08a9b5ec12bf5de58aeef", @ANYRES16=r4, @ANYBLOB="010027bd7000fbdbdf2501000000080001000300000008000200010000000cc00b800500030005000000080002000200000008000200f3ffffff07000200"], 0x3}, 0x1, 0x0, 0x0, 0x8c054}, 0x48080) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1004000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x1a8, r4, 0x8, 0x70bd27, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x130, 0x8, 0x0, 0x1, [{0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x55bca12d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7468d54c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x389e90a9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcc}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfffffffa}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f26ba6b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x74b63515}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e63e898}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x341ec7ca}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x8001}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x438ffc11}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xe2f506}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xaf}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x167df725}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6bc1eaa5}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7cc7303e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3a8ecdba}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xff}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x59}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x69991ebe}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x394738cb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ea1edca}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x373347b8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x282a3281}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6c}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5e832458}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x29c7d335}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x28, 0x8, 0x0, 0x1, [{0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xde}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6675c480}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}]}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000001600)=ANY=[@ANYBLOB="a8010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1a8}, 0x1, 0x0, 0x0, 0x14000}, 0xc0) sendmsg$NLBL_CIPSOV4_C_LIST(r2, &(0x7f0000000780)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000740)={&(0x7f0000000640)={0xfc, r4, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x88, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x388d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x90e4158}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2d42596e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8578}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3dceeee1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x99f85ce}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe2c2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x89cf}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4311acf2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x372b01a2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xad02}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc1cd}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x665d430a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40996393}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd789}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x1}, 0x2004c000) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000340), &(0x7f0000000380)=0x8) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:31 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e23, 0xff, @local, 0x5}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000040000000000000000000439a00000000000000000000550000000000000000000000000000006926ed0c00000000002a8400"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 272.137182] device lo entered promiscuous mode [ 272.151323] FAULT_INJECTION: forcing a failure. [ 272.151323] name failslab, interval 1, probability 0, space 0, times 0 [ 272.167971] Y­4`Ò˜: renamed from lo [ 272.196010] CPU: 0 PID: 12402 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 272.203921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.213273] Call Trace: [ 272.216125] dump_stack+0x1b2/0x283 [ 272.219760] should_fail.cold+0x10a/0x154 [ 272.223910] should_failslab+0xd6/0x130 [ 272.227885] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 272.232556] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 272.238273] ext4_getfsmap_datadev+0x3e3/0x1150 [ 272.242937] ? static_obj+0x50/0x50 [ 272.246562] ? unwind_get_return_address+0x51/0x90 [ 272.251485] ? __save_stack_trace+0x7b/0xd0 [ 272.255810] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.261770] ? sort+0x255/0x2c0 [ 272.265051] ext4_getfsmap+0x651/0x880 [ 272.268937] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.274906] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 272.279821] ? trace_hardirqs_on+0x10/0x10 [ 272.284032] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.289987] ? swap_inode_data+0x690/0x690 [ 272.294228] ext4_ioc_getfsmap+0x250/0x830 [ 272.298446] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 272.303374] ? trace_hardirqs_on+0x10/0x10 [ 272.307600] ? __lock_acquire+0x655/0x42a0 [ 272.311872] ? avc_has_extended_perms+0x6e2/0xbe0 [ 272.316700] ext4_ioctl+0x24b/0x39f0 [ 272.320409] ? avc_ss_reset+0x100/0x100 [ 272.324366] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 272.329531] ? __lock_acquire+0x655/0x42a0 [ 272.333750] ? lock_downgrade+0x6e0/0x6e0 [ 272.337885] ? trace_hardirqs_on+0x10/0x10 [ 272.342098] ? fsnotify+0x897/0x1110 [ 272.345794] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 272.350959] do_vfs_ioctl+0x75a/0xfe0 [ 272.354747] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 272.360364] ? ioctl_preallocate+0x1a0/0x1a0 [ 272.364772] ? security_file_ioctl+0x76/0xb0 [ 272.369167] ? security_file_ioctl+0x83/0xb0 [ 272.373560] SyS_ioctl+0x7f/0xb0 [ 272.376971] ? do_vfs_ioctl+0xfe0/0xfe0 [ 272.380925] do_syscall_64+0x1d5/0x640 [ 272.384794] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 272.389961] RIP: 0033:0x45cb29 15:13:31 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0xc, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 272.393130] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 272.400825] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 272.408071] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 272.415325] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 272.422600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 272.429854] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:31 executing program 3 (fault-call:1 fault-nth:29): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:31 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000)='SEG6\x00') 15:13:31 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x60044804}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 272.508717] FAULT_INJECTION: forcing a failure. [ 272.508717] name failslab, interval 1, probability 0, space 0, times 0 [ 272.540090] CPU: 0 PID: 12435 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 272.547996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.557350] Call Trace: [ 272.559939] dump_stack+0x1b2/0x283 [ 272.563571] should_fail.cold+0x10a/0x154 [ 272.567719] should_failslab+0xd6/0x130 [ 272.571691] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 272.576365] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 272.582084] ext4_getfsmap_datadev+0x3e3/0x1150 [ 272.586756] ? static_obj+0x50/0x50 [ 272.590379] ? unwind_get_return_address+0x51/0x90 [ 272.595306] ? __save_stack_trace+0x7b/0xd0 [ 272.599635] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.605605] ? sort+0x255/0x2c0 15:13:31 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x9f) openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r5}]}, 0x28}}, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r7) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r9) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r7}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r9}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@private1, @in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x4e23, 0x0, 0x4e21, 0x5, 0x0, 0x20, 0xa0, 0x1d, r5, r7}, {0xfffffffffffffc01, 0xfffffffffffffe00, 0x2, 0x200, 0x8, 0x3, 0x7, 0x80000001}, {0xfffffffffffffffa, 0x291, 0xfffffffffffffff8, 0x5}, 0x9, 0x6e6bb6, 0x1}, {{@in6=@mcast1, 0x4d2, 0x6c}, 0x2, @in6=@private0={0xfc, 0x0, [], 0x1}, 0x0, 0x4, 0x3, 0x5, 0xed, 0x2, 0x1}}, 0xe8) [ 272.608888] ext4_getfsmap+0x651/0x880 [ 272.612778] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.618749] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 272.623675] ? trace_hardirqs_on+0x10/0x10 [ 272.627909] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 272.633889] ? swap_inode_data+0x690/0x690 [ 272.638142] ext4_ioc_getfsmap+0x250/0x830 [ 272.642375] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 272.647050] ? trace_hardirqs_on+0x10/0x10 [ 272.651287] ? __lock_acquire+0x655/0x42a0 [ 272.655537] ? avc_has_extended_perms+0x6e2/0xbe0 [ 272.660384] ext4_ioctl+0x24b/0x39f0 [ 272.664092] ? avc_ss_reset+0x100/0x100 [ 272.668066] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 272.673257] ? __lock_acquire+0x655/0x42a0 [ 272.677489] ? lock_downgrade+0x6e0/0x6e0 [ 272.681643] ? trace_hardirqs_on+0x10/0x10 [ 272.685873] ? fsnotify+0x897/0x1110 [ 272.689588] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 272.694773] do_vfs_ioctl+0x75a/0xfe0 [ 272.698566] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 272.704184] ? ioctl_preallocate+0x1a0/0x1a0 [ 272.708596] ? security_file_ioctl+0x76/0xb0 [ 272.713006] ? security_file_ioctl+0x83/0xb0 [ 272.717409] SyS_ioctl+0x7f/0xb0 [ 272.720773] ? do_vfs_ioctl+0xfe0/0xfe0 [ 272.724743] do_syscall_64+0x1d5/0x640 [ 272.728634] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 272.733814] RIP: 0033:0x45cb29 [ 272.737003] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 272.744707] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 272.751972] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 272.759247] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 272.770159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 272.777426] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x9e9, 0x100) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000000040)={0x8, 0x2, 0xa000000, 0x10000, 'syz0\x00', 0x1f}) 15:13:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:34 executing program 3 (fault-call:1 fault-nth:30): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x0, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:34 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:34 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040)='batadv\x00') socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=@newlink={0x40, 0x10, 0x1, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_PHYS_SWITCH_ID={0x1f, 0x24, "e486106e6732d0d34bbcbdc45eadce3bc57127e13e24472cf5c173"}]}, 0x40}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000240)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x3c, r2, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004881}, 0x10) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) r8 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', 0x0, 0xa}) keyctl$unlink(0x9, 0x0, 0x0) r9 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r9, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) mount$fuseblk(&(0x7f0000000d00)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000d40)='fuseblk\x00', 0x40052, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRES16, @ANYBLOB="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", @ANYRESOCT, @ANYBLOB=',\x00']) [ 275.181213] FAULT_INJECTION: forcing a failure. [ 275.181213] name failslab, interval 1, probability 0, space 0, times 0 [ 275.226344] CPU: 1 PID: 12472 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 275.234258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.243616] Call Trace: [ 275.246210] dump_stack+0x1b2/0x283 [ 275.249845] should_fail.cold+0x10a/0x154 [ 275.253996] should_failslab+0xd6/0x130 [ 275.257968] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 275.262633] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 275.268346] ext4_getfsmap_datadev+0x3e3/0x1150 [ 275.273010] ? static_obj+0x50/0x50 [ 275.276631] ? unwind_get_return_address+0x51/0x90 [ 275.281552] ? __save_stack_trace+0x7b/0xd0 [ 275.285882] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.291857] ? sort+0x255/0x2c0 [ 275.295138] ext4_getfsmap+0x651/0x880 [ 275.299030] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.305002] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 275.309930] ? trace_hardirqs_on+0x10/0x10 [ 275.314170] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.320150] ? swap_inode_data+0x690/0x690 [ 275.324405] ext4_ioc_getfsmap+0x250/0x830 [ 275.328638] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 275.333307] ? trace_hardirqs_on+0x10/0x10 [ 275.337548] ? __lock_acquire+0x655/0x42a0 [ 275.341798] ? avc_has_extended_perms+0x6e2/0xbe0 [ 275.346645] ext4_ioctl+0x24b/0x39f0 [ 275.350353] ? avc_ss_reset+0x100/0x100 [ 275.354325] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 275.359510] ? __lock_acquire+0x655/0x42a0 [ 275.363743] ? lock_downgrade+0x6e0/0x6e0 [ 275.367899] ? trace_hardirqs_on+0x10/0x10 [ 275.372138] ? fsnotify+0x897/0x1110 15:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800, 0x1) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x100) ioctl$IOC_PR_CLEAR(r2, 0x401070cd, &(0x7f0000000100)={0x7}) ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, &(0x7f0000000000)={0x3, 0x1, 0x1d, 0x4, 0x92, &(0x7f0000000180)}) 15:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000000)={0x6, r5, 0x1}) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 275.375858] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 275.381047] do_vfs_ioctl+0x75a/0xfe0 [ 275.384850] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 275.390476] ? ioctl_preallocate+0x1a0/0x1a0 [ 275.394900] ? security_file_ioctl+0x76/0xb0 [ 275.399309] ? security_file_ioctl+0x83/0xb0 [ 275.403732] SyS_ioctl+0x7f/0xb0 [ 275.407094] ? do_vfs_ioctl+0xfe0/0xfe0 [ 275.411068] do_syscall_64+0x1d5/0x640 [ 275.414957] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 275.420138] RIP: 0033:0x45cb29 15:13:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0xffffffff, 0x40000007ffe, 0x3}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:34 executing program 2: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000740)='/dev/cachefiles\x00', 0x40, 0x0) ioctl$NBD_DISCONNECT(r0, 0xab08) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x200, 0x18a40) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r1, 0xc2604110, &(0x7f0000000240)={0x2, [[0x3, 0x1000, 0x81, 0x2, 0xffffffff, 0x5, 0xb88, 0xa0a], [0x983, 0x800, 0x4, 0x5, 0x2, 0x2, 0x80, 0x5], [0x7, 0xfffffff9, 0xffff, 0x5, 0x7111db35, 0xffff, 0x7, 0x800]], [], [{0x7972b976, 0xc6, 0x1, 0x0, 0x1, 0x1}, {0x100, 0x5, 0x1, 0x1, 0x0, 0x1}, {0x6, 0x6}, {0x4, 0x50, 0x0, 0x1}, {0x40, 0x2, 0x1, 0x0, 0x1, 0x1}, {0x7, 0x2, 0x0, 0x1}, {0x30, 0x81, 0x0, 0x1}, {0x5, 0x54, 0x0, 0x0, 0x1, 0x1}, {0x0, 0x3, 0x1, 0x1}, {0x9, 0x5, 0x0, 0x1, 0x0, 0x1}, {0x1, 0x7, 0x0, 0x1, 0x1}, {0x3, 0x8}], [], 0x2}) mount$overlay(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000540)='overlay\x00', 0x8000, &(0x7f0000000580)={[{@xino_on='xino=on'}, {@index_off='index=off'}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0/file0'}}, {@index_off='index=off'}, {@default_permissions='default_permissions'}], [{@smackfshat={'smackfshat'}}]}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcsa\x00', 0x2a0000, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000140)={0x45, 0xc7, 0x8}) r4 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) r5 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', r4, 0xa}) keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000600)={r4, 0x5, 0x12}, &(0x7f0000000640)={'enc=', 'raw', ' hash=', {'poly1305\x00'}}, &(0x7f00000006c0)="5173d036af", &(0x7f0000000700)=""/18) [ 275.423331] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.431212] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 275.438605] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 275.445873] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 275.453147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 275.460414] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:34 executing program 3 (fault-call:1 fault-nth:31): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f00000003c0)={0x2, 0x4f25, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 275.533177] overlayfs: unrecognized mount option "xino=on" or missing value [ 275.564445] FAULT_INJECTION: forcing a failure. [ 275.564445] name failslab, interval 1, probability 0, space 0, times 0 [ 275.595996] overlayfs: unrecognized mount option "xino=on" or missing value [ 275.608668] CPU: 1 PID: 12512 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 275.616574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.625927] Call Trace: [ 275.628523] dump_stack+0x1b2/0x283 [ 275.632157] should_fail.cold+0x10a/0x154 [ 275.636311] should_failslab+0xd6/0x130 [ 275.640284] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 275.644970] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 275.650698] ext4_getfsmap_datadev+0x3e3/0x1150 [ 275.655639] ? static_obj+0x50/0x50 [ 275.659273] ? unwind_get_return_address+0x51/0x90 [ 275.664339] ? __save_stack_trace+0x7b/0xd0 [ 275.668758] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.674822] ? sort+0x255/0x2c0 [ 275.678113] ext4_getfsmap+0x651/0x880 [ 275.682006] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.687980] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 275.692908] ? trace_hardirqs_on+0x10/0x10 [ 275.697148] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 275.703134] ? swap_inode_data+0x690/0x690 [ 275.707393] ext4_ioc_getfsmap+0x250/0x830 [ 275.711631] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 275.716304] ? trace_hardirqs_on+0x10/0x10 [ 275.720549] ? __lock_acquire+0x655/0x42a0 [ 275.724796] ? avc_has_extended_perms+0x6e2/0xbe0 [ 275.729642] ext4_ioctl+0x24b/0x39f0 [ 275.733352] ? avc_ss_reset+0x100/0x100 [ 275.737328] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 275.742516] ? __lock_acquire+0x655/0x42a0 15:13:34 executing program 2: io_setup(0x0, &(0x7f0000000000)=0x0) io_cancel(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x6, 0xffffffffffffffff, &(0x7f0000000240)="1011480457b13ba34ec31cf82457e926bf68c90613072c4f7e18e3f16cad19cb6d232764259cc103017db884db307b5f637a0a2d43116c4d9dc57e6c5d2898f796d70a95ce6226c029a72364f520672e7f882642", 0x54, 0x6be47867, 0x0, 0x2}, &(0x7f0000000140)) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 275.746747] ? lock_downgrade+0x6e0/0x6e0 [ 275.750901] ? trace_hardirqs_on+0x10/0x10 [ 275.755145] ? fsnotify+0x897/0x1110 [ 275.758864] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 275.764054] do_vfs_ioctl+0x75a/0xfe0 [ 275.767862] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 275.773484] ? ioctl_preallocate+0x1a0/0x1a0 [ 275.777909] ? security_file_ioctl+0x76/0xb0 [ 275.782315] ? security_file_ioctl+0x83/0xb0 [ 275.786723] SyS_ioctl+0x7f/0xb0 [ 275.790164] ? do_vfs_ioctl+0xfe0/0xfe0 [ 275.794125] do_syscall_64+0x1d5/0x640 [ 275.798001] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 275.803174] RIP: 0033:0x45cb29 [ 275.806435] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.814121] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 275.821511] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 275.828848] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 275.836097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 15:13:34 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x404, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x0) connect$inet(r1, &(0x7f0000000400)={0x2, 0x5e28, @rand_addr=0x64010102}, 0xffffffe9) 15:13:34 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$alg(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000180)="bedbd9eadeb8c6f7fb4a0a98b4a4933f0db42c239bf8fb9c2bc43cc98e4bce94bd68d3dfd60ba55eea36b12ce97ee2a60cd77c104777f96a65704996124d1a1b724cdd680e6f057035fe23fb039f9db7fea20abb7e56d07f2ee7442dfd44e7a738694cc435ad98f5a0affd058cc459f872253a643efdd1cd06abbd7e3d3bb00621c48840cfd71d82391d47875e868653b7538d8d425639242b798447520ee6d45a65", 0xa2}, {&(0x7f00000002c0)="c03939c8030841735a8a8bf7bf1ec7089cbb2ae2dca45ebed0537ee5419e2c11e7f532144b622dbfc1d18e23579aab3d1a18f750c5f270dc4bd4e586bfe217f8e1b144efb7344f18f869e8ddcd1a6e", 0x4f}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000000340)="428d216097292226821fb3eb34336f7768f445090638972bc88aa35b31176b428711172dadf92f04590f2ff352617a8ad3c64b1fef89c8cc2b51e128a3a07d7bcafad2ea8dfb5d7f63a14c071f4cf8dc63e0a54b95d4dbea7d066f69388c287d15f041c8f3b2f91e88cf9c7212b0c901792cbcf26ca86c35b87b914eadc3d32a6fa9e0472c9d5ec3a852dbf676d6cf972aeeab4db451d1521009a4d8918244c50f1808b8f761742cf92d", 0xaa}, {&(0x7f0000000400)="8f6731f890cda1c897d8205e8cf13a519a634f3d4431a2f8bc10ea1da7e295976dabc8063d2f341019f65a1c9073dd5028219c5c3aca016a2650a6320167eed59b8de93cee5d60084acccf913510d2baa4e1dd254e1420ae69be3453cd7e72accd56c3b18f8f6111ca2c7a750cef2d27f1f6eb729e39daa4a551ec8793c8f017b5d1fdfd6b8e", 0x86}, {&(0x7f00000004c0)="d2a5f6fb7c2d6a764104bdaeb72008ea8db4a33d33123ce1a7c396a311e6c9af3e84237dd6d459e0d47a6f90cd242063efa88e17f343ee93ad167d0113c4845b46accb3e36ab0f9906a919ca1b4e59aaf0a3e62b", 0x54}, {&(0x7f0000000540)="ad75242c4d6fedf243870649d1fb179d3bd21580878b0b4a1c8d8eed3982dfe831a22f9ae801111f6ea35ddd1a44620ab03d3c9421178174c8cc0d8acf3056825b1dfa6e0350c3e0c9ee5c7142e6b8601f110b702a4eb251cfabe0ce3155aca0154d7f5222b757519c43", 0x6a}, {&(0x7f00000005c0)="7f201986daaa97dabdf65aed09f9332954bd0355cc4850b27510fa7408a5f357d704c02860f7a7c6b4775797642391f02a796ebc2279d94c8886c9d6c0b88b55656c229e319214df9366eeb0ccb39c27ad830f9f5333a2e4deaf39753e37aa206538d84a8be950b704a810ebd5c0a4d6690a08c9583d6fb599d45db88fb7323173245b59d63527952ec0beb460a0bbfb31890d8a24da7065ea0bd721761cf4c853b5ebe72940", 0xa6}, {&(0x7f0000000040)="fce84fc3eba896d91a64951835f626d320df26070a955da3ba6c10afb820dcb1f5c4188d2b2d7a8d5713d4b2b66850148329e1fd85881b", 0x37}, {&(0x7f0000000100)="55868da34e4a7c613f8d97af4c395d8f2fb73bfa1c7802042321", 0x1a}], 0xa, 0x0, 0x0, 0x8850}, 0x20000800) r3 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) sched_setattr(r3, &(0x7f0000000000)={0x38, 0x0, 0x20, 0x1, 0x8000, 0x8, 0xffffffff, 0x81, 0x84, 0xffffffc0}, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 275.843349] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e20, 0x2, @private2, 0x7ffffffd}}, 0x0, 0x6, 0x4b, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a0000e1ff0000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@sack_perm, @timestamp, @sack_perm, @timestamp, @mss, @timestamp, @window={0x3, 0xffff, 0x1}, @sack_perm], 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:37 executing program 3 (fault-call:1 fault-nth:32): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:37 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x0, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:37 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:37 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$vim2m_VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000000)={0x2, 0x1f, 0x8000, 0x80800}) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c009f363572317bdb01c3725ed8e3e85c3177dc83fb75023656d94eac6b1e39dd433f03dbef3bc1eff5146b69d562808251a5f299f5658d1f5d55344cd1acb812f33c3fb2393afecf516dc9cb4de8"]) socket$inet_icmp(0x2, 0x2, 0x1) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r4, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x5, 0x0, 0x7, 0x5}, &(0x7f0000000140)=0x18) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f00000001c0)={r5, 0x80}, 0x8) 15:13:37 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=@routing={0x2e, 0x4, 0x0, 0x7, 0x0, [@empty, @mcast2]}, 0x28) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 278.210862] FAULT_INJECTION: forcing a failure. [ 278.210862] name failslab, interval 1, probability 0, space 0, times 0 [ 278.255206] CPU: 1 PID: 12556 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 278.263204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.272554] Call Trace: [ 278.275145] dump_stack+0x1b2/0x283 [ 278.278778] should_fail.cold+0x10a/0x154 [ 278.283042] should_failslab+0xd6/0x130 [ 278.287018] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 278.291796] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 278.297537] ext4_getfsmap_datadev+0x3e3/0x1150 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:37 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 278.302203] ? static_obj+0x50/0x50 [ 278.305827] ? unwind_get_return_address+0x51/0x90 [ 278.310755] ? __save_stack_trace+0x7b/0xd0 [ 278.315086] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.321069] ? sort+0x255/0x2c0 [ 278.324359] ext4_getfsmap+0x651/0x880 [ 278.328246] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.334217] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 278.339148] ? trace_hardirqs_on+0x10/0x10 [ 278.343383] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.349353] ? swap_inode_data+0x690/0x690 [ 278.353600] ext4_ioc_getfsmap+0x250/0x830 [ 278.357835] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 278.362504] ? trace_hardirqs_on+0x10/0x10 [ 278.366830] ? __lock_acquire+0x655/0x42a0 [ 278.371079] ? avc_has_extended_perms+0x6e2/0xbe0 [ 278.376016] ext4_ioctl+0x24b/0x39f0 [ 278.379726] ? avc_ss_reset+0x100/0x100 [ 278.383705] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 278.389037] ? __lock_acquire+0x655/0x42a0 [ 278.393267] ? lock_downgrade+0x6e0/0x6e0 [ 278.397425] ? trace_hardirqs_on+0x10/0x10 [ 278.401663] ? fsnotify+0x897/0x1110 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000140)=0x1, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x1}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20040000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@mss={0x2, 0x6dfa9dbf}, @window={0x3, 0xfffd}, @window={0x3, 0xbe, 0x3d}, @window={0x3, 0x3, 0x68}, @mss={0x2, 0x473}, @window={0x3, 0xfff8, 0x400}, @mss={0x2, 0x7}], 0x7) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 278.405382] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 278.410570] do_vfs_ioctl+0x75a/0xfe0 [ 278.414374] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 278.419996] ? ioctl_preallocate+0x1a0/0x1a0 [ 278.424418] ? security_file_ioctl+0x76/0xb0 [ 278.428828] ? security_file_ioctl+0x83/0xb0 [ 278.433234] SyS_ioctl+0x7f/0xb0 [ 278.436596] ? do_vfs_ioctl+0xfe0/0xfe0 [ 278.440571] do_syscall_64+0x1d5/0x640 [ 278.444467] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 278.449660] RIP: 0033:0x45cb29 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 278.452853] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 278.460558] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 278.467915] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 278.475184] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 278.482449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 278.489712] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x400001, 0x0) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:37 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0xc, &(0x7f00000003c0)=0xfffbffff, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[], 0x24}}, 0x8010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@mss={0x2, 0x5}, @mss={0x2, 0x8001}, @timestamp, @sack_perm, @timestamp, @mss={0x2, 0x7fff}, @timestamp, @timestamp], 0x29) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:37 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x1, 0x2) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x40) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000040), 0x10) getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000300)={0x0, 0x7ff, 0x9, 0x101, 0x7fff, 0xf7c, 0x0, 0x0, {0x0, @in={{0x2, 0x4e20, @remote}}, 0x9, 0x7, 0xe0000000, 0x401, 0x9}}, &(0x7f00000003c0)=0xb0) socket$inet6_sctp(0xa, 0x5, 0x84) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) r5 = socket(0x10, 0x803, 0x0) setxattr$security_ima(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='security.ima\x00', &(0x7f0000000500)=ANY=[@ANYBLOB="478cb85c84532ee9daefbd6ce587067f62504841374ff66c5821a4d476b6f9687c4e688f2fd1d69831a2d11edc5858a8c8fabd4767177bc53bd0da861edd3a587c3ec3b809219c389503ddfcf6124caee9977675d1f03841d8534941486fb6f60e87be015991383bdffad34f5d2c1300000000000000000000000000f1ff6a7af9665c09c4c32975fbb5723f306a70c432a17c3d1407807e65260bc0198a9344904dac7d6f570ef75b61841e7eaa4e004d2048d1cad59bb592c74928ec12f813c5eb29384a7534fd697863d1d6c0a349ab219abec0620e8b4581e45bb563194d534dfc83790096c174b8"], 0x4, 0x1) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet_sctp6_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000040)={r4}, 0x10) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000000)={r4, 0x1, 0x7fff, 0x100}, &(0x7f0000000040)=0x10) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={r6, 0x100}, 0x8) 15:13:37 executing program 3 (fault-call:1 fault-nth:33): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:37 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$nfs4(&(0x7f0000000040)='nfs4\x00', &(0x7f0000000380)='./file0\x00', 0x9, 0x4, &(0x7f0000000600)=[{&(0x7f0000000700)="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", 0x1000, 0x6}, {&(0x7f00000003c0)="22c3bbee066dcec46f0a4262c4529510a37bfa5884fab450229c40789a0b2dca9f30158ee2372bb818351f1bc4650c9bed7e7740d8cc8a8cfe561387e6553c4bc3fd24264621b8c27723f734a5bf8bddb26a62e6496dd61939b7cdd58c4490943e776c70373aaae062c44f66cd77a331dd573e", 0x73, 0xfffffffffffffffa}, {&(0x7f0000000440)="a2045cb76ec2cd1ce21790e17855983e98d74472c566640523c195444e0cd09bb7f4d3169ccd122eb8f5792095b9aa5b304ae63ee16b96e4cd2a980940043622e7747954ab5f27bcf9cb62a78e882eb77f5815e8f484553521a5d4febec5eb8be24fb61a358f952d5908e6b4cbc838441bdf7df5a9f13f629e114a84acb28892161e2746b0b1ae35624e028d1df11688e3620e7e44ad37029d0ad26d89ff5860cb6cb833b5c656fee1ba1db0739883580f463b99b57bc1baa530f1641b7d2d5ffa430da3848ceb94ef7abf580add6bef07a8d20d0fb09a04812b27de", 0xdc, 0x3ff}, {&(0x7f0000000540)="1eee21d5a4ffd8e743b5b08a95a71035402d14d313572b6dfde62d2a6a015272403e0e45a8dd1f7d5ff4a8f858b983de6285f0796e122ef25abd0d3214274a3198407f31440ae0a9ca9e332b7c524aff37a113f537f07b3577e169845e267d82b47dc5b02dacda68e3a447efd8d0f28635a19c6baef08c89b5f12b22f0c5eb29f4f2315b4b25056fabd1ca9d", 0x8c, 0x9}], 0x8, &(0x7f0000000680)='/dev/fuse\x00') r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="28000000100001047fffffff0000000000000000", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r6, @ANYBLOB="497d64eedb9e65b9ab8059d4f3aeb422caa07cd019b8b9621606388a4a95"], 0x28}}, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001a00)={{{@in6=@local, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@multicast2}}, &(0x7f0000001840)=0xe8) fstat(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$nl_route(r7, &(0x7f00000019c0)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001980)={&(0x7f0000001900)=@ipv4_newrule={0x54, 0x20, 0x2, 0x70bd26, 0x25dfdbfb, {0x2, 0x80, 0x80, 0xf9, 0x0, 0x0, 0x0, 0x0, 0x5}, [@FRA_TUN_ID={0xc, 0xc, 0x1, 0x0, 0x2}, @FRA_FLOW={0x8, 0xb, 0x4}, @FRA_DST={0x8, 0x1, @broadcast}, @FRA_GENERIC_POLICY=@FRA_UID_RANGE={0xc, 0x14, {r9, r10}}, @FRA_GENERIC_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x8}, @FRA_DST={0x1, 0x1, @multicast1}]}, 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x84) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000001740)='fuseblk\x00', 0x1000410, &(0x7f0000001b00)=ANY=[@ANYBLOB="66520500f95bc03f1d5355fe66d963f08eb5dd53fe8761cd0de3b0d50fa6e410ee66aacef3ec85807a47b9d508d6408ab60b9d7e78fa69cc65bc4c146d5cfe3af6a9c285378dfb33f160b31831b38b81ba1e154f652cef96636bdd3cb688ca2a2551400800000000000000b8357cbc014ea7eb604c5a3b91ffea7c207a39c43dc791ef0a43bf949c200bc3228ac3ca9b8ca8b6b0c20f8aa405993a59cda820179a8fb842f8a9a9c2457b5816ae8b57bd8407f172287b59e8f95748ed387848d7e09d416900000000", @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000,user_id-', @ANYRES16=r1, @ANYBLOB=',Lroup_id=', @ANYRESDEC, @ANYRESHEX=r8]) [ 278.805012] FAULT_INJECTION: forcing a failure. [ 278.805012] name failslab, interval 1, probability 0, space 0, times 0 [ 278.816762] CPU: 1 PID: 12621 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 278.824655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.834091] Call Trace: [ 278.836682] dump_stack+0x1b2/0x283 [ 278.840323] should_fail.cold+0x10a/0x154 [ 278.844463] should_failslab+0xd6/0x130 [ 278.848421] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 278.853081] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 278.858781] ext4_getfsmap_datadev+0x3e3/0x1150 [ 278.863434] ? static_obj+0x50/0x50 [ 278.867047] ? unwind_get_return_address+0x51/0x90 [ 278.871987] ? __save_stack_trace+0x7b/0xd0 [ 278.876299] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.882259] ? sort+0x255/0x2c0 [ 278.885526] ext4_getfsmap+0x651/0x880 [ 278.889390] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.895338] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 278.900341] ? trace_hardirqs_on+0x10/0x10 [ 278.904587] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 278.910571] ? swap_inode_data+0x690/0x690 [ 278.914803] ext4_ioc_getfsmap+0x250/0x830 [ 278.919103] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 278.923761] ? trace_hardirqs_on+0x10/0x10 [ 278.927991] ? __lock_acquire+0x655/0x42a0 [ 278.932225] ? avc_has_extended_perms+0x6e2/0xbe0 [ 278.937053] ext4_ioctl+0x24b/0x39f0 [ 278.940744] ? avc_ss_reset+0x100/0x100 [ 278.944698] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 278.949930] ? __lock_acquire+0x655/0x42a0 [ 278.954145] ? lock_downgrade+0x6e0/0x6e0 [ 278.958273] ? trace_hardirqs_on+0x10/0x10 [ 278.962499] ? fsnotify+0x897/0x1110 [ 278.966199] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 278.971367] do_vfs_ioctl+0x75a/0xfe0 [ 278.975163] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 278.980769] ? ioctl_preallocate+0x1a0/0x1a0 [ 278.985166] ? security_file_ioctl+0x76/0xb0 [ 278.989554] ? security_file_ioctl+0x83/0xb0 [ 278.993973] SyS_ioctl+0x7f/0xb0 [ 278.997319] ? do_vfs_ioctl+0xfe0/0xfe0 [ 279.001272] do_syscall_64+0x1d5/0x640 [ 279.005142] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 279.010308] RIP: 0033:0x45cb29 [ 279.013482] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 279.021177] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 279.028539] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 279.035790] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 279.043145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 279.050401] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:40 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x0, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:40 executing program 0: setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e23, 0xdd, @private2, 0x1}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000340), 0x0, &(0x7f0000000100)}], 0x1, 0x0) socket$inet6(0xa, 0x2, 0x0) r2 = dup(0xffffffffffffffff) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r6) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r4}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r6}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mq_unlink(&(0x7f0000000300)='ipvlan0\x00') r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r8, r9) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x101000, &(0x7f0000000180)=ANY=[@ANYBLOB="6664bd", @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r6, @ANYBLOB=',group_id=', @ANYRESDEC=r9, @ANYBLOB=',max_read=0x000000007b14977e,pcr=00000000000000000060,context=unconfined_u,\x00']) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@assoc={0x18, 0x117, 0x4, 0x200}], 0x18}], 0x1, 0x0) 15:13:40 executing program 3 (fault-call:1 fault-nth:34): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:40 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:40 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000240)={0x18, 0x0, 0x4, {0x401}}, 0x18) ioctl$FIGETBSZ(r4, 0x2, &(0x7f0000000140)) r8 = socket$inet6(0xa, 0x2, 0x0) r9 = dup(r8) setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r9, 0xc0605345, &(0x7f0000000000)={0x6, 0x2, {0x1, 0x3, 0x6, 0x2, 0x200}, 0x240b}) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SNDCTL_DSP_NONBLOCK(r2, 0x500e, 0x0) 15:13:40 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x4e22, @multicast2}}, 0x0, 0x6, 0x3, 0x0, "0000000000000000000000000000000000000000000000000000809a04000000000000000000000000000000000000000000000000006926ed0c00000000008000"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x3) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x100, 0x47ffe, 0x7fffffdf, 0x40000, 0xff0}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f00000003c0)={0x2, 0x4e21, @remote}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 281.270686] FAULT_INJECTION: forcing a failure. [ 281.270686] name failslab, interval 1, probability 0, space 0, times 0 [ 281.332886] CPU: 1 PID: 12641 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 281.340933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.350288] Call Trace: [ 281.352878] dump_stack+0x1b2/0x283 [ 281.356513] should_fail.cold+0x10a/0x154 [ 281.360667] should_failslab+0xd6/0x130 [ 281.364643] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 281.369318] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 281.375037] ext4_getfsmap_datadev+0x3e3/0x1150 [ 281.379704] ? static_obj+0x50/0x50 [ 281.383329] ? unwind_get_return_address+0x51/0x90 [ 281.388258] ? __save_stack_trace+0x7b/0xd0 [ 281.392859] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.398847] ? sort+0x255/0x2c0 [ 281.402144] ext4_getfsmap+0x651/0x880 [ 281.406124] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.412105] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 281.417034] ? trace_hardirqs_on+0x10/0x10 [ 281.421312] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.427294] ? swap_inode_data+0x690/0x690 15:13:40 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) r2 = syz_open_procfs(r1, &(0x7f0000000000)='net/ipv6_route\x00') socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r6) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r4}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r6}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) r7 = socket$inet6(0xa, 0x2, 0x0) r8 = dup(r7) setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$NS_GET_OWNER_UID(r8, 0xb704, &(0x7f0000000140)=0x0) setreuid(r6, r9) ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000000040)=0x1) [ 281.431546] ext4_ioc_getfsmap+0x250/0x830 [ 281.435869] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 281.440539] ? trace_hardirqs_on+0x10/0x10 [ 281.444784] ? __lock_acquire+0x655/0x42a0 [ 281.449034] ? avc_has_extended_perms+0x6e2/0xbe0 [ 281.454227] ext4_ioctl+0x24b/0x39f0 [ 281.457936] ? avc_ss_reset+0x100/0x100 [ 281.461912] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 281.467103] ? __lock_acquire+0x655/0x42a0 [ 281.471332] ? lock_downgrade+0x6e0/0x6e0 [ 281.475485] ? trace_hardirqs_on+0x10/0x10 [ 281.479719] ? fsnotify+0x897/0x1110 [ 281.483434] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 281.488618] do_vfs_ioctl+0x75a/0xfe0 [ 281.492419] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 281.498039] ? ioctl_preallocate+0x1a0/0x1a0 [ 281.502452] ? security_file_ioctl+0x76/0xb0 [ 281.506854] ? security_file_ioctl+0x83/0xb0 [ 281.511254] SyS_ioctl+0x7f/0xb0 [ 281.515220] ? do_vfs_ioctl+0xfe0/0xfe0 [ 281.519187] do_syscall_64+0x1d5/0x640 [ 281.523075] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 281.528252] RIP: 0033:0x45cb29 [ 281.531429] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.539129] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 281.546395] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 281.553653] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.560911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 281.568172] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:40 executing program 3 (fault-call:1 fault-nth:35): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x9, 0x800000000080003, 0x0) socket$inet6_icmp(0xa, 0x2, 0x3a) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x9}, 0x14}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x20040005) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20000080}, 0xc004000) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5, 0x2a00c}}, 0x20}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000018}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010025bd7000fedbdf254500000008000300", @ANYRES32=r7, @ANYBLOB="6c57b3b238131f06145503718a43495c7c343b2fe553a28d78bfdb65f32dbc64aa1a3c37285cd69ee7a7b1bf9aa8529acc43335cc8bc80dc47282c07ea998965e70ef7a8392a2641c656960e6ba240456fa1e3b744380efdaa3d22120018b60178c5fdc3a3d3f5646c3ee62d6409ce348cdc293eb6babb60c5e39165e29dd5cc62a4f5584a57b243ec3561e184b3acc7152c96126a7460be9024df727c840d3da96e46f93d5b6bb35a9b677993993eada319a8909e20b64ec72dbfdc60d5"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4040) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:40 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0x0, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 281.712217] FAULT_INJECTION: forcing a failure. [ 281.712217] name failslab, interval 1, probability 0, space 0, times 0 [ 281.752690] CPU: 1 PID: 12676 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 281.760602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.769948] Call Trace: [ 281.772544] dump_stack+0x1b2/0x283 [ 281.776182] should_fail.cold+0x10a/0x154 [ 281.780338] should_failslab+0xd6/0x130 [ 281.784311] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 281.788986] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 281.794705] ext4_getfsmap_datadev+0x3e3/0x1150 [ 281.799374] ? static_obj+0x50/0x50 [ 281.803004] ? unwind_get_return_address+0x51/0x90 [ 281.807927] ? __save_stack_trace+0x7b/0xd0 [ 281.812254] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.818225] ? sort+0x255/0x2c0 [ 281.821513] ext4_getfsmap+0x651/0x880 [ 281.825402] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.831377] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 281.836308] ? trace_hardirqs_on+0x10/0x10 [ 281.840540] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 281.846518] ? swap_inode_data+0x690/0x690 [ 281.850779] ext4_ioc_getfsmap+0x250/0x830 [ 281.855007] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 281.859667] ? trace_hardirqs_on+0x10/0x10 [ 281.863884] ? __lock_acquire+0x655/0x42a0 [ 281.868138] ? avc_has_extended_perms+0x6e2/0xbe0 [ 281.872958] ext4_ioctl+0x24b/0x39f0 [ 281.876649] ? avc_ss_reset+0x100/0x100 [ 281.880602] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 281.885784] ? __lock_acquire+0x655/0x42a0 [ 281.889998] ? lock_downgrade+0x6e0/0x6e0 [ 281.894127] ? trace_hardirqs_on+0x10/0x10 [ 281.898339] ? fsnotify+0x897/0x1110 [ 281.902029] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 281.907200] do_vfs_ioctl+0x75a/0xfe0 [ 281.910980] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 281.916576] ? ioctl_preallocate+0x1a0/0x1a0 [ 281.920973] ? security_file_ioctl+0x76/0xb0 [ 281.925354] ? security_file_ioctl+0x83/0xb0 [ 281.929736] SyS_ioctl+0x7f/0xb0 [ 281.933074] ? do_vfs_ioctl+0xfe0/0xfe0 [ 281.937025] do_syscall_64+0x1d5/0x640 [ 281.940891] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 281.946054] RIP: 0033:0x45cb29 15:13:41 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 281.949228] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.956921] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 281.964174] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 281.971432] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.978676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 281.985920] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:43 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, 0x0) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:43 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x4e24, @multicast2}}, 0x0, 0x6, 0x2, 0x0, "000000000000000000000000000000000000000000000002000000439a0000000004000000000000e66926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @sack_perm, @mss={0x2, 0x20}, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x5, 0x7fff, 0x5}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:43 executing program 1: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0xa6ec2, 0x0) ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000180)={0x6, 0x0, [{0xb, 0x4, 0x1, 0xfffffffb, 0x4, 0x7, 0x6}, {0x4, 0x1, 0x0, 0x1000, 0x80, 0xfffffffa, 0xffffffff}, {0x80000019, 0x578, 0x7, 0x7, 0x20, 0x100, 0x7}, {0xc0000000, 0x7, 0x4, 0x8, 0x9, 0x1, 0x4}, {0x80000001, 0x8, 0x0, 0x2, 0x52, 0x3, 0x6}, {0xd, 0x0, 0x4, 0x1, 0x13, 0x2, 0x2}]}) r1 = socket$inet6(0xa, 0x3, 0x8) r2 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r1, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:43 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000000), &(0x7f0000000040)=0x4) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:43 executing program 3 (fault-call:1 fault-nth:36): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:43 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:43 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x4, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @mss={0x2, 0x2}, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) accept$inet(r2, &(0x7f0000001380)={0x2, 0x0, @initdev}, &(0x7f00000013c0)=0x10) sendmmsg$alg(r0, &(0x7f0000000000)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18, 0x400c884}], 0xfffffffffffffee2, 0x0) syz_mount_image$hfsplus(&(0x7f0000000040)='hfsplus\x00', &(0x7f00000000c0)='./file0\x00', 0x4, 0x4, &(0x7f00000012c0)=[{&(0x7f0000000100), 0x0, 0x367}, {&(0x7f0000000180)="ec28c55e5a59a88c9dfa2de59b1c57c2954687597833d740e38d2ab61206701b0b87dc703a071b3204fbf186b7bda71095bdebd29d71fbdf17a4cdc020c7d249e8c5d15d48d02db9c75abfa01e9cc91774f4a382a96a6a6232642ea8173be60f11dcd2d08269b06b66067d2c22be21441e3d6c0ae0f2357602ceed50cb894641edb9486b9b2d53b7ceabba1eb2c7af456da0a709fc024c84e7113f0c2b7aeea6197e8dbe99b8bc25f30b6d840b9613b36c08fd1cbc402af53a092b7aec95c53f36d08f5987fd26564df3f291ad45097937", 0xd1, 0x40}, {&(0x7f0000000280)="5af5530c841103817d707fff869dd35ea8f2d284fe75c248632b61b535cd38ffeea1f7144ffe3f38", 0x28, 0x2}, {&(0x7f00000002c0)="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", 0x1000}], 0x241000, &(0x7f0000001340)={[{@creator={'creator', 0x3d, "f4a0f25c"}}, {@nodecompose='nodecompose'}], [{@fscontext={'fscontext', 0x3d, 'system_u'}}, {@measure='measure'}]}) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$IOC_PR_REGISTER(r4, 0x401870c8, &(0x7f0000000100)={0x0, 0x8}) [ 284.347942] FAULT_INJECTION: forcing a failure. [ 284.347942] name failslab, interval 1, probability 0, space 0, times 0 15:13:43 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e24, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 284.422274] CPU: 1 PID: 12712 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 284.430186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.439542] Call Trace: [ 284.442136] dump_stack+0x1b2/0x283 [ 284.445771] should_fail.cold+0x10a/0x154 [ 284.449934] should_failslab+0xd6/0x130 [ 284.453910] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 284.458593] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 284.464311] ext4_getfsmap_datadev+0x3e3/0x1150 [ 284.468977] ? static_obj+0x50/0x50 [ 284.472605] ? unwind_get_return_address+0x51/0x90 [ 284.477531] ? __save_stack_trace+0x7b/0xd0 [ 284.481860] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 284.487829] ? sort+0x255/0x2c0 [ 284.491115] ext4_getfsmap+0x651/0x880 [ 284.495001] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 284.500973] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 284.505901] ? trace_hardirqs_on+0x10/0x10 [ 284.510136] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 284.516116] ? swap_inode_data+0x690/0x690 [ 284.520372] ext4_ioc_getfsmap+0x250/0x830 [ 284.524603] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 284.529272] ? trace_hardirqs_on+0x10/0x10 [ 284.533513] ? __lock_acquire+0x655/0x42a0 [ 284.537757] ? avc_has_extended_perms+0x6e2/0xbe0 [ 284.542601] ext4_ioctl+0x24b/0x39f0 [ 284.546314] ? avc_ss_reset+0x100/0x100 [ 284.550289] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 284.555475] ? __lock_acquire+0x655/0x42a0 [ 284.559705] ? lock_downgrade+0x6e0/0x6e0 [ 284.563862] ? trace_hardirqs_on+0x10/0x10 [ 284.568097] ? fsnotify+0x897/0x1110 15:13:43 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f00000000c0)=0x2) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000480)={&(0x7f0000000540)={0x214, 0x0, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x144, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3537}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xbd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x135}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x81}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x120}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffe00000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5a6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffff81}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}]}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x400}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x4, 0x2, 0x8}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x800}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA={0x40, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x22}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6da}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x214}, 0x1, 0x0, 0x0, 0x4}, 0x4000080) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) ioctl$VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045613, &(0x7f0000000440)=0x84dc) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000003c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x6, 0x8405}, @mss, @window={0x3, 0xa000, 0x6}, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0xf74, 0x40000007ffe, 0x8}, 0x14) shutdown(r0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 284.571816] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 284.577001] do_vfs_ioctl+0x75a/0xfe0 [ 284.580803] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 284.586424] ? ioctl_preallocate+0x1a0/0x1a0 [ 284.590846] ? security_file_ioctl+0x76/0xb0 [ 284.595255] ? security_file_ioctl+0x83/0xb0 [ 284.599660] SyS_ioctl+0x7f/0xb0 [ 284.603020] ? do_vfs_ioctl+0xfe0/0xfe0 [ 284.606995] do_syscall_64+0x1d5/0x640 [ 284.610886] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 284.616067] RIP: 0033:0x45cb29 15:13:43 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0x5963, 0x8}, @mss={0x2, 0x6}, @timestamp, @window={0x3, 0x4, 0x401}, @timestamp, @sack_perm, @mss={0x2, 0x101}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:43 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80800) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000140)={r1, 0x1, 0x6, @random="d46f37d821c1"}, 0x10) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f00000001c0)={'veth0_virt_wifi\x00', 0x2}) [ 284.619263] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 284.626968] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 284.634239] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 284.641505] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 284.648770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 284.656120] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:46 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, 0x0) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:46 executing program 4: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:46 executing program 3 (fault-call:1 fault-nth:37): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:46 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYRESHEX, @ANYRES32=r0, @ANYBLOB="ea6d8106be33de858a5843d2b157fde8d0b8fd55546e3d80941c1f091aefbfe3491a84f130dc2313d3525b6e69f7c74d0b0e594a24f3cb789ce61a66f706f2363b53c333e3635842bcbf2bcb27a2e9e6fde36c4e603b931bfafb533347211509d624fc2f2f28b0b578b63e37c74a663f216afcfaa480e71bee027394a4ff91ebf962507ca246aeccab2f473e509ee169a5f08b89772c76dcc07de856fbd4d4b7925c26776a563649b197db0c550d2c3c57f02125594d55662002ec00081ea285004cc32d7476", @ANYBLOB="e7682c22a4253832d8e73ef75fd89ad83b809d4232499aba99bd405c354c0367622c2852bcacdd9dfd3de389020cfefa318e8bd1ed0bf3c5710a19e0d027186e59d4e9a5d34658904e9d0a796136cfcd784f88b3ee90463cd4365b4d3bf45ec04df9367effd9a8f2bd3820170dcd6164a0a85f4d552f9621b52f477786da0be24ce88dec63dd510601a84ce7837e8bff610d47ac6fa4434829f43ec7d88f57f85901286432507550192d94c68fb6e0b1e4ccfe3526ba28603c89ca1d64e36da9489e3aee916f91f8bacc57"], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @sack_perm, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:46 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0)='devlink\x00') r4 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x100, 0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000300), 0x4) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="0e0001006e6574", @ANYRES32, @ANYBLOB, @ANYBLOB, @ANYRES32, @ANYBLOB], 0xcc}}, 0x0) sendmsg$DEVLINK_CMD_SB_POOL_GET(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r3, 0x200, 0x70bd25, 0x25dfdbfc, {}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xf84}, {0x6, 0x11, 0x1}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040004}, 0x40010) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) setxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x1) [ 287.373118] FAULT_INJECTION: forcing a failure. [ 287.373118] name failslab, interval 1, probability 0, space 0, times 0 [ 287.395099] CPU: 1 PID: 12792 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 287.403001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.412347] Call Trace: [ 287.414932] dump_stack+0x1b2/0x283 [ 287.418563] should_fail.cold+0x10a/0x154 [ 287.422716] should_failslab+0xd6/0x130 [ 287.426688] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 287.431367] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 287.437081] ext4_getfsmap_datadev+0x3e3/0x1150 [ 287.441746] ? static_obj+0x50/0x50 [ 287.445372] ? unwind_get_return_address+0x51/0x90 [ 287.450296] ? __save_stack_trace+0x7b/0xd0 [ 287.454619] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.460584] ? sort+0x255/0x2c0 [ 287.463861] ext4_getfsmap+0x651/0x880 [ 287.467741] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.473709] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 287.478630] ? trace_hardirqs_on+0x10/0x10 [ 287.482862] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.488849] ? swap_inode_data+0x690/0x690 [ 287.493101] ext4_ioc_getfsmap+0x250/0x830 [ 287.497360] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 287.502027] ? trace_hardirqs_on+0x10/0x10 [ 287.506269] ? __lock_acquire+0x655/0x42a0 [ 287.510512] ? avc_has_extended_perms+0x6e2/0xbe0 [ 287.515362] ext4_ioctl+0x24b/0x39f0 [ 287.519067] ? avc_ss_reset+0x100/0x100 [ 287.523037] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 287.528219] ? __lock_acquire+0x655/0x42a0 [ 287.532448] ? lock_downgrade+0x6e0/0x6e0 [ 287.536607] ? trace_hardirqs_on+0x10/0x10 [ 287.540843] ? fsnotify+0x897/0x1110 [ 287.544555] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 287.549739] do_vfs_ioctl+0x75a/0xfe0 [ 287.553539] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 287.559167] ? ioctl_preallocate+0x1a0/0x1a0 [ 287.563582] ? security_file_ioctl+0x76/0xb0 [ 287.567986] ? security_file_ioctl+0x83/0xb0 15:13:46 executing program 4: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 287.572390] SyS_ioctl+0x7f/0xb0 [ 287.575746] ? do_vfs_ioctl+0xfe0/0xfe0 [ 287.579719] do_syscall_64+0x1d5/0x640 [ 287.583610] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 287.588784] RIP: 0033:0x45cb29 [ 287.591957] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.599652] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 287.606900] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 287.614149] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 15:13:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:46 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc050) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:46 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',groupcid=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)) 15:13:46 executing program 3 (fault-call:1 fault-nth:38): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 287.621399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 287.628650] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:46 executing program 4: clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 287.731563] FAULT_INJECTION: forcing a failure. [ 287.731563] name failslab, interval 1, probability 0, space 0, times 0 [ 287.775960] CPU: 1 PID: 12826 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 287.783870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.793221] Call Trace: [ 287.795813] dump_stack+0x1b2/0x283 [ 287.799456] should_fail.cold+0x10a/0x154 [ 287.803607] should_failslab+0xd6/0x130 [ 287.807584] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 287.812259] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 287.817982] ext4_getfsmap_datadev+0x3e3/0x1150 [ 287.822650] ? static_obj+0x50/0x50 [ 287.826276] ? unwind_get_return_address+0x51/0x90 [ 287.831203] ? __save_stack_trace+0x7b/0xd0 [ 287.835532] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.841501] ? sort+0x255/0x2c0 [ 287.844782] ext4_getfsmap+0x651/0x880 [ 287.848672] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.854644] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 287.859574] ? trace_hardirqs_on+0x10/0x10 [ 287.863812] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 287.869796] ? swap_inode_data+0x690/0x690 [ 287.874047] ext4_ioc_getfsmap+0x250/0x830 [ 287.878280] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 287.882957] ? trace_hardirqs_on+0x10/0x10 [ 287.887198] ? __lock_acquire+0x655/0x42a0 [ 287.891453] ? avc_has_extended_perms+0x6e2/0xbe0 [ 287.896295] ext4_ioctl+0x24b/0x39f0 [ 287.900000] ? avc_ss_reset+0x100/0x100 [ 287.903968] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 287.909159] ? __lock_acquire+0x655/0x42a0 [ 287.913392] ? lock_downgrade+0x6e0/0x6e0 [ 287.917542] ? trace_hardirqs_on+0x10/0x10 [ 287.921776] ? fsnotify+0x897/0x1110 [ 287.925504] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 287.930693] do_vfs_ioctl+0x75a/0xfe0 [ 287.934494] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 287.940113] ? ioctl_preallocate+0x1a0/0x1a0 [ 287.944528] ? security_file_ioctl+0x76/0xb0 [ 287.948928] ? security_file_ioctl+0x83/0xb0 [ 287.953335] SyS_ioctl+0x7f/0xb0 [ 287.956690] ? do_vfs_ioctl+0xfe0/0xfe0 [ 287.960661] do_syscall_64+0x1d5/0x640 [ 287.964551] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 287.969731] RIP: 0033:0x45cb29 [ 287.972910] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.980614] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 287.987886] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 287.995147] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 288.002411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 288.009666] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:49 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, 0x0) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:49 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0xc, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24004004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf, 0x2}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:49 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_SMI(r1, 0xaeb7) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) syz_genetlink_get_family_id$tipc2(&(0x7f0000000000)='TIPCv2\x00') r1 = socket(0x10, 0x800, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100), 0x0, 0x81}], 0x1, 0x4044004) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$EVIOCGABS3F(r3, 0x8018457f, &(0x7f0000000240)=""/80) r4 = socket(0x10, 0x80000, 0x8) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmmsg$alg(r4, &(0x7f0000000040), 0x0, 0x0) 15:13:49 executing program 3 (fault-call:1 fault-nth:39): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:49 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x84}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 290.428865] FAULT_INJECTION: forcing a failure. [ 290.428865] name failslab, interval 1, probability 0, space 0, times 0 [ 290.470133] CPU: 0 PID: 12865 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 290.478038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.487388] Call Trace: [ 290.489978] dump_stack+0x1b2/0x283 [ 290.493609] should_fail.cold+0x10a/0x154 [ 290.497755] should_failslab+0xd6/0x130 [ 290.501728] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 290.506402] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 290.512121] ext4_getfsmap_datadev+0x3e3/0x1150 [ 290.516788] ? static_obj+0x50/0x50 15:13:49 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f0000000380)=0xe84) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f0000000240)={@hci={0x1f, 0xffffffffffffffff, 0x3}, {&(0x7f0000000000)=""/84, 0x54}, &(0x7f0000000140), 0x1a}, 0xa0) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f00000003c0)) connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e24, @multicast1}, 0x10) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r6 = socket$inet6(0xa, 0x2, 0x0) r7 = dup(r6) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$TIOCMGET(r7, 0x5415, &(0x7f0000000300)) 15:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = socket$inet6(0xa, 0x5, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000000380)={@remote={[], 0x2}, 0xa, 'syz_tun\x00'}) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="28000000100001047fffffff0000000000000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r7, @ANYBLOB="1a50c3320097d28904f9819e36427dbd512b3ce8546a09"], 0x28}}, 0x90) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000000)={@empty, 0x7c, r7}) [ 290.520411] ? unwind_get_return_address+0x51/0x90 [ 290.525336] ? __save_stack_trace+0x7b/0xd0 [ 290.529672] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 290.535646] ? sort+0x255/0x2c0 [ 290.538935] ext4_getfsmap+0x651/0x880 [ 290.542821] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 290.548797] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 290.553722] ? trace_hardirqs_on+0x10/0x10 [ 290.557952] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 290.563932] ? swap_inode_data+0x690/0x690 [ 290.568186] ext4_ioc_getfsmap+0x250/0x830 [ 290.572415] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 290.577085] ? trace_hardirqs_on+0x10/0x10 [ 290.581324] ? __lock_acquire+0x655/0x42a0 [ 290.585572] ? avc_has_extended_perms+0x6e2/0xbe0 [ 290.590413] ext4_ioctl+0x24b/0x39f0 [ 290.594123] ? avc_ss_reset+0x100/0x100 [ 290.598096] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 290.603282] ? __lock_acquire+0x655/0x42a0 [ 290.607511] ? lock_downgrade+0x6e0/0x6e0 [ 290.611660] ? trace_hardirqs_on+0x10/0x10 [ 290.615892] ? fsnotify+0x897/0x1110 [ 290.619606] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 290.624793] do_vfs_ioctl+0x75a/0xfe0 [ 290.628589] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 290.634209] ? ioctl_preallocate+0x1a0/0x1a0 [ 290.638625] ? security_file_ioctl+0x76/0xb0 [ 290.643033] ? security_file_ioctl+0x83/0xb0 [ 290.647443] SyS_ioctl+0x7f/0xb0 [ 290.650803] ? do_vfs_ioctl+0xfe0/0xfe0 [ 290.654775] do_syscall_64+0x1d5/0x640 [ 290.658667] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 290.663849] RIP: 0033:0x45cb29 15:13:49 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x5}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss={0x2, 0x9}, @sack_perm, @window={0x3, 0xffff, 0x8001}, @window={0x3, 0x0, 0x6}], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000000)={0x5, [0x401, 0x9, 0xa4, 0x7, 0x5]}, &(0x7f0000000040)=0xe) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f0000000180)={0x2, &(0x7f0000000100)=[{0x0}, {}]}) ioctl$DRM_IOCTL_GET_CTX(r3, 0xc0086423, &(0x7f00000001c0)={r6}) 15:13:49 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 290.667032] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.674734] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 290.681998] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 290.689265] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 290.696528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 290.703790] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:49 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000100)=0x1, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 292.891858] NOHZ: local_softirq_pending 08 15:13:52 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:52 executing program 3 (fault-call:1 fault-nth:40): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:52 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000003c0)=[@timestamp, @mss={0x2, 0x40}, @mss, @mss={0x2, 0x9a98}, @window={0x3, 0xb, 0x3f}, @timestamp, @timestamp, @sack_perm], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000400)={0x2, 0x4e63, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) 15:13:52 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) socket$inet6(0xa, 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r1, 0x40405514, &(0x7f0000000040)={0x4, 0x1, 0x1, 0x9, 'syz1\x00', 0x5}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="a000"]) 15:13:52 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000000)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000000), 0x0, &(0x7f0000000100)}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0), 0x0, 0x0) 15:13:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0xfffffffd, @loopback, 0x2}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) bind$rose(0xffffffffffffffff, &(0x7f0000000000)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x40) 15:13:52 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:52 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000100)=0x1, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e22, @remote}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @sack_perm, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf, 0x20}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 293.465057] FAULT_INJECTION: forcing a failure. [ 293.465057] name failslab, interval 1, probability 0, space 0, times 0 [ 293.520525] CPU: 0 PID: 12946 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 293.528441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.537790] Call Trace: [ 293.540384] dump_stack+0x1b2/0x283 [ 293.544030] should_fail.cold+0x10a/0x154 [ 293.548181] should_failslab+0xd6/0x130 [ 293.552155] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 293.556831] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 293.562549] ext4_getfsmap_datadev+0x3e3/0x1150 [ 293.567213] ? static_obj+0x50/0x50 [ 293.570839] ? unwind_get_return_address+0x51/0x90 [ 293.575769] ? __save_stack_trace+0x7b/0xd0 [ 293.580095] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 293.586065] ? sort+0x255/0x2c0 [ 293.589347] ext4_getfsmap+0x651/0x880 [ 293.593234] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 293.599216] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 293.604142] ? trace_hardirqs_on+0x10/0x10 [ 293.608374] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 293.614358] ? swap_inode_data+0x690/0x690 [ 293.618620] ext4_ioc_getfsmap+0x250/0x830 [ 293.622851] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 293.627520] ? trace_hardirqs_on+0x10/0x10 [ 293.631759] ? __lock_acquire+0x655/0x42a0 [ 293.636003] ? avc_has_extended_perms+0x6e2/0xbe0 [ 293.640846] ext4_ioctl+0x24b/0x39f0 [ 293.644813] ? avc_ss_reset+0x100/0x100 [ 293.648790] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 293.653979] ? __lock_acquire+0x655/0x42a0 [ 293.658211] ? lock_downgrade+0x6e0/0x6e0 [ 293.662363] ? trace_hardirqs_on+0x10/0x10 [ 293.666596] ? fsnotify+0x897/0x1110 [ 293.670311] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 293.675496] do_vfs_ioctl+0x75a/0xfe0 [ 293.679297] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 293.685142] ? ioctl_preallocate+0x1a0/0x1a0 [ 293.689558] ? security_file_ioctl+0x76/0xb0 [ 293.693961] ? security_file_ioctl+0x83/0xb0 [ 293.698364] SyS_ioctl+0x7f/0xb0 [ 293.701722] ? do_vfs_ioctl+0xfe0/0xfe0 [ 293.705699] do_syscall_64+0x1d5/0x640 [ 293.709590] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 293.714771] RIP: 0033:0x45cb29 15:13:52 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x401, 0x0, 0x0, {0x3, 0x0, 0x3}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x24008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e20, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x8004, 0x401}, @mss, @window={0x3, 0x0, 0x7f}, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:52 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000300)={0x3b, 0x13, [], [@jumbo={0xc2, 0x4, 0x7}, @jumbo={0xc2, 0x4, 0x5}, @hao={0xc9, 0x10, @empty}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, [], 0x15}}, @ra={0x5, 0x2, 0x4}, @calipso={0x7, 0x20, {0x1, 0x6, 0x81, 0x3, [0x4, 0x7, 0x400]}}, @generic={0x4, 0x1d, "c071eac89cbdc626f4736c2c158ce2a3990271a3904bdb36178ff9d079"}, @enc_lim={0x4, 0x1, 0x7f}, @calipso={0x7, 0x10, {0x1, 0x2, 0x6, 0xfe3b, [0x5]}}, @hao={0xc9, 0x10, @local}]}, 0xa8) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'\x00', 0x20000005002}) ioctl$TUNSETTXFILTER(r2, 0x401054d5, &(0x7f0000000080)=ANY=[]) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="04000000000000000000000023bcd7048ca2f85f9da4d8e0638cf6539797c14d0d75bf34435bdeece40d5ccb96b47a713e7ad79e886663bf52dd14df46f6e6fcccf7c0b70c75b98ecaf87d8a91b8f1f03ad13960699a3db34ca6a0fa9f427f15bbe691804c57e5edcd2c27d3", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) [ 293.717950] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.725654] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 293.732916] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 293.740178] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 293.747439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 293.754698] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:52 executing program 1: r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x4000084) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x7, 0x5, 0x6, 0x3, 0x2, 0x3, 0x7f, 0x5f, 0x40, 0x167, 0xffffff23, 0x6, 0x38, 0x2, 0x3, 0xfff, 0x9}, [{0x7, 0xfffffffd, 0x1f, 0x9, 0x8000, 0xffffffff, 0x40, 0x4}, {0x4, 0xdf36, 0x3, 0x1f, 0x10001, 0x5, 0x2, 0x6}], "c59a0350e406c148fbc2c7ae2da8f07615925567af814c929a0c53c6a0bdc9289a1bfd7adc6a69a07633058537e9b2175cf7044470881273f5d4f6ed82cdabbd61bc9e5c88a301e73cbdc5191c44d98ccdc98f031cea896ee2242a9f2feab6ed62c897b0c8773a74114b85b9963ef6ea2d86cb57d50dd1a7ec95a6855c19c9a5d60c8332b5da41743dd6acf2c7e050b7241fb75401ad3bc940d3065fe0ec3183d8f6f241b983cca6ff927da006af519af8d35070708598d49171459bea4a96da26c426e9e878386b737ba2198d4df40e8338743d84118158906760663b5f12b245fc98d97563f333a4299b", [[]]}, 0x29b) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000040)={r4}, 0x10) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000300)=ANY=[@ANYRES32, @ANYBLOB="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"], &(0x7f0000000100)=0x60) r5 = socket$inet6(0xa, 0x3, 0x8) r6 = socket(0x10, 0x800, 0x0) sendmmsg$alg(r6, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0xa83bb0883e1a05ba}, 0xc, &(0x7f0000000740)={&(0x7f00000002c0)=@getspdinfo={0x14, 0x25, 0x400, 0x70bd25, 0x25dfdbfe, 0x8, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x200000c4) sendmmsg$alg(r5, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:55 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:55 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f0000000480)='batadv\x00') sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x24000845}, 0xc800) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:55 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:55 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x190) sendmsg$NFT_MSG_GETSET(r2, &(0x7f0000002200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x2070, 0xa, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_SET_EXPR={0x2038, 0x11, 0x0, 0x1, @immediate={{0xe, 0x1, 'immediate\x00'}, @val={0x2024, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x2020, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x12, 0x1, "73bfa3c8a9d4afa81f501cac09a3"}, @NFTA_DATA_VALUE={0x1004, 0x1, "c269ddcf22211281913721fe35642cda422b1910f08bb8389097940192f59c1dbabfbb00252cfac958471976a098eef7b9a4deb1a9a88600b1999c689d0ea2321c77015a434e97f636dcfb36d2431646d79865aaf08da8604eee611f134030bdad5da19b5e92e62b82bdd396ac0df01670efb57e591f4db4b55f6402489bd430b123fa5e8baff9627a5f092567038b627539048bd59d8ead0e1fce33e6ba78171ee32f711ebef5f10f74b32ba3e4f00cf0de51a25b34153194736cb1b5cbdd54466ef8c90948cc035a943baafb15c28409ed008a0cf6f7785a8b483af17af69db355baa08bdcae88f3e33b41b65c7cdcb37ae0ceebfcf63e51887982580999c98dd0bd982157bc9028acbcf15ea7ead89b37a761e1a479a2e9f29e5c5d471671d7da048f73e3be5d622bdbbfaa4eae40afa3ba56a5a955b797b94b44c8393200c52a47b28a61324f473154bcd8ed0999069ab559e3c571eb13afb049085d38e4b109da78c50bd72d19a1eebadccbe85744b5a90eafd3aacbcd8bbe1c33eded9b7c79bfb461b03d0b9fb25b36b8b51e48e1275f87ad86230daf83895bc59848cd6070a745a19bdf29488d75453b094cd83eddd857b6d40dac3f6e370f035e5ddb7dfeb05e7d1a157ea714ed5dc884bf61f21b56a7db2f0567f363b865a991c16c8479d713aad6e0eca65d874bc5a6cf431b5bfc3e206ba19d838848294895c68fd680c8443d30fac325a5247bb9d643838fa1fec4f0e7dba4d80bc781fdbe9220832496618f182bff8b43f7e7cf210478eabee31596fd4425f89d33e6a18d2ed8b10d091e78528998952ec7be036c01dbd474d36602a70d3cf2ab4308982d4fcc03e36ad77bf546032334aee5ad35387a0fcb1acb037e4367c5ada380b079e8a217ffb6ce3aaa9d0312e7015eb521e4a6405a2b695ce8b0eea43c1bf9445be73ac0e282a2d5447d5ae9aaba5c9fdcde1f66c61a98d34afc2e17aaad88856bc7f935df7936ea9cff8f691204e41df474cdca337d0a7ecbcfcbde0b1635f99cb57184ed79e156d4927fc7fc881f6834f337a58804acb03983ef0c74916d053dbeee264acc1afd155db11237b3ec0d39a1b76e2723247852618e379157da46962b89f2886a080dbdea363913b5c397c0429c0d84afa2588790858ad47de861c6beb7cda45e6ff24585370833dfe9431e6ae15392dcf51a6f91da210fb01fc89c368eac910df4bebe3836e8af9ca1af8306eb03aa454b7cf59730f5c2900b2dc4a70f55145a8eafc2dba693a06d4dcf5fb99846d1565c77906134bc5e2bca97e721a9d1870cb6ca8f37f720f9f8f3e64ef4eed5753c6567472f900a99f4c2b9d7c19029403edfa3aa7815cf066489536ec30cafdeee280a9467cd1b282f38d10b90f0478ae8debabcd66f7d3941ceeb17e59699e37427687ae2410350584db7b10254a74dcea6488f62cc7c81bacc775116fdccffa283ee0ac29c204a47b74a6a141fb61f86a13e8dd008a325ef1f5f06f71ea5482f46371225de99f1795f54592cc615e5975979387437e3121f428f3109da13cae27fda93e309c0515d277e09ad40621cd619251533b680468a69f60c20c52faa56fedc9a631041af31995f42a38a0f990cd463a7f42373eda9602d313d91ce3829f18bf4e7d344c6860fdbfd376ba64ff0ceae0029f662831d2f3799c3f61ea4ee0f5ed8cb2aa263019021361af7d23f4db75bae4a53c4b87fa1f8f152d15c430c425de7123dc3728715023c11da0b65ad29d2a7987ab41d86e459b5b1d04b72f344c76baa7aab98338629d352a6791c864a6be5d4ccecbdadf72a96d0681ac2e5a1f144bd7a76290940383f4b4bdd45358c1fee9a2baf252e65acbf37df523329046c0e58af14b95be8bb14787c0c1f2a861bca92ecda2210e2944790d24f1a914893fd2780ac747f25804e203025e0e5e0953845f540743d6a6120c11c6786404e6b86a46a48d720d1002296134e9ab263bcc6d09c24f773c959a2deb00ebe3c645cf42d7ef7f1d60b27ece90a352da71b37102bf00724b0c92d45df8bfd82440b3e3fda4a0613a2e6cb6d276f872c99acce960eb4da3f05b11427211da1178acaadf2de401555c4ac669f01a7e5b7d1bb05398da6de31bf5674bcd557ac62c125ba34db54d9e0e71ecb7b5f82585828bed4fe62cb73a38c1ad41ec1271cb682ed919b76de66e08066cfeb26f9a959a1884c6a5a8d81dbb25daefb4bfa2acb6e402187bbb553de5dff703cb07e6a3a11e4c0427dd6e956884600a0ab116080469300fe0b953d3270c893969b38201dc1dad8f5c9a4016641f777974bec2fc863d4ea57d46540872c87d5753f773bed277fdc3c8f478f37f680d8f7403b5b7de1ea75e1a46a8e9d56c7228668f495a518b59dd02c10901734653c30c6fcd518ac82af1a1aec41644c2ed3db8542a7d49c6a2171f65a91907d99f2ec33561ade2a754731a64f640cd865f3b7b131b7aeebee71a116522dbfb6f2dda330cfdf0ea85cafec0cd26d64409b54ac277ca79d307026e32b3ed8f60f1fb78f717d2746678796a029052f7534ad51ef159367696edd9bdcee3b97e582785821bc833db59bff705ea71eff08f0b59ac0d55760d8f541e7ba0270d2dac2b7b5210cfbf15e7fd84f6bbd286f1cdcb1195346252de6cab278d5caf852ea2a9a5e63ffb6fb06bfb31f95703fcd0ba77936c2e32832655583c28482848a6eecd8460c5592aa65f2948d35eca300eb20b29450744c5a8603fcb407ce7f8c9f80ea0fb359b80e27eeabb2c550d885103db5b45c61ecdcbaf941baf4105a617fcfad4f94f7edc9e72308f1c6dc3e32b1617dbb88ff81f1cd41e63c17cecb47d7d53207d268c0f0f31247e39e200d4404cadddec6ae66fc862ae06ddbdd14f61d2e6de0343725feeca86eb0012e31517bdddb8cdefef9a9c0f3351da5550444342648d5730cb7abf2341bcf7a1d04905c91e81759c8a13a0e71a039fd05854fbf5f6471701782b922fdaf75c30edb51baf88e3314a465531a1c54d7b13730ccfb37b1d0da7a62dbafd35c4defb430d8d351fa85855da80f9d8f0b1d7923f11a8068557581bd0df4a0a5760a7e3ad662e76e5c15f68bbfcdbc49b3d60a0cd5fa893120534061d4cda01903fbc09d0cb2fc671381abec79d6d001c6a17b69513fc607b44c004891b4408ee3988f5950e28d06a4238f0b33daf067ff45800e6c7528313975fcc45bfed2b7b7c8e1825d699d9ff8b970c6fe6608a8b0170fafb125786a060ea5c3837fa809d9fa87c81e79424c02496676defa9b56cae0a65bbfc1ce14d0c8c03518d7d4363a67c4f5b9101d9a1a0087a4c46596e0a5bce6cd4bc3474e6e8c4829a8b0e36b208d46d072ea8f5bb41099ecbe1fea932393a002e7d260d9af1da592ccabbaa1b3f401b766a601a988a0e56ee2cc498c6f383c2a4b155b4baa1b42089b5dab9cff6ac49723fa0a3503154ad91ee6e9e28d300def0cb0259f237e21f17c1d4d94981f93337bf2d73a4a739a658fba985292d8c5b8f0f6dd97c5778161e77f9583205c11bb375ce63f3e762f287bf609c350681b13e4bfce664db17821b699cd85f43531240f5796dbc68ae9491ee201cf6cbf96600efce988aeac1228d52554b35b7568e734c1622e1e626f91a03d79eac3cd0be1299d48ef9b9641533fc61da34790bce58e71234cd059c84126e619bb7252368f3c91e650a1ec684794b778dec444dcf4124f8d242c353aaf252fdac3d9fc6b5ac68f18fd3be847bfebaac8594424c1d15462af3c668e1c9e3c8d9ff0be584905fc9acc4a7ffbad9d19d400645cea5541baa7a6436303e4e442aacf4cd6fd704ae7e35a6fa7732dcd9241e39958513fe840c6a9b4d238238745973aa16c4a56c4ff7729880b25eefd403f8ef4a0818df691c348d71c4ad52971840ea1a09a7f03d5b7c53cb4bf343d1d1c9c80cecfa2f276cb2e2b7b443c38ef72e2805cff41061e9888b72e06ebbd16bffb05ca2d5ca2130b63fc0a59988bffa5271a55d6dfb927fac9167a1eab0146e1cb5c8353275bc4b6a4ed132aa2742e302d1de8c79f285bb7a35dc1cc1d2340f99ed18353d493f8da31de0911b366ae9d6028f6d3f38d198bb99333d2f9bd2fce38b4be60c48ad309dc1b46a25e26b986019239eb80819323767f0426c3357610c4da57824d03161934e74a06a07102b0b5a62142b8a00402f515cfac2c8c942615efda1ccde234773e0e7f415febec7dd4072cf85326baa0a058d277caf033ff38ee956e01bc6a0120b129f194d1ca8accfd2dddabd80bec0ff2f35f5370871c210e0c6432a2fee0edc952ff99522307fe2ab1dbbeafa39c6b51aa9d35b9563c077b9fef32bdf8f5d3d32ac96b7b78af128ede8fe64d99f0a229748bbb800b95284876669116160d3a078daa4726f74fa41cc59f670b1b921df19e8b4c590dfbb521521aecae80f19269e7aa163c0642c80a901ab4e38fe262df8a1c3a888c0251bb9d5ebb284f7cb9d7f6a3639afaa8b9fc82c942ee271cf977b287f59eecd62a4823f5d00ef2b66f47d9cc68ea1b90cc362d8d128a94fc6ad6d4b24e34297b8f79ebfd36caef9126224b0a5c52bc6fe9eeec457694724d757af6c7004b96b4d6182bedcaa7896add07e7ee16077ed2f0f747df74fd57374b9fadd68eaea5cbee28e8831e6680b23072f6d743961a5669f70b7caf1985584f953c7fcd2c9307a0567bf0c4ff764c503d8ace247b5190dd74c5f5b43234217edef919c6acba06a4b20f6b857710e2c7bf7449b52c051a36c8e2f66a67cedc49efc7c2e8654394cf73eb6891ddd749be9835dbc33ccbf07c112194200a4609a8c170d3682cfb01479238edbdc7eff2df6d3923a7392db31da6927d18e223189234f6a2a4a97bc5053c4fa92506a4cc090ca254fc23ce19f31310c21e2bc595133013f6f0a8e4b9614f8a02200b64c5db74e88719fcd189a3864ddf8b5056a9255af445c78b21f424a74fb1cf4a9d4e68bb1c55edbad197460f04ac6f5dca00eae12dab248c1842ad487994e28a178b1f95a64d48915f5a710f6ba123226876c8001e2364d8bc2f464313d85fe391c366cfd69c6bb9a9680ecc4fce177fa016a522b555bf577b897e73e2c6b11f3355d3a7cf8eea90368604d18fbb4491641fd4ba1ec7b93c492728432d15986847bca59bef60140b6c41be814faa173479429b69356b951a78d26b1b01535119ff19dcd38adb4ee0dc0d9026221e3a56b8911c53f9f5a4b3ce56fb940d23932fef5d2020de3ec99cf920e2cbdbb7b54099c1bea798efad0a1f843b462dfc709f1d58fffbda2932f6ebacc4f1693fe5b0edc6a565902210a5ff224441e50807dacc0f811cfd58dfc134daf1a671929ff76697c61a4311f4d990fce06a05d4ba61143947c3ad9695401ce478dad58b1e77878262f348f582710ceed35c0da26b13b48f98140a7b752048a51e32898a6dd131063d5d96d7e7026d7f8139ba1a76a0e97d1d8c11cb5c3d2a6b80c55356c408577ef5817e5e3c905b25afec54ae21c4449492ca92625dd392b31f34bfdc2f1ec09751e21bbc8ca8120c983a7113a98d80ca8025385ae7e6aa56463111b686853b7df8d6ed508809e680bf9f92a8954b398051909cae22a9ce051fde8a778b620c394ce7e2c6a30c30c993cd336c948d8a585af4835c2b79fb9b965cda4d06b7a8c5196fce42562df8333ffcdf2707d4a3cc34df89385c3d591dc9d7befdeb2af35f4477bfa1025b873a164150969844c470a3686f4035c2f3"}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}]}]}}}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x3}, @NFTA_SET_POLICY={0x8}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x11}]}, 0x2070}, 0x1, 0x0, 0x0, 0x8040}, 0x6) 15:13:55 executing program 3 (fault-call:1 fault-nth:41): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:55 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000040)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x878435, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group>id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) [ 296.488996] FAULT_INJECTION: forcing a failure. [ 296.488996] name failslab, interval 1, probability 0, space 0, times 0 [ 296.536757] CPU: 1 PID: 13014 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 296.544661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.554009] Call Trace: [ 296.556601] dump_stack+0x1b2/0x283 [ 296.560236] should_fail.cold+0x10a/0x154 [ 296.564392] should_failslab+0xd6/0x130 [ 296.568365] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 296.573035] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 296.578748] ext4_getfsmap_datadev+0x3e3/0x1150 [ 296.583414] ? static_obj+0x50/0x50 [ 296.587036] ? unwind_get_return_address+0x51/0x90 [ 296.591966] ? __save_stack_trace+0x7b/0xd0 [ 296.596292] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 296.602261] ? sort+0x255/0x2c0 [ 296.605542] ext4_getfsmap+0x651/0x880 [ 296.609429] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 296.615394] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 296.620318] ? trace_hardirqs_on+0x10/0x10 [ 296.624552] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 296.630530] ? swap_inode_data+0x690/0x690 [ 296.634781] ext4_ioc_getfsmap+0x250/0x830 [ 296.639010] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 296.643678] ? trace_hardirqs_on+0x10/0x10 [ 296.647920] ? __lock_acquire+0x655/0x42a0 [ 296.652171] ? avc_has_extended_perms+0x6e2/0xbe0 [ 296.657014] ext4_ioctl+0x24b/0x39f0 [ 296.659213] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2570 sclass=netlink_route_socket pid=13036 comm=syz-executor.1 [ 296.660714] ? avc_ss_reset+0x100/0x100 [ 296.660729] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 296.660741] ? __lock_acquire+0x655/0x42a0 [ 296.660750] ? lock_downgrade+0x6e0/0x6e0 [ 296.660772] ? trace_hardirqs_on+0x10/0x10 [ 296.694758] ? fsnotify+0x897/0x1110 [ 296.698477] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 296.703664] do_vfs_ioctl+0x75a/0xfe0 [ 296.707465] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 296.713085] ? ioctl_preallocate+0x1a0/0x1a0 [ 296.717500] ? security_file_ioctl+0x76/0xb0 [ 296.721908] ? security_file_ioctl+0x83/0xb0 [ 296.726316] SyS_ioctl+0x7f/0xb0 [ 296.729683] ? do_vfs_ioctl+0xfe0/0xfe0 [ 296.733659] do_syscall_64+0x1d5/0x640 [ 296.737557] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 296.742739] RIP: 0033:0x45cb29 [ 296.745920] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.753623] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 296.760889] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 296.768149] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.775589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 15:13:55 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) write$P9_RUNLINKAT(r1, &(0x7f0000000000)={0x7, 0x4d, 0x1}, 0x7) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0xe56, 0x12, 0x7fff, 0x6, 0x8, 0x3, 0x1}, 0x1c) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:13:55 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x27}}}, 0x0, 0x6, 0x10, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:55 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:55 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:55 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000040)='SEG6\x00') sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000128bd7000fedbdf250100f100000005000500050000001400010000000000000000000000000000000001"], 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x81) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:13:55 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 296.782851] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:13:58 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:58 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x8, &(0x7f0000000100)=0x3, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:58 executing program 4: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:13:58 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f75705f69643d4f5aedf52312afe69db4cf08a1bd53e1eda981d4bcf8060b9c226499f2a2d1d28c4e66e5a34ff0ffe504fd28ef0cf0604471909cd4d3cbbef835a15ec366b7d4372b6ab2f81951b656bd58", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) r1 = socket(0x10, 0x803, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f00000002c0)=0x3, 0x4) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x7c, 0x2, 0x7, 0x101, 0x0, 0x0, {0xc, 0x0, 0x8}, [@NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x20}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x7}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x4}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x6}]}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x40}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FILTER={0x24, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x6}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3f}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x42}, 0x0) 15:13:58 executing program 3 (fault-call:1 fault-nth:42): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:13:58 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MASTER={0x8, 0xa, r6}]}, 0x28}}, 0x0) ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000000)=0x7f) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)}], 0x1, 0x20008000) [ 299.523246] FAULT_INJECTION: forcing a failure. [ 299.523246] name failslab, interval 1, probability 0, space 0, times 0 [ 299.538138] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1794 sclass=netlink_route_socket pid=13080 comm=syz-executor.2 [ 299.564833] CPU: 1 PID: 13081 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 15:13:58 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss={0x2, 0x9}, @window={0x3, 0x4, 0x4}, @sack_perm, @sack_perm, @window={0x3, 0x0, 0x5}, @mss={0x2, 0x6}], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 299.572747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.582096] Call Trace: [ 299.584686] dump_stack+0x1b2/0x283 [ 299.588319] should_fail.cold+0x10a/0x154 [ 299.592471] should_failslab+0xd6/0x130 [ 299.596209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1794 sclass=netlink_route_socket pid=13090 comm=syz-executor.2 [ 299.596439] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 299.613395] ext4_getfsmap_find_fixed_metadata+0x200/0x1690 [ 299.619136] ext4_getfsmap_datadev+0x3e3/0x1150 [ 299.623808] ? static_obj+0x50/0x50 [ 299.627430] ? unwind_get_return_address+0x51/0x90 [ 299.632350] ? __save_stack_trace+0x7b/0xd0 [ 299.636673] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 299.642638] ? sort+0x255/0x2c0 [ 299.645920] ext4_getfsmap+0x651/0x880 [ 299.649801] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 299.655768] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 299.660695] ? trace_hardirqs_on+0x10/0x10 [ 299.664927] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 15:13:58 executing program 0: setsockopt(0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x3e) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0xffffffffffffff25, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000400)={0x0, 0x14, 0x100000000, &(0x7f00000003c0)=0xd41}) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x9, 0x9}, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @rand_addr=0x64010101}, 0x10) [ 299.670906] ? swap_inode_data+0x690/0x690 [ 299.675156] ext4_ioc_getfsmap+0x250/0x830 [ 299.679386] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 299.684056] ? trace_hardirqs_on+0x10/0x10 [ 299.688298] ? __lock_acquire+0x655/0x42a0 [ 299.692543] ? avc_has_extended_perms+0x6e2/0xbe0 [ 299.697398] ext4_ioctl+0x24b/0x39f0 [ 299.701109] ? avc_ss_reset+0x100/0x100 [ 299.705084] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 299.710270] ? __lock_acquire+0x655/0x42a0 [ 299.714503] ? lock_downgrade+0x6e0/0x6e0 [ 299.718658] ? trace_hardirqs_on+0x10/0x10 15:13:58 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e1f, @loopback}, 0x10) 15:13:58 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) [ 299.722892] ? fsnotify+0x897/0x1110 [ 299.726607] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 299.731792] do_vfs_ioctl+0x75a/0xfe0 [ 299.735594] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 299.741217] ? ioctl_preallocate+0x1a0/0x1a0 [ 299.745628] ? security_file_ioctl+0x76/0xb0 [ 299.750040] ? security_file_ioctl+0x83/0xb0 [ 299.754443] SyS_ioctl+0x7f/0xb0 [ 299.757799] ? do_vfs_ioctl+0xfe0/0xfe0 [ 299.761773] do_syscall_64+0x1d5/0x640 [ 299.765679] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 299.770868] RIP: 0033:0x45cb29 15:13:58 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000000c0)=[@mss={0x2, 0x1000}, @window={0x3, 0x80, 0x8000}, @mss, @window={0x3, 0xec6, 0x401}, @timestamp, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:13:58 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e25, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 299.774042] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.781735] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 299.789010] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 299.796392] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.803657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 299.810974] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:01 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:01 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x8000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0xc5c8}, @timestamp, @window={0x3, 0x2, 0x5}, @window={0x3, 0x401, 0x401}, @timestamp, @sack_perm, @mss={0x2, 0x7ffe}, @window={0x3, 0x0, 0x3}, @window={0x3, 0x6, 0x1}, @sack_perm], 0xa) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) getsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000000), &(0x7f0000000040)=0x4) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:01 executing program 3 (fault-call:1 fault-nth:43): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:01 executing program 4: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:01 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00']) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid'}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r2}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xc) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) statx(r5, &(0x7f0000000240)='./file0\x00', 0x2000, 0x4, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r8) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r10) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r8}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r10}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x220080, &(0x7f0000000380)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x1a00}}, {@max_read={'max_read', 0x3d, 0x6b6}}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}], [{@smackfsroot={'smackfsroot', 0x3d, ')*]*+)'}}, {@uid_gt={'uid>', r6}}, {@smackfshat={'smackfshat'}}, {@fowner_lt={'fowner<', r8}}]}}) 15:14:01 executing program 0: setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0x68, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 302.565892] FAULT_INJECTION: forcing a failure. [ 302.565892] name failslab, interval 1, probability 0, space 0, times 0 [ 302.607097] 9pnet: Could not find request transport: xen [ 302.615303] CPU: 0 PID: 13134 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 302.623205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.632556] Call Trace: [ 302.635146] dump_stack+0x1b2/0x283 [ 302.638780] should_fail.cold+0x10a/0x154 [ 302.642936] should_failslab+0xd6/0x130 [ 302.646917] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 302.651595] ext4_getfsmap_find_fixed_metadata+0x3bc/0x1690 [ 302.657322] ext4_getfsmap_datadev+0x3e3/0x1150 [ 302.661995] ? static_obj+0x50/0x50 [ 302.665614] ? unwind_get_return_address+0x51/0x90 [ 302.670537] ? __save_stack_trace+0x7b/0xd0 [ 302.674863] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 302.680843] ? sort+0x255/0x2c0 [ 302.684127] ext4_getfsmap+0x651/0x880 [ 302.688014] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 302.693993] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 302.698929] ? trace_hardirqs_on+0x10/0x10 15:14:01 executing program 4: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 302.703162] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 302.709147] ? swap_inode_data+0x690/0x690 [ 302.713410] ext4_ioc_getfsmap+0x250/0x830 [ 302.717639] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 302.722308] ? trace_hardirqs_on+0x10/0x10 [ 302.726549] ? __lock_acquire+0x655/0x42a0 [ 302.730808] ? avc_has_extended_perms+0x6e2/0xbe0 [ 302.735651] ext4_ioctl+0x24b/0x39f0 [ 302.739359] ? avc_ss_reset+0x100/0x100 [ 302.743618] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 302.748807] ? __lock_acquire+0x655/0x42a0 [ 302.753037] ? lock_downgrade+0x6e0/0x6e0 15:14:01 executing program 1: r0 = socket$inet6(0xa, 0x80000, 0x107ff) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) mmap$snddsp_status(&(0x7f0000ffd000/0x2000)=nil, 0x1000, 0x2, 0x100010, r3, 0x82000000) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) bind(r2, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @private=0xa010101}, 0x0, 0x0, 0x4, 0x1}}, 0x80) [ 302.757195] ? trace_hardirqs_on+0x10/0x10 [ 302.761427] ? fsnotify+0x897/0x1110 [ 302.765145] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 302.770338] do_vfs_ioctl+0x75a/0xfe0 [ 302.774136] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 302.779759] ? ioctl_preallocate+0x1a0/0x1a0 [ 302.784180] ? security_file_ioctl+0x76/0xb0 [ 302.788588] ? security_file_ioctl+0x83/0xb0 [ 302.792995] SyS_ioctl+0x7f/0xb0 [ 302.796356] ? do_vfs_ioctl+0xfe0/0xfe0 [ 302.800333] do_syscall_64+0x1d5/0x640 15:14:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x0, 0x0) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r2, 0x800442d4, &(0x7f0000000000)=0x2) sendmmsg$alg(r1, &(0x7f0000000140), 0x0, 0x4) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:01 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x10000, 0x4, 0x7fffffdf, 0x6, 0x4}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10) 15:14:01 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) recvmsg$can_raw(r0, &(0x7f0000000400)={&(0x7f0000000000)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000140)=""/59, 0x3b}, {&(0x7f0000000240)=""/149, 0x95}, {&(0x7f00000001c0)=""/56, 0x38}], 0x3, &(0x7f0000000340)=""/133, 0x85}, 0x40000000) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 302.804217] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 302.809397] RIP: 0033:0x45cb29 [ 302.812578] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 302.820292] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 302.827555] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 302.834819] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 302.842086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 302.849353] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:02 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:02 executing program 3 (fault-call:1 fault-nth:44): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:02 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @rand_addr=0x64010101}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x1, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x8bda, 0x260a02) getpeername$llc(r2, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000100)=0x10) 15:14:02 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x98) ioctl$SIOCX25SCALLUSERDATA(r1, 0x89e5, &(0x7f0000000240)={0x11, "ce5a66ed499074eeed753ff75fe214e26d328e8673c6a9b9907257b4493cee8fd123f01dc1037d0547c51721cb7a0a18377f084c4d2a282d3f5e6b3e4814b66db555c95b344aa5deef8b398b9a7a738d9e5fb5c1f46ea9f113d811f0403fb6fb2d0e3aa6de3b61e0410f93aaffdbce8ba352320040a8c21a3bbb5ae1af5c9dab"}) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) ioctl$sock_SIOCGIFBR(r2, 0x8940, &(0x7f0000000040)=@generic={0x0, 0x7fff, 0x5}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) 15:14:02 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:02 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x2, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:02 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_MASTER={0x8, 0xa, r4}]}, 0x28}}, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="9bd3117bfb8c717e2edc6afc82029209e743a2714ddc6f860c05be676df72bc27462a1205b", @ANYRES64, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00', @ANYRES32, @ANYRES32=r3, @ANYRESDEC=r1, @ANYRES16]) [ 303.444128] FAULT_INJECTION: forcing a failure. [ 303.444128] name failslab, interval 1, probability 0, space 0, times 0 [ 303.471783] CPU: 1 PID: 13198 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 303.479687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.489041] Call Trace: [ 303.491630] dump_stack+0x1b2/0x283 [ 303.495263] should_fail.cold+0x10a/0x154 [ 303.499414] should_failslab+0xd6/0x130 [ 303.503389] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 303.508061] ext4_getfsmap_find_fixed_metadata+0x610/0x1690 [ 303.513776] ext4_getfsmap_datadev+0x3e3/0x1150 [ 303.518442] ? static_obj+0x50/0x50 [ 303.522065] ? unwind_get_return_address+0x51/0x90 [ 303.526992] ? __save_stack_trace+0x7b/0xd0 [ 303.531323] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 303.537291] ? sort+0x255/0x2c0 [ 303.540571] ext4_getfsmap+0x651/0x880 15:14:02 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 303.544463] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 303.550432] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 303.555358] ? trace_hardirqs_on+0x10/0x10 [ 303.559591] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 303.565570] ? swap_inode_data+0x690/0x690 [ 303.569822] ext4_ioc_getfsmap+0x250/0x830 [ 303.574053] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 303.578719] ? trace_hardirqs_on+0x10/0x10 [ 303.582983] ? __lock_acquire+0x655/0x42a0 [ 303.587231] ? avc_has_extended_perms+0x6e2/0xbe0 15:14:02 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss={0x2, 0x8c}, @window={0x3, 0x4, 0x6}, @window={0x3, 0x5, 0x3}, @sack_perm, @mss={0x2, 0xffffffff}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000400)={&(0x7f0000ffc000/0x2000)=nil, 0x7, 0x3, 0x40, &(0x7f0000ffa000/0x3000)=nil, 0x9}) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @local}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 303.592075] ext4_ioctl+0x24b/0x39f0 [ 303.595779] ? avc_ss_reset+0x100/0x100 [ 303.599751] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 303.604942] ? __lock_acquire+0x655/0x42a0 [ 303.609182] ? lock_downgrade+0x6e0/0x6e0 [ 303.613335] ? trace_hardirqs_on+0x10/0x10 [ 303.617571] ? fsnotify+0x897/0x1110 [ 303.621286] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 303.626473] do_vfs_ioctl+0x75a/0xfe0 [ 303.630278] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 303.635901] ? ioctl_preallocate+0x1a0/0x1a0 [ 303.640314] ? security_file_ioctl+0x76/0xb0 15:14:02 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 303.644722] ? security_file_ioctl+0x83/0xb0 [ 303.649129] SyS_ioctl+0x7f/0xb0 [ 303.652490] ? do_vfs_ioctl+0xfe0/0xfe0 [ 303.656469] do_syscall_64+0x1d5/0x640 [ 303.660359] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 303.665545] RIP: 0033:0x45cb29 [ 303.668728] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.676434] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 303.683700] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 15:14:02 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 303.690965] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 303.698235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 303.705500] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:03 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:03 executing program 3 (fault-call:1 fault-nth:45): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000040)={r4}, 0x10) setsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=r4, 0x4) r5 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r5, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0) getpeername$packet(r6, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xb8c35e9fe936215a, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0x6}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x10) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:03 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:14:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @sack_perm, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:03 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2cff8c7f12b632cb268a73a2c184904da322de87aea4000197378668a07ece2add7222e6bbc87151b518ef9a0ff220d1f0c219df8812ca8ee6f369c1fcec289a4cd56f02080a610dfc835c37f9b3dc3ccd32933a830d214b5a78509344a631c34e06"]) [ 304.256627] FAULT_INJECTION: forcing a failure. [ 304.256627] name failslab, interval 1, probability 0, space 0, times 0 [ 304.327114] CPU: 1 PID: 13265 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 304.335028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.344377] Call Trace: [ 304.346972] dump_stack+0x1b2/0x283 [ 304.350607] should_fail.cold+0x10a/0x154 [ 304.354762] should_failslab+0xd6/0x130 [ 304.358739] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 304.363408] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 304.369128] ext4_getfsmap_datadev+0x3e3/0x1150 [ 304.373790] ? static_obj+0x50/0x50 [ 304.377406] ? unwind_get_return_address+0x51/0x90 [ 304.382329] ? __save_stack_trace+0x7b/0xd0 [ 304.386650] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.392613] ? sort+0x255/0x2c0 [ 304.395894] ext4_getfsmap+0x651/0x880 [ 304.399778] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.405745] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 304.410665] ? trace_hardirqs_on+0x10/0x10 [ 304.414896] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.421381] ? swap_inode_data+0x690/0x690 [ 304.425655] ext4_ioc_getfsmap+0x250/0x830 [ 304.429868] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 304.434555] ? trace_hardirqs_on+0x10/0x10 [ 304.438768] ? __lock_acquire+0x655/0x42a0 [ 304.442986] ? avc_has_extended_perms+0x6e2/0xbe0 [ 304.447848] ext4_ioctl+0x24b/0x39f0 [ 304.451536] ? avc_ss_reset+0x100/0x100 [ 304.455486] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 304.460702] ? __lock_acquire+0x655/0x42a0 [ 304.464923] ? lock_downgrade+0x6e0/0x6e0 [ 304.469065] ? trace_hardirqs_on+0x10/0x10 [ 304.473278] ? fsnotify+0x897/0x1110 [ 304.476969] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 304.482144] do_vfs_ioctl+0x75a/0xfe0 [ 304.487753] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 304.493352] ? ioctl_preallocate+0x1a0/0x1a0 [ 304.497741] ? security_file_ioctl+0x76/0xb0 [ 304.502123] ? security_file_ioctl+0x83/0xb0 [ 304.506546] SyS_ioctl+0x7f/0xb0 [ 304.509886] ? do_vfs_ioctl+0xfe0/0xfe0 [ 304.513841] do_syscall_64+0x1d5/0x640 [ 304.517707] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 304.522874] RIP: 0033:0x45cb29 15:14:03 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0xffffb7f6, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x3, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0x7, 0xb6}, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @window={0x3, 0x0, 0x40}, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 304.526045] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 304.533725] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 304.540969] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 304.548225] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 304.555477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 304.562725] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:03 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvme-fabrics\x00', 0x400, 0x0) getsockopt$inet6_tcp_buf(r2, 0x6, 0x1c, &(0x7f0000000040)=""/5, &(0x7f0000000100)=0x5) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:03 executing program 3 (fault-call:1 fault-nth:46): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 304.705769] FAULT_INJECTION: forcing a failure. [ 304.705769] name failslab, interval 1, probability 0, space 0, times 0 [ 304.724524] CPU: 0 PID: 13301 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 304.732611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.741958] Call Trace: [ 304.744550] dump_stack+0x1b2/0x283 [ 304.748183] should_fail.cold+0x10a/0x154 [ 304.752336] should_failslab+0xd6/0x130 [ 304.756311] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 304.760990] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 304.766709] ext4_getfsmap_datadev+0x3e3/0x1150 [ 304.771374] ? static_obj+0x50/0x50 [ 304.775006] ? unwind_get_return_address+0x51/0x90 [ 304.779932] ? __save_stack_trace+0x7b/0xd0 [ 304.784258] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.790225] ? sort+0x255/0x2c0 [ 304.793508] ext4_getfsmap+0x651/0x880 [ 304.797397] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.803373] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 304.808431] ? trace_hardirqs_on+0x10/0x10 [ 304.812669] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 304.818664] ? swap_inode_data+0x690/0x690 [ 304.822917] ext4_ioc_getfsmap+0x250/0x830 [ 304.827150] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 304.831822] ? trace_hardirqs_on+0x10/0x10 [ 304.836069] ? __lock_acquire+0x655/0x42a0 [ 304.840315] ? avc_has_extended_perms+0x6e2/0xbe0 [ 304.845155] ext4_ioctl+0x24b/0x39f0 [ 304.848862] ? avc_ss_reset+0x100/0x100 [ 304.852837] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 304.858023] ? __lock_acquire+0x655/0x42a0 [ 304.862257] ? lock_downgrade+0x6e0/0x6e0 [ 304.866413] ? trace_hardirqs_on+0x10/0x10 [ 304.870649] ? fsnotify+0x897/0x1110 [ 304.874368] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 304.879554] do_vfs_ioctl+0x75a/0xfe0 [ 304.883355] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 304.888978] ? ioctl_preallocate+0x1a0/0x1a0 [ 304.893478] ? security_file_ioctl+0x76/0xb0 [ 304.897889] ? security_file_ioctl+0x83/0xb0 [ 304.902294] SyS_ioctl+0x7f/0xb0 [ 304.905656] ? do_vfs_ioctl+0xfe0/0xfe0 [ 304.909627] do_syscall_64+0x1d5/0x640 [ 304.913517] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 304.918698] RIP: 0033:0x45cb29 [ 304.921863] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 304.929546] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 304.936802] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 304.944048] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 304.951306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 304.958561] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:04 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:04 executing program 2: mkdir(&(0x7f0000000000)='./file0/file0\x00', 0xc) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="095c1db477d003b69c09be7f0adbc58fa43f6a48a0d2ec7b9c695bf1a4685fe1c1d99735", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) 15:14:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:04 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:04 executing program 3 (fault-call:1 fault-nth:47): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000002600)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="4f5b40d1616b16b293ca4734bcc414a98a4f6dd418195ee99b49623fc4a0c26dd6954b80407d899c97f67782f35b9366737100ba19c53be4e6c87d92fd2245402ae440f2aef020501680c32cfb8dc4d722d3198dd092c63d7e849a40e20edd4104b573289a7ca44a78a06b8f74bac4a03ccdcf83d205775e5050bb0de671723d37277e6c5382786b2fb715af", 0x8c}, {&(0x7f0000000340)="4e77e267f6b007b4654b2a6e52b0b39a26c211e5420641ce028d5c691eac12a5993205bfe302f7596d698e3804d6d739305b1d04f2ee57633185ebb90137a79ac29895d623", 0x45}, {&(0x7f00000003c0)="860e8655c15e8a2577c168f848921c48398f58ad5926b2d296c6295dfe58ef9ca49bab4b6594e89fd06fe88e81262d06442c861b1d7c5709202f91fc48137319ad89801ef688c2260dd61c28a256a298f610f24f1c0aa203d0b8ac8e6108c98ce559", 0x62}], 0x3, &(0x7f0000000d00), 0x0, 0x20008001}, {0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000440)="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", 0xfb}], 0x1, &(0x7f0000000f40)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18}, @iv={0x18, 0x117, 0x2, 0x4, "9ca8ac3b"}], 0x48, 0x8004}, {0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000000fc0)="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", 0x1000}], 0x1, &(0x7f0000000d00)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x801}, {0x0, 0x0, &(0x7f0000002440)=[{&(0x7f0000002040)="a782dfe846dfce216d216cd089602db734496b52ed995dd96c665463847e173b052a9133dddb8074c0b803d0c3d32445bbb454c29503669f3a640dd2006a09ea2a9c475ea6b9a98dbd0fe3229630857e9ba425e793cd4b0c723ea8429f9b9c754f57eaa58eaaa0fb3c6130dc37ae9f5fffb8d21f3a0588a093edff1084ce600b497226440769f1c6e0117bef4d5b984a12c859c97e377dedf1157f2bc5076d98de71db8dc0244aecefbe2da3ba", 0xad}, {&(0x7f0000002100)="37d51b5838837bf9609b53c2375c7f532cd350bfb3c2d6da6e5d7c2a91339f380ad9294020c27e7a9552add99eaef2c9d207665d6029266a0a68b41cd30e875208174c8e03471a97a6fa24721e66adcdd93f6b1fae078d5142599051c978513e37d024908db3ee5f43adf69a81a70c92204ca31ef4a7e5de853d39b556f220c775a78643b6ecdc94d06501b60e9d9349ddbf19452bc84f28e62f37dcf68446", 0x9f}, {&(0x7f00000021c0)="812b238c42b8dc09d222eb8379ce2c1896b1b81492a6ed97a95d9fba5c94f4c8954003d3b978f32578ec605250fd974bba467acb7c2e8c22ad847ae497ccbd635d5f50d2ae0a1cbde7a6b2c6af4155b09ddbc0369388768fd09c8dc4", 0x5c}, {&(0x7f0000002240)="83", 0x1}, {&(0x7f0000002280)="a77e70", 0x3}, {&(0x7f00000022c0)="caec730e4b836dc7b3499bb64aa6a8d6b70012790c685ae57ab41f8609ba32bcbf2bfce547060498d81df1634d4464167882d65476f3b12d63cf17b6c2c2fc4044151bcbcc55b35814498ecd3fff49a0707c348a0b36a61e67fc3bc2b233e192696e6fb5956bbbf0dc35f24737d3ae170746225c8e739377515cfcb59c0a624b36cab276e21f799944173b0077583df79616828157cb7111d3f6fcdfad033264080d1331ee0bd244c70bf1adafd948da5c83183aae17", 0xb6}, {&(0x7f0000002380)="4b15edff0d42fb2edbb7f562bf86fc721c84477930f6f53bbf85980cb2eb0d504ae16bb79399f5aeee83cfc16804c20318fa606b1900df7ed638444be67b9831a80c4305c61fd17038293aa7f0ec28b31ea4a2bad204efed798cd30e03568c01b8d23c4938a6b95a85601dc37f8e9fede3a5e6661b36210a1ac346f70f60ce17109ade54", 0x84}], 0x7, &(0x7f00000024c0)=ANY=[@ANYBLOB="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"], 0x108, 0x40010}], 0x4, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SOUND_MIXER_READ_CAPS(r4, 0x80044dfc, &(0x7f0000000040)) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000000000)={0x3, 'veth0_to_bridge\x00', {0x10001}, 0x7739}) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f0000000180)={0x6f2e2523, {{0xa, 0x4e21, 0x1, @remote}}}, 0x88) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000d80)={0x0, 0x7fffffff, 0x401, 0x4, 0x400}) getitimer(0x2, &(0x7f0000000d40)) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r5, 0x84, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="03000001fe52"], 0xa) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:04 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x56) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB="2c726f6f746d6f64653d3030303030a451c181c0f4d2cb303030303034303030302c757365725f69643dc7b1e704a5b68890949905ca318bd70c18dd13", @ANYRESDEC=0x0, @ANYBLOB="2c67726f06000000643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) 15:14:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f00000003c0)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 305.132658] FAULT_INJECTION: forcing a failure. [ 305.132658] name failslab, interval 1, probability 0, space 0, times 0 [ 305.194108] CPU: 1 PID: 13329 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 305.202019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.211373] Call Trace: [ 305.213965] dump_stack+0x1b2/0x283 [ 305.217599] should_fail.cold+0x10a/0x154 [ 305.221750] should_failslab+0xd6/0x130 [ 305.225723] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 305.230403] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 305.236121] ext4_getfsmap_datadev+0x3e3/0x1150 [ 305.240785] ? static_obj+0x50/0x50 [ 305.244405] ? unwind_get_return_address+0x51/0x90 [ 305.249340] ? __save_stack_trace+0x7b/0xd0 [ 305.253671] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 305.259645] ? sort+0x255/0x2c0 [ 305.262930] ext4_getfsmap+0x651/0x880 [ 305.266808] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 305.272756] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 305.277670] ? trace_hardirqs_on+0x10/0x10 [ 305.281883] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 305.287922] ? swap_inode_data+0x690/0x690 [ 305.292143] ext4_ioc_getfsmap+0x250/0x830 [ 305.296356] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 305.301063] ? trace_hardirqs_on+0x10/0x10 [ 305.305278] ? __lock_acquire+0x655/0x42a0 [ 305.309495] ? avc_has_extended_perms+0x6e2/0xbe0 [ 305.314315] ext4_ioctl+0x24b/0x39f0 [ 305.318005] ? avc_ss_reset+0x100/0x100 [ 305.322033] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 305.327200] ? __lock_acquire+0x655/0x42a0 [ 305.331417] ? lock_downgrade+0x6e0/0x6e0 [ 305.335554] ? trace_hardirqs_on+0x10/0x10 [ 305.339765] ? fsnotify+0x897/0x1110 [ 305.343457] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 305.348621] do_vfs_ioctl+0x75a/0xfe0 [ 305.352406] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 305.358102] ? ioctl_preallocate+0x1a0/0x1a0 [ 305.362510] ? security_file_ioctl+0x76/0xb0 [ 305.366920] ? security_file_ioctl+0x83/0xb0 [ 305.371325] SyS_ioctl+0x7f/0xb0 [ 305.374683] ? do_vfs_ioctl+0xfe0/0xfe0 [ 305.378646] do_syscall_64+0x1d5/0x640 [ 305.382517] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 305.387686] RIP: 0033:0x45cb29 15:14:04 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0x14, 0x5, 0x1, 0x0, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x56) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x3ff, 0x7fffffdf, 0xc000}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmmsg$alg(r2, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@assoc={0x18, 0x117, 0x4, 0x4}], 0x18}], 0x1, 0x0) setsockopt$RXRPC_SECURITY_KEYRING(r1, 0x110, 0x2, &(0x7f0000000000)=']-\x00', 0x3) 15:14:04 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x24) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 305.390853] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 305.398537] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 305.405793] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 305.413044] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 305.420375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 305.427622] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:04 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@allow_other='allow_other'}], [{@smackfstransmute={'smackfstransmute', 0x3d, '%-%[$'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '}'}}, {@dont_hash='dont_hash'}]}}) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000980)={'filter\x00', 0x7, 0x4, 0x3e0, 0x1e8, 0xe8, 0x0, 0x2f8, 0x2f8, 0x2f8, 0x4, &(0x7f0000000000), {[{{@uncond, 0xc0, 0xe8}, @unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@arp={@rand_addr=0x64010101, @multicast1, 0xffffff00, 0xff, 0xc, 0x3, {}, {@empty, {[0x0, 0x0, 0x0, 0x0, 0xff]}}, 0xbc8, 0xc8, 0x5d, 0xff4e, 0x8, 0xff, 'veth0_vlan\x00', 'veth0_to_batadv\x00', {0xff}, {0xff}, 0x0, 0x4}, 0xc0, 0x100}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "813f2e2cb970cd423c3c6a818d81ce6959c6efaa6f6f064abe084fff2fd9"}}, {{@arp={@empty, @empty, 0xffffffff, 0xffffffff, 0x0, 0xc, {@mac=@multicast, {[0x0, 0xff, 0xff, 0xff, 0x0, 0xff]}}, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, {[0x0, 0xff, 0x0, 0x0, 0xff, 0xff]}}, 0xa000, 0x9, 0x200, 0x3, 0x3, 0x6710, 'xfrm0\x00', 'hsr0\x00', {0xff}, {0xff}, 0x0, 0x3}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @empty, @multicast2, 0xf, 0xffffffff}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x430) 15:14:04 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:04 executing program 3 (fault-call:1 fault-nth:48): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:04 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:04 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(r0, 0xfffffffc, 0x800009, 0x0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000280)=0x400) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000003c0)=[@timestamp, @window={0x3, 0x2, 0x7}, @mss={0x2, 0x3}, @window={0x3, 0x4, 0x401}, @mss={0x2, 0x3}, @sack_perm, @window={0x3, 0x1, 0x1}, @timestamp, @mss={0x2, 0x7}], 0x9) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(0xffffffffffffffff, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e24, @broadcast}, 0x10) 15:14:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$IPSET_CMD_RENAME(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, 0x5, 0x6, 0x101, 0x0, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8884}, 0x4004) r2 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r2, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) writev(r2, &(0x7f00000015c0)=[{&(0x7f0000000240)="8ba94353364041ccd86fe3d4d6cdf9ba636e1c49a0ccf39459d4ecf553112326d3cfe6e08b7183f5f1b2044cbe18a0ba0358a95edf710387e3fe048347e1a3b2a5860beef3537d09421bfa30148538d033db5f55cc9a76c70d092591d84948d0eb4fc3f9242fa32db55fff16caf6", 0x6e}, {&(0x7f00000002c0)="7af6e00cc30214e10a6bc7e23feaf94b456e254f304e62fad43db6", 0x1b}, {&(0x7f0000000300)="925d9b8f080b2b573e892c8212fa11be5e4fd4381b047922345cc711efa57a35d6c1e89fcd1f48c82df272a16c2f10ede0e1e5df9c2f6147d02f7fbf86ab08e11c8cc06a0f1908d4990d3b47d65468bf3d514615194509e47d7ff74f2dd5b4d446dbb022aa008fca6dcee7f8265a018cffb6db4550a775c9e57af5d2700f183c72b01e", 0x83}, {&(0x7f00000003c0)="4cc706e6a2c4dd17bc107a7d5c89f233b1b9b85fa95126455fc7f7231f92eb8b095a516973973622bc117883c2927c8c3a43faf8c7bdf8db7c1b38a2cd33d20f43ab8fb65d083e46ad3b0e221315c9fe6fdf5d36d4a094097816a0b0ba64f173d63a27695c9dab7dd51565d6250f5932900cf760561167c69cf2ed5fdff0b07a6f7f286c98ba7b7e28576c2c97dbfb736b9cc8394eae90c3e27c9b65bce84840c8e692d330917256c8cf7a59319a7f4c09e35e808252d71b484b63c6a16f44bedbdaa4c4406fb42abb6ec1baf3d5a5ea2414cb08", 0xd4}, {&(0x7f00000004c0)="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", 0x1000}, {&(0x7f00000014c0)="59012548c8c46fbdd107fbaca114f2acaf6835f1eb3286539cdaf49a334910ee94a014e01e6a7396b0ab4e77c1eed0ddadd84d97a762975be240e3caaf38dd69badef6a2d5788cb3989eba1968b6c3d49c981192dfb20311034a03314b878ea9097c650d82b42c602254848b796dd3884f88be4b88d69b96ec656a87fa535777a76ba791db7b25c787dbe3263dcf848f44a321c51e07d76303ecfadb5cedf297fbd38089699d079931466b4febe90bbdf799484b8c04a918328e6f6323e4a2e2706c5ececb97950f79a1ba41215448eaa6283cf676777b", 0xd7}], 0x6) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:04 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x20) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r2}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r4}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r6, r7) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000005c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r7}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x200}}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}], [{@fsname={'fsname', 0x3d, 'default_permissions'}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x34, 0x63, 0x31, 0x63, 0x33, 0x30, 0x38], 0x2d, [0x63, 0x36, 0x5f2731d88cefb96, 0x32], 0x2d, [0x36, 0x33, 0x65, 0x61], 0x2d, [0x63, 0x33, 0x39], 0x2d, [0x63, 0x30, 0x63, 0x30, 0x65, 0x37, 0x64, 0x33]}}}, {@seclabel='seclabel'}, {@euid_gt={'euid>'}}, {@uid_gt={'uid>', r4}}, {@subj_type={'subj_type', 0x3d, 'euid'}}, {@subj_type={'subj_type', 0x3d, 'uid'}}, {@permit_directio='permit_directio'}]}}) prctl$PR_SVE_GET_VL(0x33, 0x1763b) [ 305.930682] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1541 sclass=netlink_route_socket pid=13382 comm=syz-executor.1 [ 305.951019] FAULT_INJECTION: forcing a failure. [ 305.951019] name failslab, interval 1, probability 0, space 0, times 0 [ 305.970679] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1541 sclass=netlink_route_socket pid=13382 comm=syz-executor.1 [ 305.983004] CPU: 0 PID: 13383 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 305.983011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.983015] Call Trace: [ 305.983032] dump_stack+0x1b2/0x283 [ 305.983049] should_fail.cold+0x10a/0x154 [ 305.983064] should_failslab+0xd6/0x130 [ 305.983076] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 305.983092] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 305.983110] ext4_getfsmap_datadev+0x3e3/0x1150 [ 305.983119] ? static_obj+0x50/0x50 [ 305.983129] ? unwind_get_return_address+0x51/0x90 [ 305.983138] ? __save_stack_trace+0x7b/0xd0 [ 305.983158] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.021777] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1541 sclass=netlink_route_socket pid=13382 comm=syz-executor.1 [ 306.024985] ? sort+0x255/0x2c0 [ 306.025003] ext4_getfsmap+0x651/0x880 [ 306.025015] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.051354] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1541 sclass=netlink_route_socket pid=13398 comm=syz-executor.1 [ 306.060747] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 306.060758] ? trace_hardirqs_on+0x10/0x10 [ 306.060768] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.060787] ? swap_inode_data+0x690/0x690 [ 306.060814] ext4_ioc_getfsmap+0x250/0x830 [ 306.060823] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 306.060835] ? trace_hardirqs_on+0x10/0x10 [ 306.093028] 9pnet: Could not find request transport: xen [ 306.095354] ? __lock_acquire+0x655/0x42a0 15:14:05 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28000000100001047fffffff0000000000000000", @ANYRES32=r3, @ANYBLOB="000000420000100008000a00", @ANYRES32=r5, @ANYBLOB], 0x28}}, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x20000, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRES16=r5, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="c6ee7a3203066cc496a8062c05"]) r6 = dup(0xffffffffffffffff) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r6, 0x40505331, &(0x7f00000002c0)={{0x20, 0x3}, {0x80, 0x20}, 0xffffffff, 0x3, 0x7}) [ 306.095378] ? avc_has_extended_perms+0x6e2/0xbe0 [ 306.133083] ext4_ioctl+0x24b/0x39f0 [ 306.136792] ? avc_ss_reset+0x100/0x100 [ 306.140772] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 306.145960] ? __lock_acquire+0x655/0x42a0 [ 306.150374] ? lock_downgrade+0x6e0/0x6e0 [ 306.154526] ? trace_hardirqs_on+0x10/0x10 [ 306.158760] ? fsnotify+0x897/0x1110 [ 306.162473] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 306.167659] do_vfs_ioctl+0x75a/0xfe0 [ 306.171461] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 306.177082] ? ioctl_preallocate+0x1a0/0x1a0 [ 306.181486] ? security_file_ioctl+0x76/0xb0 [ 306.185881] ? security_file_ioctl+0x83/0xb0 [ 306.190287] SyS_ioctl+0x7f/0xb0 [ 306.193644] ? do_vfs_ioctl+0xfe0/0xfe0 [ 306.197613] do_syscall_64+0x1d5/0x640 [ 306.201501] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 306.206681] RIP: 0033:0x45cb29 [ 306.209861] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 306.217565] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 306.224832] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 15:14:05 executing program 2: getsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000048c0), &(0x7f0000004900)=0x4) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) clock_gettime(0x0, &(0x7f0000004680)={0x0, 0x0}) recvmmsg(r0, &(0x7f0000004500)=[{{&(0x7f0000000240)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/113, 0x71}, {&(0x7f0000000340)=""/148, 0x94}], 0x2, &(0x7f0000000400)=""/162, 0xa2}, 0x1}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001580)=""/4096, 0x1000}, {&(0x7f0000002580)=""/117, 0x75}, {&(0x7f0000002600)=""/4096, 0x1000}], 0x3, &(0x7f0000003600)=""/67, 0x43}, 0x6c}, {{&(0x7f0000003680)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000003700)=[{&(0x7f00000001c0)=""/59, 0x3b}], 0x1}, 0x5}, {{&(0x7f0000003740)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000003b40)=[{&(0x7f00000037c0)=""/17, 0x11}, {&(0x7f0000003800)=""/174, 0xae}, {&(0x7f00000038c0)=""/193, 0xc1}, {&(0x7f00000039c0)=""/210, 0xd2}, {&(0x7f0000003ac0)=""/101, 0x65}], 0x5, &(0x7f0000003bc0)=""/181, 0xb5}, 0x7fffffff}, {{&(0x7f0000003c80)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d00)=""/188, 0xbc}], 0x1}, 0x5}, {{&(0x7f0000003e00)=@generic, 0x80, &(0x7f00000043c0)=[{&(0x7f0000003e80)=""/242, 0xf2}, {&(0x7f0000003f80)=""/242, 0xf2}, {&(0x7f0000004080)=""/112, 0x70}, {&(0x7f0000004100)=""/73, 0x49}, {&(0x7f0000004180)=""/67, 0x43}, {&(0x7f0000004200)=""/201, 0xc9}, {&(0x7f0000004300)=""/176, 0xb0}], 0x7, &(0x7f0000004440)=""/186, 0xba}, 0x1000}], 0x6, 0x100, &(0x7f00000046c0)={r1, r2+10000000}) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) r4 = socket$inet6(0xa, 0x2, 0x2) ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000004740)={&(0x7f0000004700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}) r5 = dup(r4) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) write$UHID_INPUT(r5, &(0x7f0000000540)={0x8, {"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", 0x1000}}, 0x1006) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000004780)='/dev/vcsa\x00', 0x40, 0x0) sendmsg$NFNL_MSG_CTHELPER_GET(r6, &(0x7f0000004880)={&(0x7f00000047c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000004840)={&(0x7f0000004940)=ANY=[@ANYBLOB="1c0000000109e4000e0000000000000000000102080006400000000109ef00fe8db22f9b69630a8a0df3f9afa8cdaf9aeb87641b49903355b96df411283fc4a10da0252ca4c28e826a65d4d4aced5b036d23192b0ee9f7e1b2a300cf7fe57a6b03ee8228004620c55e9d94e36df4d58d81f6def33fcd"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0xc005) r7 = socket$inet6(0xa, 0x2, 0x0) r8 = dup(r7) setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$VIDIOC_EXPBUF(r8, 0xc0405610, &(0x7f0000000000)={0xc, 0x5, 0x1, 0x800}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) 15:14:05 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x400000, 0x0) write$P9_RLERROR(r2, &(0x7f0000000040)={0xb, 0x7, 0x1, {0x2, '%,'}}, 0xb) 15:14:05 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x2, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20000060) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 306.232096] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 306.239362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 306.246714] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:05 executing program 3 (fault-call:1 fault-nth:49): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:05 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000280)={0x14, 0x5, 0x1, 0x301, 0x0, 0x0, {0x2}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x24008050) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x2) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="1edf4a208d582c9fa95f009a154327e518494a1937c497a77b6e3c6f8cd658f5e1415320bd81cb5f15459d428c4bd19042686e31f16451b93dd89c25d26a399572282f0732157c2cc87cfcf79f88c90459f6d141337eecfd49820b24cb3767f07c7ddac950f02681d186dd870cf77b035caeaa9d41981aed7a07170113cb781053d951dea69ff5dd201ae1e42944e906a22f0892280430602ddf7477bec46e463b8afe422d1ffeb9c8a06eb552b7636dcd5be501ff88bd51b4a6afc7116a8b5d1b68df5f772513a3fd98919885915b551ed7e1ee527462ecf2783e44a3038d8765689ccf4250b35fb90f196c841ff28eee515ea4f4bf9ea2062241db0a5c604fb1eb29ad4fc34481e51a9980c36a36a5a9b04d661b6068c21657fd0c", @ANYRES32, @ANYBLOB="6c359b066db80a958a798c2043cf1f2287d5443b8082ff6ebd2a0b6fa974de24f5ace7313577facc64ddf8d6b16dd6216705c2c9684faa1fa820fff17aaea2b11aa89502f092c9a25ce15c74e4ef7c6d8812b85855f865c00fa6aa7d3211f82ee74e7e7ee22fae527900dbdaf91f328a855f1e0713b828163a622f7afa88db"], 0x24}, 0x1, 0x0, 0x0, 0x44}, 0x40) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @mss, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) [ 306.359447] FAULT_INJECTION: forcing a failure. [ 306.359447] name failslab, interval 1, probability 0, space 0, times 0 [ 306.399103] CPU: 1 PID: 13429 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 306.407014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.416364] Call Trace: [ 306.418952] dump_stack+0x1b2/0x283 [ 306.422594] should_fail.cold+0x10a/0x154 [ 306.426741] should_failslab+0xd6/0x130 [ 306.430708] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 306.435391] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 306.441190] ext4_getfsmap_datadev+0x3e3/0x1150 [ 306.445856] ? static_obj+0x50/0x50 [ 306.449482] ? unwind_get_return_address+0x51/0x90 [ 306.454411] ? __save_stack_trace+0x7b/0xd0 [ 306.458744] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.464715] ? sort+0x255/0x2c0 [ 306.468036] ext4_getfsmap+0x651/0x880 [ 306.471924] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.477899] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 306.482822] ? trace_hardirqs_on+0x10/0x10 [ 306.487056] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 306.493036] ? swap_inode_data+0x690/0x690 [ 306.497274] ext4_ioc_getfsmap+0x250/0x830 [ 306.501487] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 306.506134] ? trace_hardirqs_on+0x10/0x10 [ 306.510350] ? __lock_acquire+0x655/0x42a0 [ 306.514567] ? avc_has_extended_perms+0x6e2/0xbe0 [ 306.519398] ext4_ioctl+0x24b/0x39f0 [ 306.523098] ? avc_ss_reset+0x100/0x100 [ 306.527053] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 306.532227] ? __lock_acquire+0x655/0x42a0 [ 306.536446] ? lock_downgrade+0x6e0/0x6e0 [ 306.540587] ? trace_hardirqs_on+0x10/0x10 [ 306.544807] ? fsnotify+0x897/0x1110 [ 306.548536] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 306.553791] do_vfs_ioctl+0x75a/0xfe0 [ 306.557580] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 306.563199] ? ioctl_preallocate+0x1a0/0x1a0 [ 306.567611] ? security_file_ioctl+0x76/0xb0 [ 306.572011] ? security_file_ioctl+0x83/0xb0 [ 306.576429] SyS_ioctl+0x7f/0xb0 [ 306.579775] ? do_vfs_ioctl+0xfe0/0xfe0 [ 306.583736] do_syscall_64+0x1d5/0x640 [ 306.587622] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 306.592798] RIP: 0033:0x45cb29 [ 306.595965] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 306.603698] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 306.610950] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 306.618197] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 306.625533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 306.632784] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:05 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:05 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r5}]}, 0x28}}, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="4a18399894720282f965adf966e13831492a586f970554b1e17caf1dd5145d4194c8c08706f7b10020d3de1fbd9f96075875e1804ea5cd82540ccfbe7b5f47e13f1880185cb590898c26248e237ddb60689f47637d592ea1ce769912f9305cbcdb644506e3aa92bf7b8bfe4f6042851c2a370089c9f4ce670ab2cbd715043fda5bf14ad5232eac3e470e4ef05c22ff204bd602685182942b4994a519adddf08e5c5c306b4e113257a5aebfafff58e59c52b7238f53c2b2f6c44dfbfea63e90cc", @ANYRESHEX=r0, @ANYBLOB="2c723030303030303410303034303030302c7573000000000000000000", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r5, @ANYBLOB=',\x00']) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x2, 0x0) getsockopt$TIPC_CONN_TIMEOUT(r6, 0x10f, 0x82, &(0x7f0000000040), &(0x7f0000000140)=0x4) 15:14:07 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:07 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x4000000006ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r0, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r1}], 0x1, 0xfffffffffffffff8) dup2(r0, r1) fcntl$setown(r1, 0x8, 0x0) tkill(0x0, 0x14) 15:14:07 executing program 1: r0 = socket$inet6(0xa, 0x800, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$RNDCLEARPOOL(r3, 0x5206, &(0x7f0000000040)=0x7fff) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) r5 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000040)={r6}, 0x10) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000080)={r6, 0x4c, &(0x7f0000000180)=[@in6={0xa, 0x4e21, 0x10001, @loopback, 0x7fffffff}, @in={0x2, 0x4e23, @empty}, @in={0x2, 0x4e22, @empty}, @in={0x2, 0x4e24, @rand_addr=0x64010102}]}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(0xffffffffffffffff, 0x84, 0x78, &(0x7f0000000200)=r7, 0x4) r8 = socket$inet6(0xa, 0x2, 0x0) r9 = dup(r8) setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SCSI_IOCTL_START_UNIT(r9, 0x5) 15:14:07 executing program 3 (fault-call:1 fault-nth:50): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:07 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r2) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r4) statx(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x800, 0x10, &(0x7f00000003c0)) mount$9p_xen(&(0x7f0000000140)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x40080, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}]}}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000000)='fuseblk\x00', 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id'}, 0x2c, {[], [{@smackfsroot={'smackfsroot', 0x3d, 'measure'}}]}}) 15:14:07 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400), 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) [ 308.999283] FAULT_INJECTION: forcing a failure. [ 308.999283] name failslab, interval 1, probability 0, space 0, times 0 [ 309.022708] CPU: 0 PID: 13475 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 309.030618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.039970] Call Trace: [ 309.042560] dump_stack+0x1b2/0x283 [ 309.046193] should_fail.cold+0x10a/0x154 [ 309.050348] should_failslab+0xd6/0x130 [ 309.054323] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 309.058994] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 309.064716] ext4_getfsmap_datadev+0x3e3/0x1150 [ 309.069381] ? static_obj+0x50/0x50 [ 309.073012] ? unwind_get_return_address+0x51/0x90 [ 309.077948] ? __save_stack_trace+0x7b/0xd0 [ 309.082276] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.088245] ? sort+0x255/0x2c0 [ 309.091530] ext4_getfsmap+0x651/0x880 15:14:08 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$alg(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000540)="d2b5c8b7a6ba62b585cccba380ba63dd72f18aa1d92e3c755d57617eeca4af3520e63d258f8f66b541a091c616a8fe7c9f9c671fba480f338cac550216de16a6e93178c2c212c399f4ae60559ac06a0f6beaddb2e29a9bd2b03557e0c5c6608e3edaa781624e093c2a6ce12d395a337dec4642431aa769b750c13892cc8d591c0b49288a9504a759c9be31307e50a4b4eff9dd1a5182c773a2", 0x99}, {&(0x7f0000000600)="28003064dca319954e572c4497f924d160687b5c446ca544c9994dc9d0754fbde175b17aca35063f4662f01ea4cc4fddb52f3ea8f355d6486ebc3472eb435811414c546fd097bed4a582d5cc4c8b33dca002c7189d379d07eccc4371eb0a481b0eac9a977a19442a1cbac4fc2a8828a590516a2a5ac204a66fa1c57d36a019c38e47aed4e2dd2cf90c597829b11e9491843855f42e5e94d76113c9c41dae806dd57e107dc9bb0afe1bd13d292f08a96ae60429b84c942ae873102b653738ff7e621e43d1a0ce031d3698f79192d3e03a49b369192402dc6597c3efaf506e6195ad54e31c", 0xe4}, {&(0x7f0000000700)="10c7bdb13c2c682fe8bc2f151aa4510f751aa25e6d53e64b8de6655101f5f217daf6d683d3bc108907b24b97c06e5c1b734df63623657e3b1d3663ec2e4a385828684fcd68e103043dcafae92c6bde0e3f9edc2492d85c118b0a6508e3acbf0f996821ea72fa3e6f7f3a2ea4c14b6b99e139f93acddc640de414d9a1d28628a097865452ec4d3c2426cc5e046e97877ed52bd9de554b3e033032a69ae437429491b4cdb63af7e34f62f37120e2519dba841ae28322", 0xb5}, {&(0x7f00000007c0)="1f30af2a8ca1bc9ef5b65a7e5fa8d115dfa3978808186c660183a6db15ee789219bdd79dfb6e154bd0a2d5c6b13103db8038c6fcb5c32a6fdc4c720d54e8f352ccdff9e98a0062276bf4fd793050e134773eacd083b97d047059d7f03ee9816b45c6d3d5ff4c1d14d288dd3c521bb33ce54d5174bcecd3a4f97492a9340913f04ecd12d9d59b15dd7ec25733618f47ac747869e1d8748c7b73d0d1071d291a96d0ca2417f5759468a3444636ee500a8d8fdcae19f8dc8ada601c2f958d7f2b22977f6a9381646501e738663ed1c601366d4c8f35e63f", 0xd6}, {&(0x7f00000008c0)="31d31e22629dfa069c7dd9cea49dc6c4371cf883229a1bb85f704f8e390d8a024de93fa27e50f590ae47e0f17a0f716007efafd0aeb4997722f7c8c7c43fc48bc2facb6a69f1ec248c3e2e03225d9783bc47a3069e161e226b2802f8bd72bcbb726752fc514ac66ac7", 0x69}], 0x5, 0x0, 0x0, 0x2080}, 0x4000) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$kcm(r1, &(0x7f0000000440)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x8, @private2, 0x5, 0x1}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000140)="44d8", 0x2}, {&(0x7f00000001c0)="10dbfafe28cbadbeea4051023bcd5a3e6c56f26f", 0x14}, {&(0x7f0000000240)="943f615f5a6f97b2b65cdefb2d84f2d40cdc1acbab851449c39fb3a813120dc5d27b359d4bf473d296e53ba26dce14d24956940549de3bc5b7d68be5cdd4eecd284dd0e93c0a1c15968013d729af0d14cba3e24018e714ea75c4a49fd0482b500d611e87a852492c298c32c740816b64ef36c3ded43e8e4a954414f55253aa4b59e2def7696ae1fa438ac96fb57a46859cb045b073301899a30ef129d714c27a35c6665c5d18bbfb29687ca71fbd23f9324e55c70eeb418d1b9c038859fba09ed79c", 0xc2}], 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="a00000000000000011000000060000009f2fd27d6a49cd814669283ccfd3552ac4de8e1b39eb3a8a912aed17cb2658ac93bfb8415785b1f0596dd55d6f47618ace36b78607b2e3c2e2751ef79a5f48631293c234a820390bead5e051ae2f579781e863459a3841738fd18d138998af3fd2b53a9d3c59f4b5f654cf5f15451411ad9b32457c4ddf260c8d7e137c2f7c00"], 0xa0}, 0x844) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) [ 309.095422] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.101391] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 309.106318] ? trace_hardirqs_on+0x10/0x10 [ 309.110550] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.116539] ? swap_inode_data+0x690/0x690 [ 309.120787] ext4_ioc_getfsmap+0x250/0x830 [ 309.125021] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 309.129691] ? trace_hardirqs_on+0x10/0x10 [ 309.133931] ? __lock_acquire+0x655/0x42a0 [ 309.138176] ? avc_has_extended_perms+0x6e2/0xbe0 [ 309.143020] ext4_ioctl+0x24b/0x39f0 15:14:08 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='tl']) [ 309.146728] ? avc_ss_reset+0x100/0x100 [ 309.150789] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.155974] ? __lock_acquire+0x655/0x42a0 [ 309.160222] ? lock_downgrade+0x6e0/0x6e0 [ 309.164389] ? trace_hardirqs_on+0x10/0x10 [ 309.168626] ? fsnotify+0x897/0x1110 [ 309.172342] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.177531] do_vfs_ioctl+0x75a/0xfe0 [ 309.181321] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 309.186921] ? ioctl_preallocate+0x1a0/0x1a0 [ 309.191311] ? security_file_ioctl+0x76/0xb0 [ 309.195693] ? security_file_ioctl+0x83/0xb0 [ 309.200077] SyS_ioctl+0x7f/0xb0 [ 309.203418] ? do_vfs_ioctl+0xfe0/0xfe0 [ 309.207368] do_syscall_64+0x1d5/0x640 [ 309.211236] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.217533] RIP: 0033:0x45cb29 [ 309.220802] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 309.228502] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 309.235753] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 309.243010] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 15:14:08 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) r2 = accept4(r0, &(0x7f0000000000)=@caif, &(0x7f0000000100)=0x80, 0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000040)={r5}, 0x10) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000180)={r5, 0x80, "a4a6630e6551eb394e0783c70beac17f9f3bb359ef271bd5e3f7a34cc546fd1a8b5366382f8b5e88ecf4f877b4dadbea4052b4900550a57e4c9a1fb71d17cdbaf3cb6337acd379789616fb0669c0c1c42fcf39daedad0dd063d52f7558e73586cb5531d182204e93a02dabbf4743af6621918ccd7698f61bb659f13f08a1eb46"}, &(0x7f0000000240)=0x88) 15:14:08 executing program 3 (fault-call:1 fault-nth:51): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 309.250264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 309.257509] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 309.365614] FAULT_INJECTION: forcing a failure. [ 309.365614] name failslab, interval 1, probability 0, space 0, times 0 [ 309.387353] CPU: 1 PID: 13515 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 309.395252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.404605] Call Trace: [ 309.407193] dump_stack+0x1b2/0x283 [ 309.411605] should_fail.cold+0x10a/0x154 [ 309.415753] should_failslab+0xd6/0x130 [ 309.419720] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 309.424384] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 309.430094] ext4_getfsmap_datadev+0x3e3/0x1150 [ 309.434867] ? static_obj+0x50/0x50 [ 309.438488] ? unwind_get_return_address+0x51/0x90 [ 309.443418] ? __save_stack_trace+0x7b/0xd0 [ 309.447745] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.453713] ? sort+0x255/0x2c0 [ 309.456995] ext4_getfsmap+0x651/0x880 [ 309.460881] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.466840] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 309.471744] ? trace_hardirqs_on+0x10/0x10 [ 309.475952] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.481901] ? swap_inode_data+0x690/0x690 [ 309.486121] ext4_ioc_getfsmap+0x250/0x830 [ 309.490372] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 309.495065] ? trace_hardirqs_on+0x10/0x10 [ 309.499278] ? __lock_acquire+0x655/0x42a0 [ 309.503497] ? avc_has_extended_perms+0x6e2/0xbe0 [ 309.508315] ext4_ioctl+0x24b/0x39f0 [ 309.512001] ? avc_ss_reset+0x100/0x100 [ 309.515948] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.521113] ? __lock_acquire+0x655/0x42a0 [ 309.525319] ? lock_downgrade+0x6e0/0x6e0 [ 309.529457] ? trace_hardirqs_on+0x10/0x10 [ 309.533678] ? fsnotify+0x897/0x1110 [ 309.537367] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.542531] do_vfs_ioctl+0x75a/0xfe0 [ 309.546306] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 309.551902] ? ioctl_preallocate+0x1a0/0x1a0 [ 309.556288] ? security_file_ioctl+0x76/0xb0 [ 309.560678] ? security_file_ioctl+0x83/0xb0 [ 309.565319] SyS_ioctl+0x7f/0xb0 [ 309.568688] ? do_vfs_ioctl+0xfe0/0xfe0 [ 309.572639] do_syscall_64+0x1d5/0x640 [ 309.576504] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.581666] RIP: 0033:0x45cb29 [ 309.584872] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 309.592553] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 309.599797] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 309.607074] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 15:14:08 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000000)={0x7, 0x0, [{0x4, 0x0, 0x3}, {0x6, 0x0, 0x2d2}, {0x5, 0x0, 0x6775e41b}, {0x4, 0x0, 0x7}, {0x2, 0x0, 0x5}, {0x1, 0x0, 0x4}, {0x40, 0x0, 0x5}]}) r2 = socket$inet6(0xa, 0x3, 0x8) r3 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r3, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r2, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 309.614685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 309.621928] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:08 executing program 3 (fault-call:1 fault-nth:52): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 309.737772] FAULT_INJECTION: forcing a failure. [ 309.737772] name failslab, interval 1, probability 0, space 0, times 0 [ 309.781666] CPU: 1 PID: 13529 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 309.789578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.798928] Call Trace: [ 309.801521] dump_stack+0x1b2/0x283 [ 309.805153] should_fail.cold+0x10a/0x154 [ 309.809653] should_failslab+0xd6/0x130 [ 309.813629] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 309.818301] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 309.824020] ext4_getfsmap_datadev+0x3e3/0x1150 [ 309.828685] ? static_obj+0x50/0x50 [ 309.832312] ? unwind_get_return_address+0x51/0x90 [ 309.837238] ? __save_stack_trace+0x7b/0xd0 [ 309.841567] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.847534] ? sort+0x255/0x2c0 [ 309.850818] ext4_getfsmap+0x651/0x880 [ 309.854703] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.860673] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 309.865600] ? trace_hardirqs_on+0x10/0x10 [ 309.869830] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 309.875807] ? swap_inode_data+0x690/0x690 [ 309.880057] ext4_ioc_getfsmap+0x250/0x830 [ 309.884296] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 309.888966] ? trace_hardirqs_on+0x10/0x10 [ 309.893209] ? __lock_acquire+0x655/0x42a0 [ 309.897455] ? avc_has_extended_perms+0x6e2/0xbe0 [ 309.902305] ext4_ioctl+0x24b/0x39f0 [ 309.906013] ? avc_ss_reset+0x100/0x100 [ 309.909986] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.915174] ? __lock_acquire+0x655/0x42a0 [ 309.919406] ? lock_downgrade+0x6e0/0x6e0 [ 309.923559] ? trace_hardirqs_on+0x10/0x10 [ 309.927803] ? fsnotify+0x897/0x1110 [ 309.931516] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 309.936702] do_vfs_ioctl+0x75a/0xfe0 [ 309.940502] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 309.946128] ? ioctl_preallocate+0x1a0/0x1a0 [ 309.950546] ? security_file_ioctl+0x76/0xb0 [ 309.954958] ? security_file_ioctl+0x83/0xb0 [ 309.959361] SyS_ioctl+0x7f/0xb0 [ 309.962724] ? do_vfs_ioctl+0xfe0/0xfe0 [ 309.966694] do_syscall_64+0x1d5/0x640 [ 309.970582] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 309.975763] RIP: 0033:0x45cb29 15:14:08 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:08 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400), 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:08 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x17, &(0x7f0000000280)=0x81b, 0x4) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x300, 0x0, 0x0, {0x2, 0x0, 0xc}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x64044894}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x4e24, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfffffffe}}, 0x0, 0x6, 0x15, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e21, @empty}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @timestamp, @window={0x3, 0x3ff}, @window={0x3, 0x4, 0x401}, @mss, @sack_perm, @window={0x3, 0xffff, 0x1}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:08 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004c004}, 0x20008000) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x6, 0x3, 0x0, "00000000000000000000000000000000000000000000000000008000000000000000000000000000439a00000000000000000000000000000000000000000000000000006926ed0c00"}, 0xd8) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4e21, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[], 0x24}}, 0xc010) connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f00000000c0)=[@timestamp, @timestamp, @window={0x3, 0x717, 0x6}, @window={0x3, 0x4, 0x401}, @mss={0x2, 0x2}, @sack_perm, @window={0x3, 0xffff, 0x4}, @timestamp], 0x8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x40000007ffe, 0x7fffffdf}, 0x14) shutdown(r0, 0x1) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000500)={0x2, 0x4e21, @dev}, 0x10) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) 15:14:08 executing program 0: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r9 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r8}]}, 0x28}}, 0x0) fstat(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r10}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) [ 309.978949] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 309.986653] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 309.993917] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 310.001188] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 310.008461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 310.015725] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000040)=[{&(0x7f0000000180)="9fe2d7b6ebbe47640ce88df559e36e55e7ec289d2b7e69d0e763b262fdcecc3793ae4bd79a5c62d571b292548271ab602204f1d727760a5c3dc5e70fee81e5b3784dee9b0f26c6f859806f7e5c5d3ec65cde6ba7c3915b54a45c18263070e6e03ec618544d8d79ad16936f2c5a4a1a", 0x6f}, {&(0x7f0000000200)="60ccfeadd6d01c395642d8e0c1f65c3d867becfb6de2a3bb644bbad5d9ac92f09b95a98d0588ad3ffacdf5b4372c33fa2c2f75400ef6f989b58b6febbe490ebcf42293801619536dc68827f92f3a418dc8fbf3757a63b53a761da8a977993aaf58113f145147c1ef9624eb98b00e6533a7a9e3b7e0f38e", 0x77}], 0x2, &(0x7f0000000000)=[@assoc={0x18, 0x117, 0x4, 0x7fff}], 0x18}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 310.096648] device bridge_slave_0 left promiscuous mode [ 310.105893] bridge0: port 1(bridge_slave_0) entered disabled state 15:14:09 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_MASTER={0x8, 0xa, r4}]}, 0x28}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r7}, [@IFLA_MASTER={0x8, 0xa, r9}]}, 0x28}}, 0x0) clock_gettime(0x0, &(0x7f0000007a80)={0x0, 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f0000007940)=[{{&(0x7f00000018c0)=@can={0x1d, 0x0}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001940)=""/255, 0xff}, {&(0x7f0000001a40)=""/253, 0xfd}, {&(0x7f0000001b40)=""/127, 0x7f}, {&(0x7f0000001bc0)=""/90, 0x5a}], 0x4, &(0x7f0000001c80)=""/4096, 0x1000}, 0xfff}, {{&(0x7f0000002c80)=@nfc, 0x80, &(0x7f0000004e40)=[{&(0x7f0000002d00)}, {&(0x7f0000002d40)=""/4096, 0x1000}, {&(0x7f0000003d40)=""/4096, 0x1000}, {&(0x7f0000004d40)=""/152, 0x98}, {&(0x7f0000004e00)=""/42, 0x2a}], 0x5}, 0x6}, {{&(0x7f0000004ec0)=@l2tp6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000007280)=[{&(0x7f0000004f40)=""/75, 0x4b}, {&(0x7f0000004fc0)=""/155, 0x9b}, {&(0x7f0000005080)=""/4096, 0x1000}, {&(0x7f0000006080)=""/165, 0xa5}, {&(0x7f0000006140)=""/6, 0x6}, {&(0x7f0000006180)=""/4096, 0x1000}, {&(0x7f0000007180)=""/24, 0x18}, {&(0x7f00000071c0)=""/149, 0x95}], 0x8, &(0x7f0000007300)=""/205, 0xcd}, 0x4}, {{&(0x7f0000007400)=@generic, 0x80, &(0x7f00000076c0)=[{&(0x7f0000007480)=""/133, 0x85}, {&(0x7f0000007540)=""/187, 0xbb}, {&(0x7f0000007600)=""/149, 0x95}], 0x3, &(0x7f0000007700)=""/130, 0x82}, 0x3f}, {{&(0x7f00000077c0)=@tipc=@name, 0x80, &(0x7f00000078c0)=[{&(0x7f0000007840)=""/67, 0x43}], 0x1, &(0x7f0000007900)=""/52, 0x34}, 0x1f}], 0x5, 0x40010000, &(0x7f0000007ac0)={r10, r11+10000000}) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000007dc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000007d80)={&(0x7f0000007b00)={0x268, 0x0, 0x0, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_STRSET_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x48, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x17}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x144, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x20004010}, 0x4080) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r13 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='dd=', @ANYRESHEX=r13, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) 15:14:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) r2 = socket$inet6(0xa, 0x1, 0x40000006) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000000)=0x7ff) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000040)={'veth1_virt_wifi\x00', 0x6}) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r4, 0x28, 0x1, &(0x7f0000000100)=0x1, 0x8) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) [ 310.165972] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 15:14:09 executing program 3 (fault-call:1 fault-nth:53): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:09 executing program 2: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x1010080, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0000ee0e70de86090fe9018054b6f79124ed9cc568b3c7e33af4cb00c3f0eb239c2c3973e171ddb279539745efdc06ecabea4613a3"]) 15:14:09 executing program 0: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r9 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r8}]}, 0x28}}, 0x0) fstat(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r10}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) 15:14:09 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = dup(0xffffffffffffffff) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000b00)={0x0, 0xfffffffffffffffe, 0xe2, 0x6f, @scatter={0x9, 0x0, &(0x7f0000000840)=[{&(0x7f0000000300)=""/145, 0x91}, {&(0x7f00000003c0)=""/147, 0x93}, {&(0x7f0000000000)=""/23, 0x17}, {&(0x7f0000000480)=""/215, 0xd7}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/207, 0xcf}, {&(0x7f0000000040)=""/13, 0xd}, {&(0x7f0000000140)}, {&(0x7f0000000780)=""/160, 0xa0}]}, &(0x7f0000000900)="89d1d3a9a2e9c139f2c70d41391fef845efd91f32b6063fc02a192b83b6fda2b2d447cbed117040e2b7cb3b5bb13d3962301556e96c8000aa8db9d465154072242be858111421b47f64f67d1174b3fbcf1c6d207e604909e957ca8dd28927ca786d25bb3b3ba626884ae062e274aebd81f0f78800ba2df02e05c7513a170419767fdfb031390775649d881c5925c9c57bbd0f28be4df5a72b3b3861c9cdee8f63274b7202a8ec2aafc2b8f59ef07cb8b95b62ca49b8989d86d8ebe634fcecb29dcaf08aaa8a65940389c41c47c8e4c4fbc5e50cb10417c35b490d99b2e06e00cff35", &(0x7f0000000a00)=""/221, 0x9, 0x10000, 0x2, &(0x7f00000001c0)}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x2100800, &(0x7f0000000240)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [{@fowner_lt={'fowner<', 0xee01}}, {@fsname={'fsname', 0x3d, 'fuseblk\x00'}}, {@subj_role={'subj_role', 0x3d, 'group_id'}}, {@dont_appraise='dont_appraise'}]}}) [ 310.318912] FAULT_INJECTION: forcing a failure. [ 310.318912] name failslab, interval 1, probability 0, space 0, times 0 [ 310.355499] CPU: 1 PID: 13582 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 310.363411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 310.372763] Call Trace: [ 310.375352] dump_stack+0x1b2/0x283 [ 310.378988] should_fail.cold+0x10a/0x154 [ 310.383141] should_failslab+0xd6/0x130 [ 310.387114] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 310.391786] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 310.397599] ext4_getfsmap_datadev+0x3e3/0x1150 [ 310.402267] ? static_obj+0x50/0x50 [ 310.405898] ? unwind_get_return_address+0x51/0x90 [ 310.410822] ? __save_stack_trace+0x7b/0xd0 [ 310.415150] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.421116] ? sort+0x255/0x2c0 [ 310.424397] ext4_getfsmap+0x651/0x880 [ 310.428279] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.434244] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 310.439163] ? trace_hardirqs_on+0x10/0x10 [ 310.443400] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.449375] ? swap_inode_data+0x690/0x690 [ 310.453624] ext4_ioc_getfsmap+0x250/0x830 [ 310.457856] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 310.462538] ? trace_hardirqs_on+0x10/0x10 [ 310.466778] ? __lock_acquire+0x655/0x42a0 [ 310.471022] ? avc_has_extended_perms+0x6e2/0xbe0 [ 310.475863] ext4_ioctl+0x24b/0x39f0 [ 310.479579] ? avc_ss_reset+0x100/0x100 [ 310.483551] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 310.488733] ? __lock_acquire+0x655/0x42a0 [ 310.492962] ? lock_downgrade+0x6e0/0x6e0 [ 310.497114] ? trace_hardirqs_on+0x10/0x10 [ 310.501348] ? fsnotify+0x897/0x1110 [ 310.505063] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 310.510251] do_vfs_ioctl+0x75a/0xfe0 [ 310.514050] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 310.519680] ? ioctl_preallocate+0x1a0/0x1a0 [ 310.524095] ? security_file_ioctl+0x76/0xb0 [ 310.528590] ? security_file_ioctl+0x83/0xb0 [ 310.533017] SyS_ioctl+0x7f/0xb0 [ 310.536378] ? do_vfs_ioctl+0xfe0/0xfe0 [ 310.540354] do_syscall_64+0x1d5/0x640 [ 310.544071] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 [ 310.544238] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 310.559011] RIP: 0033:0x45cb29 [ 310.562192] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 310.569898] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 310.577159] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 310.584426] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 310.591752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 310.598999] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:09 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:09 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400), 0x0, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:09 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x6) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0xa, &(0x7f0000000100)}], 0x492492492492805, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='devices.list\x00', 0x0, 0x0) sendmmsg$alg(r2, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x1, 0x0) 15:14:09 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='bpf\x00', 0x8021, &(0x7f0000000240)={[{@mode={'mode', 0x3d, 0x7fff}}, {@mode={'mode', 0x3d, 0x7ff}}, {@mode={'mode'}}, {@mode={'mode', 0x3d, 0x7}}, {@mode={'mode', 0x3d, 0x20000}}, {@mode={'mode', 0x3d, 0x2}}, {@mode={'mode', 0x3d, 0x7}}]}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_MASTER={0x8, 0xa, r4}]}, 0x28}}, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) r6 = dup(r5) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r8 = socket$inet6(0xa, 0x2, 0x0) r9 = dup(r8) setsockopt$IP6T_SO_SET_REPLACE(r9, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) io_submit(0x0, 0x6, &(0x7f0000000940)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x7, 0x3, 0xffffffffffffffff, &(0x7f0000000340)="a5566f7380876e52630b36886e1cfa8ad80f86e91d09cdf7381b664d008419ddc13337a70b4d2beee46f0d0136a1811f22daa508ab8735", 0x37, 0x7, 0x0, 0x3}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x7, 0x7, r1, &(0x7f00000003c0)="62e72e9db26389eaa3ec7028d8859fa13bf1d10fc00ce3bfd067e7dabba31ea768fdcee281e1bf1105d2a906eceb3b188c5406a166b25ea250819ecafb9e17502c9175198e31dcd3767b9bda52dbb13a5687dbb2062426c1f93a0a34381d3fd9acc71fec7295e1f3927cec2494873c80cb62970adffb6c0c79c146daa04b6237527a61c6f39abcab51f5a45c5ac7ea968c287bef817af6c2d2530f21", 0x9c, 0x9, 0x0, 0x1, r6}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x6, 0x88, r0, &(0x7f0000000540)="7faa3846d5f729b95b3ffc01579fcdc18a053feb2247ef417b1c10299b18f006083e1e5c3030c51e4b719f683d75c8ef795bd7f2947e834d8db7a3e399c828023a43f56a0ff58b01fe6d2163a7e6ad752c5d1bf1c0c496b67e0a5091b5e227e1d4177bb335d78f3066a6ffe4b29df77e4933c4e9c4339843fe77b6be764c88167a87c1ed0a0a611895980f22a374252bcd730e10c85e33fa87aeda6952ef3a33a18a94d7da7adeca45ea18adacede6c28279f3ef218de9ec4acba75b06e44afc373e222d408f73d3d5825c681a7e45", 0xcf, 0x0, 0x0, 0x2}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x3, 0xff, r7, &(0x7f0000000680)="384bee0ec75fdf16472c344e6be0c4607cb14ffb220588ab17b44d34d5696c68b46d152b944855ca61b3a8e6851678a6a321c079676734a1301eca6a6766efb4a513ebbd5eca76bd2c1b65a314bcbef92b01fd81c739a4d76d3f97e3f29bfb10c7ed3f3df6b2cc4c99601ef7be81083a07b61a1631f8abd549a293d0aa4492567ca0c585e8f929ae43c12f6895f39a876e9e1ebd1ed10cf3ff6197738c0e267e5fd63d22f64f23b76560dc8abaa30ece29b0086b68955ea18a4e86b199853dff8dc2d6bef392bda8072a7ecf31733adff55f3e40c831f793a00a9315f45b6ec4960401c545", 0xe5, 0x5, 0x0, 0x1}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x5, 0x375, r0, &(0x7f00000007c0)="fb2c9f9dd865bddbb74ea8cca24f927555e617e7e2540b89d7f5b198c58b133135e7c8b91b9a22ea71005545197a5bb22b1e42d44521be02b5da6c0aaac3995b56a276c0064e8d910ba283c187c0fd54450366f5bb44b8533a12b150f66739c9a3a51b081970b813058ed4f9806941e28b9ef532939a4ecc5f2cdf27cc6e78687d24538825c63243575d197ba5c2fb4780efcb560d56af70ec0554cb6fc34dc3dd22ab5d6b0bc955b01add488312cd6f6522f7e874456075d603", 0xba, 0x1000, 0x0, 0x1, r9}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x3, 0x1, r0, &(0x7f00000008c0)="a89778943444924377a0b1d41466e6b04b1ba172cfa7cd4fb430dcb67f51e0ab6d0259138a25e38bbca55b", 0x2b, 0x7, 0x0, 0x3}]) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}}) 15:14:09 executing program 3 (fault-call:1 fault-nth:54): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:09 executing program 0: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r9 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r8}]}, 0x28}}, 0x0) fstat(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r10}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) [ 310.752145] FAULT_INJECTION: forcing a failure. [ 310.752145] name failslab, interval 1, probability 0, space 0, times 0 [ 310.784342] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 [ 310.808440] CPU: 1 PID: 13611 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 310.816368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 310.825721] Call Trace: [ 310.828313] dump_stack+0x1b2/0x283 [ 310.831952] should_fail.cold+0x10a/0x154 [ 310.836104] should_failslab+0xd6/0x130 [ 310.840087] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 310.844759] ext4_getfsmap_find_fixed_metadata+0x7ab/0x1690 [ 310.850478] ext4_getfsmap_datadev+0x3e3/0x1150 [ 310.855152] ? static_obj+0x50/0x50 [ 310.858775] ? unwind_get_return_address+0x51/0x90 [ 310.863700] ? __save_stack_trace+0x7b/0xd0 [ 310.868027] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.873996] ? sort+0x255/0x2c0 [ 310.877278] ext4_getfsmap+0x651/0x880 [ 310.881178] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.887151] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 310.892080] ? trace_hardirqs_on+0x10/0x10 [ 310.896316] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 310.902293] ? swap_inode_data+0x690/0x690 [ 310.906546] ext4_ioc_getfsmap+0x250/0x830 [ 310.910776] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 310.915447] ? trace_hardirqs_on+0x10/0x10 [ 310.919687] ? __lock_acquire+0x655/0x42a0 [ 310.923942] ? avc_has_extended_perms+0x6e2/0xbe0 [ 310.928788] ext4_ioctl+0x24b/0x39f0 [ 310.932504] ? avc_ss_reset+0x100/0x100 [ 310.936456] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 310.941624] ? __lock_acquire+0x655/0x42a0 [ 310.945848] ? lock_downgrade+0x6e0/0x6e0 [ 310.949985] ? trace_hardirqs_on+0x10/0x10 [ 310.954200] ? fsnotify+0x897/0x1110 [ 310.957899] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 310.963070] do_vfs_ioctl+0x75a/0xfe0 [ 310.966848] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 310.972452] ? ioctl_preallocate+0x1a0/0x1a0 [ 310.976841] ? security_file_ioctl+0x76/0xb0 [ 310.981336] ? security_file_ioctl+0x83/0xb0 [ 310.985731] SyS_ioctl+0x7f/0xb0 [ 310.989075] ? do_vfs_ioctl+0xfe0/0xfe0 [ 310.993034] do_syscall_64+0x1d5/0x640 [ 310.996905] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 311.002071] RIP: 0033:0x45cb29 15:14:10 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_MASTER={0x8, 0xa, r4}]}, 0x28}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x100400, &(0x7f0000000040)=ANY=[@ANYRES32=r6]) 15:14:10 executing program 3 (fault-call:1 fault-nth:55): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) [ 311.005242] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.012941] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 311.020199] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 311.027445] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 311.034697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 311.041944] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 15:14:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000180)=[@iv={0x18}, @op={0x18}, @op={0x18}, @iv={0x98, 0x117, 0x2, 0x7e, "a33d172900a74d46f04d47142654ac553b1a81c2a31a7c84d0e5f4bfdb0fc9e42f1fe91cd93f9b34dba8cab79ae2c55e1838094cd5730c8a1b1b69c2ba45b2baa7f9930ca967b05b50059f769657ce879f089a591a0ce7723d441cb3ae655a7768bfb2d34af0edd3e9c51aa72ec295ead71c446556fd6920a4ecef290f84"}, @op={0x18}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}], 0x128}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@op={0x18, 0x29}], 0x18}], 0x146, 0x0) 15:14:10 executing program 0: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_MASTER={0x8, 0xa, r7}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r9 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r8}]}, 0x28}}, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) [ 311.141444] FAULT_INJECTION: forcing a failure. [ 311.141444] name failslab, interval 1, probability 0, space 0, times 0 15:14:10 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00') sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="1709000000dfffffffff02"], 0x1c}}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x2c, r2, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@L2TP_ATTR_UDP_CSUM={0x5}, @L2TP_ATTR_FD={0x8, 0x17, @udp6=r3}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24020044}, 0x4) ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8983, &(0x7f0000000000)={0x8, 'ip6erspan0\x00', {'netpci0\x00'}, 0x9}) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="4cad86ab75705f69643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) 15:14:10 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000000)=0xfff, 0x4) [ 311.183183] CPU: 0 PID: 13633 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 311.191094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 311.200445] Call Trace: [ 311.203037] dump_stack+0x1b2/0x283 [ 311.206674] should_fail.cold+0x10a/0x154 [ 311.210830] should_failslab+0xd6/0x130 [ 311.214807] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 311.219480] ext4_getfsmap_find_fixed_metadata+0x943/0x1690 [ 311.225199] ext4_getfsmap_datadev+0x3e3/0x1150 [ 311.229868] ? static_obj+0x50/0x50 [ 311.233500] ? unwind_get_return_address+0x51/0x90 [ 311.238425] ? __save_stack_trace+0x7b/0xd0 [ 311.242753] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 311.247494] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 [ 311.248721] ? sort+0x255/0x2c0 [ 311.248741] ext4_getfsmap+0x651/0x880 [ 311.248755] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 311.248767] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 311.248778] ? trace_hardirqs_on+0x10/0x10 [ 311.280780] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 311.286762] ? swap_inode_data+0x690/0x690 [ 311.291018] ext4_ioc_getfsmap+0x250/0x830 [ 311.295253] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 311.299926] ? trace_hardirqs_on+0x10/0x10 [ 311.304170] ? __lock_acquire+0x655/0x42a0 [ 311.308426] ? avc_has_extended_perms+0x6e2/0xbe0 [ 311.313270] ext4_ioctl+0x24b/0x39f0 [ 311.316978] ? avc_ss_reset+0x100/0x100 [ 311.320952] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 311.326142] ? __lock_acquire+0x655/0x42a0 [ 311.330376] ? lock_downgrade+0x6e0/0x6e0 [ 311.334530] ? trace_hardirqs_on+0x10/0x10 [ 311.338764] ? fsnotify+0x897/0x1110 [ 311.342484] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 311.347673] do_vfs_ioctl+0x75a/0xfe0 [ 311.351475] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 311.357099] ? ioctl_preallocate+0x1a0/0x1a0 [ 311.361515] ? security_file_ioctl+0x76/0xb0 [ 311.365919] ? security_file_ioctl+0x83/0xb0 [ 311.370324] SyS_ioctl+0x7f/0xb0 [ 311.373684] ? do_vfs_ioctl+0xfe0/0xfe0 [ 311.377653] do_syscall_64+0x1d5/0x640 [ 311.381543] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 311.386723] RIP: 0033:0x45cb29 [ 311.389906] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.397610] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 311.404872] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 311.412145] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 311.419416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 311.426678] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 313.370134] NOHZ: local_softirq_pending 08 15:14:12 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(r1, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:12 executing program 0: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'}) r2 = socket(0x10, 0x803, 0x0) creat(&(0x7f0000000480)='./file0\x00', 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0xffffff7f, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_MASTER={0x8, 0xa, r5}]}, 0x28}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x203000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0x70, 0x0, 0x624, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x33}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0x70}, 0x1, 0x0, 0x0, 0x401c052}, 0x7317ec191697b29c) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r6 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_inet_SIOCDELRT(r6, 0x890c, &(0x7f0000000400)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @remote}, {0x2, 0x4e23, @private=0xa010100}, 0x200, 0x0, 0x0, 0x0, 0x7, &(0x7f00000002c0), 0x0, 0x5, 0x7fff}) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuseblk\x00', 0x0, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}]}}) 15:14:12 executing program 3 (fault-call:1 fault-nth:56): r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x252a, 0x2, 0x3000000, [], [{}, {0x801}]}) 15:14:12 executing program 2: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='fuseblk\x00', 0x0, &(0x7f00000004c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = dup3(r0, r0, 0x0) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r3) socketpair$unix(0x1, 0x80003, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setuid(r5) mount$9p_xen(&(0x7f0000000100)='syz\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x80, &(0x7f0000000240)={'trans=xen,', {[{@dfltuid={'dfltuid'}}, {@nodevmap='nodevmap'}], [{@uid_eq={'uid', 0x3d, r3}}, {@measure='measure'}, {@euid_eq={'euid', 0x3d, r5}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/binder#\x00'}}, {@dont_measure='dont_measure'}, {@measure='measure'}, {@dont_appraise='dont_appraise'}, {@seclabel='seclabel'}]}}) r6 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) chown(&(0x7f0000000000)='./file0\x00', r7, r8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0}, &(0x7f00000001c0)=0xc) mount$fuse(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000240)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r8}, 0x2c, {[{@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}], [{@seclabel='seclabel'}, {@pcr={'pcr', 0x3d, 0x1c}}, {@uid_eq={'uid', 0x3d, r9}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x66, 0x65, 0x63, 0x39, 0x37, 0x63, 0x37], 0x2d, [0x66, 0x38, 0x71, 0x34], 0x2d, [0x39, 0x61, 0x39], 0x2d, [0x32, 0x31, 0x34, 0x84b102a2c48230c0], 0x2d, [0x34, 0x31, 0x66, 0x5f, 0x63, 0x39, 0x66, 0x37]}}}, {@appraise='appraise'}, {@obj_role={'obj_role', 0x3d, ':-'}}, {@context={'context', 0x3d, 'root'}}]}}) 15:14:12 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit(0x0) r0 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3e) recvmmsg(r1, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x12) poll(&(0x7f0000b2c000)=[{r2}], 0x1, 0xfffffffffffffff8) dup2(r1, r2) fcntl$setown(r2, 0x8, r0) tkill(r0, 0x14) 15:14:12 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x8) r1 = socket(0x10, 0x800000000080003, 0x0) sendmmsg$alg(r1, &(0x7f00000003c0)=[{0x0, 0xd2efff7f00000000, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x1, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$alg(r0, &(0x7f00000000c0)=[{0x0, 0xff00, 0x0, 0x0, &(0x7f0000002780)=[@assoc={0x18, 0x117, 0x4, 0x6}], 0x18}], 0x1, 0x20000000) r2 = socket$inet6(0xa, 0x6, 0x2) r3 = dup(r2) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) r4 = socket$inet6(0xa, 0x2, 0x0) r5 = dup(r4) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) getpeername$netrom(r6, &(0x7f0000000280)={{0x3, @null}, [@default, @null, @remote, @default, @null, @default, @null, @netrom]}, &(0x7f0000000100)=0x48) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r5, 0xc01064bd, &(0x7f0000000000)={&(0x7f0000000180)="01470b084e54a18e2d60e70ae110adac1d75a51c85bcc292ff362f087b1e4e932ec6ee88ed10ebb4baf04c3f7a76a910e133a9cad595a7b031454f688b0fb0565ae2947370de32ddd0a0f542e1b78656ab19f62b2eb8fa63b8f758dd6a7826734cec77555497716d74763b55e5a6623f3dfa66b86d69b22eb43f4757afa994c67bce0e87ec34632d6b141b5fcba5ed6e96b594ac1e5c8e95de2054df7bed3c7b5f02561cef778f12cef134436d398db4ee151bc26a43fb9f4f6148e21cae9c408556ffa90b52a1859e18cecea9ec1d10cf6348989798a1dcca24367899f5d3755c77b2b291ae3456b538af82279919df912e458f", 0xf4, 0x0}) r8 = dup(0xffffffffffffffff) setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000540)=@mangle={'mangle\x00', 0x1f, 0x6, 0x728, 0x310, 0x538, 0x538, 0x310, 0x310, 0x658, 0x658, 0x658, 0x658, 0x658, 0x6, 0x0, {[{{@ipv6={@ipv4={[], [], @loopback}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'virt_wifi0\x00', 'ipvlan0\x00'}, 0x0, 0x1e0, 0x228, 0x0, {}, [@common=@rt={{0x138, 'rt\x00'}, {0x0, [], 0x0, 0x0, 0x0, [@remote, @mcast1, @private1, @mcast2, @initdev={0xfe, 0x88, [], 0x0, 0x0}, @loopback, @mcast1, @private0, @private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, @private1, @mcast1, @remote, @private2]}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@remote}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@ipv6={@mcast2, @loopback, [], [], 'batadv_slave_1\x00'}, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28, 'ipv6header\x00'}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@dev, @ipv6=@loopback}}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}, @common=@hl={{0x28, 'hl\x00'}}]}, @HL={0x28, 'HL\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x788) ioctl$VIDIOC_G_FBUF(r8, 0x8030560a, &(0x7f0000000380)={0x4, 0x0, &(0x7f0000000300)="c8cf2585627f1cedc482d3b013f135941f1a0c086d72bccfcefca227a4ff171d5e522ae6cae2d0ca3133302491d301b00130b55d7f7c7cc4126c38b45da1cadb33b90c", {0x629, 0xffff, 0x50323234, 0x8, 0x1, 0x6, 0x1, 0xbf7a}}) ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r3, 0xc00464be, &(0x7f0000000040)={r7}) [ 313.722824] FAULT_INJECTION: forcing a failure. [ 313.722824] name failslab, interval 1, probability 0, space 0, times 0 [ 313.754280] SELinux: security_context_str_to_sid(staff_u) failed for (dev loop0, type fuseblk) errno=-22 [ 313.772509] CPU: 0 PID: 13675 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 313.780410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 313.784465] sysfs: cannot create duplicate filename '/devices/virtual/bdi/7:0-fuseblk' [ 313.789759] Call Trace: [ 313.789778] dump_stack+0x1b2/0x283 [ 313.789797] should_fail.cold+0x10a/0x154 [ 313.789812] should_failslab+0xd6/0x130 [ 313.789823] kmem_cache_alloc_trace+0x2b7/0x3f0 [ 313.789839] ext4_getfsmap_find_fixed_metadata+0xb0f/0x1690 [ 313.789858] ext4_getfsmap_datadev+0x3e3/0x1150 [ 313.789867] ? static_obj+0x50/0x50 [ 313.789876] ? unwind_get_return_address+0x51/0x90 [ 313.789885] ? __save_stack_trace+0x7b/0xd0 [ 313.789898] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 313.789910] ? sort+0x255/0x2c0 [ 313.838470] ------------[ cut here ]------------ [ 313.840269] ext4_getfsmap+0x651/0x880 [ 313.846223] WARNING: CPU: 1 PID: 13678 at fs/sysfs/dir.c:30 sysfs_warn_dup.cold+0x17/0x2d [ 313.849474] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 313.854198] Kernel panic - not syncing: panic_on_warn set ... [ 313.854198] [ 313.858062] ? ext4_getfsmap_datadev+0x1150/0x1150 [ 313.884517] ? trace_hardirqs_on+0x10/0x10 [ 313.888730] ? ext4_getfsmap_find_fixed_metadata+0x1690/0x1690 [ 313.894688] ? swap_inode_data+0x690/0x690 [ 313.898916] ext4_ioc_getfsmap+0x250/0x830 [ 313.903128] ? ext4_getfsmap_format+0x4f0/0x4f0 [ 313.907789] ? trace_hardirqs_on+0x10/0x10 [ 313.912007] ? __lock_acquire+0x655/0x42a0 [ 313.916229] ? avc_has_extended_perms+0x6e2/0xbe0 [ 313.921053] ext4_ioctl+0x24b/0x39f0 [ 313.924742] ? avc_ss_reset+0x100/0x100 [ 313.928697] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 313.933877] ? __lock_acquire+0x655/0x42a0 [ 313.938348] ? lock_downgrade+0x6e0/0x6e0 [ 313.942478] ? trace_hardirqs_on+0x10/0x10 [ 313.946693] ? fsnotify+0x897/0x1110 [ 313.950387] ? ext4_ioctl_check_immutable+0x1c0/0x1c0 [ 313.955727] do_vfs_ioctl+0x75a/0xfe0 [ 313.959505] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 313.965106] ? ioctl_preallocate+0x1a0/0x1a0 [ 313.969497] ? security_file_ioctl+0x76/0xb0 [ 313.973883] ? security_file_ioctl+0x83/0xb0 [ 313.978267] SyS_ioctl+0x7f/0xb0 [ 313.981610] ? do_vfs_ioctl+0xfe0/0xfe0 [ 313.985562] do_syscall_64+0x1d5/0x640 [ 313.989435] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 313.994599] RIP: 0033:0x45cb29 [ 313.997763] RSP: 002b:00007fcd51f63c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 314.005460] RAX: ffffffffffffffda RBX: 00000000004e61c0 RCX: 000000000045cb29 [ 314.012706] RDX: 00000000200004c0 RSI: 00000000c0c0583b RDI: 0000000000000003 [ 314.019953] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 314.027197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 314.034614] R13: 000000000000032a R14: 00000000004c5c57 R15: 00007fcd51f646d4 [ 314.041876] CPU: 1 PID: 13678 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 314.049752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 314.059082] Call Trace: [ 314.061649] dump_stack+0x1b2/0x283 [ 314.065257] panic+0x1f9/0x42d [ 314.068427] ? add_taint.cold+0x16/0x16 [ 314.072381] ? sysfs_warn_dup.cold+0x17/0x2d [ 314.076765] ? __warn.cold+0x14/0x30 [ 314.080459] ? sysfs_warn_dup.cold+0x17/0x2d [ 314.084843] __warn.cold+0x2f/0x30 [ 314.088360] ? ist_end_non_atomic+0x10/0x10 [ 314.092658] ? sysfs_warn_dup.cold+0x17/0x2d [ 314.097044] report_bug+0x20a/0x248 [ 314.100653] do_error_trap+0x195/0x2d0 [ 314.104519] ? math_error+0x2d0/0x2d0 [ 314.108294] ? ___preempt_schedule+0x16/0x18 [ 314.112680] ? vprintk_emit+0x3db/0x600 [ 314.116630] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 314.121463] invalid_op+0x1b/0x40 [ 314.124894] RIP: 0010:sysfs_warn_dup.cold+0x17/0x2d [ 314.129884] RSP: 0018:ffff8880524c77c8 EFLAGS: 00010282 [ 314.135222] RAX: 000000000000004a RBX: ffff88808aaaee90 RCX: 0000000000000000 [ 314.142467] RDX: 000000000002b75f RSI: ffffffff81499420 RDI: ffffed100a498eef [ 314.149712] RBP: ffff88805c546640 R08: 000000000000004a R09: 0000000000000000 [ 314.156955] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a452cd20 [ 314.164205] R13: ffff8880a8b55040 R14: ffff88808aaaeea8 R15: ffff888097300bd8 [ 314.171471] ? vprintk_func+0x60/0x152 [ 314.175337] ? sysfs_warn_dup.cold+0x17/0x2d [ 314.179733] sysfs_create_dir_ns+0x16f/0x1d0 [ 314.184119] kobject_add_internal+0x27f/0x830 [ 314.188596] kobject_add+0x11f/0x180 [ 314.192286] ? kset_create_and_add+0x190/0x190 [ 314.196873] device_add+0x361/0x13f0 [ 314.200580] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 314.206006] ? device_private_init+0x180/0x180 [ 314.210564] ? kfree+0x205/0x260 [ 314.213913] device_create_groups_vargs+0x1dc/0x250 [ 314.218909] device_create_vargs+0x3a/0x50 [ 314.223126] bdi_register_va.part.0+0x35/0x650 [ 314.227688] bdi_register_va+0x63/0x80 [ 314.231566] super_setup_bdi_name+0x123/0x220 [ 314.236036] ? kill_block_super+0xe0/0xe0 [ 314.240168] ? do_raw_spin_unlock+0x164/0x250 [ 314.244653] fuse_fill_super+0x92d/0x1620 [ 314.248781] ? fuse_get_root_inode+0xc0/0xc0 [ 314.253165] ? lock_downgrade+0x6e0/0x6e0 [ 314.257293] ? set_blocksize+0x24b/0x2e0 [ 314.261334] mount_bdev+0x2b3/0x360 [ 314.264938] ? fuse_get_root_inode+0xc0/0xc0 [ 314.269343] mount_fs+0x92/0x2a0 [ 314.272698] vfs_kern_mount.part.0+0x5b/0x3c0 [ 314.277185] do_mount+0x3c9/0x25e0 [ 314.280727] ? copy_mount_string+0x40/0x40 [ 314.284963] ? kmem_cache_alloc_trace+0x389/0x3f0 [ 314.289806] ? copy_mnt_ns+0x8a0/0x8a0 [ 314.293799] ? copy_mount_options+0x1ec/0x2e0 [ 314.298275] ? copy_mnt_ns+0x8a0/0x8a0 [ 314.302161] SyS_mount+0xa8/0x120 [ 314.305607] ? copy_mnt_ns+0x8a0/0x8a0 [ 314.309478] do_syscall_64+0x1d5/0x640 [ 314.313351] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 314.318518] RIP: 0033:0x45cb29 [ 314.321688] RSP: 002b:00007f618a473c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 314.329466] RAX: ffffffffffffffda RBX: 00000000004f7640 RCX: 000000000045cb29 [ 314.336723] RDX: 0000000020000100 RSI: 0000000020000200 RDI: 0000000020000180 [ 314.343975] RBP: 000000000078bf00 R08: 00000000200004c0 R09: 0000000000000000 [ 314.351223] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 314.358471] R13: 000000000000077c R14: 00000000004ca740 R15: 00007f618a4746d4 [ 314.367692] Kernel Offset: disabled [ 314.371373] Rebooting in 86400 seconds..