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", 0x1000) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r7, 0x84, 0x7, &(0x7f0000000100)={0x8}, 0x4) [ 1039.306903] ? security_file_ioctl+0x76/0xb0 [ 1039.311307] ? security_file_ioctl+0x83/0xb0 [ 1039.315725] SyS_ioctl+0x7f/0xb0 [ 1039.319126] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1039.323111] do_syscall_64+0x1d5/0x640 [ 1039.327106] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1039.332332] RIP: 0033:0x45c829 [ 1039.335520] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1039.343228] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1039.350493] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1039.357752] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.365028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1039.372304] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:19 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:19 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000300)="e0b6577b705df5e83635ed10b26a5e71f33539f2abb4306bcbc0a4b82595906a925c1fe18ea2ac716ba7234fb665f8eb7621c97fabe7cba92e89b6a5c21db8b23a", 0x41}], 0x1, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000040), &(0x7f0000000100)=0x14) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:19 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x8004, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r3, 0xc0505510, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0x0, &(0x7f0000000000)=[{}]}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS32(r1, 0xc0245720, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:20 executing program 2 (fault-call:11 fault-nth:11): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1040.033266] FAULT_INJECTION: forcing a failure. [ 1040.033266] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.044856] CPU: 1 PID: 24742 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1040.052780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1040.062148] Call Trace: [ 1040.064751] dump_stack+0x13e/0x194 [ 1040.068390] should_fail.cold+0x10a/0x14b [ 1040.072586] should_failslab+0xd6/0x130 [ 1040.076560] kmem_cache_alloc+0x2b5/0x770 [ 1040.080710] ? ___preempt_schedule+0x16/0x18 [ 1040.085118] ? preempt_schedule_common+0x4a/0xc0 [ 1040.089884] get_empty_filp+0x86/0x3e0 [ 1040.093771] alloc_file+0x23/0x440 [ 1040.097312] anon_inode_getfile+0x163/0x2f0 [ 1040.101632] ? reverse_path_check_proc.cold+0x1a/0x1a [ 1040.106818] ? __alloc_fd+0x1bf/0x490 [ 1040.110623] kvm_dev_ioctl+0x517/0x1480 [ 1040.114598] ? retint_kernel+0x2d/0x2d [ 1040.118489] ? kvm_put_kvm+0xa90/0xa90 [ 1040.122381] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1040.126354] ? kvm_put_kvm+0xa90/0xa90 [ 1040.130243] do_vfs_ioctl+0x75a/0xfe0 [ 1040.134063] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1040.138820] ? ioctl_preallocate+0x1a0/0x1a0 [ 1040.143243] ? security_file_ioctl+0x76/0xb0 [ 1040.147850] ? security_file_ioctl+0x83/0xb0 [ 1040.152259] SyS_ioctl+0x7f/0xb0 [ 1040.155625] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1040.159606] do_syscall_64+0x1d5/0x640 [ 1040.163537] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1040.168713] RIP: 0033:0x45c829 [ 1040.172015] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1040.179714] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1040.187078] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1040.194335] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.201615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1040.208966] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:20 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = syz_open_pts(0xffffffffffffffff, 0x230800) ioctl$TCSETA(r1, 0x5406, &(0x7f0000000140)={0x9, 0x0, 0x400, 0x8, 0x3, "dd766829e4a23f48"}) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:20 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:20 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, r1) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:21 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) splice(r5, &(0x7f0000000040), r2, &(0x7f0000000100)=0x2, 0x7fff, 0xa) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:21 executing program 2 (fault-call:11 fault-nth:12): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:21 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x161c1b75) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x1, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x1, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1040.966435] FAULT_INJECTION: forcing a failure. [ 1040.966435] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.977899] CPU: 1 PID: 24800 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1040.985788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1040.995150] Call Trace: [ 1040.997748] dump_stack+0x13e/0x194 [ 1041.001391] should_fail.cold+0x10a/0x14b [ 1041.005557] should_failslab+0xd6/0x130 [ 1041.009536] kmem_cache_alloc+0x2b5/0x770 [ 1041.013697] ? security_file_alloc+0x4f/0xa0 [ 1041.018149] selinux_file_alloc_security+0xaf/0x190 [ 1041.023175] security_file_alloc+0x66/0xa0 [ 1041.027415] ? selinux_is_enabled+0x5/0x50 [ 1041.031748] get_empty_filp+0x15c/0x3e0 [ 1041.035740] alloc_file+0x23/0x440 [ 1041.039288] anon_inode_getfile+0x163/0x2f0 [ 1041.043617] ? reverse_path_check_proc.cold+0x1a/0x1a [ 1041.048812] ? __alloc_fd+0x1bf/0x490 [ 1041.052634] kvm_dev_ioctl+0x517/0x1480 [ 1041.056619] ? kvm_put_kvm+0xa90/0xa90 [ 1041.060512] ? kvm_put_kvm+0xa90/0xa90 [ 1041.064399] do_vfs_ioctl+0x75a/0xfe0 [ 1041.068200] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1041.072959] ? ioctl_preallocate+0x1a0/0x1a0 [ 1041.077380] ? security_file_ioctl+0x76/0xb0 [ 1041.081788] ? security_file_ioctl+0x83/0xb0 [ 1041.086198] SyS_ioctl+0x7f/0xb0 [ 1041.089564] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1041.093553] do_syscall_64+0x1d5/0x640 [ 1041.097458] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1041.102652] RIP: 0033:0x45c829 [ 1041.105840] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1041.113553] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1041.121445] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1041.128770] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1041.136047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1041.143324] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:21 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:21 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0xad, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x8800, 0xfffffffffffffffc, 0x0, 0x0, 0x5000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000140)=0x1) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:21 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="01800000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000002cc0)=[{0x0, 0x29e, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="2000000004000000000000000008dc802b6e483d58954f487b0e4d186bcfc0ec3e63842ef704b784cdd363b552a1329018e62efd2eedeaf4d015905caaa9378f90", @ANYRES32=r5], 0x20}], 0x1, 0x0) setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100)={r5, 0x4040000}, 0x8) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:21 executing program 2 (fault-call:11 fault-nth:13): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:22 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0xffffffffffffffa4}, 0x1, 0x0, 0x0, 0x2400c891}, 0x400c0d0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$netrom_NETROM_IDLE(r3, 0x103, 0x7, &(0x7f0000000040)=0x86d, &(0x7f0000000100)=0x4) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ppp\x00', 0x10000, 0x0) ioctl$PPPIOCSMRRU(r4, 0x4004743b, &(0x7f0000000480)=0x81) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340)='nl80211\x00') sendmsg$NL80211_CMD_SET_MPATH(r2, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, r7, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x2, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1041.876624] FAULT_INJECTION: forcing a failure. [ 1041.876624] name failslab, interval 1, probability 0, space 0, times 0 [ 1041.888132] CPU: 1 PID: 24862 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1041.896027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1041.905397] Call Trace: [ 1041.908001] dump_stack+0x13e/0x194 [ 1041.911642] should_fail.cold+0x10a/0x14b [ 1041.918150] should_failslab+0xd6/0x130 [ 1041.922397] kmem_cache_alloc+0x2b5/0x770 13:49:22 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x40, 0x0, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xffffffffffffffff}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1000}}, @NL80211_ATTR_WIPHY={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000811}, 0x20044000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000240)={r3, r4, 0x16, 0x83, &(0x7f0000000100)="7304b5455df275d8ba270e477a8437001df86f27a647559659a191e540fff370a2dadb831610fd899396c7a0ec5d5e88f04d99095608385791a4cc7843fd7ebe6f021b5d8c09c59f051381784f76a2c0b2499cdec4e3e4437b31a47a26c8ab35671722107bbb76723cf6e599eae943c9e8c37bbef5c8db35f0da3ae1f6050178810afa", 0x2, 0x3f, 0x8000, 0x1, 0xffff, 0x2, 0x7, 'syz0\x00'}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1041.926556] ? __d_lookup+0x3b4/0x670 [ 1041.930369] ? mark_held_locks+0xa6/0xf0 [ 1041.934437] __d_alloc+0x2a/0x9b0 [ 1041.937900] d_alloc+0x46/0x250 [ 1041.941186] __lookup_hash+0x51/0x180 [ 1041.945000] lookup_one_len+0x27c/0x3a0 [ 1041.948977] ? __lookup_hash+0x180/0x180 [ 1041.953055] start_creating+0xa1/0x1c0 [ 1041.956946] debugfs_create_dir+0x1f/0x3a0 [ 1041.961186] kvm_dev_ioctl+0xadd/0x1480 [ 1041.965173] ? kvm_put_kvm+0xa90/0xa90 [ 1041.969073] ? kvm_put_kvm+0xa90/0xa90 [ 1041.972961] do_vfs_ioctl+0x75a/0xfe0 [ 1041.976765] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1041.981526] ? ioctl_preallocate+0x1a0/0x1a0 [ 1041.986300] ? security_file_ioctl+0x76/0xb0 [ 1041.990717] ? security_file_ioctl+0x83/0xb0 [ 1041.995133] SyS_ioctl+0x7f/0xb0 [ 1041.998510] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1042.002491] do_syscall_64+0x1d5/0x640 [ 1042.006390] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1042.011583] RIP: 0033:0x45c829 [ 1042.015061] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1042.022771] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1042.030158] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1042.037424] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1042.044693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1042.051960] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:22 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:22 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000140)=0x60, 0x2) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r4, 0x112, 0xc, &(0x7f0000000840)=0x1, &(0x7f0000000880)=0x2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:22 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, 0x0, 0x0) sendmsg$AUDIT_USER_AVC(r1, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x453, 0x400, 0x70bd29, 0x25dfdbff, "54b7afcc45f29120bf57622a8989023654712f9befa313284494338387e9dfd537704670800ea6", ["", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:22 executing program 2 (fault-call:11 fault-nth:14): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1042.769909] FAULT_INJECTION: forcing a failure. [ 1042.769909] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.781659] CPU: 1 PID: 24918 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1042.789558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1042.798935] Call Trace: [ 1042.801529] dump_stack+0x13e/0x194 [ 1042.805170] should_fail.cold+0x10a/0x14b [ 1042.809338] should_failslab+0xd6/0x130 [ 1042.813314] kmem_cache_alloc+0x2b5/0x770 13:49:23 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x11) [ 1042.817469] alloc_inode+0xa0/0x170 [ 1042.821094] new_inode_pseudo+0x14/0xe0 [ 1042.825074] new_inode+0x1b/0x40 [ 1042.828444] debugfs_get_inode+0x1a/0x130 [ 1042.832598] debugfs_create_dir+0x63/0x3a0 [ 1042.836836] kvm_dev_ioctl+0xadd/0x1480 [ 1042.840822] ? kvm_put_kvm+0xa90/0xa90 [ 1042.844718] ? kvm_put_kvm+0xa90/0xa90 [ 1042.848606] do_vfs_ioctl+0x75a/0xfe0 [ 1042.852408] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1042.857168] ? ioctl_preallocate+0x1a0/0x1a0 [ 1042.861593] ? security_file_ioctl+0x76/0xb0 [ 1042.866004] ? security_file_ioctl+0x83/0xb0 [ 1042.870431] SyS_ioctl+0x7f/0xb0 [ 1042.873807] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1042.877783] do_syscall_64+0x1d5/0x640 [ 1042.881682] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1042.886876] RIP: 0033:0x45c829 [ 1042.890062] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1042.897774] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1042.905050] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1042.912323] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1042.919596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1042.926865] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:23 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) 13:49:23 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r3, 0x29, 0x37, &(0x7f0000000100)={0x3c, 0x1, [], [@enc_lim={0x4, 0x1, 0x5e}, @enc_lim={0x4, 0x1, 0x81}, @enc_lim]}, 0x18) ioctl$EXT4_IOC_MIGRATE(r2, 0x6609) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:23 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x2, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$BLKZEROOUT(r5, 0x127f, &(0x7f0000000140)={0xba07, 0x3}) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:23 executing program 2 (fault-call:11 fault-nth:15): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1043.658715] FAULT_INJECTION: forcing a failure. [ 1043.658715] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.670228] CPU: 1 PID: 24985 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1043.678120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1043.687475] Call Trace: [ 1043.690072] dump_stack+0x13e/0x194 [ 1043.695099] should_fail.cold+0x10a/0x14b [ 1043.699255] should_failslab+0xd6/0x130 [ 1043.703232] kmem_cache_alloc+0x2b5/0x770 [ 1043.707383] ? __d_lookup+0x3b4/0x670 [ 1043.711185] __d_alloc+0x2a/0x9b0 [ 1043.714643] d_alloc+0x46/0x250 [ 1043.717923] __lookup_hash+0x51/0x180 [ 1043.721730] lookup_one_len+0x27c/0x3a0 [ 1043.725710] ? __lookup_hash+0x180/0x180 [ 1043.729780] start_creating+0xa1/0x1c0 [ 1043.733673] debugfs_create_dir+0x1f/0x3a0 [ 1043.737909] kvm_dev_ioctl+0xadd/0x1480 [ 1043.741902] ? kvm_put_kvm+0xa90/0xa90 [ 1043.745807] ? kvm_put_kvm+0xa90/0xa90 [ 1043.749831] do_vfs_ioctl+0x75a/0xfe0 [ 1043.753634] ? selinux_file_mprotect+0x5c0/0x5c0 13:49:24 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, &(0x7f0000000240)=0xd82f) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000300)="cca849debe7d4f8e2c43346bf137778fd7629cc0c4a912d16f3957708bd439d6866aae0cf1af8e5b415553f7c70180ba00c6a0", 0x33}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r6, 0x29, 0xd3, &(0x7f0000000100)={{0xa, 0x4e23, 0x5, @dev={0xfe, 0x80, [], 0x1c}, 0xc3}, {0xa, 0x4e23, 0xec, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000}, 0x2, [0x1, 0x2, 0x4, 0x7, 0x0, 0x4, 0xfffffff7, 0x40d1]}, 0x5c) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1043.758396] ? ioctl_preallocate+0x1a0/0x1a0 [ 1043.762820] ? security_file_ioctl+0x76/0xb0 [ 1043.767234] ? security_file_ioctl+0x83/0xb0 [ 1043.771647] SyS_ioctl+0x7f/0xb0 [ 1043.775013] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1043.778990] do_syscall_64+0x1d5/0x640 [ 1043.782893] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1043.788082] RIP: 0033:0x45c829 [ 1043.791280] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1043.798989] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1043.806265] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1043.813535] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.820804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1043.828082] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:24 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) 13:49:24 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvme-fabrics\x00', 0x100000, 0x0) bind$vsock_dgram(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @host}, 0x10) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$UI_ABS_SETUP(r5, 0x401c5504, &(0x7f0000000280)={0x5a8, {0x1ff, 0x80000000, 0x6, 0x8, 0x5, 0xcc}}) ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000180)=0x3) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000240)=0x14) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000000540)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}, {&(0x7f00000002c0)="8b6123647f5e43a8200c1415716ff4e12671980eb26d4e3210bd6176197a8adbb322cc0f3e7151f490996c", 0x2b}, {&(0x7f0000000300)="e2d90da05fc13a5d43fc622acf66bad891497d6df0af8f475f663e074b539145fedeb2bf26c42fd245ca9c86e244fb74ceff93758051c2470cc1f00143bb684ec46a4e08879f2640c77d0f9b4a53ef1f5b88227d9c3777cda3ac76597128270f017a771b0cc4124e0175cc9452cd81796decb5b43d7a3e6917f3babbbddc1dac657db13cc5d4f6690f29e99fe670616a1c90fed2de4d41cbad", 0x99}, {&(0x7f00000003c0)='\rg,', 0x3}, {&(0x7f0000000400)="5cb766a1277a584ad9ef7ffe8f8657fb88e570a44aaaf1bd252cb82e8abbadfacea34afac4617bd172471667207f2956606e41202f9824682fecefe670273d83c21567cf6f20c55f574d962d6dcc951a5e4c0c3b4263b9600fbe79b51da67e29c46fbc40ef8f58ac58ad732a3963e54d893148fda26548e5cc62970b2d89ac820ef78e6c4126e980e665d10aa1ae6a07c059077f883fd966e0c75140b1", 0x9d}], 0x5) 13:49:24 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$ION_IOC_HEAP_QUERY(r2, 0xc0184908, &(0x7f0000000140)={0x34, 0x0, &(0x7f0000000100)}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:24 executing program 2 (fault-call:11 fault-nth:16): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:24 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x48aac2, 0x0) setsockopt$inet_sctp_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x8, 0x3, 0x1, 0x5, 0x8, 0x5d, 0x7f, 0x9, 0x3, 0xff, 0xff, 0x7, 0x5}, 0xe) [ 1044.535244] FAULT_INJECTION: forcing a failure. [ 1044.535244] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1044.548142] CPU: 0 PID: 25053 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1044.556041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1044.565396] Call Trace: [ 1044.567995] dump_stack+0x13e/0x194 [ 1044.571632] should_fail.cold+0x10a/0x14b [ 1044.575784] __alloc_pages_nodemask+0x1bf/0x700 [ 1044.580458] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1044.585481] ? inode_doinit_with_dentry+0x735/0xe30 [ 1044.590498] ? lockref_get+0x11/0x50 [ 1044.594220] alloc_pages_current+0xe7/0x1e0 [ 1044.598548] __get_free_pages+0xb/0x40 [ 1044.602437] inode_doinit_with_dentry+0x7b6/0xe30 [ 1044.607290] ? selinux_cred_free+0x70/0x70 [ 1044.611530] ? put_itimerspec64+0x190/0x190 [ 1044.615856] selinux_d_instantiate+0x23/0x30 [ 1044.620264] security_d_instantiate+0x54/0xd0 [ 1044.624762] d_instantiate+0x5a/0x90 [ 1044.628488] debugfs_create_dir+0x10a/0x3a0 [ 1044.632818] kvm_dev_ioctl+0xadd/0x1480 [ 1044.636797] ? retint_kernel+0x2d/0x2d [ 1044.640709] ? kvm_put_kvm+0xa90/0xa90 [ 1044.644690] ? kvm_put_kvm+0xa90/0xa90 [ 1044.648581] do_vfs_ioctl+0x75a/0xfe0 [ 1044.652382] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1044.657142] ? ioctl_preallocate+0x1a0/0x1a0 [ 1044.661567] ? security_file_ioctl+0x76/0xb0 [ 1044.665981] ? security_file_ioctl+0x83/0xb0 [ 1044.670396] SyS_ioctl+0x7f/0xb0 [ 1044.673857] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1044.677835] do_syscall_64+0x1d5/0x640 [ 1044.681727] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1044.686914] RIP: 0033:0x45c829 [ 1044.690097] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1044.697819] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1044.705097] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1044.712367] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1044.719637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1044.726914] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:25 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) 13:49:25 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd26, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x6) writev(r7, &(0x7f0000000580)=[{&(0x7f0000000100)="7011fc164321f42af1ad50baf52b427f2a94172348e7bfd30decf10bb35a7e3589f0f874ae6bb8ec85344e03f435d14b9714f8a179c3b7c52982722806ba2be533665057f5e75551d343b4958b479ee93c25a96838cd3ffc342c304dfcb8141c8fe08d239796c4424f3a4a", 0x6b}, {&(0x7f0000000240)="eddb391472a34bb8162810154130d0e3887644839ce5966ab4b3dd646555fd4db292f29d645aa26efac440c9ad889edcbfe8a9367c629f3c11fd23a7a72e586daf01f850b29fefd7f85f4ddb9d90eadbe4e338ea26", 0x9}, {&(0x7f0000000600)="5036d0ddb2af6bb38e5034a001002f3a58b62c07f3e5b4e00658c71d2d800800113e825ae0a730d15c6f20ae001000000000000098015aef1c3dbcfe21c62a61d49a0745b080f8b0374f11bf8322332e76142837a4423c082b6a", 0x5a}, {&(0x7f00000002c0)="82273f7353ac6d01b50261cd5040", 0xe}, {&(0x7f0000000300)="faa37140d0d1c5a3828657c53ae2699d29ced0cf9ce0c1112e70fde6c9aad63a3c134fa366606760ccb8ca601b674efa2de7a00c513e3e8654859b0a192d60b41ee132122fed5ce1b4e78274c9a0c2f4ef08a6cc519a356f71209d179f7c9d03c43232a3c5acefb9abd0c157b4cde76366328acbd88302bc22345dc6", 0x7c}, {&(0x7f0000000380)="c768d21a0d8e1fa36bf755eea1fbd5485c2fcfce004c61d4f9f9d2a4dd6a6306f6985b13a3193469d5347cb177dc706123e2fa6796a9884363961dced9e6553541fc1cc4846789de9abc", 0x4a}, {&(0x7f0000000500)="0641ae1a25afbd0cc3e3901633ce990199d1c61af7763323174e8f05a2779f0b1fed89072cefb4116e435c622b7d2db92a10f4e37076afabeb79e899be8481d83706cd8b5e", 0x45}, {&(0x7f0000000400)="b226f3bca7e10e7d9875eefad4b58d85197f785fd4038f90492c3f945d", 0x1d}], 0x8) 13:49:25 executing program 2 (fault-call:11 fault-nth:17): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:25 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0xfffffffffffffffe}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x8d8) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000240)={[0x101, 0x8, 0x80000001, 0x200, 0x1, 0x0, 0x1f, 0xfff, 0x9, 0x167b, 0x7fff, 0x6, 0x100, 0x80000001, 0x6, 0x7], 0x3000, 0x4000}) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:25 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x50200, 0x0) ioctl$EVIOCGPROP(r3, 0x80404509, &(0x7f0000000340)=""/236) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0xffffffffffffffff}, 0x0) syz_open_dev$binderN(&(0x7f0000000180)='/dev/binder#\x00', 0x0, 0x800) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x6, &(0x7f0000000100)=0x20, 0x4) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$P9_RLERRORu(r2, &(0x7f0000000240)={0x22, 0x7, 0x1, {{0x15, 'bdevlomime_typenodev*'}, 0x3}}, 0x22) 13:49:25 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) keyctl$set_reqkey_keyring(0xe, 0xd68aa53f16dedd09) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$NBD_SET_SIZE(r2, 0xab02, 0xffffffffffffffff) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000100)={&(0x7f0000000040), &(0x7f0000000240)=""/205, 0xcd}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1045.513468] FAULT_INJECTION: forcing a failure. [ 1045.513468] name failslab, interval 1, probability 0, space 0, times 0 [ 1045.526362] CPU: 0 PID: 25117 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1045.534351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1045.543709] Call Trace: [ 1045.546309] dump_stack+0x13e/0x194 [ 1045.549949] should_fail.cold+0x10a/0x14b [ 1045.554107] should_failslab+0xd6/0x130 [ 1045.558084] __kmalloc+0x2e9/0x7c0 [ 1045.561630] ? kvm_dev_ioctl+0xb47/0x1480 [ 1045.565781] ? up_write+0x17/0x60 [ 1045.569240] kvm_dev_ioctl+0xb47/0x1480 [ 1045.573220] ? kvm_put_kvm+0xa90/0xa90 [ 1045.577108] ? kvm_put_kvm+0xa90/0xa90 [ 1045.581346] do_vfs_ioctl+0x75a/0xfe0 [ 1045.585150] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1045.589909] ? ioctl_preallocate+0x1a0/0x1a0 [ 1045.594331] ? security_file_ioctl+0x76/0xb0 [ 1045.598751] ? security_file_ioctl+0x83/0xb0 [ 1045.603170] SyS_ioctl+0x7f/0xb0 [ 1045.606539] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1045.610522] do_syscall_64+0x1d5/0x640 [ 1045.614461] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1045.619654] RIP: 0033:0x45c829 [ 1045.622842] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1045.630556] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1045.637828] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1045.645098] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1045.652370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1045.659642] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:26 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:26 executing program 2 (fault-call:11 fault-nth:18): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:26 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0xb}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e23, 0x2, @loopback, 0x1fbe76f5}, 0x1c) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1046.453427] FAULT_INJECTION: forcing a failure. [ 1046.453427] name failslab, interval 1, probability 0, space 0, times 0 [ 1046.466061] CPU: 0 PID: 25175 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1046.473954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1046.483312] Call Trace: [ 1046.485913] dump_stack+0x13e/0x194 [ 1046.489554] should_fail.cold+0x10a/0x14b [ 1046.493710] should_failslab+0xd6/0x130 [ 1046.497688] kmem_cache_alloc_trace+0x2db/0x7b0 13:49:26 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x8000, 0x0) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22, 0x8, @private2={0xfc, 0x2, [], 0x1}, 0x9}, 0x1c) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:26 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x9) setgid(r3) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000400)=ANY=[@ANYBLOB="02000000010003000000000002000200", @ANYRES32=0x0, @ANYBLOB="02000400", @ANYRES32=0x0, @ANYBLOB="02000300", @ANYRES32=0x0, @ANYBLOB="02000400", @ANYRES32=0x0, @ANYBLOB="040005000000000008000400", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB='\b\x00\b\x00', @ANYRES32=r3, @ANYBLOB="100000e3ffffffff1f00810000000000"], 0x7c, 0x0) recvmmsg(r1, 0x0, 0x0, 0x5d2f5795f596926b, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$VIDIOC_G_AUDOUT(r5, 0x80345631, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1046.502365] ? kvm_dev_ioctl+0xb47/0x1480 [ 1046.506524] ? up_write+0x17/0x60 [ 1046.509987] kvm_dev_ioctl+0xdc4/0x1480 [ 1046.513975] ? kvm_put_kvm+0xa90/0xa90 [ 1046.517886] ? kvm_put_kvm+0xa90/0xa90 [ 1046.522651] do_vfs_ioctl+0x75a/0xfe0 [ 1046.526808] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1046.531579] ? ioctl_preallocate+0x1a0/0x1a0 [ 1046.536006] ? security_file_ioctl+0x76/0xb0 [ 1046.540421] ? security_file_ioctl+0x83/0xb0 [ 1046.544838] SyS_ioctl+0x7f/0xb0 [ 1046.548208] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1046.552187] do_syscall_64+0x1d5/0x640 [ 1046.556214] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1046.561392] RIP: 0033:0x45c829 [ 1046.564569] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1046.572270] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1046.579586] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1046.586848] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1046.594238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1046.601526] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:27 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x402000, 0x0) ioctl$HCIINQUIRY(r4, 0x800448f0, &(0x7f0000000100)={0xa, 0x6, "5d6bea", 0x7, 0x3}) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) sysfs$3(0x3) 13:49:27 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:27 executing program 2 (fault-call:11 fault-nth:19): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1047.324966] FAULT_INJECTION: forcing a failure. [ 1047.324966] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.336434] CPU: 0 PID: 25231 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1047.344319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1047.353661] Call Trace: [ 1047.356242] dump_stack+0x13e/0x194 [ 1047.359859] should_fail.cold+0x10a/0x14b [ 1047.363989] should_failslab+0xd6/0x130 [ 1047.367953] kmem_cache_alloc+0x2b5/0x770 [ 1047.372080] ? __d_lookup+0x3b4/0x670 [ 1047.375861] ? mark_held_locks+0xa6/0xf0 [ 1047.379908] __d_alloc+0x2a/0x9b0 [ 1047.383344] d_alloc+0x46/0x250 [ 1047.386604] __lookup_hash+0x51/0x180 [ 1047.390474] lookup_one_len+0x27c/0x3a0 [ 1047.394465] ? __lookup_hash+0x180/0x180 [ 1047.398525] start_creating+0xa1/0x1c0 [ 1047.402412] __debugfs_create_file+0x4f/0x3c0 [ 1047.406886] ? debugfs_create_file+0x37/0x60 [ 1047.411302] kvm_dev_ioctl+0xd71/0x1480 [ 1047.415259] ? kvm_put_kvm+0xa90/0xa90 [ 1047.419129] ? kvm_put_kvm+0xa90/0xa90 [ 1047.422998] do_vfs_ioctl+0x75a/0xfe0 [ 1047.426781] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1047.431518] ? ioctl_preallocate+0x1a0/0x1a0 [ 1047.435912] ? security_file_ioctl+0x76/0xb0 [ 1047.440303] ? security_file_ioctl+0x83/0xb0 [ 1047.444693] SyS_ioctl+0x7f/0xb0 [ 1047.448047] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1047.452004] do_syscall_64+0x1d5/0x640 [ 1047.455876] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1047.461069] RIP: 0033:0x45c829 [ 1047.464240] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1047.471927] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1047.479175] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1047.486427] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.493677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1047.500940] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:28 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd26, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x6) writev(r7, &(0x7f0000000580)=[{&(0x7f0000000100)="7011fc164321f42af1ad50baf52b427f2a94172348e7bfd30decf10bb35a7e3589f0f874ae6bb8ec85344e03f435d14b9714f8a179c3b7c52982722806ba2be533665057f5e75551d343b4958b479ee93c25a96838cd3ffc342c304dfcb8141c8fe08d239796c4424f3a4a", 0x6b}, {&(0x7f0000000240)="eddb391472a34bb8162810154130d0e3887644839ce5966ab4b3dd646555fd4db292f29d645aa26efac440c9ad889edcbfe8a9367c629f3c11fd23a7a72e586daf01f850b29fefd7f85f4ddb9d90eadbe4e338ea26", 0x9}, {&(0x7f0000000600)="5036d0ddb2af6bb38e5034a001002f3a58b62c07f3e5b4e00658c71d2d800800113e825ae0a730d15c6f20ae001000000000000098015aef1c3dbcfe21c62a61d49a0745b080f8b0374f11bf8322332e76142837a4423c082b6a", 0x5a}, {&(0x7f00000002c0)="82273f7353ac6d01b50261cd5040", 0xe}, {&(0x7f0000000300)="faa37140d0d1c5a3828657c53ae2699d29ced0cf9ce0c1112e70fde6c9aad63a3c134fa366606760ccb8ca601b674efa2de7a00c513e3e8654859b0a192d60b41ee132122fed5ce1b4e78274c9a0c2f4ef08a6cc519a356f71209d179f7c9d03c43232a3c5acefb9abd0c157b4cde76366328acbd88302bc22345dc6", 0x7c}, {&(0x7f0000000380)="c768d21a0d8e1fa36bf755eea1fbd5485c2fcfce004c61d4f9f9d2a4dd6a6306f6985b13a3193469d5347cb177dc706123e2fa6796a9884363961dced9e6553541fc1cc4846789de9abc", 0x4a}, {&(0x7f0000000500)="0641ae1a25afbd0cc3e3901633ce990199d1c61af7763323174e8f05a2779f0b1fed89072cefb4116e435c622b7d2db92a10f4e37076afabeb79e899be8481d83706cd8b5e", 0x45}, {&(0x7f0000000400)="b226f3bca7e10e7d9875eefad4b58d85197f785fd4038f90492c3f945d", 0x1d}], 0x8) 13:49:28 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={0xffffffffffffffff, 0x4, 0x18}, 0xc) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000100)=0x36e) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x6, 0x0, 0x0, 0x5}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:28 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = getpid() sched_setattr(r6, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) prlimit64(r6, 0x7, &(0x7f0000000100)={0x6, 0x2}, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:28 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000100)={{0xa, 0x4e20, 0x1, @empty, 0xfffffffc}, {0xa, 0x4e21, 0x7, @mcast2, 0x1000}, 0x200, [0x5, 0xf1, 0x5, 0x4, 0x0, 0xffff259b, 0xf1ca, 0x81]}, 0x5c) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$VIDIOC_PREPARE_BUF(r7, 0xc058565d, &(0x7f0000000240)={0xffffff01, 0x2, 0x4, 0x80000000, 0x0, {0x0, 0xea60}, {0x3, 0x8, 0x6, 0x10, 0x4, 0x4, "db8acb14"}, 0x9, 0x3, @offset, 0x5, 0x0, r6}) recvfrom$unix(r8, &(0x7f00000002c0)=""/125, 0x7d, 0x80000002, &(0x7f0000000340)=@file={0x0, './file0\x00'}, 0x6e) 13:49:28 executing program 2 (fault-call:11 fault-nth:20): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:28 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140)='devlink\x00') sendmsg$DEVLINK_CMD_GET(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)={0x14, r4, 0xc91add0bf88807dd, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x100, r4, 0x20, 0x70bd29, 0x25dfdbff, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x100}, 0x1, 0x0, 0x0, 0x1}, 0x800) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1048.354299] FAULT_INJECTION: forcing a failure. [ 1048.354299] name failslab, interval 1, probability 0, space 0, times 0 [ 1048.365870] CPU: 1 PID: 25289 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1048.373876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1048.383233] Call Trace: [ 1048.385824] dump_stack+0x13e/0x194 [ 1048.389487] should_fail.cold+0x10a/0x14b [ 1048.393736] should_failslab+0xd6/0x130 [ 1048.397708] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1048.402379] ? kvm_dev_ioctl+0xb47/0x1480 [ 1048.406528] ? up_write+0x17/0x60 [ 1048.409987] kvm_dev_ioctl+0xdc4/0x1480 [ 1048.413972] ? kvm_put_kvm+0xa90/0xa90 [ 1048.417866] ? kvm_put_kvm+0xa90/0xa90 [ 1048.421754] do_vfs_ioctl+0x75a/0xfe0 [ 1048.425553] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1048.430314] ? ioctl_preallocate+0x1a0/0x1a0 [ 1048.434729] ? security_file_ioctl+0x76/0xb0 [ 1048.439570] ? security_file_ioctl+0x83/0xb0 [ 1048.443986] SyS_ioctl+0x7f/0xb0 [ 1048.447351] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1048.451331] do_syscall_64+0x1d5/0x640 [ 1048.455224] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1048.460417] RIP: 0033:0x45c829 [ 1048.463600] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1048.471321] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1048.478583] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1048.485838] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.493087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1048.500430] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd26, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x6) writev(r7, &(0x7f0000000580)=[{&(0x7f0000000100)="7011fc164321f42af1ad50baf52b427f2a94172348e7bfd30decf10bb35a7e3589f0f874ae6bb8ec85344e03f435d14b9714f8a179c3b7c52982722806ba2be533665057f5e75551d343b4958b479ee93c25a96838cd3ffc342c304dfcb8141c8fe08d239796c4424f3a4a", 0x6b}, {&(0x7f0000000240)="eddb391472a34bb8162810154130d0e3887644839ce5966ab4b3dd646555fd4db292f29d645aa26efac440c9ad889edcbfe8a9367c629f3c11fd23a7a72e586daf01f850b29fefd7f85f4ddb9d90eadbe4e338ea26", 0x9}, {&(0x7f0000000600)="5036d0ddb2af6bb38e5034a001002f3a58b62c07f3e5b4e00658c71d2d800800113e825ae0a730d15c6f20ae001000000000000098015aef1c3dbcfe21c62a61d49a0745b080f8b0374f11bf8322332e76142837a4423c082b6a", 0x5a}, {&(0x7f00000002c0)="82273f7353ac6d01b50261cd5040", 0xe}, {&(0x7f0000000300)="faa37140d0d1c5a3828657c53ae2699d29ced0cf9ce0c1112e70fde6c9aad63a3c134fa366606760ccb8ca601b674efa2de7a00c513e3e8654859b0a192d60b41ee132122fed5ce1b4e78274c9a0c2f4ef08a6cc519a356f71209d179f7c9d03c43232a3c5acefb9abd0c157b4cde76366328acbd88302bc22345dc6", 0x7c}, {&(0x7f0000000380)="c768d21a0d8e1fa36bf755eea1fbd5485c2fcfce004c61d4f9f9d2a4dd6a6306f6985b13a3193469d5347cb177dc706123e2fa6796a9884363961dced9e6553541fc1cc4846789de9abc", 0x4a}, {&(0x7f0000000500)="0641ae1a25afbd0cc3e3901633ce990199d1c61af7763323174e8f05a2779f0b1fed89072cefb4116e435c622b7d2db92a10f4e37076afabeb79e899be8481d83706cd8b5e", 0x45}, {&(0x7f0000000400)="b226f3bca7e10e7d9875eefad4b58d85197f785fd4038f90492c3f945d", 0x1d}], 0x8) 13:49:29 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDCTL_DSP_GETODELAY(r2, 0x80045017, &(0x7f0000000040)) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r5 = getpgrp(0x0) sched_setattr(r5, &(0x7f0000000080)={0x38, 0x0, 0x26, 0x0, 0x7, 0x26}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:29 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x38f, &(0x7f00000000c0)={0x0, 0x31b}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="2c00000011003586000000030000000007"], 0x2c}}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) 13:49:29 executing program 2 (fault-call:11 fault-nth:21): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:29 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240)='batadv\x00') sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000440)=ANY=[@ANYRES64=r1, @ANYRES16=r4, @ANYBLOB="0068c615fd5d0fd82087250fae08974f115eaa2f4997abd6bfa7d41fedb6ac640a6ff24034fc9578475a1a8418937506bf55f5f5f9dc07943c807e8ae33255217c5c8659a246421a083bc65911cd412dd161a0158d9b5e0debb155c5e557c8fb07e528db71e29ec0992c87519e689c74ef0601c47dace842d8146dd0b99766ae804b52ce5a31365767bc0afa44a7ee079ba5c4c26a9b926ab88c3729f2e7651a7238d8debb11300f781c4ec7e51e091a43e7f044217070a00dee8063c380c97f05144338"], 0x1c}, 0x1, 0x0, 0x0, 0x4801}, 0x0) fanotify_init(0x40, 0x800) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) r8 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x0, 0x200) ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(r8, 0x80184151, &(0x7f0000000180)={0x0, &(0x7f0000000140)}) 13:49:29 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ptrace$setregs(0x2f390875268fb9b3, 0xffffffffffffffff, 0x1, &(0x7f0000000240)="c127ff774e0698019d528027e9793f7e9b5e47e4eeb65ffd39202016e7a238a7b6603653e9b1b5972b13b6d8247f992bd0948391efbb370bcc60c22e12e60ff8c3b25a40c2ac00ad96910b0554382d8c3147c33331b246f30827b171077d1d845d493fce90ed28cc1623b0a69d69bdb01af281068dbddd806f2f10cdb79aa3540883bd07cdeca631cb08fc8463820a025be5cb17d668afb2bfd481f08c95eecc356dafd7016f7d655db4c820e200aad97a8429ebe9e098afcae763913cce2c4bf599b329ba74b7bcfe629fa1814b6d10c1f2ef76d61ba99c63625517f8") ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1049.131521] FAULT_INJECTION: forcing a failure. [ 1049.131521] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.143042] CPU: 0 PID: 25349 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1049.150934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1049.160296] Call Trace: [ 1049.162886] dump_stack+0x13e/0x194 [ 1049.166523] should_fail.cold+0x10a/0x14b [ 1049.170674] should_failslab+0xd6/0x130 [ 1049.174735] kmem_cache_alloc+0x2b5/0x770 [ 1049.178887] ? alloc_inode+0xa0/0x170 [ 1049.182733] selinux_inode_alloc_security+0xb1/0x2a0 [ 1049.187835] security_inode_alloc+0x8f/0xd0 [ 1049.192157] inode_init_always+0x576/0xb20 [ 1049.196391] alloc_inode+0x7a/0x170 [ 1049.200018] new_inode_pseudo+0x14/0xe0 [ 1049.203986] new_inode+0x1b/0x40 [ 1049.207348] debugfs_get_inode+0x1a/0x130 [ 1049.211495] __debugfs_create_file+0x93/0x3c0 [ 1049.215987] ? debugfs_create_file+0x37/0x60 [ 1049.220483] kvm_dev_ioctl+0xd71/0x1480 [ 1049.224462] ? kvm_put_kvm+0xa90/0xa90 [ 1049.228358] ? kvm_put_kvm+0xa90/0xa90 [ 1049.232247] do_vfs_ioctl+0x75a/0xfe0 [ 1049.236080] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1049.240855] ? ioctl_preallocate+0x1a0/0x1a0 [ 1049.245274] ? security_file_ioctl+0x76/0xb0 [ 1049.249690] ? security_file_ioctl+0x83/0xb0 [ 1049.254125] SyS_ioctl+0x7f/0xb0 [ 1049.257490] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1049.261468] do_syscall_64+0x1d5/0x640 [ 1049.265365] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1049.270573] RIP: 0033:0x45c829 [ 1049.273756] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1049.281460] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1049.288727] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1049.296086] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1049.303357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1049.310640] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd26, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x6) writev(r7, &(0x7f0000000580)=[{&(0x7f0000000100)="7011fc164321f42af1ad50baf52b427f2a94172348e7bfd30decf10bb35a7e3589f0f874ae6bb8ec85344e03f435d14b9714f8a179c3b7c52982722806ba2be533665057f5e75551d343b4958b479ee93c25a96838cd3ffc342c304dfcb8141c8fe08d239796c4424f3a4a", 0x6b}, {&(0x7f0000000240)="eddb391472a34bb8162810154130d0e3887644839ce5966ab4b3dd646555fd4db292f29d645aa26efac440c9ad889edcbfe8a9367c629f3c11fd23a7a72e586daf01f850b29fefd7f85f4ddb9d90eadbe4e338ea26", 0x9}, {&(0x7f0000000600)="5036d0ddb2af6bb38e5034a001002f3a58b62c07f3e5b4e00658c71d2d800800113e825ae0a730d15c6f20ae001000000000000098015aef1c3dbcfe21c62a61d49a0745b080f8b0374f11bf8322332e76142837a4423c082b6a", 0x5a}, {&(0x7f00000002c0)="82273f7353ac6d01b50261cd5040", 0xe}, {&(0x7f0000000300)="faa37140d0d1c5a3828657c53ae2699d29ced0cf9ce0c1112e70fde6c9aad63a3c134fa366606760ccb8ca601b674efa2de7a00c513e3e8654859b0a192d60b41ee132122fed5ce1b4e78274c9a0c2f4ef08a6cc519a356f71209d179f7c9d03c43232a3c5acefb9abd0c157b4cde76366328acbd88302bc22345dc6", 0x7c}, {&(0x7f0000000380)="c768d21a0d8e1fa36bf755eea1fbd5485c2fcfce004c61d4f9f9d2a4dd6a6306f6985b13a3193469d5347cb177dc706123e2fa6796a9884363961dced9e6553541fc1cc4846789de9abc", 0x4a}, {&(0x7f0000000500)="0641ae1a25afbd0cc3e3901633ce990199d1c61af7763323174e8f05a2779f0b1fed89072cefb4116e435c622b7d2db92a10f4e37076afabeb79e899be8481d83706cd8b5e", 0x45}, {&(0x7f0000000400)="b226f3bca7e10e7d9875eefad4b58d85197f785fd4038f90492c3f945d", 0x1d}], 0x8) 13:49:30 executing program 2 (fault-call:11 fault-nth:22): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:30 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:30 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r2, 0x54a0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1050.008635] FAULT_INJECTION: forcing a failure. [ 1050.008635] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1050.021376] CPU: 0 PID: 25398 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1050.029446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1050.038799] Call Trace: [ 1050.041395] dump_stack+0x13e/0x194 [ 1050.045121] should_fail.cold+0x10a/0x14b [ 1050.049314] __alloc_pages_nodemask+0x1bf/0x700 [ 1050.053992] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1050.059016] ? inode_doinit_with_dentry+0x735/0xe30 [ 1050.064041] ? lockref_get+0x11/0x50 [ 1050.067761] alloc_pages_current+0xe7/0x1e0 [ 1050.072092] __get_free_pages+0xb/0x40 [ 1050.076007] inode_doinit_with_dentry+0x7b6/0xe30 [ 1050.080862] ? selinux_cred_free+0x70/0x70 [ 1050.085105] ? put_itimerspec64+0x190/0x190 [ 1050.089528] selinux_d_instantiate+0x23/0x30 [ 1050.093956] security_d_instantiate+0x54/0xd0 [ 1050.098467] d_instantiate+0x5a/0x90 [ 1050.102190] __debugfs_create_file+0x15b/0x3c0 [ 1050.106778] ? debugfs_create_file+0x37/0x60 [ 1050.111192] kvm_dev_ioctl+0xd71/0x1480 [ 1050.115211] ? kvm_put_kvm+0xa90/0xa90 [ 1050.119106] ? kvm_put_kvm+0xa90/0xa90 [ 1050.122998] do_vfs_ioctl+0x75a/0xfe0 [ 1050.126805] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1050.131567] ? ioctl_preallocate+0x1a0/0x1a0 [ 1050.135994] ? security_file_ioctl+0x76/0xb0 [ 1050.140406] ? security_file_ioctl+0x83/0xb0 [ 1050.144822] SyS_ioctl+0x7f/0xb0 [ 1050.148196] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1050.152181] do_syscall_64+0x1d5/0x640 [ 1050.156084] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1050.161313] RIP: 0033:0x45c829 [ 1050.164500] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1050.172816] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1050.180084] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1050.187353] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1050.194653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1050.201925] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:30 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180)='nl80211\x00') sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x68, r4, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x1d}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x3}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x3}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x6ff}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x1}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0x22, 0xbe, "f3d1a39eb5c6939efc669e8decf3941412f3fe06ef468268e4f5574f9ac1"}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}]}, 0x68}, 0x1, 0x0, 0x0, 0x4041}, 0x40000) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:30 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x38f, &(0x7f00000000c0)={0x0, 0x31b}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="2c00000011003586000000030000000007"], 0x2c}}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) 13:49:30 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r4, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000104}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r5, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1f}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c016}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:30 executing program 2 (fault-call:11 fault-nth:23): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:31 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) write(r0, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1050.866206] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=25461 comm=syz-executor.4 [ 1050.972946] FAULT_INJECTION: forcing a failure. [ 1050.972946] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1050.985635] CPU: 1 PID: 25462 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1050.993522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1051.002970] Call Trace: [ 1051.005567] dump_stack+0x13e/0x194 [ 1051.009239] should_fail.cold+0x10a/0x14b [ 1051.013400] __alloc_pages_nodemask+0x1bf/0x700 [ 1051.018077] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1051.023356] ? inode_doinit_with_dentry+0x735/0xe30 [ 1051.028380] ? lockref_get+0x11/0x50 [ 1051.032137] alloc_pages_current+0xe7/0x1e0 [ 1051.036562] __get_free_pages+0xb/0x40 [ 1051.040701] inode_doinit_with_dentry+0x7b6/0xe30 [ 1051.045571] ? selinux_cred_free+0x70/0x70 [ 1051.049809] ? put_itimerspec64+0x190/0x190 [ 1051.054268] selinux_d_instantiate+0x23/0x30 [ 1051.058787] security_d_instantiate+0x54/0xd0 [ 1051.063291] d_instantiate+0x5a/0x90 [ 1051.067012] __debugfs_create_file+0x15b/0x3c0 [ 1051.071599] ? debugfs_create_file+0x37/0x60 [ 1051.076102] kvm_dev_ioctl+0xd71/0x1480 [ 1051.080269] ? __schedule+0x7c0/0x1ca0 [ 1051.084165] ? kvm_put_kvm+0xa90/0xa90 [ 1051.088061] ? kvm_put_kvm+0xa90/0xa90 [ 1051.091961] do_vfs_ioctl+0x75a/0xfe0 [ 1051.095763] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1051.100652] ? ioctl_preallocate+0x1a0/0x1a0 [ 1051.105074] ? security_file_ioctl+0x76/0xb0 [ 1051.109485] ? security_file_ioctl+0x83/0xb0 [ 1051.113923] SyS_ioctl+0x7f/0xb0 [ 1051.117290] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1051.121272] do_syscall_64+0x1d5/0x640 [ 1051.125166] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1051.130621] RIP: 0033:0x45c829 [ 1051.133826] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1051.141537] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1051.148899] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1051.156778] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1051.164049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1051.171360] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:31 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x8, 0x0, 0xa, 0x0, 0x1, 0x0, 0x0, 0xfffffffd}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140)='ethtool\x00') fcntl$setpipe(r2, 0x407, 0x0) write(r0, &(0x7f00000018c0)="98c681006c26d83ef6620adecdb6e207b271288d78a5be6af302005eb6607a43b148b3cd480ab3fec2c9613c0c4f5f4729a49131f185596403cded623360fdbd000000", 0xfffffffffffffda0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x49, 0x0, 0x3, 0x0, 0x1, 0x7, 0x409be0c6}, 0x0) socketpair(0x6, 0x2, 0x2, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) connect$phonet_pipe(r3, &(0x7f0000000240)={0x23, 0x0, 0x0, 0x28}, 0x10) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) syz_mount_image$f2fs(&(0x7f0000000280)='f2fs\x00', &(0x7f00000002c0)='./file0\x00', 0xa6, 0x9, &(0x7f0000001700)=[{&(0x7f0000000300)="9ac0adf0750b9192ac5969a0df6ee89893110660a8b858e995f2078fa3ac7bde37c83974c0aa36846c349792d9f84300d7f3d6c24e00cb25ab2b2feeafb9281398419d", 0x43, 0x80}, {&(0x7f0000000380)="d619d57fe9e2b6d71bdff3cba23c5530088481abdd9c6e7b1334fde3db40400c92630104b592c2f57822554a054ebb251eeba8", 0x33, 0x2}, {&(0x7f00000003c0)="0f3ad292ad340914e6199a123a7e0e06763a7448a9e139854d6a7f33f1ee26d8978ea7fdec6c1a8429cbcfda085398", 0x2f, 0x1f}, {&(0x7f0000000400)="2b2123f34fd63cb7a553544fdfe3d741367b1e4e11b9014ebbd3262c26818621e9dc4c5b295c5ff0e110ba33e3a9253363d37e8b24e1b9900ac3d48dffe3b4e04cb8aeafb05b5130e2863e0de1f5ed7fa671dfec481d54653bb44bad9b37a27c07f2dc3cab3c0038bf8b76d23681fccae0c2a4d7721cc947de6a0bf8c32717b50772d22bd74d657589fec2375b9040357b13e8e139835fe73f0665641a595d4455da448b3144883a953447943a42b080841a9c1bc7167b33862edc7d4c0d4054cf73568ba2f9217b463744ef6bec9a819579", 0xd2, 0x6eea}, {&(0x7f0000000500)="f6dfa9d12fb535ec1c8a7198c2dfeb29e89d79f1bd44b87d4536e9f6201add1caa876b713b74a632a8ee5565111ac982f366b266ca1d8a91ddc3304cb966474ee6d31ec49f5f13a56054c3fafb8c9e967600d25555275570aba734d1fd02977818482556d4bbf04207b6e45b9a3eef0d21938acc669f0deead70134b218b355006d771f294e8a062fc25a1aa0f6768333e9a86de3fd0d31940806a0d4dca6d8aedabd2e397021f35a1467982e60064602d3de4a0f9fc20a08d56e1", 0xbb, 0x1}, {&(0x7f00000005c0)="16d395d1ae8ff179ec60ce04fac845dde9eb4aecdafde0232a264f23deef2c5ebbe2d69088c0b1b7f362741026058354a7662c4df1faeda0f26274dd1aa6c2952ebaa63718661ec9fe8804579110b428ba116c0d08fb7d3c3afe341c316c1e24ce5ab334907a33ccd1605be9af0e896f27cd369babca43a0", 0x78, 0x5}, {&(0x7f0000000640)="9e2af04614fc0dd26a1e4c147c57", 0xe, 0x5cab}, {&(0x7f0000000680)="6e433680d0fc4e3dd588194397833fc279fbee03929d71f026aec344da3f0e0b537994a0f8f3beabf05aefe42b6515669f706b1927470eec10e3fa5a644ae074d03c8ee9ba5f84622b9bfa307831627bc880ad17af200ea661232701ef31513c57740047140e899d4fa9ac7cf2be39679e41689efaba985058021cb32613caa5c599fc06a676d037b9259687ec12bd6c9afc5dd120a9d0ee029355f35ad09e1bc3eb259b27db0df527d33d7ab36683eb6229be041e4f21d57d0ff32996ffa5252e62a35eb4d6658f6d4643b0954291b184ce3977ccb2f138c1ea22caafc40061a94fad682a03defcc6b36f30bd26117be55bcac288227487a65e0f7bd0e9e0375942070a5b00cce9ed949eb61c25ff8ddc5a6d1e1e49ed0b828d065e79817a60dd5618998bfd0ead64cde16b3230a420251cfb8706ab5a89c97aebcca75bb1cfcde7bf51ec450cad4c24895bae2744db016fd304e98db4d98a800ba5d7ad025f7d5ff8c65fd577e36152652fb7d38deb7b468121db9fdaf03c5d985aec05095af3d4916e766cac2d39f86418d8c7beda0d2dcd3aa02c5410078d3ed70757200a3607874a7cf38c67f122c9f739d352851c284b53d90c7b07f24873cbd195c6b8720c35f8f7fdc837a913e1a1b987799185fd669d26f9b44f7ab8321eae7565bcd7d3f21766f910ac1b977baa8a607cf3c41d60d36ead588563f201602aaac703dd5938e5684bb7a3424c9527e2efb2debf5d99991b102986fb59a1a6b29a61398c11769f8b3c6dbc6535c296d8ad4e4cc03840c7a7146d367a9b698d3676d0107ffb0b9c67154984790f8fe8d979c6d01be163174ca77d6b5fe7b63dc37924b31f37f0a30037cb8a62a3c4a32817707c5a6c638b63d1c59e912596406ec6dfe0650fe67a149a4aca4b2c41c3bf016ca9cb5eedb9b68458bd103352c862b93c8f179b168799258f80ab02beb70869d2e98ae41f366b8b99ee8b1823b8288b10aaf91c6f606163a9cab09fc4658a0afc65f9daab30b28f4e2139c5c607b5842d3e2b81030d14f7316e74113f1e316be2ffb834a412c136e71340718ad57a297c40dfe9b987ae7ba38058a16db5c6ad96292c9b5e5735892135b235762c278714e04063bb4e70819f97cc3f0a36e8434be508c68843517c752ea687ff715bd90ff79b6ea16acb851133e9e9cb26b347f1b56b4abd94bedc9df0e2888b60d1b9b01f1223ecbf1818906bfffd9ed362c207010d8d560eedee424d1868023d24a3774dd37205ee88727e2a6b7390c97013e604fd6097ed256e23144536f9e81f71d03a908aafdafec332a5e2998f01f0a7953dffeaa000144eff1a00b7a796640bc9504882aa7e0be26efb41f048db8cb5778bf07a3d4bff3b54e62749fab06b9365ef398b49219c5fbc871a9ede9fce745e3a6cf8bba43a680739fcb3e94676527518073f7f20054e9ed9350968c4a9cdae98682b3c9294298395c8cc6c3f4a8d66083662945554fdc0ca4893d730b4a1199adda700e24825d01a4ffe5db8ac4eff23b9fadeef3c622991c622328ad2d7cdd315fc410f18230b7426ea4af5d17a4bcf0ea42f26e0767fdf3d78b06d4f8498707cacbc07cf419f8cc4a1a4516dc4fc9312842ce14b5aaaa883daffdbeb72ef3886133aad02f6a8f8c5d400c73f4024660009fcfe036ef39c24d41fd362e641ec1bf4a1fc817c2e918d98d6527a145ab475ef8ea137dfd961bdc55ad0add48723bdab0d0d50d1800020d830b6a26b96dc9bd7f452e54a069f12690db9b2d73c304e264400a6f51dcdbb6c6741580b0375d5838055c9c9e8b23bba6bf1b0493bfffd2676eaac9f3c29f259c2914fb977a8b5d88b9df63df434358c32f64946f25fe3e19247e5a21ffa900f9b8db4e1df441be0b414da7994452c8f1d8e238e4eb8585d0d9f262475690351f7acb44e17acbcce84ef8bbba36315949f11a367a4786b6dfb65af01ab3114b3a4d7f46364d8d338fa2d896fd96bcbcfd78d95b9aa05599bc77d5ec1895130834b5ab4fa6a8aa6277e0533132991e291fbb30f31f690b0be9dbbdaa05ed525af34f08c1305530f08b3b91411e72d8f2b6c391581166841cbfe7b8f7a2df1c9c0027f7324225a96c399967fcefbec73b1a2a1ca8970943c32c51ac1095e4bd50c522d2b8311cdbbfd0043c3d89bff664a6e57e8ee480360768394a4c8e3e96ae251cffd79998381a7a582cc1a9b7e1a3a354f47c6456823f3238bd94a241c7d2f3d9d8aae362ceb2c032fa7a22a39996eae6a01131b4c3dd784ee7de1b290f815d693e198a755f8d77e13edc5fdab736b15a07a63e77fd7f96118190e506c3082d3e99e0970dbdaffc3506270cbf4c5ece458790efd427fd41b4252598a296a298784db95dc63ff378b04df87534f73620e1d3181cd7f87e73796283e88507c2c87cc2e5a000435e0e47d315a7f9b4ed51c8374258482ffcc1083fbb39eabce337dd9fe111528ed6ead4ad63a23b1cbc99beef1625ca86ed1719c8c28c7c1c07378e1e1eeef709d3930c889b4a5821ff5dfb5136c702dc15df982bff16928983d9ce96c43a2bef2ef17ba747d2aa1aec5b2fea4859d572f8fb5f5544d1abb574bf1d7bbdea3e040184609d6dfe936858ae9f074c7df84522f2da924c46fe5a600af07750589f1cfbd2d4eb86694ed4b640786dc1c97a47c6fc22ab22aeeef0536fd6559f20b9d57639657560d4286f862791d30906953bd6d47a8f3826b5c03607998395953192234e9f5bce69fb6b888b7ab132a4d35c10cd7b12855f156a06b0fc26c492e8a4d0bd7c251cca29ee41b3d2a34d3d26b723045947fdd8c944ff3ad11e7d9fd57bbfaf999f2d51f697ba6c11292a8166fc4b5eb0b0b5f8c533416234fe85ced02d0ecd6a4b0b6b9aa52bc278813d77ea02f3bf40b69e88acb3254e66cc819c07f3574170e93a61ff9540477b26a82abe48af16aa735a26ef461b1442622c7e0341ac92635c4503a8e6df9ecbb602b72df1205320712352abf43d8b7147386949a825372f081bfc3d630145898f5be08e9675252d1179c50fed09c3305ff769f194c22f28f454ea8092a3a85442c9e5a2e907bef70a17a2ac0b536ff03cc67bc5480c09dee4a1dbb04cbb1ca7aab55a590f0a72266d66f7798cc8f1b9943bb80460d3f1fc476260065c2b60b892653c90583af23f0d1a238d221b805db34a4aead6b3581a8054ad15180344b261fe51b7d2bd63d4cf37cfe8a92022a9da76f0c16a64fb9cb925eafffb5433455d1b6db74e90783ffe3390735d6d98856e213dcb48013b92665e884d9a14ed75b914c9cc04c46f812c23252ed2dd1dd75c480ab9953373b41e158533abdfd9f36887e704e058b66b35d8c11fb02e6dbceaa509c0f1943cebbbcb8b74ab4228dcb81e3b456f77cd532e2ebe85c14cdfdc4db987cfad97f0dc64f423effc3839ad88a9dcdcfa9011846dd6009ff541b114022cf7f9a47d684c54f8bb1b04a9e2674cbabeb0f84ad6ac1b3ba0361057ab8407f3547744d1df6dbcd6b5cc3fcd315f8b5db60fcb5cf6ad2ee6516059bbf1c657b32f020681a0679fe142831349ad6356c9ef76c1bb2dd742a70a7d4b2facc857f73fe3eb115cbfa329233b7124aad3ec7f5a4ce237e01e12084b5506ac405a09eff40297fc0c9d4cb86d7ec511404bc2ab57f4fe4c6a73803f27dd3cc4f5fbf348ea457bb45e0eae8e19bcd93eee3701edbef704e3e4347a06dab8850e04c88927681403bdb30166a173664b7296eeea629f0cb4a0d4f37a34783ea9e9a8e56e44263eacb0e8a69d801e43c608c7f6847877d06ec44264269bd36a0b008a9bda06ad1e898cf36dc9617ee77f840d7726c94af91a079de96fa7a4af48802b399fb60466e63f79deb81779133765d13adfe871fafc79fef0e771e692d5f2fd8156f55f5ac1fa75eb020976e403f21044903d660819c578aa8f328d4dd68349ea29d29f3772cb8a12892e57572867d7478db2503efe6d37ca269aa2aff462ee3f1f9473bb20e4342770820e97707764e2cf46805c4d8a3b19b770459f8a456f03960d862ea84666eac83d543fe0818767fa4500bd02ef892d367e66c2ecfbe8b8adf2bf196bf0709d5a6506d61cb84361e3e6deb6b47bfdb144f714c0c3e3f80500183dd71df0434b5202720253876f51fa38003af30c3214c9c2aee110d3e0243e9f320d03e2885089abdf7f39d503e323c10b9d674fe839469a812f05dd30f82c209a4c8d56f359b4eb2c4fe1616cd347dafb63eea392980d769d3a6017322ee457a82f82ed4663e50b61d2db0fa0863b33d249fae37ee3b102a97c35b516226188271a858201dda34a5d91f7c8ea8694e89397725977954e396477aed3ebdf4ae2299510ddcaf490dc56d26d25c2798cd5944f182781631dd1e26853623dbca5ee5896ededf1dafaf9f368e937a8c5dd758457d9d62db991d2aaaf6f8d49ef6f2a38ebde5faf3c5659a9d7e797dfd537f84f91514c0e929595ba1d826d125d51d7f966a2c1194a69a275d9e2143fcaa0681d2c237863c38a79efbec7498352aae47d8bef510ad092e37f78200f1af201ed8636e0f81702676464548d4ead8d1a9bd50f5b2a415edab9f0dca1accc2b5abb3d5efd624a7d8e2d29c6399a46cb277e199814d74a30281bba6343280dc6a76c3816f3c5517d0fc8656cd365ab8a8cd8425bd6fe5148453ffa2900333c4cebbc814122136b617557e9961212f28a3c994f79c6fc383fbcc74cabdd800ecbb7ccdd160f1fdea276777f3cd56ab7296eec3056399e02837c94c5e65a63a6cdfa1bf6625c6698811d8847d9ec2311d2986cad071363f8b6d7f939c30736d4d791bf6937490619c5c6f9099e4ad5c6ff69abb3607585738f14a43d2a84e75fd193d22436f0eddac0babf42002f4127c5d83686c5628a633bf0eeb9c0305ea17da7aba1706b787e415f09a66c7418b7c8e4c106e237618571676e3a711cd0b08173f942998b48db8655ff8ac4c0a9a1dc3388924b4f30bdac80003f7d4d98ec40f327a91ca446ec13f2c70cdb37334c4c55e9693c097c15db18df37af31e748cf4b8875a99bcf2797d2d66efff6413b586d86091e98256d104ca197daf77ef64a55280d3e1d699435a659f1acb31fbef3236ffc50035583b3add85a4a3c85f0e25d31262b49b871c3961600fbab7096185621267be45e344bcb6b1a3f92d6a9b6bb2bf42f509b0946e04c60e896f3162fb9cb548a15040abaa22ddb66c40d4f53c4fdfacb9806f88160f70c809cc293f5cfec691224e2b8d5caae282b47d816f53b5c8e609b9043f51e9b8e195d8a3e00a7e0877fd00aa4d4aaf8d18df453edffc13452583e45f42b17218bbcee3f2e02697d6ff55a94834538cbc96cd8f064523450a4c5c3b30438166fcef6b6c0fb872570a3986dbf278ef7724f3cda52255e29ec105a24108e7d3f8d23c4fddf74635b2097c0d3ed1e0241c3a300acb26c8613aad50680e292fb4d7667d1654e4a1db87ec012056799bc4160bd44d4c0e6665f5b86e01554c2838c13353dafd8007dca9f9d0d299af0c703803f013ed7bd81c4e762588f5fbfb993a4f13c528550e6400aa5cb2b88cab60e3ce84e68a5beddec86e16399e3b67132115aa0d18b36ae30055424599a9a651626ed66f433908e11b65eb578bd63c65e1288144e59aabf61e853a1c484472bee486e85503261cfc00127c085f9d07bcda4972c63cb43579b74a4d7eda1d518cf445c00943e10c1d49da450d335654e047adbf8be00c63c88cb16174", 0x1000}, {&(0x7f0000001680)="84ea322c6f11f10ebf08688addec355921b0a1f30de57bbb991e5eb7a0e4095ae50f85c9dca1319af7373f1cc8873ba5e8ea01eb5f614373e8f130b7ce3b56a519f3d45618b6468e17b9c835e3be478110d4c4fc8878", 0x56, 0xfffffffffffff6b6}], 0x200040, &(0x7f0000001800)=ANY=[@ANYBLOB="716e6c696e655f22e7c096747472"]) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:31 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x18, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:31 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$AUDIT_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd26, 0x25dfdbff, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$ax25(0x3, 0x3, 0x6) writev(r7, &(0x7f0000000580)=[{&(0x7f0000000100)="7011fc164321f42af1ad50baf52b427f2a94172348e7bfd30decf10bb35a7e3589f0f874ae6bb8ec85344e03f435d14b9714f8a179c3b7c52982722806ba2be533665057f5e75551d343b4958b479ee93c25a96838cd3ffc342c304dfcb8141c8fe08d239796c4424f3a4a", 0x6b}, {&(0x7f0000000240)="eddb391472a34bb8162810154130d0e3887644839ce5966ab4b3dd646555fd4db292f29d645aa26efac440c9ad889edcbfe8a9367c629f3c11fd23a7a72e586daf01f850b29fefd7f85f4ddb9d90eadbe4e338ea26", 0x9}, {&(0x7f0000000600)="5036d0ddb2af6bb38e5034a001002f3a58b62c07f3e5b4e00658c71d2d800800113e825ae0a730d15c6f20ae001000000000000098015aef1c3dbcfe21c62a61d49a0745b080f8b0374f11bf8322332e76142837a4423c082b6a", 0x5a}, {&(0x7f00000002c0)="82273f7353ac6d01b50261cd5040", 0xe}, {&(0x7f0000000300)="faa37140d0d1c5a3828657c53ae2699d29ced0cf9ce0c1112e70fde6c9aad63a3c134fa366606760ccb8ca601b674efa2de7a00c513e3e8654859b0a192d60b41ee132122fed5ce1b4e78274c9a0c2f4ef08a6cc519a356f71209d179f7c9d03c43232a3c5acefb9abd0c157b4cde76366328acbd88302bc22345dc6", 0x7c}, {&(0x7f0000000380)="c768d21a0d8e1fa36bf755eea1fbd5485c2fcfce004c61d4f9f9d2a4dd6a6306f6985b13a3193469d5347cb177dc706123e2fa6796a9884363961dced9e6553541fc1cc4846789de9abc", 0x4a}, {&(0x7f0000000500)="0641ae1a25afbd0cc3e3901633ce990199d1c61af7763323174e8f05a2779f0b1fed89072cefb4116e435c622b7d2db92a10f4e37076afabeb79e899be8481d83706cd8b5e", 0x45}, {&(0x7f0000000400)="b226f3bca7e10e7d9875eefad4b58d85197f785fd4038f90492c3f945d", 0x1d}], 0x8) [ 1051.549792] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=25461 comm=syz-executor.4 13:49:31 executing program 2 (fault-call:11 fault-nth:24): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1051.832680] FAULT_INJECTION: forcing a failure. [ 1051.832680] name failslab, interval 1, probability 0, space 0, times 0 [ 1051.844203] CPU: 0 PID: 25525 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1051.852631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1051.862071] Call Trace: [ 1051.864755] dump_stack+0x13e/0x194 [ 1051.868390] should_fail.cold+0x10a/0x14b [ 1051.872553] should_failslab+0xd6/0x130 [ 1051.876531] kmem_cache_alloc+0x2b5/0x770 [ 1051.880694] ? __d_lookup+0x3b4/0x670 [ 1051.884514] ? mark_held_locks+0xa6/0xf0 [ 1051.888572] __d_alloc+0x2a/0x9b0 [ 1051.892042] d_alloc+0x46/0x250 [ 1051.895321] __lookup_hash+0x51/0x180 [ 1051.899124] lookup_one_len+0x27c/0x3a0 [ 1051.903093] ? __lookup_hash+0x180/0x180 [ 1051.907158] start_creating+0xa1/0x1c0 [ 1051.911045] __debugfs_create_file+0x4f/0x3c0 [ 1051.915537] ? debugfs_create_file+0x37/0x60 [ 1051.919954] kvm_dev_ioctl+0xd71/0x1480 [ 1051.924024] ? kvm_put_kvm+0xa90/0xa90 [ 1051.927919] ? __inode_security_revalidate+0x99/0x120 [ 1051.933203] ? kvm_put_kvm+0xa90/0xa90 [ 1051.937096] do_vfs_ioctl+0x75a/0xfe0 [ 1051.940899] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1051.945643] ? ioctl_preallocate+0x1a0/0x1a0 [ 1051.950048] ? security_file_ioctl+0x76/0xb0 [ 1051.954452] ? security_file_ioctl+0x83/0xb0 [ 1051.958940] SyS_ioctl+0x7f/0xb0 [ 1051.962296] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1051.966386] do_syscall_64+0x1d5/0x640 [ 1051.970259] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1051.975481] RIP: 0033:0x45c829 [ 1051.978664] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1051.986378] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1051.993636] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1052.000897] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1052.008239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1052.015520] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:32 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r1, &(0x7f00000007c0)="c1e708895da94b186e6600a74ead50aa45c202722fa054b1b6745d63df0c142206e88bdb89e778888fd4791e195dea3193d479f8b6fb78311487853e435ea12b03cf30264fd6613acf6cd622c599f688d7ea7b382699a81040e5630b67092e92e848a491120b3b73ab589fe165ac2d7066021b65bb037490f69c779303b84e8d050016660724a785b05b0cd8a968d9c072b743eccd111327f9ad112e7b0845cf7640fdfb51177002b3acaa5f20e0221721bd03b44d8280100a2c4eef5584168203c4082e863b", 0xc6) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f00000006c0)="644680534eb7fbb2d659d677dcb304beaa62a7964ed576293fb104d701a84da9bb34667b60f55b8d507a69129876ae548e24fdc205203c7dbac69d1e2cf14c859644ff575efa7601e21b964859dc5cbff2035d420d940013661604510bce95a96fa9c473772d71caadaf8b7be8137dbac7a75cb9d2c6ae6ee72a1bcc5c8054161408b0bf72fdf40e810438714471786854f4865ebd67398e500fe5ecc5deaef4696c0c1687edaa9c27aa9534cb8b1b9043714c9572fc2c46e4f843886ec89fe00fe623b124b589b50ca59ea4536b386445fd4199023e31384f2548ebd0cd8892e02a0de579208ba5091603b2cf7704ca3318959f9583de67dcfdfc", 0xfb}, {&(0x7f0000000340)="3d434051738e4fe07b6e8805c235f8e9a127b459f2aa52c47197f2c5121ad79af848cc240a066aa5136f4c080545183ba74619241f87cb3e39f6945b4b327ff4e68d9463b991011d888bb7b2061cb21e5d1076c87f59e090e52c7b77966c849ddd2042131354ab8044af47e42f4acb6c867a67cda0e44ad4d410d364f8707f2bc28b75376e729b2108c4a12aec9990cf86e0c68d22148ca5133fbbb6c1e008fbdc62add6402b7e2c71a7d7275b99d3f4f3ac3298ca0b07abfd0561350e044a2c379becaacea9d11e7bf4865f74637c48f48b5149e909b2ca2d29922a3475a727", 0xe0}, {&(0x7f0000000100)="af12c10b16af0f7e83d53bb5e40eeb6b6ccafb91b268e350716eca0a39c484a23d89aa70ee9c9b2091c4fbb381e2c099064c94189b3ddb819c3a4e2c14fb1c252cb115539267ca82da9451b322a86c5bce06f60e4f2e2f30a0423f8368c28fa08efd30b8f1a748e6288e8ae05db3f905d4542058aebafc0a118b15f3b219c157f61cce11db42bc8652ef7220885b8882eaa9612a22a984614cbc30f2191642af", 0xa0}, {&(0x7f0000000440)="da", 0x1}, {&(0x7f0000000240)="8b3d7690e62e7f51af73fa7493d79ec38a3e48188bdd551d25c5e5810f03a6f65a51fe1bb2c598a41a2191bae008c6967bb7deb43a90c66a3b78cbe274b595e8b51a7319ef2b29d1cb0394483ac5067c499fc9457f61644632807c46a9b5fe5d4c7a0dd53432df9e815032781609deeb824ede39fb970e7b3f3eaf9edf3c1c7398fab1fffbcc5ff400fa4df510165cc10f40842df7b383fe63356dc297cfa5153d2e2aff", 0xa4}, {&(0x7f00000004c0)="cf660a184ec07e3fd8bedc786768699e6356f70b42387876aab4ecb1f718c8e7fe434963a16f7f8c631ea12bd0e3d15e089402085c07a7d8af2dca9c78e62090b402260dcf2845a5ff1e636f9a1963d87758778352e83c4e908de6a53a5626ca08f6efd3fca69d348193631a32c35262f1a6bcb7704aa1504a802041c6b45384cab7f0cbc66591ddda139769b47f1799f53746335312b68833f6a8352d93b39658844501d41d420100000000000000", 0xaf}, {&(0x7f0000000580)="ff95dace1a49a06e9282723581996cc70d18d128ac8cf013063d92f68c6691d46b9a5f3066ce56143f139cf680d66ff584cdbb13b46904fb911c635575915bfb36e8eecce6a41ec511f430226ef0be83b89a84fde27907000000000000002644d4efe40630f60080ffff894a0ead5c3022da535c36b2bcfec277442d8e0a3abca06ab2", 0x83}], 0x7) 13:49:32 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008f}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDCTL_DSP_GETISPACE(r4, 0x8010500d, &(0x7f0000000000)) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000440)=[{&(0x7f0000000500)="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", 0x149}, {&(0x7f0000000240)="2da4b7879aef6a5c76d1360ad8a3cbadcf02d91860841fa5b1a87ec77877cbde5b320c40a303a6bff976a401775bb21659f1f49aace3a948299a175dcf0d3c72ccf666777a1924596200bdc8594ef7fb2d2775ae22ab9bafc4d85bee1c9a901abb445dc8888db6edec3901438d918eed4747cdd8a90283c950c24caefdebfa8b847da763037b851854990c258277fcf92e09b007a2dbd4158a04c0bf33bff4f7ddaeb9b6def502fd958b9ef89d954f48aeb10d2378c5e7a18cd9", 0xba}, {&(0x7f0000000300)="42d051e0d44d6231286a245f028de36c04f743c371e4eb8058d3639a1642cd6106ae3197aa3d5c3217f2e6ef283eff1aa31e551fa09a2b74385bab2550b3e6f5cd1a0700134982dfd61baab9a61bbe05705c86d448a7fb8553ec392040c3940d793402cb09965f3e5b28078c3b59e0299b6c0093ac87c355ceb99f03a151df6248e359ff154dbec0f5bbf122332c589ce158608bb20a9c9c58aa9a86f834", 0x9e}, {&(0x7f00000003c0)="ffed90006bea22e7754e04d0d6a86677e36400d3434fa8133863ab95306788b29fe19bf588361f67caa51d76128168642a160c6ed769adddaa1d405e390855634f254600f5650e7a312efc0c8a5ea42fabdad30437ff15c84e6bbc932b4cc14ae37e2f139bb7615214eae4cee230bd21260133052fce46720139", 0x7a}], 0x4, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000100)={0x5, 0x1f, 0x0, 'queue0\x00', 0x9}) ioctl$DRM_IOCTL_MODE_GETPROPERTY(r4, 0xc04064aa, &(0x7f0000000680)={&(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000700)=[{}, {}], 0x6, 0x0, [], 0x3, 0x2}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x80880, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_SG_FREE(r2, 0x40106439, &(0x7f00000006c0)={0x5f692ac6}) 13:49:32 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x0, 0x40000000, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0xca5) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000140)={{0xa, 0x4e24, 0x80000000, @mcast2, 0x10000}, {0xa, 0x4e24, 0x1000, @mcast2, 0x48bf88e3}, 0x0, [0x6ce5, 0x0, 0x401, 0x6, 0x1, 0x0, 0x1000]}, 0x5c) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:32 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r2, 0x40045010, &(0x7f0000000240)=0xd82f) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000300)="cca849debe7d4f8e2c43346bf137778fd7629cc0c4a912d16f3957708bd439d6866aae0cf1af8e5b415553f7c70180ba00c6a0", 0x33}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r6, 0x29, 0xd3, &(0x7f0000000100)={{0xa, 0x4e23, 0x5, @dev={0xfe, 0x80, [], 0x1c}, 0xc3}, {0xa, 0x4e23, 0xec, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000}, 0x2, [0x1, 0x2, 0x4, 0x7, 0x0, 0x4, 0xfffffff7, 0x40d1]}, 0x5c) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:32 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) write$P9_RSETATTR(r7, &(0x7f0000000040)={0x7, 0x1b, 0x1}, 0x7) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:32 executing program 2 (fault-call:11 fault-nth:25): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:33 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r2, 0xc040564a, &(0x7f0000000100)={0x9, 0x0, 0x2014, 0x1ff, 0x8, 0x8, 0x31aa4be0}) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000240)="a774d2bd6962a191d5dc60d15147544dbdea0f36b5dd7502927ff21c73deeaec640cfaffb65faa70790678c11919f545d99dc69f4a2f82fb1f7fd1960eb46424fd9fb0995d7893b64d7633a62b46f1ee62494f971a1c360d00e0686529bfc979b54c2243d5bf6dd80f466ad58d25ad2949cdc24fe30bfc0e9e0f5f4db1798d058be9f2ecdc67624af37775a3017ee7f2b6", 0x91}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) msgget$private(0x0, 0x704) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1052.791361] FAULT_INJECTION: forcing a failure. [ 1052.791361] name failslab, interval 1, probability 0, space 0, times 0 [ 1052.802819] CPU: 1 PID: 25584 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1052.810718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1052.820073] Call Trace: [ 1052.822654] dump_stack+0x13e/0x194 [ 1052.826272] should_fail.cold+0x10a/0x14b [ 1052.830421] should_failslab+0xd6/0x130 [ 1052.834405] kmem_cache_alloc+0x2b5/0x770 [ 1052.838566] ? lookup_one_len+0x284/0x3a0 [ 1052.842723] alloc_inode+0xa0/0x170 [ 1052.846357] new_inode_pseudo+0x14/0xe0 [ 1052.850348] new_inode+0x1b/0x40 [ 1052.853836] debugfs_get_inode+0x1a/0x130 [ 1052.857989] __debugfs_create_file+0x93/0x3c0 [ 1052.862498] ? debugfs_create_file+0x37/0x60 [ 1052.866913] kvm_dev_ioctl+0xd71/0x1480 [ 1052.870937] ? kvm_put_kvm+0xa90/0xa90 [ 1052.874831] ? kvm_put_kvm+0xa90/0xa90 [ 1052.878720] do_vfs_ioctl+0x75a/0xfe0 [ 1052.882520] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1052.887283] ? ioctl_preallocate+0x1a0/0x1a0 [ 1052.891705] ? security_file_ioctl+0x76/0xb0 [ 1052.896116] ? security_file_ioctl+0x83/0xb0 [ 1052.900533] SyS_ioctl+0x7f/0xb0 [ 1052.903907] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1052.907885] do_syscall_64+0x1d5/0x640 [ 1052.911779] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1052.916976] RIP: 0033:0x45c829 [ 1052.920180] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1052.928058] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1052.935586] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1052.942851] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1052.950125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1052.958348] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:33 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffd, 0xde}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:33 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x9) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:33 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x11) 13:49:33 executing program 2 (fault-call:11 fault-nth:26): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:33 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x5, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1053.663862] FAULT_INJECTION: forcing a failure. [ 1053.663862] name failslab, interval 1, probability 0, space 0, times 0 [ 1053.675418] CPU: 1 PID: 25641 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1053.683316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1053.692672] Call Trace: [ 1053.695266] dump_stack+0x13e/0x194 [ 1053.698901] should_fail.cold+0x10a/0x14b [ 1053.703056] should_failslab+0xd6/0x130 [ 1053.707034] kmem_cache_alloc+0x2b5/0x770 [ 1053.711187] ? alloc_inode+0xa0/0x170 [ 1053.714995] selinux_inode_alloc_security+0xb1/0x2a0 [ 1053.720112] security_inode_alloc+0x8f/0xd0 [ 1053.724439] inode_init_always+0x576/0xb20 [ 1053.728677] alloc_inode+0x7a/0x170 [ 1053.732307] new_inode_pseudo+0x14/0xe0 [ 1053.736314] new_inode+0x1b/0x40 [ 1053.739713] debugfs_get_inode+0x1a/0x130 [ 1053.743892] __debugfs_create_file+0x93/0x3c0 [ 1053.748401] ? debugfs_create_file+0x37/0x60 [ 1053.752817] kvm_dev_ioctl+0xd71/0x1480 [ 1053.756844] ? kvm_put_kvm+0xa90/0xa90 [ 1053.760742] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1053.764721] ? kvm_put_kvm+0xa90/0xa90 [ 1053.768624] do_vfs_ioctl+0x75a/0xfe0 [ 1053.772434] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1053.777206] ? ioctl_preallocate+0x1a0/0x1a0 [ 1053.781631] ? security_file_ioctl+0x76/0xb0 [ 1053.786044] ? security_file_ioctl+0x83/0xb0 [ 1053.790499] SyS_ioctl+0x7f/0xb0 [ 1053.793872] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1053.797840] do_syscall_64+0x1d5/0x640 [ 1053.801727] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1053.806913] RIP: 0033:0x45c829 13:49:34 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x3324666d09139f0b, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) ioctl$VIDIOC_S_PRIORITY(r3, 0x40045644, 0x2) [ 1053.810108] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1053.817818] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1053.825086] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1053.832389] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1053.839662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1053.846935] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:34 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, 0x0, 0x0) readahead(r1, 0x400, 0x9) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000240)="c0fd06e2826682337036a16e337aa0653b6ed81c872cf38ed6c90d9eb36ea959ef41f0dc", 0x24}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000180)={0x38, 0x2, 0x1, 0xfffffffc, 0x3, 0x2, 0x36, 0x0, 0x2, 0x2}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:34 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="01800000", @ANYRES32=0x0], &(0x7f000095dffc)=0x8) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000002cc0)=[{0x0, 0x29e, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="2000000004000000000000000008dc802b6e483d58954f487b0e4d186bcfc0ec3e63842ef704b784cdd363b552a1329018e62efd2eedeaf4d015905caaa9378f90", @ANYRES32=r5], 0x20}], 0x1, 0x0) setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100)={r5, 0x4040000}, 0x8) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:34 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000280)={0x8, 0xa8d4, 0x9, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r5, 0xc01064b3, &(0x7f00000002c0)={r6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f00000000c0)={0x100, 0x87cf, 0x7, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r5, 0xc01064b3, &(0x7f0000000140)={r7}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r9, r1, &(0x7f0000006000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:34 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000240)={[0x3ff, 0x0, 0x80, 0x81, 0x3f, 0x0, 0x4, 0x1000, 0x8, 0xfffffffffffffffd, 0x9, 0xe7, 0x3ff, 0x0, 0x7f, 0x1], 0x4}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:34 executing program 2 (fault-call:11 fault-nth:27): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1054.603965] FAULT_INJECTION: forcing a failure. [ 1054.603965] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.615534] CPU: 1 PID: 25715 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1054.623605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1054.633090] Call Trace: [ 1054.635686] dump_stack+0x13e/0x194 [ 1054.639322] should_fail.cold+0x10a/0x14b [ 1054.643478] should_failslab+0xd6/0x130 [ 1054.647481] kmem_cache_alloc+0x2b5/0x770 [ 1054.651633] ? alloc_inode+0xa0/0x170 [ 1054.655440] selinux_inode_alloc_security+0xb1/0x2a0 [ 1054.660566] security_inode_alloc+0x8f/0xd0 [ 1054.664897] inode_init_always+0x576/0xb20 [ 1054.669139] alloc_inode+0x7a/0x170 [ 1054.672771] new_inode_pseudo+0x14/0xe0 [ 1054.676741] new_inode+0x1b/0x40 [ 1054.680109] debugfs_get_inode+0x1a/0x130 [ 1054.684270] __debugfs_create_file+0x93/0x3c0 [ 1054.688769] ? debugfs_create_file+0x37/0x60 [ 1054.693181] kvm_dev_ioctl+0xd71/0x1480 [ 1054.697246] ? kvm_put_kvm+0xa90/0xa90 [ 1054.701137] ? kvm_put_kvm+0xa90/0xa90 [ 1054.705022] do_vfs_ioctl+0x75a/0xfe0 [ 1054.708821] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1054.713589] ? ioctl_preallocate+0x1a0/0x1a0 [ 1054.718006] ? security_file_ioctl+0x76/0xb0 [ 1054.722415] ? security_file_ioctl+0x83/0xb0 [ 1054.726832] SyS_ioctl+0x7f/0xb0 [ 1054.730203] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1054.734187] do_syscall_64+0x1d5/0x640 [ 1054.738085] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1054.743278] RIP: 0033:0x45c829 [ 1054.746464] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1054.754183] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1054.761502] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1054.768780] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1054.776050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1054.783360] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:35 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0) r3 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x80, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xb7b}, 0x0, 0xa, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) vmsplice(r3, &(0x7f0000000100)=[{&(0x7f0000000340)="cf4c280b4e142dc26d307b33c553ca3f8384d344835ef68535193919980f92f5b4d7df6d3c94f81e6cc10a244e04191b329c8c45382b37f0f2cd5801198254944f623757103f7113d99cbb082127e065c43f1fcd29144e0de20783ddbbde5040ff4e0ffe5712e5d0d189739884f5ad463b7449cc12489b026938b0811738e2f9208ec0767baae8aed7a1da737a21af9ed24d29833c382f3b0c8ec49e25383caa7887bd8748c52975bb95c9f1e6cbc6b7", 0xb0}, {&(0x7f0000000000)="e7b9cb471f75eb24b66e16c5d9de85ead5d89eae569210ee133e43ae39e353deb2a95782b2cbf1942d30a77673f08044f99a786acb6e3f319355985fce6b9811f3bb01a22f452558c0f25e4622d583db5557fac68821db1634f1e5f306bd46c1b03510193dc7b3dbe31fed4d27d27bb6238d3fc27ebabe51f0e767", 0x7b}], 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) flock(0xffffffffffffffff, 0x8) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:35 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0xa, 0x20002) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000100)="7e429f724f006a3977fc2f90bb7e8a3cc83f5a", 0x13) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x9) setgid(r3) r4 = getpid() sched_setattr(r4, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r5 = getpid() sched_setattr(r5, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f00000002c0)={{0x3, 0x0, 0x0, 0x0, r3, 0xa0, 0x3}, 0x0, 0x0, 0x4, 0x6, 0x6, 0x2, 0x1, 0x100, 0xfff, 0x3, r4, r5}) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:35 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x3}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, &(0x7f00005f7ffa)='hfs\x00', 0x0, 0x0) mremap(&(0x7f0000331000/0x3000)=nil, 0x4cb000, 0x600000, 0x3, &(0x7f00007fc000/0x600000)=nil) syz_open_dev$sndmidi(&(0x7f00000000c0)='/dev/snd/midiC#D#\x00', 0x20, 0x101) r4 = syz_open_dev$tty1(0xc, 0x4, 0x3) r5 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r6, r7, 0x0, 0x800000080004103) 13:49:35 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)=""/106, 0x6a}], 0x1, &(0x7f0000000240)=""/4096, 0x1000}, 0x10000}, {{&(0x7f0000001240)=@ipx, 0x80, &(0x7f0000001400)=[{&(0x7f00000012c0)=""/245, 0xf5}, {&(0x7f00000013c0)=""/19, 0x13}], 0x2}, 0x100}, {{&(0x7f0000001440)=@xdp, 0x80, &(0x7f0000001640)=[{&(0x7f0000002b40)=""/52, 0x34}, {&(0x7f0000001500)=""/166, 0xa6}, {&(0x7f00000015c0)=""/103, 0x67}], 0x3, &(0x7f0000001680)=""/198, 0xc6}, 0x81}, {{0x0, 0x0, &(0x7f0000002840)=[{&(0x7f0000001780)=""/59, 0x3b}, {&(0x7f00000017c0)=""/127, 0x7f}, {&(0x7f0000001840)=""/4096, 0x1000}], 0x3, &(0x7f0000002880)=""/14, 0xe}, 0x7ff}, {{&(0x7f00000028c0)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000002b00)=[{&(0x7f0000002940)=""/82, 0x52}, {&(0x7f00000029c0)=""/76, 0x4c}, {&(0x7f0000002a40)=""/171, 0xab}], 0x3, &(0x7f0000002bc0)=""/72, 0x48}}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000002f40)=""/101, 0x65}, {&(0x7f0000002c40)=""/170, 0xaa}], 0x2, &(0x7f0000002d40)=""/74, 0x4a}, 0x7}], 0x6, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:35 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x2, 0x2) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:35 executing program 2 (fault-call:11 fault-nth:28): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:35 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x9) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000140)={0x0, 'caif0\x00', {0x3}, 0x4}) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:36 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) r6 = dup2(r5, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VHOST_SET_LOG_FD(r6, 0x4004af07, &(0x7f0000000040)=r8) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1055.738190] FAULT_INJECTION: forcing a failure. [ 1055.738190] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1055.738323] CPU: 1 PID: 25788 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1055.738329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1055.738332] Call Trace: [ 1055.738350] dump_stack+0x13e/0x194 [ 1055.738369] should_fail.cold+0x10a/0x14b [ 1055.738384] __alloc_pages_nodemask+0x1bf/0x700 [ 1055.738398] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1055.738409] ? inode_doinit_with_dentry+0x735/0xe30 [ 1055.738424] ? lockref_get+0x11/0x50 [ 1055.738439] alloc_pages_current+0xe7/0x1e0 [ 1055.738452] __get_free_pages+0xb/0x40 [ 1055.738461] inode_doinit_with_dentry+0x7b6/0xe30 [ 1055.738475] ? selinux_cred_free+0x70/0x70 [ 1055.738488] ? put_itimerspec64+0x190/0x190 [ 1055.738500] selinux_d_instantiate+0x23/0x30 [ 1055.738511] security_d_instantiate+0x54/0xd0 [ 1055.738522] d_instantiate+0x5a/0x90 [ 1055.738533] __debugfs_create_file+0x15b/0x3c0 [ 1055.738542] ? debugfs_create_file+0x37/0x60 [ 1055.738556] kvm_dev_ioctl+0xd71/0x1480 [ 1055.738573] ? kvm_put_kvm+0xa90/0xa90 [ 1055.738588] ? kvm_put_kvm+0xa90/0xa90 [ 1055.738600] do_vfs_ioctl+0x75a/0xfe0 [ 1055.738610] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1055.738622] ? ioctl_preallocate+0x1a0/0x1a0 [ 1055.738640] ? security_file_ioctl+0x76/0xb0 [ 1055.738649] ? security_file_ioctl+0x83/0xb0 [ 1055.738661] SyS_ioctl+0x7f/0xb0 [ 1055.738669] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1055.738686] do_syscall_64+0x1d5/0x640 [ 1055.738702] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1055.738710] RIP: 0033:0x45c829 [ 1055.738715] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1055.738726] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1055.738732] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1055.738738] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.738744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1055.738750] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:36 executing program 2 (fault-call:11 fault-nth:29): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:36 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000003800)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)=""/11}, {&(0x7f0000000240)=""/4096}, {&(0x7f0000001240)=""/4096}]}, 0x5}, {{&(0x7f0000002240)=@un=@abs, 0x0, &(0x7f00000024c0)=[{&(0x7f00000022c0)=""/179}, {&(0x7f0000002380)=""/246}, {&(0x7f0000000180)=""/27}, {&(0x7f0000002480)=""/41}], 0x0, &(0x7f0000002500)=""/17}, 0x3f}, {{&(0x7f0000002540)=@hci, 0x0, &(0x7f0000003740)=[{&(0x7f00000025c0)=""/21}, {&(0x7f0000002600)=""/166}, {&(0x7f00000026c0)=""/4087}, {&(0x7f00000036c0)=""/71}], 0x0, &(0x7f0000003780)=""/125}, 0x7}], 0x5b, 0x10020, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:37 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x3}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, &(0x7f00005f7ffa)='hfs\x00', 0x0, 0x0) mremap(&(0x7f0000331000/0x3000)=nil, 0x4cb000, 0x600000, 0x3, &(0x7f00007fc000/0x600000)=nil) syz_open_dev$sndmidi(&(0x7f00000000c0)='/dev/snd/midiC#D#\x00', 0x20, 0x101) r4 = syz_open_dev$tty1(0xc, 0x4, 0x3) r5 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r4, r5, 0x0, 0x800000080004103) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) r7 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r6, r7, 0x0, 0x800000080004103) 13:49:37 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x5, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1056.953132] FAULT_INJECTION: forcing a failure. [ 1056.953132] name failslab, interval 1, probability 0, space 0, times 0 [ 1056.964574] CPU: 0 PID: 25842 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1056.972725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1056.982716] Call Trace: [ 1056.982737] dump_stack+0x13e/0x194 [ 1056.982756] should_fail.cold+0x10a/0x14b [ 1056.982769] should_failslab+0xd6/0x130 13:49:37 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x54, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) socket$alg(0x26, 0x5, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x109202, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000040), &(0x7f0000000100)=0x4) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1056.982779] kmem_cache_alloc+0x2b5/0x770 [ 1056.982789] ? __d_lookup+0x3b4/0x670 [ 1056.982803] ? mark_held_locks+0xa6/0xf0 [ 1056.982814] __d_alloc+0x2a/0x9b0 [ 1056.982825] d_alloc+0x46/0x250 [ 1056.982837] __lookup_hash+0x51/0x180 [ 1056.982848] lookup_one_len+0x27c/0x3a0 [ 1056.982859] ? __lookup_hash+0x180/0x180 [ 1056.982874] start_creating+0xa1/0x1c0 [ 1056.982885] __debugfs_create_file+0x4f/0x3c0 [ 1056.982894] ? debugfs_create_file+0x37/0x60 [ 1056.982908] kvm_dev_ioctl+0xd71/0x1480 [ 1056.982924] ? kvm_put_kvm+0xa90/0xa90 [ 1056.982938] ? kvm_put_kvm+0xa90/0xa90 [ 1056.982950] do_vfs_ioctl+0x75a/0xfe0 [ 1056.982961] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1056.982972] ? ioctl_preallocate+0x1a0/0x1a0 [ 1056.982992] ? security_file_ioctl+0x76/0xb0 [ 1056.983002] ? security_file_ioctl+0x83/0xb0 [ 1056.983013] SyS_ioctl+0x7f/0xb0 [ 1056.983023] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1056.983036] do_syscall_64+0x1d5/0x640 [ 1056.983052] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1056.983060] RIP: 0033:0x45c829 [ 1056.983066] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1056.983076] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1056.983082] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1056.983087] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1056.983093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1056.983098] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:37 executing program 2 (fault-call:11 fault-nth:30): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:37 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x2}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000000880)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000400)=""/141, 0x8d}, {&(0x7f00000004c0)=""/255, 0xff}, {&(0x7f00000005c0)=""/84, 0x54}, {&(0x7f0000000640)=""/44, 0x2c}, {&(0x7f0000000680)=""/204, 0xcc}], 0x5, &(0x7f0000000800)=""/115, 0x73}, 0x68c3}], 0x1, 0x103, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000300)="41bf044c07253cc68e6899e03fc0d9859e1eefcc68a11cb051b5c364216c7612f982852f5d6b3f075b5e54fa6e38f3a0d3034f9d924ddbe64fa4001d7e89a08abea44d3c5b48271fc78ca2a0f3623163206442b6866d4446900685412b2c52f97558c335590048c403a0f56e0752260e4a8631b54df0e850da83e2a39ab410a2a290275daf5e1a74b08c6f66f58c9cd88645c88e115a1806e517874e7daf4cd3360b49d41f5a86987cedf4494e7b475b3d52387b1446f75cb0cf5a3354efdc9a91f3bab47788b128bf987ae86548ded69f4937543a1b32de16daa3860b25778b00", 0xe1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0x2) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000008c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000001000000000000000141000000180017000000000000000069623a7866726d3000002436ba0000"], 0x34}}, 0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x348}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r4, 0x100, 0x70bd2d, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x14800) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000100)) 13:49:38 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/udp\x00') ioctl$IMGETCOUNT(r3, 0x80044943, &(0x7f0000000140)) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:38 executing program 1 (fault-call:14 fault-nth:0): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1057.814764] FAULT_INJECTION: forcing a failure. [ 1057.814764] name failslab, interval 1, probability 0, space 0, times 0 [ 1057.826164] CPU: 1 PID: 25884 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1057.834049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1057.843407] Call Trace: [ 1057.846008] dump_stack+0x13e/0x194 [ 1057.849559] Bearer rejected, not supported in standalone mode [ 1057.849728] should_fail.cold+0x10a/0x14b [ 1057.860704] should_failslab+0xd6/0x130 [ 1057.864684] kmem_cache_alloc+0x2b5/0x770 [ 1057.868837] ? lookup_one_len+0x284/0x3a0 [ 1057.872996] alloc_inode+0xa0/0x170 [ 1057.876626] new_inode_pseudo+0x14/0xe0 [ 1057.880607] new_inode+0x1b/0x40 [ 1057.883980] debugfs_get_inode+0x1a/0x130 [ 1057.888143] __debugfs_create_file+0x93/0x3c0 [ 1057.892644] ? debugfs_create_file+0x37/0x60 [ 1057.897058] kvm_dev_ioctl+0xd71/0x1480 [ 1057.901045] ? kvm_put_kvm+0xa90/0xa90 [ 1057.904939] ? kvm_put_kvm+0xa90/0xa90 [ 1057.908833] do_vfs_ioctl+0x75a/0xfe0 [ 1057.912640] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1057.917401] ? ioctl_preallocate+0x1a0/0x1a0 [ 1057.921824] ? security_file_ioctl+0x76/0xb0 [ 1057.926235] ? security_file_ioctl+0x83/0xb0 [ 1057.930654] SyS_ioctl+0x7f/0xb0 [ 1057.934020] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1057.937997] do_syscall_64+0x1d5/0x640 [ 1057.941895] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1057.947086] RIP: 0033:0x45c829 [ 1057.950272] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1057.957983] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1057.965257] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1057.972532] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1057.979906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1057.987180] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1058.109040] FAULT_INJECTION: forcing a failure. [ 1058.109040] name failslab, interval 1, probability 0, space 0, times 0 [ 1058.120377] CPU: 1 PID: 25905 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1058.128267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1058.137625] Call Trace: [ 1058.140234] dump_stack+0x13e/0x194 [ 1058.143879] should_fail.cold+0x10a/0x14b [ 1058.148034] should_failslab+0xd6/0x130 [ 1058.152445] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1058.157199] ? _raw_spin_unlock_irq+0x5a/0x80 [ 1058.161693] ? finish_task_switch+0x178/0x620 [ 1058.166191] ? save_trace+0x290/0x290 [ 1058.169998] kvm_dev_ioctl+0x15b/0x1480 [ 1058.173982] ? kvm_put_kvm+0xa90/0xa90 [ 1058.177881] ? kvm_put_kvm+0xa90/0xa90 [ 1058.182641] do_vfs_ioctl+0x75a/0xfe0 [ 1058.186447] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1058.191209] ? ioctl_preallocate+0x1a0/0x1a0 [ 1058.195631] ? security_file_ioctl+0x76/0xb0 [ 1058.200046] ? security_file_ioctl+0x83/0xb0 [ 1058.204468] SyS_ioctl+0x7f/0xb0 [ 1058.207840] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1058.211834] do_syscall_64+0x1d5/0x640 [ 1058.215733] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1058.220923] RIP: 0033:0x45c829 [ 1058.224107] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1058.231817] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1058.239110] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1058.246388] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1058.253658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1058.260929] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:38 executing program 2 (fault-call:11 fault-nth:31): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:38 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x40, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000000100)) fstatfs(r4, &(0x7f00000002c0)=""/195) 13:49:38 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x9, 0x0, 0x3, 0xfffffffffffffffe}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000140)=@assoc_value, &(0x7f0000000180)=0x8) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000240)="b3c5e8eac562fff9c0cefdb98f8551109915dca405fa5c375b1cb8efee4f41ca1d92d839ba664ecdd58c2dfa38892a856f25b2e275a5de324ed87ccc484b5a7681aa60a389959c303368ec5c7863246f07f356abb1055c51bd39791f1dffd2de7de2e56715206dc62e7983b68139", 0x6e}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x10}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000280)={0x8, 0xa8d4, 0x9}) r7 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) socket$nl_sock_diag(0x10, 0x3, 0x4) [ 1058.466854] Bearer rejected, not supported in standalone mode 13:49:38 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, &(0x7f0000000140)={0xc6c, 0xffff}) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000), 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1058.701543] FAULT_INJECTION: forcing a failure. [ 1058.701543] name failslab, interval 1, probability 0, space 0, times 0 [ 1058.712987] CPU: 0 PID: 25941 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1058.720882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1058.730240] Call Trace: [ 1058.732840] dump_stack+0x13e/0x194 [ 1058.736483] should_fail.cold+0x10a/0x14b [ 1058.740724] should_failslab+0xd6/0x130 [ 1058.744700] kmem_cache_alloc+0x2b5/0x770 [ 1058.748952] ? alloc_inode+0xa0/0x170 [ 1058.752768] selinux_inode_alloc_security+0xb1/0x2a0 [ 1058.757877] security_inode_alloc+0x8f/0xd0 [ 1058.762380] inode_init_always+0x576/0xb20 [ 1058.766624] alloc_inode+0x7a/0x170 [ 1058.770260] new_inode_pseudo+0x14/0xe0 [ 1058.774234] new_inode+0x1b/0x40 [ 1058.777598] debugfs_get_inode+0x1a/0x130 [ 1058.781743] __debugfs_create_file+0x93/0x3c0 [ 1058.786235] ? debugfs_create_file+0x37/0x60 [ 1058.790655] kvm_dev_ioctl+0xd71/0x1480 [ 1058.794637] ? kvm_put_kvm+0xa90/0xa90 [ 1058.798528] ? kvm_put_kvm+0xa90/0xa90 [ 1058.802420] do_vfs_ioctl+0x75a/0xfe0 [ 1058.806234] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1058.810995] ? ioctl_preallocate+0x1a0/0x1a0 [ 1058.815410] ? security_file_ioctl+0x76/0xb0 [ 1058.819817] ? security_file_ioctl+0x83/0xb0 [ 1058.824227] SyS_ioctl+0x7f/0xb0 [ 1058.827588] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1058.831563] do_syscall_64+0x1d5/0x640 [ 1058.835461] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1058.840648] RIP: 0033:0x45c829 [ 1058.843834] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1058.851542] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1058.858810] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1058.866081] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1058.873351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1058.880705] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:39 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0xffffd}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x200000000000000) write(r1, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x4, &(0x7f0000ffb000/0x4000)=nil, 0x6}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = syz_open_dev$dri(0x0, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000280)={0x8, 0xa8d4, 0x9, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r5, 0xc01064b3, &(0x7f00000002c0)={r6}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f00000000c0)={0x100, 0x87cf, 0x7, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r5, 0xc01064b3, &(0x7f0000000140)={r7}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r9, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:39 executing program 1 (fault-call:14 fault-nth:1): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1059.200715] FAULT_INJECTION: forcing a failure. [ 1059.200715] name failslab, interval 1, probability 0, space 0, times 0 [ 1059.212453] CPU: 1 PID: 25975 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1059.220451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1059.230313] Call Trace: [ 1059.232903] dump_stack+0x13e/0x194 [ 1059.236538] should_fail.cold+0x10a/0x14b [ 1059.240691] should_failslab+0xd6/0x130 [ 1059.244661] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 1059.249756] ? lock_acquire+0x170/0x3f0 [ 1059.253914] __kmalloc_node+0x38/0x70 [ 1059.257717] kvmalloc_node+0x88/0xd0 [ 1059.261533] kvm_dev_ioctl+0x6bf/0x1480 [ 1059.265508] ? kvm_put_kvm+0xa90/0xa90 [ 1059.269389] ? kvm_put_kvm+0xa90/0xa90 [ 1059.273347] do_vfs_ioctl+0x75a/0xfe0 [ 1059.277138] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1059.281888] ? ioctl_preallocate+0x1a0/0x1a0 [ 1059.286309] ? security_file_ioctl+0x76/0xb0 [ 1059.290716] ? security_file_ioctl+0x83/0xb0 [ 1059.295116] SyS_ioctl+0x7f/0xb0 [ 1059.298475] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1059.302546] do_syscall_64+0x1d5/0x640 [ 1059.306443] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1059.311637] RIP: 0033:0x45c829 [ 1059.314856] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1059.322569] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1059.330365] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1059.337638] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 13:49:39 executing program 2 (fault-call:11 fault-nth:32): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1059.348410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1059.355787] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:39 executing program 5: prlimit64(0x0, 0x5, &(0x7f00000001c0)={0x4fd, 0x1000400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_create1(0x80000) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000500), 0x3813ac1}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x101, 0x3, 0x0, 0x0, 0x81}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x80000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r5, 0xae00, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, 0x0, 0x0) readahead(0xffffffffffffffff, 0x8, 0x81) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) mq_open(&(0x7f0000000000)='cgroup[', 0x2, 0x30, &(0x7f0000000100)={0x4, 0x5, 0x1, 0x6}) 13:49:39 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f0000000140)=0x5) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1059.687170] FAULT_INJECTION: forcing a failure. [ 1059.687170] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1059.699357] CPU: 0 PID: 26001 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1059.707248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1059.716607] Call Trace: [ 1059.719203] dump_stack+0x13e/0x194 [ 1059.722875] should_fail.cold+0x10a/0x14b [ 1059.727040] __alloc_pages_nodemask+0x1bf/0x700 [ 1059.731709] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1059.736727] ? inode_doinit_with_dentry+0x735/0xe30 [ 1059.741832] ? lockref_get+0x11/0x50 [ 1059.745549] alloc_pages_current+0xe7/0x1e0 [ 1059.749874] __get_free_pages+0xb/0x40 [ 1059.753886] inode_doinit_with_dentry+0x7b6/0xe30 [ 1059.758745] ? selinux_cred_free+0x70/0x70 [ 1059.762989] ? put_itimerspec64+0x190/0x190 [ 1059.767321] selinux_d_instantiate+0x23/0x30 [ 1059.771739] security_d_instantiate+0x54/0xd0 [ 1059.776246] d_instantiate+0x5a/0x90 [ 1059.780089] __debugfs_create_file+0x15b/0x3c0 [ 1059.784672] ? debugfs_create_file+0x37/0x60 [ 1059.789210] kvm_dev_ioctl+0xd71/0x1480 [ 1059.793190] ? kvm_put_kvm+0xa90/0xa90 [ 1059.797085] ? do_vfs_ioctl+0x76/0xfe0 [ 1059.800974] ? kvm_put_kvm+0xa90/0xa90 [ 1059.804865] do_vfs_ioctl+0x75a/0xfe0 [ 1059.808792] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1059.813561] ? ioctl_preallocate+0x1a0/0x1a0 [ 1059.817979] ? security_file_ioctl+0x76/0xb0 [ 1059.822387] ? security_file_ioctl+0x83/0xb0 [ 1059.826798] SyS_ioctl+0x7f/0xb0 [ 1059.830250] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1059.834225] do_syscall_64+0x1d5/0x640 [ 1059.838123] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1059.843309] RIP: 0033:0x45c829 [ 1059.846497] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1059.854323] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1059.861627] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1059.868900] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1059.876167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1059.883439] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:40 executing program 1 (fault-call:14 fault-nth:2): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:40 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x2, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:40 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000100)={0x80000000, 0x4, 0x1, 'queue1\x00', 0xaaa6}) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1060.206089] FAULT_INJECTION: forcing a failure. [ 1060.206089] name failslab, interval 1, probability 0, space 0, times 0 [ 1060.217549] CPU: 1 PID: 26034 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1060.225608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1060.234969] Call Trace: [ 1060.237602] dump_stack+0x13e/0x194 [ 1060.241252] should_fail.cold+0x10a/0x14b [ 1060.245407] should_failslab+0xd6/0x130 [ 1060.249384] kmem_cache_alloc_node_trace+0x292/0x7b0 [ 1060.254487] ? retint_kernel+0x2d/0x2d [ 1060.258387] __kmalloc_node+0x38/0x70 [ 1060.262196] kvmalloc_node+0x88/0xd0 [ 1060.265946] kvm_dev_ioctl+0x7cb/0x1480 [ 1060.269927] ? kvm_put_kvm+0xa90/0xa90 [ 1060.273826] ? kvm_put_kvm+0xa90/0xa90 [ 1060.277718] do_vfs_ioctl+0x75a/0xfe0 [ 1060.281527] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1060.286288] ? ioctl_preallocate+0x1a0/0x1a0 [ 1060.290711] ? security_file_ioctl+0x76/0xb0 [ 1060.295119] ? security_file_ioctl+0x83/0xb0 [ 1060.299534] SyS_ioctl+0x7f/0xb0 [ 1060.302904] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1060.306884] do_syscall_64+0x1d5/0x640 [ 1060.310782] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1060.315969] RIP: 0033:0x45c829 [ 1060.319159] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1060.326871] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1060.334157] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1060.341410] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1060.348789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1060.356039] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:40 executing program 2 (fault-call:11 fault-nth:33): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:40 executing program 0: prlimit64(0x0, 0x0, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000140)=0x2, 0x4) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000240)) [ 1060.721700] FAULT_INJECTION: forcing a failure. [ 1060.721700] name failslab, interval 1, probability 0, space 0, times 0 [ 1060.733142] CPU: 1 PID: 26061 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1060.741048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1060.750406] Call Trace: [ 1060.752986] dump_stack+0x13e/0x194 [ 1060.756605] should_fail.cold+0x10a/0x14b [ 1060.760736] should_failslab+0xd6/0x130 [ 1060.764779] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1060.769519] ? up_write+0x17/0x60 [ 1060.772950] ? __debugfs_create_file+0x2c6/0x3c0 [ 1060.777773] ? debugfs_create_file+0x37/0x60 [ 1060.782168] kvm_dev_ioctl+0xdc4/0x1480 [ 1060.786126] ? kvm_put_kvm+0xa90/0xa90 [ 1060.789996] ? kvm_put_kvm+0xa90/0xa90 [ 1060.794022] do_vfs_ioctl+0x75a/0xfe0 [ 1060.797833] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1060.802595] ? ioctl_preallocate+0x1a0/0x1a0 [ 1060.806996] ? security_file_ioctl+0x76/0xb0 [ 1060.811396] ? security_file_ioctl+0x83/0xb0 [ 1060.815788] SyS_ioctl+0x7f/0xb0 [ 1060.819159] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1060.823118] do_syscall_64+0x1d5/0x640 [ 1060.826991] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1060.832161] RIP: 0033:0x45c829 [ 1060.835329] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1060.843015] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1060.850266] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1060.857514] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1060.864776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1060.872027] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:41 executing program 1 (fault-call:14 fault-nth:3): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0xffffffff}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = request_key(&(0x7f0000000080)='logon\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000180)='/dev/kvm\x00', 0xfffffffffffffff8) keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f00000002c0)={r4, 0x0, 0xe7}, &(0x7f0000000300)={'enc=', 'oaep', ' hash=', {'wp384\x00'}}, &(0x7f0000000380), &(0x7f00000003c0)="b9bad72fc97f1e6839444f14af68f9f4cd93ebb0d47c13c1378fbe36b0201a9295621f777c243fbcfc1c0a416ac86b2d32dcd7f06b196955f0ec420cbc70ca0537eaa04501b7825027bd95b714f9e91f34ae29fe75453a0b947e492eba68ad1fb87c0d810967bf3f23bd1b8f19d8a73cbd0d02e3b800c820cd882947e4fb522accf1233002badb23d571fe48dee77ee0d8748035b4479747a2c624e87e37b93819d82af5806142297176e3b2e160b5ff377f5be75d614dbb9f67f85c45c5bfc4272d88487cf7cea74072aafadd05f415d1e99a6b8ea5bab7fe49f4a6f7df47648feeb07cad8b37") r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/slabinfo\x00', 0x0, 0x0) ioctl$SG_SET_TIMEOUT(r8, 0x2201, &(0x7f00000004c0)=0x9) ioctl$NBD_SET_FLAGS(r7, 0xab0a, 0x4) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:41 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) accept4$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10, 0x80800) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f0000000180)={@loopback, 0x401, 0x0, 0x2, 0x1, 0x6, 0x8}, &(0x7f0000000240)=0x20) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:41 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0xddb}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x0, 0x6, 0x1, 0x9, 0x4, 0x0, 0x9}, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) vmsplice(r2, &(0x7f0000000300), 0x0, 0x0) bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) r4 = socket$inet6(0xa, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000980)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e00000004000000c80400005802000000000000c001000058020000000000003004000030040000300400003004000030040000040000000000000000000000e0000002ac1414bb00000000000000006772657461703000000000000000000064756d6d793000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009801c00100000000000000000000000000000000000000003000616464727479706500000000000000000000000000000000000000000000000000000000000000f800726563654944c0d2419d31e6005a990cbc0b6e74000000000000000000000000000000000000000000000000ffff000000000000210073797a3100000000000000000000000000000000000000006c6500000000000000000000000000feffffffffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bca37b9b8f4e3d77000000000000000000000000000000000000000000000000000000000061b58cc45489fa10000000000000000000000000280052454a454354000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea188f75d117dcaa000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700098000000000000000000000000090000000000000000280052454a4543540000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009001d80100000000000000000000000000000000000000002001636f6d6d656e740000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000049cd000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004800544545000000000000000000000000000000000000000000000000000001ac1414bb00000000000000000000000076657468305f746f5f6a6f6e64000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700098000000000000000000000000000000000000000000280000000000000000000000000000000000000000000000005d8a0000000000feffffff8c02d3f05b57f58a307ed10352fd118d0900000000000000f14a6ebc806913a4d1756c301e7ff974e3d901f54e415e9a9a1b01d43e75eaa7a9538acea454f029fab02d2b0bb80b8922e21cb3735973366ab230ff88aaf2d3226c93e2d9320acf331ea75224e98a7db918974c846f14d6eaf8e00b7e2553102738a655afd94f33efcc117a3026ef565f6ad01d4f2966ef03ba3687d3678a07fcf7affc4f9eb5da5f01d167e4bca63d39bee49e497e7888db1cd085908929f0f8e94f57c5e69a5120d95a0d0f090f6c6e6f1cea8a45e4b18898741cbbfccd7742cf05473aeba41cc881596de2d975a07a7bf13c6988cdfac8a79a"], 0x1) splice(r1, 0x0, r3, 0x0, 0x10005, 0x0) r7 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r7, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r8, 0x407, 0x0) write(r8, &(0x7f0000000340), 0x41395527) [ 1061.212076] FAULT_INJECTION: forcing a failure. [ 1061.212076] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.223507] CPU: 1 PID: 26103 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1061.231395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1061.240754] Call Trace: [ 1061.243354] dump_stack+0x13e/0x194 [ 1061.246995] should_fail.cold+0x10a/0x14b [ 1061.251243] should_failslab+0xd6/0x130 [ 1061.255228] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1061.259990] ? cleanup_srcu_struct+0x270/0x270 [ 1061.264578] ? __raw_spin_lock_init+0x28/0x100 [ 1061.269165] kvm_dev_ioctl+0x963/0x1480 [ 1061.273145] ? kvm_put_kvm+0xa90/0xa90 [ 1061.277035] ? kvm_put_kvm+0xa90/0xa90 [ 1061.280922] do_vfs_ioctl+0x75a/0xfe0 [ 1061.284726] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1061.289484] ? ioctl_preallocate+0x1a0/0x1a0 [ 1061.293915] ? security_file_ioctl+0x76/0xb0 [ 1061.298323] ? security_file_ioctl+0x83/0xb0 [ 1061.302742] SyS_ioctl+0x7f/0xb0 [ 1061.306123] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1061.310099] do_syscall_64+0x1d5/0x640 [ 1061.313992] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1061.319174] RIP: 0033:0x45c829 [ 1061.322360] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1061.330154] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1061.337423] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1061.344707] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1061.351975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 13:49:41 executing program 2 (fault-call:11 fault-nth:34): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1061.359267] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:41 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x2, 0x0, 0xfffffffffffffffe, 0x0, 0x2}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1061.681922] FAULT_INJECTION: forcing a failure. [ 1061.681922] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.693537] CPU: 0 PID: 26131 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1061.701427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1061.710918] Call Trace: [ 1061.713516] dump_stack+0x13e/0x194 [ 1061.717152] should_fail.cold+0x10a/0x14b [ 1061.721308] should_failslab+0xd6/0x130 [ 1061.726414] kmem_cache_alloc+0x2b5/0x770 [ 1061.730563] ? __d_lookup+0x3b4/0x670 [ 1061.734364] ? mark_held_locks+0xa6/0xf0 [ 1061.738422] __d_alloc+0x2a/0x9b0 [ 1061.741874] d_alloc+0x46/0x250 [ 1061.745151] __lookup_hash+0x51/0x180 [ 1061.748945] lookup_one_len+0x27c/0x3a0 [ 1061.752912] ? __lookup_hash+0x180/0x180 [ 1061.756978] start_creating+0xa1/0x1c0 [ 1061.760874] __debugfs_create_file+0x4f/0x3c0 [ 1061.765374] ? debugfs_create_file+0x37/0x60 [ 1061.769793] kvm_dev_ioctl+0xd71/0x1480 [ 1061.773770] ? kvm_put_kvm+0xa90/0xa90 [ 1061.777660] ? kvm_put_kvm+0xa90/0xa90 [ 1061.781554] do_vfs_ioctl+0x75a/0xfe0 [ 1061.785358] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1061.790117] ? ioctl_preallocate+0x1a0/0x1a0 [ 1061.794540] ? security_file_ioctl+0x76/0xb0 [ 1061.798953] ? security_file_ioctl+0x83/0xb0 [ 1061.803377] SyS_ioctl+0x7f/0xb0 [ 1061.806749] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1061.810727] do_syscall_64+0x1d5/0x640 [ 1061.814627] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1061.819826] RIP: 0033:0x45c829 [ 1061.823013] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1061.830725] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1061.838006] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1061.845367] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1061.852643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1061.859922] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:42 executing program 1 (fault-call:14 fault-nth:4): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:42 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x4c, 0x800, 0x9, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x0, 0x2}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000006e, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$USBDEVFS_SETCONFIGURATION(r5, 0x80045505, &(0x7f0000000100)=0x8) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r8 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$BLKSECTGET(r5, 0x1267, &(0x7f00000000c0)) 13:49:42 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$UI_BEGIN_FF_ERASE(r4, 0xc00c55ca, &(0x7f0000000040)={0x8, 0x800, 0x3f}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1062.222217] FAULT_INJECTION: forcing a failure. [ 1062.222217] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.234843] CPU: 0 PID: 26161 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1062.242745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1062.252103] Call Trace: [ 1062.254699] dump_stack+0x13e/0x194 [ 1062.258428] should_fail.cold+0x10a/0x14b [ 1062.262583] should_failslab+0xd6/0x130 [ 1062.266560] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1062.271234] ? cleanup_srcu_struct+0x270/0x270 [ 1062.275824] ? __raw_spin_lock_init+0x28/0x100 [ 1062.280411] kvm_dev_ioctl+0x963/0x1480 [ 1062.284395] ? kvm_put_kvm+0xa90/0xa90 [ 1062.288289] ? kvm_put_kvm+0xa90/0xa90 [ 1062.292178] do_vfs_ioctl+0x75a/0xfe0 [ 1062.295978] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1062.300741] ? ioctl_preallocate+0x1a0/0x1a0 [ 1062.305159] ? security_file_ioctl+0x76/0xb0 [ 1062.309565] ? security_file_ioctl+0x83/0xb0 [ 1062.313975] SyS_ioctl+0x7f/0xb0 [ 1062.317343] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1062.321320] do_syscall_64+0x1d5/0x640 [ 1062.325213] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1062.330402] RIP: 0033:0x45c829 [ 1062.333586] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1062.341467] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1062.348740] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1062.356056] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.363327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1062.370605] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:42 executing program 2 (fault-call:11 fault-nth:35): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1062.706982] FAULT_INJECTION: forcing a failure. [ 1062.706982] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.718594] CPU: 1 PID: 26182 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1062.726489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1062.735940] Call Trace: [ 1062.738550] dump_stack+0x13e/0x194 [ 1062.742380] should_fail.cold+0x10a/0x14b [ 1062.746554] should_failslab+0xd6/0x130 [ 1062.750544] kmem_cache_alloc+0x2b5/0x770 [ 1062.754706] ? lookup_one_len+0x284/0x3a0 [ 1062.758868] alloc_inode+0xa0/0x170 [ 1062.762513] new_inode_pseudo+0x14/0xe0 [ 1062.766504] new_inode+0x1b/0x40 [ 1062.769887] debugfs_get_inode+0x1a/0x130 [ 1062.774163] __debugfs_create_file+0x93/0x3c0 [ 1062.778671] ? debugfs_create_file+0x37/0x60 [ 1062.783083] kvm_dev_ioctl+0xd71/0x1480 [ 1062.787226] ? kvm_put_kvm+0xa90/0xa90 [ 1062.791124] ? kvm_put_kvm+0xa90/0xa90 [ 1062.795020] do_vfs_ioctl+0x75a/0xfe0 [ 1062.798833] ? selinux_file_mprotect+0x5c0/0x5c0 13:49:43 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x1000000000000000, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)={0xa4, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_MLSCATLST={0x88, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc0ed290}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1c34e031}, @NLBL_CIPSOV4_A_MLSCATREM={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63bf06d8}]}, {0x4}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x32f1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50893a8d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6c15a99e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5b0c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6709}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5dee26c0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x27aba73b}]}, {0x4}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbeca}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x14c436cf}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2262}]}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x8080}, 0x0) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x6c, 0x0, 0x700, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}, {0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4010}, 0x48882) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0xaf5241c9c9cd2892}, 0xc, &(0x7f0000000140)={&(0x7f0000001100)={0x104, 0x0, 0x100, 0x70bd26, 0x25dedbfd, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0xf0, 0x8, 0x0, 0x1, [{0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x165fe7a1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x64ae1955}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6a379327}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x16135579}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5154ede9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x97}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcb}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x10, 0x5, 0x56a0a8ce}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4883b93d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7b864c26}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3e1ea8de}, @NLBL_CIPSOV4_A_MLSLVLREM={0x0, 0x6, 0xf2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa8}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4add56c6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4c20af87}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2703bf3c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x511b8dc0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x23}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x0, 0x5, 0x46f3e453}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbb}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0xffffffffffffffb0, 0x5, 0x27453221}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x73}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3fb9711f}]}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x4}, 0x4040840) sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000700)={0x2a8, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0xc8, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x732faedb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xf68c04e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc975}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1213}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf294}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x282265d5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5bbf}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5ade843e}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4ba5bed3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6e945710}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xad98}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x132af451}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfa9f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd317}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e07dda0}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cd0d443}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x79f968bc}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9de6}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc31b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfc01}]}]}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xa4, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x780492d4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1190ca6b}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x49e80d26}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1c9a3fe4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x35238afe}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x502820f6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x16}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b2b598a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5dba1109}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x65}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x74}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfe}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1e25493b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x690935b3}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x2c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0xe0, 0x8, 0x0, 0x1, [{0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7c95d52d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f29f1f2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf5}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x87}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x574f2c9d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1bb5e6ec}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3f56d2ab}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1bceff3f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbe}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56f4ac5f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x73743cc9}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x57}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4049423b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xea}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xcb37aac}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6b432484}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e73f2ad}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x49a268c9}]}]}]}, 0x2a8}, 0x1, 0x0, 0x0, 0x4000000}, 0x80c0) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x100, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0xb0, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f0b563d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc97d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x524a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x42b1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7108}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xda84}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1436aca5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x593b}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa048}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x83f6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x26d2d4a0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb9686d9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x12ef}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x17c89332}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2419c4e0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2e6c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2a3b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa187}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4465dad3}]}, {0x4}]}]}, 0x100}, 0x1, 0x0, 0x0, 0x4}, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1062.803601] ? ioctl_preallocate+0x1a0/0x1a0 [ 1062.808030] ? security_file_ioctl+0x76/0xb0 [ 1062.812444] ? security_file_ioctl+0x83/0xb0 [ 1062.816862] SyS_ioctl+0x7f/0xb0 [ 1062.820233] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1062.824823] do_syscall_64+0x1d5/0x640 [ 1062.828730] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1062.833923] RIP: 0033:0x45c829 [ 1062.837110] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1062.844822] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1062.852095] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1062.859912] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.867274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1062.874553] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:43 executing program 1 (fault-call:14 fault-nth:5): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:43 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000300)="d91f31a18751da5cba0bb2e07bf0a978d8de67c36a112d084cd0fe87618940ec1cbbfad619bfc6439d7751c5ee9a0ffd6518ff098362acdc31e55c9a073a39f8363b6715bc855fabab21d8b23cbcba7b768426ca699d641beaf9e26937110d39cf31147895226e0a2c176b6137c68264dc498a0f41308892b8a95f1449901637de2b3be93f11a398e03db0d453d1291a322a46d2446bd7f2a30277e8a42392f431b062b0ac10ccd3e4a050eb99afa0835e9af8897a297e800c4ab4d97660e33e45ee16b00a68d85625949168dedb559b786d677ab7ae83512606f113ba147735363781aaf82e7594b4d8887842df1579a641ccda9a756540", 0xf8) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000280)={0x8, 0xa8d4, 0x9, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r3, 0xc01064b3, &(0x7f00000002c0)={r4}) ioctl$DRM_IOCTL_SET_MASTER(r3, 0x641e) socket$netlink(0x10, 0x3, 0x8000000004) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000140)) 13:49:43 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x131002, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:43 executing program 5: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$RTC_WIE_ON(r1, 0x700f) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x40000, 0x0) ioctl$KDDELIO(r5, 0x4b35, 0xfffffffffffffffe) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f00000013c0)=[{&(0x7f0000000500)}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)="036560feabf526c30b91f502a324761233672aecfdbfffa1710afc018a8d1b64e23f5b7ee0905a0e9e521edf8e", 0x2d}, {&(0x7f0000001400)="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", 0x102}], 0x4, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) sendmsg$AUDIT_TRIM(r4, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x3f6, 0x100, 0x70bd27, 0x25dfdbfc, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40}, 0x4000880) [ 1063.208333] FAULT_INJECTION: forcing a failure. [ 1063.208333] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.219802] CPU: 1 PID: 26220 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1063.227734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1063.237266] Call Trace: [ 1063.239863] dump_stack+0x13e/0x194 [ 1063.243503] should_fail.cold+0x10a/0x14b [ 1063.247675] should_failslab+0xd6/0x130 [ 1063.251668] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1063.256351] ? cleanup_srcu_struct+0x270/0x270 [ 1063.260950] ? __raw_spin_lock_init+0x28/0x100 [ 1063.265548] kvm_dev_ioctl+0x963/0x1480 [ 1063.269568] ? kvm_put_kvm+0xa90/0xa90 [ 1063.273490] ? kvm_put_kvm+0xa90/0xa90 [ 1063.277391] do_vfs_ioctl+0x75a/0xfe0 [ 1063.281327] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1063.286092] ? ioctl_preallocate+0x1a0/0x1a0 [ 1063.290516] ? security_file_ioctl+0x76/0xb0 [ 1063.294937] ? security_file_ioctl+0x83/0xb0 [ 1063.299358] SyS_ioctl+0x7f/0xb0 [ 1063.302734] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1063.306717] do_syscall_64+0x1d5/0x640 [ 1063.310617] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1063.315828] RIP: 0033:0x45c829 [ 1063.319016] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1063.327137] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1063.334555] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1063.341821] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.349100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1063.356376] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:43 executing program 2 (fault-call:11 fault-nth:36): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1063.796981] FAULT_INJECTION: forcing a failure. [ 1063.796981] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.808432] CPU: 1 PID: 26249 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1063.816414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1063.825879] Call Trace: [ 1063.828461] dump_stack+0x13e/0x194 [ 1063.832084] should_fail.cold+0x10a/0x14b [ 1063.836219] should_failslab+0xd6/0x130 [ 1063.840188] kmem_cache_alloc+0x2b5/0x770 13:49:44 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) syz_read_part_table(0x0, 0x7, &(0x7f0000000780)=[{&(0x7f0000000840)="e6cc816a71d45e9acee004ba2817ccd958ebbb022fa4711587d1a7fb8ecd50766f602c8e3d290c5f55962bd5143afcb889e2ab134ccb570730950bd8e4eab53b896649f0f5471c853a9860de2e064ef553738442c833a9322b24ff6d6cb8cbb55c6a8a30093ed2fc703d077a8caeb529af43460ff9e67290d76fecbe76881fcaefee49fc6ae0143eddf1a4d3a9a71ea1c63840a2839326356b8e7a89562e06d18168a2", 0xa3, 0x4bc0}, {&(0x7f0000000140)="9c1a829f64ce6fa65c63a12d8826c726e966a72fb2e66845609401e2361834fc99c2563d01a1", 0x26, 0x200}, {&(0x7f00000003c0)="74e7e41e6f3ac6a7ce9950b53ecc8a1b73aa07b2bb1bc1c6e1b1f966632d40d0cef0c3d13ac7cdb836c145360f99293f63626a9144ba9572654b49900f7fb288c639a5811270d2d2feabd570ca43a681e93414951b1ddf6faebdb7c87d89d79074cd916fb221b1677c543e5309c1ddf6d559366262fbda4e38d8973fe6e2044f03884ec84811b9c14a558c6fd22a0565c454e49ed339b6a83244169e3ae8ab5766fc147e46ba0ade69c4a0f17e1446025a8927b24cb259d2ab297d583a1fe4c36f122018fef15347", 0xc8, 0x2}, {&(0x7f00000004c0)="aa860ae2297e6c291e0a53c33ab94a5fdfd7f2cafa59c9b353f06ce782dcdd6b6b64498822343670316141a3c8a8b041799c67c1ceeb8b344a807515ed9f1b29785ea90ab2ac9a8275f96432d869847c8091fc93640213390e0e87f4b13f76dcb854896aab9e790bef3beb12822a1bc722d1148657d72a31b9605db7250854cb078f652c2ead881507f8a15ae84a3dce4212325a78dd4cc3c1", 0x99, 0xfff}, {&(0x7f0000000580)="8f60ebbe0c01eff7f87a63708b28f012793f02e3cc6dafacd2a67843a10a1b1cdce039834b405d3360dc5d16cdb9d2b63ac445ca6277dfb49199adca10fde5531f85f7295907d53571f536fd57f930b796138efb3ca7a0ef306315b9194deb126566939d40ba87f101f51e3b220351753c664cb3ae7568f006c4014133d70d9401a10e4169c399c58043576f9b53f38b2f38766c31a05146a01f946c7c5ae8973e2ef90f8d0ec870b5e1a3682871587f302a7355c8ab5f180d0ea1890c1ca31dac7e32c9d183e06b71282139653e", 0xce, 0x400}, {&(0x7f0000000300)="50d0edf5b94250c3bb946bc35878a514506a9dd52d561c3fef74849b68732fe3a0485799b5d45941ec1ae416949e12a573408f023e3512a8d092619bb28cc437b03c2e8afd99cb8b527c0a84bc783fd3", 0x50, 0x83d9}, {&(0x7f0000000700)="f3aa561e3f0908d1a6a1bd4fa207cbd0df62aad2259d6c591736a2a072b3e58e3718dbc0842a74c4fff7db4dce89edf8758ad58bdf78866f4af8bd695174602eafa5560205dc7e70c7494088c7a55ada3a866a57a7ac07a4feeaec8b3d0a", 0x5e, 0x9b2b}]) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r4, 0x800442d3, &(0x7f0000000100)={0x0, 0x3, 0xc49, @empty, 'bond_slave_0\x00'}) sched_setattr(r0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x2, 0x0, 0x0, 0x400}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1063.844342] ? alloc_inode+0xa0/0x170 [ 1063.848137] selinux_inode_alloc_security+0xb1/0x2a0 [ 1063.853238] security_inode_alloc+0x8f/0xd0 [ 1063.857562] inode_init_always+0x576/0xb20 [ 1063.861804] alloc_inode+0x7a/0x170 [ 1063.865609] new_inode_pseudo+0x14/0xe0 [ 1063.869585] new_inode+0x1b/0x40 [ 1063.872949] debugfs_get_inode+0x1a/0x130 [ 1063.877097] __debugfs_create_file+0x93/0x3c0 [ 1063.881594] ? debugfs_create_file+0x37/0x60 [ 1063.886041] kvm_dev_ioctl+0xd71/0x1480 [ 1063.890020] ? kvm_put_kvm+0xa90/0xa90 [ 1063.893918] ? kvm_put_kvm+0xa90/0xa90 [ 1063.897808] do_vfs_ioctl+0x75a/0xfe0 [ 1063.901607] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1063.906368] ? ioctl_preallocate+0x1a0/0x1a0 [ 1063.910788] ? security_file_ioctl+0x76/0xb0 [ 1063.915191] ? security_file_ioctl+0x83/0xb0 [ 1063.919602] SyS_ioctl+0x7f/0xb0 [ 1063.922969] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1063.926950] do_syscall_64+0x1d5/0x640 [ 1063.930841] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1063.936036] RIP: 0033:0x45c829 [ 1063.939219] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:49:44 executing program 1 (fault-call:14 fault-nth:6): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1063.946937] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1063.954204] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1063.961473] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.968745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1063.976045] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:44 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0x10882, 0x0) ioctl$BLKREPORTZONE(r3, 0xc0101282, &(0x7f00000002c0)={0x4, 0x4, 0x0, [{0x10001, 0x41e, 0x0, 0xfb, 0x0, 0x8, 0x9}, {0x5, 0x8, 0x4, 0x0, 0x8, 0x7, 0x1}, {0x60b43096, 0x6, 0x80, 0x0, 0xef, 0x6, 0x1f}, {0x8, 0xfffffffffffffffc, 0x2, 0x7, 0x81, 0xf3, 0x5f}]}) syz_open_dev$amidi(&(0x7f0000000240)='/dev/amidi#\x00', 0x6b85, 0x8800) getsockname$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000180)=0x14) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:44 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) dup2(r5, 0xffffffffffffffff) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000380)={0xd000, &(0x7f0000000180), 0x1, r7}) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)=""/180, 0xb4) 13:49:44 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = getgid() stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setregid(r3, r4) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1064.198168] FAULT_INJECTION: forcing a failure. [ 1064.198168] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.210326] CPU: 0 PID: 26285 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1064.218219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1064.227602] Call Trace: [ 1064.230208] dump_stack+0x13e/0x194 [ 1064.233949] should_fail.cold+0x10a/0x14b [ 1064.238105] should_failslab+0xd6/0x130 [ 1064.242093] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1064.247382] ? cleanup_srcu_struct+0x270/0x270 [ 1064.251971] ? __raw_spin_lock_init+0x28/0x100 [ 1064.256566] kvm_dev_ioctl+0x963/0x1480 [ 1064.260557] ? kvm_put_kvm+0xa90/0xa90 [ 1064.264465] ? kvm_put_kvm+0xa90/0xa90 [ 1064.268370] do_vfs_ioctl+0x75a/0xfe0 [ 1064.272181] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1064.276944] ? ioctl_preallocate+0x1a0/0x1a0 [ 1064.281366] ? security_file_ioctl+0x76/0xb0 [ 1064.285813] ? security_file_ioctl+0x83/0xb0 [ 1064.290232] SyS_ioctl+0x7f/0xb0 [ 1064.293622] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1064.297589] do_syscall_64+0x1d5/0x640 [ 1064.301685] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1064.306975] RIP: 0033:0x45c829 [ 1064.310315] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1064.318026] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1064.325493] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1064.332851] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1064.340108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 13:49:44 executing program 2 (fault-call:11 fault-nth:37): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1064.347376] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1064.745817] FAULT_INJECTION: forcing a failure. [ 1064.745817] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1064.759776] CPU: 0 PID: 26312 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1064.767848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1064.777210] Call Trace: [ 1064.779844] dump_stack+0x13e/0x194 [ 1064.783490] should_fail.cold+0x10a/0x14b [ 1064.787652] __alloc_pages_nodemask+0x1bf/0x700 [ 1064.792432] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1064.797548] ? inode_doinit_with_dentry+0x735/0xe30 [ 1064.802575] ? lockref_get+0x11/0x50 [ 1064.806338] alloc_pages_current+0xe7/0x1e0 [ 1064.810676] __get_free_pages+0xb/0x40 [ 1064.814566] inode_doinit_with_dentry+0x7b6/0xe30 [ 1064.819537] ? selinux_cred_free+0x70/0x70 [ 1064.823775] ? put_itimerspec64+0x190/0x190 [ 1064.828141] selinux_d_instantiate+0x23/0x30 [ 1064.832569] security_d_instantiate+0x54/0xd0 [ 1064.837067] d_instantiate+0x5a/0x90 [ 1064.841074] __debugfs_create_file+0x15b/0x3c0 [ 1064.845934] ? debugfs_create_file+0x37/0x60 [ 1064.850381] kvm_dev_ioctl+0xd71/0x1480 [ 1064.854362] ? kvm_put_kvm+0xa90/0xa90 [ 1064.858350] ? kvm_put_kvm+0xa90/0xa90 [ 1064.862263] do_vfs_ioctl+0x75a/0xfe0 [ 1064.866255] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1064.871457] ? ioctl_preallocate+0x1a0/0x1a0 [ 1064.875874] ? security_file_ioctl+0x76/0xb0 [ 1064.880572] ? security_file_ioctl+0x83/0xb0 [ 1064.884984] SyS_ioctl+0x7f/0xb0 [ 1064.888721] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1064.892701] do_syscall_64+0x1d5/0x640 [ 1064.896595] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1064.901780] RIP: 0033:0x45c829 [ 1064.904964] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1064.912669] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1064.920023] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1064.927289] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1064.934579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1064.941855] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:45 executing program 1 (fault-call:14 fault-nth:7): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:45 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25}, 0x24}}, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000100)) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:45 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x0, 0x0, 0xa, 0x0, 0x9, 0x0, 0x1ff, 0xd0}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1065.186121] print_req_error: I/O error, dev loop4, sector 0 [ 1065.192701] Buffer I/O error on dev loop4, logical block 0, async page read [ 1065.200026] print_req_error: I/O error, dev loop4, sector 1 [ 1065.206462] Buffer I/O error on dev loop4, logical block 1, async page read [ 1065.213873] print_req_error: I/O error, dev loop4, sector 2 [ 1065.219794] Buffer I/O error on dev loop4, logical block 2, async page read [ 1065.227774] print_req_error: I/O error, dev loop4, sector 3 13:49:45 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25}, 0x24}}, 0x0) getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000001f00)={@dev, 0x0}, &(0x7f0000001f40)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000001f80)={'ip6erspan0\x00'}) sendmsg$nl_route(r1, &(0x7f0000002080)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002040)={&(0x7f0000001fc0)=@newneigh={0x74, 0x1c, 0x200, 0x70bd2b, 0x25dfdbfe, {0x2, 0x0, 0x0, 0x0, 0x40, 0x88, 0x3}, [@NDA_PROBES={0x8, 0x4, 0x800}, @NDA_DST_IPV4={0x8, 0x1, @multicast1}, @NDA_IFINDEX={0x8}, @NDA_DST_MAC={0xa, 0x1, @broadcast}, @NDA_LLADDR={0xa, 0x2, @random="68b3141dd3e1"}, @NDA_IFINDEX={0x8, 0x8, r4}, @NDA_SRC_VNI={0x8, 0xb, 0x1}, @NDA_SRC_VNI={0x8, 0xb, 0x8001}, @NDA_VLAN={0x6, 0x5, 0x4}, @NDA_IFINDEX={0x8}]}, 0x74}, 0x1, 0x0, 0x0, 0x850}, 0x8894) [ 1065.233706] Buffer I/O error on dev loop4, logical block 3, async page read [ 1065.240987] print_req_error: I/O error, dev loop4, sector 4 [ 1065.246879] Buffer I/O error on dev loop4, logical block 4, async page read [ 1065.254073] print_req_error: I/O error, dev loop4, sector 5 [ 1065.259985] Buffer I/O error on dev loop4, logical block 5, async page read [ 1065.267598] print_req_error: I/O error, dev loop4, sector 6 [ 1065.273402] Buffer I/O error on dev loop4, logical block 6, async page read 13:49:45 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ocfs2_control\x00', 0xc000, 0x0) ioctl$sock_x25_SIOCADDRT(r3, 0x890b, &(0x7f00000002c0)={@null=' \x00', 0x9, 'veth0_to_team\x00'}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r3, 0xc018620b, &(0x7f0000000100)={0x1}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0xde57678d445b657c, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) uselib(&(0x7f0000000180)='./file0\x00') [ 1065.281639] print_req_error: I/O error, dev loop4, sector 7 [ 1065.287944] Buffer I/O error on dev loop4, logical block 7, async page read [ 1065.295955] ldm_validate_partition_table(): Disk read failed. [ 1065.302172] Dev loop4: unable to read RDB block 0 [ 1065.307311] loop4: unable to read partition table [ 1065.312726] loop4: partition table beyond EOD, truncated 13:49:45 executing program 2 (fault-call:11 fault-nth:38): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1065.373195] FAULT_INJECTION: forcing a failure. [ 1065.373195] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.384555] CPU: 0 PID: 26367 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1065.392455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1065.401840] Call Trace: [ 1065.404445] dump_stack+0x13e/0x194 [ 1065.408094] should_fail.cold+0x10a/0x14b [ 1065.412249] should_failslab+0xd6/0x130 [ 1065.416231] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1065.420923] ? rcu_lockdep_current_cpu_online+0xed/0x140 [ 1065.426387] ? kvm_dev_ioctl+0x963/0x1480 [ 1065.430629] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1065.435648] ? kmem_cache_alloc_trace+0x63e/0x7b0 [ 1065.440497] do_mmu_notifier_register+0x8f/0x450 [ 1065.445265] ? __raw_spin_lock_init+0x28/0x100 [ 1065.450574] kvm_dev_ioctl+0xa14/0x1480 [ 1065.454562] ? kvm_put_kvm+0xa90/0xa90 [ 1065.458457] ? kvm_put_kvm+0xa90/0xa90 [ 1065.462349] do_vfs_ioctl+0x75a/0xfe0 [ 1065.466191] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1065.471473] ? ioctl_preallocate+0x1a0/0x1a0 [ 1065.475896] ? security_file_ioctl+0x76/0xb0 [ 1065.480305] ? security_file_ioctl+0x83/0xb0 [ 1065.484718] SyS_ioctl+0x7f/0xb0 [ 1065.488084] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1065.492063] do_syscall_64+0x1d5/0x640 [ 1065.495966] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1065.501157] RIP: 0033:0x45c829 [ 1065.504347] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1065.512236] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1065.519598] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1065.526871] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1065.534141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1065.541414] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1065.834204] FAULT_INJECTION: forcing a failure. [ 1065.834204] name failslab, interval 1, probability 0, space 0, times 0 [ 1065.845851] CPU: 0 PID: 26393 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1065.853776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1065.863136] Call Trace: [ 1065.865743] dump_stack+0x13e/0x194 [ 1065.869417] should_fail.cold+0x10a/0x14b [ 1065.873579] should_failslab+0xd6/0x130 [ 1065.877567] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1065.882241] ? up_write+0x17/0x60 [ 1065.886567] ? __debugfs_create_file+0x2c6/0x3c0 [ 1065.891325] ? debugfs_create_file+0x37/0x60 [ 1065.895748] kvm_dev_ioctl+0xdc4/0x1480 [ 1065.899738] ? kvm_put_kvm+0xa90/0xa90 [ 1065.903633] ? kvm_put_kvm+0xa90/0xa90 [ 1065.907526] do_vfs_ioctl+0x75a/0xfe0 [ 1065.911351] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1065.916668] ? ioctl_preallocate+0x1a0/0x1a0 [ 1065.921091] ? security_file_ioctl+0x76/0xb0 [ 1065.925505] ? security_file_ioctl+0x83/0xb0 [ 1065.929929] SyS_ioctl+0x7f/0xb0 [ 1065.933301] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1065.937282] do_syscall_64+0x1d5/0x640 [ 1065.941181] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1065.946393] RIP: 0033:0x45c829 [ 1065.949616] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1065.957331] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1065.964602] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1065.971874] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1065.979148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1065.986422] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:46 executing program 1 (fault-call:14 fault-nth:8): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:46 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:46 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000100)={0x6, 0x7, 0x8, 0x1ff, 0x1}, 0x14) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x0, 0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000240)={0xaa, 0x12}) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0xcf}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:46 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x1, 0x32001) ioctl$VIDIOC_G_SELECTION(r3, 0xc040565e, &(0x7f0000000100)={0x2, 0x100, 0x1, {0x0, 0x80000000, 0xfffffffa, 0x3}}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:46 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) open(&(0x7f0000000100)='./file0\x00', 0x4040, 0x100) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1066.381254] FAULT_INJECTION: forcing a failure. [ 1066.381254] name failslab, interval 1, probability 0, space 0, times 0 [ 1066.392864] CPU: 0 PID: 26447 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1066.400763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1066.410148] Call Trace: [ 1066.412751] dump_stack+0x13e/0x194 [ 1066.416393] should_fail.cold+0x10a/0x14b [ 1066.420549] ? kvm_exit+0x80/0x80 [ 1066.424001] should_failslab+0xd6/0x130 [ 1066.426859] audit: type=1800 audit(1589032186.711:45): pid=26450 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="file0" dev="sda1" ino=16106 res=0 [ 1066.427978] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1066.427992] ? __lockdep_init_map+0x100/0x560 [ 1066.457325] ? __lockdep_init_map+0x100/0x560 [ 1066.461806] ? kvm_exit+0x80/0x80 [ 1066.465240] __kthread_create_on_node+0xbe/0x3a0 [ 1066.469993] ? kthread_park+0x130/0x130 [ 1066.473958] ? trace_hardirqs_on+0x10/0x10 [ 1066.478266] ? trace_hardirqs_on+0x10/0x10 [ 1066.482479] ? kvm_exit+0x80/0x80 [ 1066.485910] kthread_create_on_node+0xa8/0xd0 [ 1066.490383] ? __kthread_create_on_node+0x3a0/0x3a0 [ 1066.495383] ? __lockdep_init_map+0x100/0x560 [ 1066.499857] ? __lockdep_init_map+0x100/0x560 [ 1066.504334] ? kvm_mmu_reset_context+0x70/0x70 [ 1066.509502] kvm_vm_create_worker_thread+0x123/0x1ec [ 1066.514585] ? kvm_io_bus_unregister_dev+0x300/0x300 [ 1066.519669] ? kvm_mmu_reset_context+0x70/0x70 [ 1066.524231] ? kfree+0x205/0x260 [ 1066.527604] kvm_mmu_post_init_vm+0x2e/0x90 [ 1066.531905] kvm_dev_ioctl+0xfca/0x1480 [ 1066.535863] ? kvm_put_kvm+0xa90/0xa90 [ 1066.539750] ? kvm_put_kvm+0xa90/0xa90 [ 1066.543628] do_vfs_ioctl+0x75a/0xfe0 [ 1066.547409] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1066.552141] ? ioctl_preallocate+0x1a0/0x1a0 [ 1066.556804] ? security_file_ioctl+0x76/0xb0 [ 1066.561277] ? security_file_ioctl+0x83/0xb0 [ 1066.565668] SyS_ioctl+0x7f/0xb0 [ 1066.569022] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1066.573150] do_syscall_64+0x1d5/0x640 [ 1066.577034] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1066.582216] RIP: 0033:0x45c829 [ 1066.585386] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1066.593073] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1066.600344] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1066.607625] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1066.614895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1066.622153] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:47 executing program 2 (fault-call:11 fault-nth:39): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1066.979491] FAULT_INJECTION: forcing a failure. [ 1066.979491] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1066.991598] CPU: 0 PID: 26470 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1066.999487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1067.008957] Call Trace: [ 1067.011592] dump_stack+0x13e/0x194 [ 1067.015333] should_fail.cold+0x10a/0x14b [ 1067.019487] __alloc_pages_nodemask+0x1bf/0x700 [ 1067.024156] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1067.029196] ? inode_doinit_with_dentry+0x735/0xe30 [ 1067.034307] ? lockref_get+0x11/0x50 [ 1067.038023] alloc_pages_current+0xe7/0x1e0 [ 1067.042820] __get_free_pages+0xb/0x40 [ 1067.046731] inode_doinit_with_dentry+0x7b6/0xe30 [ 1067.052274] ? selinux_cred_free+0x70/0x70 [ 1067.056513] ? put_itimerspec64+0x190/0x190 [ 1067.060841] selinux_d_instantiate+0x23/0x30 [ 1067.065339] security_d_instantiate+0x54/0xd0 [ 1067.069836] d_instantiate+0x5a/0x90 [ 1067.073553] __debugfs_create_file+0x15b/0x3c0 [ 1067.078139] ? debugfs_create_file+0x37/0x60 [ 1067.082553] kvm_dev_ioctl+0xd71/0x1480 [ 1067.086535] ? kvm_put_kvm+0xa90/0xa90 [ 1067.090423] ? kvm_put_kvm+0xa90/0xa90 [ 1067.094311] do_vfs_ioctl+0x75a/0xfe0 [ 1067.098113] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1067.102874] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1067.108677] ? ioctl_preallocate+0x1a0/0x1a0 [ 1067.113088] ? retint_kernel+0x2d/0x2d [ 1067.117077] ? security_file_ioctl+0x76/0xb0 [ 1067.121493] ? security_file_ioctl+0x83/0xb0 [ 1067.126269] SyS_ioctl+0x7f/0xb0 [ 1067.129647] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1067.133632] do_syscall_64+0x1d5/0x640 [ 1067.137533] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1067.142730] RIP: 0033:0x45c829 [ 1067.145926] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1067.153639] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1067.161030] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1067.168303] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.175571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1067.182837] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:47 executing program 1 (fault-call:14 fault-nth:9): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:47 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x9, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x0, 0x40000000, 0x6}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1067.253249] audit: type=1800 audit(1589032187.572:46): pid=26488 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="syz-executor.4" name="file0" dev="sda1" ino=16106 res=0 13:49:47 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:47 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) write(r3, &(0x7f0000000340), 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KVM_HAS_DEVICE_ATTR(r7, 0x4018aee3, &(0x7f0000000100)={0x0, 0x0, 0x8, &(0x7f0000000040)=0x2}) newfstatat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x4000) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000480)={{{@in6=@ipv4={[], [], @rand_addr=0x64010101}, @in=@broadcast, 0x4e23, 0x5, 0x4e20, 0x5b, 0xa, 0x80, 0x20, 0x87, 0x0, r8}, {0x7, 0x7, 0x8, 0x3ff, 0x1f, 0x1f, 0x401, 0x8001}, {0x4819, 0x0, 0x93, 0x3}, 0xfff, 0x6e6bb5, 0x1, 0x0, 0x3, 0x1}, {{@in6=@remote, 0x4d2, 0x33}, 0xa, @in=@empty, 0x3505, 0x1, 0x3, 0xfd, 0x101, 0x7ff, 0x3}}, 0xe8) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340830600040d8c560a067f0200ff000000000000000058000b0400ca945f64009400ff0325010ebc000000000000008000f0fffe0100070c100000000100000000", 0x49}], 0x1) 13:49:47 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x9, 0x1, &(0x7f0000000440)=[{&(0x7f00000003c0)="60739946120f0855aaab8956b58111978dfba252495795ec4bc831926f881d61ad85b1fe2f99c42843bcdf94030733579ba9ac128fae0ae96e3a34839356193795161770de96410e88d865e63f4b8e80358813b443462e80b5e6a57d33f31f0efd0ca4347051569a44bca656f4c59680fe59bdae312b8d18b0edb37f3a222837", 0x80, 0x3}], 0xb1f73b832109df28, &(0x7f0000000480)={[{@rodir='rodir'}], [{@fowner_eq={'fowner'}}]}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x8}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = timerfd_create(0x9, 0x1000) r8 = openat$cgroup_int(r1, &(0x7f0000000140)='cpuset.memory_spread_page\x00', 0x2, 0x0) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) ppoll(&(0x7f00000004c0)=[{r7, 0x1}, {r8, 0x3020}, {r9, 0x60}, {r3, 0x9058}], 0x4, &(0x7f0000000240), &(0x7f0000000180)={[0xa43]}, 0x8) [ 1067.521171] FAULT_INJECTION: forcing a failure. [ 1067.521171] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1067.533308] CPU: 1 PID: 26532 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1067.541289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1067.550665] Call Trace: [ 1067.553273] dump_stack+0x13e/0x194 [ 1067.556909] should_fail.cold+0x10a/0x14b [ 1067.561057] __alloc_pages_nodemask+0x1bf/0x700 [ 1067.565729] ? save_trace+0x290/0x290 [ 1067.569529] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1067.574553] alloc_pages_current+0xe7/0x1e0 [ 1067.578879] kvm_coalesced_mmio_init+0x18/0x110 [ 1067.583567] kvm_dev_ioctl+0x4d1/0x1480 [ 1067.587562] ? kvm_put_kvm+0xa90/0xa90 [ 1067.591453] ? kvm_put_kvm+0xa90/0xa90 [ 1067.595349] do_vfs_ioctl+0x75a/0xfe0 [ 1067.599157] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1067.603917] ? ioctl_preallocate+0x1a0/0x1a0 [ 1067.608336] ? security_file_ioctl+0x76/0xb0 [ 1067.612860] ? security_file_ioctl+0x83/0xb0 [ 1067.617285] SyS_ioctl+0x7f/0xb0 [ 1067.620672] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1067.624651] do_syscall_64+0x1d5/0x640 [ 1067.628551] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1067.633747] RIP: 0033:0x45c829 [ 1067.636941] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1067.644648] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1067.651918] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1067.659211] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1067.666499] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1067.673774] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:48 executing program 2 (fault-call:11 fault-nth:40): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1068.056977] FAULT_INJECTION: forcing a failure. [ 1068.056977] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.068472] CPU: 1 PID: 26557 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1068.076362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1068.085751] Call Trace: [ 1068.088345] dump_stack+0x13e/0x194 [ 1068.091977] should_fail.cold+0x10a/0x14b [ 1068.096128] should_failslab+0xd6/0x130 [ 1068.100105] kmem_cache_alloc+0x2b5/0x770 13:49:48 executing program 4: prlimit64(0x0, 0xa, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000180)=[{&(0x7f0000000240)="d2971cbcf1f10e533e66b7441b9e228527fe99b86ba8ec2a276b78e50c38c8a8bc69d8e5d7aa62635e313f7e0dea0a31e6419741d9292dfb01fc9bba8c87eb15c6420f28a0066b373b8d3ba6a42740e92422cdf0f13bdbdfcf7167ae4aedaeeab42f843111abaf2dc8f8b0cc33421a2170cd7bb641f581d2c813b0304f4ac797b842c18d10d39ecfcd64c8d9a362fe1079b35b3bd269fe484d3f424ff518ef08729ed7e573301d2d83e22917a0783e7a4d66754453e850d701ed599fcad347ecc68d50f04d4bb6f02e8ffdd929019b21b895596ef6ca1fdd8b03adfde83fb81ad0ba90da2a84f57f77d5b99fc63ff736c001e0313274c18a70", 0xf9}, {&(0x7f0000000340)="268a3a5a09ef0e1cbc2758a530646398064b9f507c22b8e07ce80424e2dc714c3acf367fbd5d9b14395cbf312bc8e31a0992273827aee587c62c7a25f6fc63f6199f648352d67b98070a20e366f9061750a535c644641fbec6539274774e2061dfd0cc3e678a9878e058c4b12f2356c427a8a7133b96c32a62b14f9e1f909328c7247ff8b74dcdc6719a9f75db438c5f96df969b9a924417aa1d623d03fb990d9dff51aca30e3cb15478061d37c8ff1bef37255e4143c44a8bf0545f598be1b5d6ccb4079da2be0aaf0858157007ef", 0xcf}, {&(0x7f0000000000)="56437574e31bb1170eeff6c885edca93c6a04eb4ae75d57b609a4a8e4b32bcf028e5b0506350fd253fc6c367e8e108003c3cc6e6c405bf", 0x37}], 0x3, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$UFFDIO_UNREGISTER(r4, 0x8010aa01, &(0x7f0000000100)={&(0x7f0000012000/0x6000)=nil, 0x6000}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000000140)={0xc3f, 0x4, 0xffffb29f, 0x0, 0x4}) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1068.104254] ? lookup_one_len+0x284/0x3a0 [ 1068.108404] alloc_inode+0xa0/0x170 [ 1068.112032] new_inode_pseudo+0x14/0xe0 [ 1068.116006] new_inode+0x1b/0x40 [ 1068.119379] debugfs_get_inode+0x1a/0x130 [ 1068.123530] __debugfs_create_file+0x93/0x3c0 [ 1068.128027] ? debugfs_create_file+0x37/0x60 [ 1068.132446] kvm_dev_ioctl+0xd71/0x1480 [ 1068.136542] ? kvm_put_kvm+0xa90/0xa90 [ 1068.140525] ? kvm_put_kvm+0xa90/0xa90 [ 1068.144574] do_vfs_ioctl+0x75a/0xfe0 [ 1068.148376] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1068.153147] ? ioctl_preallocate+0x1a0/0x1a0 [ 1068.157594] ? retint_kernel+0x2d/0x2d [ 1068.161500] SyS_ioctl+0x7f/0xb0 [ 1068.164871] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1068.168849] do_syscall_64+0x1d5/0x640 [ 1068.172743] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1068.177922] RIP: 0033:0x45c829 [ 1068.181209] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1068.189032] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1068.196302] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1068.203647] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1068.210933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1068.218290] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:48 executing program 1 (fault-call:14 fault-nth:10): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:48 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000000240)=""/4096) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:48 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000000180)=[{{&(0x7f00000002c0)=@llc, 0x80, &(0x7f0000000100)=[{&(0x7f00000004c0)=""/42, 0x2a}, {&(0x7f0000000340)=""/175, 0xaf}], 0x2, &(0x7f0000000400)=""/166, 0xa6}, 0x8001}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:48 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x1}, 0x14}}, 0x0) sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x24000000) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1068.490029] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=26605 comm=syz-executor.3 [ 1068.566071] FAULT_INJECTION: forcing a failure. [ 1068.566071] name failslab, interval 1, probability 0, space 0, times 0 [ 1068.577664] CPU: 0 PID: 26614 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1068.585638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1068.595082] Call Trace: [ 1068.597684] dump_stack+0x13e/0x194 [ 1068.601330] should_fail.cold+0x10a/0x14b [ 1068.605496] should_failslab+0xd6/0x130 [ 1068.609485] kmem_cache_alloc+0x2b5/0x770 [ 1068.613764] ? __alloc_fd+0x1bf/0x490 [ 1068.617581] __d_alloc+0x2a/0x9b0 [ 1068.621044] anon_inode_getfile+0x101/0x2f0 [ 1068.625367] ? reverse_path_check_proc.cold+0x1a/0x1a [ 1068.630577] ? __alloc_fd+0x1bf/0x490 [ 1068.636479] kvm_dev_ioctl+0x517/0x1480 [ 1068.640487] ? kvm_put_kvm+0xa90/0xa90 [ 1068.644376] ? kvm_put_kvm+0xa90/0xa90 [ 1068.648262] do_vfs_ioctl+0x75a/0xfe0 [ 1068.652149] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1068.656919] ? ioctl_preallocate+0x1a0/0x1a0 [ 1068.661342] ? security_file_ioctl+0x76/0xb0 [ 1068.665756] ? security_file_ioctl+0x83/0xb0 [ 1068.670270] SyS_ioctl+0x7f/0xb0 [ 1068.673644] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1068.677624] do_syscall_64+0x1d5/0x640 [ 1068.681521] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1068.686731] RIP: 0033:0x45c829 [ 1068.689917] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1068.697719] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1068.705003] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 13:49:49 executing program 2 (fault-call:11 fault-nth:41): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1068.712274] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1068.719542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1068.726811] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1069.015612] FAULT_INJECTION: forcing a failure. [ 1069.015612] name failslab, interval 1, probability 0, space 0, times 0 [ 1069.027174] CPU: 1 PID: 26631 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1069.035063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1069.044427] Call Trace: [ 1069.047037] dump_stack+0x13e/0x194 [ 1069.050671] should_fail.cold+0x10a/0x14b [ 1069.054831] should_failslab+0xd6/0x130 [ 1069.059068] kmem_cache_alloc+0x2b5/0x770 [ 1069.063220] ? alloc_inode+0xa0/0x170 [ 1069.067023] selinux_inode_alloc_security+0xb1/0x2a0 [ 1069.072132] security_inode_alloc+0x8f/0xd0 [ 1069.076458] inode_init_always+0x576/0xb20 [ 1069.080693] alloc_inode+0x7a/0x170 [ 1069.084321] new_inode_pseudo+0x14/0xe0 [ 1069.088307] new_inode+0x1b/0x40 [ 1069.091679] debugfs_get_inode+0x1a/0x130 [ 1069.095833] __debugfs_create_file+0x93/0x3c0 [ 1069.100332] ? debugfs_create_file+0x37/0x60 [ 1069.104746] kvm_dev_ioctl+0xd71/0x1480 [ 1069.108724] ? retint_kernel+0x2d/0x2d [ 1069.112609] ? kvm_put_kvm+0xa90/0xa90 [ 1069.116497] ? kvm_put_kvm+0xa90/0xa90 [ 1069.120384] do_vfs_ioctl+0x75a/0xfe0 [ 1069.124184] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1069.128980] ? ioctl_preallocate+0x1a0/0x1a0 [ 1069.133418] ? security_file_ioctl+0x76/0xb0 [ 1069.137829] ? security_file_ioctl+0x83/0xb0 [ 1069.142243] SyS_ioctl+0x7f/0xb0 [ 1069.145613] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1069.149596] do_syscall_64+0x1d5/0x640 [ 1069.153496] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1069.158685] RIP: 0033:0x45c829 [ 1069.161875] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1069.169589] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1069.176859] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1069.184131] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1069.191420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1069.198718] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:49 executing program 1 (fault-call:14 fault-nth:11): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:49 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x1ff) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$UI_SET_MSCBIT(r8, 0x40045568, 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1069.333157] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=26624 comm=syz-executor.3 13:49:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x1}, 0x14}}, 0x0) sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x48, r2, 0x10, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x8}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0xc878}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:49 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000300)=[{&(0x7f0000000500)}], 0x1, 0x2) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_S390_VCPU_FAULT(0xffffffffffffffff, 0x4008ae52, &(0x7f0000000000)=0x8000) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = socket(0x10, 0x80000, 0x4) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000040)=@assoc_value, &(0x7f0000000100)=0x8) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:49 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r2, &(0x7f0000000100)="d114b5d62b368e29a5e0a52bd61185511e86b044a17989218d240de7628d238b7b3ad7a7830bcfda44b8b7ca5d9269103374ba1415fe7d52b9cb164abb0516c1515078f7ec6af918e949f341a0ecb8359fcf8391ed24bad232ec4c6b", &(0x7f0000000180)=""/15}, 0x20) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1069.597729] FAULT_INJECTION: forcing a failure. [ 1069.597729] name failslab, interval 1, probability 0, space 0, times 0 [ 1069.609778] CPU: 0 PID: 26673 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1069.617679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1069.627126] Call Trace: [ 1069.629740] dump_stack+0x13e/0x194 [ 1069.633390] should_fail.cold+0x10a/0x14b [ 1069.637555] should_failslab+0xd6/0x130 [ 1069.641538] kmem_cache_alloc+0x2b5/0x770 [ 1069.645699] get_empty_filp+0x86/0x3e0 [ 1069.649589] alloc_file+0x23/0x440 [ 1069.653150] anon_inode_getfile+0x163/0x2f0 [ 1069.657654] ? reverse_path_check_proc.cold+0x1a/0x1a [ 1069.662860] ? __alloc_fd+0x1bf/0x490 [ 1069.666679] kvm_dev_ioctl+0x517/0x1480 [ 1069.670667] ? kvm_put_kvm+0xa90/0xa90 [ 1069.674649] ? kvm_put_kvm+0xa90/0xa90 [ 1069.678668] do_vfs_ioctl+0x75a/0xfe0 [ 1069.682716] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1069.687670] ? ioctl_preallocate+0x1a0/0x1a0 [ 1069.692091] ? security_file_ioctl+0x76/0xb0 [ 1069.696499] ? security_file_ioctl+0x83/0xb0 [ 1069.700911] SyS_ioctl+0x7f/0xb0 [ 1069.704275] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1069.708247] do_syscall_64+0x1d5/0x640 [ 1069.712145] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1069.717356] RIP: 0033:0x45c829 [ 1069.720537] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1069.728431] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1069.735706] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 13:49:50 executing program 2 (fault-call:11 fault-nth:42): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1069.742983] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1069.750253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1069.757526] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1070.057337] FAULT_INJECTION: forcing a failure. [ 1070.057337] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1070.069442] CPU: 1 PID: 26695 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1070.077329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1070.086682] Call Trace: [ 1070.089288] dump_stack+0x13e/0x194 [ 1070.092921] should_fail.cold+0x10a/0x14b [ 1070.097076] __alloc_pages_nodemask+0x1bf/0x700 [ 1070.101745] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1070.106764] ? inode_doinit_with_dentry+0x735/0xe30 [ 1070.111779] ? lockref_get+0x11/0x50 [ 1070.115493] alloc_pages_current+0xe7/0x1e0 [ 1070.119821] __get_free_pages+0xb/0x40 [ 1070.123711] inode_doinit_with_dentry+0x7b6/0xe30 [ 1070.128561] ? selinux_cred_free+0x70/0x70 [ 1070.132798] ? put_itimerspec64+0x190/0x190 [ 1070.137120] selinux_d_instantiate+0x23/0x30 [ 1070.141527] security_d_instantiate+0x54/0xd0 [ 1070.146022] d_instantiate+0x5a/0x90 [ 1070.149890] __debugfs_create_file+0x15b/0x3c0 [ 1070.154463] ? debugfs_create_file+0x37/0x60 [ 1070.158877] kvm_dev_ioctl+0xd71/0x1480 [ 1070.162861] ? retint_kernel+0x2d/0x2d [ 1070.166753] ? kvm_put_kvm+0xa90/0xa90 [ 1070.170646] ? kvm_put_kvm+0xa90/0xa90 [ 1070.174534] do_vfs_ioctl+0x75a/0xfe0 [ 1070.178361] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1070.183142] ? ioctl_preallocate+0x1a0/0x1a0 [ 1070.187569] ? security_file_ioctl+0x76/0xb0 [ 1070.191974] ? security_file_ioctl+0x83/0xb0 [ 1070.196383] SyS_ioctl+0x7f/0xb0 [ 1070.199772] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1070.203756] do_syscall_64+0x1d5/0x640 [ 1070.207643] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1070.213776] RIP: 0033:0x45c829 [ 1070.216955] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1070.224654] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1070.232022] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1070.239315] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1070.246576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1070.253851] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:50 executing program 1 (fault-call:14 fault-nth:12): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:50 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0xffffffffffffffff) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000000e14010029bd7000fbdbdf25080001000000000008003c0002000000080003000200000008003c000200a145e115e122eda20000"], 0x38}, 0x1, 0x0, 0x0, 0x8040}, 0x4044080) 13:49:50 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000140)) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:50 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:50 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r2 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000001400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000080)=@secondary='builtin_and_secondary_trusted\x00') keyctl$link(0x8, r1, r2) r3 = add_key(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000240)="a9f81444a1a862134ddae32d5f6ba4c5d0cd9ab20c946a12bf2af8d0366f7d5b6f995d647c7548a33fba5563f5f242a9a0b0d11d852f25afadf86a8aaa7c46c88ef62d149016ee2c1254afa1a9f2796e184774b77102e1388515d3a670acc1d27b015a699ddfffde7079606a8db9a494af3b80dd81f32e087b006d35cea55c36e03dfd79ce6089fe28c0521c36e4ee0370723b1e7ac325", 0x97, r2) keyctl$KEYCTL_PKEY_ENCRYPT(0x19, &(0x7f0000000180)={r3, 0x4f, 0x4d}, &(0x7f0000000300)={'enc=', 'oaep', ' hash=', {'michael_mic\x00'}}, &(0x7f0000000380)="1431a07e93d6abf056c3d0b7df92f1f13303cebfeba0163d64d33d5ac0f9be7bdd27fe28be29f0bc34c4c7a10240519805f74087f3e1d8a80cfcf2b87d9682c1d4b98992d40d4d072c40af19274a70", &(0x7f0000000400)=""/77) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1070.726387] FAULT_INJECTION: forcing a failure. [ 1070.726387] name failslab, interval 1, probability 0, space 0, times 0 [ 1070.738014] CPU: 1 PID: 26746 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1070.745907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1070.755290] Call Trace: [ 1070.757900] dump_stack+0x13e/0x194 [ 1070.761543] should_fail.cold+0x10a/0x14b [ 1070.765722] should_failslab+0xd6/0x130 [ 1070.769704] kmem_cache_alloc+0x2b5/0x770 [ 1070.773870] selinux_file_alloc_security+0xaf/0x190 [ 1070.778930] security_file_alloc+0x66/0xa0 [ 1070.783183] ? selinux_is_enabled+0x5/0x50 [ 1070.787427] get_empty_filp+0x15c/0x3e0 [ 1070.791410] alloc_file+0x23/0x440 [ 1070.794964] anon_inode_getfile+0x163/0x2f0 [ 1070.799332] ? reverse_path_check_proc.cold+0x1a/0x1a [ 1070.804531] ? __alloc_fd+0x1bf/0x490 [ 1070.808348] kvm_dev_ioctl+0x517/0x1480 [ 1070.812441] ? kvm_put_kvm+0xa90/0xa90 [ 1070.816342] ? kvm_put_kvm+0xa90/0xa90 [ 1070.820249] do_vfs_ioctl+0x75a/0xfe0 [ 1070.824074] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1070.828844] ? ioctl_preallocate+0x1a0/0x1a0 [ 1070.833269] ? security_file_ioctl+0x76/0xb0 [ 1070.837681] ? security_file_ioctl+0x83/0xb0 [ 1070.842094] SyS_ioctl+0x7f/0xb0 [ 1070.845460] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1070.849439] do_syscall_64+0x1d5/0x640 [ 1070.853333] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1070.858520] RIP: 0033:0x45c829 [ 1070.861708] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1070.869862] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 13:49:51 executing program 2 (fault-call:11 fault-nth:43): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1070.877142] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1070.884415] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1070.891694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1070.898968] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1071.147540] FAULT_INJECTION: forcing a failure. [ 1071.147540] name failslab, interval 1, probability 0, space 0, times 0 [ 1071.159009] CPU: 1 PID: 26773 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1071.166885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1071.176227] Call Trace: [ 1071.178812] dump_stack+0x13e/0x194 [ 1071.182425] should_fail.cold+0x10a/0x14b [ 1071.186556] should_failslab+0xd6/0x130 [ 1071.190528] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1071.195186] ? up_write+0x17/0x60 [ 1071.198622] ? __debugfs_create_file+0x2c6/0x3c0 [ 1071.203365] ? debugfs_create_file+0x37/0x60 [ 1071.207776] kvm_dev_ioctl+0xdc4/0x1480 [ 1071.211736] ? kvm_put_kvm+0xa90/0xa90 [ 1071.215606] ? kvm_put_kvm+0xa90/0xa90 [ 1071.219474] do_vfs_ioctl+0x75a/0xfe0 [ 1071.223260] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1071.228011] ? ioctl_preallocate+0x1a0/0x1a0 [ 1071.232408] ? security_file_ioctl+0x76/0xb0 [ 1071.236811] ? security_file_ioctl+0x83/0xb0 [ 1071.241201] SyS_ioctl+0x7f/0xb0 [ 1071.245069] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1071.249023] do_syscall_64+0x1d5/0x640 [ 1071.252913] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1071.258084] RIP: 0033:0x45c829 [ 1071.261257] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1071.268945] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1071.276194] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1071.283470] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1071.290719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1071.297984] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:51 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$GIO_UNIMAP(r4, 0x4b66, &(0x7f0000000180)={0x8, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}, {}, {}]}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:51 executing program 1 (fault-call:14 fault-nth:13): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:51 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r5, 0xae00, 0x0) fcntl$F_GET_FILE_RW_HINT(r5, 0x40d, &(0x7f0000000040)) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:51 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0xfffffffffffffff9}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x44e640, 0x0) r5 = accept$unix(r2, &(0x7f0000000240), &(0x7f00000002c0)=0x6e) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000300)={&(0x7f0000014000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f000000e000/0x4000)=nil, &(0x7f0000004000/0x4000)=nil, &(0x7f0000012000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000010000/0x2000)=nil, &(0x7f0000013000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000006000/0x3000)=nil, &(0x7f0000013000/0x1000)=nil, &(0x7f0000000100)="989e2e5906c20dcddcfcacd2804a40e93a06349aef0baeaf593c067f46ce3457ba927d4aa3c90284d2cf9a76524ddb6671a427cfc165671f79235f3d5110eaa20dca337296a5e6c16796563991d0c6558a8ad01f4787ae43ecbc3c239b046a190dd31ad347af24e39c226f7e6d01813446c472471f5240f89b6d39f13a397189697422c373112d14c9f108aac225dfceea44d967ba63cecbc3bfda33736000"/168, 0xa8, r5}, 0x68) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1071.739452] FAULT_INJECTION: forcing a failure. [ 1071.739452] name failslab, interval 1, probability 0, space 0, times 0 [ 1071.751344] CPU: 0 PID: 26813 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1071.759247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1071.768611] Call Trace: [ 1071.771219] dump_stack+0x13e/0x194 [ 1071.774973] should_fail.cold+0x10a/0x14b [ 1071.779149] should_failslab+0xd6/0x130 [ 1071.783134] kmem_cache_alloc+0x2b5/0x770 [ 1071.787324] ? __d_lookup+0x3b4/0x670 [ 1071.791131] ? mark_held_locks+0xa6/0xf0 [ 1071.795200] __d_alloc+0x2a/0x9b0 [ 1071.798660] d_alloc+0x46/0x250 [ 1071.801948] __lookup_hash+0x51/0x180 [ 1071.805753] lookup_one_len+0x27c/0x3a0 [ 1071.809755] ? __lookup_hash+0x180/0x180 [ 1071.813825] start_creating+0xa1/0x1c0 [ 1071.817727] debugfs_create_dir+0x1f/0x3a0 [ 1071.821972] kvm_dev_ioctl+0xadd/0x1480 [ 1071.825950] ? retint_kernel+0x2d/0x2d [ 1071.829873] ? kvm_put_kvm+0xa90/0xa90 [ 1071.833777] ? kvm_put_kvm+0xa90/0xa90 [ 1071.838623] do_vfs_ioctl+0x75a/0xfe0 [ 1071.842429] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1071.847190] ? ioctl_preallocate+0x1a0/0x1a0 [ 1071.851611] ? security_file_ioctl+0x76/0xb0 [ 1071.856024] ? security_file_ioctl+0x83/0xb0 [ 1071.860534] SyS_ioctl+0x7f/0xb0 [ 1071.863908] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1071.867885] do_syscall_64+0x1d5/0x640 [ 1071.871783] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1071.876978] RIP: 0033:0x45c829 [ 1071.880165] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1071.887908] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1071.895186] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1071.902497] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1071.909883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1071.917160] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:52 executing program 2 (fault-call:11 fault-nth:44): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1072.190914] audit: type=1326 audit(1589032192.512:47): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=26809 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=228 compat=0 ip=0x45f66a code=0x0 [ 1072.263256] FAULT_INJECTION: forcing a failure. [ 1072.263256] name failslab, interval 1, probability 0, space 0, times 0 [ 1072.274726] CPU: 0 PID: 26831 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1072.282621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1072.291977] Call Trace: [ 1072.294574] dump_stack+0x13e/0x194 [ 1072.298219] should_fail.cold+0x10a/0x14b [ 1072.302374] should_failslab+0xd6/0x130 [ 1072.306355] kmem_cache_alloc+0x2b5/0x770 [ 1072.310505] ? __d_lookup+0x3b4/0x670 [ 1072.314314] __d_alloc+0x2a/0x9b0 [ 1072.317779] d_alloc+0x46/0x250 [ 1072.321061] __lookup_hash+0x51/0x180 [ 1072.324872] lookup_one_len+0x27c/0x3a0 [ 1072.328853] ? __lookup_hash+0x180/0x180 [ 1072.332924] start_creating+0xa1/0x1c0 [ 1072.336824] __debugfs_create_file+0x4f/0x3c0 [ 1072.341325] ? debugfs_create_file+0x37/0x60 [ 1072.345740] kvm_dev_ioctl+0xd71/0x1480 [ 1072.349760] ? kvm_put_kvm+0xa90/0xa90 [ 1072.353656] ? kvm_put_kvm+0xa90/0xa90 [ 1072.357557] do_vfs_ioctl+0x75a/0xfe0 [ 1072.361361] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1072.366728] ? ioctl_preallocate+0x1a0/0x1a0 [ 1072.371245] ? security_file_ioctl+0x76/0xb0 [ 1072.375660] ? security_file_ioctl+0x83/0xb0 [ 1072.380079] SyS_ioctl+0x7f/0xb0 [ 1072.383447] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1072.387427] do_syscall_64+0x1d5/0x640 [ 1072.391330] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1072.396613] RIP: 0033:0x45c829 [ 1072.399805] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1072.407516] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1072.414794] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1072.422065] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1072.429338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1072.436750] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:52 executing program 1 (fault-call:14 fault-nth:14): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:53 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000180)="d29c371746c5f4daa4de0a098260081c63d072a266a69c54982917e0d013e54f62b38d45b8878e", 0x27) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000001400)="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", 0x12b}, {&(0x7f0000000240)="442351009280d8805e3403b7ace2ba98d49c82140ad65a76209fab8fefc51e07c5a7b992469111b8e251b7e29edf370909557bb92b37e069c6f22d2cfbe7b59a3e1b", 0x42}, {&(0x7f00000002c0)="2837e4410595f15583fc1905bf9e638465e7d8d229a031dfd9e4f948795ccd1fd5d3e022635740b7a0bc528a265a89279a094c5a04f4a7ad83d1fe29978d76622be7a6cf90935cf4e9d1fd92b4761fd37263e67d22ac56e8410e5ba3dffac8f92bec945c47002d9cc1c15e5c6a4d368df1ca42e2b54df51cc1669ad94ebafa5422faab38d60f956869d87dcb2850f19e31ca572225f48e680d3138d7876d1d963c6664f578f9336c4d48d32cf5b047d626903f0cf0b5dfe1c1597a1e85cdc5f3a1c039cf6ac814b6dfd953397b34cf95271ed7fc55dd1063fd17af6f88b041ea552ae0474d620f5283ad19558e7b5600e16438ccd6224e1a5e090eaa5189503a83539331a2fc2ece027b5766df0296d03699a240e68e3123daa325d6c735c8d8e297dc66dbff289d38ad9fd338826cb458623014b460a4ca2e29fe4f7a0be5e1faf091f6ac373d87f52db51a733363afc517a5d46e8bde1c6eb0e1e8c75c22671f188f7556d879f205c6ee36148d3cb64ca11e42ecb2338c6591c4fbbe67f2a767efa0023f7e936c29d3528bb71c1fd7cd5231ae83f1462d674f11d739eccecbfead47152236132cbcfd378b8b99cdea47a099f14b17d37a0c99e3a8b3a0784695a9e9ea07051ade5abd37e6201eca07321f604bd4d673c7da243d26d6b24c155a1cf87cda5fe792c406331340fb53a890f17e79716542df6646fc7c081bc00f887064d605681d1bfa8fe1648a654dd1c18d132ab9899c4b9a45c07ab7df9516a9b6f8d6449e3b14de7278c158db3f9f3359b77b126beeeebc3f73468dcbc8fdc6104582cb97fe8301373354cb33371dc263b78324d833253d906bd0c73fc28be7aa58aa6960e0621888b6a0862ae1884ff8eab91687b852d7fe0f6792e2ad11892cc382992d6ad448b71cea56478e8db1b449a4f7e62b173d27fcea192e7e4bbe7322c142dfe630ff65e2c54e58c0402fe42a69c1791e543a17a117865393f8d6dcfde1f179b3953c6af64df6e92e6911d88b9f37fd21db45f49686a11b72ed01dd57365a693fdca058f06677c8517ee0b13e1e7069c8f4c4fcddbb815d91900ef5e6f672a4d290273a72f22c4ff1e69fc77d558be549df7475ae67325059ef92fb5c7ef2ce407b25ee7f3baf8674bc3581b34db45402382b8ee201729ac594c913a005de21be719bd59401c1e4ccaa62fedd1ba51ab15c8c0fe284dd1b6eba705595598052a735a194f64ad35d10f92589ea3f389b84bb063d5f7dd64f03c31f2c5ec6b83e25f0ff76d148eaff970674ba4178e23df898fd470796f63c29897d42abf5dc346e2044f3416f1d7cdd43636347914c21fb54e1e04da92271c0df58bf5980423a6c231b294eb5a5c20ae09af51eea94240519270166b4b5e9909559b1dacb1dcb694aae97804ea2c1f3403f328cda28a197a62cb12f295245944f2b27c66154839684f1fc8868554e47d930a8e6320e451fde290be32593a496879089b1855aa6c4a49cac5bcf85fc588b0ef246305566951aa0621455eefb9ccfd92efd8ead9be7c63e5fa122fcc5425686478c126a200124b798519d1c82f3541ac7d5e283c335acec6e746dea2bed2f48847f4fe31c9e417a610fad2a6874b9b01e5f2ede73af622e7effb85915ee371dd7a87131a62ce13073bc5f13b2fc5d16b93d0d10e1c1f9d0319bd2ca2e59ebed35c6d0ce0f5aabb0afc308afe008c4edbc0eb1f22d8314dd9781d4d403fa10d743786f07fb8d43222b91e19753d4930c5d77b818fff94dd043ecbcfb4476424aa356d1b248e2a772aa82997c210cb1b362f4ceba0ed1970b0f767e821285c433569188db72d8d09b93140ebce8461eb52e8ad7abc1db5c482059d90ec10ea75f1c28e9827b8209993332fceaf8e959696629a19a9443367291c88b1e3f7a7c80184c6ef8758facc31c1a227f8e55514b6d3dfeb63db1295e298a7ded0e69931c981c61c8cda3aa219ad5a6be431a7f2aa402721d2398c32ff99dbe349f25a93b636b1483e0acdaf0108071521faab74bbddc8692ef18c8b7c5747e43df5d5f5bf3d5e227c23e4e09b3b579ed39e9ca40828f47227544fb40a6fa9666bfd92d4dd8fc464c76e88a513c155723d8c7193d360930ae2deb8cb9f3737be02e59484d4ed65af61098f794d8dae3f825cef484f69932062169269ab41a9f1659647015fbf340efb563b27759b899ef43f1de838dd6d4c24795f3fae948b9d0c6c8e113d4191ffcb1db035daed40fc29f5767583ae745b4ecc631a11981d5bddd39298cf5415142323a6fe7a1ba1bd0b28fa6a4477aa1f28efa81a94b857071c76786fa31a04b44d61bdb35414e1e228396f91dce1d76078c7140567d695ba316cf297171d558d8b33d3926444f8cbad06efed839f219af6ba7ea3992337c36957531fed7d047a79313cf61096291013634782631d659a65c6e2abc7e21a0a4da68314ec0d17264c0b6bf5c4f5425ffda79894bad07dabafcd8160850f46e6d120fe4f1e5a73ad7db0e1b007653862edc8b6f028a5be63bb70a682830aaa5115210bb294ac6674161cd1ad65ebdc97f1e1e522c23ade56d73c94049f92d8d9de953c822fbfddecf508bb71e8bcae00ca45ad53f8b8d311ef5feab47496bd05439e1a10aae0b9a8e969439dc23b3fef6ca8fec8b80c4fb5f13c9457e5e203d2d5676c3fc36cf5513ca5f9615bd594159b8e51db584084c0d203263fb8e1b5ddf302af51546b7a0f289950b73897954548c7038909a1270ec1be9afcbefcf6dcc344def1725a7ea8f3f186b0754b5b30b8ce6c19e3cd6878458bc72f9ec864fa06aca501042929e26490790c59224e0e4be5a93d65132ef95fd84e6b9fa0e89c42584b4ecb7c28abb66d7c82789c2478e17c95aa2ce6c392aefa4c6e074f596668b3ce763d76d82a97905131cdea998defa1c503eb992e9dc855c0dc1d1f52489584b6c2b286afa5b55fd1b7d5f505165640390ff2b2cac0bbbdc44ab9206ab0f65eca72415e58342b6ec9384212d64f5222d6598a4e012bbf8bd2feef6c2c9585b3aa4e87fc0b4b1c3c6419f37f710801f35f950d30b929da9be59805d772a082199f9f2cea304fde8238f12cf9edefc3697832ffd8c6b8cb9bb3625f55e37318db6fc2ed1ec55a3268bd151850aa0205bdaf23691c69a798ac1c1b78cc4267a7313e1f23e881b5da033f1b4480aa8d23663e81f2eb9992a98895d0e2feec8f6b3e7cb04aca90ba3d336ab2b0886c85a33245deedfd171f66351105b5a05f9dd0348c832721613cd3ebf05cf4206f6cd9a0462183a3014df18a4c2913d7e4d73462b6b11102bf6a99345b95d16f6f5fe03e29719320325f6346b066c72cdbd637549f476a66604881ad6dcbbfe1834889bd5ef327ffc213b4c1f15c32ec63eb605de57b05e0b22738813938dacc042e776ae67c895652d277a04103accc494fad3e857f54eb2dae22861dde44b3e83ce62f7d8857f00c2fafb946ad97da0f217ddd8a2323b981a0121f39759d8f35401c17a427df2cd4c696c6c0a2f71c238f7961ed62806e6da65d820d67f11ce1ede6091c865fb8a963c8f042e80cfa5e9d8fd2c792ed6ceac23c0a3fde78783435567ec7866171c96268c82019afa7652fca7223b8296c960b10ece5865100d1185c4c4e70409fa9b6b89b0b8f25592a66197eb15a4aad8575de6a86954b61e620bcdda01bd43ffc1f32e7afeb36b9fbb1a83b8cf4fdbbdbe8bcdfd928f2eb95cd52cd0ebc2e2df90f42ce0b751b0957fc0c48238c7a002a59a40603cf36cc6a538d3561d104247e8a8cf96d56483d04a9b33e2d98f3390c1832595816f8b1e2af9fd64e78322fbbd96bf6d0d6febf64de9bb0a1bee6b024379e78f188c06e1951544437046134d5313be50e18e1ca24baf3c6663c23da67e0f2fae0b41268243572c906fa9339884832331a134f73bd63f775a83970900877f601f16fe1fada21f70805b76ba415b65dff6c9f245bfb5d10b631a49536dbfbcb25ed487a59b96add79958cc483043eb73d085e42a36888499a5b7258d25573b9f7b6401fcfe64dcc47f0a435e4403f0e744b699437e1515f399dead674fa3942ad9a5073a34f9ee3ee0a6ae204db322ddde58ed9527965f1ef5035ed8f6acceb332affa57a7621ac5269b73f7b4e1bd3f03f27a71ba39ec643f672d3c38f17bed89f4eb5a78ce4d7dcbfc0c925886f6ef2c01f33d49819f42f2db8de92683d86c9c280c88207ee8bfaa3d9aea8c3e8f98fc52475345989bf49cf3cf5235c1dc2652de8d4f5e8ac25ea32ef9276bcef91340e8d806bb7c163f8486be5b0e7bace50116ec737a09393750df0298ccfa8313cbf9949e11c47ff812b2970fd5437c587650a2e69ac0764c4de00c179fd62c29bc8d464add922dccaec25fb322951b0b4a5096b34815e915620ab2b02361e73fcefc34a6e6d762083eaee1110a68c394e42b3e1c86d47c016bfff6cafd7530172c74a07d8d31a11179623c7881ffc2f0354369faa7ad5a2405f90c587362367f6c24058cfe08fa06dacb464b4f12c866a858a898d3c607c666fdab2dfe2c20f6eb3d608a169252054c1ad8c951e454f382bc30ad991eae702db5bd6d7a1aafb924eed9a108e0426bf871de9d90277ef0d5f0bf0df87d6cf212ad36173add9173fbb6615d99f9bea537326289e9eff48f95af73f631b4797b2607a8b919a43b1af27001e3c064c543523e4a05db45e1122c570076342709c26859c5e562e802cd39046c44314afd5daf101eb395af06da35feb4c88d35bebe3b58f6f837a6b94dac7e47d289888d4499f914b238a2c10755cc1be2480647e364b568226d6f47ba5dd670fdd258dfe01cb552638aba288eebb31a3b143b083b6a46ab6cbb6c7393761a6d9f832b46ffdb2b8731afaf01b2e46d2104f1dacd7a101d298b4f3ff90c1d419b27ade9b9a0a51465fad09256f99bf277948404d132acfb3a267d73c1334c6f525744f93da3738c8eb31949cee1691e46810322a569066b69927e4d6682e24f617947e4e2ac593fe96f09b5ca1a67e711d92ce77789a243c5ba10dfde209189edbc78d1f76c56b4f1ce3df211d843fef92161a9237081ed29d7436adede6573ab450ecf1ca6b638abfba63f0f54abc753cacff4a8a00ca9378a818fc346c20d056f44a4744244f9b40573e48bba6399f2c2dcc2bfdd249b91e0adbcb68c00ea6a2da7c8fe5a95fbc43d66e9c8be0affbc0abe49a42dc129ccf239b6e4e41b31fef8cd4207b6fdc9f9ce02d778bde40dcdb6b56c41a80a8edcaa9397eecfae181407db53e30b28f12f34f312d4dd375b5e22fb29eb25a09bde627000aa826e3b7004c625164a95e873bc264064f676b56af9049f1e429d80e4011550c83a066eab4489fd287f344db6b8a547b40fda8ae7353f4eaa48a9056de79b29abb657c771276c7eedc4a47b0d169e65d261ddc13686db2741252114216be9ecab36c61c9f0102a4141be15f8ab9fec25ab3ce2481a4c37bc12e53ed4fe5d838b20b0b0c25edc48d99dfd36e332179751e58f636043624be209b4aecb3cda9afff7e2b647cb227a106121c6fa16c268ecfe2e401609e55b08b67b35be0262668b702c27644ee54bb26543ddfdc62a1409019e3cffa8c2d8b00420ff4c13175bb24253b2bdf573e42b0daa21f40144d549e449bc9fb5d0d233747c090149ca43bcc31b4a859317adb0907dbf2fe681d988e953688768540ce60809140552f2899d4da11e454ed254b9ff96e24b194b11702aca827729d1f5777399d5e", 0x1000}], 0x3, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_TSC_KHZ(r1, 0xaea2, 0x1000000000005) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:49:53 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000040)) r5 = geteuid() syz_mount_image$ntfs(&(0x7f0000000100)='ntfs\x00', &(0x7f0000000180)='./file0\x00', 0x2, 0x4, &(0x7f0000000500)=[{&(0x7f00000002c0)="b2cfeb5cf0e69da56b61fa4d123d7868508038400c7f4b0442f737246852613e28c733faeb5271ba1a94c5cefee1f3dc52209f7399ac6ec4a3ffcc8a2c2b4eeba01c222184bb0ced0c6a7b7a10df651eda4a9c0d5b4ae059eb04f8288f54f1d33bbf0f3b4c33216c122959f2e02994c845101c408288bc6ae5a2a9de7102463a816504f00001269a6efb5473dcd08b84d43daadc2b7a6445b6ff7a5bdc4921daa7254f95324d838a99a08c109b7327b875b355ea3f", 0xb5, 0x600000}, {&(0x7f0000000380)="5155c23f4e6e0bf4dc131981dacbc833f89f242dd23d6c969520af4979f8aab501981fb65f0d909d9f37cfb9276c832fe76eae809c9e3ba8a51d8b07fb", 0x3d, 0x81}, {&(0x7f00000003c0)="cc8bbec4d5d617805a5cce709ffb8916cd67c2374422225471bf3701b882e202de8e16cc391a6e57ea9e206ca91530c2ec42c0d8d68829edd5cb22eaa8acd44ccc13bc24a2edb57a75701b49d1dc1a5131539006b83aeefddb23df1dd2d963193dbde92cfd12cb786743953437514153f870c783bd655b72728ef69cd64cd7ba9af5d93f7b0196b9607b82a3414847ae115fe7f2831d69145fd6bcf93a77f3b9463827ca30a3a2fc31875db816e519ec675db590b6b2ff86c6abbcaf6ee0ccc45ff9b348be526e6b4561690178cc7e0b3f020522f1a6197585fe", 0xda, 0x1}, {&(0x7f00000004c0)="84a38d565da409c2d5ad49908d30ebe4324f2ecd84c9c9bfea44", 0x1a, 0x4}], 0x1080002, &(0x7f0000000580)={[{@umask={'umask', 0x3d, 0x80000000}}, {@fmask={'fmask', 0x3d, 0x6}}, {@disable_sparse_yes='disable_sparse=yes'}, {@disable_sparse_yes='disable_sparse=yes'}, {@disable_sparse_yes='disable_sparse=yes'}, {@mft_zone_multiplier={'mft_zone_multiplier', 0x3d, 0x3}}], [{@euid_gt={'euid>', r5}}]}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1072.835953] FAULT_INJECTION: forcing a failure. [ 1072.835953] name failslab, interval 1, probability 0, space 0, times 0 [ 1072.847824] CPU: 1 PID: 26868 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1072.855720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1072.865100] Call Trace: [ 1072.867715] dump_stack+0x13e/0x194 [ 1072.871351] should_fail.cold+0x10a/0x14b [ 1072.875504] should_failslab+0xd6/0x130 [ 1072.879480] kmem_cache_alloc+0x2b5/0x770 [ 1072.883622] ? lookup_one_len+0x284/0x3a0 [ 1072.887763] alloc_inode+0xa0/0x170 [ 1072.891375] new_inode_pseudo+0x14/0xe0 [ 1072.895344] new_inode+0x1b/0x40 [ 1072.898704] debugfs_get_inode+0x1a/0x130 [ 1072.902841] debugfs_create_dir+0x63/0x3a0 [ 1072.907134] kvm_dev_ioctl+0xadd/0x1480 [ 1072.911103] ? kvm_put_kvm+0xa90/0xa90 [ 1072.915131] ? kvm_put_kvm+0xa90/0xa90 [ 1072.919035] do_vfs_ioctl+0x75a/0xfe0 [ 1072.922830] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1072.927577] ? ioctl_preallocate+0x1a0/0x1a0 [ 1072.932073] ? security_file_ioctl+0x76/0xb0 [ 1072.936744] ? security_file_ioctl+0x83/0xb0 [ 1072.941154] SyS_ioctl+0x7f/0xb0 [ 1072.944518] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1072.948491] do_syscall_64+0x1d5/0x640 [ 1072.952367] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1072.957540] RIP: 0033:0x45c829 [ 1072.960719] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1072.968427] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1072.975698] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 13:49:53 executing program 2 (fault-call:11 fault-nth:45): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1072.982981] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1072.990244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1072.997519] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:53 executing program 3: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) prlimit64(r0, 0xe, &(0x7f00000001c0)={0x2, 0x5c66}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1073.252000] FAULT_INJECTION: forcing a failure. [ 1073.252000] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.263401] CPU: 0 PID: 26894 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1073.271314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1073.280681] Call Trace: [ 1073.283279] dump_stack+0x13e/0x194 [ 1073.286915] should_fail.cold+0x10a/0x14b [ 1073.291074] should_failslab+0xd6/0x130 [ 1073.295057] kmem_cache_alloc+0x2b5/0x770 [ 1073.299316] ? lookup_one_len+0x284/0x3a0 [ 1073.303496] alloc_inode+0xa0/0x170 [ 1073.307134] new_inode_pseudo+0x14/0xe0 [ 1073.311120] new_inode+0x1b/0x40 [ 1073.314492] debugfs_get_inode+0x1a/0x130 [ 1073.318644] __debugfs_create_file+0x93/0x3c0 [ 1073.323146] ? debugfs_create_file+0x37/0x60 [ 1073.327649] kvm_dev_ioctl+0xd71/0x1480 [ 1073.331636] ? kvm_put_kvm+0xa90/0xa90 [ 1073.335529] ? do_vfs_ioctl+0x76/0xfe0 [ 1073.339416] ? kvm_put_kvm+0xa90/0xa90 [ 1073.343307] do_vfs_ioctl+0x75a/0xfe0 [ 1073.347111] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1073.351870] ? ioctl_preallocate+0x1a0/0x1a0 [ 1073.356305] ? security_file_ioctl+0x76/0xb0 [ 1073.360720] ? security_file_ioctl+0x83/0xb0 [ 1073.365146] SyS_ioctl+0x7f/0xb0 [ 1073.369555] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1073.373539] do_syscall_64+0x1d5/0x640 [ 1073.377437] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1073.382626] RIP: 0033:0x45c829 [ 1073.385815] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1073.393525] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1073.400798] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1073.408075] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1073.415350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1073.422632] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:53 executing program 1 (fault-call:14 fault-nth:15): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:54 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = getpid() sched_setattr(r3, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r3, &(0x7f0000000100)={0x38, 0x2, 0x0, 0x1, 0x3, 0xfffffffffffffff9, 0xfffffffffffffffc, 0xffffffffffd, 0xfffffffd, 0x1000003}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1073.844994] FAULT_INJECTION: forcing a failure. [ 1073.844994] name failslab, interval 1, probability 0, space 0, times 0 [ 1073.856596] CPU: 1 PID: 26923 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1073.864485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1073.873868] Call Trace: [ 1073.876473] dump_stack+0x13e/0x194 [ 1073.880126] should_fail.cold+0x10a/0x14b [ 1073.884288] should_failslab+0xd6/0x130 [ 1073.888271] kmem_cache_alloc+0x2b5/0x770 [ 1073.892430] ? alloc_inode+0xa0/0x170 [ 1073.896242] selinux_inode_alloc_security+0xb1/0x2a0 [ 1073.901360] security_inode_alloc+0x8f/0xd0 [ 1073.905686] inode_init_always+0x576/0xb20 [ 1073.909930] alloc_inode+0x7a/0x170 [ 1073.913563] new_inode_pseudo+0x14/0xe0 [ 1073.917548] new_inode+0x1b/0x40 [ 1073.920918] debugfs_get_inode+0x1a/0x130 [ 1073.925070] debugfs_create_dir+0x63/0x3a0 [ 1073.929353] kvm_dev_ioctl+0xadd/0x1480 [ 1073.933337] ? kvm_put_kvm+0xa90/0xa90 [ 1073.938711] ? kvm_put_kvm+0xa90/0xa90 [ 1073.942635] do_vfs_ioctl+0x75a/0xfe0 [ 1073.946440] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1073.951238] ? ioctl_preallocate+0x1a0/0x1a0 [ 1073.955664] ? security_file_ioctl+0x76/0xb0 [ 1073.960100] ? security_file_ioctl+0x83/0xb0 [ 1073.964517] SyS_ioctl+0x7f/0xb0 [ 1073.967884] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1073.971871] do_syscall_64+0x1d5/0x640 [ 1073.975799] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1073.981006] RIP: 0033:0x45c829 [ 1073.984193] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:49:54 executing program 2 (fault-call:11 fault-nth:46): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1073.991903] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1073.999438] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1074.006711] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1074.013987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1074.021265] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1074.324364] FAULT_INJECTION: forcing a failure. [ 1074.324364] name failslab, interval 1, probability 0, space 0, times 0 [ 1074.335865] CPU: 0 PID: 26946 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1074.343853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1074.353338] Call Trace: [ 1074.355966] dump_stack+0x13e/0x194 [ 1074.359606] should_fail.cold+0x10a/0x14b [ 1074.363762] should_failslab+0xd6/0x130 [ 1074.367743] kmem_cache_alloc+0x2b5/0x770 [ 1074.371897] ? alloc_inode+0xa0/0x170 [ 1074.375700] selinux_inode_alloc_security+0xb1/0x2a0 [ 1074.380808] security_inode_alloc+0x8f/0xd0 [ 1074.385223] inode_init_always+0x576/0xb20 [ 1074.389464] alloc_inode+0x7a/0x170 [ 1074.393101] new_inode_pseudo+0x14/0xe0 [ 1074.397099] new_inode+0x1b/0x40 [ 1074.400551] debugfs_get_inode+0x1a/0x130 [ 1074.404701] __debugfs_create_file+0x93/0x3c0 [ 1074.409257] ? debugfs_create_file+0x37/0x60 [ 1074.413671] kvm_dev_ioctl+0xd71/0x1480 [ 1074.417658] ? kvm_put_kvm+0xa90/0xa90 [ 1074.421551] ? kvm_put_kvm+0xa90/0xa90 [ 1074.425527] do_vfs_ioctl+0x75a/0xfe0 [ 1074.429331] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1074.434089] ? ioctl_preallocate+0x1a0/0x1a0 [ 1074.438508] ? security_file_ioctl+0x76/0xb0 [ 1074.442923] ? security_file_ioctl+0x83/0xb0 [ 1074.447423] SyS_ioctl+0x7f/0xb0 [ 1074.450791] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1074.454767] do_syscall_64+0x1d5/0x640 [ 1074.458658] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1074.463846] RIP: 0033:0x45c829 [ 1074.467031] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1074.474826] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1074.482099] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1074.489376] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1074.496655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1074.503940] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:54 executing program 1 (fault-call:14 fault-nth:16): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:55 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f00000000c0)=0x4, 0x4) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000002cc0)=[{0x0, 0x29e, 0x0, 0x0, &(0x7f00000016c0)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x4, 0x0, 0x0, r4}}], 0x20}], 0x1, 0x0) setsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000140)={r4, 0x1}, 0x8) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1074.822435] FAULT_INJECTION: forcing a failure. [ 1074.822435] name failslab, interval 1, probability 0, space 0, times 0 [ 1074.834172] CPU: 0 PID: 26961 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1074.842067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1074.851421] Call Trace: [ 1074.854016] dump_stack+0x13e/0x194 [ 1074.857652] should_fail.cold+0x10a/0x14b [ 1074.861808] should_failslab+0xd6/0x130 [ 1074.865787] kmem_cache_alloc+0x2b5/0x770 [ 1074.869947] ? alloc_inode+0xa0/0x170 [ 1074.873752] selinux_inode_alloc_security+0xb1/0x2a0 [ 1074.878946] security_inode_alloc+0x8f/0xd0 [ 1074.883366] inode_init_always+0x576/0xb20 [ 1074.887607] alloc_inode+0x7a/0x170 [ 1074.891246] new_inode_pseudo+0x14/0xe0 [ 1074.895226] new_inode+0x1b/0x40 [ 1074.898594] debugfs_get_inode+0x1a/0x130 [ 1074.902745] debugfs_create_dir+0x63/0x3a0 [ 1074.907151] kvm_dev_ioctl+0xadd/0x1480 [ 1074.911130] ? retint_kernel+0x2d/0x2d [ 1074.915027] ? kvm_put_kvm+0xa90/0xa90 [ 1074.919026] ? kvm_put_kvm+0xa90/0xa90 [ 1074.922931] do_vfs_ioctl+0x75a/0xfe0 [ 1074.926736] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1074.931493] ? ioctl_preallocate+0x1a0/0x1a0 [ 1074.935909] ? security_file_ioctl+0x76/0xb0 [ 1074.940310] ? security_file_ioctl+0x83/0xb0 [ 1074.944732] SyS_ioctl+0x7f/0xb0 [ 1074.948093] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1074.952070] do_syscall_64+0x1d5/0x640 [ 1074.955963] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1074.961144] RIP: 0033:0x45c829 [ 1074.964345] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1074.972050] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1074.979323] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1074.986855] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1074.994132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1075.001484] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:55 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000100), &(0x7f0000000180)=0x4) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) syz_genetlink_get_family_id$gtp(&(0x7f0000000040)='gtp\x00') r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:55 executing program 2 (fault-call:11 fault-nth:47): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:55 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000), 0x0, 0x1) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25}, 0x24}}, 0x0) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast2}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_PEER_V4={0x8, 0x8, @empty}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @private0={0xfc, 0x0, [], 0x1}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x48084}, 0x24044051) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1075.307170] FAULT_INJECTION: forcing a failure. [ 1075.307170] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1075.319219] CPU: 1 PID: 26985 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1075.327110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1075.336467] Call Trace: [ 1075.339068] dump_stack+0x13e/0x194 [ 1075.342705] should_fail.cold+0x10a/0x14b [ 1075.346859] __alloc_pages_nodemask+0x1bf/0x700 [ 1075.351560] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1075.356578] ? inode_doinit_with_dentry+0x735/0xe30 [ 1075.361599] ? lockref_get+0x11/0x50 [ 1075.365313] alloc_pages_current+0xe7/0x1e0 [ 1075.369637] __get_free_pages+0xb/0x40 [ 1075.373524] inode_doinit_with_dentry+0x7b6/0xe30 [ 1075.378374] ? selinux_cred_free+0x70/0x70 [ 1075.382786] ? put_itimerspec64+0x190/0x190 [ 1075.387113] selinux_d_instantiate+0x23/0x30 [ 1075.391526] security_d_instantiate+0x54/0xd0 [ 1075.396019] d_instantiate+0x5a/0x90 [ 1075.399742] __debugfs_create_file+0x15b/0x3c0 [ 1075.404328] ? debugfs_create_file+0x37/0x60 [ 1075.408743] kvm_dev_ioctl+0xd71/0x1480 [ 1075.412725] ? kvm_put_kvm+0xa90/0xa90 [ 1075.416619] ? kvm_put_kvm+0xa90/0xa90 [ 1075.420516] do_vfs_ioctl+0x75a/0xfe0 [ 1075.424413] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1075.429169] ? ioctl_preallocate+0x1a0/0x1a0 [ 1075.433932] ? security_file_ioctl+0x76/0xb0 [ 1075.438355] ? security_file_ioctl+0x83/0xb0 [ 1075.442786] SyS_ioctl+0x7f/0xb0 [ 1075.446184] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1075.450162] do_syscall_64+0x1d5/0x640 [ 1075.454065] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1075.459247] RIP: 0033:0x45c829 [ 1075.462433] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1075.470147] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1075.477414] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1075.484698] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1075.491964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1075.499235] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:55 executing program 1 (fault-call:14 fault-nth:17): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:56 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000100)) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1075.828425] FAULT_INJECTION: forcing a failure. [ 1075.828425] name failslab, interval 1, probability 0, space 0, times 0 [ 1075.840063] CPU: 1 PID: 27019 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1075.847954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1075.857307] Call Trace: [ 1075.859907] dump_stack+0x13e/0x194 [ 1075.863542] should_fail.cold+0x10a/0x14b [ 1075.867723] should_failslab+0xd6/0x130 [ 1075.871724] __kmalloc+0x2e9/0x7c0 [ 1075.875263] ? kvm_dev_ioctl+0xb47/0x1480 [ 1075.879412] ? up_write+0x17/0x60 [ 1075.882870] kvm_dev_ioctl+0xb47/0x1480 [ 1075.886860] ? retint_kernel+0x2d/0x2d [ 1075.890798] ? kvm_put_kvm+0xa90/0xa90 [ 1075.896074] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1075.900146] ? kvm_put_kvm+0xa90/0xa90 [ 1075.904033] do_vfs_ioctl+0x75a/0xfe0 [ 1075.907831] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1075.912679] ? ioctl_preallocate+0x1a0/0x1a0 [ 1075.917194] ? security_file_ioctl+0x76/0xb0 [ 1075.921608] ? security_file_ioctl+0x83/0xb0 [ 1075.926024] SyS_ioctl+0x7f/0xb0 [ 1075.929390] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1075.933369] do_syscall_64+0x1d5/0x640 [ 1075.937267] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1075.942466] RIP: 0033:0x45c829 [ 1075.945662] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1075.953371] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1075.960649] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1075.967928] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1075.975201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1075.982734] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:56 executing program 2 (fault-call:11 fault-nth:48): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:56 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000040)=0x3, 0x2) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r6 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r6, 0xae00, 0x0) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000380)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:49:56 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r6, 0xc004ae02, &(0x7f0000000100)={0x2, [0x0, 0x0]}) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1076.350047] FAULT_INJECTION: forcing a failure. [ 1076.350047] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.361508] CPU: 1 PID: 27047 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1076.369395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1076.378857] Call Trace: [ 1076.381466] dump_stack+0x13e/0x194 [ 1076.385190] should_fail.cold+0x10a/0x14b [ 1076.389345] should_failslab+0xd6/0x130 [ 1076.393323] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1076.397998] ? up_write+0x17/0x60 [ 1076.401454] ? __debugfs_create_file+0x2c6/0x3c0 [ 1076.406213] ? debugfs_create_file+0x37/0x60 [ 1076.410634] kvm_dev_ioctl+0xdc4/0x1480 [ 1076.414616] ? kvm_put_kvm+0xa90/0xa90 [ 1076.418509] ? kvm_put_kvm+0xa90/0xa90 [ 1076.422404] do_vfs_ioctl+0x75a/0xfe0 [ 1076.426313] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1076.431075] ? ioctl_preallocate+0x1a0/0x1a0 [ 1076.435497] ? security_file_ioctl+0x76/0xb0 [ 1076.439911] ? security_file_ioctl+0x83/0xb0 [ 1076.444331] SyS_ioctl+0x7f/0xb0 [ 1076.447699] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1076.451828] do_syscall_64+0x1d5/0x640 [ 1076.455728] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1076.460950] RIP: 0033:0x45c829 [ 1076.464135] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1076.471877] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1076.479237] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1076.486511] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 13:49:56 executing program 1 (fault-call:14 fault-nth:18): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1076.493780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1076.501055] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:56 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$USBDEVFS_CLAIM_PORT(r1, 0x80045518, &(0x7f0000000100)=0x9) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000140)) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1076.862327] FAULT_INJECTION: forcing a failure. [ 1076.862327] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.874354] CPU: 1 PID: 27074 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1076.882380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1076.891737] Call Trace: [ 1076.894332] dump_stack+0x13e/0x194 [ 1076.897970] should_fail.cold+0x10a/0x14b [ 1076.902124] should_failslab+0xd6/0x130 [ 1076.906101] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1076.910774] ? kvm_dev_ioctl+0xb47/0x1480 [ 1076.914927] ? up_write+0x17/0x60 [ 1076.918414] kvm_dev_ioctl+0xdc4/0x1480 [ 1076.922409] ? kvm_put_kvm+0xa90/0xa90 [ 1076.926314] ? kvm_put_kvm+0xa90/0xa90 [ 1076.930218] do_vfs_ioctl+0x75a/0xfe0 [ 1076.934024] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1076.938787] ? ioctl_preallocate+0x1a0/0x1a0 [ 1076.943217] ? security_file_ioctl+0x76/0xb0 [ 1076.947635] ? security_file_ioctl+0x83/0xb0 [ 1076.952075] SyS_ioctl+0x7f/0xb0 [ 1076.955444] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1076.959508] do_syscall_64+0x1d5/0x640 [ 1076.963405] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1076.968593] RIP: 0033:0x45c829 [ 1076.971780] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1076.979494] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1076.987026] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1076.994298] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.001657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1077.009014] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:57 executing program 2 (fault-call:11 fault-nth:49): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:49:57 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, &(0x7f0000000040), 0x4) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r4, 0x8982, &(0x7f00000001c0)={0x6, 'vlan0\x00', {0x8}, 0x8}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1077.378843] FAULT_INJECTION: forcing a failure. [ 1077.378843] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.390345] CPU: 1 PID: 27102 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1077.398246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1077.407633] Call Trace: [ 1077.410230] dump_stack+0x13e/0x194 [ 1077.415206] should_fail.cold+0x10a/0x14b [ 1077.419366] should_failslab+0xd6/0x130 [ 1077.423521] kmem_cache_alloc+0x2b5/0x770 [ 1077.427677] ? __d_lookup+0x3b4/0x670 [ 1077.431481] ? mark_held_locks+0xa6/0xf0 [ 1077.435580] __d_alloc+0x2a/0x9b0 [ 1077.439035] d_alloc+0x46/0x250 [ 1077.442316] __lookup_hash+0x51/0x180 [ 1077.446127] lookup_one_len+0x27c/0x3a0 [ 1077.450106] ? __lookup_hash+0x180/0x180 [ 1077.454174] start_creating+0xa1/0x1c0 [ 1077.458146] __debugfs_create_file+0x4f/0x3c0 [ 1077.462646] ? debugfs_create_file+0x37/0x60 [ 1077.467057] kvm_dev_ioctl+0xd71/0x1480 [ 1077.471039] ? kvm_put_kvm+0xa90/0xa90 [ 1077.474928] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1077.478900] ? kvm_put_kvm+0xa90/0xa90 [ 1077.482788] do_vfs_ioctl+0x75a/0xfe0 [ 1077.486589] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1077.491353] ? ioctl_preallocate+0x1a0/0x1a0 [ 1077.495779] ? security_file_ioctl+0x76/0xb0 [ 1077.500185] ? security_file_ioctl+0x83/0xb0 [ 1077.504600] SyS_ioctl+0x7f/0xb0 [ 1077.508005] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1077.511984] do_syscall_64+0x1d5/0x640 [ 1077.515887] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1077.521073] RIP: 0033:0x45c829 [ 1077.524257] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1077.531969] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1077.539239] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1077.546509] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.553899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1077.561171] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:57 executing program 1 (fault-call:14 fault-nth:19): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:58 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r1, &(0x7f0000000100)="14479da9ad640e7bd7ba6ee7fa4158ea74c031b3c86a2224c7be53b70754940de7f8dcef6f08f81c8e304ec1d67fd3e0eeb80aa99a665413e62ae8310de2fbc9f92846e1386c440dd862148fafda6e466ed45f2f9575277a3da0a8c1dc82d0e01fc223cc673f1ab8eee312b7126082a7e412d362a85ced4ea6eb5a89", 0x7c) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:49:58 executing program 4: prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x800}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000380)={0x14, 0x88, 0xfa00, {r6, 0x30, 0x0, @ib={0x1b, 0x101, 0x1, {}, 0xffffffffffffffff}}}, 0x90) write$RDMA_USER_CM_CMD_CONNECT(r2, &(0x7f0000000240)={0x6, 0x118, 0xfa00, {{0xfffffff8, 0x8, "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", 0x1, 0x6, 0x1, 0x8c, 0xfa, 0x80, 0x1}, r6}}, 0x120) r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) ioctl$BLKROGET(r3, 0x125e, &(0x7f00000001c0)) [ 1077.944368] FAULT_INJECTION: forcing a failure. [ 1077.944368] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.955903] CPU: 0 PID: 27138 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1077.963804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1077.973160] Call Trace: [ 1077.975841] dump_stack+0x13e/0x194 [ 1077.979479] should_fail.cold+0x10a/0x14b [ 1077.983727] should_failslab+0xd6/0x130 [ 1077.987718] kmem_cache_alloc+0x2b5/0x770 [ 1077.991886] ? __d_lookup+0x3b4/0x670 [ 1077.995688] ? mark_held_locks+0xa6/0xf0 [ 1077.999755] __d_alloc+0x2a/0x9b0 [ 1078.003210] d_alloc+0x46/0x250 [ 1078.006667] __lookup_hash+0x51/0x180 [ 1078.010475] lookup_one_len+0x27c/0x3a0 [ 1078.014453] ? __lookup_hash+0x180/0x180 [ 1078.018518] start_creating+0xa1/0x1c0 [ 1078.022432] __debugfs_create_file+0x4f/0x3c0 [ 1078.026929] ? debugfs_create_file+0x37/0x60 [ 1078.031350] kvm_dev_ioctl+0xd71/0x1480 [ 1078.035332] ? kvm_put_kvm+0xa90/0xa90 [ 1078.039490] ? kvm_put_kvm+0xa90/0xa90 [ 1078.043817] do_vfs_ioctl+0x75a/0xfe0 [ 1078.047719] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1078.052480] ? ioctl_preallocate+0x1a0/0x1a0 [ 1078.056899] ? security_file_ioctl+0x76/0xb0 [ 1078.061316] ? security_file_ioctl+0x83/0xb0 [ 1078.065729] SyS_ioctl+0x7f/0xb0 [ 1078.069102] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1078.073083] do_syscall_64+0x1d5/0x640 [ 1078.076981] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1078.082169] RIP: 0033:0x45c829 [ 1078.085357] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1078.093153] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1078.100459] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1078.107754] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1078.115032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1078.122303] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:58 executing program 2 (fault-call:11 fault-nth:50): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1078.459673] FAULT_INJECTION: forcing a failure. [ 1078.459673] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.471109] CPU: 0 PID: 27157 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1078.478999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1078.488447] Call Trace: [ 1078.491045] dump_stack+0x13e/0x194 [ 1078.494686] should_fail.cold+0x10a/0x14b [ 1078.498840] should_failslab+0xd6/0x130 [ 1078.502815] kmem_cache_alloc+0x2b5/0x770 [ 1078.506965] ? lookup_one_len+0x284/0x3a0 [ 1078.511116] alloc_inode+0xa0/0x170 [ 1078.514780] new_inode_pseudo+0x14/0xe0 [ 1078.519189] new_inode+0x1b/0x40 [ 1078.522555] debugfs_get_inode+0x1a/0x130 [ 1078.526732] __debugfs_create_file+0x93/0x3c0 [ 1078.531225] ? debugfs_create_file+0x37/0x60 [ 1078.535643] kvm_dev_ioctl+0xd71/0x1480 [ 1078.539628] ? kvm_put_kvm+0xa90/0xa90 [ 1078.543525] ? kvm_put_kvm+0xa90/0xa90 [ 1078.547412] do_vfs_ioctl+0x75a/0xfe0 [ 1078.551213] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1078.555979] ? ioctl_preallocate+0x1a0/0x1a0 [ 1078.560400] ? security_file_ioctl+0x76/0xb0 [ 1078.564806] ? security_file_ioctl+0x83/0xb0 [ 1078.569219] SyS_ioctl+0x7f/0xb0 [ 1078.572585] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1078.576699] do_syscall_64+0x1d5/0x640 [ 1078.580604] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1078.585795] RIP: 0033:0x45c829 [ 1078.590549] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1078.598291] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1078.605566] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1078.612840] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1078.620118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1078.628262] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:49:59 executing program 1 (fault-call:14 fault-nth:20): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:49:59 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x1, 0x81) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1078.961643] FAULT_INJECTION: forcing a failure. [ 1078.961643] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.973785] CPU: 1 PID: 27180 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1078.982886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1078.992272] Call Trace: [ 1078.994879] dump_stack+0x13e/0x194 [ 1078.998514] should_fail.cold+0x10a/0x14b [ 1079.002665] should_failslab+0xd6/0x130 [ 1079.006639] kmem_cache_alloc+0x2b5/0x770 [ 1079.010794] ? lookup_one_len+0x284/0x3a0 [ 1079.014940] alloc_inode+0xa0/0x170 [ 1079.018570] new_inode_pseudo+0x14/0xe0 [ 1079.022651] new_inode+0x1b/0x40 [ 1079.026011] debugfs_get_inode+0x1a/0x130 [ 1079.030158] __debugfs_create_file+0x93/0x3c0 [ 1079.034654] ? debugfs_create_file+0x37/0x60 [ 1079.039080] kvm_dev_ioctl+0xd71/0x1480 [ 1079.043062] ? kvm_put_kvm+0xa90/0xa90 [ 1079.046955] ? kvm_put_kvm+0xa90/0xa90 [ 1079.050846] do_vfs_ioctl+0x75a/0xfe0 [ 1079.054677] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1079.059437] ? ioctl_preallocate+0x1a0/0x1a0 [ 1079.063850] ? retint_kernel+0x2d/0x2d [ 1079.068092] SyS_ioctl+0x7f/0xb0 [ 1079.071459] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1079.075434] do_syscall_64+0x1d5/0x640 [ 1079.079449] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1079.084633] RIP: 0033:0x45c829 [ 1079.087816] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1079.095611] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1079.102892] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1079.110164] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1079.117434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1079.124705] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:49:59 executing program 2 (fault-call:11 fault-nth:51): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1079.472615] FAULT_INJECTION: forcing a failure. [ 1079.472615] name failslab, interval 1, probability 0, space 0, times 0 [ 1079.484874] CPU: 1 PID: 27203 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1079.492771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1079.502125] Call Trace: [ 1079.504720] dump_stack+0x13e/0x194 [ 1079.508356] should_fail.cold+0x10a/0x14b [ 1079.512512] should_failslab+0xd6/0x130 [ 1079.516487] kmem_cache_alloc_trace+0x2db/0x7b0 13:49:59 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$IMDELTIMER(r8, 0x80044941, &(0x7f0000000100)) [ 1079.521176] ? up_write+0x17/0x60 [ 1079.524634] ? __debugfs_create_file+0x2c6/0x3c0 [ 1079.529407] ? debugfs_create_file+0x37/0x60 [ 1079.533822] kvm_dev_ioctl+0xdc4/0x1480 [ 1079.537832] ? kvm_put_kvm+0xa90/0xa90 [ 1079.541723] ? kvm_put_kvm+0xa90/0xa90 [ 1079.545612] do_vfs_ioctl+0x75a/0xfe0 [ 1079.549417] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1079.554177] ? ioctl_preallocate+0x1a0/0x1a0 [ 1079.558598] ? security_file_ioctl+0x76/0xb0 [ 1079.563024] ? security_file_ioctl+0x83/0xb0 [ 1079.567440] SyS_ioctl+0x7f/0xb0 [ 1079.570812] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1079.574797] do_syscall_64+0x1d5/0x640 [ 1079.578698] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1079.583889] RIP: 0033:0x45c829 [ 1079.587078] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1079.594793] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1079.602081] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1079.609548] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1079.616835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1079.624120] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:00 executing program 1 (fault-call:14 fault-nth:21): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:00 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x40200, 0x0) r4 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r4, 0xae00, 0x0) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000140)={{r4}, 0xc8, 0x8001}) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1080.016819] FAULT_INJECTION: forcing a failure. [ 1080.016819] name failslab, interval 1, probability 0, space 0, times 0 [ 1080.030273] CPU: 0 PID: 27230 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1080.038170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1080.047526] Call Trace: [ 1080.050154] dump_stack+0x13e/0x194 [ 1080.053794] should_fail.cold+0x10a/0x14b [ 1080.058081] should_failslab+0xd6/0x130 [ 1080.062071] kmem_cache_alloc+0x2b5/0x770 [ 1080.066234] ? alloc_inode+0xa0/0x170 [ 1080.070045] selinux_inode_alloc_security+0xb1/0x2a0 [ 1080.075157] security_inode_alloc+0x8f/0xd0 [ 1080.079487] inode_init_always+0x576/0xb20 [ 1080.083729] alloc_inode+0x7a/0x170 [ 1080.087364] new_inode_pseudo+0x14/0xe0 [ 1080.091341] new_inode+0x1b/0x40 [ 1080.094709] debugfs_get_inode+0x1a/0x130 [ 1080.098867] __debugfs_create_file+0x93/0x3c0 [ 1080.103377] ? debugfs_create_file+0x37/0x60 [ 1080.107875] kvm_dev_ioctl+0xd71/0x1480 [ 1080.111860] ? kvm_put_kvm+0xa90/0xa90 [ 1080.115767] ? kvm_put_kvm+0xa90/0xa90 [ 1080.119658] do_vfs_ioctl+0x75a/0xfe0 [ 1080.123464] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1080.128226] ? ioctl_preallocate+0x1a0/0x1a0 [ 1080.132658] ? security_file_ioctl+0x76/0xb0 [ 1080.137087] ? security_file_ioctl+0x83/0xb0 [ 1080.141502] SyS_ioctl+0x7f/0xb0 [ 1080.144869] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1080.148855] do_syscall_64+0x1d5/0x640 [ 1080.152749] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1080.157938] RIP: 0033:0x45c829 [ 1080.161140] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1080.168849] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1080.176128] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1080.183400] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1080.190678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1080.197989] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:00 executing program 2 (fault-call:11 fault-nth:52): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1080.683884] FAULT_INJECTION: forcing a failure. [ 1080.683884] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1080.695908] CPU: 0 PID: 27252 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1080.703803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1080.713157] Call Trace: [ 1080.715748] dump_stack+0x13e/0x194 [ 1080.719469] should_fail.cold+0x10a/0x14b [ 1080.724146] __alloc_pages_nodemask+0x1bf/0x700 [ 1080.728836] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1080.733860] ? inode_doinit_with_dentry+0x735/0xe30 [ 1080.738891] ? lockref_get+0x11/0x50 [ 1080.742740] alloc_pages_current+0xe7/0x1e0 [ 1080.747098] __get_free_pages+0xb/0x40 [ 1080.750996] inode_doinit_with_dentry+0x7b6/0xe30 [ 1080.755852] ? selinux_cred_free+0x70/0x70 [ 1080.760097] ? put_itimerspec64+0x190/0x190 [ 1080.764430] selinux_d_instantiate+0x23/0x30 [ 1080.768844] security_d_instantiate+0x54/0xd0 [ 1080.773352] d_instantiate+0x5a/0x90 [ 1080.777074] __debugfs_create_file+0x15b/0x3c0 [ 1080.781666] ? debugfs_create_file+0x37/0x60 [ 1080.786089] kvm_dev_ioctl+0xd71/0x1480 [ 1080.790088] ? kvm_put_kvm+0xa90/0xa90 [ 1080.793988] ? do_vfs_ioctl+0x76/0xfe0 [ 1080.797974] ? kvm_put_kvm+0xa90/0xa90 [ 1080.801876] do_vfs_ioctl+0x75a/0xfe0 [ 1080.805690] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1080.810480] ? ioctl_preallocate+0x1a0/0x1a0 [ 1080.814902] ? security_file_ioctl+0x76/0xb0 [ 1080.819347] ? security_file_ioctl+0x83/0xb0 [ 1080.823764] SyS_ioctl+0x7f/0xb0 [ 1080.827138] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1080.831123] do_syscall_64+0x1d5/0x640 [ 1080.835024] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1080.840214] RIP: 0033:0x45c829 [ 1080.843399] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1080.854496] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1080.861772] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1080.869059] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1080.876348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 13:50:01 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xe396, 0x200100) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r7, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r8, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}}}}, 0x90) write$RDMA_USER_CM_CMD_MIGRATE_ID(r6, &(0x7f0000000180)={0x12, 0x10, 0xfa00, {&(0x7f0000000140), r8, r3}}, 0x18) r9 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1080.883623] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:01 executing program 1 (fault-call:14 fault-nth:22): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:01 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000002180)=[{{&(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000000700)=[{&(0x7f00000002c0)=""/246, 0xf6}, {&(0x7f00000003c0)=""/225, 0xe1}, {&(0x7f00000004c0)=""/154, 0x9a}, {&(0x7f0000002280)=""/46, 0x2e}, {&(0x7f0000000580)=""/184, 0xb8}, {&(0x7f0000000640)=""/145, 0x91}], 0x6, &(0x7f0000000780)=""/80, 0x50}, 0x1f}, {{&(0x7f0000000800)=@un=@abs, 0x80, &(0x7f0000000100)=[{&(0x7f0000000880)=""/103, 0x67}], 0x1, &(0x7f0000000900)=""/209, 0xd1}, 0x9}, {{&(0x7f0000000a00)=@in6={0xa, 0x0, 0x0, @initdev}, 0x80, &(0x7f0000000b80)=[{&(0x7f0000000180)=""/29, 0x1d}, {&(0x7f0000000a80)=""/77, 0x4d}, {&(0x7f0000000b00)=""/95, 0x5f}], 0x3, &(0x7f0000000bc0)=""/100, 0x64}, 0x7}, {{&(0x7f0000000c40)=@ll, 0x80, &(0x7f0000002000)=[{&(0x7f0000000cc0)=""/33, 0x21}, {&(0x7f0000000d00)=""/62, 0x3e}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/192, 0xc0}, {&(0x7f0000001e00)=""/195, 0xc3}, {&(0x7f0000001f00)=""/223, 0xdf}], 0x6, &(0x7f0000002080)=""/233, 0xe9}, 0xc7cd}], 0x4, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1081.233122] FAULT_INJECTION: forcing a failure. [ 1081.233122] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1081.245335] CPU: 0 PID: 27280 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1081.253231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1081.262713] Call Trace: [ 1081.265307] dump_stack+0x13e/0x194 [ 1081.268945] should_fail.cold+0x10a/0x14b [ 1081.273099] __alloc_pages_nodemask+0x1bf/0x700 [ 1081.277774] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1081.282803] ? inode_doinit_with_dentry+0x735/0xe30 [ 1081.287824] ? lockref_get+0x11/0x50 [ 1081.291548] alloc_pages_current+0xe7/0x1e0 [ 1081.295884] __get_free_pages+0xb/0x40 [ 1081.299788] inode_doinit_with_dentry+0x7b6/0xe30 [ 1081.304643] ? selinux_cred_free+0x70/0x70 [ 1081.308888] selinux_d_instantiate+0x23/0x30 [ 1081.313304] security_d_instantiate+0x54/0xd0 [ 1081.317812] d_instantiate+0x5a/0x90 [ 1081.321534] __debugfs_create_file+0x15b/0x3c0 [ 1081.326126] ? debugfs_create_file+0x37/0x60 [ 1081.330551] kvm_dev_ioctl+0xd71/0x1480 [ 1081.334542] ? kvm_put_kvm+0xa90/0xa90 [ 1081.338438] ? kvm_put_kvm+0xa90/0xa90 [ 1081.342332] do_vfs_ioctl+0x75a/0xfe0 [ 1081.346141] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1081.351082] ? ioctl_preallocate+0x1a0/0x1a0 [ 1081.355681] ? security_file_ioctl+0x76/0xb0 [ 1081.360094] ? security_file_ioctl+0x83/0xb0 [ 1081.364630] SyS_ioctl+0x7f/0xb0 [ 1081.368002] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1081.371980] do_syscall_64+0x1d5/0x640 [ 1081.375877] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1081.381064] RIP: 0033:0x45c829 [ 1081.384249] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1081.391958] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1081.399228] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1081.406518] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.413790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1081.421081] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:01 executing program 2 (fault-call:11 fault-nth:53): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1081.767969] FAULT_INJECTION: forcing a failure. [ 1081.767969] name failslab, interval 1, probability 0, space 0, times 0 [ 1081.779387] CPU: 1 PID: 27303 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1081.787306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1081.796667] Call Trace: [ 1081.799295] dump_stack+0x13e/0x194 [ 1081.802947] should_fail.cold+0x10a/0x14b [ 1081.807103] should_failslab+0xd6/0x130 [ 1081.811081] kmem_cache_alloc_trace+0x2db/0x7b0 13:50:02 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) fcntl$setpipe(r4, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1081.817071] ? up_write+0x17/0x60 [ 1081.820527] ? __debugfs_create_file+0x2c6/0x3c0 [ 1081.825820] ? debugfs_create_file+0x37/0x60 [ 1081.830240] kvm_dev_ioctl+0xdc4/0x1480 [ 1081.834243] ? kvm_put_kvm+0xa90/0xa90 [ 1081.838233] ? kvm_put_kvm+0xa90/0xa90 [ 1081.842225] do_vfs_ioctl+0x75a/0xfe0 [ 1081.846030] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1081.850792] ? ioctl_preallocate+0x1a0/0x1a0 [ 1081.855210] ? security_file_ioctl+0x76/0xb0 [ 1081.859717] ? security_file_ioctl+0x83/0xb0 [ 1081.864140] SyS_ioctl+0x7f/0xb0 [ 1081.867509] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1081.871486] do_syscall_64+0x1d5/0x640 [ 1081.875382] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1081.880568] RIP: 0033:0x45c829 [ 1081.883754] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1081.891463] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1081.898730] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1081.906172] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1081.913443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1081.920891] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:02 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x101000, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:02 executing program 1 (fault-call:14 fault-nth:23): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1082.330621] FAULT_INJECTION: forcing a failure. [ 1082.330621] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.342036] CPU: 1 PID: 27332 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1082.349951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1082.359396] Call Trace: [ 1082.362005] dump_stack+0x13e/0x194 [ 1082.365647] should_fail.cold+0x10a/0x14b [ 1082.369811] should_failslab+0xd6/0x130 [ 1082.373882] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1082.378645] ? up_write+0x17/0x60 [ 1082.382110] ? __debugfs_create_file+0x2c6/0x3c0 [ 1082.386871] ? debugfs_create_file+0x37/0x60 [ 1082.391290] kvm_dev_ioctl+0xdc4/0x1480 [ 1082.395272] ? kvm_put_kvm+0xa90/0xa90 [ 1082.399165] ? __inode_security_revalidate+0x99/0x120 [ 1082.404361] ? kvm_put_kvm+0xa90/0xa90 [ 1082.408282] do_vfs_ioctl+0x75a/0xfe0 [ 1082.412091] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1082.416856] ? ioctl_preallocate+0x1a0/0x1a0 [ 1082.421364] ? security_file_ioctl+0x76/0xb0 [ 1082.425778] ? security_file_ioctl+0x83/0xb0 [ 1082.430190] SyS_ioctl+0x7f/0xb0 [ 1082.433556] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1082.437538] do_syscall_64+0x1d5/0x640 [ 1082.441443] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1082.446652] RIP: 0033:0x45c829 [ 1082.449840] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1082.457548] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1082.464818] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1082.472351] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1082.479633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1082.487002] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:02 executing program 4: prlimit64(0x0, 0xf, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:02 executing program 2 (fault-call:11 fault-nth:54): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1082.839314] FAULT_INJECTION: forcing a failure. [ 1082.839314] name failslab, interval 1, probability 0, space 0, times 0 [ 1082.850850] CPU: 0 PID: 27353 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1082.858749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1082.868110] Call Trace: [ 1082.870713] dump_stack+0x13e/0x194 [ 1082.874356] should_fail.cold+0x10a/0x14b [ 1082.878516] should_failslab+0xd6/0x130 [ 1082.882498] kmem_cache_alloc+0x2b5/0x770 [ 1082.886648] ? __d_lookup+0x3b4/0x670 [ 1082.890453] ? mark_held_locks+0xa6/0xf0 [ 1082.894516] __d_alloc+0x2a/0x9b0 [ 1082.897975] d_alloc+0x46/0x250 [ 1082.901348] __lookup_hash+0x51/0x180 [ 1082.905158] lookup_one_len+0x27c/0x3a0 [ 1082.909137] ? __lookup_hash+0x180/0x180 [ 1082.913211] start_creating+0xa1/0x1c0 [ 1082.917149] __debugfs_create_file+0x4f/0x3c0 [ 1082.921741] ? debugfs_create_file+0x37/0x60 [ 1082.926166] kvm_dev_ioctl+0xd71/0x1480 [ 1082.930175] ? kvm_put_kvm+0xa90/0xa90 [ 1082.934072] ? kvm_put_kvm+0xa90/0xa90 [ 1082.937973] do_vfs_ioctl+0x75a/0xfe0 [ 1082.941792] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1082.946676] ? ioctl_preallocate+0x1a0/0x1a0 [ 1082.951235] ? security_file_ioctl+0x76/0xb0 [ 1082.956189] ? security_file_ioctl+0x83/0xb0 [ 1082.960813] SyS_ioctl+0x7f/0xb0 [ 1082.964193] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1082.968172] do_syscall_64+0x1d5/0x640 [ 1082.972175] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1082.977367] RIP: 0033:0x45c829 [ 1082.980726] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1082.988438] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1082.995709] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1083.002982] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1083.011220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1083.018586] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:03 executing program 1 (fault-call:14 fault-nth:24): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:03 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x2, 0x0, 0x0, 0x9, 0xfe}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) bind$ax25(r3, &(0x7f0000000140)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x7}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @default, @default, @default]}, 0x48) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffd}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1083.410764] FAULT_INJECTION: forcing a failure. [ 1083.410764] name failslab, interval 1, probability 0, space 0, times 0 [ 1083.422352] CPU: 1 PID: 27379 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1083.430932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1083.440289] Call Trace: [ 1083.442992] dump_stack+0x13e/0x194 [ 1083.447240] should_fail.cold+0x10a/0x14b [ 1083.451396] should_failslab+0xd6/0x130 [ 1083.455458] kmem_cache_alloc+0x2b5/0x770 [ 1083.459610] ? __d_lookup+0x3b4/0x670 [ 1083.463417] ? mark_held_locks+0xa6/0xf0 [ 1083.467480] __d_alloc+0x2a/0x9b0 [ 1083.470936] d_alloc+0x46/0x250 [ 1083.474220] __lookup_hash+0x51/0x180 [ 1083.478017] lookup_one_len+0x27c/0x3a0 [ 1083.481996] ? __lookup_hash+0x180/0x180 [ 1083.486061] start_creating+0xa1/0x1c0 [ 1083.490006] __debugfs_create_file+0x4f/0x3c0 [ 1083.494506] ? debugfs_create_file+0x37/0x60 [ 1083.498929] kvm_dev_ioctl+0xd71/0x1480 [ 1083.503122] ? kvm_put_kvm+0xa90/0xa90 [ 1083.507023] ? kvm_put_kvm+0xa90/0xa90 [ 1083.511352] do_vfs_ioctl+0x75a/0xfe0 [ 1083.515186] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1083.519952] ? ioctl_preallocate+0x1a0/0x1a0 [ 1083.524380] ? security_file_ioctl+0x76/0xb0 [ 1083.528801] ? security_file_ioctl+0x83/0xb0 [ 1083.533224] SyS_ioctl+0x7f/0xb0 [ 1083.536599] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1083.540581] do_syscall_64+0x1d5/0x640 [ 1083.544491] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1083.549687] RIP: 0033:0x45c829 [ 1083.552878] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1083.560603] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1083.567890] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1083.575167] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1083.582443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1083.591196] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:03 executing program 2 (fault-call:11 fault-nth:55): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1083.948612] FAULT_INJECTION: forcing a failure. [ 1083.948612] name failslab, interval 1, probability 0, space 0, times 0 [ 1083.960119] CPU: 0 PID: 27398 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1083.969696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1083.979057] Call Trace: [ 1083.981663] dump_stack+0x13e/0x194 [ 1083.985307] should_fail.cold+0x10a/0x14b [ 1083.989472] should_failslab+0xd6/0x130 [ 1083.993459] kmem_cache_alloc+0x2b5/0x770 [ 1083.997615] ? lookup_one_len+0x284/0x3a0 [ 1084.001773] alloc_inode+0xa0/0x170 [ 1084.005409] new_inode_pseudo+0x14/0xe0 [ 1084.009391] new_inode+0x1b/0x40 [ 1084.012762] debugfs_get_inode+0x1a/0x130 [ 1084.016922] __debugfs_create_file+0x93/0x3c0 [ 1084.021424] ? debugfs_create_file+0x37/0x60 [ 1084.025844] kvm_dev_ioctl+0xd71/0x1480 [ 1084.029869] ? kvm_put_kvm+0xa90/0xa90 [ 1084.033768] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1084.037751] ? kvm_put_kvm+0xa90/0xa90 [ 1084.041645] do_vfs_ioctl+0x75a/0xfe0 [ 1084.045552] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1084.050314] ? ioctl_preallocate+0x1a0/0x1a0 [ 1084.054736] ? security_file_ioctl+0x76/0xb0 [ 1084.059150] ? security_file_ioctl+0x83/0xb0 [ 1084.063562] SyS_ioctl+0x7f/0xb0 [ 1084.066939] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1084.070922] do_syscall_64+0x1d5/0x640 [ 1084.074822] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1084.080014] RIP: 0033:0x45c829 [ 1084.083204] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1084.091208] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1084.098486] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1084.105761] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1084.113034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1084.120310] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:04 executing program 1 (fault-call:14 fault-nth:25): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:04 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r7, 0x84, 0x8, &(0x7f0000000100)=0xfff, 0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:04 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000340)="fa9bca2cbc3afd46d20a7d6055138121afe36aa5b96fdd80148c2974136b40830bb1866fd8dd68efa414934107eb118579a1327420e11b5a2378d89db6470d29951d11665ab0ff49dc17e6a63f183ee5d6dadec2b6c089ed8cb09271fe6563f104cf0aea04b4840ce3fc27", 0x6b}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc018643a, &(0x7f0000000100)={0x20000000, 0x9, 0x29}) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32=r4, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25, 0x0, 0x0, {0x0, 0x0, 0x0, r4}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)=@newtclass={0x40, 0x28, 0x100, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x9, 0xfff2}, {0xe, 0xc}, {0x8, 0x1}}, [@tclass_kind_options=@c_netem={0xa, 0x1, 'netem\x00'}, @tclass_kind_options=@c_fq_codel={0xd, 0x1, 'fq_codel\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x400a0}, 0x4000000) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1084.478046] FAULT_INJECTION: forcing a failure. [ 1084.478046] name failslab, interval 1, probability 0, space 0, times 0 [ 1084.489540] CPU: 1 PID: 27426 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1084.497515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1084.506873] Call Trace: [ 1084.509467] dump_stack+0x13e/0x194 [ 1084.513107] should_fail.cold+0x10a/0x14b [ 1084.517261] should_failslab+0xd6/0x130 [ 1084.521245] kmem_cache_alloc+0x2b5/0x770 [ 1084.525503] ? alloc_inode+0xb/0x170 [ 1084.529222] alloc_inode+0xa0/0x170 [ 1084.532880] new_inode_pseudo+0x14/0xe0 [ 1084.536854] new_inode+0x1b/0x40 [ 1084.540224] debugfs_get_inode+0x1a/0x130 [ 1084.544377] __debugfs_create_file+0x93/0x3c0 [ 1084.548874] ? debugfs_create_file+0x37/0x60 [ 1084.553288] kvm_dev_ioctl+0xd71/0x1480 [ 1084.557273] ? kvm_put_kvm+0xa90/0xa90 [ 1084.561259] ? kvm_put_kvm+0xa90/0xa90 [ 1084.565152] do_vfs_ioctl+0x75a/0xfe0 [ 1084.568965] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1084.573727] ? ioctl_preallocate+0x1a0/0x1a0 [ 1084.578148] ? security_file_ioctl+0x76/0xb0 [ 1084.582556] ? security_file_ioctl+0x83/0xb0 [ 1084.586973] SyS_ioctl+0x7f/0xb0 [ 1084.590345] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1084.594341] do_syscall_64+0x1d5/0x640 [ 1084.598243] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1084.603433] RIP: 0033:0x45c829 [ 1084.606618] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1084.614330] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1084.621756] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1084.629033] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1084.636309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1084.644284] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:05 executing program 2 (fault-call:11 fault-nth:56): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1084.969441] FAULT_INJECTION: forcing a failure. [ 1084.969441] name failslab, interval 1, probability 0, space 0, times 0 [ 1084.980836] CPU: 1 PID: 27443 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1084.988733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1084.998123] Call Trace: [ 1085.000733] dump_stack+0x13e/0x194 [ 1085.004380] should_fail.cold+0x10a/0x14b [ 1085.008550] should_failslab+0xd6/0x130 [ 1085.012548] kmem_cache_alloc+0x2b5/0x770 [ 1085.016703] ? alloc_inode+0xa0/0x170 [ 1085.020515] selinux_inode_alloc_security+0xb1/0x2a0 [ 1085.025633] security_inode_alloc+0x8f/0xd0 [ 1085.029964] inode_init_always+0x576/0xb20 [ 1085.034209] alloc_inode+0x7a/0x170 [ 1085.037843] new_inode_pseudo+0x14/0xe0 [ 1085.041820] new_inode+0x1b/0x40 [ 1085.045190] debugfs_get_inode+0x1a/0x130 [ 1085.049346] __debugfs_create_file+0x93/0x3c0 [ 1085.053848] ? debugfs_create_file+0x37/0x60 [ 1085.059490] kvm_dev_ioctl+0xd71/0x1480 [ 1085.063915] ? kvm_put_kvm+0xa90/0xa90 [ 1085.067811] ? kvm_put_kvm+0xa90/0xa90 [ 1085.071706] do_vfs_ioctl+0x75a/0xfe0 [ 1085.075596] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1085.080358] ? ioctl_preallocate+0x1a0/0x1a0 [ 1085.084784] ? security_file_ioctl+0x76/0xb0 [ 1085.089201] ? security_file_ioctl+0x83/0xb0 [ 1085.094235] SyS_ioctl+0x7f/0xb0 [ 1085.097603] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1085.101624] do_syscall_64+0x1d5/0x640 [ 1085.105521] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1085.110977] RIP: 0033:0x45c829 [ 1085.114255] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1085.121995] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1085.129358] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1085.136632] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1085.144021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1085.151304] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:05 executing program 1 (fault-call:14 fault-nth:26): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:05 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_G_DV_TIMINGS(r1, 0xc0845658, &(0x7f0000000100)={0x0, @reserved}) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(0xffffffffffffffff, 0xae00, 0x0) r7 = dup3(r4, 0xffffffffffffffff, 0x80000) setsockopt$inet_sctp_SCTP_NODELAY(r7, 0x84, 0x3, &(0x7f0000000240)=0xe, 0x4) r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:05 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r2, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) r5 = socket$netlink(0x10, 0x3, 0x8000000004) ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, &(0x7f0000000240)={r5, r2, 0x0, 0xe9, &(0x7f0000000100)="0f3c4143d24b460eb362e2d1485719621b06578ff32dde0bd94ef66e1b9c3222c25b92a986241726c6c81b02f1d9a26799349140dbfee64194ef7c68b9086d4997a7ec43fc2cbe9ec2e3286398a0892c407bedb898621b8a4915ea7896c7075fd7b52f224bf7942befacf1e7fd355bfca849bbaccfb0577d205cca3b1552e47521325e6d8a7e1c883a3270be0a38d6ae983e9560607bda4a20113a4ec787366fd1910fcc7d9dc99814c6d0a2df6e89dcd6fa9275b9", 0x2, 0x9, 0x8202, 0x6, 0x2c, 0x2, 0x6, 'syz1\x00'}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1085.518158] FAULT_INJECTION: forcing a failure. [ 1085.518158] name failslab, interval 1, probability 0, space 0, times 0 [ 1085.529580] CPU: 1 PID: 27468 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1085.537466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1085.546825] Call Trace: [ 1085.549424] dump_stack+0x13e/0x194 [ 1085.553060] should_fail.cold+0x10a/0x14b [ 1085.557217] should_failslab+0xd6/0x130 [ 1085.561204] kmem_cache_alloc+0x2b5/0x770 [ 1085.565373] ? retint_kernel+0x2d/0x2d [ 1085.572330] selinux_inode_alloc_security+0xb1/0x2a0 [ 1085.577452] security_inode_alloc+0x8f/0xd0 [ 1085.581786] inode_init_always+0x576/0xb20 [ 1085.586031] alloc_inode+0x7a/0x170 [ 1085.589670] new_inode_pseudo+0x14/0xe0 [ 1085.593662] new_inode+0x1b/0x40 [ 1085.597070] debugfs_get_inode+0x1a/0x130 [ 1085.601232] __debugfs_create_file+0x93/0x3c0 [ 1085.605735] ? debugfs_create_file+0x37/0x60 [ 1085.610156] kvm_dev_ioctl+0xd71/0x1480 [ 1085.614154] ? kvm_put_kvm+0xa90/0xa90 [ 1085.618061] ? kvm_put_kvm+0xa90/0xa90 [ 1085.621987] do_vfs_ioctl+0x75a/0xfe0 [ 1085.625820] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1085.630591] ? ioctl_preallocate+0x1a0/0x1a0 [ 1085.635025] ? security_file_ioctl+0x76/0xb0 [ 1085.639532] ? security_file_ioctl+0x83/0xb0 [ 1085.643961] SyS_ioctl+0x7f/0xb0 [ 1085.647338] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1085.651361] do_syscall_64+0x1d5/0x640 [ 1085.655443] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1085.660653] RIP: 0033:0x45c829 [ 1085.663847] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1085.671562] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1085.678837] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1085.686200] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1085.693482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1085.700756] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:06 executing program 2 (fault-call:11 fault-nth:57): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1085.990042] FAULT_INJECTION: forcing a failure. [ 1085.990042] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1086.002155] CPU: 1 PID: 27489 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1086.010044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1086.019405] Call Trace: [ 1086.022006] dump_stack+0x13e/0x194 [ 1086.025647] should_fail.cold+0x10a/0x14b [ 1086.029803] __alloc_pages_nodemask+0x1bf/0x700 [ 1086.034480] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1086.039509] ? inode_doinit_with_dentry+0x735/0xe30 [ 1086.045750] ? lockref_get+0x11/0x50 [ 1086.049476] alloc_pages_current+0xe7/0x1e0 [ 1086.053818] __get_free_pages+0xb/0x40 [ 1086.057710] inode_doinit_with_dentry+0x7b6/0xe30 [ 1086.062568] ? selinux_cred_free+0x70/0x70 [ 1086.066815] ? put_itimerspec64+0x190/0x190 [ 1086.071145] selinux_d_instantiate+0x23/0x30 [ 1086.075559] security_d_instantiate+0x54/0xd0 [ 1086.080063] d_instantiate+0x5a/0x90 [ 1086.083784] __debugfs_create_file+0x15b/0x3c0 [ 1086.088370] ? debugfs_create_file+0x37/0x60 [ 1086.092788] kvm_dev_ioctl+0xd71/0x1480 [ 1086.096769] ? kvm_put_kvm+0xa90/0xa90 [ 1086.100663] ? kvm_put_kvm+0xa90/0xa90 [ 1086.104554] do_vfs_ioctl+0x75a/0xfe0 [ 1086.108358] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1086.113127] ? ioctl_preallocate+0x1a0/0x1a0 [ 1086.117548] ? security_file_ioctl+0x76/0xb0 [ 1086.122068] ? security_file_ioctl+0x83/0xb0 [ 1086.126568] SyS_ioctl+0x7f/0xb0 [ 1086.129940] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1086.133923] do_syscall_64+0x1d5/0x640 [ 1086.137919] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1086.143137] RIP: 0033:0x45c829 [ 1086.146329] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1086.154039] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1086.161312] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1086.168582] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1086.176130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1086.183407] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:06 executing program 1 (fault-call:14 fault-nth:27): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:06 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x52, 0x0, 0x0) ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000000100)={0x100000000000000, 0xd000, 0x1, 0xc, 0x13}) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendto$rxrpc(r6, &(0x7f00000000c0)="e6c395aea02cb06c8fecf749cf68d91599", 0x11, 0x4000001, 0x0, 0x0) [ 1086.567820] FAULT_INJECTION: forcing a failure. [ 1086.567820] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1086.579954] CPU: 1 PID: 27517 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1086.587843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1086.597203] Call Trace: [ 1086.599807] dump_stack+0x13e/0x194 [ 1086.603452] should_fail.cold+0x10a/0x14b [ 1086.607612] __alloc_pages_nodemask+0x1bf/0x700 [ 1086.612728] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1086.617756] ? inode_doinit_with_dentry+0x735/0xe30 [ 1086.622894] ? lockref_get+0x11/0x50 [ 1086.626619] alloc_pages_current+0xe7/0x1e0 [ 1086.630956] __get_free_pages+0xb/0x40 [ 1086.634857] inode_doinit_with_dentry+0x7b6/0xe30 [ 1086.639715] ? selinux_cred_free+0x70/0x70 [ 1086.643961] ? put_itimerspec64+0x190/0x190 [ 1086.648302] selinux_d_instantiate+0x23/0x30 [ 1086.652727] security_d_instantiate+0x54/0xd0 [ 1086.657239] d_instantiate+0x5a/0x90 [ 1086.660972] __debugfs_create_file+0x15b/0x3c0 13:50:07 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$kcm(0x29, 0x5, 0x0) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r6, 0x8983, &(0x7f0000000100)={0x3, 'ip6gre0\x00', {0x939}, 0x81}) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1086.665651] ? debugfs_create_file+0x37/0x60 [ 1086.670071] kvm_dev_ioctl+0xd71/0x1480 [ 1086.674062] ? kvm_put_kvm+0xa90/0xa90 [ 1086.677960] ? kvm_put_kvm+0xa90/0xa90 [ 1086.681863] do_vfs_ioctl+0x75a/0xfe0 [ 1086.685674] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1086.690441] ? ioctl_preallocate+0x1a0/0x1a0 [ 1086.694874] ? security_file_ioctl+0x76/0xb0 [ 1086.699291] ? security_file_ioctl+0x83/0xb0 [ 1086.703713] SyS_ioctl+0x7f/0xb0 [ 1086.707103] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1086.711086] do_syscall_64+0x1d5/0x640 [ 1086.715010] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1086.720204] RIP: 0033:0x45c829 [ 1086.723398] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1086.731117] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1086.739524] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1086.746797] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1086.754073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1086.761349] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:07 executing program 2 (fault-call:11 fault-nth:58): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1087.147923] FAULT_INJECTION: forcing a failure. [ 1087.147923] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.159441] CPU: 0 PID: 27538 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1087.167422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1087.176785] Call Trace: [ 1087.179389] dump_stack+0x13e/0x194 [ 1087.183072] should_fail.cold+0x10a/0x14b [ 1087.187231] should_failslab+0xd6/0x130 [ 1087.191213] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1087.195895] ? up_write+0x17/0x60 [ 1087.199355] ? __debugfs_create_file+0x2c6/0x3c0 [ 1087.204128] ? debugfs_create_file+0x37/0x60 [ 1087.208546] kvm_dev_ioctl+0xdc4/0x1480 [ 1087.212534] ? kvm_put_kvm+0xa90/0xa90 [ 1087.216432] ? kvm_put_kvm+0xa90/0xa90 [ 1087.220328] do_vfs_ioctl+0x75a/0xfe0 [ 1087.224135] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1087.228896] ? ioctl_preallocate+0x1a0/0x1a0 [ 1087.233318] ? security_file_ioctl+0x76/0xb0 [ 1087.237731] ? security_file_ioctl+0x83/0xb0 [ 1087.242146] SyS_ioctl+0x7f/0xb0 [ 1087.245515] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1087.249496] do_syscall_64+0x1d5/0x640 [ 1087.253482] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1087.258683] RIP: 0033:0x45c829 [ 1087.262077] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1087.269789] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1087.277067] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1087.285387] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1087.292670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1087.299947] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:07 executing program 1 (fault-call:14 fault-nth:28): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:07 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) r2 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x1000, 0x121000) ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc018643a, &(0x7f0000000140)={0x3e, 0x2, 0x39}) socket(0x10, 0x803, 0x40000) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) r6 = dup2(r5, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$RTC_VL_CLR(r6, 0x7014) [ 1087.650321] FAULT_INJECTION: forcing a failure. [ 1087.650321] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.661783] CPU: 1 PID: 27563 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1087.669674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1087.679030] Call Trace: [ 1087.681639] dump_stack+0x13e/0x194 [ 1087.685279] should_fail.cold+0x10a/0x14b [ 1087.689446] should_failslab+0xd6/0x130 [ 1087.693438] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1087.698118] ? up_write+0x17/0x60 [ 1087.701579] ? __debugfs_create_file+0x2c6/0x3c0 [ 1087.706343] ? debugfs_create_file+0x37/0x60 [ 1087.710770] kvm_dev_ioctl+0xdc4/0x1480 [ 1087.714764] ? kvm_put_kvm+0xa90/0xa90 [ 1087.718659] ? kvm_put_kvm+0xa90/0xa90 [ 1087.722552] do_vfs_ioctl+0x75a/0xfe0 [ 1087.726363] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1087.731144] ? ioctl_preallocate+0x1a0/0x1a0 [ 1087.735585] ? security_file_ioctl+0x76/0xb0 [ 1087.740004] ? security_file_ioctl+0x83/0xb0 [ 1087.744424] SyS_ioctl+0x7f/0xb0 [ 1087.747798] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1087.751784] do_syscall_64+0x1d5/0x640 [ 1087.755688] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1087.760880] RIP: 0033:0x45c829 [ 1087.764072] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1087.771791] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1087.779069] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1087.786354] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1087.793630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1087.800928] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:08 executing program 2 (fault-call:11 fault-nth:59): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:08 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000100)=r8) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1088.137786] FAULT_INJECTION: forcing a failure. [ 1088.137786] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.150234] CPU: 0 PID: 27581 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1088.158147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1088.167506] Call Trace: [ 1088.170105] dump_stack+0x13e/0x194 [ 1088.173755] should_fail.cold+0x10a/0x14b [ 1088.177917] should_failslab+0xd6/0x130 [ 1088.181905] kmem_cache_alloc+0x2b5/0x770 [ 1088.186063] ? __d_lookup+0x3b4/0x670 [ 1088.189878] ? mark_held_locks+0xa6/0xf0 [ 1088.193950] __d_alloc+0x2a/0x9b0 [ 1088.197487] d_alloc+0x46/0x250 [ 1088.200782] __lookup_hash+0x51/0x180 [ 1088.204596] lookup_one_len+0x27c/0x3a0 [ 1088.208583] ? __lookup_hash+0x180/0x180 [ 1088.212664] start_creating+0xa1/0x1c0 [ 1088.216567] __debugfs_create_file+0x4f/0x3c0 [ 1088.221099] ? debugfs_create_file+0x37/0x60 [ 1088.225520] kvm_dev_ioctl+0xd71/0x1480 [ 1088.229509] ? kvm_put_kvm+0xa90/0xa90 [ 1088.233674] ? kvm_put_kvm+0xa90/0xa90 [ 1088.237570] do_vfs_ioctl+0x75a/0xfe0 [ 1088.241379] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1088.246146] ? ioctl_preallocate+0x1a0/0x1a0 [ 1088.250572] ? security_file_ioctl+0x76/0xb0 [ 1088.254992] ? security_file_ioctl+0x83/0xb0 [ 1088.259412] SyS_ioctl+0x7f/0xb0 [ 1088.262786] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1088.266768] do_syscall_64+0x1d5/0x640 [ 1088.270668] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1088.275866] RIP: 0033:0x45c829 [ 1088.279058] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:50:08 executing program 1 (fault-call:14 fault-nth:29): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1088.286856] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1088.294302] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1088.301576] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1088.308850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1088.316138] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:08 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-control\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000140)=@assoc_value={0x0}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000240)={r4, 0x69, "7d233f50998d3c2b8f2ce4e1b8496915b8fcc4ba0cae52f633c8777d7597c8e84d79fcb851f9779a7c81423181d8a0f78075b992d9a8ebe9b4fc9e18dffbcbf5cfea518c24848b348dd6f337635529077fed84fb01b17dc18ba030c14021f44ceef660d1e94c066163"}, &(0x7f00000002c0)=0x71) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1088.649363] FAULT_INJECTION: forcing a failure. [ 1088.649363] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.660812] CPU: 1 PID: 27602 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1088.668702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1088.678066] Call Trace: [ 1088.680666] dump_stack+0x13e/0x194 [ 1088.684308] should_fail.cold+0x10a/0x14b [ 1088.688462] should_failslab+0xd6/0x130 [ 1088.692440] kmem_cache_alloc+0x2b5/0x770 [ 1088.696587] ? __d_lookup+0x3b4/0x670 [ 1088.700390] ? mark_held_locks+0xa6/0xf0 [ 1088.704454] __d_alloc+0x2a/0x9b0 [ 1088.707914] d_alloc+0x46/0x250 [ 1088.711192] __lookup_hash+0x51/0x180 [ 1088.714998] lookup_one_len+0x27c/0x3a0 [ 1088.718977] ? __lookup_hash+0x180/0x180 [ 1088.723048] start_creating+0xa1/0x1c0 [ 1088.727026] __debugfs_create_file+0x4f/0x3c0 [ 1088.731528] ? debugfs_create_file+0x37/0x60 [ 1088.735947] kvm_dev_ioctl+0xd71/0x1480 [ 1088.739940] ? kvm_put_kvm+0xa90/0xa90 [ 1088.743847] ? kvm_put_kvm+0xa90/0xa90 [ 1088.747748] do_vfs_ioctl+0x75a/0xfe0 [ 1088.751555] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1088.756322] ? ioctl_preallocate+0x1a0/0x1a0 [ 1088.760749] ? security_file_ioctl+0x76/0xb0 [ 1088.765189] ? security_file_ioctl+0x83/0xb0 [ 1088.769608] SyS_ioctl+0x7f/0xb0 [ 1088.772978] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1088.776961] do_syscall_64+0x1d5/0x640 [ 1088.780865] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1088.786059] RIP: 0033:0x45c829 [ 1088.789260] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1088.796980] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1088.804256] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1088.811531] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1088.818806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1088.826084] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:09 executing program 2 (fault-call:11 fault-nth:60): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1089.158628] FAULT_INJECTION: forcing a failure. [ 1089.158628] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.170089] CPU: 1 PID: 27618 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1089.177978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1089.187445] Call Trace: [ 1089.190042] dump_stack+0x13e/0x194 [ 1089.193686] should_fail.cold+0x10a/0x14b [ 1089.197844] should_failslab+0xd6/0x130 [ 1089.201834] kmem_cache_alloc+0x2b5/0x770 [ 1089.205993] ? lookup_one_len+0x284/0x3a0 [ 1089.210155] alloc_inode+0xa0/0x170 [ 1089.213792] new_inode_pseudo+0x14/0xe0 [ 1089.217776] new_inode+0x1b/0x40 [ 1089.221160] debugfs_get_inode+0x1a/0x130 [ 1089.225321] __debugfs_create_file+0x93/0x3c0 [ 1089.229939] ? debugfs_create_file+0x37/0x60 [ 1089.234364] kvm_dev_ioctl+0xd71/0x1480 [ 1089.238359] ? kvm_put_kvm+0xa90/0xa90 [ 1089.242265] ? kvm_put_kvm+0xa90/0xa90 [ 1089.246159] do_vfs_ioctl+0x75a/0xfe0 [ 1089.250056] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1089.254816] ? ioctl_preallocate+0x1a0/0x1a0 [ 1089.259241] ? security_file_ioctl+0x76/0xb0 [ 1089.263758] ? security_file_ioctl+0x83/0xb0 [ 1089.268181] SyS_ioctl+0x7f/0xb0 [ 1089.271550] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1089.275530] do_syscall_64+0x1d5/0x640 [ 1089.279428] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1089.284616] RIP: 0033:0x45c829 [ 1089.287806] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1089.295611] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1089.302887] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1089.310164] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1089.317443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1089.324724] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:09 executing program 1 (fault-call:14 fault-nth:30): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1089.655406] FAULT_INJECTION: forcing a failure. [ 1089.655406] name failslab, interval 1, probability 0, space 0, times 0 [ 1089.666844] CPU: 1 PID: 27641 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1089.674766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1089.684128] Call Trace: [ 1089.686729] dump_stack+0x13e/0x194 [ 1089.690417] should_fail.cold+0x10a/0x14b [ 1089.694577] should_failslab+0xd6/0x130 [ 1089.698555] kmem_cache_alloc+0x2b5/0x770 [ 1089.702718] ? lookup_one_len+0x284/0x3a0 [ 1089.706873] alloc_inode+0xa0/0x170 [ 1089.710941] new_inode_pseudo+0x14/0xe0 [ 1089.714929] new_inode+0x1b/0x40 [ 1089.718296] debugfs_get_inode+0x1a/0x130 [ 1089.722549] __debugfs_create_file+0x93/0x3c0 [ 1089.727053] ? debugfs_create_file+0x37/0x60 [ 1089.731492] kvm_dev_ioctl+0xd71/0x1480 [ 1089.735503] ? kvm_put_kvm+0xa90/0xa90 [ 1089.739401] ? kvm_put_kvm+0xa90/0xa90 [ 1089.743382] do_vfs_ioctl+0x75a/0xfe0 [ 1089.747191] ? selinux_file_mprotect+0x5c0/0x5c0 13:50:10 executing program 4: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) prlimit64(r0, 0xd, &(0x7f00000001c0)={0xa, 0x4f}, 0x0) r2 = getpid() sched_setattr(r2, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0xc) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1089.751953] ? ioctl_preallocate+0x1a0/0x1a0 [ 1089.756380] ? security_file_ioctl+0x76/0xb0 [ 1089.760797] ? security_file_ioctl+0x83/0xb0 [ 1089.765238] SyS_ioctl+0x7f/0xb0 [ 1089.768613] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1089.772593] do_syscall_64+0x1d5/0x640 [ 1089.776491] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1089.781681] RIP: 0033:0x45c829 [ 1089.784869] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1089.792818] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1089.800092] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1089.807364] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1089.814639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1089.821943] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:10 executing program 2 (fault-call:11 fault-nth:61): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:10 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x3, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x5d0, 0xfffffffd}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket(0xa, 0x1, 0x0) close(r4) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [0x0]}, &(0x7f000095dffc)=0x8) sendmmsg$inet_sctp(r4, &(0x7f0000002cc0)=[{0x0, 0x29e, 0x0, 0x0, &(0x7f00000016c0)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x4, 0x0, 0x0, r6}}], 0x20}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={r6, 0xfffffffa}, 0x8) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1090.139064] FAULT_INJECTION: forcing a failure. [ 1090.139064] name failslab, interval 1, probability 0, space 0, times 0 [ 1090.150424] CPU: 1 PID: 27659 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1090.158324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1090.168054] Call Trace: [ 1090.170650] dump_stack+0x13e/0x194 [ 1090.174286] should_fail.cold+0x10a/0x14b [ 1090.178472] should_failslab+0xd6/0x130 [ 1090.182455] kmem_cache_alloc+0x2b5/0x770 [ 1090.186606] ? alloc_inode+0xa0/0x170 [ 1090.190410] selinux_inode_alloc_security+0xb1/0x2a0 [ 1090.195519] security_inode_alloc+0x8f/0xd0 [ 1090.199860] inode_init_always+0x576/0xb20 [ 1090.204137] alloc_inode+0x7a/0x170 [ 1090.207772] new_inode_pseudo+0x14/0xe0 [ 1090.211756] new_inode+0x1b/0x40 [ 1090.215126] debugfs_get_inode+0x1a/0x130 [ 1090.219279] __debugfs_create_file+0x93/0x3c0 [ 1090.223780] ? debugfs_create_file+0x37/0x60 [ 1090.228200] kvm_dev_ioctl+0xd71/0x1480 [ 1090.232189] ? kvm_put_kvm+0xa90/0xa90 [ 1090.236083] ? kvm_put_kvm+0xa90/0xa90 [ 1090.239980] do_vfs_ioctl+0x75a/0xfe0 [ 1090.243789] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1090.248556] ? ioctl_preallocate+0x1a0/0x1a0 [ 1090.252979] ? security_file_ioctl+0x76/0xb0 [ 1090.257394] ? security_file_ioctl+0x83/0xb0 [ 1090.261811] SyS_ioctl+0x7f/0xb0 [ 1090.265178] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1090.269155] do_syscall_64+0x1d5/0x640 [ 1090.273051] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1090.278242] RIP: 0033:0x45c829 [ 1090.281428] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1090.289141] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1090.296412] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1090.303688] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1090.310961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1090.318237] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:10 executing program 1 (fault-call:14 fault-nth:31): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1090.651606] FAULT_INJECTION: forcing a failure. [ 1090.651606] name failslab, interval 1, probability 0, space 0, times 0 [ 1090.663078] CPU: 1 PID: 27674 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1090.671143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1090.680510] Call Trace: [ 1090.683118] dump_stack+0x13e/0x194 [ 1090.686755] should_fail.cold+0x10a/0x14b [ 1090.690916] should_failslab+0xd6/0x130 [ 1090.694900] kmem_cache_alloc+0x2b5/0x770 [ 1090.699055] ? retint_kernel+0x2d/0x2d [ 1090.703208] selinux_inode_alloc_security+0xb1/0x2a0 [ 1090.708324] security_inode_alloc+0x8f/0xd0 [ 1090.712657] inode_init_always+0x576/0xb20 [ 1090.716898] alloc_inode+0x7a/0x170 [ 1090.720529] new_inode_pseudo+0x14/0xe0 [ 1090.724737] new_inode+0x1b/0x40 [ 1090.728110] debugfs_get_inode+0x1a/0x130 [ 1090.732265] __debugfs_create_file+0x93/0x3c0 [ 1090.736764] ? debugfs_create_file+0x37/0x60 [ 1090.741182] kvm_dev_ioctl+0xd71/0x1480 [ 1090.745168] ? __schedule+0x7c0/0x1ca0 [ 1090.749063] ? kvm_put_kvm+0xa90/0xa90 [ 1090.752960] ? kvm_put_kvm+0xa90/0xa90 [ 1090.756862] do_vfs_ioctl+0x75a/0xfe0 [ 1090.760675] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1090.765443] ? ioctl_preallocate+0x1a0/0x1a0 [ 1090.770307] ? security_file_ioctl+0x76/0xb0 [ 1090.774722] ? security_file_ioctl+0x83/0xb0 [ 1090.779141] SyS_ioctl+0x7f/0xb0 [ 1090.782518] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1090.786500] do_syscall_64+0x1d5/0x640 [ 1090.790415] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1090.795612] RIP: 0033:0x45c829 [ 1090.798804] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1090.806522] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1090.813799] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1090.821077] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1090.828364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1090.835640] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:11 executing program 2 (fault-call:11 fault-nth:62): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:11 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x100, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r7, 0xae9a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x41, 0x0, 0x0) 13:50:11 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x8000000, 0x0, 0x0, 0x0, 0x1000000000000}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x80000000000002) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = msgget$private(0x0, 0x398) msgctl$MSG_STAT(r6, 0xb, &(0x7f0000000380)=""/196) msgctl$IPC_INFO(r6, 0x3, &(0x7f0000000240)=""/4096) r7 = socket$bt_cmtp(0x1f, 0x3, 0x5) setsockopt$bt_BT_SECURITY(r7, 0x112, 0x4, &(0x7f0000000100)={0x0, 0x87}, 0x2) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1091.277931] FAULT_INJECTION: forcing a failure. [ 1091.277931] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1091.289921] CPU: 1 PID: 27700 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1091.297813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1091.307167] Call Trace: [ 1091.309761] dump_stack+0x13e/0x194 [ 1091.313408] should_fail.cold+0x10a/0x14b [ 1091.317568] __alloc_pages_nodemask+0x1bf/0x700 [ 1091.322248] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1091.327275] ? inode_doinit_with_dentry+0x735/0xe30 [ 1091.332298] ? lockref_get+0x11/0x50 [ 1091.336024] alloc_pages_current+0xe7/0x1e0 [ 1091.340389] __get_free_pages+0xb/0x40 [ 1091.344279] inode_doinit_with_dentry+0x7b6/0xe30 [ 1091.349129] ? selinux_cred_free+0x70/0x70 [ 1091.353367] ? put_itimerspec64+0x190/0x190 [ 1091.357695] selinux_d_instantiate+0x23/0x30 [ 1091.362105] security_d_instantiate+0x54/0xd0 [ 1091.366601] d_instantiate+0x5a/0x90 [ 1091.370328] __debugfs_create_file+0x15b/0x3c0 13:50:11 executing program 1 (fault-call:14 fault-nth:32): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1091.374917] ? debugfs_create_file+0x37/0x60 [ 1091.379336] kvm_dev_ioctl+0xd71/0x1480 [ 1091.383325] ? kvm_put_kvm+0xa90/0xa90 [ 1091.387225] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1091.391204] ? kvm_put_kvm+0xa90/0xa90 [ 1091.395097] do_vfs_ioctl+0x75a/0xfe0 [ 1091.398916] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1091.404814] ? ioctl_preallocate+0x1a0/0x1a0 [ 1091.409285] ? security_file_ioctl+0x76/0xb0 [ 1091.413698] ? security_file_ioctl+0x83/0xb0 [ 1091.418121] SyS_ioctl+0x7f/0xb0 [ 1091.421492] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1091.425469] do_syscall_64+0x1d5/0x640 [ 1091.429394] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1091.434582] RIP: 0033:0x45c829 [ 1091.437778] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1091.445490] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1091.452762] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1091.460469] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1091.467741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1091.475044] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1091.657439] FAULT_INJECTION: forcing a failure. [ 1091.657439] name failslab, interval 1, probability 0, space 0, times 0 [ 1091.668824] CPU: 0 PID: 27723 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1091.676720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1091.686077] Call Trace: [ 1091.688674] dump_stack+0x13e/0x194 [ 1091.692315] should_fail.cold+0x10a/0x14b [ 1091.696473] should_failslab+0xd6/0x130 [ 1091.700451] kmem_cache_alloc+0x2b5/0x770 [ 1091.704690] ? lookup_one_len+0x284/0x3a0 [ 1091.708843] alloc_inode+0xa0/0x170 [ 1091.712475] new_inode_pseudo+0x14/0xe0 [ 1091.716487] new_inode+0x1b/0x40 [ 1091.719856] debugfs_get_inode+0x1a/0x130 [ 1091.724010] __debugfs_create_file+0x93/0x3c0 [ 1091.728507] ? debugfs_create_file+0x37/0x60 [ 1091.732931] kvm_dev_ioctl+0xd71/0x1480 [ 1091.736943] ? kvm_put_kvm+0xa90/0xa90 [ 1091.740937] ? kvm_put_kvm+0xa90/0xa90 [ 1091.744829] do_vfs_ioctl+0x75a/0xfe0 [ 1091.748632] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1091.753422] ? ioctl_preallocate+0x1a0/0x1a0 [ 1091.757842] ? security_file_ioctl+0x76/0xb0 [ 1091.762261] ? security_file_ioctl+0x83/0xb0 [ 1091.766762] SyS_ioctl+0x7f/0xb0 [ 1091.770144] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1091.774654] do_syscall_64+0x1d5/0x640 [ 1091.778556] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1091.783745] RIP: 0033:0x45c829 [ 1091.787110] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1091.794821] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1091.802119] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1091.809389] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1091.816657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1091.823927] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:12 executing program 2 (fault-call:11 fault-nth:63): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1092.153278] FAULT_INJECTION: forcing a failure. [ 1092.153278] name failslab, interval 1, probability 0, space 0, times 0 [ 1092.164633] CPU: 1 PID: 27744 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1092.172525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1092.181988] Call Trace: [ 1092.184580] dump_stack+0x13e/0x194 [ 1092.188210] should_fail.cold+0x10a/0x14b [ 1092.192361] should_failslab+0xd6/0x130 [ 1092.196331] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1092.201002] ? up_write+0x17/0x60 [ 1092.204454] ? __debugfs_create_file+0x2c6/0x3c0 [ 1092.209212] ? debugfs_create_file+0x37/0x60 [ 1092.213668] kvm_dev_ioctl+0xdc4/0x1480 [ 1092.217655] ? kvm_put_kvm+0xa90/0xa90 [ 1092.221546] ? kvm_put_kvm+0xa90/0xa90 [ 1092.225435] do_vfs_ioctl+0x75a/0xfe0 [ 1092.229240] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1092.234011] ? ioctl_preallocate+0x1a0/0x1a0 [ 1092.238536] ? security_file_ioctl+0x76/0xb0 [ 1092.242972] ? security_file_ioctl+0x83/0xb0 [ 1092.247404] SyS_ioctl+0x7f/0xb0 [ 1092.250767] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1092.254741] do_syscall_64+0x1d5/0x640 [ 1092.258631] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1092.263813] RIP: 0033:0x45c829 [ 1092.266994] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1092.274716] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1092.281980] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1092.289248] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1092.296523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1092.303797] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:12 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0xffff7ffffffffffa) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r2, 0x8982, &(0x7f0000000100)={0x6, 'veth0_to_bridge\x00', {0x2}, 0x7}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:12 executing program 1 (fault-call:14 fault-nth:33): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:12 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800e200"/20, @ANYRES32=r4, @ANYRES64=r4], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32=r4, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25, 0x0, 0x0, {0x0, 0x0, 0x0, r4}}, 0x24}}, 0x0) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000100)={@private0={0xfc, 0x0, [], 0x1}, @initdev={0xfe, 0x88, [], 0x1, 0x0}, @local, 0x8001, 0x4, 0xda91, 0x100, 0x5, 0x40000040, r4}) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1092.674110] FAULT_INJECTION: forcing a failure. [ 1092.674110] name failslab, interval 1, probability 0, space 0, times 0 [ 1092.685523] CPU: 0 PID: 27770 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1092.693411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1092.702765] Call Trace: [ 1092.705368] dump_stack+0x13e/0x194 [ 1092.709007] should_fail.cold+0x10a/0x14b [ 1092.713161] should_failslab+0xd6/0x130 [ 1092.717142] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1092.722166] ? up_write+0x17/0x60 [ 1092.725643] ? __debugfs_create_file+0x2c6/0x3c0 [ 1092.730537] ? debugfs_create_file+0x37/0x60 [ 1092.734955] kvm_dev_ioctl+0xdc4/0x1480 [ 1092.738943] ? kvm_put_kvm+0xa90/0xa90 [ 1092.742839] ? kvm_put_kvm+0xa90/0xa90 [ 1092.746729] do_vfs_ioctl+0x75a/0xfe0 [ 1092.750533] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1092.755299] ? ioctl_preallocate+0x1a0/0x1a0 [ 1092.759726] ? security_file_ioctl+0x76/0xb0 [ 1092.764141] ? security_file_ioctl+0x83/0xb0 [ 1092.768559] SyS_ioctl+0x7f/0xb0 [ 1092.771928] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1092.775909] do_syscall_64+0x1d5/0x640 [ 1092.779806] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1092.784996] RIP: 0033:0x45c829 [ 1092.788212] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1092.795920] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1092.803176] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1092.810436] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1092.818048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1092.825389] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:13 executing program 2 (fault-call:11 fault-nth:64): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1093.215063] FAULT_INJECTION: forcing a failure. [ 1093.215063] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1093.227925] CPU: 0 PID: 27787 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1093.235824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1093.245179] Call Trace: [ 1093.247780] dump_stack+0x13e/0x194 [ 1093.251444] should_fail.cold+0x10a/0x14b [ 1093.255603] __alloc_pages_nodemask+0x1bf/0x700 [ 1093.260365] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1093.265387] ? inode_doinit_with_dentry+0x735/0xe30 [ 1093.270411] ? lockref_get+0x11/0x50 [ 1093.274132] alloc_pages_current+0xe7/0x1e0 [ 1093.278463] __get_free_pages+0xb/0x40 [ 1093.282354] inode_doinit_with_dentry+0x7b6/0xe30 [ 1093.287211] ? selinux_cred_free+0x70/0x70 [ 1093.291450] ? put_itimerspec64+0x190/0x190 [ 1093.295802] selinux_d_instantiate+0x23/0x30 [ 1093.300238] security_d_instantiate+0x54/0xd0 [ 1093.304741] d_instantiate+0x5a/0x90 [ 1093.308580] __debugfs_create_file+0x15b/0x3c0 [ 1093.313524] ? debugfs_create_file+0x37/0x60 [ 1093.317946] kvm_dev_ioctl+0xd71/0x1480 [ 1093.321956] ? kvm_put_kvm+0xa90/0xa90 [ 1093.325852] ? kvm_put_kvm+0xa90/0xa90 [ 1093.330117] do_vfs_ioctl+0x75a/0xfe0 [ 1093.333924] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1093.338689] ? ioctl_preallocate+0x1a0/0x1a0 [ 1093.343111] ? security_file_ioctl+0x76/0xb0 [ 1093.347524] ? security_file_ioctl+0x83/0xb0 [ 1093.352112] SyS_ioctl+0x7f/0xb0 [ 1093.355490] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1093.359480] do_syscall_64+0x1d5/0x640 [ 1093.363392] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1093.368589] RIP: 0033:0x45c829 [ 1093.371784] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1093.379511] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1093.386780] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1093.394051] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1093.401322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1093.409118] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:13 executing program 1 (fault-call:14 fault-nth:34): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:13 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x1) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) getsockopt$IP_SET_OP_GET_BYINDEX(r1, 0x1, 0x53, &(0x7f0000000100)={0x7, 0x7, 0x3}, &(0x7f0000000140)=0x28) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1093.750238] FAULT_INJECTION: forcing a failure. [ 1093.750238] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.761697] CPU: 0 PID: 27809 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1093.770721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1093.780076] Call Trace: [ 1093.782669] dump_stack+0x13e/0x194 [ 1093.786306] should_fail.cold+0x10a/0x14b [ 1093.790686] should_failslab+0xd6/0x130 [ 1093.794681] kmem_cache_alloc+0x2b5/0x770 [ 1093.798831] ? __d_lookup+0x3b4/0x670 [ 1093.802633] ? mark_held_locks+0xa6/0xf0 [ 1093.806697] __d_alloc+0x2a/0x9b0 [ 1093.810158] d_alloc+0x46/0x250 [ 1093.813440] __lookup_hash+0x51/0x180 [ 1093.817251] lookup_one_len+0x27c/0x3a0 [ 1093.821234] ? __lookup_hash+0x180/0x180 [ 1093.825301] start_creating+0xa1/0x1c0 [ 1093.829188] __debugfs_create_file+0x4f/0x3c0 [ 1093.833706] ? debugfs_create_file+0x37/0x60 [ 1093.838123] kvm_dev_ioctl+0xd71/0x1480 [ 1093.846408] ? kvm_put_kvm+0xa90/0xa90 [ 1093.850308] ? kvm_put_kvm+0xa90/0xa90 [ 1093.854213] do_vfs_ioctl+0x75a/0xfe0 [ 1093.858050] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1093.862815] ? ioctl_preallocate+0x1a0/0x1a0 [ 1093.867419] ? security_file_ioctl+0x76/0xb0 [ 1093.871831] ? security_file_ioctl+0x83/0xb0 [ 1093.876250] SyS_ioctl+0x7f/0xb0 [ 1093.879616] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1093.883597] do_syscall_64+0x1d5/0x640 [ 1093.887505] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1093.892695] RIP: 0033:0x45c829 [ 1093.895880] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1093.903611] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1093.910881] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1093.918189] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1093.925471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1093.932745] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:14 executing program 2 (fault-call:11 fault-nth:65): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1094.339044] FAULT_INJECTION: forcing a failure. [ 1094.339044] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.350634] CPU: 1 PID: 27828 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1094.358531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1094.367873] Call Trace: [ 1094.370451] dump_stack+0x13e/0x194 [ 1094.374069] should_fail.cold+0x10a/0x14b [ 1094.378204] should_failslab+0xd6/0x130 [ 1094.382167] kmem_cache_alloc+0x2b5/0x770 [ 1094.386301] ? lookup_one_len+0x284/0x3a0 [ 1094.390430] alloc_inode+0xa0/0x170 [ 1094.394034] new_inode_pseudo+0x14/0xe0 [ 1094.397997] new_inode+0x1b/0x40 [ 1094.401359] debugfs_get_inode+0x1a/0x130 [ 1094.405498] __debugfs_create_file+0x93/0x3c0 [ 1094.410320] ? debugfs_create_file+0x37/0x60 [ 1094.414728] kvm_dev_ioctl+0xd71/0x1480 [ 1094.418772] ? kvm_put_kvm+0xa90/0xa90 [ 1094.422641] ? kvm_put_kvm+0xa90/0xa90 [ 1094.426519] do_vfs_ioctl+0x75a/0xfe0 [ 1094.430301] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1094.435044] ? ioctl_preallocate+0x1a0/0x1a0 [ 1094.439455] ? security_file_ioctl+0x76/0xb0 [ 1094.443841] ? security_file_ioctl+0x83/0xb0 [ 1094.448230] SyS_ioctl+0x7f/0xb0 [ 1094.451584] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1094.455552] do_syscall_64+0x1d5/0x640 [ 1094.459437] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1094.464608] RIP: 0033:0x45c829 [ 1094.467801] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1094.475489] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1094.482827] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1094.490081] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.497348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1094.504615] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:15 executing program 1 (fault-call:14 fault-nth:35): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:15 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0xfffd, 0x3, 0xfffffffffffffffd}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1094.914005] FAULT_INJECTION: forcing a failure. [ 1094.914005] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.925501] CPU: 0 PID: 27851 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1094.933412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1094.942856] Call Trace: [ 1094.945458] dump_stack+0x13e/0x194 [ 1094.949107] should_fail.cold+0x10a/0x14b [ 1094.953264] should_failslab+0xd6/0x130 [ 1094.957244] kmem_cache_alloc+0x2b5/0x770 [ 1094.961745] ? lookup_one_len+0x284/0x3a0 [ 1094.965927] alloc_inode+0xa0/0x170 [ 1094.969560] new_inode_pseudo+0x14/0xe0 [ 1094.973558] new_inode+0x1b/0x40 [ 1094.977110] debugfs_get_inode+0x1a/0x130 [ 1094.981264] __debugfs_create_file+0x93/0x3c0 [ 1094.985763] ? debugfs_create_file+0x37/0x60 [ 1094.990620] kvm_dev_ioctl+0xd71/0x1480 [ 1094.994609] ? kvm_put_kvm+0xa90/0xa90 [ 1094.998507] ? kvm_put_kvm+0xa90/0xa90 [ 1095.002403] do_vfs_ioctl+0x75a/0xfe0 [ 1095.006252] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1095.011045] ? ioctl_preallocate+0x1a0/0x1a0 [ 1095.015469] ? security_file_ioctl+0x76/0xb0 [ 1095.019884] ? security_file_ioctl+0x83/0xb0 [ 1095.024392] SyS_ioctl+0x7f/0xb0 [ 1095.027777] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1095.031759] do_syscall_64+0x1d5/0x640 [ 1095.035661] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1095.040861] RIP: 0033:0x45c829 [ 1095.044396] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.053699] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1095.060974] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1095.068337] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.076047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1095.083360] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:15 executing program 2 (fault-call:11 fault-nth:66): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1095.474031] FAULT_INJECTION: forcing a failure. [ 1095.474031] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.485494] CPU: 0 PID: 27864 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1095.493388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1095.502756] Call Trace: [ 1095.505370] dump_stack+0x13e/0x194 [ 1095.509021] should_fail.cold+0x10a/0x14b [ 1095.513879] should_failslab+0xd6/0x130 [ 1095.517860] kmem_cache_alloc+0x2b5/0x770 [ 1095.522018] ? alloc_inode+0xa0/0x170 [ 1095.525847] selinux_inode_alloc_security+0xb1/0x2a0 [ 1095.530964] security_inode_alloc+0x8f/0xd0 [ 1095.535303] inode_init_always+0x576/0xb20 [ 1095.539552] alloc_inode+0x7a/0x170 [ 1095.543187] new_inode_pseudo+0x14/0xe0 [ 1095.547168] new_inode+0x1b/0x40 [ 1095.550543] debugfs_get_inode+0x1a/0x130 [ 1095.554700] __debugfs_create_file+0x93/0x3c0 [ 1095.559204] ? debugfs_create_file+0x37/0x60 [ 1095.563623] kvm_dev_ioctl+0xd71/0x1480 [ 1095.567627] ? kvm_put_kvm+0xa90/0xa90 [ 1095.571527] ? kvm_put_kvm+0xa90/0xa90 [ 1095.576383] do_vfs_ioctl+0x75a/0xfe0 [ 1095.580198] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1095.584974] ? ioctl_preallocate+0x1a0/0x1a0 [ 1095.589413] ? security_file_ioctl+0x76/0xb0 [ 1095.594095] ? security_file_ioctl+0x83/0xb0 [ 1095.598519] SyS_ioctl+0x7f/0xb0 [ 1095.601893] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1095.606063] do_syscall_64+0x1d5/0x640 [ 1095.609980] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1095.615173] RIP: 0033:0x45c829 [ 1095.618364] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.626085] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1095.633535] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1095.641424] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.648708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1095.656072] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:16 executing program 1 (fault-call:14 fault-nth:36): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1096.000849] FAULT_INJECTION: forcing a failure. [ 1096.000849] name failslab, interval 1, probability 0, space 0, times 0 [ 1096.012273] CPU: 1 PID: 27882 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1096.020601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.030046] Call Trace: [ 1096.032738] dump_stack+0x13e/0x194 [ 1096.036382] should_fail.cold+0x10a/0x14b [ 1096.040546] should_failslab+0xd6/0x130 [ 1096.044537] kmem_cache_alloc+0x2b5/0x770 [ 1096.048697] ? alloc_inode+0xa0/0x170 [ 1096.052596] selinux_inode_alloc_security+0xb1/0x2a0 [ 1096.057711] security_inode_alloc+0x8f/0xd0 [ 1096.062038] inode_init_always+0x576/0xb20 [ 1096.066281] alloc_inode+0x7a/0x170 [ 1096.069910] new_inode_pseudo+0x14/0xe0 [ 1096.073922] new_inode+0x1b/0x40 [ 1096.077324] debugfs_get_inode+0x1a/0x130 [ 1096.081475] __debugfs_create_file+0x93/0x3c0 [ 1096.085969] ? debugfs_create_file+0x37/0x60 [ 1096.090380] kvm_dev_ioctl+0xd71/0x1480 [ 1096.094364] ? kvm_put_kvm+0xa90/0xa90 [ 1096.098261] ? kvm_put_kvm+0xa90/0xa90 [ 1096.102165] do_vfs_ioctl+0x75a/0xfe0 [ 1096.105968] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1096.110731] ? ioctl_preallocate+0x1a0/0x1a0 [ 1096.115156] ? security_file_ioctl+0x76/0xb0 [ 1096.119571] ? security_file_ioctl+0x83/0xb0 [ 1096.124000] SyS_ioctl+0x7f/0xb0 [ 1096.127990] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1096.132065] do_syscall_64+0x1d5/0x640 [ 1096.135967] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1096.141159] RIP: 0033:0x45c829 [ 1096.144344] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1096.152197] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1096.159470] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1096.166743] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1096.174134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1096.181434] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:16 executing program 2 (fault-call:11 fault-nth:67): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1096.487476] FAULT_INJECTION: forcing a failure. [ 1096.487476] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1096.500436] CPU: 0 PID: 27891 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1096.508363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.517706] Call Trace: [ 1096.520287] dump_stack+0x13e/0x194 [ 1096.523904] should_fail.cold+0x10a/0x14b [ 1096.528230] __alloc_pages_nodemask+0x1bf/0x700 [ 1096.532881] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1096.537895] ? inode_doinit_with_dentry+0x735/0xe30 [ 1096.542911] ? lockref_get+0x11/0x50 [ 1096.546617] alloc_pages_current+0xe7/0x1e0 [ 1096.550947] __get_free_pages+0xb/0x40 [ 1096.554816] inode_doinit_with_dentry+0x7b6/0xe30 [ 1096.559649] ? selinux_cred_free+0x70/0x70 [ 1096.563865] ? put_itimerspec64+0x190/0x190 [ 1096.568186] selinux_d_instantiate+0x23/0x30 [ 1096.572591] security_d_instantiate+0x54/0xd0 [ 1096.577070] d_instantiate+0x5a/0x90 [ 1096.580767] __debugfs_create_file+0x15b/0x3c0 [ 1096.585328] ? debugfs_create_file+0x37/0x60 [ 1096.589810] kvm_dev_ioctl+0xd71/0x1480 [ 1096.593815] ? kvm_put_kvm+0xa90/0xa90 [ 1096.597696] ? kvm_put_kvm+0xa90/0xa90 [ 1096.601570] do_vfs_ioctl+0x75a/0xfe0 [ 1096.605357] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1096.610116] ? ioctl_preallocate+0x1a0/0x1a0 [ 1096.614512] ? security_file_ioctl+0x76/0xb0 [ 1096.618904] ? security_file_ioctl+0x83/0xb0 [ 1096.623293] SyS_ioctl+0x7f/0xb0 [ 1096.626675] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1096.630645] do_syscall_64+0x1d5/0x640 [ 1096.634542] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1096.639718] RIP: 0033:0x45c829 [ 1096.642906] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1096.650686] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1096.657946] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1096.665213] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1096.672468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1096.679725] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:17 executing program 1 (fault-call:14 fault-nth:37): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1096.990018] FAULT_INJECTION: forcing a failure. [ 1096.990018] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1097.002093] CPU: 1 PID: 27901 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1097.009995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1097.019353] Call Trace: [ 1097.021951] dump_stack+0x13e/0x194 [ 1097.025591] should_fail.cold+0x10a/0x14b [ 1097.029749] __alloc_pages_nodemask+0x1bf/0x700 [ 1097.034425] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1097.039446] ? inode_doinit_with_dentry+0x735/0xe30 [ 1097.044470] ? lockref_get+0x11/0x50 [ 1097.048190] alloc_pages_current+0xe7/0x1e0 [ 1097.052514] __get_free_pages+0xb/0x40 [ 1097.056469] inode_doinit_with_dentry+0x7b6/0xe30 [ 1097.061303] ? selinux_cred_free+0x70/0x70 [ 1097.065564] ? put_itimerspec64+0x190/0x190 [ 1097.069893] selinux_d_instantiate+0x23/0x30 [ 1097.074305] security_d_instantiate+0x54/0xd0 [ 1097.078805] d_instantiate+0x5a/0x90 [ 1097.082813] __debugfs_create_file+0x15b/0x3c0 [ 1097.087600] ? debugfs_create_file+0x37/0x60 [ 1097.092020] kvm_dev_ioctl+0xd71/0x1480 [ 1097.096001] ? kvm_put_kvm+0xa90/0xa90 [ 1097.099899] ? kvm_put_kvm+0xa90/0xa90 [ 1097.103790] do_vfs_ioctl+0x75a/0xfe0 [ 1097.107594] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1097.112441] ? ioctl_preallocate+0x1a0/0x1a0 [ 1097.116873] ? security_file_ioctl+0x76/0xb0 [ 1097.121299] ? security_file_ioctl+0x83/0xb0 [ 1097.125728] SyS_ioctl+0x7f/0xb0 [ 1097.129102] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1097.133083] do_syscall_64+0x1d5/0x640 [ 1097.136984] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1097.142177] RIP: 0033:0x45c829 [ 1097.145365] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1097.153072] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1097.160343] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1097.167616] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1097.174888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1097.182159] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:17 executing program 2 (fault-call:11 fault-nth:68): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1097.517216] FAULT_INJECTION: forcing a failure. [ 1097.517216] name failslab, interval 1, probability 0, space 0, times 0 [ 1097.529748] CPU: 1 PID: 27911 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1097.537650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1097.547011] Call Trace: [ 1097.549611] dump_stack+0x13e/0x194 [ 1097.553429] should_fail.cold+0x10a/0x14b [ 1097.557593] should_failslab+0xd6/0x130 [ 1097.561579] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1097.566263] ? up_write+0x17/0x60 [ 1097.569728] ? __debugfs_create_file+0x2c6/0x3c0 [ 1097.574494] ? debugfs_create_file+0x37/0x60 [ 1097.578917] kvm_dev_ioctl+0xdc4/0x1480 [ 1097.582904] ? kvm_put_kvm+0xa90/0xa90 [ 1097.586803] ? kvm_put_kvm+0xa90/0xa90 [ 1097.590697] do_vfs_ioctl+0x75a/0xfe0 [ 1097.594505] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1097.599300] ? ioctl_preallocate+0x1a0/0x1a0 [ 1097.603729] ? security_file_ioctl+0x76/0xb0 [ 1097.608185] ? security_file_ioctl+0x83/0xb0 [ 1097.612626] SyS_ioctl+0x7f/0xb0 [ 1097.615998] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1097.620024] do_syscall_64+0x1d5/0x640 [ 1097.623924] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1097.629123] RIP: 0033:0x45c829 [ 1097.632311] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1097.640018] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1097.647287] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1097.654561] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1097.664176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1097.671453] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:18 executing program 1 (fault-call:14 fault-nth:38): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:18 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) sigaltstack(&(0x7f0000010000/0x4000)=nil, &(0x7f0000000180)) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x0, 0x400000) getsockopt$ARPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x63, &(0x7f0000000280)={'icmp\x00'}, &(0x7f00000002c0)=0x1e) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, &(0x7f0000000300)={0x0, 0x6, 0xfffffffa}) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000100)={'icmp6\x00'}, &(0x7f0000000140)=0x1e) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) write$binfmt_misc(r3, &(0x7f0000000340)={'syz0', "27760e1ee4a285bbcd2b07835f79b3de3fba776b55fd1917"}, 0x1c) [ 1098.084698] FAULT_INJECTION: forcing a failure. [ 1098.084698] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.096192] CPU: 0 PID: 27928 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1098.104279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1098.113638] Call Trace: [ 1098.116281] dump_stack+0x13e/0x194 [ 1098.119924] should_fail.cold+0x10a/0x14b [ 1098.124090] should_failslab+0xd6/0x130 [ 1098.128079] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1098.132843] ? up_write+0x17/0x60 [ 1098.136312] ? __debugfs_create_file+0x2c6/0x3c0 [ 1098.141071] ? debugfs_create_file+0x37/0x60 [ 1098.145518] kvm_dev_ioctl+0xdc4/0x1480 [ 1098.149507] ? kvm_put_kvm+0xa90/0xa90 [ 1098.153412] ? kvm_put_kvm+0xa90/0xa90 [ 1098.157310] do_vfs_ioctl+0x75a/0xfe0 [ 1098.161140] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1098.165984] ? ioctl_preallocate+0x1a0/0x1a0 [ 1098.170401] ? security_file_ioctl+0x76/0xb0 [ 1098.174816] ? security_file_ioctl+0x83/0xb0 [ 1098.179231] SyS_ioctl+0x7f/0xb0 [ 1098.182603] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1098.186599] do_syscall_64+0x1d5/0x640 [ 1098.190503] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1098.195696] RIP: 0033:0x45c829 [ 1098.198887] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1098.206601] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1098.213877] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1098.221157] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1098.229238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1098.236515] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:18 executing program 2 (fault-call:11 fault-nth:69): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1098.548011] FAULT_INJECTION: forcing a failure. [ 1098.548011] name failslab, interval 1, probability 0, space 0, times 0 [ 1098.559895] CPU: 1 PID: 27939 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1098.567784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1098.577142] Call Trace: [ 1098.579749] dump_stack+0x13e/0x194 [ 1098.583387] should_fail.cold+0x10a/0x14b [ 1098.587561] should_failslab+0xd6/0x130 [ 1098.591544] kmem_cache_alloc+0x2b5/0x770 [ 1098.595823] ? __d_lookup+0x3b4/0x670 [ 1098.599634] ? mark_held_locks+0xa6/0xf0 [ 1098.603699] __d_alloc+0x2a/0x9b0 [ 1098.607163] d_alloc+0x46/0x250 [ 1098.610450] __lookup_hash+0x51/0x180 [ 1098.614258] lookup_one_len+0x27c/0x3a0 [ 1098.618234] ? __lookup_hash+0x180/0x180 [ 1098.622301] start_creating+0xa1/0x1c0 [ 1098.626203] __debugfs_create_file+0x4f/0x3c0 [ 1098.630717] ? debugfs_create_file+0x37/0x60 [ 1098.635137] kvm_dev_ioctl+0xd71/0x1480 [ 1098.639134] ? kvm_put_kvm+0xa90/0xa90 [ 1098.643031] ? kvm_put_kvm+0xa90/0xa90 [ 1098.646930] do_vfs_ioctl+0x75a/0xfe0 [ 1098.650745] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1098.655521] ? ioctl_preallocate+0x1a0/0x1a0 [ 1098.659946] ? security_file_ioctl+0x76/0xb0 [ 1098.664358] ? security_file_ioctl+0x83/0xb0 [ 1098.668775] SyS_ioctl+0x7f/0xb0 [ 1098.672144] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1098.676207] do_syscall_64+0x1d5/0x640 [ 1098.680112] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1098.685299] RIP: 0033:0x45c829 [ 1098.688510] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1098.696230] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1098.703503] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1098.710774] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1098.718048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1098.725355] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:19 executing program 1 (fault-call:14 fault-nth:39): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:19 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x20001, 0x0) ioctl$USBDEVFS_DISCARDURB(r2, 0x550b, &(0x7f0000000140)=0x4) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r8 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x2002, 0x0) setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(r8, 0x111, 0x3, 0x1, 0x4) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1099.139555] FAULT_INJECTION: forcing a failure. [ 1099.139555] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.151268] CPU: 1 PID: 27961 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1099.159775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1099.169316] Call Trace: [ 1099.172180] dump_stack+0x13e/0x194 [ 1099.175826] should_fail.cold+0x10a/0x14b [ 1099.179994] should_failslab+0xd6/0x130 [ 1099.183977] kmem_cache_alloc+0x2b5/0x770 [ 1099.188131] ? __d_lookup+0x3b4/0x670 [ 1099.191944] ? mark_held_locks+0xa6/0xf0 [ 1099.196013] __d_alloc+0x2a/0x9b0 [ 1099.199477] d_alloc+0x46/0x250 [ 1099.202847] __lookup_hash+0x51/0x180 [ 1099.206653] lookup_one_len+0x27c/0x3a0 [ 1099.210632] ? __lookup_hash+0x180/0x180 [ 1099.214700] start_creating+0xa1/0x1c0 [ 1099.218595] __debugfs_create_file+0x4f/0x3c0 [ 1099.223096] ? debugfs_create_file+0x37/0x60 [ 1099.227513] kvm_dev_ioctl+0xd71/0x1480 [ 1099.231499] ? kvm_put_kvm+0xa90/0xa90 [ 1099.235404] ? kvm_put_kvm+0xa90/0xa90 13:50:19 executing program 2 (fault-call:11 fault-nth:70): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1099.239295] do_vfs_ioctl+0x75a/0xfe0 [ 1099.243100] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1099.247866] ? ioctl_preallocate+0x1a0/0x1a0 [ 1099.252286] ? security_file_ioctl+0x76/0xb0 [ 1099.256715] ? security_file_ioctl+0x83/0xb0 [ 1099.261130] SyS_ioctl+0x7f/0xb0 [ 1099.264496] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1099.268478] do_syscall_64+0x1d5/0x640 [ 1099.272380] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1099.277579] RIP: 0033:0x45c829 [ 1099.280791] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1099.288545] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1099.295855] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1099.303229] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1099.310679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1099.317956] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 [ 1099.593957] FAULT_INJECTION: forcing a failure. [ 1099.593957] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.605448] CPU: 0 PID: 27974 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1099.613340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1099.622789] Call Trace: [ 1099.625388] dump_stack+0x13e/0x194 [ 1099.629032] should_fail.cold+0x10a/0x14b [ 1099.633190] should_failslab+0xd6/0x130 [ 1099.637174] kmem_cache_alloc+0x2b5/0x770 [ 1099.641332] ? lookup_one_len+0x284/0x3a0 [ 1099.645488] alloc_inode+0xa0/0x170 [ 1099.649123] new_inode_pseudo+0x14/0xe0 [ 1099.653105] new_inode+0x1b/0x40 [ 1099.656566] debugfs_get_inode+0x1a/0x130 [ 1099.660899] __debugfs_create_file+0x93/0x3c0 [ 1099.665403] ? debugfs_create_file+0x37/0x60 [ 1099.669824] kvm_dev_ioctl+0xd71/0x1480 [ 1099.673818] ? kvm_put_kvm+0xa90/0xa90 [ 1099.677724] ? kvm_put_kvm+0xa90/0xa90 [ 1099.681618] do_vfs_ioctl+0x75a/0xfe0 [ 1099.685445] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1099.690209] ? ioctl_preallocate+0x1a0/0x1a0 [ 1099.694635] ? security_file_ioctl+0x76/0xb0 [ 1099.699052] ? security_file_ioctl+0x83/0xb0 [ 1099.704082] SyS_ioctl+0x7f/0xb0 [ 1099.707459] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1099.711443] do_syscall_64+0x1d5/0x640 [ 1099.715432] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1099.720633] RIP: 0033:0x45c829 [ 1099.723849] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1099.731565] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1099.738843] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1099.747165] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1099.754445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1099.762458] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:20 executing program 1 (fault-call:14 fault-nth:40): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:20 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) setsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f00000002c0)=0x3f, 0x4) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) r7 = dup2(r6, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r7, &(0x7f0000000100)="3681dbf453f2c33c0b573cc50dfbe28d3a57df07393df732e50c5e3a26f56b1f20677dcd8fa481b275b37844691f9302a7133fbd442fc389e2ee0df9f088e76d06a43b06db213f45005012d174c2c25424140f352e", &(0x7f0000000180)="46998d7fae8f28f5cf337ef3cbcd"}, 0x20) r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1100.157162] FAULT_INJECTION: forcing a failure. [ 1100.157162] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.168596] CPU: 1 PID: 27995 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1100.176486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.185843] Call Trace: [ 1100.188444] dump_stack+0x13e/0x194 [ 1100.192087] should_fail.cold+0x10a/0x14b [ 1100.196253] should_failslab+0xd6/0x130 [ 1100.200240] kmem_cache_alloc+0x2b5/0x770 [ 1100.204400] ? lookup_one_len+0x284/0x3a0 [ 1100.208739] alloc_inode+0xa0/0x170 [ 1100.212476] new_inode_pseudo+0x14/0xe0 [ 1100.216476] new_inode+0x1b/0x40 [ 1100.219849] debugfs_get_inode+0x1a/0x130 [ 1100.224000] __debugfs_create_file+0x93/0x3c0 [ 1100.228502] ? debugfs_create_file+0x37/0x60 [ 1100.233091] kvm_dev_ioctl+0xd71/0x1480 [ 1100.237087] ? kvm_put_kvm+0xa90/0xa90 [ 1100.240981] ? kvm_put_kvm+0xa90/0xa90 [ 1100.244885] do_vfs_ioctl+0x75a/0xfe0 [ 1100.248689] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1100.253448] ? ioctl_preallocate+0x1a0/0x1a0 [ 1100.257874] ? security_file_ioctl+0x76/0xb0 [ 1100.262287] ? security_file_ioctl+0x83/0xb0 [ 1100.266702] SyS_ioctl+0x7f/0xb0 [ 1100.270084] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1100.274067] do_syscall_64+0x1d5/0x640 [ 1100.277967] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1100.283164] RIP: 0033:0x45c829 [ 1100.286469] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1100.294178] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1100.301453] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1100.308725] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.316001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1100.323270] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:20 executing program 2 (fault-call:11 fault-nth:71): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1100.610066] FAULT_INJECTION: forcing a failure. [ 1100.610066] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.622810] CPU: 0 PID: 28007 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1100.630795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.640249] Call Trace: [ 1100.642887] dump_stack+0x13e/0x194 [ 1100.646528] should_fail.cold+0x10a/0x14b [ 1100.650691] should_failslab+0xd6/0x130 [ 1100.654674] kmem_cache_alloc+0x2b5/0x770 [ 1100.658829] ? alloc_inode+0xa0/0x170 [ 1100.662639] selinux_inode_alloc_security+0xb1/0x2a0 [ 1100.667750] security_inode_alloc+0x8f/0xd0 [ 1100.672166] inode_init_always+0x576/0xb20 [ 1100.676407] alloc_inode+0x7a/0x170 [ 1100.680035] new_inode_pseudo+0x14/0xe0 [ 1100.684014] new_inode+0x1b/0x40 [ 1100.687392] debugfs_get_inode+0x1a/0x130 [ 1100.691549] __debugfs_create_file+0x93/0x3c0 [ 1100.696053] ? debugfs_create_file+0x37/0x60 [ 1100.700473] kvm_dev_ioctl+0xd71/0x1480 [ 1100.704462] ? kvm_put_kvm+0xa90/0xa90 [ 1100.708359] ? kvm_put_kvm+0xa90/0xa90 [ 1100.712700] do_vfs_ioctl+0x75a/0xfe0 [ 1100.716509] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1100.721365] ? ioctl_preallocate+0x1a0/0x1a0 [ 1100.725797] ? security_file_ioctl+0x76/0xb0 [ 1100.730215] ? security_file_ioctl+0x83/0xb0 [ 1100.734630] SyS_ioctl+0x7f/0xb0 [ 1100.737999] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1100.741977] do_syscall_64+0x1d5/0x640 [ 1100.745886] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1100.751074] RIP: 0033:0x45c829 [ 1100.754263] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1100.761975] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1100.769358] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1100.776635] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.783910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1100.791187] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:21 executing program 1 (fault-call:14 fault-nth:41): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:21 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) socket$inet6(0xa, 0x2, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000500)}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000140)={{0xff, 0x3}, {0x6, 0x12}, 0xf2b, 0x3, 0x9}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r6, 0xae00, 0x0) r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) write$ppp(r7, &(0x7f0000001680)="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", 0xfd) writev(r6, &(0x7f0000001540)=[{&(0x7f00000015c0)="952d8062236d61fd9e9a777f5849c5492eca13b7b5bda27a271c0565e58e07e9c1da6dee48bbc10b889c3206ba28eeda8957f9e2627982c23dc9dad0efb6683ce96240bebc7de257f246a3c43bc021470ae51db20f7a0dd8c1e8b0a0cd6042218bae0ccb4e6653e8ec802974deaa1858bd689fe091dd2c61b6aa1cb974abe4fb943d7d29d3af45fd5483e83b2fe633234d14b58287360e45d12e619f538f", 0x9e}, {&(0x7f0000000000)="57e6af0e1e47d38c9b8c9ebc35899789fd405ca9a08c0d5a2d33a79be79b4d8858da12d2c797ed0a6c5c030d86132cc6ab94", 0x32}, {&(0x7f0000000400)="2530af5fd0bf1bd8cb2e974faf93dff46dfa866f4b8b928101d394d60190187f201281eda06990e26a9908586410b08ebdaeef644c98cc76b16aa6aa788eec195a04e8b39fcceda0ddf415e55f41b5b6e49bac953716f3b4ad4e137d9d2112f551192efe12cc80fa5a034b4f17e7cbd2da823f57892a4c00a25e13897bbe9e860ece164eca0ad29f5c12dd810ec835ab89943b010c01e86bdc65f5597f54e45006bf215e53afa3175992fda40aeebc5a6a8a97f1eb78c8234e338e8eb98ff3894827d72d918dc09c67", 0xc9}, {&(0x7f0000000240)="1cb5b0864e581810a28ece5b5c95edf4de7279c0f48034f2412fa4f62166baa0121bb43cbee6e612bbc14c9df4675a65e3d895f03ff36912d4948e22cde48a7aed0a18b4ff03523ecee621a41a04ec2a", 0x50}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)='\f', 0x1}], 0x6) [ 1101.169191] FAULT_INJECTION: forcing a failure. [ 1101.169191] name failslab, interval 1, probability 0, space 0, times 0 [ 1101.180609] CPU: 0 PID: 28024 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1101.189811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1101.199168] Call Trace: [ 1101.201788] dump_stack+0x13e/0x194 [ 1101.205468] should_fail.cold+0x10a/0x14b [ 1101.209627] should_failslab+0xd6/0x130 [ 1101.213615] kmem_cache_alloc+0x2b5/0x770 [ 1101.217803] ? alloc_inode+0xa0/0x170 [ 1101.221609] selinux_inode_alloc_security+0xb1/0x2a0 [ 1101.226717] security_inode_alloc+0x8f/0xd0 [ 1101.231305] inode_init_always+0x576/0xb20 [ 1101.235543] alloc_inode+0x7a/0x170 [ 1101.239189] new_inode_pseudo+0x14/0xe0 [ 1101.243178] new_inode+0x1b/0x40 [ 1101.246547] debugfs_get_inode+0x1a/0x130 [ 1101.250695] __debugfs_create_file+0x93/0x3c0 [ 1101.255191] ? debugfs_create_file+0x37/0x60 [ 1101.259609] kvm_dev_ioctl+0xd71/0x1480 [ 1101.263591] ? kvm_put_kvm+0xa90/0xa90 [ 1101.267499] ? kvm_put_kvm+0xa90/0xa90 [ 1101.271385] do_vfs_ioctl+0x75a/0xfe0 [ 1101.275184] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1101.280303] ? ioctl_preallocate+0x1a0/0x1a0 [ 1101.284722] ? security_file_ioctl+0x76/0xb0 [ 1101.289244] ? security_file_ioctl+0x83/0xb0 [ 1101.293748] SyS_ioctl+0x7f/0xb0 [ 1101.297115] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1101.301096] do_syscall_64+0x1d5/0x640 [ 1101.304994] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1101.310181] RIP: 0033:0x45c829 [ 1101.313374] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1101.321178] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1101.328482] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1101.336012] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1101.343285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1101.350557] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:21 executing program 2 (fault-call:11 fault-nth:72): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:21 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) socket$unix(0x1, 0x5, 0x0) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$UI_GET_SYSNAME(r2, 0x8040552c, &(0x7f0000000040)) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0xc0900, 0x0) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000100)) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1101.705969] FAULT_INJECTION: forcing a failure. [ 1101.705969] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1101.718115] CPU: 0 PID: 28040 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1101.726012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1101.735546] Call Trace: [ 1101.738146] dump_stack+0x13e/0x194 [ 1101.741791] should_fail.cold+0x10a/0x14b [ 1101.745948] __alloc_pages_nodemask+0x1bf/0x700 [ 1101.750633] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1101.755659] ? inode_doinit_with_dentry+0x735/0xe30 [ 1101.761644] ? lockref_get+0x11/0x50 [ 1101.765369] alloc_pages_current+0xe7/0x1e0 [ 1101.769704] __get_free_pages+0xb/0x40 [ 1101.773597] inode_doinit_with_dentry+0x7b6/0xe30 [ 1101.778450] ? selinux_cred_free+0x70/0x70 [ 1101.782810] ? put_itimerspec64+0x190/0x190 [ 1101.787146] selinux_d_instantiate+0x23/0x30 [ 1101.791582] security_d_instantiate+0x54/0xd0 [ 1101.796132] d_instantiate+0x5a/0x90 [ 1101.799861] __debugfs_create_file+0x15b/0x3c0 [ 1101.804455] ? debugfs_create_file+0x37/0x60 [ 1101.808886] kvm_dev_ioctl+0xd71/0x1480 [ 1101.812875] ? kvm_put_kvm+0xa90/0xa90 [ 1101.816779] ? kvm_put_kvm+0xa90/0xa90 [ 1101.820677] do_vfs_ioctl+0x75a/0xfe0 [ 1101.824490] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1101.829266] ? ioctl_preallocate+0x1a0/0x1a0 [ 1101.833717] ? security_file_ioctl+0x76/0xb0 [ 1101.838133] ? security_file_ioctl+0x83/0xb0 [ 1101.842548] SyS_ioctl+0x7f/0xb0 [ 1101.845919] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1101.849903] do_syscall_64+0x1d5/0x640 [ 1101.853803] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1101.858998] RIP: 0033:0x45c829 [ 1101.862195] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1101.869907] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1101.877544] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1101.884829] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1101.892115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1101.899392] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:22 executing program 1 (fault-call:14 fault-nth:42): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1102.175776] FAULT_INJECTION: forcing a failure. [ 1102.175776] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1102.187756] CPU: 0 PID: 28052 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1102.195646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.205003] Call Trace: [ 1102.207599] dump_stack+0x13e/0x194 [ 1102.211248] should_fail.cold+0x10a/0x14b [ 1102.215406] __alloc_pages_nodemask+0x1bf/0x700 [ 1102.220088] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1102.225119] ? inode_doinit_with_dentry+0x735/0xe30 [ 1102.230142] ? lockref_get+0x11/0x50 [ 1102.233861] alloc_pages_current+0xe7/0x1e0 [ 1102.238189] __get_free_pages+0xb/0x40 [ 1102.242077] inode_doinit_with_dentry+0x7b6/0xe30 [ 1102.246928] ? selinux_cred_free+0x70/0x70 [ 1102.251165] ? put_itimerspec64+0x190/0x190 [ 1102.255528] selinux_d_instantiate+0x23/0x30 [ 1102.260125] security_d_instantiate+0x54/0xd0 [ 1102.264625] d_instantiate+0x5a/0x90 [ 1102.268343] __debugfs_create_file+0x15b/0x3c0 [ 1102.272928] ? debugfs_create_file+0x37/0x60 [ 1102.277343] kvm_dev_ioctl+0xd71/0x1480 [ 1102.281427] ? kvm_put_kvm+0xa90/0xa90 [ 1102.285330] ? kvm_put_kvm+0xa90/0xa90 [ 1102.289224] do_vfs_ioctl+0x75a/0xfe0 [ 1102.293116] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1102.297973] ? ioctl_preallocate+0x1a0/0x1a0 [ 1102.302395] ? security_file_ioctl+0x76/0xb0 [ 1102.306807] ? security_file_ioctl+0x83/0xb0 [ 1102.311223] SyS_ioctl+0x7f/0xb0 [ 1102.314601] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1102.318664] do_syscall_64+0x1d5/0x640 13:50:22 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$ARPT_SO_GET_REVISION_TARGET(r6, 0x0, 0x63, &(0x7f0000000100)={'HL\x00'}, &(0x7f0000000140)=0x1e) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1102.322576] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1102.327763] RIP: 0033:0x45c829 [ 1102.330948] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1102.338661] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1102.345932] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1102.353551] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.360822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1102.368095] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:22 executing program 2 (fault-call:11 fault-nth:73): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:22 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r1, 0x800443d3, &(0x7f0000000040)={@any, 0x1f, 0xfff, 0x8}) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32, @ANYBLOB="00000000fff7ffff000000220900010068667363000000000800024c8bb79a72782f12376245e34eef54b3a8b0cce19e0528b94371e4a096f6b44f954ff22bd7bfc4b5caa7ae9cf7d71d3c07f28fb69a904739484ec10456985b19fb995e001d8c36c830951b0ee8f13dc11f79c5319850d94a39b3a3ecc58faefcb413afd96c3ba0273c921c2fbcb71895cda610ce534a0c071b5dee63ef3b9437008cf47390b0d24bc049afe4678c973353b80ffc31906532930cb797e288152a17145e081a7d75b681d81bd6cfe401181915b69a68b86b4eb293254dc95d826e89f5eede12"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32, @ANYBLOB="0000000000000000080000000900010072737670afa091fc0190b47c0a053ea59fbc3265ec967a812987aba4cc3c5241c6cbfc5cbc0a040fc3d9b6941779dbc180f5ed0f4653057873f7eea117dca210c6be09b1e877fd610b8e4e42b0b40e5e650114abe741f597a2ccfe6053e566d005b839871accd23f554098874033d7c38356c2e83afdfc08ebdaa560f8d95300deb7eeae66e6ed4e4b0bec943f82d82d3ff052e2fdd26f7d2ca2de5c5463d793c080e9c4e1bd7fc9dc12d11a053a964b21bbbb3f0e36c797060fe9a1d12f612866cdf6e50ed0ac57c60e276e52b2ba58553d927013b33cebb366b328e2e7c01025d1a19ba953c4720df54e"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=ANY=[@ANYBLOB="240000001100250d000000210000000000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/12], 0x24}}, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001100)={&(0x7f00000005c0)=ANY=[@ANYBLOB="bc040000", @ANYRES16=0x0, @ANYBLOB="00082dbd7000fcdbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="4800028044000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005000000110004006163746976656261636b75700000000008000100", @ANYRES32=0x0, @ANYBLOB="6c01028038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400251d000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000400000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000050003000300000008000400ff01000040000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400de05000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040006000000080007000000000008000100", @ANYRES32=0x0, @ANYBLOB="640102803c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f696e74657276616c0000000000000000000000050003000300000008000400090000003c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000009000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b0000000800040000000000080007000000000038000100240001006e6f746966795f70656572735f636f756e7400000000000000000000000000000500030003000000080004000800000038000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000500030003000000080004000600000008000100", @ANYRES32=r2, @ANYBLOB="ac00028038000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000050003000300000008000400020000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400740d000008000100", @ANYRES32=0x0, @ANYBLOB="bc00028038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ff01000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000600000008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000400000008000600", @ANYRES32=0x0, @ANYBLOB="b643d9cc7fd3d2b03836fe303a76652757fd1d225a4c6aba75619ab35dbb3f7034de06000000000000009846e5c5f55c73b3f58187b84a1fa754c43522138e6637991f9840d11854b438671618034f9e76be542baedc9dd92860b8cef6656a00"/110], 0x4bc}}, 0x850) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1102.713383] FAULT_INJECTION: forcing a failure. [ 1102.713383] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.724864] CPU: 0 PID: 28075 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1102.732796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.742153] Call Trace: [ 1102.744748] dump_stack+0x13e/0x194 [ 1102.748386] should_fail.cold+0x10a/0x14b [ 1102.752549] should_failslab+0xd6/0x130 [ 1102.756616] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1102.761327] ? up_write+0x17/0x60 [ 1102.764786] ? __debugfs_create_file+0x2c6/0x3c0 [ 1102.769548] ? debugfs_create_file+0x37/0x60 [ 1102.773968] kvm_dev_ioctl+0xdc4/0x1480 [ 1102.777960] ? kvm_put_kvm+0xa90/0xa90 [ 1102.782757] ? retint_kernel+0x2d/0x2d [ 1102.786651] ? kvm_put_kvm+0xa90/0xa90 [ 1102.790573] do_vfs_ioctl+0x75a/0xfe0 [ 1102.794387] ? ioctl_preallocate+0x1a0/0x1a0 [ 1102.798809] ? retint_kernel+0x2d/0x2d [ 1102.802708] ? do_vfs_ioctl+0xc/0xfe0 [ 1102.807820] SyS_ioctl+0x7f/0xb0 [ 1102.811225] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1102.815205] do_syscall_64+0x1d5/0x640 [ 1102.819191] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1102.824384] RIP: 0033:0x45c829 [ 1102.827582] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1102.835300] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1102.842572] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1102.849875] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.857149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1102.864429] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:23 executing program 1 (fault-call:14 fault-nth:43): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1103.281949] FAULT_INJECTION: forcing a failure. [ 1103.281949] name failslab, interval 1, probability 0, space 0, times 0 [ 1103.293439] CPU: 0 PID: 28098 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1103.301341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1103.310878] Call Trace: [ 1103.313477] dump_stack+0x13e/0x194 [ 1103.317112] should_fail.cold+0x10a/0x14b [ 1103.321317] should_failslab+0xd6/0x130 [ 1103.325298] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1103.329999] ? up_write+0x17/0x60 [ 1103.333458] ? __debugfs_create_file+0x2c6/0x3c0 [ 1103.338215] ? debugfs_create_file+0x37/0x60 [ 1103.342631] kvm_dev_ioctl+0xdc4/0x1480 [ 1103.346614] ? kvm_put_kvm+0xa90/0xa90 [ 1103.350503] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1103.354481] ? kvm_put_kvm+0xa90/0xa90 [ 1103.358375] do_vfs_ioctl+0x75a/0xfe0 [ 1103.362175] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1103.366939] ? ioctl_preallocate+0x1a0/0x1a0 [ 1103.371356] ? security_file_ioctl+0x76/0xb0 [ 1103.375763] ? security_file_ioctl+0x83/0xb0 [ 1103.380181] SyS_ioctl+0x7f/0xb0 [ 1103.383549] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1103.387533] do_syscall_64+0x1d5/0x640 [ 1103.391433] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1103.396623] RIP: 0033:0x45c829 [ 1103.399812] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1103.407526] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1103.414797] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1103.422065] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1103.429335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1103.436606] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:23 executing program 2 (fault-call:11 fault-nth:74): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:24 executing program 4: bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22, 0x6, @private2, 0xffff}, 0x1c) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$ASHMEM_GET_SIZE(r2, 0x7704, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:24 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) sendmsg$nl_route(r4, &(0x7f00000002c0)={&(0x7f0000000040), 0xc, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000d5205254c3ff1e00010026bd7000fddbdf252000000025d0477bad3e0356a23b876b24f0e45177973a99e9582c6e5bc7013cae410a48f3f2988d64dc98ffffff01000000"], 0x14}, 0x1, 0x0, 0x0, 0x20400d0}, 0x91) fcntl$getown(r3, 0x9) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1103.794191] FAULT_INJECTION: forcing a failure. [ 1103.794191] name failslab, interval 1, probability 0, space 0, times 0 [ 1103.805715] CPU: 0 PID: 28121 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1103.813605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1103.822962] Call Trace: [ 1103.825573] dump_stack+0x13e/0x194 [ 1103.829211] should_fail.cold+0x10a/0x14b [ 1103.833371] should_failslab+0xd6/0x130 [ 1103.837356] kmem_cache_alloc+0x2b5/0x770 [ 1103.841513] ? __d_lookup+0x3b4/0x670 [ 1103.845323] ? mark_held_locks+0xa6/0xf0 [ 1103.849394] __d_alloc+0x2a/0x9b0 [ 1103.852855] d_alloc+0x46/0x250 [ 1103.856139] __lookup_hash+0x51/0x180 [ 1103.859948] lookup_one_len+0x27c/0x3a0 [ 1103.863928] ? __lookup_hash+0x180/0x180 [ 1103.868001] start_creating+0xa1/0x1c0 [ 1103.871892] __debugfs_create_file+0x4f/0x3c0 [ 1103.876481] ? debugfs_create_file+0x37/0x60 [ 1103.880900] kvm_dev_ioctl+0xd71/0x1480 [ 1103.884889] ? kvm_put_kvm+0xa90/0xa90 [ 1103.888780] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1103.892757] ? kvm_put_kvm+0xa90/0xa90 [ 1103.896650] do_vfs_ioctl+0x75a/0xfe0 [ 1103.900454] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1103.905213] ? ioctl_preallocate+0x1a0/0x1a0 [ 1103.909634] ? security_file_ioctl+0x76/0xb0 [ 1103.914050] ? security_file_ioctl+0x83/0xb0 [ 1103.918467] SyS_ioctl+0x7f/0xb0 [ 1103.921843] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1103.925824] do_syscall_64+0x1d5/0x640 [ 1103.929726] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1103.934917] RIP: 0033:0x45c829 [ 1103.938135] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1103.945847] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1103.953120] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1103.960429] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1103.967705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1103.975075] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:24 executing program 1 (fault-call:14 fault-nth:44): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1104.375501] FAULT_INJECTION: forcing a failure. [ 1104.375501] name failslab, interval 1, probability 0, space 0, times 0 [ 1104.386964] CPU: 1 PID: 28144 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1104.394890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1104.404246] Call Trace: [ 1104.406850] dump_stack+0x13e/0x194 [ 1104.410492] should_fail.cold+0x10a/0x14b [ 1104.414649] should_failslab+0xd6/0x130 [ 1104.418631] kmem_cache_alloc+0x2b5/0x770 [ 1104.422785] ? __d_lookup+0x3b4/0x670 [ 1104.426588] ? mark_held_locks+0xa6/0xf0 [ 1104.430662] __d_alloc+0x2a/0x9b0 [ 1104.434293] d_alloc+0x46/0x250 [ 1104.437576] __lookup_hash+0x51/0x180 [ 1104.441380] lookup_one_len+0x27c/0x3a0 [ 1104.445357] ? __lookup_hash+0x180/0x180 [ 1104.449423] start_creating+0xa1/0x1c0 [ 1104.453315] __debugfs_create_file+0x4f/0x3c0 [ 1104.457814] ? debugfs_create_file+0x37/0x60 [ 1104.462227] kvm_dev_ioctl+0xd71/0x1480 [ 1104.466212] ? kvm_put_kvm+0xa90/0xa90 [ 1104.470107] ? kvm_put_kvm+0xa90/0xa90 [ 1104.473995] do_vfs_ioctl+0x75a/0xfe0 [ 1104.477796] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1104.482556] ? ioctl_preallocate+0x1a0/0x1a0 [ 1104.486976] ? security_file_ioctl+0x76/0xb0 [ 1104.491387] ? security_file_ioctl+0x83/0xb0 [ 1104.495798] SyS_ioctl+0x7f/0xb0 [ 1104.499255] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1104.503232] do_syscall_64+0x1d5/0x640 [ 1104.507126] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1104.512313] RIP: 0033:0x45c829 [ 1104.515501] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1104.523210] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1104.530481] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1104.537750] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1104.545023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1104.552292] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:24 executing program 2 (fault-call:11 fault-nth:75): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1104.670502] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=2 sclass=netlink_tcpdiag_socket pid=28126 comm=syz-executor.5 13:50:25 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$TIOCGICOUNT(r1, 0x545d, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r4, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x14, r5, 0x8, 0x70bd29, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1104.847715] FAULT_INJECTION: forcing a failure. [ 1104.847715] name failslab, interval 1, probability 0, space 0, times 0 [ 1104.859212] CPU: 1 PID: 28160 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1104.867189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1104.876550] Call Trace: [ 1104.879159] dump_stack+0x13e/0x194 [ 1104.882798] should_fail.cold+0x10a/0x14b [ 1104.886967] should_failslab+0xd6/0x130 [ 1104.890959] kmem_cache_alloc+0x2b5/0x770 [ 1104.895112] ? lookup_one_len+0x284/0x3a0 [ 1104.899276] alloc_inode+0xa0/0x170 [ 1104.902909] new_inode_pseudo+0x14/0xe0 [ 1104.906894] new_inode+0x1b/0x40 [ 1104.910270] debugfs_get_inode+0x1a/0x130 [ 1104.914946] __debugfs_create_file+0x93/0x3c0 [ 1104.919449] ? debugfs_create_file+0x37/0x60 [ 1104.923868] kvm_dev_ioctl+0xd71/0x1480 [ 1104.927857] ? kvm_put_kvm+0xa90/0xa90 [ 1104.931752] ? kvm_put_kvm+0xa90/0xa90 [ 1104.935645] do_vfs_ioctl+0x75a/0xfe0 [ 1104.939452] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1104.944213] ? ioctl_preallocate+0x1a0/0x1a0 [ 1104.948635] ? security_file_ioctl+0x76/0xb0 [ 1104.953049] ? security_file_ioctl+0x83/0xb0 [ 1104.957463] SyS_ioctl+0x7f/0xb0 [ 1104.960828] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1104.964809] do_syscall_64+0x1d5/0x640 [ 1104.968705] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1104.973892] RIP: 0033:0x45c829 [ 1104.977078] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1104.984790] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1104.992095] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1104.999368] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1105.006729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1105.014097] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:25 executing program 1 (fault-call:14 fault-nth:45): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1105.090688] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=28170 comm=syz-executor.5 [ 1105.330421] FAULT_INJECTION: forcing a failure. [ 1105.330421] name failslab, interval 1, probability 0, space 0, times 0 [ 1105.341993] CPU: 0 PID: 28181 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1105.349882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.359237] Call Trace: [ 1105.361848] dump_stack+0x13e/0x194 [ 1105.365484] should_fail.cold+0x10a/0x14b [ 1105.369640] should_failslab+0xd6/0x130 [ 1105.373619] kmem_cache_alloc+0x2b5/0x770 [ 1105.377767] ? lookup_one_len+0x284/0x3a0 [ 1105.381917] alloc_inode+0xa0/0x170 [ 1105.385839] new_inode_pseudo+0x14/0xe0 [ 1105.389830] new_inode+0x1b/0x40 [ 1105.393183] debugfs_get_inode+0x1a/0x130 [ 1105.397432] __debugfs_create_file+0x93/0x3c0 [ 1105.401938] ? debugfs_create_file+0x37/0x60 [ 1105.406361] kvm_dev_ioctl+0xd71/0x1480 [ 1105.410350] ? kvm_put_kvm+0xa90/0xa90 [ 1105.414252] ? kvm_put_kvm+0xa90/0xa90 [ 1105.418145] do_vfs_ioctl+0x75a/0xfe0 [ 1105.422218] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1105.426984] ? ioctl_preallocate+0x1a0/0x1a0 [ 1105.431400] ? swapgs_restore_regs_and_return_to_usermode+0x6/0x40 [ 1105.437728] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1105.441711] ? security_file_ioctl+0x76/0xb0 [ 1105.446126] ? security_file_ioctl+0x83/0xb0 [ 1105.450542] SyS_ioctl+0x7f/0xb0 [ 1105.453982] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1105.458054] do_syscall_64+0x1d5/0x640 [ 1105.461941] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1105.467119] RIP: 0033:0x45c829 [ 1105.470298] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1105.477995] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1105.485266] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1105.492523] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1105.499974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1105.507318] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:26 executing program 2 (fault-call:11 fault-nth:76): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:26 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$ION_IOC_ALLOC(r3, 0xc0184900, &(0x7f0000000140)={0x7f4f, 0x20, 0x1}) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r6, 0x1}, 0x14}}, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x70, r6, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffeffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xab1}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x40}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x4}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) ioctl$TIOCGPTLCK(r3, 0x80045439, &(0x7f0000000100)) [ 1105.773537] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=28194 comm=syz-executor.5 [ 1105.965811] FAULT_INJECTION: forcing a failure. [ 1105.965811] name failslab, interval 1, probability 0, space 0, times 0 [ 1105.977292] CPU: 0 PID: 28199 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1105.985196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.994558] Call Trace: [ 1105.997152] dump_stack+0x13e/0x194 [ 1106.000790] should_fail.cold+0x10a/0x14b [ 1106.004948] should_failslab+0xd6/0x130 [ 1106.008932] kmem_cache_alloc+0x2b5/0x770 [ 1106.013090] ? alloc_inode+0xa0/0x170 [ 1106.016944] selinux_inode_alloc_security+0xb1/0x2a0 [ 1106.022070] security_inode_alloc+0x8f/0xd0 [ 1106.026406] inode_init_always+0x576/0xb20 [ 1106.030651] alloc_inode+0x7a/0x170 [ 1106.034284] new_inode_pseudo+0x14/0xe0 [ 1106.038285] new_inode+0x1b/0x40 [ 1106.041655] debugfs_get_inode+0x1a/0x130 [ 1106.045981] __debugfs_create_file+0x93/0x3c0 [ 1106.050484] ? debugfs_create_file+0x37/0x60 [ 1106.054941] kvm_dev_ioctl+0xd71/0x1480 [ 1106.058929] ? kvm_put_kvm+0xa90/0xa90 [ 1106.062820] ? __sanitizer_cov_trace_pc+0x3d/0x50 [ 1106.067676] ? kvm_put_kvm+0xa90/0xa90 [ 1106.071577] do_vfs_ioctl+0x75a/0xfe0 [ 1106.075384] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1106.080147] ? ioctl_preallocate+0x1a0/0x1a0 [ 1106.084572] ? security_file_ioctl+0x76/0xb0 [ 1106.088984] ? security_file_ioctl+0x83/0xb0 [ 1106.093403] SyS_ioctl+0x7f/0xb0 [ 1106.096776] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1106.100762] do_syscall_64+0x1d5/0x640 [ 1106.104660] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1106.109852] RIP: 0033:0x45c829 [ 1106.113037] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1106.120749] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1106.128115] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1106.135395] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1106.142698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1106.149983] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:26 executing program 1 (fault-call:14 fault-nth:46): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:26 executing program 5: prlimit64(0x0, 0xc, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x3) write(r2, &(0x7f0000000340), 0x41395527) fcntl$setlease(r1, 0x400, 0x1) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000040)="8cef706e836cbe61af", 0x9}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) prctl$PR_SET_PDEATHSIG(0x1, 0x22) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1106.446147] FAULT_INJECTION: forcing a failure. [ 1106.446147] name failslab, interval 1, probability 0, space 0, times 0 [ 1106.458160] CPU: 0 PID: 28221 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1106.466148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1106.475505] Call Trace: [ 1106.478106] dump_stack+0x13e/0x194 [ 1106.481745] should_fail.cold+0x10a/0x14b [ 1106.485901] should_failslab+0xd6/0x130 [ 1106.489967] kmem_cache_alloc+0x2b5/0x770 [ 1106.494118] ? alloc_inode+0xa0/0x170 [ 1106.497930] selinux_inode_alloc_security+0xb1/0x2a0 [ 1106.503042] security_inode_alloc+0x8f/0xd0 [ 1106.507377] inode_init_always+0x576/0xb20 [ 1106.511625] alloc_inode+0x7a/0x170 [ 1106.515259] new_inode_pseudo+0x14/0xe0 [ 1106.519236] new_inode+0x1b/0x40 [ 1106.522604] debugfs_get_inode+0x1a/0x130 [ 1106.526761] __debugfs_create_file+0x93/0x3c0 [ 1106.531274] ? debugfs_create_file+0x37/0x60 [ 1106.535699] kvm_dev_ioctl+0xd71/0x1480 [ 1106.539683] ? kvm_put_kvm+0xa90/0xa90 [ 1106.543578] ? kvm_put_kvm+0xa90/0xa90 [ 1106.547467] do_vfs_ioctl+0x75a/0xfe0 [ 1106.551273] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1106.556062] ? ioctl_preallocate+0x1a0/0x1a0 [ 1106.560504] ? security_file_ioctl+0x76/0xb0 [ 1106.565034] ? security_file_ioctl+0x83/0xb0 [ 1106.569453] SyS_ioctl+0x7f/0xb0 [ 1106.572831] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1106.576856] do_syscall_64+0x1d5/0x640 [ 1106.581010] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1106.586286] RIP: 0033:0x45c829 [ 1106.589506] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1106.597213] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1106.604481] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1106.611759] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1106.619292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1106.626595] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:27 executing program 2 (fault-call:11 fault-nth:77): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:27 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) write$tun(0xffffffffffffffff, &(0x7f0000000240)={@val={0x0, 0x6002}, @val={0x1, 0x0, 0x0, 0x101, 0x9, 0x6}, @x25={0x1, 0x7f, 0xfb, "e58a5d2c939d0f782445155c33e6a276a48b655c0668d8ca04a7764bea08f5e910b2ef86ac10a8790402686ec0a1fdea85606e9feeb70d42d2489f8f39e4ed517a30e712a1aae2bc4973bcc959db817cef169599c135dbc152613847dea9119add243ed9335a6e3b90beb7888435df2f6b89224b79bbe8"}}, 0x88) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r8 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000001400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000040)='asymmetric\x00', &(0x7f0000000080)=@secondary='builtin_and_secondary_trusted\x00') keyctl$link(0x8, r7, r8) keyctl$revoke(0x3, r7) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1106.958207] FAULT_INJECTION: forcing a failure. [ 1106.958207] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1106.970247] CPU: 0 PID: 28239 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1106.978148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1106.987503] Call Trace: [ 1106.990099] dump_stack+0x13e/0x194 [ 1106.993740] should_fail.cold+0x10a/0x14b [ 1106.997897] __alloc_pages_nodemask+0x1bf/0x700 [ 1107.002577] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1107.007629] ? inode_doinit_with_dentry+0x735/0xe30 [ 1107.012663] ? lockref_get+0x11/0x50 [ 1107.016390] alloc_pages_current+0xe7/0x1e0 [ 1107.020814] __get_free_pages+0xb/0x40 [ 1107.024973] inode_doinit_with_dentry+0x7b6/0xe30 [ 1107.029912] ? selinux_cred_free+0x70/0x70 [ 1107.034154] ? put_itimerspec64+0x190/0x190 [ 1107.042484] selinux_d_instantiate+0x23/0x30 [ 1107.046914] security_d_instantiate+0x54/0xd0 [ 1107.051414] d_instantiate+0x5a/0x90 [ 1107.055142] __debugfs_create_file+0x15b/0x3c0 [ 1107.059731] ? debugfs_create_file+0x37/0x60 [ 1107.064147] kvm_dev_ioctl+0xd71/0x1480 [ 1107.068137] ? kvm_put_kvm+0xa90/0xa90 [ 1107.072036] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1107.076030] ? kvm_put_kvm+0xa90/0xa90 [ 1107.079921] do_vfs_ioctl+0x75a/0xfe0 [ 1107.083723] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1107.088494] ? ioctl_preallocate+0x1a0/0x1a0 [ 1107.093001] ? security_file_ioctl+0x76/0xb0 [ 1107.097432] ? security_file_ioctl+0x83/0xb0 [ 1107.101937] SyS_ioctl+0x7f/0xb0 [ 1107.105307] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1107.109280] do_syscall_64+0x1d5/0x640 [ 1107.113184] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1107.118459] RIP: 0033:0x45c829 [ 1107.121643] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1107.129357] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1107.136629] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1107.143896] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1107.151177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1107.158445] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:27 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:27 executing program 1 (fault-call:14 fault-nth:47): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1107.638372] FAULT_INJECTION: forcing a failure. [ 1107.638372] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1107.650422] CPU: 1 PID: 28267 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1107.658318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1107.667762] Call Trace: [ 1107.670441] dump_stack+0x13e/0x194 [ 1107.674115] should_fail.cold+0x10a/0x14b [ 1107.678268] __alloc_pages_nodemask+0x1bf/0x700 [ 1107.682946] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1107.687982] ? inode_doinit_with_dentry+0x735/0xe30 [ 1107.693009] ? lockref_get+0x11/0x50 [ 1107.696732] alloc_pages_current+0xe7/0x1e0 [ 1107.701068] __get_free_pages+0xb/0x40 [ 1107.705045] inode_doinit_with_dentry+0x7b6/0xe30 [ 1107.709893] ? selinux_cred_free+0x70/0x70 [ 1107.714133] ? put_itimerspec64+0x190/0x190 [ 1107.718458] selinux_d_instantiate+0x23/0x30 [ 1107.722954] security_d_instantiate+0x54/0xd0 [ 1107.727455] d_instantiate+0x5a/0x90 [ 1107.732042] __debugfs_create_file+0x15b/0x3c0 13:50:28 executing program 2 (fault-call:11 fault-nth:78): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1107.736633] ? debugfs_create_file+0x37/0x60 [ 1107.741061] kvm_dev_ioctl+0xd71/0x1480 [ 1107.745050] ? kvm_put_kvm+0xa90/0xa90 [ 1107.748951] ? kvm_put_kvm+0xa90/0xa90 [ 1107.752856] do_vfs_ioctl+0x75a/0xfe0 [ 1107.756665] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1107.761432] ? ioctl_preallocate+0x1a0/0x1a0 [ 1107.765876] ? security_file_ioctl+0x76/0xb0 [ 1107.770314] ? security_file_ioctl+0x83/0xb0 [ 1107.774730] SyS_ioctl+0x7f/0xb0 [ 1107.778105] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1107.782081] do_syscall_64+0x1d5/0x640 [ 1107.785979] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1107.791168] RIP: 0033:0x45c829 [ 1107.794352] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1107.802067] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1107.809374] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1107.816652] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1107.823924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1107.831208] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:28 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000180)={0x38, 0x2, 0x0, 0x1, 0x7, 0x7, 0x0, 0x2000000001}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bsg\x00', 0x1a331a306f84a349, 0x0) ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r4, 0x80184132, &(0x7f0000000140)) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r8) syz_mount_image$hfsplus(&(0x7f0000000040)='hfsplus\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x3, &(0x7f00000003c0)=[{&(0x7f0000000280)="6502017d5c6c31f8aa5a564f3bd4c8a96ff92c298dd926b4b7e30c5352c5bce2cea02f3ef3ea9562c441d3b491d4bca3200cec0fa755c8f220dc97cd4e913e2493e2e81cabcf58cc10c1bd41f62eba04af8e83be53f22bc38356c9110a3def558f5ec209e4a0fdb236d0b63161bb2ff7c78d46", 0x73, 0x1}, {&(0x7f0000000300)="136ab6e27e2fcbdaa05e876eb916f639c9414551a539f6d08b388c7c1c6030355e0b4cc1521d8fddafccef7bb72a917bf69839f0cae154516248bc2fbd9c9232568c473e6d24d72903fc7538dec26e56f13a9a363e1f19f1884d7cfc157dd71183cee46c470b", 0x66, 0xfffffffffffffffa}, {&(0x7f0000000380)="c5a99bdc2f5934bb8d849b4d927f4e6798ac39385caac9a97e6b09", 0x1b, 0x6}], 0x102a018, &(0x7f00000005c0)={[{@type={'type', 0x3d, "ba3fe7a6"}}, {@gid={'gid'}}, {@uid={'uid'}}, {@barrier='barrier'}, {@session={'session', 0x3d, 0x7}}, {@uid={'uid', 0x3d, r8}}, {@creator={'creator', 0x3d, "2bd744a7"}}], [{@fsuuid={'fsuuid', 0x3d, {[0x63, 0x34, 0x34, 0x36, 0x64, 0x63, 0x32, 0x37], 0x2d, [0x37, 0x35, 0x38, 0x66], 0x2d, [0x63, 0x35, 0x62, 0x31], 0x2d, [0x32, 0x65, 0x32, 0x34], 0x2d, [0x65, 0x63, 0x31, 0x61, 0x65, 0x36, 0x30, 0x66]}}}, {@subj_user={'subj_user', 0x3d, ':vboxnet0('}}, {@permit_directio='permit_directio'}]}) [ 1108.051042] FAULT_INJECTION: forcing a failure. [ 1108.051042] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.051054] CPU: 1 PID: 28283 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1108.051060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1108.051064] Call Trace: [ 1108.051081] dump_stack+0x13e/0x194 [ 1108.051098] should_fail.cold+0x10a/0x14b [ 1108.051114] should_failslab+0xd6/0x130 [ 1108.051125] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1108.051135] ? up_write+0x17/0x60 [ 1108.051144] ? __debugfs_create_file+0x2c6/0x3c0 [ 1108.051153] ? debugfs_create_file+0x37/0x60 [ 1108.051168] kvm_dev_ioctl+0xdc4/0x1480 [ 1108.051182] ? kvm_put_kvm+0xa90/0xa90 [ 1108.051195] ? kvm_put_kvm+0xa90/0xa90 [ 1108.051206] do_vfs_ioctl+0x75a/0xfe0 [ 1108.051223] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1108.051234] ? ioctl_preallocate+0x1a0/0x1a0 [ 1108.051254] ? security_file_ioctl+0x76/0xb0 [ 1108.051264] ? security_file_ioctl+0x83/0xb0 [ 1108.051275] SyS_ioctl+0x7f/0xb0 [ 1108.051283] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1108.051294] do_syscall_64+0x1d5/0x640 [ 1108.051310] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1108.051317] RIP: 0033:0x45c829 [ 1108.051323] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1108.051334] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1108.051339] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1108.051345] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1108.051350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1108.051355] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:28 executing program 1 (fault-call:14 fault-nth:48): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:28 executing program 2 (fault-call:11 fault-nth:79): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:29 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) sendmsg$IPSET_CMD_LIST(r4, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x28, 0x7, 0x6, 0x5, 0x0, 0x0, {0xc, 0x0, 0x1}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x8800}, 0x0) io_setup(0xffff, &(0x7f0000000040)=0x0) io_getevents(r5, 0x1c3, 0x5, &(0x7f00000004c0)=[{}, {}, {}, {}, {}], &(0x7f00000002c0)={0x77359400}) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1108.918876] FAULT_INJECTION: forcing a failure. [ 1108.918876] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.930169] CPU: 1 PID: 28319 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1108.938051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1108.947406] Call Trace: [ 1108.950002] dump_stack+0x13e/0x194 [ 1108.953635] should_fail.cold+0x10a/0x14b [ 1108.957789] should_failslab+0xd6/0x130 [ 1108.961782] kmem_cache_alloc+0x2b5/0x770 [ 1108.965930] ? __d_lookup+0x3b4/0x670 [ 1108.969823] ? mark_held_locks+0xa6/0xf0 [ 1108.973881] __d_alloc+0x2a/0x9b0 [ 1108.977340] d_alloc+0x46/0x250 [ 1108.980618] __lookup_hash+0x51/0x180 [ 1108.984417] lookup_one_len+0x27c/0x3a0 [ 1108.988386] ? __lookup_hash+0x180/0x180 [ 1108.992447] start_creating+0xa1/0x1c0 [ 1108.996503] __debugfs_create_file+0x4f/0x3c0 [ 1109.000994] ? debugfs_create_file+0x37/0x60 [ 1109.005400] kvm_dev_ioctl+0xd71/0x1480 [ 1109.009390] ? kvm_put_kvm+0xa90/0xa90 [ 1109.013277] ? kvm_put_kvm+0xa90/0xa90 [ 1109.017161] do_vfs_ioctl+0x75a/0xfe0 [ 1109.020960] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1109.025715] ? ioctl_preallocate+0x1a0/0x1a0 [ 1109.030151] ? security_file_ioctl+0x76/0xb0 [ 1109.034556] ? security_file_ioctl+0x83/0xb0 [ 1109.038962] SyS_ioctl+0x7f/0xb0 [ 1109.042333] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1109.046305] do_syscall_64+0x1d5/0x640 [ 1109.050191] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1109.055462] RIP: 0033:0x45c829 [ 1109.058652] RSP: 002b:00007ff507853c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1109.066353] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1109.073618] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1109.080903] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1109.088167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1109.095435] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078546d4 [ 1109.111987] FAULT_INJECTION: forcing a failure. [ 1109.111987] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.124550] CPU: 1 PID: 28320 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1109.132441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1109.141972] Call Trace: [ 1109.144567] dump_stack+0x13e/0x194 [ 1109.148205] should_fail.cold+0x10a/0x14b [ 1109.152364] should_failslab+0xd6/0x130 [ 1109.152392] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1543 sclass=netlink_tcpdiag_socket pid=28332 comm=syz-executor.5 [ 1109.156334] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1109.156347] ? up_write+0x17/0x60 [ 1109.156359] ? __debugfs_create_file+0x2c6/0x3c0 [ 1109.156367] ? debugfs_create_file+0x37/0x60 [ 1109.156385] kvm_dev_ioctl+0xdc4/0x1480 [ 1109.190956] ? kvm_put_kvm+0xa90/0xa90 [ 1109.194854] ? kvm_put_kvm+0xa90/0xa90 [ 1109.198746] do_vfs_ioctl+0x75a/0xfe0 [ 1109.202579] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1109.207373] ? ioctl_preallocate+0x1a0/0x1a0 [ 1109.211800] ? security_file_ioctl+0x76/0xb0 [ 1109.216222] ? security_file_ioctl+0x83/0xb0 [ 1109.220635] SyS_ioctl+0x7f/0xb0 [ 1109.224002] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1109.227979] do_syscall_64+0x1d5/0x640 [ 1109.231882] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1109.237072] RIP: 0033:0x45c829 [ 1109.240283] RSP: 002b:00007f5f0f7cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1109.247995] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1109.255352] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1109.262875] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1109.270146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1109.277420] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7d06d4 13:50:29 executing program 1 (fault-call:14 fault-nth:49): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:29 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000100), 0x0) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:29 executing program 2 (fault-call:11 fault-nth:80): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1109.766115] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1543 sclass=netlink_tcpdiag_socket pid=28323 comm=syz-executor.5 [ 1109.784467] FAULT_INJECTION: forcing a failure. [ 1109.784467] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.795842] CPU: 0 PID: 28359 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1109.803726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1109.813082] Call Trace: [ 1109.815856] dump_stack+0x13e/0x194 [ 1109.819503] should_fail.cold+0x10a/0x14b [ 1109.823657] should_failslab+0xd6/0x130 [ 1109.827634] kmem_cache_alloc+0x2b5/0x770 [ 1109.831788] ? lookup_one_len+0x284/0x3a0 [ 1109.835943] alloc_inode+0xa0/0x170 [ 1109.839573] new_inode_pseudo+0x14/0xe0 [ 1109.843548] new_inode+0x1b/0x40 [ 1109.846914] debugfs_get_inode+0x1a/0x130 [ 1109.851159] __debugfs_create_file+0x93/0x3c0 [ 1109.855745] ? debugfs_create_file+0x37/0x60 [ 1109.860174] kvm_dev_ioctl+0xd71/0x1480 [ 1109.864161] ? kvm_put_kvm+0xa90/0xa90 [ 1109.868055] ? kvm_put_kvm+0xa90/0xa90 [ 1109.871954] do_vfs_ioctl+0x75a/0xfe0 [ 1109.875760] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1109.880522] ? ioctl_preallocate+0x1a0/0x1a0 [ 1109.884960] ? security_file_ioctl+0x76/0xb0 [ 1109.889370] ? security_file_ioctl+0x83/0xb0 [ 1109.893783] SyS_ioctl+0x7f/0xb0 [ 1109.897149] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1109.901125] do_syscall_64+0x1d5/0x640 [ 1109.905019] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1109.910209] RIP: 0033:0x45c829 [ 1109.913391] RSP: 002b:00007ff507853c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1109.921106] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1109.928373] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1109.935647] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1109.942944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1109.950521] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078546d4 [ 1109.960471] FAULT_INJECTION: forcing a failure. [ 1109.960471] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.971810] CPU: 1 PID: 28360 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1109.979694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1109.989048] Call Trace: [ 1109.991641] dump_stack+0x13e/0x194 [ 1109.995269] should_fail.cold+0x10a/0x14b [ 1109.999545] should_failslab+0xd6/0x130 [ 1110.003515] kmem_cache_alloc+0x2b5/0x770 [ 1110.007668] ? __d_lookup+0x3b4/0x670 [ 1110.011464] ? mark_held_locks+0xa6/0xf0 [ 1110.015532] __d_alloc+0x2a/0x9b0 [ 1110.018993] d_alloc+0x46/0x250 [ 1110.022276] __lookup_hash+0x51/0x180 [ 1110.026078] lookup_one_len+0x27c/0x3a0 [ 1110.030923] ? __lookup_hash+0x180/0x180 [ 1110.035018] start_creating+0xa1/0x1c0 [ 1110.038897] __debugfs_create_file+0x4f/0x3c0 [ 1110.043387] ? debugfs_create_file+0x37/0x60 [ 1110.047809] kvm_dev_ioctl+0xd71/0x1480 [ 1110.051817] ? kvm_put_kvm+0xa90/0xa90 [ 1110.055801] ? kvm_put_kvm+0xa90/0xa90 [ 1110.059674] do_vfs_ioctl+0x75a/0xfe0 [ 1110.063468] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1110.068216] ? ioctl_preallocate+0x1a0/0x1a0 [ 1110.072615] ? security_file_ioctl+0x76/0xb0 [ 1110.077024] ? security_file_ioctl+0x83/0xb0 [ 1110.081428] SyS_ioctl+0x7f/0xb0 [ 1110.084796] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1110.088777] do_syscall_64+0x1d5/0x640 [ 1110.092672] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1110.097858] RIP: 0033:0x45c829 [ 1110.101044] RSP: 002b:00007f5f0f7cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1110.108763] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1110.116070] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1110.123345] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1110.130620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1110.137902] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7d06d4 13:50:30 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000002f00)=[{{&(0x7f00000002c0)=@rxrpc, 0x0, &(0x7f0000000040)=[{&(0x7f0000000340)=""/173}, {&(0x7f0000000400)=""/165}, {&(0x7f00000004c0)=""/138}, {&(0x7f0000000580)=""/175}], 0x0, &(0x7f0000000640)=""/93}, 0x7f}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000006c0)=""/146}, {&(0x7f0000000100)=""/21}, {&(0x7f0000000180)=""/11}, {&(0x7f0000000780)=""/135}, {&(0x7f0000000840)=""/184}], 0x0, &(0x7f0000000980)=""/254}, 0x7}, {{&(0x7f0000000a80)=@alg, 0x0, &(0x7f0000002b80)=[{&(0x7f0000000b00)=""/4096}, {&(0x7f0000001b00)=""/4096}, {&(0x7f0000002b00)=""/79}]}, 0x81}, {{&(0x7f0000002bc0)=@l2={0x1f, 0x0, @fixed}, 0x0, &(0x7f0000002dc0)=[{&(0x7f0000002c40)=""/37}, {&(0x7f0000002c80)=""/140}, {&(0x7f0000002d40)=""/75}], 0x0, &(0x7f0000002e00)=""/239}}], 0x6, 0x40, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:30 executing program 1 (fault-call:14 fault-nth:50): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:30 executing program 2 (fault-call:11 fault-nth:81): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1110.674780] FAULT_INJECTION: forcing a failure. [ 1110.674780] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.686121] CPU: 1 PID: 28394 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1110.694009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1110.703375] Call Trace: [ 1110.705972] dump_stack+0x13e/0x194 [ 1110.709613] should_fail.cold+0x10a/0x14b [ 1110.713773] should_failslab+0xd6/0x130 [ 1110.717757] kmem_cache_alloc+0x2b5/0x770 13:50:31 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) prctl$PR_MCE_KILL_GET(0x22) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) accept4$alg(r5, 0x0, 0x0, 0x80000) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1110.722000] ? lookup_one_len+0x284/0x3a0 [ 1110.726161] alloc_inode+0xa0/0x170 [ 1110.729806] new_inode_pseudo+0x14/0xe0 [ 1110.734135] new_inode+0x1b/0x40 [ 1110.737523] debugfs_get_inode+0x1a/0x130 [ 1110.741677] __debugfs_create_file+0x93/0x3c0 [ 1110.746179] ? debugfs_create_file+0x37/0x60 [ 1110.750602] kvm_dev_ioctl+0xd71/0x1480 [ 1110.754590] ? kvm_put_kvm+0xa90/0xa90 [ 1110.758488] ? kvm_put_kvm+0xa90/0xa90 [ 1110.762417] do_vfs_ioctl+0x75a/0xfe0 [ 1110.766337] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1110.771108] ? ioctl_preallocate+0x1a0/0x1a0 [ 1110.775530] ? security_file_ioctl+0x76/0xb0 [ 1110.779944] ? security_file_ioctl+0x83/0xb0 [ 1110.784500] SyS_ioctl+0x7f/0xb0 [ 1110.787876] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1110.791860] do_syscall_64+0x1d5/0x640 [ 1110.795760] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1110.800966] RIP: 0033:0x45c829 [ 1110.804156] RSP: 002b:00007f5f0f7cfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1110.811875] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1110.815612] FAULT_INJECTION: forcing a failure. [ 1110.815612] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.819142] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1110.819148] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1110.819154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1110.819160] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7d06d4 [ 1110.859791] CPU: 0 PID: 28395 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1110.867673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1110.877064] Call Trace: [ 1110.879669] dump_stack+0x13e/0x194 [ 1110.883316] should_fail.cold+0x10a/0x14b [ 1110.887479] should_failslab+0xd6/0x130 [ 1110.891469] kmem_cache_alloc+0x2b5/0x770 [ 1110.895631] ? alloc_inode+0xa0/0x170 [ 1110.899445] selinux_inode_alloc_security+0xb1/0x2a0 [ 1110.904567] security_inode_alloc+0x8f/0xd0 [ 1110.908906] inode_init_always+0x576/0xb20 [ 1110.913153] alloc_inode+0x7a/0x170 [ 1110.916796] new_inode_pseudo+0x14/0xe0 [ 1110.920785] new_inode+0x1b/0x40 [ 1110.924160] debugfs_get_inode+0x1a/0x130 [ 1110.928322] __debugfs_create_file+0x93/0x3c0 [ 1110.932840] ? debugfs_create_file+0x37/0x60 [ 1110.937265] kvm_dev_ioctl+0xd71/0x1480 [ 1110.941267] ? kvm_put_kvm+0xa90/0xa90 [ 1110.945172] ? kvm_put_kvm+0xa90/0xa90 [ 1110.949071] do_vfs_ioctl+0x75a/0xfe0 [ 1110.952883] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1110.957654] ? ioctl_preallocate+0x1a0/0x1a0 [ 1110.962087] ? security_file_ioctl+0x76/0xb0 [ 1110.966502] ? security_file_ioctl+0x83/0xb0 [ 1110.970921] SyS_ioctl+0x7f/0xb0 [ 1110.974293] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1110.978455] do_syscall_64+0x1d5/0x640 [ 1110.982368] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1110.987564] RIP: 0033:0x45c829 [ 1110.990759] RSP: 002b:00007ff507853c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1110.998485] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1111.005764] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1111.013081] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1111.020356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1111.027632] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078546d4 13:50:31 executing program 1 (fault-call:14 fault-nth:51): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:31 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) mmap$snddsp_status(&(0x7f0000ffb000/0x2000)=nil, 0x1000, 0x1000005, 0x10, r1, 0x82000000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:31 executing program 2 (fault-call:11 fault-nth:82): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1111.530832] FAULT_INJECTION: forcing a failure. [ 1111.530832] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1111.530975] FAULT_INJECTION: forcing a failure. [ 1111.530975] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.542868] CPU: 0 PID: 28432 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1111.562027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1111.571370] Call Trace: [ 1111.573949] dump_stack+0x13e/0x194 [ 1111.577568] should_fail.cold+0x10a/0x14b [ 1111.581703] __alloc_pages_nodemask+0x1bf/0x700 [ 1111.586355] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1111.591355] ? inode_doinit_with_dentry+0x735/0xe30 [ 1111.596506] ? lockref_get+0x11/0x50 [ 1111.600295] alloc_pages_current+0xe7/0x1e0 [ 1111.604718] __get_free_pages+0xb/0x40 [ 1111.608587] inode_doinit_with_dentry+0x7b6/0xe30 [ 1111.613449] ? selinux_cred_free+0x70/0x70 [ 1111.617692] ? put_itimerspec64+0x190/0x190 [ 1111.622009] selinux_d_instantiate+0x23/0x30 [ 1111.626430] security_d_instantiate+0x54/0xd0 [ 1111.631022] d_instantiate+0x5a/0x90 [ 1111.634725] __debugfs_create_file+0x15b/0x3c0 [ 1111.639291] ? debugfs_create_file+0x37/0x60 [ 1111.643999] kvm_dev_ioctl+0xd71/0x1480 [ 1111.647960] ? retint_kernel+0x2d/0x2d [ 1111.651837] ? kvm_put_kvm+0xa90/0xa90 [ 1111.655793] ? kvm_put_kvm+0xa90/0xa90 [ 1111.659662] do_vfs_ioctl+0x75a/0xfe0 [ 1111.663448] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1111.668194] ? ioctl_preallocate+0x1a0/0x1a0 [ 1111.672594] ? security_file_ioctl+0x76/0xb0 [ 1111.676983] ? security_file_ioctl+0x83/0xb0 [ 1111.681393] SyS_ioctl+0x7f/0xb0 [ 1111.684739] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1111.688695] do_syscall_64+0x1d5/0x640 [ 1111.692569] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1111.699153] RIP: 0033:0x45c829 [ 1111.702324] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1111.710186] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1111.717440] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1111.724690] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.731952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1111.739326] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1111.746610] CPU: 1 PID: 28428 Comm: syz-executor.1 Not tainted 4.14.179-syzkaller #0 [ 1111.754600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1111.763955] Call Trace: [ 1111.766549] dump_stack+0x13e/0x194 [ 1111.770180] should_fail.cold+0x10a/0x14b [ 1111.774338] should_failslab+0xd6/0x130 [ 1111.778320] kmem_cache_alloc+0x2b5/0x770 [ 1111.782475] ? alloc_inode+0xa0/0x170 [ 1111.786370] selinux_inode_alloc_security+0xb1/0x2a0 [ 1111.791515] security_inode_alloc+0x8f/0xd0 [ 1111.796017] inode_init_always+0x576/0xb20 [ 1111.800256] alloc_inode+0x7a/0x170 [ 1111.803890] new_inode_pseudo+0x14/0xe0 [ 1111.804021] audit: type=1400 audit(1589032232.127:48): avc: denied { execute } for pid=28420 comm="syz-executor.5" path="pipe:[261111]" dev="pipefs" ino=261111 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 [ 1111.807857] new_inode+0x1b/0x40 [ 1111.835228] debugfs_get_inode+0x1a/0x130 [ 1111.839384] __debugfs_create_file+0x93/0x3c0 [ 1111.843906] ? debugfs_create_file+0x37/0x60 [ 1111.848327] kvm_dev_ioctl+0xd71/0x1480 [ 1111.852398] ? kvm_put_kvm+0xa90/0xa90 [ 1111.856296] ? kvm_put_kvm+0xa90/0xa90 [ 1111.860212] do_vfs_ioctl+0x75a/0xfe0 [ 1111.864039] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1111.869503] ? ioctl_preallocate+0x1a0/0x1a0 [ 1111.873919] ? security_file_ioctl+0x76/0xb0 [ 1111.878328] ? security_file_ioctl+0x83/0xb0 [ 1111.882741] SyS_ioctl+0x7f/0xb0 [ 1111.886135] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1111.890116] do_syscall_64+0x1d5/0x640 [ 1111.894016] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1111.899202] RIP: 0033:0x45c829 [ 1111.902389] RSP: 002b:00007f5f0f7f0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1111.910111] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1111.917380] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1111.924652] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.931924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1111.939196] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007f5f0f7f16d4 13:50:32 executing program 1 (fault-call:14 fault-nth:52): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:32 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) accept4$packet(r2, &(0x7f00000066c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000006700)=0x14, 0x80400) sendmmsg(0xffffffffffffffff, &(0x7f0000006c80)=[{{&(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x2, 0x3, 0x3, 0x4, {0xa, 0x4e21, 0x0, @loopback, 0x4e}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000240)="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", 0xfe}], 0x1, &(0x7f0000000340)=[{0xf8, 0x10e, 0x8, "43b70f64308af48698840dce0c9c01f1d1b4005fd42ce3a96b9e7b09236a8692030e40e52dd2f8e6cae83e13e3ea652ebad9c5d119350d90677a66164147b0393f611f4f0c09feca40d258a1f04873e122bfb921cf6b569ee127e71dca6fadddcb80e6bf414e6bdff07823ba30c23c4010c7fecf58692216b0e4c263d0e13024828463127fb1abeaf06be82de87769e8441489bacc992597505621ddd3a6c259baa5c03bca6b9296d8f813408e0514175503fc091a8ccffcfc67996033fde0b3998bce9517ef885d29cc11a02a2d128843247511408b0079181a3ba68ea972d239fb7bfb3535"}, {0x58, 0x116, 0xb15a, "1016f67926137f7bfa167aad57f513f4f9ce28db95ae7bc59af87e09a13cbd19b00413e953cd8defd9e14a4faf27709b6b9a8c4c77ace96c20900cb1269cf17f899eb79d64c0c315"}], 0x150}}, {{&(0x7f00000004c0)=@l2tp={0x2, 0x0, @multicast2}, 0x80, &(0x7f00000026c0)=[{&(0x7f0000000540)="bac565c514eb43f31e6eb34713c71b71b4a9ed1d7e6da1cf902d8154f45a1e6eeca30470a0e87ed96a635ce201f914f078bf8f40ef8aaab24c7dfa3c8e45baf5c3d47629d8", 0x45}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f00000015c0)="59c3001af39e65c1ddbfbad09e98fefb0dc8c2fcface9d75dc0505c3214437a63d9eaee191321a6eb410cbedc6600da7f3f4c5720d76b43ec5a8c3e3d7077510a5ab87c4c969031fd33a8e8da5712aefe13e", 0x52}, {&(0x7f0000001640)="7f8c7dc0aeb47d174d2acad0bc35661d16d9fef3714b39c9966aa6eb7bff3b0f0b962f61cb5d9eb045a8d31ad86395225034fb", 0x33}, {&(0x7f0000001680)="fa79fead3144226417400625a9b04b7d53cfe8b5816997d92a9be121bee0b74837fe03bc312fb9236ad46668e272201c", 0x30}, {&(0x7f00000016c0)="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", 0x1000}], 0x6, &(0x7f0000002740)=ANY=[@ANYBLOB="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"], 0x20d8}}, {{&(0x7f0000004840)=@l2={0x1f, 0x1, @any, 0x100, 0x2}, 0x80, &(0x7f0000004bc0)=[{&(0x7f00000048c0)="3b3292a796608967398b45924c3531adac4ca188a1ca7ff3f46f934be6cd01f184b64df1a4cf2f44c2796c42d3b51d58c422fa44c4d91142ab52a2", 0x3b}, {&(0x7f0000004900)="a7d4b84d39275c90eb8e9612ae3d93b4d803ce0fcb0e2fa612e864a224373c620c83b6375f9d8e05dc35f1ae029e2611ab3c9673a1879b98efaf9ebcbfab4c28ebe97f3fbe29b6dbbd1848c820c3f85cdcf5bfac334912c9bc71af150b77af2da8a8bcf8b33ff3f1290272a689f519f4cfbc6a22eaeca9a291e8383fcb94454ea0083d10d4c83c81f3491d34cd67af1e584b88bddb2d52d4c5213e19ab7e3b22c3f24ea4540ec378a9fd1f870b6177d7882b", 0xb2}, {&(0x7f00000049c0)}, {&(0x7f0000004a00)="2c3d5570853f3b1b95596b18c5d7fced244b2ea5e82d78e92b03bf012cff6d24dc78707f49b555ddc70820bb403b5adbedaad66fae869e8905d6865048c0c3fdd110b3c531439dea8dc3e02013a66ccdf929e85af944380c2de892989a845c2fd1b594c7aa92", 0x66}, {&(0x7f0000004a80)}, {&(0x7f0000004ac0)="27a25c381d605fa2109264e5b4c26096ecba674f477713dbbb5884c03ba9c1f20ac1f1e0e29d6c8ee819c32a233db5541ad3945a9cce50fadfa7692445057c80b751405a06ece2d3f3b5f0d5dc68509dd1f13c5b9b6c512264d9ff024c406506d57ef10cc0d958694b816bbb1543d6f57ad272f52f", 0x75}, {&(0x7f0000004b40)="70641e252bba897031a6ca0363a49e3b131152edc731294077ec93a74f31d8a7b562c6f93a67d98d1db59eeb24ce967fc995ddac9b83d07dffb10a65c5a4992d3ac93a8241febbdff2f2e205780fbed96d1873adb9204d91f1536e", 0x5b}], 0x7, &(0x7f0000004c40)=[{0x108, 0x108, 0x5, "99b241d1cf14fe9306b35fd1f6dbcdad9cd4777991960cc32ffd0fc147691a243f31e5e5970a41da5af7c74c92ffd74efdc96ddc2c12d0f2eef76065d73878ae889089969409f17f1d8f0da118ffcbbc37ce9a02228eef0ed359cc6bffdb8bee7c76637fe833e1ff38735b42271414478fe7f752436a8e060b2f17fd59929faf3b60f719908d1a53c18beaab3fe2b4068e7017e1bc5e95181497a957a59482951e31ad2f0d78bd0f1f69c0fa1aea67bdb94370877513b9a9b3c23ffb95832add7f6addbdaac1d7629ccf5695b6a589c47ac6582fd45d0d62140ee47db4d993a5463b32feaee2d96794e9e892cdcabb970d44"}, {0xd8, 0x115, 0xa00, "a29fb5cb18d4cdf15589c84d0ff22cf4c6e78e186d0e248484d341cff42b62f4928598c19bc4c03bf4f1a8e73ac5076a4723ad55c15d07898a8fafd48e54b2bb178a57a45a8702817e798c81663c5e89c06e4c8d5aa747cf22c3ba7a9b65f820df62a39c942b0be9e8520b66fa5391732672d8a634357dfa8b915358afcdd4893beaeb2014b2a20c9f996f15cbbfb9298b69a2b03e90a468d6ab464c265401d5bec78051f97e28ed7e32d8c2cc955ae99c68b28b4afe5d739db6898d0600976b1f0ef99e"}, {0x40, 0xe, 0x0, "fbe43c3c9cd2a3d61bab5f426cd218092dc659e380caf9c18bce0e77b83062f39d3e4acbb30f134d56"}, {0x50, 0x84, 0x9, "7baa950269c9493c8e335d1b49ad75a7b850c28776cbb9117b857a3d3ba5a44d19b0ed6b77fcdff34390fd87405eee75be2b2a293980e65d3a06b3ce"}, {0xa0, 0x0, 0x3, "afa244ac6bf82f52c4d12bd2f4ff52b40604502373af1e5d6ea6dbd5d6228c717632a6bcb3d91c2d2a38ce18e661cdad636eb6b35757be3e3e76585583599feaaea523870557c84c268394fb97fad5ed043868b21cf239444881238666b9e8642520bd0c8d628373886e37c0d7fe43c1a820486613cb32747ddf5dab1112ccb51a15defa06054ce1e0025ff2dc76"}], 0x310}}, {{&(0x7f0000004f80)=@phonet={0x23, 0x1, 0x1f, 0x8}, 0x80, &(0x7f0000005100)=[{&(0x7f0000005000)="594e8f779e45dbf18dd76f8d4320ed3f24e73edbb0ad5eb38cad29feb513f430ae5ebe3e056fa6ffbaa52b8694a7c8a66cf007dc210f12760fe5782c008f33d8d4b54e9a4908b85cfd2da2450ba1252e768eac6a1ac6825fa6bef8f3f417f4a202adda86fa87399fde3bfd977444e4623710041fb626b49b410e45e0fbca37b18c1d2d81f32aae17a617b7d36ac52b547475e1ee652cbfc1cd9c92b4ceb6d960ad191c46c701e80457e8f49d6abdaddfa9b14f4ea8010e871860114b8ef9d6fea94de08b17a4e741e0554d5d46ff20af", 0xd0}], 0x1, &(0x7f0000005140)=ANY=[@ANYBLOB="50000000000000001001000000fcffffbaff67f2786beeff6ac19a8aa472c8e6261aff84eda2f961f14161aad78efeff0c0465fa6e1bfbec144c9c135b49e9ba2153ccb8641c77b3b35a6dc977e08800"], 0x50}}, {{0x0, 0x0, &(0x7f0000005480)=[{&(0x7f00000051c0)="4e64e74192aec069d422edce24d21625b1ce4a97d60811a89076846ce51a03c15d4bae49b2bc93d75fd2a0aaecbe7b61a3ec3826f6ef2d141918dd5fd9814aa96491366eba0c4e2ee155ccea2ef9a0", 0x4f}, {&(0x7f0000005240)="e335", 0x2}, {&(0x7f0000005280)}, {&(0x7f00000052c0)="17bf525ab1955dde055dc885109a0d46bd2bc958d22641445e05118eb4b35d09bb52fcb63fdddbebebecf6d5139b2bf0e0137cea3927bea5eb62e69796e11728a60efb76207a7bf50ddacd66169bb16c861d06bc8767ed7b0acd51cb800402b2f9cc5721e74d8a3deb99eb5c0508cf9e13fdf83dde4acdee489f55703fad2b561fae72418219e839f337df46991389aaf138504de71ef581b5d47872bcd168d74b3d94db3bef25f475f775028e12ddf453d23fecc5f9fb5f76b4f6adc39f64db283ab005d575178d44ec88830ba604ec3c59", 0xd2}, {&(0x7f00000053c0)="53672672f65b3947b5122f2cee3a635cc13c9479109584324d01593cc59db532f707181ee398b8c1622212032ba86cfe0f2035bd886067396ea8573f07c72f7cc0a7d4edebd5f485a0cee51a727963a2dbdf9d428ca8579a55d88c7f4afe", 0x5e}, {&(0x7f0000005440)="5f3b92aae4", 0x5}], 0x6, &(0x7f0000005500)=ANY=[@ANYBLOB="380000000000000003010000800000005f7d0cdac5795fb7121b2c472e16361c1fae62e0d362f8a34a88afb215042121852436452f570000"], 0x38}}, {{&(0x7f0000006740)=@ll={0x11, 0x5, r5, 0x1, 0x4, 0x6, @remote}, 0x80, &(0x7f0000006a00)=[{&(0x7f00000067c0)="864d335b9aa504f941bfbd5a7a4e533abf926e94909ecc5080bbf2c87938f048d37d5ffc13d6a124abab3904815bef59b192582296850fe027fdbf92b0de6bcd9391720fc9e42dc42421cbf0da0c561da0a768cce5726e900631f5c545c717c4387bd56bb46db6eb59cc480f349796a94cb63318ac805cb821878e7c1bc344", 0x7f}, {&(0x7f0000006840)="265dbcaddc39b211c4b08a253473ffa230487026908ec2fc1daff1f6730a33b039d8944eeba92324ec2363fff837025d3f3c55acc344c8175266c4851d342bc82ad3f2250119fb481f3b6579344b1fba5ec686ff70a55bfba04451071003b3d5a2dabb6feae45964d361d7d0658b1eca93d1ee74e11aa790197c321e30991ea98d2f7d6b88f97483bb4ddbb162b05fcde746e445973c4a8fa6dc4ffb0328b3324f3ffd68ea09e55cf6e2ed6eaee8bdd60c72da07297364987032ffe0d2a3505e55f88672ad49902dd235aa3e", 0xcc}, {&(0x7f0000006940)="179d1814b621878710801e57007f4c78d9ee1dde159f5ccb6a8eb601d940285abdae236c0daa7c880eff40164cb579410478963abe8387618e869d9d5180ccf3cc05950614ece401e18d85585e131f49f328d0165640", 0x56}, {&(0x7f00000069c0)="9ef88e8f3800b28a4b8eb020ce36a88af5f1839e91a21cec286acc239f5132cbfc13c6220944", 0x26}], 0x4, &(0x7f0000006a40)=[{0xc0, 0x104, 0x400, "516bcd1d3f99e9f813efe4ab525956283289d80ce80a129659919fece76e22dbeeb7bff54eb31fc00e34e596f9ae0563602d11848a8a886a59f8366d3f744c03b6f98aa27a306c9ad65627f333e2865d0d4b8aea0c3015692df5f9a9895cdea01c7685f5e140f7b67cae96fda01afaaa0af1d1b06a60d174ef83c51f4aa423bea8a5897238be18b06346456bfa6cab3b3edfe66e7fbcaa651f17bd3207eff12214a6bab9c1fa0d315627c113809c06a6"}, {0x48, 0x88, 0x21, "7b081e145e65dbce7934d81105ccd16791ae7bb3c7b1bf0d4385e64734fdebe3bfa653717b88f5fffc670c2703f0992a891948dd594f"}, {0x28, 0x6, 0x8, "d60bb56d10bb0690b376a537caf0c7fe8c9eefaff39b168d"}, {0xe0, 0x88, 0x4, "605be3c2b0a036f6bcba7e7dc350e6675ade4cf7fb4afa77638926874c5a7ecc3a8f2858e576af8ba265a21772d2b9a99723705850287aa111f5d1f66b453af38910e3ee64a67b1bf9c292c95a805ac26abfe70a56e45522115d0dc71230be4a93c9b47f002dd6e8cbe9733e12fbfb07d41d768dd0567d5555faf2ed21bbf670d3ee702f266be7a6b44b7b0ea01f759ed9dfeab22c94c9248196ee98f413616fa9f6c56292ae81c8932fd95756ca749e60752bfb7eef859bbb5f2185eb286810fbf48db5cf9e22e3e1b2b1c2b4"}, {0x20, 0x100, 0x1, "a6e394360231b0773f938ae2"}], 0x230}}], 0x6, 0x44) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:32 executing program 2 (fault-call:11 fault-nth:83): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1112.411359] FAULT_INJECTION: forcing a failure. [ 1112.411359] name failslab, interval 1, probability 0, space 0, times 0 [ 1112.422762] CPU: 1 PID: 28470 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1112.430647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1112.440002] Call Trace: [ 1112.442607] dump_stack+0x13e/0x194 [ 1112.446258] should_fail.cold+0x10a/0x14b [ 1112.450424] should_failslab+0xd6/0x130 [ 1112.454407] kmem_cache_alloc_trace+0x2db/0x7b0 13:50:32 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000380)="6740b159f660b5b0020b2f358cafed6db3fab0d2ec0c00005e8b533a08c9278c34425487f1a546179f9f0223885e1fcf2026cf5f4d7c1c131901c587dcd558eae71067c9feeaff1ead5c0db49ae08f88bd95fd907be956575b8084c9e36c1ea193ff99b36a0700358a6a77a5b9564d00286f101adea8ed47d28263581c48d02635ebd10c1cd2d03a19a2dfc745f71aac6122c6a2cd95eebf4c6300"/167, 0xa7) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r5, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {r6, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}}}}, 0x90) write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, &(0x7f00000002c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0xff, @loopback, 0xfffffc01}, {0xa, 0x4e21, 0x400, @private0={0xfc, 0x0, [], 0x1}, 0xa3}, r6, 0x9}}, 0x48) setsockopt$RDS_FREE_MR(0xffffffffffffffff, 0x114, 0x3, &(0x7f0000000040)={{0x4, 0x3f}, 0x5e}, 0x10) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1112.459087] ? up_write+0x17/0x60 [ 1112.462551] ? __debugfs_create_file+0x2c6/0x3c0 [ 1112.467313] ? debugfs_create_file+0x37/0x60 [ 1112.471734] kvm_dev_ioctl+0xdc4/0x1480 [ 1112.475731] ? kvm_put_kvm+0xa90/0xa90 [ 1112.479631] ? kvm_put_kvm+0xa90/0xa90 [ 1112.483531] do_vfs_ioctl+0x75a/0xfe0 [ 1112.487337] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1112.492102] ? ioctl_preallocate+0x1a0/0x1a0 [ 1112.496546] ? security_file_ioctl+0x76/0xb0 [ 1112.500966] ? security_file_ioctl+0x83/0xb0 [ 1112.505387] SyS_ioctl+0x7f/0xb0 [ 1112.508883] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1112.512865] do_syscall_64+0x1d5/0x640 [ 1112.516850] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1112.522042] RIP: 0033:0x45c829 [ 1112.525235] RSP: 002b:00007ff507853c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1112.532954] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1112.540231] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1112.548201] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1112.555481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1112.562759] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078546d4 13:50:33 executing program 2 (fault-call:11 fault-nth:84): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:33 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0xffff}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$BLKROSET(r3, 0x125d, &(0x7f0000000100)=0x3ff) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000140)=[{&(0x7f0000000500)}], 0x1, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000240)={0x800, {{0xa, 0x4e20, 0x40, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x9}}, {{0xa, 0x4e20, 0x1, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x40b0}}}, 0x108) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1113.226702] FAULT_INJECTION: forcing a failure. [ 1113.226702] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.238167] CPU: 1 PID: 28492 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1113.246076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1113.255609] Call Trace: [ 1113.258219] dump_stack+0x13e/0x194 [ 1113.261894] should_fail.cold+0x10a/0x14b [ 1113.266066] should_failslab+0xd6/0x130 [ 1113.270052] kmem_cache_alloc+0x2b5/0x770 [ 1113.274208] ? __d_lookup+0x3b4/0x670 [ 1113.278014] ? mark_held_locks+0xa6/0xf0 [ 1113.282088] __d_alloc+0x2a/0x9b0 [ 1113.285553] d_alloc+0x46/0x250 [ 1113.288852] __lookup_hash+0x51/0x180 [ 1113.292664] lookup_one_len+0x27c/0x3a0 [ 1113.296679] ? __lookup_hash+0x180/0x180 [ 1113.300753] start_creating+0xa1/0x1c0 [ 1113.304647] __debugfs_create_file+0x4f/0x3c0 [ 1113.309239] ? debugfs_create_file+0x37/0x60 [ 1113.313656] kvm_dev_ioctl+0xd71/0x1480 [ 1113.317641] ? kvm_put_kvm+0xa90/0xa90 [ 1113.321541] ? kvm_put_kvm+0xa90/0xa90 [ 1113.325435] do_vfs_ioctl+0x75a/0xfe0 [ 1113.329239] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1113.335135] ? ioctl_preallocate+0x1a0/0x1a0 [ 1113.339599] ? security_file_ioctl+0x76/0xb0 [ 1113.344188] ? security_file_ioctl+0x83/0xb0 [ 1113.348604] SyS_ioctl+0x7f/0xb0 [ 1113.351970] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1113.355954] do_syscall_64+0x1d5/0x640 [ 1113.359860] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1113.365063] RIP: 0033:0x45c829 [ 1113.368250] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1113.376051] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1113.383439] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1113.390748] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1113.398025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1113.405304] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:33 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) r6 = dup2(r5, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$VIDIOC_DV_TIMINGS_CAP(r6, 0xc0905664, &(0x7f00000003c0)={0x0, 0x0, [], @bt={0xf20, 0xfffffc01, 0x5fab, 0x3ff, 0x1, 0xb32, 0x12, 0x9}}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000100)="1f4f42802d86a38288b82aa271a19b8ebc6c63cce267dab6882a5965b52ecb377dc55948992a27943d4e735c6170b6348666bcfbefb380b903cbe9823a86fcfdeee3d8a2b0f5202895406c183a450d2ace098adf9970b792c1e7de69a2f281bbeb753822563c73baff21a57e6c5f035cdc", 0x71}, {&(0x7f0000000040)="9adad44bceb1", 0x6}, {&(0x7f0000000180)="99c9785107", 0x5}, {&(0x7f0000000240)="34812b68ba2331555b395cfb080578448b67d227b4c0715972448f5be7ccf90300000000000000f0139095b23efb60a233680b114c0866bbae2a6a2ceed9b9b9c4c9194f177323cda4be5e1a85d453abf3815d1caefac1ea57a602b374601c038d8cae32640cfc83d2b944621cc92e994f6e31b7fb7c7eab40c91eacf873e548d8b676a4130ca77f9475bb1982027dcd48de0de5a5cb79be8765f63ecfaf2de57f6dbbfa601682708420491b788b79cc4ed6a6ac1f4e7d58bc99600b00003fae413249eeb860fbede840d3025d", 0xcd}], 0x4) 13:50:34 executing program 2 (fault-call:11 fault-nth:85): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:34 executing program 1: prlimit64(0x0, 0x1, &(0x7f0000000240)={0x6, 0x400000400000008d}, 0x0) r0 = getpid() r1 = shmget$private(0x0, 0x4000, 0x54001800, &(0x7f0000ffc000/0x4000)=nil) shmat(r1, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff) shmctl$IPC_RMID(r1, 0x0) socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x4, 0x0, 0x7, 0x6, 0x0, 0x800, 0x0, 0x1}, 0x0) accept$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000140)=0x1c) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1113.883608] audit: type=1800 audit(1589032234.207:49): pid=28521 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed" comm="syz-executor.1" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 13:50:34 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) read$snddsp(0xffffffffffffffff, &(0x7f0000000340)=""/169, 0xa9) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x8000, 0x0) ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f00000002c0)={0x0, {0x2, 0x4e23, @private=0xa010101}, {0x2, 0x4e22, @loopback}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x200, 0x0, 0x0, 0x0, 0x9, 0xfffffffffffffffe, 0xa1a, 0x7fc000000000000, 0x8}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) [ 1113.960352] audit: type=1800 audit(1589032234.267:50): pid=28521 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed" comm="syz-executor.1" name="SYSV00000000" dev="hugetlbfs" ino=32768 res=0 [ 1114.077683] FAULT_INJECTION: forcing a failure. [ 1114.077683] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.089114] CPU: 1 PID: 28529 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1114.097096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1114.107405] Call Trace: [ 1114.110003] dump_stack+0x13e/0x194 [ 1114.113640] should_fail.cold+0x10a/0x14b [ 1114.117828] should_failslab+0xd6/0x130 [ 1114.121819] kmem_cache_alloc+0x2b5/0x770 [ 1114.125971] ? lookup_one_len+0x284/0x3a0 [ 1114.130125] alloc_inode+0xa0/0x170 [ 1114.133758] new_inode_pseudo+0x14/0xe0 [ 1114.138003] new_inode+0x1b/0x40 [ 1114.141378] debugfs_get_inode+0x1a/0x130 [ 1114.145541] __debugfs_create_file+0x93/0x3c0 [ 1114.150130] ? debugfs_create_file+0x37/0x60 [ 1114.154557] kvm_dev_ioctl+0xd71/0x1480 [ 1114.158548] ? kvm_put_kvm+0xa90/0xa90 [ 1114.162447] ? kvm_put_kvm+0xa90/0xa90 [ 1114.166343] do_vfs_ioctl+0x75a/0xfe0 [ 1114.170149] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1114.175000] ? ioctl_preallocate+0x1a0/0x1a0 [ 1114.179423] ? security_file_ioctl+0x76/0xb0 [ 1114.183833] ? security_file_ioctl+0x83/0xb0 [ 1114.188247] SyS_ioctl+0x7f/0xb0 [ 1114.191614] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1114.195599] do_syscall_64+0x1d5/0x640 [ 1114.199498] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1114.204693] RIP: 0033:0x45c829 [ 1114.207879] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1114.216032] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1114.223329] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1114.230608] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1114.237887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1114.245170] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1114.300139] Unknown ioctl 35083 13:50:34 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000100)="924da490d2853be9a6415aac2d82e1be7502a03b18408cc2af3eb69adf9249294d074913717e5cc71a", 0x29}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:34 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, 0x0, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=0x0) prlimit64(r1, 0x8, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f00000002c0)="a4ee52ec73dd607b8f873cf5ca9220e167f99659643362fc1502002faaa397ea2eb86163440ea15418fc532a46108cd05f7e32035218c6ecd74cbacfc7ea5dbb3d4c513ba68c3bc666c5eac65ffb47c0b08c3217811ee86de4ec2b", 0x5b}], 0x1, 0x1) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:35 executing program 2 (fault-call:11 fault-nth:86): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1114.947823] FAULT_INJECTION: forcing a failure. [ 1114.947823] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.959373] CPU: 0 PID: 28569 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1114.967276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1114.976634] Call Trace: [ 1114.979231] dump_stack+0x13e/0x194 [ 1114.982877] should_fail.cold+0x10a/0x14b [ 1114.987038] should_failslab+0xd6/0x130 [ 1114.991023] kmem_cache_alloc+0x2b5/0x770 [ 1114.995183] ? alloc_inode+0xa0/0x170 [ 1114.999010] selinux_inode_alloc_security+0xb1/0x2a0 [ 1115.004120] security_inode_alloc+0x8f/0xd0 [ 1115.008537] inode_init_always+0x576/0xb20 [ 1115.012875] alloc_inode+0x7a/0x170 [ 1115.016507] new_inode_pseudo+0x14/0xe0 [ 1115.020492] new_inode+0x1b/0x40 [ 1115.023887] debugfs_get_inode+0x1a/0x130 [ 1115.028046] __debugfs_create_file+0x93/0x3c0 [ 1115.032547] ? debugfs_create_file+0x37/0x60 [ 1115.036979] kvm_dev_ioctl+0xd71/0x1480 [ 1115.041058] ? kvm_put_kvm+0xa90/0xa90 [ 1115.044968] ? kvm_put_kvm+0xa90/0xa90 [ 1115.048861] do_vfs_ioctl+0x75a/0xfe0 [ 1115.052665] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1115.057519] ? ioctl_preallocate+0x1a0/0x1a0 [ 1115.061950] ? security_file_ioctl+0x76/0xb0 [ 1115.066411] ? security_file_ioctl+0x83/0xb0 [ 1115.070825] SyS_ioctl+0x7f/0xb0 [ 1115.074197] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1115.078177] do_syscall_64+0x1d5/0x640 [ 1115.082087] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1115.087279] RIP: 0033:0x45c829 [ 1115.090473] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1115.098360] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1115.105632] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1115.112906] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1115.120213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1115.127511] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1115.135418] Unknown ioctl 35083 13:50:35 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r4, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x128}, 0x1, 0x0, 0x0, 0x44000}, 0x4000040) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:35 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) dup2(r2, 0xffffffffffffffff) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000180)={&(0x7f0000000240)="fce8c7733ab8c891ea23ac358b3dbf4df837b8397e74b63c3d4ba299ebee18ec189b9f2642eb05348631c76c970c63ad4d9815f14fa4b1b7dcaf1211ecdf10b12668cf80370093b72696226271b038ce2d8ac5a640ea1784f9873ffc16b7a4a3c4b7f647c4e7e68a83ce1df861b327f31027a9223527179807034f003aa8b5cb64ef4120f1ce43ad73a2aa847c794a6aed91506f6049e25f2632fe41a60f54af0427c4983eb2ccf5bf40ec27e67e594417872228f9e3cdb87d", 0xb9, 0x0}) ioctl$DRM_IOCTL_MODE_GETPROPBLOB(0xffffffffffffffff, 0xc01064ac, &(0x7f0000000400)={r3, 0xf7, &(0x7f0000000300)=""/247}) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f0000000140)) [ 1115.335636] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=5123 sclass=netlink_tcpdiag_socket pid=28579 comm=syz-executor.1 13:50:35 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) socket$inet6(0xa, 0x2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, 0x0, 0x0) r2 = socket$bt_bnep(0x1f, 0x3, 0x4) recvmmsg(r2, 0x0, 0xfffffede, 0x10042, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:35 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000280)={0x8, 0xa8d4, 0x9, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(0xffffffffffffffff, 0xc01064b3, &(0x7f00000002c0)={r5}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000500)={{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@dev}}, &(0x7f00000003c0)=0xe8) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000180)={0x3, 0x1, {r6}, {r8}, 0x40, 0x3}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:35 executing program 2 (fault-call:11 fault-nth:87): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1115.878376] FAULT_INJECTION: forcing a failure. [ 1115.878376] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.889739] CPU: 1 PID: 28609 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1115.897731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1115.907176] Call Trace: [ 1115.909751] dump_stack+0x13e/0x194 [ 1115.913363] should_fail.cold+0x10a/0x14b [ 1115.917493] should_failslab+0xd6/0x130 [ 1115.921447] kmem_cache_alloc+0x2b5/0x770 [ 1115.925576] ? alloc_inode+0xa0/0x170 [ 1115.929363] selinux_inode_alloc_security+0xb1/0x2a0 [ 1115.934446] security_inode_alloc+0x8f/0xd0 [ 1115.938747] inode_init_always+0x576/0xb20 [ 1115.942997] alloc_inode+0x7a/0x170 [ 1115.946604] new_inode_pseudo+0x14/0xe0 [ 1115.950558] new_inode+0x1b/0x40 [ 1115.953903] debugfs_get_inode+0x1a/0x130 [ 1115.958028] __debugfs_create_file+0x93/0x3c0 [ 1115.962521] ? debugfs_create_file+0x37/0x60 [ 1115.966930] kvm_dev_ioctl+0xd71/0x1480 [ 1115.970895] ? kvm_put_kvm+0xa90/0xa90 [ 1115.974765] ? kvm_put_kvm+0xa90/0xa90 [ 1115.978634] do_vfs_ioctl+0x75a/0xfe0 [ 1115.982428] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1115.987174] ? ioctl_preallocate+0x1a0/0x1a0 [ 1115.991570] ? security_file_ioctl+0x76/0xb0 [ 1115.995957] ? security_file_ioctl+0x83/0xb0 [ 1116.000357] SyS_ioctl+0x7f/0xb0 [ 1116.003704] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1116.007661] do_syscall_64+0x1d5/0x640 [ 1116.011539] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1116.016704] RIP: 0033:0x45c829 [ 1116.019887] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1116.027585] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1116.034834] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1116.042092] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1116.049687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1116.056935] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 [ 1116.131930] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=5123 sclass=netlink_tcpdiag_socket pid=28620 comm=syz-executor.1 13:50:36 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) r6 = dup2(r5, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_STATUS32(r6, 0x806c4120, &(0x7f0000000100)) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:36 executing program 3: prlimit64(0x0, 0x4, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000340)={0x0, 0x0, 0x5}) ioctl$DRM_IOCTL_GEM_CLOSE(0xffffffffffffffff, 0x40086409, &(0x7f0000000380)={r1}) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x2, 0x10000055, 0x0, 0x4000003, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r6, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x7, 0x1, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20004040}, 0x40004) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:36 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x5, 0x10000100) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = creat(&(0x7f0000000140)='./file0\x00', 0xc) ioctl$sock_inet_sctp_SIOCINQ(r3, 0x541b, &(0x7f0000000180)) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:36 executing program 2 (fault-call:11 fault-nth:88): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1116.813133] FAULT_INJECTION: forcing a failure. [ 1116.813133] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.824662] CPU: 0 PID: 28661 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1116.832548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1116.841906] Call Trace: [ 1116.844525] dump_stack+0x13e/0x194 [ 1116.848159] should_fail.cold+0x10a/0x14b [ 1116.852317] should_failslab+0xd6/0x130 [ 1116.856300] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1116.861003] ? up_write+0x17/0x60 [ 1116.864455] ? __debugfs_create_file+0x2c6/0x3c0 [ 1116.869227] ? debugfs_create_file+0x37/0x60 [ 1116.873650] kvm_dev_ioctl+0xdc4/0x1480 [ 1116.877628] ? kvm_put_kvm+0xa90/0xa90 [ 1116.881518] ? kvm_put_kvm+0xa90/0xa90 [ 1116.885924] do_vfs_ioctl+0x75a/0xfe0 [ 1116.889743] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1116.894495] ? ioctl_preallocate+0x1a0/0x1a0 [ 1116.898913] ? security_file_ioctl+0x76/0xb0 [ 1116.903318] ? security_file_ioctl+0x83/0xb0 [ 1116.907728] SyS_ioctl+0x7f/0xb0 [ 1116.911110] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1116.915087] do_syscall_64+0x1d5/0x640 [ 1116.918994] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1116.924273] RIP: 0033:0x45c829 [ 1116.927468] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1116.935187] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1116.942489] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1116.949794] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1116.957070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1116.965924] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:37 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0xb055, 0x2202) accept4$vsock_stream(r1, &(0x7f00000008c0)={0x28, 0x0, 0x0, @my=0x0}, 0x10, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) prctl$PR_SET_FPEXC(0xc, 0x40000) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000100)}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x10000000, 0x0, 0x3, 0x0, 0x2}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r6 = getpid() sched_setattr(r6, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r7 = syz_open_procfs(r6, &(0x7f0000000840)='net/igmp\x00') accept$ax25(r7, 0x0, &(0x7f0000000880)) writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}, {&(0x7f00000002c0)="f256c635d724d31c58969e99bf20aa099a95a79e0d2ffeb713707ea41672b3cf8125fbe778aa99c374e2be84e5be67a0deb48dd11845704e0e6fd8eddcf809aeacf6777c6ba0b2c03116115c3526214de2bbd7f0af531fdaa69c1c848de56d8fd3eae6f7727074a70a534eb8e77de58ab2b6709eac275745869b7e351a21d31b27473b9b043a5ac6817fcafe681494460ede2ada40d05a2126c60999069762dfd1073a161fda2c0e43a2a0c0f85ad104666faa4232828c4e4c3af784e6e42a0f71b6ae", 0xc3}, {&(0x7f0000000500)="f77a015148edd3d8ae658d1ea38ec9224a44bd15fbf2fbe158bfe1f27556c454d12321427c80fe1d8f65033aa1514a8a481d2409e0503128a4f962a647e6fbf1c0e560032e210b0fc4e1caad97bb2c0f419bfef4eb5db52dee5fa731f4b6cb7eb9338f67f55e16596a9c012433d754fc9b9ba5a864199c27efa70d9ad35be8e0553c06c4e2f52b924eb465ae1581eda2b57e2827fab3bc4820984ebcb238dd", 0x9f}, {&(0x7f0000000440)="f39f530148b5bc60a311e980cb10c2784d788f225e702c84cc1a3cbcf1f45a4e4b744c437def3491f9955bdd5ef542a85a40cbce464b88bf508648226b1ae0398fbf3affaf069c88870ac11abc9fad4bc23defe69b11e5a4f28d63eb9f38906466ab96c6ee146111542e1802a8e24ef5c363f977484bc98255db9d2b3e06e977cf73c04aed1b358051977ecf051bc51d8a762695", 0x94}], 0x4) 13:50:37 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x8) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000240)="992a47a3cdda1684d1d1f8b5d4f05d942f170c869fc6808511f0b6d380815856fc166348e23ba8385053aedbe152a21efff47edee483761435c0b69681a197ab897e92237d8f32cb49e8f882828cc27fda6b7824ac30f5a15d6979ff54787303e2b1f68aaca2df504a7fac71d3237cd308f8fb7b7b325e881e1defb1", 0xffffffffffffffd2) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) r6 = dup2(r5, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$RTC_ALM_SET(r6, 0x40247007, &(0x7f0000000100)={0x39, 0x1b, 0xd, 0x1b, 0x3, 0x1, 0x5, 0xd3, 0x1}) r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e23, 0xffff, @mcast2, 0x6}, 0x1c) writev(0xffffffffffffffff, &(0x7f0000000140), 0x10000000000001db) 13:50:37 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) ioctl$VIDIOC_QUERY_DV_TIMINGS(r3, 0x80845663, &(0x7f00000002c0)) [ 1117.278753] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=263 sclass=netlink_tcpdiag_socket pid=28684 comm=syz-executor.3 13:50:37 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x1, 0x0, 0x803, 0xb4}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:37 executing program 2 (fault-call:11 fault-nth:89): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:38 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x1) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x5, 0x3, 0x0, 0x3}, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r2) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x9) setgid(r5) write$FUSE_DIRENTPLUS(r1, &(0x7f0000000380)={0x2b8, 0xfffffffffffffff5, 0x8, [{{0x3, 0x1, 0x5f, 0xfffffffffffffffe, 0xd8, 0x2, {0x3, 0xfffffffffffffffc, 0x0, 0x6, 0xe090, 0x3ff, 0x6, 0x15, 0x10001, 0xfffffff8, 0x5, r4, r5, 0x8, 0x1}}, {0x2, 0xa7cc, 0x9, 0xc, '/dev/kvm\x00'}}, {{0x6, 0x3, 0x3, 0x3, 0x6, 0x2, {0x6, 0x3, 0xfffffffffffffffe, 0xea, 0x7ff, 0x8000000, 0x9, 0xbf, 0x3, 0x2, 0x0, r4, 0x0, 0x4, 0x1}}, {0x3, 0x1, 0x9, 0x3, '/dev/kvm\x00'}}, {{0x4, 0x2, 0x8, 0x7, 0x2, 0x80, {0x4, 0x2, 0x6, 0x4, 0x7, 0x9, 0x1425, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2, 0x1}}, {0x3, 0xffffffff, 0x0, 0x4}}, {{0x0, 0x3, 0x1, 0x9, 0x6, 0x94b, {0x4, 0x4, 0x80, 0x4306, 0x8001, 0x10001, 0x3, 0x4, 0xe7, 0x63d, 0x79, r2, 0x0, 0x400, 0x100}}, {0x3, 0xe713, 0x27, 0x6, '}ppp0wlan0{\'cpusetnodevposix_acl_access'}}]}, 0x2b8) socket$netlink(0x10, 0x3, 0x8000000004) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1117.820459] FAULT_INJECTION: forcing a failure. [ 1117.820459] name failslab, interval 1, probability 0, space 0, times 0 [ 1117.831884] CPU: 1 PID: 28724 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1117.839780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1117.849137] Call Trace: [ 1117.851903] dump_stack+0x13e/0x194 [ 1117.855537] should_fail.cold+0x10a/0x14b [ 1117.859703] should_failslab+0xd6/0x130 [ 1117.863683] kmem_cache_alloc+0x2b5/0x770 [ 1117.867824] ? __d_lookup+0x3b4/0x670 [ 1117.871619] ? mark_held_locks+0xa6/0xf0 [ 1117.875685] __d_alloc+0x2a/0x9b0 [ 1117.879148] d_alloc+0x46/0x250 [ 1117.882428] __lookup_hash+0x51/0x180 [ 1117.886250] lookup_one_len+0x27c/0x3a0 [ 1117.890228] ? __lookup_hash+0x180/0x180 [ 1117.894284] start_creating+0xa1/0x1c0 [ 1117.898287] __debugfs_create_file+0x4f/0x3c0 [ 1117.902765] ? debugfs_create_file+0x37/0x60 [ 1117.907256] kvm_dev_ioctl+0xd71/0x1480 [ 1117.911317] ? kvm_put_kvm+0xa90/0xa90 [ 1117.915188] ? kvm_put_kvm+0xa90/0xa90 [ 1117.919122] do_vfs_ioctl+0x75a/0xfe0 [ 1117.923335] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1117.928125] ? ioctl_preallocate+0x1a0/0x1a0 [ 1117.932524] ? security_file_ioctl+0x76/0xb0 [ 1117.936924] ? security_file_ioctl+0x83/0xb0 [ 1117.941345] SyS_ioctl+0x7f/0xb0 [ 1117.944715] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1117.948688] do_syscall_64+0x1d5/0x640 [ 1117.952918] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1117.958221] RIP: 0033:0x45c829 [ 1117.961399] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1117.969109] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1117.976382] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1117.983655] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1117.990920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1117.998189] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:38 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x800, 0x400) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000180)={&(0x7f00000002c0)="3c2b459513cc59e090a3b89cd84ec567d069b89db2e7cb943d458f4833f9bb4469ca637c38bdeced7932a3310e2277c0c43626c3a646650eb0f0b06dba25d5074a2736601e236c714693d651f27439c3d2436f055d47a5159a29201c876c8568ce652194868062deae93b6ddea36a01805c14b9a9b6bb983816ce6657c0df7a011f401f9b162182afcccfc7e2127f6813f", &(0x7f0000000040)=""/21, &(0x7f0000000380)="6ec1a0d951fb8c35135315f9a46cd174715e9befc63fd728cb9ba1488a64894dfb769c0e64f4dc94da0cc4b2f74e793e9c5b27952960485d20db2f1d6fecfe614528247c6b13dcbe649d5c8503fabe22a39ed59e9ffe4ca00e2674c733c690179fafe60db57ba80d20f4c69014fb574323c196c42de9f493d59eccf76b8c95455dc6b487771de9dc468d7e2a86378ca0e6319888b84c9ec2d0ba2771776c74d78433ab36a9ea8fe4958c2e06bd4f29c433d8f16b5f36e5d9257dcd58844b5127cbf0d6a884acf7106db384d3166ff9c9f9db9faa82", &(0x7f0000000480)="fbfcedffd5380f2f68b99cc43c9b7a8157e0d4cb24514091408f2e641e1181310bb93fb6d6b7fbc26f0fc86d619bb329f73feb7b6564cec55bd18f2c37f49fbfab192535d3362541fd72b2cf6f644cab3f9394ed03f532969663d27da8dc9a1fdca1898724ecde55325d6688055f6f090815ef7cb853f088300b9fc750429ce390b21b9ac7d1b8a1151f3803223d228d4945ea5a375c", 0x9, r3, 0x4}, 0x38) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:38 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x7fde, 0x9, 0x0, 0x0, 0x80}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x201, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) getresgid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000400)={&(0x7f0000000240), &(0x7f0000000280)=""/48, &(0x7f00000002c0)="ed010c8e05a2d85b29c4f78387ee9ef86bd4d1857f12d409fec39dd473b86aaa87f49dc802fa33d2ae6c2a1c755ef0433d19995c90e49602e23b0367850327273f863538e06212ba7f7745d96ca57e357c84ff3beedd8ae13a84f388cc9137ff9ca7c59e5358b8ccd4b9374471733bb2d491f6b489a0beb091e659c218492b64c5", &(0x7f0000000380)="943f2551d6453494fc6790fa5287d6278bee7716816c21f7c8ee50b0e0a5597923d7d34d16c934bb39eace5a1be5baf070d1b3efb8b04ef7e6df328b3cf7b69e3239386cb2026231f90d66ba61c9dc77aed457f3418ee917750bc43c85fd7dfda2905847", 0xeb9, r8}, 0x38) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000001800)=[{&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000000240)="4bc1e5fde10532a51ae9d45d3ff63b859740a6825595d3bb573ad2", 0x1b}, {&(0x7f00000014c0)="6dab0ac2f5b9f320ea3111d8cd5501a7a63eb85588dac28c0a650e8e62e183dcb43e682f43e4f86240627884dba18de70ac4010be5b14881f22b1ff7a47affc05636f8648c3c2ee5b659528e5b586ec44da22567105803a61033200d508877648f6249b4ad0dd36c7041de16ad99", 0x6e}, {&(0x7f0000001900)="5fc759cb69f5a17d3108dce94928328ae88d41c1f19aa58ad508360ab5c6c4e1b6165cdf63924552dcb51f1307ea2a7135b848ee3b54ca7c7d250a9603824e744cb14a41fcc3317ce7900bcc2cdc87bf8a0d23c7ba8dff44bd1976f25b8c6b41e27d195045d9f38eb7445deaa2ff5658e5bed7c9262aed8d6eacbca9bd8eacbe8ca63abfe781967ff2175f23365650e1b9dde875db77f9381ea2a3be397d798489b831aeac3434d0dc83ae6e7c3b0ff41baec315a3a42b6b8309acb8c53c6a8dcd90510e50e6c2f8215a0d0d403e1df69ac3d0035fa460", 0xd7}, {&(0x7f0000001a00)="e380210d2b1d1ecda2762732bec43e522de034e1632063d21d9996816185fb56146b4bae530253282caef9b6acd8c535db32b12ad604d23049cc59df16668d62bf8f293a38533428f2a3b4869e57577093b35f058a936f9e2e2d0880987f351e17a59a1b51f167386f88022f6693362115b9484e918758860ec7eb7eab3dffdfce1952e5cba767fe51c9af16b41466cb803ab040b51c30ab318b91996ada32ae1b14147fb87bbce5f9cc70e5acd91a60a895fc29298900392c740782c7ec940c8615f5433decacc97e20d4c92ab9a3835b2b413606117b97e628f66b805ed268516fcbfdb526edbb40d13553e5da4e", 0xef}, {&(0x7f0000001880)="fdaf105ed6a3fba52b03043c33746c7b85a8b1fb8adf93a08a0ba5b0b3c761e241e2806b7c10f44653f614e58c327a1bec478fe1df6ec85c7e82b164713de04a069a6c93e6a02e5f42bcd82424c873fdd501879951aefb0f44273831e3021e45a1fac3afd700000000000000", 0x6c}, {&(0x7f0000001680)="b62c80bade4dacf07864d8db2501fd35279f1cd70607a6c396a2686e8b45f3934a9ab46ca2a52b61d7f8dbb0422879cac083012f51557f967eac9ecec739644268a6756c4b1bfb2a09500e0ca2daf50b6e8417cfd1453ec2b1508225be4dd9fc044b2ec78cf9233ff3897b490e6d3a7796b17da397b2b99f5e989de4767b88803c3174db21fb50f5251f32f1189f78eba7059eb90d61bffa5b36a3ffef9c44f6658dbb5cb1758a4fd51dd142bd9f15f84930c010e03e6ed8f561ec", 0xbb}, {&(0x7f0000001740)="555449ec06e38b502d5975387e150c89072e3a697bb602f8ac4330a3dee2703ac73720cb24d7cb8195e4f1177190a03628a5c3d20e21d8329be06d16df9d46ef048016a3ee91fd4cf8c9ff85de43d0e4911ada83cef6e2110b702fcac65dd67b156881d6f31f2a2f3454bd4c4e4034c12025457471b93fd3eff7bbb70e423da4e809f4fabb55637a47224b", 0x8b}], 0x8) 13:50:38 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x21, 0x5, 0xfffffffe) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, 0x0, 0x0) ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000100)={'ipvlan0\x00'}) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:38 executing program 2 (fault-call:11 fault-nth:90): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:38 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0xa}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cachefiles\x00', 0x80001, 0x0) getsockopt$PNPIPE_HANDLE(r1, 0x113, 0x3, &(0x7f00000003c0), &(0x7f0000000400)=0x4) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000180)=[{&(0x7f00000002c0)="2c1b427cca2ec0c1e5ac96d3485f04edf312d52e28ff193fafc2452a0f29191d6661048a5eb5397fda8fa9c5acaaf242204ec1759482753762f9492f6e734b050000000000000093054dbf7c7a834c13f4b4e579badbcf346b51ac20ca7c0c5eed43a7", 0x63}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r6, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, 0x0, 0x0) sendmsg$IPSET_CMD_GET_BYINDEX(r6, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x3c, 0xf, 0x6, 0x3, 0x0, 0x0, {0xa, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000840}, 0x8000) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r3, 0x29, 0xd3, &(0x7f0000000100)={{0xa, 0x4e23, 0xbaa, @private1, 0x1}, {0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, [], 0x2e}, 0x14000}, 0x7fff, [0x9, 0x7792, 0x2, 0x7fffffff, 0x401, 0x3, 0x1, 0x268]}, 0x5c) [ 1118.749789] FAULT_INJECTION: forcing a failure. [ 1118.749789] name failslab, interval 1, probability 0, space 0, times 0 [ 1118.761308] CPU: 1 PID: 28793 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1118.769286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1118.778901] Call Trace: [ 1118.781501] dump_stack+0x13e/0x194 [ 1118.785148] should_fail.cold+0x10a/0x14b [ 1118.789305] should_failslab+0xd6/0x130 [ 1118.793283] kmem_cache_alloc+0x2b5/0x770 [ 1118.797467] ? lookup_one_len+0x284/0x3a0 [ 1118.797827] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1551 sclass=netlink_tcpdiag_socket pid=28798 comm=syz-executor.3 [ 1118.801623] alloc_inode+0xa0/0x170 [ 1118.801634] new_inode_pseudo+0x14/0xe0 [ 1118.801644] new_inode+0x1b/0x40 [ 1118.801655] debugfs_get_inode+0x1a/0x130 [ 1118.801664] __debugfs_create_file+0x93/0x3c0 [ 1118.801672] ? debugfs_create_file+0x37/0x60 [ 1118.801685] kvm_dev_ioctl+0xd71/0x1480 [ 1118.801698] ? kvm_put_kvm+0xa90/0xa90 [ 1118.801710] ? kvm_put_kvm+0xa90/0xa90 13:50:39 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcsa\x00', 0x80403, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) [ 1118.801720] do_vfs_ioctl+0x75a/0xfe0 [ 1118.801734] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1118.859011] ? ioctl_preallocate+0x1a0/0x1a0 [ 1118.863540] ? security_file_ioctl+0x76/0xb0 [ 1118.867974] ? security_file_ioctl+0x83/0xb0 [ 1118.872394] SyS_ioctl+0x7f/0xb0 [ 1118.875768] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1118.879752] do_syscall_64+0x1d5/0x640 [ 1118.883654] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1118.888846] RIP: 0033:0x45c829 [ 1118.892037] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1118.900623] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1118.907898] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1118.915260] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1118.922534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1118.929808] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:39 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f00000002c0)="0564b000de2f896faeb617024938fab6d33b30d1a3833887040951fe5ae4a92d55f048e0ae04098d285f4ad1e5f0c3dc78b036a5abbf0699452900b00efe42fa65ee29eb8e75bfc0a9b6ec201dc46d4b12b3e8c1bd20c1363c6ed3f4d3c5ceb9669a7a9f3ab38aae1574ea4c1f86e45df10af7a77c312151152835f3f2339e90f19678a1387dda3b3fb801f0be7320152933a15522a081e48e9dae16531275bfdffa15e248", 0xa5}, {&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000001380)="9310689ecf48138c00d92c13c834f478046f24a227928923cb8ca482d4a17742af4be3e2ba130fb2a4bf0f13918540f4acd4d44ad3eada19277c6ed3ecd1165a6960e1fd373484138d8a7a63318109b2848f58ed4e95a47fbe0e1f79f2f8116a7bc666be1c88c158512755825e60c1f362cf70b78896cf26daf6fce1ff260c86ba7206c8696e0defbd0398a46bf015e7be1f651c1ac5d69a3dfa013920ac3d6415c88bd7d2b49af2363ea9a3", 0xac}], 0x3, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) 13:50:39 executing program 1: r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000100)={'veth1_vlan\x00', {0x2, 0x4e24, @multicast2}}) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:39 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-generic\x00'}, 0x58) r2 = accept4$alg(r1, 0x0, 0x0, 0x0) dup2(r2, r0) r3 = syz_open_procfs(0x0, &(0x7f0000270ff2)='net/fib_trie\x00') sendfile(r0, r3, 0x0, 0x8000001edc0) 13:50:39 executing program 4: 13:50:39 executing program 4: 13:50:39 executing program 4: 13:50:39 executing program 4: 13:50:39 executing program 4: 13:50:39 executing program 2 (fault-call:11 fault-nth:91): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:39 executing program 4: 13:50:39 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) socket$inet6(0xa, 0x2, 0x0) syz_init_net_socket$llc(0x1a, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x0, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, 0x0, 0x0) fcntl$setpipe(r1, 0x407, 0x4) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1119.624936] FAULT_INJECTION: forcing a failure. [ 1119.624936] name failslab, interval 1, probability 0, space 0, times 0 [ 1119.636427] CPU: 1 PID: 28866 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1119.644318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1119.653674] Call Trace: [ 1119.656272] dump_stack+0x13e/0x194 [ 1119.659909] should_fail.cold+0x10a/0x14b [ 1119.664241] should_failslab+0xd6/0x130 [ 1119.668228] kmem_cache_alloc+0x2b5/0x770 [ 1119.672377] ? alloc_inode+0xa0/0x170 [ 1119.676182] selinux_inode_alloc_security+0xb1/0x2a0 [ 1119.681292] security_inode_alloc+0x8f/0xd0 [ 1119.685617] inode_init_always+0x576/0xb20 [ 1119.689943] alloc_inode+0x7a/0x170 [ 1119.693567] new_inode_pseudo+0x14/0xe0 [ 1119.697537] new_inode+0x1b/0x40 [ 1119.700918] debugfs_get_inode+0x1a/0x130 [ 1119.705061] __debugfs_create_file+0x93/0x3c0 [ 1119.709542] ? debugfs_create_file+0x37/0x60 [ 1119.713969] kvm_dev_ioctl+0xd71/0x1480 [ 1119.717935] ? kvm_put_kvm+0xa90/0xa90 [ 1119.722184] ? kvm_put_kvm+0xa90/0xa90 [ 1119.726083] do_vfs_ioctl+0x75a/0xfe0 [ 1119.729889] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1119.734655] ? ioctl_preallocate+0x1a0/0x1a0 [ 1119.739100] ? security_file_ioctl+0x76/0xb0 [ 1119.743512] ? security_file_ioctl+0x83/0xb0 [ 1119.747926] SyS_ioctl+0x7f/0xb0 [ 1119.751296] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1119.755277] do_syscall_64+0x1d5/0x640 [ 1119.759175] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1119.765230] RIP: 0033:0x45c829 [ 1119.768414] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1119.776124] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1119.783395] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1119.790670] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1119.797946] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1119.805226] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:40 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x200000, 0x0) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, &(0x7f0000000180), &(0x7f0000000240)=0x4) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:40 executing program 4: 13:50:40 executing program 5: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-control\x00', 0x800, 0x0) write$cgroup_int(r0, &(0x7f0000000180)=0x9, 0x12) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_open_pts(r5, 0x0) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x248400, 0x0) write(r6, &(0x7f0000000340), 0x0) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:40 executing program 4: 13:50:40 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() r1 = socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) fcntl$setpipe(r5, 0x407, 0x2) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:40 executing program 4: 13:50:40 executing program 4: 13:50:40 executing program 4: 13:50:40 executing program 4: 13:50:40 executing program 2 (fault-call:11 fault-nth:92): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:40 executing program 4: 13:50:40 executing program 4: [ 1120.466625] FAULT_INJECTION: forcing a failure. [ 1120.466625] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1120.478977] CPU: 0 PID: 28942 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1120.486859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1120.496203] Call Trace: [ 1120.498794] dump_stack+0x13e/0x194 [ 1120.502418] should_fail.cold+0x10a/0x14b [ 1120.506587] __alloc_pages_nodemask+0x1bf/0x700 [ 1120.511263] ? __sched_text_start+0x8/0x8 [ 1120.515415] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1120.520428] ? preempt_schedule_common+0x4a/0xc0 [ 1120.525177] alloc_pages_current+0xe7/0x1e0 [ 1120.530790] __get_free_pages+0xb/0x40 [ 1120.534696] inode_doinit_with_dentry+0x7b6/0xe30 [ 1120.539550] ? selinux_cred_free+0x70/0x70 [ 1120.543804] ? put_itimerspec64+0x190/0x190 [ 1120.548327] selinux_d_instantiate+0x23/0x30 [ 1120.552731] security_d_instantiate+0x54/0xd0 [ 1120.557225] d_instantiate+0x5a/0x90 [ 1120.560948] __debugfs_create_file+0x15b/0x3c0 [ 1120.565525] ? debugfs_create_file+0x37/0x60 [ 1120.569917] kvm_dev_ioctl+0xd71/0x1480 [ 1120.573891] ? kvm_put_kvm+0xa90/0xa90 [ 1120.577785] ? kvm_put_kvm+0xa90/0xa90 [ 1120.581662] do_vfs_ioctl+0x75a/0xfe0 [ 1120.585461] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1120.590208] ? ioctl_preallocate+0x1a0/0x1a0 [ 1120.594727] ? security_file_ioctl+0x76/0xb0 [ 1120.599121] ? security_file_ioctl+0x83/0xb0 [ 1120.603628] SyS_ioctl+0x7f/0xb0 [ 1120.606986] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1120.610967] do_syscall_64+0x1d5/0x640 [ 1120.614856] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1120.620330] RIP: 0033:0x45c829 [ 1120.623774] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1120.631474] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1120.638726] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1120.645982] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1120.653250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1120.660508] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:41 executing program 3: r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0xb83, 0x0) dup2(r0, r1) mkdirat(0xffffffffffffffff, 0x0, 0x0) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) keyctl$set_reqkey_keyring(0xe, 0x2) clone(0x8100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = add_key$keyring(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f00000000c0)='dns_resolver\x00', 0x0, &(0x7f0000000240)="dee7030522cf9e5e1dbac27b0426fc0299c41fb9b9761a1b44dac894f3233a68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fee505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edecdbd8be51d9917c3e033b06b9e9860ab49c3a4f51ab0124b50c3362201a307df03000", 0x85, r4) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x0, 0x40, 0xffffffff, 0x4, 0x0, 0x0, 0x80}, 0x0) r5 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r5, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r7, 0x407, 0x0) write(r7, &(0x7f0000000340), 0x41395527) vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:50:41 executing program 4: [ 1120.804191] Option ':híó5«ó^Å' to dns_resolver key: bad/missing value 13:50:41 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x6, 0x1, 0x0, 0x80, 0x0, 0x0, 0x0, 0x1000000, 0x400}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r4 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r4, 0xae00, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r4, 0x40806685, &(0x7f0000000280)={0x1, 0x2, 0x1000, 0x69, &(0x7f0000000140)="2eb70e71163367e4203bfe023f0c0954b0fd9548b5a6b9ae046c1f8c3b6e3b5cb649c01947912a61fe7fe535ce28f5e32807b91de40957436307e72173c13e2fdb0758fab8853cb3f16e10303e24d74edca4d16c5a435d8bc2eebd5fbcb871c9582c9cb5ce2c73bd2a", 0x35, 0x0, &(0x7f0000000240)="0d60b473e504a6bc6d92b0d80e99ca35eb0ea2fc256860b2359f9fcb69049c2f175e3847e0b6e1832fb616fb989e646858d9f2a271"}) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:41 executing program 4: 13:50:41 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r3, 0x8982, &(0x7f0000000100)={0x1, 'veth1_vlan\x00', {}, 0x2}) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:41 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r4, 0xc0505510, &(0x7f0000000380)={0x80, 0x3, 0xd5d4, 0x7, &(0x7f00000002c0)=[{}, {}, {}]}) fcntl$setpipe(r2, 0x407, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='/dev/kvm\x00') r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:41 executing program 4: 13:50:41 executing program 4: 13:50:41 executing program 2 (fault-call:11 fault-nth:93): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:41 executing program 4: 13:50:41 executing program 4: 13:50:41 executing program 4: [ 1121.379076] Option ':híó5«ó^Å' to dns_resolver key: bad/missing value 13:50:41 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(r5, 0xae9a) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_NMI(r5, 0xae9a) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:41 executing program 4: [ 1121.497838] FAULT_INJECTION: forcing a failure. [ 1121.497838] name failslab, interval 1, probability 0, space 0, times 0 [ 1121.509314] CPU: 1 PID: 29011 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1121.517288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1121.526642] Call Trace: [ 1121.529236] dump_stack+0x13e/0x194 [ 1121.532876] should_fail.cold+0x10a/0x14b [ 1121.537032] should_failslab+0xd6/0x130 [ 1121.541010] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1121.545682] ? up_write+0x17/0x60 [ 1121.549228] ? __debugfs_create_file+0x2c6/0x3c0 [ 1121.553985] ? debugfs_create_file+0x37/0x60 [ 1121.558498] kvm_dev_ioctl+0xdc4/0x1480 [ 1121.562480] ? kvm_put_kvm+0xa90/0xa90 [ 1121.566359] ? kvm_put_kvm+0xa90/0xa90 [ 1121.570250] do_vfs_ioctl+0x75a/0xfe0 [ 1121.574064] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1121.578827] ? ioctl_preallocate+0x1a0/0x1a0 [ 1121.583250] ? security_file_ioctl+0x76/0xb0 [ 1121.587661] ? security_file_ioctl+0x83/0xb0 [ 1121.592062] SyS_ioctl+0x7f/0xb0 [ 1121.595432] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1121.599404] do_syscall_64+0x1d5/0x640 [ 1121.603303] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1121.608606] RIP: 0033:0x45c829 [ 1121.611793] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1121.619498] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1121.626847] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1121.634111] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1121.641560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1121.648833] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:42 executing program 4: 13:50:42 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket(0x28, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:42 executing program 4: 13:50:42 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$PPPIOCSCOMPRESS(r2, 0x4010744d) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r3, &(0x7f0000000100), 0x0, 0x10021, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r5, 0x407, 0x0) write(r5, &(0x7f0000000340), 0x41395527) vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:42 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) ioctl$VIDIOC_PREPARE_BUF(r4, 0xc058565d, &(0x7f00000002c0)={0x81, 0xb, 0x4, 0x10, 0x5, {0x0, 0xea60}, {0x3, 0x1, 0x3f, 0x81, 0x5, 0x2, "aab69273"}, 0xfffffffc, 0x2, @offset=0x1, 0x3, 0x0, r5}) ioctl$USBDEVFS_FREE_STREAMS(r6, 0x8008551d, &(0x7f0000000100)=ANY=[@ANYBLOB="040000000d0000000e880389018b0b02835064943c89fcb0f9d003e2ff08"]) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:42 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r0, &(0x7f00000006c0)=[{&(0x7f0000000400)=""/103, 0x67}, {0x0}], 0x2) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0xccf3, 0x0, 0x0, 0x800e0050e) shutdown(r1, 0x0) dup(0xffffffffffffffff) shutdown(0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f0000003600)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000100)="d3d6c628dfa73f9e91ebf5f1fcb8ac6601fcc36a96682491f4e1cf2913003bb6b3a06ea3eae3590876971fba7382c80dc616cc74733312b23ae47db214a813cec36e84012f8c6562eef5bc8b84a2f753ea8c894af4c958236eea55abcf399e150291b5c3d40ca9decd099c946b333e168979b7102950148e75a279cb4107bc76e02edd6e71fe6a30796c96b93c45bd226f84e496c3469be04f4b93c619f7029a6104a0f42d9fa04e8ce5424fa24adc567a951a", 0xb3}, {&(0x7f00000001c0)="f6b4d690f90c889ffc32474d4811144c90c24846934999644804a19260702907e229120c1f7c5d3bd21511486fc7caed049b9eab907d7443b7c23cdb854bed9af17da88b7965573f506529bf9bce17c9fcab4cb699e6edfde5fd060356fadef29c68b2df0b56f5f90649811583ce462f36b7488b0875a9c9ef7477cee7f6b0f3a67e329d631a224f10e70d8d758c5cb50c0f18f28ce0a62a47ae5d8a9bf06bcbeb435ca3f1dc92cc5223cb5cb13022aea43e82d086dbd104acf4563387c18cb04a848b3147cb049e948d8d9aa965810c4fef5680", 0xd4}, {&(0x7f0000000500)="83af2abe9b83858383d4677ad2ba174ba3df8f5d730510391536be133c5a9456a39ba2b45df98ed71f8c370bff314611424b264627fc79be5f5307bd17c393fe87930276", 0x44}, {&(0x7f0000003640)="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", 0x1046}, {&(0x7f0000001340)="1b0a64e3bc6aac003906ccf6e00354889ee77ad07a5d4de9e060cd8968cd9ad30d3d", 0x22}, {&(0x7f00000024c0)="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", 0x17a}, {&(0x7f0000001440)="26d92a83d528c3d4f1f27c9af046936d53a0d6a57ed05c098644f755d723e3b8d6d521507760bbd1e4877cd88cadc8f149cf21c9c2", 0x35}, {&(0x7f0000001480)="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", 0xc1f}, {0x0}], 0x9}, 0x0) shutdown(r2, 0x0) 13:50:42 executing program 2 (fault-call:11 fault-nth:94): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) [ 1122.394163] FAULT_INJECTION: forcing a failure. [ 1122.394163] name failslab, interval 1, probability 0, space 0, times 0 [ 1122.405648] CPU: 1 PID: 29082 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1122.413545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1122.423073] Call Trace: [ 1122.425663] dump_stack+0x13e/0x194 [ 1122.429294] should_fail.cold+0x10a/0x14b [ 1122.433572] should_failslab+0xd6/0x130 [ 1122.437553] kmem_cache_alloc+0x2b5/0x770 [ 1122.441709] ? __d_lookup+0x3b4/0x670 [ 1122.445520] ? mark_held_locks+0xa6/0xf0 [ 1122.449701] __d_alloc+0x2a/0x9b0 [ 1122.453178] d_alloc+0x46/0x250 [ 1122.456460] __lookup_hash+0x51/0x180 [ 1122.460261] lookup_one_len+0x27c/0x3a0 [ 1122.464241] ? __lookup_hash+0x180/0x180 [ 1122.468312] start_creating+0xa1/0x1c0 [ 1122.472204] __debugfs_create_file+0x4f/0x3c0 [ 1122.476739] ? debugfs_create_file+0x37/0x60 [ 1122.481339] kvm_dev_ioctl+0xd71/0x1480 [ 1122.485314] ? kvm_put_kvm+0xa90/0xa90 [ 1122.489245] ? kvm_put_kvm+0xa90/0xa90 [ 1122.493143] do_vfs_ioctl+0x75a/0xfe0 [ 1122.496947] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1122.501711] ? ioctl_preallocate+0x1a0/0x1a0 [ 1122.506573] ? security_file_ioctl+0x76/0xb0 [ 1122.510987] ? security_file_ioctl+0x83/0xb0 [ 1122.515437] SyS_ioctl+0x7f/0xb0 [ 1122.518983] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1122.522974] do_syscall_64+0x1d5/0x640 [ 1122.527083] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1122.532282] RIP: 0033:0x45c829 [ 1122.535613] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:50:42 executing program 4: dup(0xffffffffffffffff) shutdown(0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r0, &(0x7f0000000480)=[{&(0x7f00000001c0)=""/176, 0xb0}], 0x1) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0xfd1d, 0x0, 0x0, 0x800e00505) shutdown(r1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f0000003600)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000100)="d3d6c628dfa73f9e91ebf5f1fcb8ac6601fcc36a96682491f4e1cf2913003bb6b3a06e8beae3590876971fba7382c80dc616cc74733312b23ae47db214a813cec36e84012f8c6562eef5bc8b84726dc4993b6e4479be4f71aea2f753ea8c894af4c958236eea55abcf399e150291b5c3d40ca9decd099c946b333e168979b7102950148e75a279cb4107bc76e02edd6e71fe6a30796c96b93c45bd226f84e496c3469be04f4b93c619f7029a6104a0f42d9fa0", 0xb3}, {&(0x7f00000001c0)="f6b4d690f90c889ffc32474d4811144c90c24846934999644804a19260702907e229120c1f7c5d3bd21511486fc7caed049b9eab907d7443b7c23cdb854bed9af17da88b7965573f506529bf9bce17c9fcab4cb699e6edfde5fd060356fadef29c68b2df0b56f5f90649811583ce462f36b7488b0875a9c9ef7477cee7f6b0f3a67e329d631a224f10e70d8d758c5cb50c0f18f28ce0a62a47ae5d8a9bf06bcbeb435ca3f1dc92cc5223cb5cb13022aea43e82d086dbd104acf4563387c18cb04a848b3147cb049e948d8d9aa965810c4fef5680", 0xd4}, {&(0x7f0000000500)="83af2abe9b83858383d4677ad2ba174ba3df8f5d730510391536be133c5a9456a39ba2b45df98ed71f8c370bff314611424b264627fc79be5f5307bd17c393fe87930276", 0x44}, {&(0x7f0000003640)="fe18d9618e08db3f0576ca0a3abd7106590c065d1c1215a40a93c8136e91540dc9a517ea0dc31816f015a1094543a75b89d8cadfb7acd9199b0a2e8761e17c0013cdc97c15cbe52c04f165f14d178d37acef5b0937a3b78c1914c099514bcc41cebb67dbffb76b560679df2c5e4ba4c83ccd9496ff38d7b414a1104e013fa30e24d4e85ecfd46ded6773dd1b8524b27a98aa697c2e5194ed953e3253208ec64799463f992052f99adc0dba6094c5d672a4e6b8c01caaebbb4dcdab5aa4590e1c9993be8ad3d333b2a157517399429db211e8e6c35c365e3fba42f7ca1ce6bdf9da9239a5a969e729cef4b99d336a20cd9a81fd5a41a8949d794f58d4a0fe3725cad3eec9a937e3059bbafe733153692469684952ce24c11884c298398e1e53354df4ed55a9b0d82e9c0c2e29170f8682ac6af4a3d05012bb61cc6c1b9e60ad1530808ca16fb1b962b8973d76d4aaf3914da49012c3a9147e904df50783ad88b73f8f186e15562014c8ec2ad2e2c113972fd25705869034df99bd3c1c07e49691632d4a3c21799e2ef46506390d9d0dbbd82180351469bb5bea4d71e31fdb1e916d34131c5b3aa889e69988b469a45d0d77cffd882428c7a364cb82312f7bbc87654a64eb5d80c40e0a5eb5b9e71ae66ad2a5a2d77d5fb4d9dce906affd3433087dfc2c42664e13f00b0c66c226cd17e0a87fd0bb752f44b92e7be80fd1ba2bad7de506898c8873983b0ddde56f4963b9311ac2454a473028894ae5bc0fb4d9eda73ecfc425893b0cbc6452f6ac942f8d4b84b3009203452fd138aee387109d5ea138a100a3029624fdadf3b3429bd96b7583874ab93344b7e94b9ab3718615f1aa26051e1a9ee819f45b5730c4f5b4e1c446ed35802afb2aa890ff996437cedd3c46bd64c89fa725f53ac7815faf3f20692e0c02e9fa92393923ec681b8a9e2088a19d9601f996bf4d503fbefbac13ca80c83d4abf12c6c29ea733d90035e52cc8deabfd3f907ecd1c43f8e07dd344f854f9e064233435d9af1aac81bbf33e6494b06fb7f88a280b3fba0372aceb4d1c4dba048bd4b0afcbb3e7785b94fb3ba82f3d608751ed15b026e818f10d6fca21c6e8db7dd4a82dd09436a623337844c066e767823f7d66fc4cf0a595187dbe7effac67ead68d012cfb83c8f54fb32e6edc6a8d091f84295c697a2d13238ad5e24da8de38df9f93e3a8379f0f74568293b17ac0a33e634d31819c38df72e8bfcb07dbaa7f59f379d442dbb76ddc8d95e64f172a02d6b19b96e659589837d7ba17a8eab97b4731ea8db4db5a09f1615566e20cc56fa1f6cf7cb3a25d4ad17699c0120e1cebc418b3603f1578270d4257c26b83645259993653a1e0278fafc879159a13cd15fe20e4318e746f188b5860ffc41465a7269f3602ddc263293eb654ba540545012cbff017dc67473769be9e2367f2411c00c603d4953d852242b7f2c92baefb8c8024703c19d5132eec481a0bf9902f921af82203a3f8864e1e1ba04e9d26e738a2efc722f5cd57d6ba868bbbb332b5e5e702cf677a0e73d302b575553bf44a3688f0409f8cae335b8e0c9aa69d79565c1de6281f6c1bd0db1c523cf1dd1533f2bd00a89778b1c4c22a57a5cf80e0c952bd29b79f5d7ee874d22e84427a7ea4758689b22e9a2b882ad0e6ba422745495bb3e9318d8f4aff58b6e5149801bb783af3284088aff85a46966b2a0b4727ffc612ca36ceff282f6d8265731bb82065289846cfb77d9d0acf1faf61de4d69f10a5cbb84add13699655353dabfaf0334cfd633a120fd6ffb9d4c2b1e6f45f226cda2c956f11172279487a97c99d07abdc2e53e11c3e75c0023c97590f2ff11dbc36a2b22afcc98a32f72e42897df3d89838cfb5d4538d8d23669cbd298d9c63127f3a662730e42e9a490bf125f6c62fe68cc605d6462b6b7a311633dc74350a5711ea0e14e0f56cffa436a896e4eca49ea92c3095c97b0dc36c284d47c6e441280e26296c1147283449de8d5a57ce7cb9fdfbe56b22225733727009d61ad0887c4fab0e51ca8c73facb5a6c808eb057d29fa47ccd9c52f5a73af3978c612c25fb79d405ac225e8d7cc2f563631e7f2a759ba8c9e79a9b7950cfb184bc233e3223bda34ddb510d63642a7dac60ac906e4393b464939882c3f8bc7a8b9bccc7472d6c5a5af55c35abacc13e6eb317d61deebe6562995078a9934d7df6ce81d34cd175b1c91b2a30eebafec438b2b06cc26d9e44f5db1233cb12f88d2e4ecab44e5af23c3fd3a089c0211ecbd86269e1fc75de7e4bd3fda557a53632ee27951ad7ffe2ecf34f3a1e8d8f95a032d68763edc25968eddfb232285bc435e7683ff7d5c64e3b4c7ad551dfffb5163d372a2567db470a9858c8e6c483ecb28a389d731cdb3a1af26d0c196f976ed9d56d955f83e10b43b4f71cadc23ceb84f4c658141619b0f226639f5950a76c6eb2a56db45b51db846d8d274eaaa0124d426b712b0456482712bfcf7922b683a7f5ac640d859a8c48c6377e098000628611ced4f126298226cd4d9838884f670dc40bb7844ae66fe062e5e4d1da151373ef233597d28f0b61d2428be37f71c994afa2409825d655d2ad30e50aede0b5e4e22d894f8d6839568fc2fe7bca20482639293f0e014bbe2c4e3faaa033a4f3c0b2dcb19c5ed6a273dd6cfb102e902fcdfc8b3f30f70653c3f921b4fa10ba26febf62c7951024751b93eaa93c751f8a16bf555c08801e95f40fa0086275468c623fcac38d47d705ad31d94cf7810d8fedd880fecd6999913ff14898778390bd92a649929fa695cb195895ec89ad6673842be9b2fcb2cf45f197ffde9d1cccdfb9a67989aedc6987f4e07ed45f82f48e9f979a29fde4f2522d8244d226bca5269d8e007cfc89c5459aaa80b3f1f44b6adf16a07f3cd3b5cdfef469908ddfc3430e8a2537ed7fc4ca758c8544725ead0a86e70d92600d6e27c5596cedf5443f334e50c2d082bbe379a3be0e3e486f085e52558ebdf793112cadfa2855b274869ad3c1f5f0863b6d961921aa65465d04d36283caa2df8b0d3c050d3dd594b36c1e169c8e5e7c126cc81cdf2362a3b51f8e6fa16fdf9a02ae696ae6a61e645f6dacb8658a099a63824ac5d7b029d883841264c4a9bccff3264551812f7e949cb7307e056dabd6bd5c86848f2b6716072930f0793dad8062000eb8e91ad814d5719c5aec5be198c2f0fa926c6d41be8cc1d30ce0c0aef17a2364205da96598d37fa718d8251d46c92f1d549a9e6e31be1b7f0bfb135ff0ed9508fa91c73e863edfd06f957eb4955694a7f45283b2f1254c21f5a3e7e9834f4b4927f2b3d3ef2260ea5ce25828a6b645854a8518d600bbc7e728fac4d0561d482c3fdb3c07ce58d19e70213a7fd4111547e9eb8250de01eb845edf798a4b6c9b5e090f167c3f5b6088c285b962755e867f0e57991155167d00bdc8dd268452684f655dc42e40846b04608d2abf5d023c04f93dd521e8849783d5d1a4981ad621ae990572506d7d8744d53186460b96959a22be7c3f9d34cc853cf944ae92ed11207fb6442577d03e27e05340c2cda4e71b929382474d346f885bb0486471a768e50a4274cfb705193412c7b45de6c88fc095f9aa90e696635d8fa9d6e286d05a5f1e9d2315e1d26bbe25559db30696b8ae61807e40dbeca2640c59587b7754ac863fe43120cfbe0505d87f3d86b5fcc74029a6c70356d3a10081f71c561da90873179f573f82b5efe5653967c16a2b52e2d6c09f3e0c19c3a0b510a0675389ef043c537c0030a144ea0e841766fa002700ea9e4388caec65e77fc028296fe3865bc87b459e558449cb6180a96fe267cc1bfd638c1c9d48d2cd59ef3b12426e2ed9ff119397a66f2f6b45dbc22ac3787c4ad0336ac8ad7250e9c89fe465c118c2aa97509410f30952e311cb57b0c10fa52e0f9318e7da975e9dc95032dad57c0e520238b1f6a6aad117ede5b9d2d7f3f230ef5fb558547623ae08cc7474410d1dd151b5784f3dadd6d162fd45bdafd356eeee49f4391d1b135c2762f31e25069561977c5893264d890d50583ae14e685f4ee2ad25ffbd919101e6a91e2f00d950f7add31c5fe6c68ac9d8b714531f3cc65d1db5fd98edae34ee50889968aeff245d749dff156cebea234623c535cde831e366c0067d358cc34a9df66d9aa645495ef39e6232ab3bc6c2c9d7e8ceefb578d0d0d141564a1d6b62b63660ff8d3a940be7297b5a756ee742fe845f0f3357a618c58172619981e37e4acf560d876ec68559e6bfaa241e0b137f81f259c45787d1023061e927701a00abfee1ec03394f0a8bc3c1597c459bbf2af40f8fed1171078fe76a9a7b3e3eb6e9927dc4b8f9928b343f1ad9cada8fecbf9f02800ae697309fddf515740a3303daa7abd89ac103d695327f7c195b3303bf6835b0b30c1237f529c3a5c785d5e4bda8ccac98a75d5981576cecf4c6d5a3d9aaf704f780a9f6e1487402f64a240a63bfa99b33699bd4fa30dbef7b595c5a33ee3b900f57ad95ddf2eedaf21f5fe68c9eaf4c9a7a6e71d797e0d62b3a82abb9cb8d23977d956305caa1c9165c3c58b9d62e0677f83880603800d40c2c62c09c2df7cb1ae01d6acc86678764390f9c639efbb299125be26c4181b312ee7bf2025226500dbe7fa1139d6f7a8689f57ad397bb624d4ab3404c47ceb77d613b7b91456ec443df453c7e17e06ea25f12f59e561651fe1bfb7019237f01099a997482bbbd414d354462ceaf07b84c1bc4588c93f4d398dd913e8123eee82ed6ed54df22586ce83fef0379be2a4a0367e90c53e2430b3cc15e2470b7106a40989dc3ca777b94908ae61a13fda4c0280c44de705e1f381205520bbc6987b1b0cd2b86f7b96d597e8a588a2eee79e8fa8eb583bd370c509694c93502368605288b1cb04eb78feda4e9b9511f0d879e77bc4c7944d7ea8e0ce8753346121a989f9126150fde393d333e5546465dd0fe72311ab359259696ca4f3d8208cb9bc4634e6c55c038d4c99adb05c2a272bec73fe62919f86ffcdc95571d734f85d01aa65d5ccf42cc669b17b61b94219d9e18c4d8d3f1a1f244ebfee7db3c65f96255cd99a20189fd6549a99424b0f19b851892fd18e433d8c934b013ba9e597e492bc6573f33ea8efdb92b20be937ee31d165838d79953b11e6b96274a7ad74b17969faf2713f06362201cadd8ee0bdb519ba87f4f8756484c349e33161a592ec76faab7f8f46d72ee2a2eb945e1d9a17f0bbbe3d0f62e9391f81a7260fdbc9e6a83443d8264ebe2f7cf6cb8ccce5ed5dc4d9afe6fda591b64289502433ab88bea7c654d6016143bdce20ea6df668bba2500d2b3ab99c4a9796ca6df034f77123d4c57ce9b5ea184c595fe67d50b74e7a69dd3c334e8f46f756f34094cdd5a8348e9f1c281d2d57593845a2aba133df14ee676e2a606a560c2de8350367bcc32619a4537a9602f99cd6fcc1c42a7b2dd70c69edd2605a075b00e6c058690f2834ea7f71eff1b366a38d6f32fb4de3bb8f8dfb5cbc212db95e13b03de70faeb3d9a8a7793b478deb285524adb63c882b7a9c9e5a294b56a06b5603c082de2017adc5b3641f3d24303898979d2a5e4b950e7138b6f00759862467707bff7c715c899add2a948a02887007a37f985daabd6e86deb2d39d6573efe2480cadd3d757f302ce638c23a41d4a004b37b1c67285d4c1288aa1bd0743363fee760b28bc0036bd5ce0e3a934331f2e7f6ff59323de10b37cb0d424885ade56c3ab7ace741faeccf18f08373a0745d1a48ed5a600000000902548920a3dc804c6d3104d4b5dcf656e6e4c5f9c2109382f15cd652e7c60230cd2c2a33503180a61ecf2f23a0856d78af724d423089e9a8a96c4a4969c", 0x1046}, {&(0x7f0000001340)="1b0a64e3bc6aac003906ccf6e00354889ee77ad07a5d4de9e060cd8968cd9ad30d3d", 0x22}, {&(0x7f00000024c0)="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", 0x17a}, {&(0x7f0000001440)="26d92a83d528c3d4f1f27c9af046936d53a0d6a57ed05c098644f755d723e3b8d6d521507760bbd1e4877cd88cadc8f149cf21c9c2", 0x35}, {&(0x7f0000001480)="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", 0xc1f}, {0x0}, {0x0}, {0x0}, {0x0}], 0xc}, 0x0) shutdown(r2, 0x0) [ 1122.543740] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1122.551038] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1122.558320] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1122.565595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1122.572866] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:43 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() r1 = socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20040800}, 0x480c4) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeff9ff4ff23fa6ef49ae993da61a7a84fe809005300fff5dd00000010000100070c10000000267445dc69b07dff0ed5716940d6d1ffa4d294b5f50a61b957b80dc8f5b0e4ef6fec6abaac65580226a85f6ce7b24eedc41fcd4c56f0212fbb041e2fab0e53cc4577fbfa10447a9176869eb8a4de7b46c6e8ac2ec944bddfde9fbd9293fa42a5d3f6b7c8ce045b4f716e0a4881188c40966cf9478524296e64621a8b3eba055f9baf19763f96aba15f44b5a308", 0xee}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) dup2(r5, r1) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:43 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x1, 0x9, 0x1000000000000}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) accept4$netrom(r3, &(0x7f0000000240)={{0x3, @default}, [@default, @remote, @null, @bcast, @default, @bcast, @default]}, &(0x7f00000002c0)=0x48, 0x800) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='trusted.overlay.nlink\x00', &(0x7f0000000180)={'U+'}, 0x16, 0x0) 13:50:43 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000004280)=[{{&(0x7f0000000340)=@xdp, 0x80, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/26, 0x1a}, {&(0x7f0000000400)=""/107, 0x6b}, {&(0x7f0000000480)=""/104, 0x68}], 0x3, &(0x7f0000000540)=""/45, 0x2d}, 0x1}, {{&(0x7f0000000580), 0x80, &(0x7f0000000840)=[{&(0x7f0000000600)=""/18, 0x12}, {&(0x7f0000000640)=""/221, 0xdd}, {&(0x7f0000000740)=""/248, 0xf8}], 0x3, &(0x7f0000000880)}, 0x8}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000008c0)=""/18, 0x12}], 0x1}, 0x101}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000940)=""/252, 0xfc}, {&(0x7f0000000a40)=""/9, 0x9}, {&(0x7f0000000a80)=""/178, 0xb2}, {&(0x7f0000000b40)=""/53, 0x35}, {&(0x7f0000000b80)=""/176, 0xb0}], 0x5, &(0x7f0000003f40)=""/156, 0x9c}, 0x80000000}, {{&(0x7f0000000d80)=@pptp={0x18, 0x2, {0x0, @empty}}, 0x80, &(0x7f0000001080)=[{&(0x7f0000000e00)=""/39, 0x27}, {&(0x7f0000000e40)=""/144, 0x90}, {&(0x7f0000000f00)=""/76, 0x4c}, {&(0x7f0000000f80)=""/224, 0xe0}], 0x4, &(0x7f00000010c0)=""/143, 0x8f}, 0x6}, {{0x0, 0x0, &(0x7f00000013c0)=[{&(0x7f0000001180)=""/155, 0x9b}, {&(0x7f0000001240)=""/16, 0x10}, {&(0x7f0000001280)=""/150, 0x96}, {&(0x7f0000001340)=""/126, 0x7e}], 0x4, &(0x7f0000001400)=""/151, 0x97}, 0x404}, {{&(0x7f00000014c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000003bc0)=[{&(0x7f0000001540)=""/241, 0xf1}, {&(0x7f0000001640)=""/222, 0xde}, {&(0x7f0000001740)=""/151, 0x97}, {&(0x7f0000001800)=""/4096, 0x1000}, {&(0x7f0000002800)=""/193, 0xc1}, {&(0x7f0000002900)=""/94, 0x5e}, {&(0x7f0000002980)=""/143, 0x8f}, {&(0x7f0000002a40)=""/73, 0x49}, {&(0x7f0000002ac0)=""/226, 0xe2}, {&(0x7f0000002bc0)=""/4096, 0x1000}], 0xa}, 0xb8c}, {{&(0x7f0000003c80)=@isdn, 0x80, &(0x7f0000003dc0)=[{&(0x7f0000003d00)=""/100, 0x64}, {&(0x7f0000003d80)=""/55, 0x37}], 0x2, &(0x7f0000003e00)=""/134, 0x86}, 0x7}, {{&(0x7f0000003ec0)=@ipx, 0x80, &(0x7f0000004140)}, 0x423}, {{0x0, 0x0, &(0x7f00000041c0)=[{&(0x7f0000004180)=""/40, 0x28}], 0x1, &(0x7f0000004200)=""/71, 0x47}, 0x1}], 0xa, 0x62, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) r1 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000180)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x44, r1, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x4010}, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:43 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r1, 0x80184153, &(0x7f0000000180)={0x0, &(0x7f0000000100)=[&(0x7f00000002c0)="a9f4b4f9584866bbbe4a77ebf799555ec97222ae574f269be09dafbc8751bd32624ca25249c536e0fd8221605de705db86e05e2ff432a377e4c4a7aa27344b719fba83a2b14e9a5b52f776174e9af4953d28fc8af63952da370eb85d193e092b3f3f873d0e872e91019f3a6470e6fc0dce919fc75e8222b57231a6ca9090947a281815196e57bb7468e59d1ac03b4d866d0dbfb406192d2ed9093f39f0931dbf67a2d6085e9920708a2c4ac891d0f79cc853508cdb3e90dc172642b13f92848112367b056e8e225dc9f1301b64740eeb7263022ea341c6ebcc49315ff7ab282a4d74f8e36404ff8b0cd8fa009ae140", &(0x7f00000003c0)="5d3f4d1a993684933364040341d75f01cf0a4634c176d25eaf7f87ef408201ecd62147bc26e105dbdc5eed462fb274c969022638945156f704a965c83519d6dfc1de10d59c94f4182e2df2c57c004c7eefa909912e6e9710c17bead2f932ceb975c961283d00a29b919aca8b225ee0c7074c2d6c2efb4320dfdf48c9b2de61bb9aaaee2c45f0f37c94b486a17e6e009112f6b2369a445364abf2", &(0x7f0000000480)="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", &(0x7f0000001480)="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", &(0x7f0000002480)="b435c24b237dc0d86e4a4a58353752e6d2659526b4a4e370f1238b07772d18c53cc46abda26e561c06df8be58fd37922876b212e97f5d5498708b12ea93ea728670175799ca44e43de1b270e59763a4ebce8157178b3a8095d7faa5440a2b9783a20f4673fa1cb24fdfc565e8d14797b52617284e207e911799358f4b4e1f3594dd60fb6a65d59edc5286232792444beb98788c88b379258baca7f74d1ab530299906d9074c7db857307b9bd06f0baa17383d2286a9fecf3bc3cc163ed20", &(0x7f0000000040)="41981b1b5618833e33df5d7a16f02be2822f2c4e9ec4067202333ff3741debcac0963ab25b8bf49f74642621ba7a0bcd22703dde1d"]}) 13:50:43 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/172, 0xac}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r1, 0x0, 0x73a0b1b, 0x0, 0x0, 0x800e00549) shutdown(r0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001600)={0xffffffffffffffff}) r3 = dup2(r1, r2) recvfrom$unix(r3, 0x0, 0xffffff2b, 0x0, 0x0, 0x0) r4 = dup(r1) shutdown(r4, 0x0) 13:50:43 executing program 2 (fault-call:11 fault-nth:95): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:43 executing program 4: msgget(0x1, 0x240) [ 1123.458307] FAULT_INJECTION: forcing a failure. [ 1123.458307] name failslab, interval 1, probability 0, space 0, times 0 [ 1123.469953] CPU: 1 PID: 29159 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1123.478022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1123.487378] Call Trace: [ 1123.490964] dump_stack+0x13e/0x194 [ 1123.494600] should_fail.cold+0x10a/0x14b [ 1123.498951] should_failslab+0xd6/0x130 [ 1123.502938] kmem_cache_alloc+0x2b5/0x770 [ 1123.507088] ? lookup_one_len+0x284/0x3a0 [ 1123.511242] alloc_inode+0xa0/0x170 [ 1123.514868] new_inode_pseudo+0x14/0xe0 [ 1123.518841] new_inode+0x1b/0x40 [ 1123.522209] debugfs_get_inode+0x1a/0x130 [ 1123.526355] __debugfs_create_file+0x93/0x3c0 [ 1123.530852] ? debugfs_create_file+0x37/0x60 [ 1123.535350] kvm_dev_ioctl+0xd71/0x1480 [ 1123.539329] ? kvm_put_kvm+0xa90/0xa90 [ 1123.543219] ? kvm_put_kvm+0xa90/0xa90 [ 1123.547106] do_vfs_ioctl+0x75a/0xfe0 [ 1123.550906] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1123.555670] ? ioctl_preallocate+0x1a0/0x1a0 [ 1123.560095] ? security_file_ioctl+0x76/0xb0 [ 1123.564511] ? security_file_ioctl+0x83/0xb0 [ 1123.568926] SyS_ioctl+0x7f/0xb0 [ 1123.572292] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1123.576270] do_syscall_64+0x1d5/0x640 [ 1123.580163] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1123.585347] RIP: 0033:0x45c829 [ 1123.588531] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1123.596240] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1123.603526] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1123.610818] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1123.618092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1123.625367] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:44 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x0, 0x401) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = getpid() sched_setattr(r3, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) ptrace$peek(0x3, r3, &(0x7f0000000100)) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:44 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r0, &(0x7f0000000580)=[{&(0x7f0000000400)=""/103, 0x67}, {0x0}, {0x0}, {0x0}], 0x4) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0xccf3, 0x0, 0x0, 0x800e0050e) shutdown(r1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f0000003600)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000100)="d3d6c628dfa73f9e91ebf5f1fcb8ac6601fcc36a96682491f4e1cf2913003bb6b3a06ea3eae3590876971fba7382c80dc616cc74733312b23ae47db214a813cec36e84012f8c6562eef5bc8b84a2f753ea8c894af4c958236eea55abcf399e150291b5c3d40ca9decd099c946b333e168979b7102950148e75a279cb4107bc76e02edd6e71fe6a30796c96b93c45bd226f84e496c3469be04f4b93c619f7029a6104a0f42d9fa04e8ce5424fa24adc567a951a", 0xb3}, {&(0x7f00000001c0)="f6b4d690f90c889ffc32474d4811144c90c24846934999644804a19260702907e229120c1f7c5d3bd21511486fc7caed049b9eab907d7443b7c23cdb854bed9af17da88b7965573f506529bf9bce17c9fcab4cb699e6edfde5fd060356fadef29c68b2df0b56f5f90649811583ce462f36b7488b0875a9c9ef7477cee7f6b0f3a67e329d631a224f10e70d8d758c5cb50c0f18f28ce0a62a47ae5d8a9bf06bcbeb435ca3f1dc92cc5223cb5cb13022aea43e82d086dbd104acf4563387c18cb04a848b3147cb049e948d8d9aa965810c4fef5680", 0xd4}, {&(0x7f0000000500)="83af2abe9b83858383d4677ad2ba174ba3df8f5d730510391536be133c5a9456a39ba2b45df98ed71f8c370bff314611424b264627fc79be5f5307bd17c393fe87930276", 0x44}, {&(0x7f0000003640)="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", 0x1046}, {&(0x7f0000001340)="1b0a64e3bc6aac003906ccf6e00354889ee77ad07a5d4de9e060cd8968cd9ad30d3d", 0x22}, {&(0x7f00000024c0)="295b63087aef99e4b734e91e4150b22f63e754f4ad961c82903a14a7e8e1028e78b3346ce2e00a304540bd3af2d028b04df323108e11f72929889466f634b85666b239e843a1617d9b1e51d675387b41eb2df506f0460c91f8d96937f584f2637bb0c48499d3460ff53027cbd7acaa2fb04861b71a7b65366ba32def1d6ba329c6136e2969172745d25c36d780d02413a49c95f1ad25868da05c8d4bf09e96b91d5ec48625918c70ad8ac35b028728e194e47c9156595ffcce6ca81a2b998213d0365a776774ee2e7572826d7368e8b51c4652a4f75a38d8b4625626d63e461a30efa80dc70d545645b34ece2d48d1a31a9b8a1149bbe3d52f03de4d8bc0acfa0b98ca5ca4351311a52438b42c729c8e92613bddd8351dcf23d1b8bbf9f4a93b253b7364a0052590175b249165580442942788d2c6ada86c2b7cc0edb470b5f802a99cdd6746c53ac6f5493161943931aa426820cb54d17ec4dd278c28a297362a7adc9f886f20b93e247ce6c5800d183b721240a819f72026c1", 0x17a}, {&(0x7f0000001440)="26d92a83d528c3d4f1f27c9af046936d53a0d6a57ed05c098644f755d723e3b8d6d521507760bbd1e4877cd88cadc8f149cf21c9c2", 0x35}, {&(0x7f0000001480)="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", 0xc1f}], 0x8}, 0x0) shutdown(r2, 0x0) 13:50:44 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x40000000000, 0xd4800) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0xf, 0xb, 0x0, 0xff, 0x0, 0x4, 0x8}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) getgid() recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:44 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25}, 0x24}}, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000100)) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:44 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(0xffffffffffffffff, 0xc01064b3, &(0x7f00000002c0)) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f00000000c0)={0x100, 0x87cf, 0x7, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_MAP_DUMB(0xffffffffffffffff, 0xc01064b3, &(0x7f0000000140)={r3}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) dup2(r5, 0xffffffffffffffff) ioctl$KVM_GET_PIT2(r5, 0x8070ae9f, &(0x7f0000000100)) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, 0xfffffffffffffffd, 0x42000, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:44 executing program 2 (fault-call:11 fault-nth:96): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:44 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$unix(0x1, 0x3, 0x0) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000040)={@my=0x0}) setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f00000002c0)={0x1d2, {{0xa, 0x4e20, 0xfffffffa, @loopback, 0x6}}}, 0x88) fcntl$setpipe(r1, 0x407, 0x0) r4 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000480)="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", 0xfffffffffffffe90) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000380)="4bc19045a019490a5ac38c5157c2f1a37b8877717c0f99b5d63ab743b2681092ac727ec577e4dcf9c89290bb0ac6dfc30b967ba3f6f8064d297073c47645c4b17e12c5361e454076a85f931894f7ac9ee5b796e1e6d98c8b346e8a29f02298f930c6002ae2dbc66e960f308b582f40e77fcb710c406ce2925d73762b7f88085a6ec0d1299de4a728cde521cf314ac8f93fcbf25132249f8661ffbb7751aa660e6c32dce779033a1d6338a4ab850f17f818133e099f39788ba95c9fbf4d2a7ba61025431796ca85ded22c77a54a3348be977acba489c41fab55421335cff8c04b00"/235, 0xeb}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1124.361847] FAULT_INJECTION: forcing a failure. [ 1124.361847] name failslab, interval 1, probability 0, space 0, times 0 [ 1124.373406] CPU: 1 PID: 29234 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1124.381293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1124.390781] Call Trace: [ 1124.393376] dump_stack+0x13e/0x194 [ 1124.397013] should_fail.cold+0x10a/0x14b [ 1124.401200] should_failslab+0xd6/0x130 [ 1124.405198] kmem_cache_alloc+0x2b5/0x770 [ 1124.409347] ? __d_lookup+0x3b4/0x670 [ 1124.413156] ? mark_held_locks+0xa6/0xf0 [ 1124.417240] __d_alloc+0x2a/0x9b0 [ 1124.420698] d_alloc+0x46/0x250 [ 1124.423989] __lookup_hash+0x51/0x180 [ 1124.427884] lookup_one_len+0x27c/0x3a0 [ 1124.431860] ? __lookup_hash+0x180/0x180 [ 1124.435932] start_creating+0xa1/0x1c0 [ 1124.439861] __debugfs_create_file+0x4f/0x3c0 [ 1124.444358] ? debugfs_create_file+0x37/0x60 [ 1124.448772] kvm_dev_ioctl+0xd71/0x1480 [ 1124.452751] ? kvm_put_kvm+0xa90/0xa90 [ 1124.456663] ? kvm_put_kvm+0xa90/0xa90 [ 1124.460551] do_vfs_ioctl+0x75a/0xfe0 [ 1124.464353] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1124.469107] ? ioctl_preallocate+0x1a0/0x1a0 [ 1124.473522] ? security_file_ioctl+0x76/0xb0 [ 1124.478229] ? security_file_ioctl+0x83/0xb0 [ 1124.482637] SyS_ioctl+0x7f/0xb0 [ 1124.486001] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1124.489982] do_syscall_64+0x1d5/0x640 [ 1124.493905] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1124.499089] RIP: 0033:0x45c829 [ 1124.502270] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1124.510077] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1124.517342] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1124.524606] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1124.532133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1124.539405] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:45 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) readv(r0, &(0x7f0000000580)=[{&(0x7f0000000400)=""/103, 0x67}, {0x0}, {0x0}, {0x0}], 0x4) r1 = dup(r0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0xccf3, 0x0, 0x0, 0x800e0050e) shutdown(r1, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r3, &(0x7f0000003600)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000100)="d3d6c628dfa73f9e91ebf5f1fcb8ac6601fcc36a96682491f4e1cf2913003bb6b3a06ea3eae3590876971fba7382c80dc616cc74733312b23ae47db214a813cec36e84012f8c6562eef5bc8b84a2f753ea8c894af4c958236eea55abcf399e150291b5c3d40ca9decd099c946b333e168979b7102950148e75a279cb4107bc76e02edd6e71fe6a30796c96b93c45bd226f84e496c3469be04f4b93c619f7029a6104a0f42d9fa04e8ce5424fa24adc567a951a", 0xb3}, {&(0x7f00000001c0)="f6b4d690f90c889ffc32474d4811144c90c24846934999644804a19260702907e229120c1f7c5d3bd21511486fc7caed049b9eab907d7443b7c23cdb854bed9af17da88b7965573f506529bf9bce17c9fcab4cb699e6edfde5fd060356fadef29c68b2df0b56f5f90649811583ce462f36b7488b0875a9c9ef7477cee7f6b0f3a67e329d631a224f10e70d8d758c5cb50c0f18f28ce0a62a47ae5d8a9bf06bcbeb435ca3f1dc92cc5223cb5cb13022aea43e82d086dbd104acf4563387c18cb04a848b3147cb049e948d8d9aa965810c4fef5680", 0xd4}, {&(0x7f0000000500)="83af2abe9b83858383d4677ad2ba174ba3df8f5d730510391536be133c5a9456a39ba2b45df98ed71f8c370bff314611424b264627fc79be5f5307bd17c393fe87930276", 0x44}, {&(0x7f0000003640)="fe18d9618e08db3f0576ca0a3abd7106590c065d1c1215a40a93c8136e91540dc9a517ea0dc31816f015a1094543a75b89d8cadfb7acd9199b0a2e8761e17c0013cdc97c15cbe52c04f165f14d178d37acef5b0937a3b78c1914c099514bcc41cebb67dbffb76b560679df2c5e4ba4c83ccd9496ff38d7b414a1104e013fa30e24d4e85ecfd46ded6773dd1b8524b27a98aa697c2e5194ed953e3253208ec64799463f992052f99adc0dba6094c5d672a4e6b8c01caaebbb4dcdab5aa4590e1c9993be8ad3d333b2a157517399429db211e8e6c35c365e3fba42f7ca1ce6bdf9da9239a5a969e729cef4b99d336a20cd9a81fd5a41a8949d794f58d4a0fe3725cad3eec9a937e3059bbafe733153692469684952ce24c11884c298398e1e53354df4ed55a9b0d82e9c0c2e29170f8682ac6af4a3d05012bb61cc6c1b9e60ad1530808ca16fb1b962b8973d76d4aaf3914da49012c3a9147e904df50783ad88b73f8f186e15562014c8ec2ad2e2c113972fd25705869034df99bd3c1c07e49691632d4a3c21799e2ef46506390d9d0dbbd82180351469bb5bea4d71e31fdb1e916d34131c5b3aa889e69988b469a45d0d77cffd882428c7a364cb82312f7bbc87654a64eb5d80c40e0a5eb5b9e71ae66ad2a5a2d77d5fb4d9dce906affd3433087dfc2c42664e13f00b0c66c226cd17e0a87fd0bb752f44b92e7be80fd1ba2bad7de506898c8873983b0ddde56f4963b9311ac2454a473028894ae5bc0fb4d9eda73ecfc425893b0cbc6452f6ac942f8d4b84b3009203452fd138aee387109d5ea138a100a3029624fdadf3b3429bd96b7583874ab93344b7e94b9ab3718615f1aa26051e1a9ee819f45b5730c4f5b4e1c446ed35802afb2aa890ff996437cedd3c46bd64c89fa725f53ac7815faf3f20692e0c02e9fa92393923ec681b8a9e2088a19d9601f996bf4d503fbefbac13ca80c83d4abf12c6c29ea733d90035e52cc8deabfd3f907ecd1c43f8e07dd344f854f9e064233435d9af1aac81bbf33e6494b06fb7f88a280b3fba0372aceb4d1c4dba048bd4b0afcbb3e7785b94fb3ba82f3d608751ed15b026e818f10d6fca21c6e8db7dd4a82dd09436a623337844c066e767823f7d66fc4cf0a595187dbe7effac67ead68d012cfb83c8f54fb32e6edc6a8d091f84295c697a2d13238ad5e24da8de38df9f93e3a8379f0f74568293b17ac0a33e634d31819c38df72e8bfcb07dbaa7f59f379d442dbb76ddc8d95e64f172a02d6b19b96e659589837d7ba17a8eab97b4731ea8db4db5a09f1615566e20cc56fa1f6cf7cb3a25d4ad17699c0120e1cebc418b3603f1578270d4257c26b83645259993653a1e0278fafc879159a13cd15fe20e4318e746f188b5860ffc41465a7269f3602ddc263293eb654ba540545012cbff017dc67473769be9e2367f2411c00c603d4953d852242b7f2c92baefb8c8024703c19d5132eec481a0bf9902f921af82203a3f8864e1e1ba04e9d26e738a2efc722f5cd57d6ba868bbbb332b5e5e702cf677a0e73d302b575553bf44a3688f0409f8cae335b8e0c9aa69d79565c1de6281f6c1bd0db1c523cf1dd1533f2bd00a89778b1c4c22a57a5cf80e0c952bd29b79f5d7ee874d22e84427a7ea4758689b22e9a2b882ad0e6ba422745495bb3e9318d8f4aff58b6e5149801bb783af3284088aff85a46966b2a0b4727ffc612ca36ceff282f6d8265731bb82065289846cfb77d9d0acf1faf61de4d69f10a5cbb84add13699655353dabfaf0334cfd633a120fd6ffb9d4c2b1e6f45f226cda2c956f11172279487a97c99d07abdc2e53e11c3e75c0023c97590f2ff11dbc36a2b22afcc98a32f72e42897df3d89838cfb5d4538d8d23669cbd298d9c63127f3a662730e42e9a490bf125f6c62fe68cc605d6462b6b7a311633dc74350a5711ea0e14e0f56cffa436a896e4eca49ea92c3095c97b0dc36c284d47c6e441280e26296c1147283449de8d5a57ce7cb9fdfbe56b22225733727009d61ad0887c4fab0e51ca8c73facb5a6c808eb057d29fa47ccd9c52f5a73af3978c612c25fb79d405ac225e8d7cc2f563631e7f2a759ba8c9e79a9b7950cfb184bc233e3223bda34ddb510d63642a7dac60ac906e4393b464939882c3f8bc7a8b9bccc7472d6c5a5af55c35abacc13e6eb317d61deebe6562995078a9934d7df6ce81d34cd175b1c91b2a30eebafec438b2b06cc26d9e44f5db1233cb12f88d2e4ecab44e5af23c3fd3a089c0211ecbd86269e1fc75de7e4bd3fda557a53632ee27951ad7ffe2ecf34f3a1e8d8f95a032d68763edc25968eddfb232285bc435e7683ff7d5c64e3b4c7ad551dfffb5163d372a2567db470a9858c8e6c483ecb28a389d731cdb3a1af26d0c196f976ed9d56d955f83e10b43b4f71cadc23ceb84f4c658141619b0f226639f5950a76c6eb2a56db45b51db846d8d274eaaa0124d426b712b0456482712bfcf7922b683a7f5ac640d859a8c48c6377e098000628611ced4f126298226cd4d9838884f670dc40bb7844ae66fe062e5e4d1da151373ef233597d28f0b61d2428be37f71c994afa2409825d655d2ad30e50aede0b5e4e22d894f8d6839568fc2fe7bca20482639293f0e014bbe2c4e3faaa033a4f3c0b2dcb19c5ed6a273dd6cfb102e902fcdfc8b3f30f70653c3f921b4fa10ba26febf62c7951024751b93eaa93c751f8a16bf555c08801e95f40fa0086275468c623fcac38d47d705ad31d94cf7810d8fedd880fecd6999913ff14898778390bd92a649929fa695cb195895ec89ad6673842be9b2fcb2cf45f197ffde9d1cccdfb9a67989aedc6987f4e07ed45f82f48e9f979a29fde4f2522d8244d226bca5269d8e007cfc89c5459aaa80b3f1f44b6adf16a07f3cd3b5cdfef469908ddfc3430e8a2537ed7fc4ca758c8544725ead0a86e70d92600d6e27c5596cedf5443f334e50c2d082bbe379a3be0e3e486f085e52558ebdf793112cadfa2855b274869ad3c1f5f0863b6d961921aa65465d04d36283caa2df8b0d3c050d3dd594b36c1e169c8e5e7c126cc81cdf2362a3b51f8e6fa16fdf9a02ae696ae6a61e645f6dacb8658a099a63824ac5d7b029d883841264c4a9bccff3264551812f7e949cb7307e056dabd6bd5c86848f2b6716072930f0793dad8062000eb8e91ad814d5719c5aec5be198c2f0fa926c6d41be8cc1d30ce0c0aef17a2364205da96598d37fa718d8251d46c92f1d549a9e6e31be1b7f0bfb135ff0ed9508fa91c73e863edfd06f957eb4955694a7f45283b2f1254c21f5a3e7e9834f4b4927f2b3d3ef2260ea5ce25828a6b645854a8518d600bbc7e728fac4d0561d482c3fdb3c07ce58d19e70213a7fd4111547e9eb8250de01eb845edf798a4b6c9b5e090f167c3f5b6088c285b962755e867f0e57991155167d00bdc8dd268452684f655dc42e40846b04608d2abf5d023c04f93dd521e8849783d5d1a4981ad621ae990572506d7d8744d53186460b96959a22be7c3f9d34cc853cf944ae92ed11207fb6442577d03e27e05340c2cda4e71b929382474d346f885bb0486471a768e50a4274cfb705193412c7b45de6c88fc095f9aa90e696635d8fa9d6e286d05a5f1e9d2315e1d26bbe25559db30696b8ae61807e40dbeca2640c59587b7754ac863fe43120cfbe0505d87f3d86b5fcc74029a6c70356d3a10081f71c561da90873179f573f82b5efe5653967c16a2b52e2d6c09f3e0c19c3a0b510a0675389ef043c537c0030a144ea0e841766fa002700ea9e4388caec65e77fc028296fe3865bc87b459e558449cb6180a96fe267cc1bfd638c1c9d48d2cd59ef3b12426e2ed9ff119397a66f2f6b45dbc22ac3787c4ad0336ac8ad7250e9c89fe465c118c2aa97509410f30952e311cb57b0c10fa52e0f9318e7da975e9dc95032dad57c0e520238b1f6a6aad117ede5b9d2d7f3f230ef5fb558547623ae08cc7474410d1dd151b5784f3dadd6d162fd45bdafd356eeee49f4391d1b135c2762f31e25069561977c5893264d890d50583ae14e685f4ee2ad25ffbd919101e6a91e2f00d950f7add31c5fe6c68ac9d8b714531f3cc65d1db5fd98edae34ee50889968aeff245d749dff156cebea234623c535cde831e366c0067d358cc34a9df66d9aa645495ef39e6232ab3bc6c2c9d7e8ceefb578d0d0d141564a1d6b62b63660ff8d3a940be7297b5a756ee742fe845f0f3357a618c58172619981e37e4acf560d876ec68559e6bfaa241e0b137f81f259c45787d1023061e927701a00abfee1ec03394f0a8bc3c1597c459bbf2af40f8fed1171078fe76a9a7b3e3eb6e9927dc4b8f9928b343f1ad9cada8fecbf9f02800ae697309fddf515740a3303daa7abd89ac103d695327f7c195b3303bf6835b0b30c1237f529c3a5c785d5e4bda8ccac98a75d5981576cecf4c6d5a3d9aaf704f780a9f6e1487402f64a240a63bfa99b33699bd4fa30dbef7b595c5a33ee3b900f57ad95ddf2eedaf21f5fe68c9eaf4c9a7a6e71d797e0d62b3a82abb9cb8d23977d956305caa1c9165c3c58b9d62e0677f83880603800d40c2c62c09c2df7cb1ae01d6acc86678764390f9c639efbb299125be26c4181b312ee7bf2025226500dbe7fa1139d6f7a8689f57ad397bb624d4ab3404c47ceb77d613b7b91456ec443df453c7e17e06ea25f12f59e561651fe1bfb7019237f01099a997482bbbd414d354462ceaf07b84c1bc4588c93f4d398dd913e8123eee82ed6ed54df22586ce83fef0379be2a4a0367e90c53e2430b3cc15e2470b7106a40989dc3ca777b94908ae61a13fda4c0280c44de705e1f381205520bbc6987b1b0cd2b86f7b96d597e8a588a2eee79e8fa8eb583bd370c509694c93502368605288b1cb04eb78feda4e9b9511f0d879e77bc4c7944d7ea8e0ce8753346121a989f9126150fde393d333e5546465dd0fe72311ab359259696ca4f3d8208cb9bc4634e6c55c038d4c99adb05c2a272bec73fe62919f86ffcdc95571d734f85d01aa65d5ccf42cc669b17b61b94219d9e18c4d8d3f1a1f244ebfee7db3c65f96255cd99a20189fd6549a99424b0f19b851892fd18e433d8c934b013ba9e597e492bc6573f33ea8efdb92b20be937ee31d165838d79953b11e6b96274a7ad74b17969faf2713f06362201cadd8ee0bdb519ba87f4f8756484c349e33161a592ec76faab7f8f46d72ee2a2eb945e1d9a17f0bbbe3d0f62e9391f81a7260fdbc9e6a83443d8264ebe2f7cf6cb8ccce5ed5dc4d9afe6fda591b64289502433ab88bea7c654d6016143bdce20ea6df668bba2500d2b3ab99c4a9796ca6df034f77123d4c57ce9b5ea184c595fe67d50b74e7a69dd3c334e8f46f756f34094cdd5a8348e9f1c281d2d57593845a2aba133df14ee676e2a606a560c2de8350367bcc32619a4537a9602f99cd6fcc1c42a7b2dd70c69edd2605a075b00e6c058690f2834ea7f71eff1b366a38d6f32fb4de3bb8f8dfb5cbc212db95e13b03de70faeb3d9a8a7793b478deb285524adb63c882b7a9c9e5a294b56a06b5603c082de2017adc5b3641f3d24303898979d2a5e4b950e7138b6f00759862467707bff7c715c899add2a948a02887007a37f985daabd6e86deb2d39d6573efe2480cadd3d757f302ce638c23a41d4a004b37b1c67285d4c1288aa1bd0743363fee760b28bc0036bd5ce0e3a934331f2e7f6ff59323de10b37cb0d424885ade56c3ab7ace741faeccf18f08373a0745d1a48ed5a600000000902548920a3dc804c6d3104d4b5dcf656e6e4c5f9c2109382f15cd652e7c60230cd2c2a33503180a61ecf2f23a0856d78af724d423089e9a8a96c4a4969c", 0x1046}, {&(0x7f0000001340)="1b0a64e3bc6aac003906ccf6e00354889ee77ad07a5d4de9e060cd8968cd9ad30d3d", 0x22}, {&(0x7f00000024c0)="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", 0x17a}, {&(0x7f0000001440)="26d92a83d528c3d4f1f27c9af046936d53a0d6a57ed05c098644f755d723e3b8d6d521507760bbd1e4877cd88cadc8f149cf21c9c2", 0x35}, {&(0x7f0000001480)="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", 0xc1f}, {0x0}], 0x9}, 0x0) shutdown(r2, 0x0) 13:50:45 executing program 1: r0 = getpid() socket(0x0, 0x80000, 0x7ff) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) r5 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r5, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r5, 0x0, 0x0) splice(0xffffffffffffffff, &(0x7f0000000100)=0xff, r5, &(0x7f0000000140), 0x7ff, 0xf) 13:50:45 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0xcd) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SG_SCSI_RESET(r4, 0x2284, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:45 executing program 2 (fault-call:11 fault-nth:97): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:45 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0x41395527) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x23e240, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r4, 0x28, 0x6, &(0x7f0000000000), 0x10) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r5 = socket(0x10, 0x803, 0x0) ioctl$DRM_IOCTL_GET_CAP(0xffffffffffffffff, 0xc010640c, &(0x7f0000000300)={0xb}) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r5, 0x84, 0x12, &(0x7f0000000040)=0x8b, 0x4) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) 13:50:45 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x8}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000100), 0x0) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = getpid() sched_setattr(r4, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r4, &(0x7f0000000080)={0x38, 0x2, 0x11, 0x3, 0x3, 0x0, 0xae11, 0x0, 0x1813}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:45 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 13:50:45 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f00008be000)='/dev/usbmon#\x00', 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x1160b9) 13:50:45 executing program 4: semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0xfffffffffffffff9}, {}], 0x2, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000001c0)={{0x0}}) [ 1125.281757] FAULT_INJECTION: forcing a failure. [ 1125.281757] name failslab, interval 1, probability 0, space 0, times 0 [ 1125.293264] CPU: 0 PID: 29293 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1125.301147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1125.310502] Call Trace: [ 1125.313096] dump_stack+0x13e/0x194 [ 1125.316732] should_fail.cold+0x10a/0x14b [ 1125.320890] should_failslab+0xd6/0x130 [ 1125.324878] kmem_cache_alloc+0x2b5/0x770 13:50:45 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0) 13:50:45 executing program 4: shmat(0x0, &(0x7f0000db0000/0x1000)=nil, 0x5000) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x2) [ 1125.329034] ? alloc_inode+0xa0/0x170 [ 1125.332843] selinux_inode_alloc_security+0xb1/0x2a0 [ 1125.337956] security_inode_alloc+0x8f/0xd0 [ 1125.342293] inode_init_always+0x576/0xb20 [ 1125.346529] alloc_inode+0x7a/0x170 [ 1125.350154] new_inode_pseudo+0x14/0xe0 [ 1125.354131] new_inode+0x1b/0x40 [ 1125.357498] debugfs_get_inode+0x1a/0x130 [ 1125.361656] __debugfs_create_file+0x93/0x3c0 [ 1125.366156] ? debugfs_create_file+0x37/0x60 [ 1125.370604] kvm_dev_ioctl+0xd71/0x1480 [ 1125.374595] ? kvm_put_kvm+0xa90/0xa90 [ 1125.378495] ? kvm_put_kvm+0xa90/0xa90 13:50:45 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x2) [ 1125.382389] do_vfs_ioctl+0x75a/0xfe0 [ 1125.386198] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1125.390972] ? ioctl_preallocate+0x1a0/0x1a0 [ 1125.395385] ? retint_kernel+0x2d/0x2d [ 1125.399307] SyS_ioctl+0x7f/0xb0 [ 1125.402678] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1125.406657] do_syscall_64+0x1d5/0x640 [ 1125.410557] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1125.415924] RIP: 0033:0x45c829 [ 1125.419146] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1125.426862] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1125.434134] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1125.441408] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1125.448681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1125.455952] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) mq_unlink(0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x14, 0x3, 0x1, 0x101}, 0x14}}, 0x0) 13:50:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/mdstat\x00', 0x0, 0x0) read$midi(r0, &(0x7f0000000080)=""/169, 0xa9) 13:50:46 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x10000000, 0x8000, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000280)) vmsplice(r1, &(0x7f00000003c0)=[{&(0x7f0000000000)="d60ce9653272b00954dcac8b4c5b575825e7fdefd5777ed69859ef642dbb8b54e15a03c6f7fc7ccd738f3f", 0x2b}, {&(0x7f0000000300)="ac29fe508594c49a37ab3c47c794f18e737c8e1a1979c1556fd50773eb0fb76c16408acbf1bd110dab0be6d4de8d953da0580dd2c5c419e7f0ea40f4c6263c122c10a05ae6610fc05528dcadf3520efdc7479a26c464c703fe94f10c63f58c60b33cd3d1732c275142ada5a8b6acc872500e88111e4a25af08691bccd8cf37199d90064046", 0x85}], 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x84) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm-control\x00', 0x5c0c2, 0x0) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, &(0x7f0000000240)=0x80000000, 0x4) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x71, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:46 executing program 2 (fault-call:11 fault-nth:98): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:46 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="30d9a169e967c3389f15b625311a4a03b336123f49c84f5c00000000", 0x1c}], 0x1, 0x0) ioctl$SIOCAX25GETINFO(r2, 0x89ed, &(0x7f00000002c0)) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x20, 0x0, 0x40003, 0x1, 0x0, 0x400, 0x100000, 0x4}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1126.079710] FAULT_INJECTION: forcing a failure. [ 1126.079710] name failslab, interval 1, probability 0, space 0, times 0 [ 1126.090991] CPU: 1 PID: 29367 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1126.098959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1126.108323] Call Trace: [ 1126.110919] dump_stack+0x13e/0x194 [ 1126.114562] should_fail.cold+0x10a/0x14b [ 1126.118721] should_failslab+0xd6/0x130 [ 1126.122710] kmem_cache_alloc_trace+0x2db/0x7b0 [ 1126.127390] ? up_write+0x17/0x60 [ 1126.130850] ? __debugfs_create_file+0x2c6/0x3c0 [ 1126.135610] ? debugfs_create_file+0x37/0x60 [ 1126.140334] kvm_dev_ioctl+0xdc4/0x1480 [ 1126.144324] ? kvm_put_kvm+0xa90/0xa90 [ 1126.148219] ? kvm_put_kvm+0xa90/0xa90 [ 1126.152110] do_vfs_ioctl+0x75a/0xfe0 [ 1126.155924] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1126.160687] ? ioctl_preallocate+0x1a0/0x1a0 [ 1126.165122] ? security_file_ioctl+0x76/0xb0 [ 1126.169537] ? security_file_ioctl+0x83/0xb0 [ 1126.173955] SyS_ioctl+0x7f/0xb0 [ 1126.177413] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1126.181395] do_syscall_64+0x1d5/0x640 [ 1126.185297] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1126.190523] RIP: 0033:0x45c829 [ 1126.193710] RSP: 002b:00007ff507874c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1126.201486] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1126.208775] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1126.216050] RBP: 000000000078c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1126.223323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 13:50:46 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r1, 0xc0105303, &(0x7f0000000140)={0x8, 0x9, 0x1}) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) ioctl$VIDIOC_G_EDID(r3, 0xc0285628, &(0x7f0000000240)={0x0, 0x9, 0x7, [], &(0x7f0000000180)=0x2}) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000100)={@hyper}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:46 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r2, &(0x7f00000001c0)={0x18, 0x0, {0x4, @dev, 'lo\x00'}}, 0x1e) sendmmsg(r2, &(0x7f0000001400)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="f4", 0x1}], 0x1}}], 0x4000000000001ea, 0x0) [ 1126.230595] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078756d4 13:50:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) mq_unlink(0x0) ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, 0x3, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_MARK={0x8}]}, 0x1c}}, 0x0) dup(0xffffffffffffffff) sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="e6de0071a7339dbf130597ee2a929ea9e35d5f2832776ef495bf7777754c7c32bff5937bdfb66e75dbb3fd77ff13fdd988a80e9ee5a8d7c9dac8cb57bb7ce8ebbe331c4bd0849f9552aec39644c4dba7d59caccd786a9bd51fca8bcff2743db84da0e63918a1813572e25010"]) 13:50:47 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$fou(&(0x7f0000001080)='fou\x00') sendmsg$FOU_CMD_GET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="2900000000000000000003000000010000004e2400006bcde91e1fc3608798"], 0x1c}}, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="00769f29660c70d7f15c15b47f50b8ffffffbfc342109500", @ANYRES16=r5, @ANYBLOB="00002cbd22050000000002009397000a01010205000f4508000000"], 0x2c}, 0x1, 0x0, 0x0, 0x40080}, 0x20008001) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:47 executing program 2 (fault-call:11 fault-nth:99): prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:47 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x10, 0x1000, 0x9, 0x0, 0x4, 0x8, 0x0, 0x8000}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$EVIOCGBITSW(r5, 0x80404525, &(0x7f0000000140)=""/41) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:47 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) mq_unlink(0x0) ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, 0x3, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_MARK={0x8}]}, 0x1c}}, 0x0) dup(0xffffffffffffffff) sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x3, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f00000001c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB]) [ 1126.930774] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1127.044943] FAULT_INJECTION: forcing a failure. [ 1127.044943] name failslab, interval 1, probability 0, space 0, times 0 [ 1127.056985] CPU: 0 PID: 29419 Comm: syz-executor.2 Not tainted 4.14.179-syzkaller #0 [ 1127.064882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1127.074272] Call Trace: [ 1127.076874] dump_stack+0x13e/0x194 [ 1127.080525] should_fail.cold+0x10a/0x14b [ 1127.084687] should_failslab+0xd6/0x130 [ 1127.088670] kmem_cache_alloc+0x2b5/0x770 13:50:47 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) socket$inet6_udplite(0xa, 0x2, 0x88) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) sendmsg$IPCTNL_MSG_CT_GET_DYING(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0x1}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x24000084) lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=@known='trusted.overlay.nlink\x00', &(0x7f0000000180)=')\x00', 0x2, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1127.092830] ? __d_lookup+0x3b4/0x670 [ 1127.096645] ? mark_held_locks+0xa6/0xf0 [ 1127.100707] __d_alloc+0x2a/0x9b0 [ 1127.104165] d_alloc+0x46/0x250 [ 1127.107448] __lookup_hash+0x51/0x180 [ 1127.111268] lookup_one_len+0x27c/0x3a0 [ 1127.115276] ? __lookup_hash+0x180/0x180 [ 1127.119350] start_creating+0xa1/0x1c0 [ 1127.123247] __debugfs_create_file+0x4f/0x3c0 [ 1127.127748] ? debugfs_create_file+0x37/0x60 [ 1127.132181] kvm_dev_ioctl+0xd71/0x1480 [ 1127.136262] ? kvm_put_kvm+0xa90/0xa90 [ 1127.140158] ? kvm_put_kvm+0xa90/0xa90 [ 1127.144052] do_vfs_ioctl+0x75a/0xfe0 [ 1127.147867] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1127.152981] ? ioctl_preallocate+0x1a0/0x1a0 [ 1127.157408] ? security_file_ioctl+0x76/0xb0 [ 1127.161827] ? security_file_ioctl+0x83/0xb0 [ 1127.166245] SyS_ioctl+0x7f/0xb0 [ 1127.169614] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1127.173630] do_syscall_64+0x1d5/0x640 [ 1127.177528] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1127.182716] RIP: 0033:0x45c829 [ 1127.185906] RSP: 002b:00007ff507853c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 13:50:47 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3800000024000f05000000401cffa30005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff00000022090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00,\x00/\r\x00'/20, @ANYRES32=r2, @ANYBLOB="0000000000000000080000000900010072737670"], 0x3c}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000004bc0)=@newtfilter={0x24, 0x11, 0xd25, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={@private0={0xfc, 0x0, [], 0x1}, 0x12, r2}) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1127.193621] RAX: ffffffffffffffda RBX: 00000000004e71a0 RCX: 000000000045c829 [ 1127.201173] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 1127.208460] RBP: 000000000078c180 R08: 0000000000000000 R09: 0000000000000000 [ 1127.215734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 1127.223130] R13: 0000000000000397 R14: 00000000004c60dc R15: 00007ff5078546d4 13:50:47 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd811) clone(0x0, 0x0, 0x0, 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, 0x0) ioctl$BLKROSET(0xffffffffffffffff, 0x125d, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) write$P9_RXATTRWALK(r0, &(0x7f0000000200)={0xf}, 0xf) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) pipe(0x0) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000100)) [ 1127.642837] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 13:50:48 executing program 0: r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) prlimit64(r0, 0x8, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x2) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0xd74d) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = fcntl$dupfd(0xffffffffffffffff, 0x605, r4) setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000140)={0x0, [0xffffffe3], 0x92f}, 0x10) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f0000000100)) 13:50:48 executing program 2: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$RTC_EPOCH_READ(r5, 0x8008700d, &(0x7f0000000100)) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) sendmsg$TCPDIAG_GETSOCK(r5, &(0x7f0000001780)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001740)={&(0x7f00000002c0)={0x1454, 0x12, 0x2, 0x70bd27, 0x25dfdbfc, {0x4, 0x3, 0x6, 0x0, {0x4e23, 0x4e24, [0x0, 0x3, 0x6d1f, 0x408], [0x5, 0x40, 0x100, 0x1], 0x0, [0x2, 0x587a8768]}, 0x5, 0x7}, [@INET_DIAG_REQ_BYTECODE={0xa0, 0x1, "c41cc9de428ac70dcb1d45252fd104afed78bdc8cfa91620f58a0b8ade54bdce97fef3e6c37b4074ce7c410ad61735ab3e7826a7ae6c192e691afe01e7b06c08d7d3918dcf1a727280c3065eb52c84ce759ddcf0e68626a6ae14a363cb32005bf77d1a491d5ecbe30d5b14ec1d5765a4a6fc224da232373d5b95be08cfb3449d01e9ef5ebb8ad4276ea8ace4734fdfeeaa0f202d8a44af72be78a894"}, @INET_DIAG_REQ_BYTECODE={0x98, 0x1, "32b6beaf42558d49063bbc535790bd72f53d3f079b689047713ef55d4780f225aaf550a564e67e5e13846444be9559870d68a56d4224b2329843840831c45f306f5b81a22a126d7979bf45b259f334eee57ec84526fde50ee6ebc4b042e9b6c6cdbf711cdc1c483c37cec87ae10d860f9e0acece81297a073b3d3bdd678ae8dcca6e96d8d33075a23dd091d58f39fc73ec07c80d"}, @INET_DIAG_REQ_BYTECODE={0x9a, 0x1, "d0cae4fb268266b6c1977113577d644ae68e5f3dc7bb5d97f3b1afea3e5c3a8fa9fb8a456757ae3dc2b692aba8629a21ef0f7b2fb81465e91e6d787978a8521468d7a02380bd2971a705bb13c7186fb81cbfffb03039ca2ddde8b11f99db25a49c15ee24b812a171790af3e9dbdf38682cf674e4a0118e813cc0b7bbae216035b27985ff3ffff345ef88deadba1fa4d2834727f3d5c5"}, @INET_DIAG_REQ_BYTECODE={0x40, 0x1, "6ffc8105ddc18ed3bdfa3f2871548f80f5e9c95cb3ef6a286667414548c2567c936c67e4c9794e9df1c4f5a879bb58d076b7f7911d1b8966e26edcc3"}, @INET_DIAG_REQ_BYTECODE={0xa1, 0x1, "77fa15470ba057d09d08e4c62359520743c9a304fe153466fdfbd146dd84d69537cfffc4e599fffdafbb31c5455cc5c5aec90283d374fb4dff500f6fad7a7479133360182a235a909aa021bbbe7a0784816a60adaa77bd251f7ee7d8d68736b3ec7975adde122eabfb29645fe247f5b9b3292c9d82df9ba765d8ddc033252dc51a576888c8d784c1c69947505b31e3a03adad120e363c2950287f7a0b1"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x80, 0x1, "875566be9b53ea09eb57ad5aa504d8ee8473a27a489dfcda351a12f5f7f4a1c9cc788dbd5228ad25f9fb296aab4b3396895a13fcc7e4b0b7c6b03e7c6c97a3fc938590ffabb43d6c0abd6a660300680597431f5c8a5be21f0dacdf30b518af421ed69494e5ea4c06f7b9d7dcd65360f8bf3cff239fd2a02aafc826b2"}, @INET_DIAG_REQ_BYTECODE={0x83, 0x1, "41fcc95c4cbcc343dc56e8e961583d58e70a02c23621141d7e2b4c81e3771da22cc00ac8151e4dbcd7501a7b2ef8f822585eb53b6e0cd363a19faacd75849e5273d3e4a211f248f22f5f83bc93559729caceb6778e4a12c64761bd08126681a744850d7e0f3faaccb69ae52b86002f58a566e396b6fc833806abe11aa54f7a"}, @INET_DIAG_REQ_BYTECODE={0x48, 0x1, "735d4667f3f8e927b650e76f8aa43109b0078bd37e6ad5f0765128b64d0868f2a95d5287b8b0f9ee04c427fb6431c3526da3306d5c18db9c9c392a43b3f91a63d8967747"}]}, 0x1454}, 0x1, 0x0, 0x0, 0x1}, 0x41) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:48 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000140)={&(0x7f0000000100)='./file0\x00', r4}, 0x10) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) fcntl$setstatus(r4, 0x4, 0x4000) 13:50:48 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) write(r3, &(0x7f0000000100)="df9e6fa678f3307de5cac451f60e04289240409c4351eccefa5be052b713fe7f9ac190717a352f9d12d6426414ddfd5422b35d505d64bd1b4f6477722ce96549b4078fce43378d6c72dfebb660574cfa24eccec6b1847cb52183c65d35cc34bbfa61ffb70d0e8317f72a69158739022ab0b61b4bbfaff896937def5a4bf82aae699347aef18e18e51f59ebdac3e0a4", 0x8f) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:48 executing program 4: syz_emit_ethernet(0x2e, &(0x7f0000000080)={@broadcast, @random="a16965678270", @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010102, @local, {[@rr={0x7, 0x3, 0x7e}]}}, @echo}}}}, 0x0) 13:50:48 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, 0x0, 0x0) ioctl$VIDIOC_QBUF(r2, 0xc058560f, &(0x7f00000002c0)={0x0, 0xb, 0x4, 0x74000, 0x7ff, {}, {0x2, 0x2, 0x4, 0xf0, 0x3, 0x1, "1822559c"}, 0x3, 0x1, @offset=0x9, 0x0, 0x0, r3}) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x1, 0x4b1, 0x5, 0x1, 0x3}}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0xa) openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x80000, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4701cc57569508c7}, 0xc, &(0x7f0000000380)={&(0x7f0000000600)=ANY=[@ANYBLOB="0100b994aa5c0000", @ANYRES16=0x0, @ANYBLOB="00002dbd7000ffdbdf25080000001400038008000300ffff0000080001000000008030ba4874b6df45fe72000400060000000800040006000000080001000b00000008000300800000000800010002000000"], 0x58}, 0x1, 0x0, 0x0, 0x4040}, 0x20044085) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000480)="580000001400192340834b80040d8c560a067f0200ff00000000000000005a000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000866e7bb8349e4e99e5411df91d1afe8cb981b0955dd345578bbb02be212b1f8b5079fc1a5de8e83d21a369d83c24409b11fb", 0xff90}, {&(0x7f00000003c0)="3c6dc031da6f3960db447f02360d8be800a02ade33db3bdec4e71224553dfad2c843b68926834e6fdc97f2229920ef66ffb023ec35c309b5427213fe7661298e3bcdf6eea8dcf0aa767933a8efcd5c9ebcd1d6d9d38c5994908ef447465d2318124060213593316ed22b601899914ad03717a7307c70df84cda8d9cdf9716a8ca7bde65eacec06a7ecb42b558f395ff26a67096678c8fb6190b48a8c980d32269a31555df0b1e852f55c1d45f0faae00d1e829f81e8234d1d8893547aa3b", 0xbe}], 0x2) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r4, 0xc034564b, &(0x7f0000000240)={0x8000, 0x41415270, 0x0, 0x0, 0x1, @discrete={0x0, 0x4}}) 13:50:48 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) dup2(r0, r1) socket(0x10, 0x2, 0x0) 13:50:48 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) mq_unlink(&(0x7f0000000040)='o\x00') ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, 0x3, 0x1, 0x101, 0x0, 0x0, {}, [@CTA_MARK={0x8}]}, 0x1c}}, 0x0) dup(0xffffffffffffffff) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="e6de0071a7339dbf130597ee2a929ea9e35d5f2832776ef495bf7777754c7c32bff5937bdfb66e75dbb3fd77ff13fdd988a80e9ee5a8d7c9dac8cb57bb7ce8ebbe331c4bd0849f9552aec39644c4dba7d59caccd786a9bd51fca8bcff2743db84da0e63918a1813572e25010"]) 13:50:48 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x105401, 0x0) 13:50:49 executing program 2: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffffffffffff}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x5, 0x1, 0x0, 0x3, 0x4, 0x0, 0x400}, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$UI_SET_SNDBIT(0xffffffffffffffff, 0x4004556a, 0x6) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = socket$unix(0x1, 0x5, 0x0) r8 = dup2(r7, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_TREAD(r8, 0x40045402, &(0x7f0000000100)=0x1) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:49 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x3, 0x0, 0x101, 0x1}, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000140)=0x490, 0x4) socket$netlink(0x10, 0x3, 0x8000000004) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000012000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:49 executing program 1: prlimit64(0x0, 0xa, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) r0 = socket$inet6(0xa, 0x800, 0x2) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0xffffffffffffffff) write(r2, &(0x7f0000000280)="7e9d7882c154040790a64469d443ba56f4e0f1c75ca2d94529e172a5bf4586a35f030000000000000098ee76405a26b9d20ef71230392620bd52cf16c1316c07c6ff21d2ce0fc438f6a548e272bc4f8dae252fadb9a248bf148bc5fefe4379b3bd9a6f7dd4df16", 0x67) vmsplice(r1, &(0x7f0000001700)=[{&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000000540)="abda950685c9537b1dff3ecc19ad2ed8e3b3914d4f83d7e99867435506dec75992f8d909453415bb2c31626556ebb01d9ef2a62ceda3444c6df00740c72925e42d877629c285d147dab1b10e9c47b2426153cf08bcc39ab6", 0xc6a173bac113754}, {&(0x7f0000001740)="a19839a503c9369b6650800a73f897b7d9ba0698ccd76b2a9944957ea95720e346c5cbf6ad19c2184b3f5347faa6abae957f3a124275ca8e55760ddc82eda50d33a9627e6d3e03794dbddaab6094fd85ab5c3c72e11f20473247c24e3a6b1c8ace0bbb4d3f94444ce19d07e2bbf386a9e33bd6d5210bdf301e18b9894d75bc7aa39c9d0af47f36b9e89b2877a2582cd3afc0acbb761b38fc5ecc7b717c191573bc60fcd940045eb515f416fd26d9b754e790d2cf7f640b26cbe71a72697e3c6340617094e964cbf79db3b2065056f568fca4bb01fd08bdb3b1ed6b", 0x3}, {&(0x7f0000001600)="bbcbc7b378b98b18c8cd3415121ba2393a0938299245aa58924586f0027b95c79d1ac0d4019235af773a7bb830870f2a3b2ae94695e26137da6c4d36faf9165b6e321cefd1b3f7af4e7d0b02b84dda479f88aa9e5121d50cc5142b0c05da606bf39c4fea9d8ad2bbcb694f6f2fcf29857d0af10734eaedcd0826f971c910c8c11c0731a0609071ae49b1757f821f1c7010c96e1234335ad2b79b8d94f3d5e6be4cbee6b1f53ace5413f9d17bd9a6c7fe8cbd1682074a4c550d3c16ee6d76f9645ed76e412fc04dd5d5ebd64e3b2fc0aeed8734275be145df5425f2f7e296", 0xde}], 0x4, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x1, 0x800}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00', @ANYRES16=r4, @ANYRES32], 0x20}}, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(r2, &(0x7f0000000240)={&(0x7f0000000100), 0xc, &(0x7f0000000140)={&(0x7f0000001840)=ANY=[@ANYBLOB="ac0b6cb697d04923a54f1f32ae8ba26e3edb10a5ce56", @ANYRES16=r4, @ANYBLOB="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"], 0x1c0}, 0x1, 0x0, 0x0, 0x80}, 0x80) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, &(0x7f0000000480)={0x40000000, 0x3, 0x41}) 13:50:49 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) r5 = dup2(r4, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TIOCGPGRP(r5, 0x540f, &(0x7f0000000100)) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:49 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) getpeername$packet(r5, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x14) ioctl$sock_inet6_SIOCSIFADDR(r4, 0x8916, &(0x7f00000002c0)={@rand_addr=' \x01\x00', 0x5c, r6}) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 13:50:49 executing program 4: perf_event_open(0x0, 0x0, 0xb, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f00000003c0)='/dev/sg#\x00', 0x0, 0x0) r0 = syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000140)={[], 0x0, 0x3, 0x6}) socket(0x0, 0x0, 0x0) socket(0x0, 0x0, 0x0) syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x2, 0x400) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) 13:50:49 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) r3 = socket$unix(0x1, 0x5, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$RTC_UIE_OFF(r4, 0x7004) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$SNDCTL_DSP_SETDUPLEX(0xffffffffffffffff, 0x5016, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000100000000", 0x57}], 0x1) [ 1129.369407] ================================================================== [ 1129.377116] BUG: KASAN: use-after-free in do_blk_trace_setup+0xa5b/0xad0 [ 1129.383964] Read of size 8 at addr ffff8880a4f01a00 by task syz-executor.4/29609 [ 1129.391491] [ 1129.393120] CPU: 0 PID: 29609 Comm: syz-executor.4 Not tainted 4.14.179-syzkaller #0 [ 1129.400993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1129.410342] Call Trace: [ 1129.412942] dump_stack+0x13e/0x194 [ 1129.416575] ? do_blk_trace_setup+0xa5b/0xad0 [ 1129.421076] print_address_description.cold+0x7c/0x1e2 [ 1129.426357] ? do_blk_trace_setup+0xa5b/0xad0 [ 1129.430853] kasan_report.cold+0xa9/0x2ae [ 1129.435007] do_blk_trace_setup+0xa5b/0xad0 [ 1129.439336] blk_trace_setup+0xa3/0x120 [ 1129.443350] ? do_blk_trace_setup+0xad0/0xad0 [ 1129.447858] ? retint_kernel+0x2d/0x2d [ 1129.451836] ? sg_ioctl+0x243/0x2620 [ 1129.455552] sg_ioctl+0x2f9/0x2620 [ 1129.459096] ? trace_hardirqs_on+0x10/0x10 [ 1129.463358] ? sg_new_write.isra.0+0x8c0/0x8c0 [ 1129.467954] ? sg_new_write.isra.0+0x8c0/0x8c0 [ 1129.472538] do_vfs_ioctl+0x75a/0xfe0 [ 1129.476375] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1129.481130] ? check_preemption_disabled+0x35/0x240 [ 1129.486239] ? ioctl_preallocate+0x1a0/0x1a0 [ 1129.490647] ? do_vfs_ioctl+0xf1b/0xfe0 [ 1129.494629] ? security_file_ioctl+0x76/0xb0 [ 1129.499099] ? security_file_ioctl+0x83/0xb0 [ 1129.503516] SyS_ioctl+0x7f/0xb0 [ 1129.506982] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1129.510957] do_syscall_64+0x1d5/0x640 [ 1129.514851] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1129.520040] RIP: 0033:0x45c829 [ 1129.523222] RSP: 002b:00007f70c3552c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1129.531018] RAX: ffffffffffffffda RBX: 00000000004e1660 RCX: 000000000045c829 [ 1129.538292] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000005 [ 1129.545558] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1129.552828] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1129.560098] R13: 000000000000022a R14: 00000000004c4506 R15: 00007f70c35536d4 [ 1129.567473] [ 1129.569105] Allocated by task 29609: [ 1129.572821] save_stack+0x32/0xa0 [ 1129.576276] kasan_kmalloc+0xbf/0xe0 [ 1129.579990] kmem_cache_alloc_trace+0x14d/0x7b0 [ 1129.584657] do_blk_trace_setup+0x11e/0xad0 [ 1129.588977] blk_trace_setup+0xa3/0x120 [ 1129.593206] sg_ioctl+0x2f9/0x2620 [ 1129.596742] do_vfs_ioctl+0x75a/0xfe0 [ 1129.600538] SyS_ioctl+0x7f/0xb0 [ 1129.603898] do_syscall_64+0x1d5/0x640 [ 1129.607790] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1129.612975] [ 1129.614602] Freed by task 29629: [ 1129.617969] save_stack+0x32/0xa0 [ 1129.621420] kasan_slab_free+0x75/0xc0 [ 1129.625395] kfree+0xcb/0x260 [ 1129.628540] blk_trace_remove+0x52/0x80 [ 1129.632513] sg_ioctl+0x22a/0x2620 [ 1129.636055] do_vfs_ioctl+0x75a/0xfe0 [ 1129.641070] SyS_ioctl+0x7f/0xb0 [ 1129.644447] do_syscall_64+0x1d5/0x640 [ 1129.648340] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1129.653521] [ 1129.655145] The buggy address belongs to the object at ffff8880a4f019c0 [ 1129.655145] which belongs to the cache kmalloc-128 of size 128 [ 1129.668227] The buggy address is located 64 bytes inside of [ 1129.668227] 128-byte region [ffff8880a4f019c0, ffff8880a4f01a40) [ 1129.680626] The buggy address belongs to the page: [ 1129.685546] page:ffffea000293c040 count:1 mapcount:0 mapping:ffff8880a4f01000 index:0xffff8880a4f016c0 [ 1129.695133] flags: 0xfffe0000000100(slab) [ 1129.699274] raw: 00fffe0000000100 ffff8880a4f01000 ffff8880a4f016c0 0000000100000002 [ 1129.707142] raw: ffffea000224a360 ffffea0002a6a5a0 ffff88812fe54640 0000000000000000 [ 1129.715870] page dumped because: kasan: bad access detected [ 1129.721554] [ 1129.723158] Memory state around the buggy address: [ 1129.728065] ffff8880a4f01900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1129.735402] ffff8880a4f01980: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 1129.742753] >ffff8880a4f01a00: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 1129.750090] ^ [ 1129.753450] ffff8880a4f01a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 1129.760790] ffff8880a4f01b00: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 1129.768123] ================================================================== [ 1129.775459] Disabling lock debugging due to kernel taint 13:50:50 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x10000027, 0x0, 0x3, 0x0, 0x0, 0x200}, 0x0) socket$netlink(0x10, 0x3, 0x8000000004) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, 0x0, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r3) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000100)) 13:50:50 executing program 2: arch_prctl$ARCH_GET_CPUID(0x1011) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x11b040, 0x0) getsockopt$IP6T_SO_GET_INFO(r4, 0x29, 0x40, &(0x7f00000007c0)={'raw\x00'}, &(0x7f0000000840)=0x54) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000500)={0x3, 'veth1_macvtap\x00', {0x7fffffff}, 0x8}) write(r3, &(0x7f0000000340), 0x41395527) syz_mount_image$nfs4(&(0x7f0000000400)='nfs4\x00', &(0x7f0000000180)='./file0\x00', 0x800, 0x7, &(0x7f0000000680)=[{&(0x7f00000002c0)="759362197f5765fc1e0fa0c0d53c5a2ef96fbc9e130a087e60c89e92da80927cf5bc32277bb10deaa2351024b989632daeb5b0f7cfaf505f92673333fee58d1b6c17c4343536415f895d24a8c3867218eef076baec89a29bd6df3363d908745e", 0x60, 0xfff}, {&(0x7f0000000340)="455efdaa181ece1b7212847c68bd46d23462bac99aad0dcafa9d3dacd5f5a86d816a6926296b1add63ef3f7b68f07e17f4b35bda3f552248a5e9496222f1f031a767cb3e8ff46d48a5d8d8d229016ec2500e9195492d8eff8dbca10802c6b3acc9f134a7087cbf84698b2bf8f27177a82cdca32591411d34da48b3bd67d15fa112ebceebbc9306", 0x87, 0x200}, {&(0x7f0000000780)="c95b2fb5e2362aba20553e88bebaac48a3c983a098eb5e5d894153197bc6eeffd9b0a02bda7605309e9d114c468642ba22200274109f2fc0d0b1c4906844", 0x3e}, {&(0x7f0000000440)="2d6cd0fb797731ae4de3e6d09abaf7de987c7ad31827957b6903a998c43ee3bcd2d24ec01f59d125a012c51e037896cfbb2ba0542aa0c53f3704986fce4593f25325739b4dc1d66a922f05cb9145c3a904d0db87a2c6015d9d20f994b37a774076f96439179afee5a04c87ed6c6198386dd29522f13e6b38f3b8b5d6bd0288ecdc6735dbc0673f16ca3c2809a008a743e591ee39ea8c49495626c87a4262daaa24bc1404b9e0daf7", 0xa8, 0x8}, {&(0x7f0000000880)="8e0461d50e5fb996a494e29c8f35774ce9e9b555e2ee143cea3e0c1372e3b6837043613d17e00f7ef99a757419fa09a6a2e54e361ae629d9429a850be74a9db2e5067f284d2c77141d7f6d4afda1ea0fc147dc90453d4b85ba1be33ea9b7239814774f8318ad1635b721e0cdce4634d4323f0d10dc", 0x75, 0x6}, {&(0x7f0000000580)="4958997a3debcc410b5e3364d9a301da63b0", 0x12, 0x1}, {&(0x7f00000005c0)="51d32ada3aa99388cef71f02da24931d7027ca249739fe8f2b51c471e79fbcd8fd43bc267e1d3d7700ea5964eadbf40423a180772bba5145690d96ba1ffac4c6d01a7b7bfd13d3681aa7bbf7d9485f3ccffd5d9c708ac46aa25450b08b8b7697623ef1c3a833e4688c46c5012003443549ca7607230a29649ccbb14c07bf58c1db8894c589045a74074057315a2ebbc13e3d58005d22047900b0ff42eefab8e81144ad463e", 0xa5, 0x59fb0e5b}], 0x0, &(0x7f0000000740)='/dev/kvm\x00') vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000240)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c10000000010000000000", 0x58}], 0x1) 13:50:50 executing program 1: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) getpid() socket(0x0, 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(0xffffffffffffffff, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TUNGETDEVNETNS(r1, 0x54e3, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r2, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r4, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x7}, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x505701, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) writev(0xffffffffffffffff, &(0x7f0000000140), 0x0) 13:50:50 executing program 3: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x40000000000012b, 0x0, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000100)='/proc/thread-self\x00', 0x200, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) [ 1130.016492] Kernel panic - not syncing: panic_on_warn set ... [ 1130.016492] [ 1130.023887] CPU: 0 PID: 29609 Comm: syz-executor.4 Tainted: G B 4.14.179-syzkaller #0 [ 1130.033004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1130.043836] Call Trace: [ 1130.046434] dump_stack+0x13e/0x194 [ 1130.050058] panic+0x1f9/0x42d [ 1130.053246] ? add_taint.cold+0x16/0x16 [ 1130.057220] ? preempt_schedule_common+0x4a/0xc0 [ 1130.062149] ? do_blk_trace_setup+0xa5b/0xad0 [ 1130.066759] ? ___preempt_schedule+0x16/0x18 [ 1130.071307] ? do_blk_trace_setup+0xa5b/0xad0 [ 1130.075976] kasan_end_report+0x43/0x49 [ 1130.080054] kasan_report.cold+0x12f/0x2ae [ 1130.084598] do_blk_trace_setup+0xa5b/0xad0 [ 1130.089071] blk_trace_setup+0xa3/0x120 [ 1130.093281] ? do_blk_trace_setup+0xad0/0xad0 [ 1130.098211] ? retint_kernel+0x2d/0x2d [ 1130.102283] ? sg_ioctl+0x243/0x2620 [ 1130.106150] sg_ioctl+0x2f9/0x2620 [ 1130.109689] ? trace_hardirqs_on+0x10/0x10 [ 1130.113941] ? sg_new_write.isra.0+0x8c0/0x8c0 [ 1130.118517] ? sg_new_write.isra.0+0x8c0/0x8c0 [ 1130.123117] do_vfs_ioctl+0x75a/0xfe0 [ 1130.126907] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1130.131686] ? check_preemption_disabled+0x35/0x240 [ 1130.136687] ? ioctl_preallocate+0x1a0/0x1a0 [ 1130.141162] ? do_vfs_ioctl+0xf1b/0xfe0 [ 1130.145131] ? security_file_ioctl+0x76/0xb0 [ 1130.149546] ? security_file_ioctl+0x83/0xb0 [ 1130.153938] SyS_ioctl+0x7f/0xb0 [ 1130.157312] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1130.161312] do_syscall_64+0x1d5/0x640 [ 1130.165273] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1130.170629] RIP: 0033:0x45c829 [ 1130.174534] RSP: 002b:00007f70c3552c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1130.182220] RAX: ffffffffffffffda RBX: 00000000004e1660 RCX: 000000000045c829 [ 1130.189468] RDX: 0000000020000140 RSI: 00000000c0481273 RDI: 0000000000000005 [ 1130.196721] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1130.204167] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1130.211414] R13: 000000000000022a R14: 00000000004c4506 R15: 00007f70c35536d4 [ 1130.220264] Kernel Offset: disabled [ 1130.224140] Rebooting in 86400 seconds..