[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 27.992704] kauditd_printk_skb: 8 callbacks suppressed [ 27.992716] audit: type=1800 audit(1540289336.608:29): pid=5469 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 28.018198] audit: type=1800 audit(1540289336.608:30): pid=5469 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.40' (ECDSA) to the list of known hosts. 2018/10/23 10:09:03 fuzzer started 2018/10/23 10:09:06 dialing manager at 10.128.0.26:46507 2018/10/23 10:09:06 syscalls: 1 2018/10/23 10:09:06 code coverage: enabled 2018/10/23 10:09:06 comparison tracing: enabled 2018/10/23 10:09:06 setuid sandbox: enabled 2018/10/23 10:09:06 namespace sandbox: enabled 2018/10/23 10:09:06 Android sandbox: /sys/fs/selinux/policy does not exist 2018/10/23 10:09:06 fault injection: enabled 2018/10/23 10:09:06 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/10/23 10:09:06 net packed injection: enabled 2018/10/23 10:09:06 net device setup: enabled 10:12:35 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = accept$packet(0xffffffffffffff9c, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000040)=0x14) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000140)={{{@in6=@ipv4={[], [], @multicast1}, @in6=@mcast2, 0x4e22, 0x0, 0x4e20, 0x101, 0xa, 0x80, 0x20, 0x29, r2, r3}, {0xfff, 0xfffffffffffffffc, 0x7, 0x1, 0x7, 0x0, 0x1, 0x100}, {0x6, 0x0, 0xa8f, 0x401}, 0xac, 0x0, 0x1, 0x0, 0x1}, {{@in=@broadcast, 0x4d2, 0x32}, 0xa, @in6=@local, 0x34ff, 0x1, 0x1, 0x2429, 0x1000, 0x10001, 0x7f}}, 0xe8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000240)={0x9, 0x2, {0xffffffffffffffff, 0x0, 0x6, 0x3, 0xffffffff}}) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000300)=[{0x3, 0x5}, {0xe, 0x7f}, {0x0, 0x100000000}, {0x0, 0x40}, {0xb, 0x4}, {0x2, 0x8}, {0xc, 0x100}], 0x7) ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0) r5 = getpgrp(0x0) r6 = syz_open_procfs(r5, &(0x7f0000000340)='attr/current\x00') setsockopt$inet_sctp6_SCTP_NODELAY(r6, 0x84, 0x3, &(0x7f0000000380)=0x100000000, 0x4) r7 = syz_open_procfs$namespace(r5, &(0x7f00000003c0)='ns/uts\x00') getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000400)={{{@in=@broadcast, @in=@rand_addr}}, {{@in6=@mcast2}, 0x0, @in6=@dev}}, &(0x7f0000000500)=0xe8) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r4, 0x84, 0x4, &(0x7f0000000540)=0x3, 0x4) ioctl$TCSBRK(r6, 0x5409, 0x1) getsockname$llc(r6, &(0x7f0000000580), &(0x7f00000005c0)=0x10) sendfile(r1, r0, &(0x7f0000000600), 0x8d12) fanotify_mark(r4, 0x80, 0x2, r4, &(0x7f0000000640)='./file0\x00') symlinkat(&(0x7f0000000680)='./file0\x00', r6, &(0x7f00000006c0)='./file0\x00') ioctl$FS_IOC_FSSETXATTR(r7, 0x401c5820, &(0x7f0000000700)={0x4, 0x6, 0xc44d, 0xfffffffffffffb6e, 0xfffffffffffffbff}) ioctl$KVM_SET_SREGS(r6, 0x4138ae84, &(0x7f0000000740)={{0x10000, 0x3000, 0x3, 0x1, 0x6, 0x200, 0xfffffffffffffffe, 0x8, 0x8001, 0x80000000, 0x0, 0x9}, {0x1000, 0xf001, 0xd, 0x9, 0x4, 0x2c56, 0x8, 0x800, 0x0, 0x7f, 0x9, 0xce4}, {0x4000, 0x10000, 0x8, 0x1, 0x4, 0x1, 0x0, 0x6, 0xff, 0x10000, 0x5, 0x7}, {0x2, 0x0, 0x3, 0xb93, 0xfffffffffffffffb, 0x8, 0x1f, 0x6a, 0x3, 0x1, 0x5, 0x200}, {0x0, 0xf000, 0xb, 0x0, 0x7, 0x8, 0x3, 0x5, 0x73, 0x1ff, 0x20, 0xb155}, {0xf000, 0x2000, 0xf, 0x8, 0x4, 0x200, 0x1, 0x1, 0xfffffffffffffc00, 0x8, 0x7f80000000, 0xfffffffffffff0db}, {0x10000, 0x1, 0xc, 0x7, 0xfff, 0x10001, 0x6, 0x5, 0x200, 0x8001, 0xd2, 0x295f2a2d}, {0x10000, 0x7000, 0x0, 0xd9, 0xac77, 0x9, 0x2, 0x2, 0x1, 0x7fff, 0x9, 0x1}, {0x3000, 0x102000}, {0x5000, 0x6000}, 0x10000, 0x0, 0x1d000, 0x80, 0x6, 0x8801, 0x3000, [0x3, 0x2, 0x9]}) epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r7, &(0x7f0000000880)={0x2}) setsockopt$bt_BT_VOICE(r6, 0x112, 0xb, &(0x7f00000008c0)=0x80000001, 0x2) setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0x5, &(0x7f0000000900)=0x2, 0x4) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r6, 0x28, 0x0, &(0x7f0000000940)=0x100, 0x8) ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f00000009c0)={0x1, &(0x7f0000000980)=[{0x0}]}) ioctl$DRM_IOCTL_LOCK(r6, 0x4008642a, &(0x7f0000000a00)={r8, 0x10}) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r4, 0x84, 0x8, &(0x7f0000000a40)=0x7f, 0x4) rename(&(0x7f0000000a80)='./file0/../file0\x00', &(0x7f0000000ac0)='./file0\x00') accept4$unix(r4, &(0x7f0000000b00)=@abs, &(0x7f0000000b80)=0x6e, 0x80000) syzkaller login: [ 246.609753] IPVS: ftp: loaded support on port[0] = 21 10:12:35 executing program 1: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x1, 0x2200) write$binfmt_elf32(r0, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0xfff, 0x444e, 0xfffffffffffffffc, 0x4, 0x80, 0x3, 0x3f, 0x5, 0x18b, 0x38, 0x239, 0x0, 0x3, 0x20, 0x1, 0x6, 0x100, 0x8}, [{0x70000000, 0x77348643, 0x2, 0xfffffffffffffffe, 0x3f, 0x5, 0x7ff, 0xc0000000000000}], "58b585d570a87735cb290d48ee839457bb36e746008f2a76508535a0a4991dc1aa37650b07d698971615bf402915e38695126d8ac4714589ec06517ceaa86b9ab8fb9f2149828e1ef687a04dbe55c50be8a618416316d38f228d9b4972706fb9ce9a0edd2e4769e336995e6331ab29c6a27e36f024596a077cfe8d7341e175ad349fc68d90171e27ccaf21605dfe4b56df3d173d290aaf8d18b5d1abdef341a5c1534160d6ab4ffd38db1299ff3b1385e386b2738792225fdcce27d633d2064b75a4c2d0d8f9e7c96d9eae425270", [[], [], [], [], [], []]}, 0x726) write$apparmor_current(r0, &(0x7f0000000780)=@profile={'changeprofile ', '/dev/snd/pcmC#D#p\x00'}, 0x20) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000007c0)={0x0, 0xffffffff}, &(0x7f0000000800)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000840)={0x0, 0x200, 0x6, 0x6, r1}, 0x10) stat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000940)={0x5, 0x10001, 0x0, 0xfffffffffffffffd}, 0x10) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000980)='trusted.overlay.opaque\x00', &(0x7f00000009c0)='y\x00', 0x2, 0x3) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000a00)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) syz_extract_tcp_res(&(0x7f0000000a40), 0x1, 0x3f) clock_getres(0x5, &(0x7f0000000a80)) ioctl$EXT4_IOC_RESIZE_FS(r0, 0x40086610, &(0x7f0000000ac0)=0x7fffffff) getsockopt(r0, 0x479d, 0x1f, &(0x7f0000000b00)=""/145, &(0x7f0000000bc0)=0x91) r4 = msgget(0x0, 0x32) msgctl$MSG_INFO(r4, 0xc, &(0x7f0000000c00)=""/134) ioctl$TUNGETFEATURES(r3, 0x800454cf, &(0x7f0000000cc0)) chroot(&(0x7f0000000d00)='./file0\x00') ioctl$KDSETLED(r3, 0x4b32, 0x9) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000d40)={'\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000d80)={@local, 0x43, r5}) bind$bt_hci(r3, &(0x7f0000000dc0)={0x1f, r5, 0x3}, 0xc) open$dir(&(0x7f0000000e00)='./file0/file0\x00', 0x40, 0x20) ioctl$TIOCLINUX7(r3, 0x541c, &(0x7f0000000e40)={0x7, 0x2}) setxattr$security_smack_entry(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0)='security.SMACK64IPOUT\x00', &(0x7f0000000f00)='\x00', 0x1, 0x3) ioctl$VHOST_GET_VRING_ENDIAN(r3, 0x4008af14, &(0x7f0000000f40)={0x2, 0xdf9}) sendto$inet6(r0, &(0x7f0000000f80), 0x0, 0x80, &(0x7f0000000fc0)={0xa, 0x4e21, 0x8, @ipv4={[], [], @multicast1}, 0x2}, 0x1c) ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000001000)={{0x40, 0x2, 0x7, 0x1139, 0xffffffffffffffff, 0x3}, 0x3fb4d1f8}) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000001080)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000001040)={0xffffffffffffffff}, 0x13f, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f00000010c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0xc00000000000, @mcast1, 0x800}, r6}}, 0x30) [ 246.904539] IPVS: ftp: loaded support on port[0] = 21 10:12:35 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x424400, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x1c9c380}}, &(0x7f0000000080)) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x2, 0x0) setsockopt$packet_int(r0, 0x107, 0x1b, &(0x7f0000000100)=0x1, 0x4) read$FUSE(r1, &(0x7f0000000140), 0x1000) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x6d) modify_ldt$write2(0x11, &(0x7f0000001140)={0x5, 0x20000800, 0x6000, 0x4, 0xffffffffffff8001, 0xfffffffffffffffa, 0x7fffffff, 0x4, 0x0, 0x6}, 0x10) ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000001180)=""/159) ioctl$BLKGETSIZE64(r1, 0x80081272, &(0x7f0000001240)) ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000001280), &(0x7f00000012c0)=0x40) writev(r1, &(0x7f0000001640)=[{&(0x7f0000001300)="5c5e468fd1ce0ff692503cf9a030cbb666dfb8c5ed7047ed78d8a5104fb745aaf0b1a00e0635fcc0a7de5dc8b3fe34220dcf855f3660a4fbe3f06f573eadf53abcc08db53f73faee75f9458f6dd14a4652f49a466fb7501ce6d04a511882a2bccc1fc168ef9f2594e23684a167ead1bda96ce9f303a268e05b1d3bde7db2cc199ff175a0aa849409a95160026c57a2ede6ac2716e07a6e78ded45d596d9f7ecf31fb38b9f74d3970d5b5b68d0e90", 0xae}, {&(0x7f00000013c0)="334d380a44b648c7d01e828b14f767cf130182775d0a6007649f907e4b08d7d8a8e577cfbc9c55c0479ea1adc2583b9d424d1c78675f6260f56bb513bb4efdf5d1677b8a1e619b272ccc", 0x4a}, {&(0x7f0000001440)="42fba64ae6f6ed7dacdfb28ab8584539c50ca48cf91aaa18128d1743ab73fb0c98088d9a322613bdb39174e28bdda55a066f50bb9c81e41fe20b11ff833f97233837d30934c80a91392aad72143bf79061f70941a48fd73d2b55e8c0ec5383c9902de59453e42830bdf21f89972a5c57ddcf24d9bef31f3e1bad590658392d6b17c6d00bdbc8d39ef2d3cf0910b35dacb549918fbf034de6ac3095fc11b6fdacd69a83535e8193c63ebd3e4b7cc93e85f6d092cbdcceec3b90020b24b41653f8df117caf014491883997352c89a7e8c0dc5ee4", 0xd3}, {&(0x7f0000001540)="3e505954124bc39ffb51fe77631dcb0aa82bb2a4857f234d2ac2f8ff87c711805efaa0ddfcc556e490e6507b8964dd22b6ce64cc8336d6796e595713f550ea90363c5b8a778527c0b7646457e427115d7d131eeb06fca18817262a57d70da988ca", 0x61}, {&(0x7f00000015c0)="998a0b2a6fa1fadacc4da67e068db4a8927a44de9cfdb3bca49559a56fb5c3d253cabf5986b63fbe554fd1755ee633bea524ba8c844e7ff60c9d5a4155701d36cac499e6e2a101ce81c5e8c4281bfec38cb7ce0c37628e", 0x57}], 0x5) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000001740)=[@text16={0x10, &(0x7f00000016c0)="0f01cb6766c7442400090000006766c7442402ffffffff6766c744240600000000670f0114240fba2b8dea0400c100f20f01dfb84d008ed8ba6100b006ee66b9351001c066b80a00000066ba000000000f3026360f01dfba2100b83e32ef", 0x5e}], 0x1, 0x74, &(0x7f0000001780), 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000017c0)={0x0, 0x1000}) ioctl$DRM_IOCTL_RM_MAP(r1, 0x4028641b, &(0x7f0000001800)={&(0x7f0000e00000/0x200000)=nil, 0x3ff, 0x1, 0x4, &(0x7f0000fd7000/0x2000)=nil, 0x5522ba85}) syz_open_dev$binder(&(0x7f0000001840)='/dev/binder#\x00', 0x0, 0x802) ioctl$DRM_IOCTL_AGP_RELEASE(r1, 0x6431) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0x74) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001880)={0x0}, &(0x7f00000018c0)=0xc) sched_setparam(r2, &(0x7f0000001900)) ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000001940)) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000001980)='/dev/vsock\x00', 0x10000, 0x0) write$binfmt_elf32(r3, &(0x7f00000019c0)={{0x7f, 0x45, 0x4c, 0x46, 0x401, 0x100, 0x2, 0xfffffffffffff665, 0x80, 0x2, 0x3e, 0x0, 0x37a, 0x38, 0x25b, 0x1a, 0x16d, 0x20, 0x4, 0x100000000, 0x7, 0xffffffffffff3ecf}, [{0x0, 0x4, 0x6e, 0x8e, 0x7ff, 0x400, 0x3ff, 0x6}], "445f9a759a47c9a65d547efc4ab01c2e70a0034c58264aa2226ac5a4f7ff5811b24796b0aeb3b711f70b379f5acbd4470cccbdee5e56f2c711436fe98faaa5881b90081d15a3e9d006363828538a567fff0235ac12aad73ae409f2edaaf11bc3837da60cfb84ccdb68f7a3a80b", [[], [], [], []]}, 0x4c5) socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000001ec0), &(0x7f0000001f00)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000001f40)={0x0, 0x7f, 0x30}, &(0x7f0000001f80)=0xc) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000001fc0)={r4, @in6={{0xa, 0x4e23, 0x131, @mcast1, 0x6}}, [0x7, 0x2, 0x8, 0x366, 0x5, 0x3, 0xcd0, 0x9, 0x8, 0x101, 0x2, 0x0, 0x2, 0x4, 0xff]}, &(0x7f00000020c0)=0x100) openat$ipvs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) ptrace$cont(0x29, r2, 0x63d7f179, 0xff) [ 247.215258] IPVS: ftp: loaded support on port[0] = 21 10:12:36 executing program 3: getsockname(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000080)=0x80) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x4e21, 0xf4ec, @ipv4={[], [], @broadcast}, 0x4}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000180)={r1, 0xff, 0xdc1, 0x9}, &(0x7f00000001c0)=0x10) setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000200)=0x599, 0x4) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x42, 0x0) ioctl$UI_DEV_DESTROY(r2, 0x5502) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r0, 0x111, 0x4, 0x0, 0x4) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000280)={{0x2, 0xdff9, 0x8}, 'syz0\x00', 0x18}) accept4$bt_l2cap(r0, &(0x7f0000000300), &(0x7f0000000340)=0xe, 0x80000) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000380)={0x80000, 0xd59, 0x1, 0xedc, 0x2, [{0x0, 0x4, 0x1, 0x0, 0x0, 0x1}, {0x9, 0x3ff, 0x1, 0x0, 0x0, 0x20c}]}) readahead(r0, 0x7, 0xbbb4) ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000480)={0x9, {0x2, 0x4e23, @broadcast}, {0x2, 0x4e23, @local}, {0x2, 0x4e23, @loopback}, 0x80, 0x6, 0x800, 0x3, 0xfff, &(0x7f0000000440)='bcsf0\x00', 0x8d3, 0x7, 0x400}) sendmsg$nl_xfrm(r0, &(0x7f0000001640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001600)={&(0x7f0000000540)=@flushsa={0x1090, 0x1c, 0x100, 0x70bd26, 0x25dfdbfb, {0xff}, [@policy_type={0xc, 0x10, {0x1}}, @ipv4_hthresh={0x8, 0x3, {0x12, 0x1d}}, @algo_auth_trunc={0x104c, 0x14, {{'michael_mic\x00'}, 0x8000, 0x180, "3eb3becf664e8c51983bc8f8718c7ae6cccc4e3a1fcb37500afdb34eb6174f0e3342fcbc948afe447bcc01d98ce1e5638312ce83bac01efe3425f9878d349eb9a08b2d97f5433496d64b134d782aba01e23869e3981f17651485fdcf2697546e11e617c4d97b751a48f8631c74c1486e1ecd2fe474f19982171fdff6f921cd8a49a5bc3e14054f335ac13b941c33f0f7674b92c9f5b5d76c1fe03456ed19da281cb0219cb709bc62c142e209b104d4dfede042f078ae590ba4800b7373d265a775918240d00125e18143af9cb4170e038ca858435df846594a073d5dc4fc24e4336a0347ad9b557723f18fd16a027e5e986a6869837aa8791230938e693808c6e9c30b1b63283556c56f1654bd4809fc6d9a3c77f0e82c5c457a33dfef724540a073777051785010674a59fca3271c255ee5eb7f0be7aeb221e7b661e74c572414a9eb8fad1bc42f1c986c040eeb8b0360b83e63b83c66e1ab0e119c50fc843cfdc9f4f14198eb7e8e090a5c8ff333ed3c22cf09c696d561f7ee0575959972f50cf672f96de7cebcd4d02ebe2d1ffc13ac3bdbeb25e2e3992088508027e5f842a77f6caa48524e9e89782b5cd72487da6f584909f9bc62f4fc2bae5d868241cdbe12e25aeb22b27597f5f6ad8adc040ddf8c4f49e7a3f1413fa641b2e377a3c1c1c621a6943cf3971a3c8ea012b1a6085f7b4362fbb9a08ddc50e7c8036f7063aa316daec7fce3816e1f1e67b4939d822b40e28c7056919ca46390a16e418761a3b690906b7741e97440ec6ba95252f220285a4aa78b71423ccaeac3c86b3d7a8928c934b3dc6d0b829889fa1bf74c88a1f1340ce18d2dcc95e7576cd4bd84cab71e87a4b1458efe1c74068229cbe351084c0414bd79e8f67b4158c073df01672f38de6494c5db502df8c891577bfdf608db7a2cb98be503e1ce58bcf2cbd99d9fdad2d12e5a78bae433d6c9aae2e6db7b116304ca5fb76224874752f42b9299c1871c23856fd7aaed6047221ecef15f9aeef7564b85a5ca9576ebf0cf57674db39ccb634f37d74c027a3a5ee5d36f0b0d548f175c6ba812774f927cb9ecdac2b98118fa6cb81c61cfbf5998cdd84f5d44ec21e65c210787027a93913a193a1213ae80b28e963812df540045b97d441309fbfaed89b2d18cf1b29db068ce36855d236f08e5fd029433cb9c55c646c9d5e4f1924daf5b55803b1626f23224be354bad0d973516e4f33cac3b15b5ddb9f264f396788ddea1d3785053f6f56e0c84c480bc558c0d895040d53dfbe890045f4d1bb8ea4b4378fc38e359b0deaea0119ff36a28477ebb029b4ed366a77ecf3a55dd3d8b0d953b24c8f5d026c52f1fe4a57002a49db5de456b2ee3d6452818cfbb9091e3ba5ad0ce99f2d6ddbc90c3fe560ce7643e1a417a9ac4351910cc6a13898e87f04532d1f7d453fb6243de16178a79ffd869aa0a328aa3ab6aa040c7491b038b12b6ceac188c7d1cdf1b0ea60d6f26470d090f979e7cf9271d6e3e271a9f62f868567fd778b82106e3bd5d3f06da2ba28e297c4aecc88052af620fd79601a0866ac1868adfe51a94a0c436aa7406529f594a92ddc3a0597dda86cfa6e9762d397deec6b38957cc4daa573c3f5ca8f58302efcfc8161365bcfd4847612cac1fca64e1fd50c51a2b980666250a8e8717506bc7b94efa95c1dd75a72b374103d4004bb5754b51e9f3bba7242c488658dd82efd09b945798cf78f9f2a9802830a984bf1d86ab5986c3ee57b5478f48079af425a995abfec662842d59ba86ccd9d138a1f0241d2348f28028e4e96909ed5b5fb64abeecb52baa1ca64529b99128ee7ec938200c2eb9d1f6a09533da88d1382611818d789a79d4a03bae0d6e40fc667d9392afd92c1568e9f774d58cdab76ac547a02ecbdaf3f37fecb72c684c5b6942fefad28ec23b5bfc0b9b3cd29017199af223dde8599e3fb361781393ee612838fc7b521adf3e33ebb7f4c1e2b998f7e0c81327d992dd571206289c504958a2e20db4c15cb9c8b11625cb7fcdbe501b27b061e4928390b7805e4c30faef7f1a64ffc61c398910bbb40f99656082ee106b3562996987fd25097085dd1ead79ef550fce716f0ca8ecc66d68fe2e45a8edff11cda7d6eb2ec4bed7e7b9a6dd64bf843f682192e3e1201263dcf9cb26bf43f9801fac26b9721b5927a6b423bfe62be66d4c85e3b5abfbd1e2d6650e5e012a931b7e1666785c9da73cc8ae039518621ce06b525b128c4fb25dcb720bc54de3cbbbadd42974f04a81fac3dfe915693e5b0b797125a02dee56c3cacd43f3c55a41aca904051966e7c69d4c6386ee93a32c50c0cff675d7bb1fcf6f1e210214a836420b12f196d8655159f51bdc811c905f3747eb9f92b3e43acf6367a32a74fb310c8affad24391a607934a215ce5ed786e937ebc3789e24574594f7a501421f73af92a3e0d9e38d963bdf404fd6af288e5afb1522c0534bd060adc43ac7a2fdf145df9688837264e90eb4c92bda657351e00f1d6cf117c7ca25fdf2472ef4b42b4cf8b71c27a5bf95b98e133bcefac08faef66afd0fac2dc37e53ef3b7c9c681ab708e0dd7c8523f5c48c578e3e0886eab0a12a70ed3b4bf45d8358f70a2f0d88c57517502174117c0c17523ee4968584bbdfcbf87267717266e42ce9d670c8f5a6c96627504b4a959ced845f6ce143237accb532bfea5c875cd126eb5826b9b4adde39696f4978f6cddcde5f1d69923bc9f1e53f06ffc25dc62f81f593ece1d7006513c6928633d0f2fcccb3fe94b7f92bdf19c1e9803626fcb607332de8f9c9aac71f4561b75286d05928e6062a7a1bee01ac831e0dcf458bfdc1f9e7cd90f0a281d5a700176651f8fdfd0d926a850ba6073b4f50348889b58e82887cf68d24b3c4a2a1fca898251756f8e2c74859b4f26832412ce35acf2f1fee952ade66f5f2475ff1fb34b69e495b729cb56bf278e82978ed86684b905ec3ba9c362b0797b85877159eb2fa22dc172a355bcab44df1e707fb324286745805e278fe288f06a46805846a8ec199191a07ebd0025736412cac1cd24c1d2c6b02fbe36196745fa290332d8e5c9299500bd4bb04ba429a2000394bf6bffcd5c13fe8a3ac01344de99e1a592f5180bc20a518975fd248ec51718ab4f381dcf69bbf40bf7958d663a22fe53227d046d4725f3cf5c6d014498a79be941d1cd621f5ef7b2bfbaf60bc2701f2435b845e283aa6d94315772dc7388d20675be45236b55fa028828d9b9295a5b460896b9502be57a350e6537d765b9f871a3f2100ddba0ffbf924e7bc084696490c24ba7996ae6f6fc545526dc0f1076a1f454605174c0d953a3fb35d38587fb1fb5fea52594528ef9401aa7ce8a7d5c4692d667c201fcf5f582910f60046a8032fa1f2d740026c40b173beb83dfc0f65153198513fec08568488381d0f3e210a28a1f642e1b8c29039ebe7812500cc002069d951f01da802dfeb1142081037515bbf073b08ec147ecc393286f02db4968dc1a1c3e7a04d8eef0727c7eeb6b798dbff3d1679e3201faca0bc7c50305861a51c8458a3a6984a951b8084c127c4e32ede9512a3fed44e99948deb2aae0c40f8431ee12458bc9c6d30f74f2e2c4c53b3ed8eb5453281129ebc3987c771ae669de1c09191b8c58bd138df1d273d7ae4e9d192a7d037e3f502249f03ab09f3196819f4ff049370695793d6430f41c6af6a37ac98fd144a1b28a5c4be033f94ce012fe87407e8c7b06b8b8ece30ac4977c111c58b947717b126a182c4e86978e93012fcc1075ff0016b90d9b4aa855c01604ae7379b9b5fa50bf07bb10638b70e9091ec87a0a5725fc764f27f397d78e29fd264fc2d0747dd5eaaa05f34ef1733839d467b940ecf8d7cf5c8392a583238011b823add01a8395ff15f5e081a63d46b271d6a827bdf038043141c1ee06386ef02af1da8ae7a544f4f5e1aa4c26110daedda6ad4e3e677fb9ac9dad4c8c9667049c3da02ca7053fb3f78e4a09fb7004734c985510473418cf7929c2af657e08d6e289403f1f5bb51a14c29a8a1fc0e0105a8b39dc0b30ef0b1845c2aacfb3775ec771c3aab6db47fcfc19d7c9c622d0b4e8ae24d5cb4729db6415754a8f4f5586cc4ea335e8b1897bf080529cf3463b7e212a246a47211d50d5d8b0b7eb3840eea8c927077cfb647bdfd9aa5b2ef7b46a74ffe84a83199e5be4db30a85e9b26e7ae346ccc994076171e1da260f41e10f054f851cfc66a0076ea0a1a5dcf247d57575867d004f81003bad06363abe486a996dc227e6582dc1980e6e9c2a258b75616aff22450c18ee68c53a1cebe184f0c9539f3a50b05a3f6092672adc13bcd0e228e357e861b3b02e20b907885e5627110daa7b4f595f5b2307679a583892ff854a436971231fe14974e3cc8358fcfd12c7cb3a9c3c8ad7d2260e516d852aec97184bb2710e4ca27d9cae0a37ecf47a93ce9c75f748dae4761eefcac8f0151a9a04cf15cf6f532fd63e08c9020e92d618fe56a3f9ea5d5176dd2f43a3b41d35498ae2da2999753574110994ff971b9d02ea9125e0e026491d010cdb6c625ab3f33f4c13cec4593eaa7c51f39e54ebe256efea2e94790092f03f1187708602f3d491e4fc34ae8c428a33880a1dc62359d1377ce66e02ba11d9ef588c923b1f9252d1085d868b631e3c4914a75338b51d61e80aa495a4d37de1e7feb795ce805654c581a7822e0f04e0c0c6564210975a165dbdf12775dea879674b123ac15f72aa4beaac2488b851bb810f82fd2ca4ba1defcdbf4875a462f66593c32f0948fead2f6f79b5f08bda35edcbd0b27d5f17c702ec2f98e90ae76c587177d39d5c3e3e6ed166e54b44195d5abf8f81c83849e41f55d48810fb4bc27368ff20e39c00ffac014798b43bfe9da085d03fb2b623ddfd28a28d388a27bad03bb590360c08151f243c92945ff50abb7da93e996da93ed58da9c84162107f01d1f9e793ac58a7412249b9ad10c09af568e1bcd43de50677d8886f45839a9f153f06bda2d50de563a7f4b5244a770f73940a7c0e82c6e25055b18e2071216bf0539a9006a63000a7b5d4399c05445ebc0e0ef977dd85a6dae17e0d22357ea48165a3498ae50ccf9cdbbd41a8751956809d85d0832bf9e06c72d104514a5060291e3aa789a106241c1212cc61640c2831817ea4b4f911524d6ac02a0f30ec6c9c18a8e46f4e4140ab59d5904b9a38082560f9d52ac56d4ce9ea20bf45a66720c4f517c814c8bd942888c7f8a7f244c0a53feb571de1aec7cbe79d84228b0e25acf1f356699e4d3b29af9ab1d9db08c469db73a185b1a0d7b2951b856c79d514fa85459954b407ad0dea5c181c70384e88cad3087a6ac556fde41b3317fe879dca380c95da098770e8510122e47bf8aba8aa3e9ed940d8f7778887d4db6e67791b4f006cd6c175052f642376e85f1b9ebde4f2ee7ce8fd1febd54a4d392ef68470447f95fb6bb2178bd6152c9a64bfb12d8c836a6ce3b7444c824abffbba4f08ae0c2fc1f0167dcbe9c9f95c6870879975d172735ca603ee2fc1a8b79fde45f426e8174c250a4ed7d3f4ecee3a1410ac33f35bb97bca649ffd9d814b6ff4139f53389bbb359c6fb937950ea9779762e93046f2436ccee5ad62e7d13c9c0ae9a953696ff59f1c8ede37449d8e0ffcc1fcf17da471b581664f28584884bcc1476135e0ae10fec3ef0ea8187a66c986d630d389070ed19e982703e2726d146833acb787ebb7a57b697258457cd06f169b28239b78be4bfde784998bdf39ad0b35c9"}}, @encap={0x1c, 0x4, {0x1, 0x4e20, 0x4e22}}]}, 0x1090}, 0x1, 0x0, 0x0, 0x4}, 0x1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001a80)={0xffffffffffffffff, r2, 0x0, 0x5, &(0x7f0000001a40)='-em0\x00'}, 0x30) fstat(r0, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x6, &(0x7f0000001b40)=[0xee01, 0xee00, 0xffffffffffffffff, 0xee00, 0xee01, 0xffffffffffffffff]) sendmsg$unix(r2, &(0x7f0000001bc0)={&(0x7f0000001680)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f00000019c0)=[{&(0x7f0000001700)="d2e17129ef13455bb03504d5f1334a25407ac91aeb40386f0973cac39db8893d43b6f8ce209b581ace8adc78ed0f61781a8ca7aaa403fa44bde43d020235e18e2aaab128b952010f23b8b89211d73de59e8899", 0x53}, {&(0x7f0000001780)="de2ac1884a943dd9081ee72f7ddb2c089a60f4c7f78b086bee7ce572f302c074b332a0a8321a2bd20e23efb16edb49f76facbefb695d14996114bff7c111a9fee9931ef4c96dc12fb6d9d56c0fd8f9c9d8c00d31a79b26ea521cd68f33c1afcada1a605928d8eba3de089854423459f6ca9f5b7e3b481916f1e25d98391034343db914b6cf9fa45a00c0264bb8078d3739879609e574a93c5fe24ee12d0d35eff148d6114767e743bf46f0602c8d235e68a6f5e6979324f9e6db", 0xba}, {&(0x7f0000001840)="5a7bf1362ad6a9e0ad7f2fd22365197141a3731514de71ece6129e255fffb8bc273244114179e928995ce0fdde6117ac9280ee513473b368ad4782caddf9dcc23cffcf7f9b74e36ae51e9441a9c956cce6", 0x51}, {&(0x7f00000018c0)="d9e51090f9a06d9bf93564fa66a5266502d07b616c5d7ade4a23e86122c3682c5310e59c5903421f332e3e8942d036e5a9c0cfa89c517052dcde2497bfaf2b49598832941da55deaeb754525466e087350576f1ad8e2192ebeebbc3c95a98106762449037c425b987e2427327a79f684d99c1c7a2cc5be87a663", 0x7a}, {&(0x7f0000001940)="697cb8f97a5c17057f536bfe84165a6120089e020e6d3ab9fdb14b3180e70830efa75d06b009bdffefd2fa64c159d284d3a02ed8bc910eba2e9db832d844deebe55b2ae4350c72c80bbba47d05bb128ef5be8f48e55795e3aba038fedfff034fff5f", 0x62}], 0x5, &(0x7f0000001b80)=[@cred={0x20, 0x1, 0x2, r3, r4, r5}], 0x20, 0x40}, 0x44000) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001c40)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r2, &(0x7f0000001d40)={&(0x7f0000001c00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001c80)={0x60, r6, 0x100, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x10001}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9a}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3f}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x80000001}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x841) name_to_handle_at(r2, &(0x7f0000001d80)='./file0\x00', &(0x7f0000001dc0)={0xd3, 0x8, "c8bec2a0c52e462652cbcb3e200a8287e00d0c383ff1a780fc81c1eedc0e6e56f8e07f7a4d30b7dc95c6d1c34fe52332f611c482a2876e01d8b127388beb8c1f9c96d4142b3cd013f63995e6ccd789aa976c556660133fba1db546502f7a9d5510835c14f577f2209ca0fb2f2158c3cb27a01c6612136dbaedcc5f804eb6381f48325eaad9f4663b1b72cc673f92a7b1371559c778b40b39e279bc589d211ab8fc9300826536b0c48cbcb068726e83acc6b9d5d3b2579264137da2cbff1903b16b36e485bcaaac98088261"}, &(0x7f0000001ec0), 0x1000) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000001f00)={r1, 0x5}, &(0x7f0000001f40)=0x8) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) personality(0x40000) ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000001f80)={[{0x40e, 0x7, 0x6, 0x3, 0x800, 0x200, 0x2, 0x8001, 0x1, 0x20, 0xe6c, 0x1f, 0x7}, {0x8, 0x7ff, 0x7, 0x1, 0xfffffffffffffffb, 0x9, 0x1, 0x8001, 0x55, 0x4, 0xca7e, 0x7, 0x6}, {0x812, 0xf5ff, 0x4, 0x7, 0x81, 0x69355bcc, 0x5, 0x0, 0x3, 0xcd6, 0x6, 0x7fffffff, 0x8}], 0x6}) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000002000)=0x4200, 0x4) setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000002040)=0x2, 0x4) name_to_handle_at(r2, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0)={0x4c, 0x8, "d6129ead0bd2658a406097cf7595cf774adc7110650b9bed2819bc8dfcb618a038c6a25a57316b63227f9b6a2b333ef7e0f05a065f6c47cb5120e01de20ecce81bcef20d"}, &(0x7f0000002140), 0x1000) prctl$setendian(0x14, 0x2) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r2, 0x4008af23, &(0x7f0000002180)={0x2, 0xea9}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f00000021c0)={0x12b, @tick=0x401, 0x7, {0x5, 0x82}, 0x1, 0x1, 0xfbb4}) [ 247.799836] IPVS: ftp: loaded support on port[0] = 21 10:12:36 executing program 4: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x5, 0x200) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f0000000040)=0x6) ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000080)=""/253) ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x3ff, 0xffffffffffffffff, 0x1}) getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000240)={'filter\x00', 0x0, 0x3, 0x2f, [], 0x2, &(0x7f00000001c0)=[{}, {}], &(0x7f0000000200)=""/47}, &(0x7f00000002c0)=0x78) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'ip_vti0\x00', 0x20}) fchdir(r0) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000340)={0x57, 0x7, 0x6, {0xffff, 0x200}, {0x6, 0xef3}, @rumble={0x8, 0x7ff}}) ioctl$sock_proto_private(r0, 0x89e0, &(0x7f0000000380)="88") r1 = syz_open_dev$binder(&(0x7f00000003c0)='/dev/binder#\x00', 0x0, 0x802) write$P9_RLERRORu(r0, &(0x7f0000000400)={0x15, 0x7, 0x2, {{0x8, 'ip_vti0\x00'}, 0x5}}, 0x15) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000440)={{0x9, 0x7}, 'port1\x00', 0x21, 0x40000, 0x80000001, 0x20, 0x2, 0x5, 0x2, 0x0, 0x0, 0xffffffffffffff7f}) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000500), &(0x7f0000000540)=0x4) write$selinux_attr(r0, &(0x7f0000000580)='system_u:object_r:console_device_t:s0\x00', 0x26) write$P9_RREAD(r0, &(0x7f00000005c0)={0x100b, 0x75, 0x1, {0x1000, "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"}}, 0x100b) r2 = syz_open_dev$amidi(&(0x7f0000001600)='/dev/amidi#\x00', 0x3, 0x400) ioctl$DRM_IOCTL_SET_VERSION(r2, 0xc0106407, &(0x7f0000001640)={0xffff, 0x1, 0x7, 0x6}) r3 = syz_open_dev$vcsn(&(0x7f0000001680)='/dev/vcs#\x00', 0x1, 0x8402) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000016c0)={0x6, 0x7, 0x6, 0xb979, 0xd3b0}) ioctl$SG_SET_KEEP_ORPHAN(r2, 0x2287, &(0x7f0000001700)=0x7) write$P9_RREAD(r1, &(0x7f0000001740)={0xcc, 0x75, 0x1, {0xc1, "963e5584e54fa5de93596c6d1e26c861e71fe1430117f7d4fb5175098a2ff1e517450f6d4cc7cd1fba2cef15a2d2658969ddf60a45a9a71d4fc2857703fc6d6a7c8ca12d316825b8b2095f95b6d921aa9965208ad1fb932f9f3c2489f62d5f8cf5b266e1c9be8e7b7b0fd1c6345239006f619c574b469215e3ef0b8a8722692ae9a2052595a82d8e66378ab7d9cf05ae3e7db4acc55cfae91f2adf70e6c5d656807e612a58936fed953c25be40bef8927e49a1c1d393972db555ab6ef36faa525e"}}, 0xcc) setsockopt$inet6_dccp_buf(r0, 0x21, 0xd, &(0x7f0000001840)="0957dd012b15ca6cfa0a3af9dc402b7f50296a8d7d7e56867372c2257013275a14a2a2bf83fc80efdc68a95838c6628237b54bb269b643d03f5c4717f3548bbee3877e387f1aa5b140fbb5e005298626297255376b1c46ee454c3a7d5b39c004a8a36f1b661c596c592b35f85bad57bdef4fbdccf229046ef1decdafbd9b79cd291306ad998f8e99450e7f5f642d2b0d4eaf454c14d5aced68d599ac1c86d5e1c45fd3c113676f8385fa300300cfc916a37ef1778ed883966045ba9debc4e64dc91ba3ccc4334e8ba93bdb8c9c54e3792ac5c08a01368ef44fa2bc6723b32c22795b3fa267100c58391bba74fbfd95ee", 0xf0) mq_open(&(0x7f0000001940)="a86b657972696e67d300", 0x2, 0x8, &(0x7f0000001980)={0xffff, 0x3f, 0x3, 0x7, 0xffffffffffff8000, 0x4, 0xfff, 0x5}) fsetxattr$trusted_overlay_nlink(r3, &(0x7f00000019c0)='trusted.overlay.nlink\x00', &(0x7f0000001a00)={'U-', 0x80000000}, 0x28, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000001a80)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000001a40)={0xffffffffffffffff}, 0x13f, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r3, &(0x7f0000001ac0)={0xf, 0x8, 0xfa00, {r4, 0x10}}, 0x10) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001cc0)={&(0x7f0000001b00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xb4, 0xcc, 0xa72, {"b0b3ba4832ccf79460b886d4b9e8ecb31fbec86effd721144d6a1f884c8c4fd59debef1473e9ebed13b9d09b4a3416102c6bf519ad0460a995fe928f5f10b645eb0623d4bb4b531aea30f0e46be908075b5584e2c83f08630960713cea4937851f5865607ff3cef48d95fcea99524b6f59ef21c15ff0e2d25ba4473d2250d9e83554cdf1d516c7963683ccc4ca41e6011420da6ec3ef0bf03211ca2b5b81f314b5bd471b49183e7d8db82211a871d23e3d048d"}}, {0x0, "81fb620dc524f43efd96028dbc1b7911fce3a3d6b255e3fc26fc51a98d3de8cbdb9d52957e"}}, &(0x7f0000001c00)=""/134, 0xf3, 0x86}, 0x20) fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000001d00)='trusted.overlay.redirect\x00', &(0x7f0000001d40)='./file0\x00', 0x8, 0x2) socket$key(0xf, 0x3, 0x2) renameat(r0, &(0x7f0000001d80)='./file0\x00', r3, &(0x7f0000001dc0)='./file0\x00') [ 248.206294] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.213226] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.227879] device bridge_slave_0 entered promiscuous mode [ 248.338528] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.355194] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.363147] device bridge_slave_1 entered promiscuous mode [ 248.489441] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 248.492074] IPVS: ftp: loaded support on port[0] = 21 [ 248.567440] bridge0: port 1(bridge_slave_0) entered blocking state [ 248.575057] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.590691] device bridge_slave_0 entered promiscuous mode [ 248.605744] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 248.701610] bridge0: port 2(bridge_slave_1) entered blocking state [ 248.709242] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.723762] device bridge_slave_1 entered promiscuous mode 10:12:37 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x6f7, 0x48040) ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000040)={0xfffffffffffffffc, 0xa5, "89ac4455fccc95f5642d8c386ce978621b0750b9262dc00f398ca20e78e37609f04a44ded93c8ef361749c9cd9c50f148ddd00e1740a63849faa8a69185e024587c05489d8a07406cb2816e786583285bd27a6b23a88a658af4c901f7d2a6b202752683028ba0ddc624b420846643d2566538370665203cf999ce77b2a6c6872815d7cb376982c84592154541691fea6712119d5ac5b0e80129c36303a54dcf3eb83304929"}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x140c0, 0x0) r2 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', 0x0, 0x18}, 0x10) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r0, 0xc02c5341, &(0x7f00000001c0)) r3 = syz_open_dev$usb(&(0x7f0000000240)='/dev/bus/usb/00#/00#\x00', 0x10000, 0x103000) setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f0000000280)=0x9, 0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(r3, 0xc018620b, &(0x7f00000002c0)={0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000500)={0x64, 0x0, &(0x7f0000000380)=[@increfs_done={0x40106308, r4, 0x3}, @reply={0x40406301, {0x3, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x30, &(0x7f0000000300), &(0x7f0000000340)=[0x38, 0x18, 0x40, 0x0, 0x0, 0x20]}}, @dead_binder_done], 0xf3, 0x0, &(0x7f0000000400)="3e9511f36a53740ad6e8c4ed61a259799abac3fe5f6990dc54b2830d0121ee5220ff478b155067c5dcc74dc51f0dec0ba4adfe60eee99f977de0395fe871a74e8e3413370bf470761ab8813cd16bff6e78d0ab567c9e390c0fff2a88e8ebcb2881968c2b6228161bb5c451efe584dbe3a20f6f8317e5f9145004d392aa53460ef9a9b20dcc951a78d5a71007a856c49465e06adf14196456c21205dc11bed30ba69beecd213df426642c8d3acf4c0490038967288d2cd0eb434b618b41c973ea16ed0d24513f21bdd544b94af46face5350354d65f3f655d11bc349ea4bc8b08e47bd740a9deafc64313dd22922da062422c95"}) r5 = getpgrp(0xffffffffffffffff) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000540)=r5) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000580)={0x400, 0x3, 0x5, 0x701}) ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f0000000600)={0x1, &(0x7f00000005c0)=[0x4]}) lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000700)={0x2b, 0x5, r5, 0x7fffffff, r6, 0x96, 0x80000000, 0x7005bd9e}) r7 = openat$cgroup_ro(r1, &(0x7f0000000740)='cpuacct.stat\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000780)={'rose0\x00', 0x0}) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f00000007c0)={@local, r8}, 0x14) ioctl$KVM_GET_CLOCK(r0, 0x8030ae7c, &(0x7f0000000800)) bind$alg(r3, &(0x7f0000000840)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha384\x00'}, 0x58) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000940)={0x0, 0x4c, &(0x7f00000008c0)=[@in6={0xa, 0x4e23, 0x1262, @ipv4={[], [], @broadcast}, 0x3}, @in={0x2, 0x4e21}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xe}}]}, &(0x7f0000000980)=0x10) setsockopt$inet_sctp6_SCTP_RTOINFO(r7, 0x84, 0x0, &(0x7f00000009c0)={r9, 0x4, 0x1, 0x179}, 0x10) r10 = add_key(&(0x7f0000000a00)='pkcs7_test\x00', &(0x7f0000000a40)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa) r11 = add_key(&(0x7f0000000a80)='cifs.spnego\x00', &(0x7f0000000ac0)={'syz', 0x1}, &(0x7f0000000b00)="297719e4a3a903556a78cb7fd7b06b7cbbe7c9718ca286e034c1931c2b9362bdece88f158aae14d24eff6d1f96c58b4a30c1f629168c010408ffcf49588dda441a52e19fbe72b7e88aea1ccc6fa1e27283bc30bcd7a6c64412b250fe261cac5cfcd16280f1c4164d5d1a9afe1f05350988911c6d389a6992d75f9b5f9fa990c9a755c1906f508a5f92ca85fb1e655a3e2b731bd2686d56ba355f23f63d6cf7dbe9ed49fdeca70d904fb8700a49de6c7ce6d9acc02a81f4711f3352cb65", 0xbd, 0xfffffffffffffffe) r12 = add_key(&(0x7f0000000bc0)='id_legacy\x00', &(0x7f0000000c00)={'syz', 0x1}, &(0x7f0000000c40)="8032772c021203c031f8060ef891c1ca16813568cf632f7a2989c49fc4bb91aa77e907f9284d0b5f452bf0375a4795b74cc3b1b61301", 0x36, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000c80)={r10, r11, r12}, &(0x7f0000000cc0)=""/111, 0x6f, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000d40)=[@in={0x2, 0x4e20, @loopback}, @in6={0xa, 0x4e21, 0x7, @local, 0x2}, @in={0x2, 0x4e23}, @in6={0xa, 0x4e22, 0x26, @dev={0xfe, 0x80, [], 0x1b}, 0xd1}, @in6={0xa, 0x4e21, 0x2, @mcast1, 0x10000}, @in6={0xa, 0x4e22, 0x3, @mcast2, 0x200}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x12}}], 0xa0) ioctl$RNDADDENTROPY(r7, 0x40085203, &(0x7f0000000e00)={0x3, 0xcb, "b55f1046401dd5e58b046549bbe8e8dd1751d0ff16278ad79bafd515e10acf2d8333bf2ea52607f255bd1342a974a7e29cda73305d497024090a6038603e5b00fb3af47cc951554c8e919eee9d4581642469952d5b3343ef1cc283545f6c1d0e3bd7542747a623893980b1ae845b51642092cd4e64edfbfdb1bcb19391cd99b88b4c7ca2651bca2badd0a90d16bb4f536b3a8539169fce926cef29be8cb1c66aae1d990e2a986c5b88c89b6aba98e4c183613e4f410c695219fecfa4f3d10f2642196b4272a4f634def5c4"}) fremovexattr(r2, &(0x7f0000000f00)=@random={'trusted.', 'rose0\x00'}) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000f40)={@broadcast, @remote, 0x1, 0x3, [@remote, @multicast2, @rand_addr]}, 0x1c) [ 248.939511] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 249.034615] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 249.068846] IPVS: ftp: loaded support on port[0] = 21 [ 249.073710] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 249.152121] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 249.250398] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.265006] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.288954] device bridge_slave_0 entered promiscuous mode [ 249.321300] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 249.344765] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 249.488782] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 249.527352] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.536050] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.560478] device bridge_slave_1 entered promiscuous mode [ 249.625787] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 249.637945] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 249.764137] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 249.795670] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 249.817302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 249.844256] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 249.859989] team0: Port device team_slave_0 added [ 249.933819] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 249.959347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 250.015983] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 250.031940] team0: Port device team_slave_1 added [ 250.140650] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 250.147508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 250.160022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 250.254375] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 250.279059] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.299543] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.306903] device bridge_slave_0 entered promiscuous mode [ 250.327632] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 250.339652] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 250.355638] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 250.406390] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 250.438121] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 250.457404] team0: Port device team_slave_0 added [ 250.471468] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 250.486125] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 250.502187] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 250.540427] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.546785] bridge0: port 2(bridge_slave_1) entered disabled state [ 250.569406] device bridge_slave_1 entered promiscuous mode [ 250.610926] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 250.618226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 250.629758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 250.641947] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 250.677602] team0: Port device team_slave_1 added [ 250.735081] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 250.809808] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 250.816663] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 250.837814] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 250.878995] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.903566] bridge0: port 1(bridge_slave_0) entered disabled state [ 250.912199] device bridge_slave_0 entered promiscuous mode [ 250.950357] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 250.959481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 250.967483] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 251.024387] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 251.048333] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.058322] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.070790] device bridge_slave_1 entered promiscuous mode [ 251.090327] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 251.113048] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 251.125545] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 251.158790] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 251.177345] team0: Port device team_slave_0 added [ 251.251176] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 251.261536] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 251.270138] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 251.278103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 251.350896] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 251.358367] team0: Port device team_slave_1 added [ 251.400520] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 251.435869] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 251.479894] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.486360] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.500570] device bridge_slave_0 entered promiscuous mode [ 251.513875] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 251.580542] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 251.630263] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 251.702846] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 251.717559] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 251.735081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 251.771310] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.777679] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.799486] device bridge_slave_1 entered promiscuous mode [ 251.814834] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 251.851180] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 251.861087] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 251.867930] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 251.880223] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 251.917097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 251.933829] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 251.978957] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 252.049360] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 252.109424] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 252.116293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 252.223637] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 252.249245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 252.293167] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 252.301447] team0: Port device team_slave_0 added [ 252.325277] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.331796] bridge0: port 2(bridge_slave_1) entered forwarding state [ 252.338720] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.345223] bridge0: port 1(bridge_slave_0) entered forwarding state [ 252.370299] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 252.458669] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 252.473916] team0: Port device team_slave_1 added [ 252.486193] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 252.602979] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 252.650832] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 252.658285] team0: Port device team_slave_0 added [ 252.674551] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 252.709726] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 252.801726] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 252.814942] team0: Port device team_slave_1 added [ 252.834426] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.840846] bridge0: port 2(bridge_slave_1) entered forwarding state [ 252.847481] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.853923] bridge0: port 1(bridge_slave_0) entered forwarding state [ 252.889983] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 252.899798] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 252.927093] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 252.939990] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 252.950458] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 252.965291] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 252.988773] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 253.010652] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 253.033725] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 253.051945] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 253.059519] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 253.075595] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 253.083773] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 253.093128] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 253.140637] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 253.151073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 253.170307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 253.265575] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 253.300668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 253.308714] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 253.347616] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.354028] bridge0: port 2(bridge_slave_1) entered forwarding state [ 253.360775] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.367170] bridge0: port 1(bridge_slave_0) entered forwarding state [ 253.397280] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 253.408238] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 253.431574] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 253.456082] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 253.476076] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 253.490592] team0: Port device team_slave_0 added [ 253.615854] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 253.627847] team0: Port device team_slave_1 added [ 253.754886] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 253.891099] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 253.917131] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 254.038069] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 254.051101] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 254.061573] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 254.112602] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 254.140316] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 254.151505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 254.515714] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.522194] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.528864] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.535302] bridge0: port 1(bridge_slave_0) entered forwarding state [ 254.574947] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 254.923460] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 254.966457] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.972878] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.979599] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.985973] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.017398] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 255.545335] bridge0: port 2(bridge_slave_1) entered blocking state [ 255.551778] bridge0: port 2(bridge_slave_1) entered forwarding state [ 255.558452] bridge0: port 1(bridge_slave_0) entered blocking state [ 255.564883] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.583741] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 255.999259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 256.009825] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 257.690104] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.166309] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 258.270395] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.660378] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 258.666556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 258.676587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 258.802472] 8021q: adding VLAN 0 to HW filter on device bond0 [ 258.814644] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 259.107734] 8021q: adding VLAN 0 to HW filter on device team0 [ 259.268522] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 259.349966] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 259.356120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 259.369750] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 259.710277] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 259.725322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 259.740193] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 259.896561] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.916193] 8021q: adding VLAN 0 to HW filter on device team0 [ 260.039673] 8021q: adding VLAN 0 to HW filter on device bond0 [ 260.267885] 8021q: adding VLAN 0 to HW filter on device team0 [ 260.465446] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 260.506213] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 260.644561] 8021q: adding VLAN 0 to HW filter on device bond0 [ 260.964771] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 260.979617] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 260.995021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 261.038777] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 261.050732] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 261.068818] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 261.140126] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 261.481050] 8021q: adding VLAN 0 to HW filter on device team0 [ 261.550527] 8021q: adding VLAN 0 to HW filter on device team0 [ 261.595211] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 261.610811] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 261.619752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 262.150346] 8021q: adding VLAN 0 to HW filter on device team0 10:12:50 executing program 0: r0 = socket$inet6(0xa, 0x5, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$sock_timeval(r1, 0x1, 0x14, &(0x7f0000000000)={0x77359400}, 0x10) listen(r1, 0xfffffffffffffe04) accept4(r1, &(0x7f0000000340)=@alg, &(0x7f0000000100)=0x80, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r1, 0x0) sendto$inet6(r2, &(0x7f0000000040)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 10:12:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000480)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x10, &(0x7f00000004c0), 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYBLOB="06000000000000000700000096175251164f3e515f6571"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 262.933057] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. 10:12:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x200000, &(0x7f0000000140)}, &(0x7f0000000400)="635861fb9b9e", &(0x7f0000000480)=""/162, 0x0, 0x0, 0x0, &(0x7f0000000540)}) [ 263.225660] Unknown ioctl -2130675966 [ 263.250106] Unknown ioctl -2146954638 [ 263.269751] Unknown ioctl -2126991741 [ 263.284037] Unknown ioctl 1076388891 [ 263.298954] Unknown ioctl 25649 [ 263.308485] Unknown ioctl 43785 [ 263.315652] Unknown ioctl 8828 10:12:51 executing program 1: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000580)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000080)) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f00000001c0)={[{0x8}]}) dup3(r1, r3, 0x0) [ 263.345010] Unknown ioctl -2146954638 [ 263.345025] Unknown ioctl -2130675966 [ 263.359713] Unknown ioctl -2126991741 [ 263.363842] Unknown ioctl 1076388891 [ 263.372904] Unknown ioctl 25649 [ 263.388468] Unknown ioctl 43785 10:12:52 executing program 0: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000580)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800"}) r1 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000080)=""/19) openat$tun(0xffffffffffffff9c, &(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket$inet(0x2, 0x3, 0x0) ioctl$SCSI_IOCTL_GET_PCI(0xffffffffffffffff, 0x5387, &(0x7f0000000300)) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20100, 0x0) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000200)={'rose0\x00'}) getsockname(r3, &(0x7f0000000140)=@ipx, &(0x7f0000000240)=0x80) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000980)={'vcan0\x00'}) setsockopt$inet_int(r2, 0x0, 0x0, &(0x7f0000000000)=0x3, 0x4) dup2(0xffffffffffffffff, r1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BLKGETSIZE64(r3, 0x80081272, &(0x7f00000003c0)) memfd_create(&(0x7f00000004c0)='\\\x00', 0x0) r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00') pwritev(r4, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0) semtimedop(0x0, &(0x7f0000000140)=[{0x0, 0xfffffffffffffff9}], 0x1, &(0x7f0000efe000)={0x2000}) semop(0x0, &(0x7f0000000040)=[{0x0, 0x7fffffff}, {}], 0x2) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000080)) [ 263.397995] Unknown ioctl 8828 [ 263.509241] hrtimer: interrupt took 83785 ns 10:12:52 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @local, [], {@ipv4={0x800, {{0x8, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply={0xe, 0x2}}}}}, &(0x7f0000000040)) 10:12:52 executing program 0: pause() prctl$intptr(0x10000000001d, 0xfffffffffffffa7b) prctl$getreaper(0x40400000000001e, &(0x7f0000000000)) syz_execute_func(&(0x7f0000000180)="3666440f9bf56664400f9f3241c3c4e2c9975842c4c27d794e003e0f1158106f04cd24a9cdcd2902") 10:12:52 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3b7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000389000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0xc008240a, 0x70effb) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x1) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)) 10:12:52 executing program 2: syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f0000000700)={[{@sb={'sb'}, 0x7c}]}) [ 263.866504] EXT4-fs: Invalid sb specification: sb=0x0000000000000000|,errors=continue [ 263.895138] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 263.970573] EXT4-fs: Invalid sb specification: sb=0x0000000000000000|,errors=continue [ 263.988638] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 264.305752] binder: 7242:7243 ioctl 401c5820 200016c0 returned -22 [ 264.317408] binder: 7242:7245 ioctl 401c5820 200016c0 returned -22 10:12:53 executing program 3: openat$vsock(0xffffffffffffff9c, &(0x7f0000001240)='/dev/vsock\x00', 0x4000000080, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) read(r0, &(0x7f00000000c0)=""/91, 0xfffffffffffffce9) openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) r1 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c01, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "94d4341307ee5d4501d9f99b60ff2618833263db3afce629f579d0956535eb893d885a358beb7c3251f0f29874bc643a28779214cd4d8b975beeff8780d29f6c", "9a65c9632090ff2319a1f977c69149162db3db7768da42b7cb2b14a4b98944a9"}) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000380)) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x105082) 10:12:53 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) recvmsg(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000023c0)=""/4096, 0x1000}], 0x1, &(0x7f00000007c0)=""/16, 0xc009}, 0x0) 10:12:53 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000409004bddd9de91be10eeaf000ee9a90f798058439ed544fa07424ada75af1f02ac06edbcd7a071fb35331ce39c5a00000000") fsetxattr(r0, &(0x7f0000000080)=@known='user.syz\x00', &(0x7f00000002c0)="0f", 0x0, 0x0) 10:12:53 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x800000000000004) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d5c6070") mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xc, 0x80031, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x8, &(0x7f00000001c0), 0x2) pselect6(0x40, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000180)={&(0x7f0000000140), 0x8}) 10:12:53 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000409004bddd9de91be10eeaf000ee9a90f798058439ed544fa07424ada75af1f02ac06edbcd7a071fb35331ce39c5a00000000") fremovexattr(r0, &(0x7f00000000c0)=@known='user.syz\x00') 10:12:53 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000080)={[{@minixdf='minixdf'}, {@i_version='i_version'}]}) 10:12:53 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00') ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000002c0)) r2 = socket$inet6(0xa, 0x1, 0x8010000000000084) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000280)=0x1ff, 0x4) bind$inet6(r2, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r2, 0x4) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r3, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r3, 0x84, 0x15, &(0x7f0000000000)={0x401}, 0x1) write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x0) r4 = accept4(r2, 0x0, &(0x7f0000000040), 0x0) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB], 0x1}}, 0x80) sendmsg$alg(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000780)="be9d606db7c2a31b2ce4e3e14b8b3a531c887a09031cd6bd07bd29ea462b39d8e6028c5f69ddcacb89cc8613d23386832eff781ce1e6000b3ab9436dbfc05b4d70172ff1c12f9a40d573a8ae9a3e23b13156a1059ebb78e87e942c25e3cf7a206d018e9b2d676446a3133dd69b7874c3c1b4bd70fa9acf2d2f573682356c668f9e13b1aa6ed4d5bb04d0975610ac0589a471d87bbe804626f5cf0a31fe2f1ab5157730889ee16886178d09e5e3279a0651b462481b8347406590a34c41c1dc4559eaf152a4a5d5103cc2660f88bdccd0192d6d7020b3010a", 0xd8}], 0x1, &(0x7f0000000880), 0x0, 0x804}, 0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000240)) sendto$inet6(r1, &(0x7f0000000140)="3973d1c93a6f118e17227d4668a0a942fbaa3a3062ee931a202f6a523e2b451782d4e489102128750562ab84cded1f31a12cdcf4d5010c2dcf673e00de6e7b5e140392a54c758765b344c08804bbd647e05bbf6089e640d1b239a6403a1d1d7d612af25f35975f4a826c44b2d5", 0x6d, 0x4000080, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f00000000c0)={0x0, r2, 0x7f, 0x1, 0xfffffffffffffffb, 0x1}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r2, 0x400c6615, &(0x7f00000001c0)) dup3(r0, r4, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000400), &(0x7f0000000440)=0x14) 10:12:53 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) read(r0, &(0x7f00000000c0)=""/91, 0xfffffffffffffce9) openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) r1 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f00000002c0)={0x3f00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "94d4341307ee5d4501d9f99b60ff2618833263db3afce629f579d0956535eb893d885a358beb7c3251f0f29874bc643a28779214cd4d8b975beeff8780d29f6c", "9a65c9632090ff2319a1f977c69149162db3db7768da42b7cb2b14a4b98944a9"}) pread64(0xffffffffffffffff, &(0x7f0000000340)=""/39, 0x4, 0x0) 10:12:53 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f00000001c0), 0x100020, &(0x7f0000000100)={[{@data_writeback='data=writeback'}]}) 10:12:53 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000100)="153f6234488dd25d766070") r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f09eaf37200000501c4c17bf00e0f23d566ba4300b086ee66b898000f00d83666660f559ab60000000f017264c4c20d4701a3c1ff0000", 0x37}], 0x1, 0x0, &(0x7f0000000100), 0x0) [ 264.612760] EXT4-fs (sda1): re-mounted. Opts: minixdf,i_version, [ 264.686503] EXT4-fs (sda1): re-mounted. Opts: minixdf,i_version, 10:12:53 executing program 4: 10:12:53 executing program 3: 10:12:53 executing program 1: 10:12:53 executing program 4: 10:12:53 executing program 2: 10:12:53 executing program 1: [ 264.921537] EXT4-fs (sda1): Remounting file system with no journal so ignoring journalled data option 10:12:53 executing program 4: [ 264.971418] EXT4-fs (sda1): re-mounted. Opts: data=writeback, 10:12:53 executing program 2: 10:12:53 executing program 0: 10:12:53 executing program 1: [ 265.253323] EXT4-fs (sda1): Remounting file system with no journal so ignoring journalled data option 10:12:54 executing program 5: 10:12:54 executing program 4: 10:12:54 executing program 2: 10:12:54 executing program 3: 10:12:54 executing program 0: 10:12:54 executing program 1: [ 265.331291] EXT4-fs (sda1): re-mounted. Opts: data=writeback, 10:12:54 executing program 4: 10:12:54 executing program 2: 10:12:54 executing program 1: 10:12:54 executing program 0: 10:12:54 executing program 3: 10:12:54 executing program 2: 10:12:54 executing program 5: 10:12:54 executing program 4: 10:12:54 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000000)={&(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil}) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") close(r0) 10:12:54 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:54 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x2, &(0x7f0000000080)=@raw=[@map], &(0x7f0000000140)='GPL\x00', 0x0, 0xa0, &(0x7f0000000400)=""/160}, 0x48) add_key(&(0x7f0000000840)='.dead\x00', &(0x7f0000000880), &(0x7f0000000980), 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000700)=[@in={0x2, 0x4e20, @rand_addr=0x4}, @in6={0xa, 0x4e20, 0x4}, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}, 0x1000000000}, @in6={0xa, 0x0, 0x20, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x19}}, 0x6}, @in6={0xa, 0x4e23, 0x5, @local}], 0x80) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000003c0), 0xffffffffffffffff) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_emit_ethernet(0x6a, &(0x7f00000000c0)={@local, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x5, 0x4, 0x0, 0x0, 0x0, 0x0, {0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4001, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x48}, {[@timestamp={0x8, 0x2c, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {}]}]}}}}}}}, &(0x7f0000000000)) r0 = getpid() capset(&(0x7f0000000200)={0x200f1526, r0}, &(0x7f00000002c0)={0x2, 0x5, 0xc3, 0x400, 0x0, 0x7}) mknod(&(0x7f0000000a00)='./file0\x00', 0x461, 0xfffffffe) lsetxattr$security_smack_entry(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='security.SMACK64IPIN\x00', &(0x7f00000004c0)='keyring-)em0[vboxnet1security\x00', 0x1e, 0x1) creat(&(0x7f0000000800)='./file0\x00', 0x40) 10:12:54 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000000)={&(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil}) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") close(r0) 10:12:54 executing program 4: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000100)={[{@journal_dev={'journal_dev'}}]}) 10:12:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) write$binfmt_elf32(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c4600b300000000000000000000000000008000a00000000000380000000000000000000000000020"], 0x2b) 10:12:54 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x2, &(0x7f0000000080)=@raw=[@map], &(0x7f0000000140)='GPL\x00', 0x0, 0xa0, &(0x7f0000000400)=""/160}, 0x48) add_key(&(0x7f0000000840)='.dead\x00', &(0x7f0000000880), &(0x7f0000000980), 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000700)=[@in6={0xa, 0x0, 0x4}, @in6={0xa, 0x0, 0x5, @local}], 0x38) syz_emit_ethernet(0x6a, &(0x7f00000000c0)={@local, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x5, 0x4, 0x0, 0x0, 0x0, 0x0, {0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4001, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x48}, {[@timestamp={0x8, 0x2c, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {}]}]}}}}}}}, &(0x7f0000000000)) capset(&(0x7f0000000200)={0x200f1526}, &(0x7f00000002c0)={0x2, 0x0, 0xc3, 0x400, 0x0, 0x7}) mknod(&(0x7f0000000a00)='./file0\x00', 0x0, 0xfffffffe) lsetxattr$security_smack_entry(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='security.SMACK64IPIN\x00', &(0x7f00000004c0)='keyring-)em0[vboxnet1security\x00', 0x1e, 0x0) creat(&(0x7f0000000800)='./file0\x00', 0x40) [ 265.847266] hfsplus: unable to find HFS+ superblock 10:12:54 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8937, &(0x7f0000000080)={'veth1_to_bond\x00', r1}) [ 265.874496] EXT4-fs (sda1): Cannot specify journal on remount [ 265.893605] autofs4:pid:7388:autofs_fill_super: called with bogus options 10:12:54 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000002000)=ANY=[@ANYBLOB="b70000000000000005000000000000009500000000000000"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000006f3d)=""/195}, 0x48) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x1000000000000f, &(0x7f0000000000)=0x57bd, 0x4) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[]}}, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f0000009000)=r0, 0x4) [ 265.973157] sg_write: data in/out 45788/1 bytes for SCSI command 0x0-- guessing data in; [ 265.973157] program syz-executor2 not setting count and/or reply_len properly [ 266.005342] autofs4:pid:7388:autofs_fill_super: called with bogus options 10:12:54 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000000), &(0x7f0000000000)=""/53}, 0x18) 10:12:54 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) sysinfo(&(0x7f00000007c0)=""/154) ioctl$BLKPG(r1, 0x1269, &(0x7f00000006c0)={0x1, 0x0, 0x0, &(0x7f0000000800)}) connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x1}, 0x6e) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000600)) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='memory.current\x00', 0x0, 0x0) r3 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x0, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000380)={'security\x00', 0xae, "18029ea690858bfb92c4925e59511d2128a26cae33f48d67b991621df681c0e5e56f5704d56fb1cf1f353403e8df243529848fc1c7e807f2889a8aeda146e9c9a8ce6ad1a0a4b9de624c47f7837459c49f9f888d2705c886dc49d79c50731b87fb47babed83fbad8ac5119c18f5909e69eeb39a623e4bbc7e95df08502364c64f024ad67e0fd9d1ecdc1eaa681ef0ce5bf93a03c5f9cc2d545da96849f1caacedc58efdb310dad92ef866f819b49"}, &(0x7f0000000100)=0xd2) setsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000340)={0x0, 0x0, 0x200, 0x0, 0x0, 0x8001, 0x0, 0x0, 0xc04, 0x0, 0xff}, 0xb) r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r4, 0x0) r5 = fcntl$getown(r3, 0x9) kcmp(0x0, r5, 0x5, r2, r0) gettid() ioctl$RTC_VL_CLR(r3, 0x7014) keyctl$read(0xb, 0x0, &(0x7f0000000140)=""/23, 0x17) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vga_arbiter\x00', 0x44000, 0x0) [ 266.020917] EXT4-fs (sda1): Cannot specify journal on remount [ 266.033426] hfsplus: unable to find HFS+ superblock 10:12:54 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000000200)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000080)) 10:12:54 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:54 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000040)=0xe8b2) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x200007fa, &(0x7f0000000140)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) getsockname$inet6(0xffffffffffffffff, &(0x7f0000000680)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000580)=0xfffffffffffffead) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000780)=@assoc_value={0x0}, &(0x7f00000007c0)=0x8) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000800)={r1, 0x3}, &(0x7f0000000840)=0x8) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000015c0)='ip6_vti0\x00', 0x10) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) epoll_create(0x2) r2 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x105082) write$P9_RSYMLINK(0xffffffffffffffff, &(0x7f0000000240)={0x14, 0x11, 0x1, {0x0, 0x1, 0x2}}, 0x14) prctl$setfpexc(0xc, 0x0) setxattr(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)=@known='security.selinux\x00', &(0x7f0000000740)='ppp1eth1cgroup\x00', 0xf, 0x2) r3 = memfd_create(&(0x7f00000000c0)="000000008c00000000000000000000", 0x0) pwritev(r3, &(0x7f0000f50f90)=[{&(0x7f0000000100)="a8", 0x1}], 0x1, 0x81003) syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r3, &(0x7f0000000500)={&(0x7f0000000280), 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYRES16], 0x1}, 0x1, 0x0, 0x0, 0x1}, 0x4) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) sendfile(r0, r2, &(0x7f00000ddff8)=0x4a00000000000000, 0x102000002) 10:12:54 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x5) write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000000c0)) ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, &(0x7f0000000080)) 10:12:54 executing program 3: r0 = socket(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x800, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1b, &(0x7f0000000240), &(0x7f0000000040)=0x8) bind$alg(r1, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x359, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x34e, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000029fcc)={{0x0, 0x2, 0x0, 0xffefffffffffffff}}) ioctl$sock_ifreq(r0, 0x89f4, &(0x7f0000000100)={"73697430001f8012000001e000000e02", @ifru_ivalue}) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 266.315687] EXT4-fs (sda1): re-mounted. Opts: [ 266.373207] hfsplus: unable to find HFS+ superblock [ 266.414770] EXT4-fs (sda1): re-mounted. Opts: [ 266.444930] autofs4:pid:7447:autofs_fill_super: called with bogus options 10:12:55 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) statfs(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=""/229) 10:12:55 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) modify_ldt$write(0x1, &(0x7f0000000180), 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) recvmsg(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000023c0)=""/4096, 0x1000}], 0x1, &(0x7f00000007c0)=""/16, 0xc009}, 0x0) 10:12:55 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:55 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000500)='cgroup.procs\x00', 0x2, 0x0) sendfile(r1, r1, &(0x7f0000000080)=0xfff, 0x10a000008) 10:12:55 executing program 2: 10:12:55 executing program 3: [ 266.836733] hfsplus: unable to find HFS+ superblock 10:12:55 executing program 5: 10:12:55 executing program 2: [ 266.877389] autofs4:pid:7486:autofs_fill_super: called with bogus options 10:12:55 executing program 3: r0 = socket$l2tp(0x18, 0x1, 0x1) ioctl(r0, 0x8912, &(0x7f0000000100)="153f6234488dd25d766070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_NAME(r1, 0x41007701, &(0x7f0000000800)="80330d9eccf97589858c1950e9c701f3d101d1081f978607dcd05efa2d46cafe66fffeffff5b436308bfd16e1d3bca6e76139c29ba3192c9dc7c1bcf1eb884b0a9f75f9c980567e63bfb65d547fc834c6882dec702cdc3bc3691726c141d9ef4b5cd5bf6d1b0ba5af09baaf0f6eee5fdcb51d0544318929a33bb8eadbdfeb473b4f9e6efc97a547a1b43f051c750e6d6d6f0519b11630d5af8e7fe0da2c2602793ed447ab094be99534a93b38d4596328a6944e3ac095e5145bc2d0fd9d602dbb51a5fc9d8c92c1ab2fe5594861e1b4f61b76d65959b184531b56713b4bf3a0533502662bfd78f880414f4130b5b516b46b72e61690fc147f6545aed641e4f22c9e2") 10:12:55 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x1, 0x0) write$RDMA_USER_CM_CMD_REJECT(r0, &(0x7f0000000240)={0x9, 0x108, 0xfa00, {0xffffffffffffffff, 0x0, "998bd3", "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"}}, 0x110) 10:12:57 executing program 4: 10:12:57 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:57 executing program 5: 10:12:57 executing program 0: 10:12:57 executing program 3: 10:12:57 executing program 2: 10:12:57 executing program 3: 10:12:57 executing program 0: [ 268.495784] hfsplus: unable to find HFS+ superblock 10:12:57 executing program 5: 10:12:57 executing program 2: [ 268.540066] autofs4:pid:7522:autofs_fill_super: called with bogus options 10:12:57 executing program 4: 10:12:57 executing program 0: 10:12:57 executing program 3: 10:12:57 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:57 executing program 5: 10:12:57 executing program 2: 10:12:57 executing program 3: 10:12:57 executing program 0: 10:12:57 executing program 4: 10:12:57 executing program 5: [ 268.809221] autofs4:pid:7542:autofs_fill_super: called with bogus options 10:12:57 executing program 2: 10:12:57 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:57 executing program 0: 10:12:57 executing program 3: 10:12:57 executing program 4: 10:12:57 executing program 0: 10:12:57 executing program 2: [ 269.009959] autofs4:pid:7558:autofs_fill_super: called with bogus options 10:12:57 executing program 5: 10:12:57 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:57 executing program 4: 10:12:57 executing program 3: 10:12:57 executing program 0: 10:12:57 executing program 5: 10:12:57 executing program 2: 10:12:57 executing program 4: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80}}], 0x1, 0x0, &(0x7f0000003280)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000400)='net/ip_mr_vif\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0xf0ffff00000000) [ 269.225369] autofs4:pid:7575:autofs_fill_super: called with bogus options 10:12:57 executing program 3: 10:12:57 executing program 5: 10:12:57 executing program 0: 10:12:58 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:58 executing program 3: 10:12:58 executing program 2: 10:12:58 executing program 0: [ 269.468641] hfsplus: unable to find HFS+ superblock 10:12:58 executing program 4: 10:12:58 executing program 5: 10:12:58 executing program 3: [ 269.517834] autofs4:pid:7602:autofs_fill_super: called with bogus options 10:12:58 executing program 2: 10:12:58 executing program 3: 10:12:58 executing program 0: 10:12:58 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:58 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x10) bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-avx2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x359, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x34e, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000029fcc)) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000100)={"73697430001f8012000001e000000e02", @ifru_ivalue}) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) 10:12:58 executing program 5: recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80}}], 0x1, 0x0, &(0x7f0000003280)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000400)='net/ip_mr_vif\x00') preadv(r0, &(0x7f00000017c0), 0x199, 0xfffff000) 10:12:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000480)="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", 0x2, 0x0) sendfile(r1, r1, 0x0, 0x4) [ 269.752856] hfsplus: unable to find HFS+ superblock 10:12:58 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:12:58 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv4_newroute={0x24, 0x18, 0x101, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@RTA_GATEWAY={0x8, 0x5, @dev}]}, 0x24}}, 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000080), &(0x7f0000000100)=0x4) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) [ 269.802374] autofs4:pid:7628:autofs_fill_super: called with bogus options 10:12:58 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 269.903910] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:12:58 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000240)='/dev/rtc0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000000)) poll(&(0x7f0000000340)=[{r0}], 0x1, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x2}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f00000000c0)={r1, 0x8, 0x0, 0x7, 0x3}, &(0x7f0000000100)=0x18) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000140), &(0x7f0000000180)=0x4) 10:12:58 executing program 2: r0 = socket$rds(0x15, 0x5, 0x0) r1 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x6, 0x200) ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000100)=0x1) setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x1d, &(0x7f0000000180)={@in6={0xa, 0x0, 0x0, @mcast1}, {&(0x7f0000000000)=""/119, 0x77}, &(0x7f0000000080)}, 0xa0) [ 270.037402] hfsplus: unable to find HFS+ superblock 10:12:58 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x3, 0x8000) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f0000000140)={0x100000001, 0xdec1, 0x1, 0x0, 0x0, [], [], [], 0x7fffffff, 0x83}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x20080, 0x0) ioctl$PPPIOCSMRU(r3, 0x40047452, &(0x7f0000000080)=0x7) [ 270.060410] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 270.070153] autofs4:pid:7663:autofs_fill_super: called with bogus options 10:12:58 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:12:58 executing program 2: r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) r1 = socket(0x1, 0x3, 0x2b0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') close(r1) sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2004050}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="001076", @ANYRES16=r2, @ANYBLOB="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"], 0xa0}, 0x1, 0x0, 0x0, 0x1}, 0x40) bind$llc(r0, &(0x7f0000000280)={0x1a, 0x337, 0x0, 0x7, 0x9, 0x10000002, @link_local}, 0xffffffffffffff7c) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/attr/exec\x00', 0x2, 0x0) r3 = fcntl$dupfd(r0, 0x5, r0) accept$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f0000000140)=0x1c) bind$bt_sco(r3, &(0x7f0000000000), 0x8) ioctl$SG_GET_RESERVED_SIZE(r3, 0x2272, &(0x7f0000000040)) 10:12:58 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:58 executing program 4: io_setup(0x203, &(0x7f0000000040)=0x0) r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0) close(r1) openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x0, 0x0) io_submit(r0, 0x1, &(0x7f00000000c0)=[&(0x7f00000002c0)={0x0, 0x8, 0x0, 0x5, 0x0, r1, 0x0}]) 10:12:58 executing program 5: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) bind$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, {0xffffffffffffffff, 0xffffffff, 0x3}}, 0xa) ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000100)) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x2, 0x1a}, 0x20) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x10, 0x4) recvmmsg(r1, &(0x7f0000008400)=[{{&(0x7f00000081c0)=@l2, 0x80, &(0x7f00000082c0), 0x0, &(0x7f0000008300)=""/231, 0xe7}}], 0x1, 0x0, &(0x7f0000008640)) 10:12:58 executing program 0: r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x1000000000001133, r0, 0x81) ftruncate(r0, 0x208200) r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000500), &(0x7f0000000540)=0xb) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000007c0)}, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x10000014c) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f00000003c0), &(0x7f00000004c0)=0x4) perf_event_open(&(0x7f0000000040)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000600)) ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000440)={{0x2, 0x4e22}, {0x306, @remote}, 0x20, {0x2, 0x4e21, @broadcast}, 'veth0_to_bridge\x00'}) ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000280)={0x7, &(0x7f0000000200)=[{}, {}, {}, {}, {}, {}, {}]}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, &(0x7f0000000100), 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r6, 0xc04c5349, &(0x7f0000000140)={0x101, 0x3, 0xffffffff}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdirat$cgroup(r6, &(0x7f0000000300)='syz1\x00', 0x1ff) ioctl$EVIOCGBITSND(r1, 0x80404532, &(0x7f00000007c0)=""/4096) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r1, 0x111, 0x4, 0x0, 0x4) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000380)=0x7ff) creat(&(0x7f0000000240)='./bus\x00', 0x40) openat$cgroup_procs(r3, &(0x7f00000001c0)='cgroup.threads\x00', 0x2, 0x0) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000100)) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x3f, 0x1) 10:12:59 executing program 2: setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000140), 0x4) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/dsp\x00', 0x90440, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000600)={r0, &(0x7f0000000680)="639289e86812e9f795486d8a51353334408101526e6f29b0e04ae6b3ae9b481425772d64b56af7abe8db6cefd0f6f3c84b355f4f7e8ad00a603d3b18939473bb8dc3e775397c5787217aab18764a5552f49dfc1baf1b8a67dd30b7a69c295c16e3aa86cce5e6f5", &(0x7f0000000700)="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", 0x2}, 0x20) add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000100), &(0x7f0000000380), 0x0, 0xfffffffffffffff8) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000080)={0x0, 0x9}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000001c0)={r2, 0xd85f}, 0x8) clone(0x210007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) r3 = getpid() sched_setscheduler(r3, 0x5, &(0x7f0000000200)) clock_getres(0x81, &(0x7f0000000040)) preadv(r1, &(0x7f0000000540)=[{&(0x7f0000000240)=""/94, 0x5e}, {&(0x7f00000002c0)=""/88, 0x58}, {&(0x7f0000000340)=""/209, 0xd1}, {&(0x7f0000000440)=""/166, 0xa6}, {&(0x7f0000000500)=""/37, 0x25}], 0x5, 0x0) [ 270.325621] hfsplus: unable to find HFS+ superblock [ 270.338114] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 270.361096] autofs4:pid:7694:autofs_fill_super: called with bogus options 10:12:59 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = getpid() r2 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x800000002, 0x0) readv(r2, &(0x7f0000000180)=[{&(0x7f0000000140)=""/21, 0x15}], 0x1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x9, 0x100) r6 = openat$cgroup_procs(r5, &(0x7f0000000040)='tasks\x00', 0x2, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f00000001c0), 0x4) ioctl$int_in(r2, 0x5452, &(0x7f0000000200)=0x3447) fcntl$setsig(r3, 0xa, 0x12) fcntl$setownex(r3, 0xf, &(0x7f0000704000)={0x0, r1}) recvmsg(r4, &(0x7f000095cfc8)={&(0x7f0000893ff8)=@sco, 0x8, &(0x7f00000a4fb0), 0x0, &(0x7f0000b30000)}, 0x0) r7 = dup2(r6, r6) dup3(r7, r2, 0x0) getpeername$packet(r5, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000002c0)=0x14) tkill(r1, 0x15) io_setup(0x4, &(0x7f0000000300)=0x0) io_destroy(r8) 10:12:59 executing program 4: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=""/193, &(0x7f0000000280)=""/97, &(0x7f0000000300)=""/127}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700)=ANY=[]) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x1, 0x0, &(0x7f00000006c0)=""/115, &(0x7f0000000580)=""/156, &(0x7f0000000940)=""/185}) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000080)=0x4) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000040)=0xfffffffffffffffc) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4004af61, &(0x7f0000000640)={0x1, 0x0, [{0x0, 0x83, &(0x7f0000000880)=""/131}]}) 10:12:59 executing program 1 (fault-call:1 fault-nth:0): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:59 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 270.571098] hfsplus: unable to find HFS+ superblock 10:12:59 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e22, 0x198, @mcast2, 0x4040}, {0xa, 0x4e22, 0xfffffffffffffffc, @loopback, 0x3ff}, 0x2, [0xa8ae, 0x8, 0x4, 0x7, 0x10001, 0x4e40, 0x100000001, 0xfff]}, 0x5c) r1 = socket$inet6(0xa, 0x1000000003, 0x5) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x1ff9, 0x72001) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r2, 0x40045730, &(0x7f00000000c0)=0x5) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000ae2ff0004000020ff01000000000000000001000000000000000000000000000000000000000000000000000000000000470000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000001000000000000000001000000"], 0x90) [ 270.593331] FAULT_INJECTION: forcing a failure. [ 270.593331] name failslab, interval 1, probability 0, space 0, times 1 [ 270.611510] CPU: 1 PID: 7723 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 270.619944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.629307] Call Trace: [ 270.631993] dump_stack+0x244/0x39d [ 270.635650] ? dump_stack_print_info.cold.1+0x20/0x20 [ 270.640901] ? get_pid_task+0xd6/0x1a0 [ 270.644865] should_fail.cold.4+0xa/0x17 [ 270.648957] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 270.654108] ? __f_unlock_pos+0x19/0x20 [ 270.658155] ? lock_downgrade+0x900/0x900 [ 270.662373] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.667975] ? proc_fail_nth_write+0x9e/0x210 [ 270.672486] ? proc_cwd_link+0x1d0/0x1d0 [ 270.676566] ? find_held_lock+0x36/0x1c0 [ 270.680714] ? perf_trace_sched_process_exec+0x860/0x860 [ 270.686195] ? __lock_is_held+0xb5/0x140 [ 270.690310] __should_failslab+0x124/0x180 [ 270.695142] should_failslab+0x9/0x14 [ 270.699564] __kmalloc_track_caller+0x2d1/0x760 [ 270.704261] ? strncpy_from_user+0x5a0/0x5a0 [ 270.708683] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.714232] ? strndup_user+0x77/0xd0 [ 270.718042] memdup_user+0x2c/0xa0 [ 270.721598] strndup_user+0x77/0xd0 [ 270.725240] ksys_mount+0x3c/0x140 [ 270.725929] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 270.728796] __x64_sys_mount+0xbe/0x150 [ 270.728865] do_syscall_64+0x1b9/0x820 10:12:59 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(ccm(serpent))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00001ec000), 0x0) [ 270.728917] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 270.748670] ? syscall_return_slowpath+0x5e0/0x5e0 [ 270.753667] ? trace_hardirqs_on_caller+0x310/0x310 [ 270.758706] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 270.763802] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 270.770485] ? __switch_to_asm+0x40/0x70 [ 270.770499] ? __switch_to_asm+0x34/0x70 [ 270.770521] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 270.770545] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 270.770556] RIP: 0033:0x457569 10:12:59 executing program 4: syslog(0x2, &(0x7f0000000140)=""/201, 0xc9) r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000000), &(0x7f0000000080)}}, &(0x7f0000044000)) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x101000, 0x0) ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f0000000240)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r0, 0x1000000000016) [ 270.770571] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 270.783646] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 270.783662] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 270.783673] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 270.783683] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 270.783692] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 270.783715] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:12:59 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000002000)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) setsockopt$inet_mreqsrc(r0, 0x0, 0x2000000000000016, &(0x7f0000013ff4)={@loopback, @rand_addr, @multicast2}, 0xc) close(r0) socket$inet6(0xa, 0x1000000000002, 0x0) dup3(r0, r1, 0x0) 10:12:59 executing program 1 (fault-call:1 fault-nth:1): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:12:59 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 271.007731] hfsplus: unable to find HFS+ superblock [ 271.038196] FAULT_INJECTION: forcing a failure. [ 271.038196] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 271.069481] CPU: 1 PID: 7765 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 271.077917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 271.087301] Call Trace: [ 271.089901] dump_stack+0x244/0x39d [ 271.093547] ? dump_stack_print_info.cold.1+0x20/0x20 [ 271.098791] ? __lock_acquire+0x62f/0x4c20 [ 271.103052] should_fail.cold.4+0xa/0x17 [ 271.107117] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 271.112241] ? zap_class+0x640/0x640 [ 271.115960] ? zap_class+0x640/0x640 [ 271.119689] ? __lock_is_held+0xb5/0x140 [ 271.123760] ? lock_release+0xa10/0xa10 [ 271.127740] ? perf_trace_sched_process_exec+0x860/0x860 [ 271.133202] ? zap_class+0x640/0x640 [ 271.136933] ? find_held_lock+0x36/0x1c0 [ 271.141022] ? __might_sleep+0x95/0x190 [ 271.145080] __alloc_pages_nodemask+0x34b/0xdd0 [ 271.149767] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 271.154838] ? ima_match_policy+0x848/0x1560 [ 271.159256] ? print_usage_bug+0xc0/0xc0 [ 271.163345] ? check_preemption_disabled+0x48/0x280 [ 271.168377] ? print_usage_bug+0xc0/0xc0 [ 271.172454] ? __lock_acquire+0x62f/0x4c20 [ 271.176694] ? find_held_lock+0x36/0x1c0 [ 271.180765] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 271.186311] alloc_pages_current+0x173/0x350 [ 271.190759] pte_alloc_one+0x1b/0x1a0 [ 271.194571] do_huge_pmd_anonymous_page+0xebc/0x2150 [ 271.199684] ? mark_held_locks+0x130/0x130 [ 271.203930] ? __thp_get_unmapped_area+0x180/0x180 [ 271.208879] ? print_usage_bug+0xc0/0xc0 [ 271.212951] ? print_usage_bug+0xc0/0xc0 [ 271.217020] ? print_usage_bug+0xc0/0xc0 [ 271.221087] ? print_usage_bug+0xc0/0xc0 [ 271.225157] ? __lock_acquire+0x62f/0x4c20 [ 271.229414] ? __lock_acquire+0x62f/0x4c20 [ 271.233660] ? __lock_acquire+0x62f/0x4c20 [ 271.237900] ? __lock_acquire+0x62f/0x4c20 [ 271.242156] ? mark_held_locks+0x130/0x130 [ 271.246407] ? mark_held_locks+0x130/0x130 [ 271.250651] ? __lock_acquire+0x62f/0x4c20 [ 271.254892] ? print_usage_bug+0xc0/0xc0 [ 271.259004] ? rcu_softirq_qs+0x20/0x20 [ 271.263020] __handle_mm_fault+0x3c91/0x5be0 [ 271.267442] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 271.272297] ? zap_class+0x640/0x640 [ 271.276029] ? zap_class+0x640/0x640 [ 271.279759] ? zap_class+0x640/0x640 [ 271.283476] ? find_held_lock+0x36/0x1c0 [ 271.287584] ? find_held_lock+0x36/0x1c0 [ 271.291672] ? handle_mm_fault+0x42a/0xc70 [ 271.295912] ? lock_downgrade+0x900/0x900 [ 271.300066] ? check_preemption_disabled+0x48/0x280 [ 271.305087] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 271.310021] ? kasan_check_read+0x11/0x20 [ 271.314197] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 271.319493] ? rcu_softirq_qs+0x20/0x20 [ 271.323473] ? trace_hardirqs_off_caller+0x300/0x300 [ 271.328610] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 271.334164] ? check_preemption_disabled+0x48/0x280 [ 271.339206] handle_mm_fault+0x54f/0xc70 [ 271.343275] ? __handle_mm_fault+0x5be0/0x5be0 [ 271.347865] ? find_vma+0x34/0x190 [ 271.351441] __do_page_fault+0x5d6/0xe40 [ 271.355522] do_page_fault+0xed/0x7d1 [ 271.359348] ? vmalloc_sync_all+0x30/0x30 [ 271.363528] ? error_entry+0x76/0xd0 [ 271.367250] ? trace_hardirqs_off_caller+0xbb/0x300 [ 271.372270] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 271.377116] ? trace_hardirqs_on_caller+0x310/0x310 [ 271.382152] ? find_held_lock+0x36/0x1c0 [ 271.386238] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 271.391094] page_fault+0x1e/0x30 [ 271.394550] RIP: 0010:strnlen_user+0x15a/0x360 [ 271.399167] Code: 80 80 80 80 80 80 4c 39 eb 4c 89 e1 49 0f 47 dd 49 89 47 c8 4d 89 e7 31 c0 41 83 e7 07 4c 29 f9 4c 01 fb 48 89 8d 58 ff ff ff <4c> 8b 21 31 ff 89 c6 89 85 70 ff ff ff e8 04 1e d9 fd 8b 85 70 ff [ 271.418092] RSP: 0018:ffff88017e2d7cd0 EFLAGS: 00010206 [ 271.423455] RAX: 0000000000000000 RBX: 0000000000001000 RCX: 00000000202b9ff8 [ 271.430737] RDX: 1ffff1002fc5afa4 RSI: ffffffff83a6163c RDI: ffff88017e2d7d20 [ 271.438029] RBP: ffff88017e2d7d80 R08: ffff88017e2c6080 R09: ffffed0039b075e8 [ 271.445298] R10: ffffed0039b075e8 R11: 0000000000000006 R12: 00000000202b9ff8 [ 271.452570] R13: 0000000000001000 R14: 1ffff1002fc5af9f R15: 0000000000000000 [ 271.459855] ? strnlen_user+0xcc/0x360 [ 271.463769] ? strncpy_from_user+0x5a0/0x5a0 [ 271.468187] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 271.473734] strndup_user+0x28/0xd0 [ 271.477374] ksys_mount+0x73/0x140 [ 271.480929] __x64_sys_mount+0xbe/0x150 [ 271.484913] do_syscall_64+0x1b9/0x820 [ 271.488809] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 271.494188] ? syscall_return_slowpath+0x5e0/0x5e0 [ 271.499123] ? trace_hardirqs_on_caller+0x310/0x310 [ 271.504154] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 271.509219] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 271.515888] ? __switch_to_asm+0x40/0x70 [ 271.519957] ? __switch_to_asm+0x34/0x70 [ 271.524028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 271.528882] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 271.534069] RIP: 0033:0x457569 [ 271.537265] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 271.556166] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 271.563883] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 271.571150] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 271.578427] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 271.585698] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 271.592976] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 [ 271.603246] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:00 executing program 4: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) r1 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/attr/exec\x00', 0x2, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000480)={0xffffffffffffffff}) r4 = fcntl$getown(0xffffffffffffffff, 0x9) lstat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) r6 = syz_init_net_socket$llc(0x1a, 0x3, 0x0) r7 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000fc0)=0x0) r9 = fcntl$getown(0xffffffffffffffff, 0x9) fstat(0xffffffffffffff9c, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001140)={0x0, 0x0, 0x0}, &(0x7f0000001180)=0xc) sendmsg$netlink(r0, &(0x7f0000001200)={&(0x7f0000000080)=@proc={0x10, 0x0, 0x25dfdbfc, 0x800000}, 0xc, &(0x7f0000001040)=[{&(0x7f0000000180)={0x2e4, 0x31, 0x800, 0x70bd2a, 0x25dfdbff, "", [@nested={0x188, 0x1c, [@generic="8fc004e661a72bc011365267ed7081a212ef56eac5336ef137f0e9c7761d61a24b8df4cd0917f6de5dd2a4247c4c1dcee7711f31ad158f2d388095180d50cdbf055ea57caf4a7b9eacc2b961e78a0adbe60fbc373699b10432c126011bdec08b65f05b8ea974e1ab8c2f8d271d656270be2e348ed941e40466b44bbf6fe2b63185664f925b257be004fd6b4096c06ec594c2f359caf6ba5a22402e27cbb5d3eecf0ec35be9917b86e628560b3e4f59c403794848138ade1f8e8171", @typed={0x14, 0x72, @ipv6=@mcast2}, @generic="fa87eab8cc70508eb414cf6bb0d76cb30a4d34e2612cfd44183f488bc69279816016cc34ee87dd8a4c6135f272539a9908", @typed={0x10, 0x91, @str="c2987472757374656400"}, @generic="c8d66d975ed1db62ade9e085365f590a9f0204b1fcaa59019139495c9fa6d8af1a4f057904a381c6e222124fab8a", @generic="2d91b966df8e63913f0aa1764d434670574c9d101cb42640176f5b047d61c3017da738471e596ab3633751d9200ef9fa96", @typed={0x14, 0x11, @ipv6=@mcast1}]}, @typed={0x8, 0x91, @fd=r1}, @generic="10742dd17549071f0677b0ca5f8b9b955ba1b5e82fc2fc181d9afbd63c28a560ae18ca885d6ec326201bc8c79dd50db55da7425268e3ed4d17aadcba88731600af9e661e1661c98236be73734649130d07a412bd8f8d58e48b9ae0b2101cf4ff3fef1a39c0d13c2220057d851e62b9e8705f27fce2897b82f7ff95bbe17e0e5189066fd1455af3284e005bb9d78fcc7fdafdd17f177455caf357250fa05e1e6b2ccf24f6cfcbde45f53d006aa69d13395a1fe28c69ffc594c834", @nested={0xc, 0x34, [@typed={0x8, 0x82, @pid=r2}]}, @nested={0x7c, 0xc, [@generic="f3d44c8934ec9970370821e1d1c5da9c6614dc02118cccea039c9d687a567c7af6f6b715a86ebf81c0722ecb2d2faa514c8436c0bfa870220bc080ee01baa5469b58cd913b66ed628322193978bb61a21900ee588dac33ea9e504d3d802a385c04414436e82757ce98390d868c", @typed={0x8, 0x21, @ipv4=@multicast1}]}]}, 0x2e4}, {&(0x7f0000000580)={0x4f4, 0x3a, 0x201, 0x70bd25, 0x25dfdbfd, "", [@typed={0x4, 0x73}, @generic="e9061c710aec5b31b65dca829d7ed026d05a0340e2dde11a70ab478ba39ceb8ad43e3221c18aad54842353b89e67f7f2629e7730e1ab7ae3c4def5f3fe492bcd737c2671cdc4a8607bfed0d7f1d7f2001820d2c5c3d33a596d8fe9a29b641a0016afe0de8aa91c05f536ce71c7fe744f8ee5e844ca399a5a2a2e658075152e2c088b906f", @nested={0x3e4, 0x5c, [@typed={0x8, 0x15, @fd=r3}, @typed={0x8, 0xa, @pid=r4}, @typed={0xb4, 0x26, @binary="0bbbeed67d71c99481b112fb85461adc2b638b7d85eb13ae0fe26cd522c8316734e455156f71d881cac8ebdac0dc3a2b063a64ac7297df6ed47067a91dbaca8e14caeb21062d8cdc4540dad025b0de0482cd1aaff526f1ac57d738a973d652ea0abe219638ec3fd1e1824c1d3644e7bbccc2189c558eb6f55b99ab40fd4864cb8b064d248e07943f48b8dd56112c226fb45202b0f869e240afdb6fa853ca5506a1f3c4c33e1b5c7dde287add62d2"}, @generic="ee11d39512441eb6227662ec7f2e2436a87d0042149595ecddf3cd99455db1c689bf769ac5d1cb79bacf3511b8728b560435fefb1ec583495af37f85ca91ba0fc7e31994779c00dc49bf3c0d10190b00fbf246b1306fcab2f8f4e88d37d3e4e514ddcfa7434b66fb968e150c111204e0c701f3f8db688ea5059a817d9087b228a71321439f1c2ace4efeab9a694d5c37c7bb52ad2d3d26092c3df9e484a72c1236e4259ac28f2ef6462f325dd2e3c9a2d31a582f1f5e4db0991b6f929b2d208243cca823cb", @generic="471557e2184302190185e41b38c7910162007cdbca5f16991212a47342a7746bff1405d7a7ebc96a47806004ceb3041bb10cf39259e6c7108e4ff67a9be6de1a5df9a1aebcd59f5ca3cf2c44405acfc2520e00372ab24fe5c056d28565684e3354d4e53037bd8d937104a33b78bac4cac2e69da88edfe3581aac9579faef9c74204df497a59c567de2023c8623613f9c4164c052bdf0f895a918f83be8fee191b06c4376731f17ae1eae37fa", @generic="db11c5ba1e98a28171aa46c16ec1dd6f0b862d7f29df6527c24cac80f7124513bf61438cb8f722da3369c753b009eb60cd688588335832b3e8000d6297645710e00942b47978af0f2d2e509f4443ce6e301c6e3e37c3036204d8593b19fc4da2169722d6341c434a3d7eadf87cfba69b01690c1d36a65974e1853419d1ff1fedb545d03ab6b6ab6e9685f67587f67b0adb545b80cae443f085322587e3b96dc861677b2fe69578a261753f25bafa36b5686d930c489bf63d5633e4e4d919a5b00611aae51252a771df9522fc", @generic="699f396a3967fe9480d71ddeeab1d677cec5effeafc7f62062458fb5974ecb42186212a3504080e127a113aa5b0cd17debbe847e0588d425e6a16e9448fccca12186ab46d6739023f985a6a941e0344526caff05b24aba9974eea56540f89413215d7f9d509dd20223d625b079831fd39e58c15113bf073c17c7c5d0b5a5e2cb53a76e1e4ec68b7d8fd62f21487bacd27374cb9eebcfbf762b0a17f99cdb35261bf11543bc4082797b11f8d15a25b921b0c83e63f0a1ded2", @typed={0x1c, 0x8d, @str='systemem1,vboxnet1eth1\x00'}, @typed={0x8, 0x2f, @uid=r5}]}, @typed={0xc, 0x7a, @u64=0x5}, @generic="ea6fd6a8b2904f68d75826818e10b01b16828dfd1c11b85ff526cbc022d41bac2dfd934dc5a40e2714588598b4922cbe90ac6b9d957d0514bbf9d8a99b056b7013da7bf2d0c6e7f7e62fc0751fb03f926aae3c4661b858a511cfc1b7906be46c48ee6452747b13313c"]}, 0x4f4}, {&(0x7f0000000a80)={0x18, 0x2e, 0x320, 0x70bd28, 0x25dfdbff, "", [@typed={0x8, 0x81, @fd=r6}]}, 0x18}, {&(0x7f0000000ac0)={0x28c, 0x41, 0x320, 0x70bd2d, 0x25dfdbfd, "", [@nested={0x27c, 0x6, [@typed={0x8, 0x6f, @ipv4=@multicast1}, @generic="d391ba6cb828423333720e1f7699f1a6bba9ac7c9250226a645474471236fab01e5a099e8c8df544a15e1eb1324df47a8c74d51050dfd656041d8da0248621152f1d93158381a95746", @typed={0x14, 0x39, @str='$vboxnet1()&\x00'}, @typed={0xc, 0xa, @u64=0x7fffffff}, @generic="f40e5f0472fe7c5c76712f26faccdbc048662626c1ea787c01e3b7414d7aa11eee792030a54ea6afedf8d24c99f11cedf9b39e96a846c6bb93784956a70c8831b7a67235c306127f70efb56cac764a2abddf6cbfeacdca8e9cadc4bf59cabef9972c703651ab439bcd0a629294e35ed1c4507fe6ddff", @typed={0xc, 0x7a, @u64=0x8001}, @typed={0xc, 0x42, @u64=0x2}, @generic="85ea59803c6dce25fe87197c3dc55f7c234b7fdb9edbcccf3cd8c83fe5fe05ba274a64219829682a6abc4f33f5ef8d77f30786cde2ab048f77b4e6cc031528ffe79bc85ac0525d0a865ca328ceaf6166b887ae6475d66b6260716ff6eb6348efe69c729db27c03b21a0c708cba0436a1da76e2de4c9f97f88046776d5d6d530528017e8ed1240241d776d641d86d057a1ef570a143a06cdf104d3bdcd3", @typed={0xa8, 0x57, @binary="86ae46ca5439f2325829f64f6b630661da52abdda5d6e18e7141b59c6392a50b9fdc90ac51557b07d4fd651d656b9a80b0279854a39999a8ed418675c4d1069aa19609c7fdd19cab7c937d00c6c0c95aeb5972a569a30a93cd9a4f5222f080b450a39efe38b633ea65bc7020cf7d07f81dd4a5eb86a57aacc88911859ccc2fe625eb1ad26a8aacca3aa160c11bba89d88974503984d6f2a3f0d4a0ec5f19641015aa"}, @generic="939a5efc91a20880830286907c947b1ac1bf551d0f650441b59740d0b7d5b8822ce6146749f03bff2aa7c0a41038bda3d9af7ec3"]}]}, 0x28c}, {&(0x7f0000000d80)={0x230, 0x39, 0x2, 0x70bd2b, 0x25dfdbfc, "", [@nested={0x18, 0x8c, [@typed={0xc, 0x19, @u64=0xfff}, @typed={0x8, 0x8a, @fd=r7}]}, @nested={0x208, 0x6d, [@generic="3357ffa168b0693f53ee71c5025297cad27dea8c3fb397068988f9d1583ea3494987", @typed={0xc, 0x62, @u64=0x70e8}, @generic="240d4ef280015d8e35ac7c237b828306fcc96d1a3d94bd6288cb0344cf972a7ccaeb8e769f258e0af696ca4047b72a1ca668fa9ef436a5d1f7d1bd1f2e2fe3763e9e124b0f9acb1cb4540a15c15a76077380b2e80649c51d1839961938e3e6ea2344ee522784189611b9df213b78688f41a21d81677ca880159d8032a13bb1ae12d32893d22b61606cb293662672cb9c7d68dec1b26d50fbdaebb11c7e6b1eeb16d8556d8502a554439a06f80c5fc5963601f6e2231e241905611550b914adad9b2790265877a15751fb767a510f8d7afe35333cd17bb6b1c47b4a7539800120f7818d4295c6e79c44", @generic="4d9be0fde0f738736899470d3411ef8346393ea101cdb18344ae950a81eb00f7e5591b15558713afccd3ad3b340c8e0a94bd38206a8e6e78ba1a246ab4dd470a19cdfd47e135850e27c7bee2ad9030722e893da0e1776f953f8a406ccec86e699bc1ade33cff676d36680d7186585e9ee35caac82a63016738a9e7c356ce6c807ef55407b9a04ce76ffc29031cb6348ceac58aed2b0ed204a752967aea9f4a4a6c429b72c9cc5d001d477b9ae542a53657fa13b7fb97cdeed75dd41e306d850f180f0d266c99dadbfe0296216f0559", @generic="c4c9d8eb9936b2dbf4dc9c314829b70304e8acc6cf51ca69af5ffb"]}]}, 0x230}, {&(0x7f0000001000)={0x38, 0x24, 0x220, 0x70bd29, 0x25dfdbff, "", [@typed={0x8, 0x1d, @pid=r8}, @typed={0x20, 0x9, @str='%lo}mime_typevboxnet0ð1\x00'}]}, 0x38}], 0x6, &(0x7f00000011c0)=[@cred={0x20, 0x1, 0x2, r9, r10, r11}], 0x20, 0x8000}, 0x4044001) r12 = socket$netlink(0x10, 0x3, 0x11) getsockopt$netlink(r12, 0x10e, 0xa, &(0x7f00000000c0)=""/4, &(0x7f0000000000)=0x4) fstatfs(r12, &(0x7f0000000040)=""/32) 10:13:00 executing program 2: ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f00000012c0)=@get={0x1, &(0x7f00000002c0)=""/4096}) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x100, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000180)={0x1a0, @time={r1, r2+30000000}, 0x3, {0x1ff80000000, 0x7}, 0x4, 0x1}) connect$inet6(r0, &(0x7f0000001300)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) lsetxattr$trusted_overlay_opaque(&(0x7f00000016c0)='./file0\x00', &(0x7f0000001700)='trusted.overlay.opaque\x00', &(0x7f0000001740)='y\x00', 0x2, 0x2) getsockopt$inet6_mreq(r0, 0x29, 0x7025436d143f20fa, &(0x7f0000000280)={@empty, 0x0}, &(0x7f0000001500)=0x14) sendto$packet(0xffffffffffffffff, &(0x7f0000001480)="e4f022a243cbe9bc60bb34acad7340009d712d310ef513b22a10fd0903db9a586d349c2a3bb38a2b7dd8063121283111877471d048cbfd8087b0a5a00edb5887c8f19a17507344cfd87434cf", 0x4c, 0x20000000, &(0x7f0000001540)={0x11, 0x0, r3, 0x1, 0x4, 0x6, @local}, 0x14) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x949, 0x1b) getsockname$packet(0xffffffffffffffff, &(0x7f0000001340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001380)=0x14) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000001c, 0x0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) write$sndseq(0xffffffffffffffff, &(0x7f00000013c0)=[{0x9260, 0x1, 0xffffffff7fffffff, 0x2, @tick=0x6, {0x8, 0x86}, {0x7, 0xce7b}, @connect={{0x421, 0x7}, {0x0, 0xc5}}}, {0x6, 0x1d, 0x1, 0x4f, @time={r4, r5+10000000}, {0xffff}, {0x1, 0x1580000000000}, @time=@time={0x77359400}}, {0x1, 0x9, 0x6, 0x9, @tick, {0x1ff, 0x7}, {0x765, 0x1}, @queue={0x0, {0x2, 0x9}}}, {0x2, 0xfffffffffffffe00, 0x9, 0x0, @time, {0xf6, 0x3}, {0x2883000000000000, 0x1}, @raw8={"712e289381f89576d6269c5f"}}], 0xc0) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001780)='/dev/autofs\x00', 0x200, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r6, 0x40a85323, &(0x7f00000017c0)={{0x40, 0xfffffffffffffffc}, 'port0\x00', 0xb, 0x20000, 0x6403, 0x7, 0x401, 0x4, 0x81, 0x0, 0x2, 0x2}) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000001580)={0x0, 0xfffffffffffffffd, 0x7000000000, 0xffffffff, 0xb27, 0x0, 0x6, 0x1ae800000000, {0x0, @in={{0x2, 0x4e24, @loopback}}, 0x4, 0x3, 0x6, 0x77, 0x7fff}}, &(0x7f00000000c0)=0xb0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000001640)={r7, 0x400, 0x2ae2ea2f, 0xe22c}, &(0x7f0000001680)=0x10) 10:13:02 executing program 5: r0 = socket$netlink(0x10, 0x3, 0xc) r1 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x8000, 0x40) setsockopt$inet6_dccp_buf(r1, 0x21, 0x8f, &(0x7f0000000340)="60eaa4fa1bf1012851f61d53b72c7df1cc8e2c44664e16608c9d157e8e14d76bca6daa1fc2a2361e5ccd13528490672c14c3aef3e4dd2809c2bb555fa2275c6f1ec47b4740ee4e52c5c3f73a779dd181b7f1b6be781baab3b09f16d46bf55c43a5b31079a48b2e817da1f31cd737c8b52bea0f14b7260e878d6a182f7e641c67e37ce5a732b07dff9075933cb442d624fbad72d5387f2cecce9fbce72a6541b6877c27e890d3d0482fc1a7bb81f4951b2388446de86080869d886c8b05b98e421228b4fbcee0de5cec87c3bd8223b2f9f743717466bf9826483ef89a43f530d176197f42e51a34d0e6e0f0", 0xeb) writev(r0, &(0x7f000037d000)=[{&(0x7f0000199fe1)="1f00000002031900000007000000068100ed853b09000100010100ff3ffe58", 0x1f}], 0x1) writev(r0, &(0x7f0000fb5ff0)=[{&(0x7f0000fb6000)="1f00000002031900000007000000e3800802bb0509000100010100493ffe58", 0x1f}], 0x1) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f00000000c0)={'lo\x00@\x00', 0x101}) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000000)={'raw\x00', 0x9b, "72ddd97205a9dc2d06edf813faa1b9af7c5590041e12f48e3949de1af639eea96ad19c5bf5e4baaf7ca2ebe76f88d54ad7d344226df942ec6dfbca9d174b1cc73e26d69265c651872910b35cbe9a532a6b219ebc780ea55d53322f5494353866fe5fe0197fac7c1272e849b359f1a8199b48d8e0d2f29cfe41b2632b6fb8f7d3a8c7de91babcd59add560d2de844b6843baca16ee1944b76de29bc"}, &(0x7f0000000100)=0xbf) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000180)={'lo\x00\x00\x00\x00\x00\x00\x00`\x00'}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000160}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x40, r3, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x3ff}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000010}, 0x4000044) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x2, 0x0) 10:13:02 executing program 0: r0 = socket$inet(0x2, 0x0, 0x0) ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/net/pfkey\x00', 0x0, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000400)=r1, 0x4) getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000740)=ANY=[@ANYBLOB], &(0x7f0000000480)=0x1) syz_genetlink_get_family_id$fou(&(0x7f0000000640)='fou\x00') r2 = add_key$user(&(0x7f0000000700)='user\x00', &(0x7f0000000200), &(0x7f0000000240), 0x0, 0xfffffffffffffffe) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, r1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) keyctl$instantiate_iov(0x14, r2, &(0x7f0000000740)=[{&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="b249833b714d6cbb9b6c6ad374f5dff87ad2d922e1d3f8434887f5aeb8196a3ab57a3513b648db174aad197cec41a1f1494a336c541257acabe00dffc7ca73c1d6a7b6d43a6719e1c642e20f305ffb4d31b44942bb7592da5daec91436ad24c3c8b463434829c96895d498baead5ebcea9893e16d57fc8b8e2d754368a15089d5cb1bea5cfda52da9db698befe85576d579c3ce4787b4ef199d217d519a5d2858a6caabe1175c1b95c4be07f2b4facb89febcd6c7eb9df7c", 0xb8}, {&(0x7f00000019c0)="ece7ea14d15960696979d6916edb151f7c2886e8905ec85ef3f6dfe4bfb0e128acd0bf4f829cdb44db4bb44dec750b827a70363489c226431f17270a38f8d7c189dc17addbea20c51343723ea6203909b363fcb63a987aa8fea4d60df5382035c321980758cd812f1fef50170c65bcbc1200e20cc3aa0fe24d3735a934f92f080b1c1824cecee2acd71028eda7c5c99af329bcdc2414ca9d98d344506efba63685b26a8d9f4d56ffb338885f89680228c3a7bfff4f7660abe700", 0xba}, {&(0x7f0000001a80)="0eba88c550c105c8abae8c8427f5b3c69a44d87c5d08f7c1d09e61d98e5cbace20dfe7071afa89a17f1d74dd98961a2ad4c28c2402f9fdc1a18b780d776e39234230b2c55950e335d2bd365edc24fc0db25ad25c0f4c4e0cfd8dba20269f64ebd0c4a79c871b5c1e30c0f7001afbb1a265f79157647bd0abc4c0e642d2505a18bfb64426309032cb33cb4c4aceddae604d474fb9ba6c3aca2703db", 0x9b}, {&(0x7f0000000680)="aeced37ad6a1b43a5d222aa6325794fc738c522c2734ea38", 0x18}, {&(0x7f00000006c0)="b5a62195c11fa3c7cc931230d433fa9d", 0x10}], 0x6, r2) sendmsg$nl_route(r4, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x8100}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x243}, [@IFLA_MASTER={0x8, 0xa, 0x6}, @IFLA_LINKINFO={0x18, 0x12, @vti={{0x8, 0x1, 'vti\x00'}, {0xc, 0x2, [@IFLA_VTI_LOCAL={0x8, 0x4, @multicast2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r3, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xa00800}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="00072abd7000fbdbdf250c00000008000600070000002000020014000100fe8000000000000000000000000000aa080002004e24000028000300080003000200000014000200697036746e6c30000000000000000000080005007f00000108000500ff0000000c00030008000800040000000800050001000000200001000c0006006e6f6e650000000008000b007369700008000200870000004000030008000800070000000a0002007665746830000000000000000000000008000400eef7"], 0x1}}, 0x44000) sendmsg$IPVS_CMD_DEL_DEST(r3, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x41000180}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x84, r5, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x60, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x27, 0x4}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}]}, 0x84}, 0x1, 0x0, 0x0, 0x14}, 0x48080) setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001000), 0xc5) keyctl$describe(0x6, r2, &(0x7f0000001bc0)=""/129, 0x81) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000440)={'rose0\x00'}) pwritev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0xfffffffffffffffd) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f00000007c0)={0x0, @in={{0x2, 0x4e21, @rand_addr}}, 0x8000, 0x3ff, 0x800, 0x0, 0x401}, &(0x7f0000000880)=0x98) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f00000008c0)={0x0, 0x8, 0x7ff}, 0x8) remap_file_pages(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x200000c, 0x7b, 0x8000) removexattr(&(0x7f0000001b40)='./file0\x00', &(0x7f0000001b80)=@random={'user.', '(trustedwlan0md5sum\\^vmnet0{proc\x00'}) 10:13:02 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:02 executing program 1 (fault-call:1 fault-nth:2): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:02 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = signalfd4(0xffffffffffffff9c, &(0x7f0000000100)={0xf52}, 0x8, 0x80000) r2 = socket$vsock_stream(0x28, 0x1, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) r4 = syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x4, 0x84040) socketpair$inet6_sctp(0xa, 0x0, 0x84, &(0x7f0000000240)={0xffffffffffffffff}) r6 = socket$inet6(0xa, 0x80003, 0x0) r7 = syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0x10001, 0x440000) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f00000002c0)={0x6, 0x1, 0x7, 0x0, 0x0, [{r1, 0x0, 0x8}, {r2, 0x0, 0x7}, {r3, 0x0, 0xfffffffffffffff7}, {r4, 0x0, 0x10de}, {r5, 0x0, 0xbd}, {r6}, {r7, 0x0, 0x2}]}) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r8 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffbfffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r8, 0x0) r9 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00') ptrace$getregset(0x4204, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=""/45, 0x2d}) writev(r9, &(0x7f0000000080), 0x181) 10:13:02 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x102d}, 0x2c) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000000)={{{@in6=@ipv4={[], [], @multicast1}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6=@mcast2}}, &(0x7f0000000100)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x11, 0x5, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x0, 0x1, 0x5f}]}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0xfb, &(0x7f00001a7f05)=""/251, 0x0, 0x0, [], r1}, 0x48) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x2000, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r0, 0x28, &(0x7f0000000200)}, 0x10) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) connect$l2tp(r2, &(0x7f00000001c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e24}, 0x2, 0x2, 0x1}}, 0x2e) [ 273.543348] hfsplus: unable to find HFS+ superblock 10:13:02 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:02 executing program 2: r0 = socket$unix(0x1, 0xaf0732a19998ff72, 0x0) bind$unix(r0, &(0x7f00000000c0)=@abs={0x1}, 0x2) getgid() fstat(r0, &(0x7f0000000000)) getegid() fstat(r0, &(0x7f0000000140)) getresgid(&(0x7f0000000080)=0x0, &(0x7f00000001c0), &(0x7f0000000200)) setgid(r1) listen(r0, 0x0) setresgid(0x0, 0x0, 0x0) listen(r0, 0x0) [ 273.586163] FAULT_INJECTION: forcing a failure. [ 273.586163] name failslab, interval 1, probability 0, space 0, times 0 [ 273.670201] CPU: 1 PID: 7817 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 273.678634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 273.687984] Call Trace: [ 273.690994] dump_stack+0x244/0x39d [ 273.694636] ? dump_stack_print_info.cold.1+0x20/0x20 [ 273.699841] ? kasan_check_read+0x11/0x20 [ 273.703995] should_fail.cold.4+0xa/0x17 [ 273.708063] ? check_preemption_disabled+0x48/0x280 [ 273.713084] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 273.718197] ? check_preemption_disabled+0x48/0x280 [ 273.723225] ? __lock_is_held+0xb5/0x140 [ 273.727290] ? zap_class+0x640/0x640 [ 273.731016] ? find_held_lock+0x36/0x1c0 [ 273.735083] ? __lock_is_held+0xb5/0x140 [ 273.739186] ? perf_trace_sched_process_exec+0x860/0x860 [ 273.744651] __should_failslab+0x124/0x180 [ 273.748909] should_failslab+0x9/0x14 [ 273.752718] kmem_cache_alloc+0x2be/0x730 [ 273.756872] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 273.762419] ptlock_alloc+0x20/0x80 [ 273.766046] pte_alloc_one+0x6b/0x1a0 [ 273.769849] do_huge_pmd_anonymous_page+0xebc/0x2150 [ 273.774959] ? mark_held_locks+0x130/0x130 [ 273.779233] ? __thp_get_unmapped_area+0x180/0x180 [ 273.784171] ? print_usage_bug+0xc0/0xc0 [ 273.788246] ? print_usage_bug+0xc0/0xc0 [ 273.792316] ? print_usage_bug+0xc0/0xc0 [ 273.796385] ? print_usage_bug+0xc0/0xc0 [ 273.800455] ? __lock_acquire+0x62f/0x4c20 [ 273.804703] ? __lock_acquire+0x62f/0x4c20 [ 273.808957] ? __lock_acquire+0x62f/0x4c20 [ 273.813205] ? __lock_acquire+0x62f/0x4c20 [ 273.817460] ? mark_held_locks+0x130/0x130 [ 273.821700] ? mark_held_locks+0x130/0x130 [ 273.825949] ? __lock_acquire+0x62f/0x4c20 [ 273.830195] ? print_usage_bug+0xc0/0xc0 [ 273.834282] ? rcu_softirq_qs+0x20/0x20 [ 273.838266] __handle_mm_fault+0x3c91/0x5be0 [ 273.842690] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 273.847539] ? zap_class+0x640/0x640 [ 273.851269] ? zap_class+0x640/0x640 [ 273.854985] ? zap_class+0x640/0x640 [ 273.858698] ? find_held_lock+0x36/0x1c0 [ 273.862782] ? find_held_lock+0x36/0x1c0 [ 273.866855] ? handle_mm_fault+0x42a/0xc70 [ 273.871094] ? lock_downgrade+0x900/0x900 [ 273.875258] ? check_preemption_disabled+0x48/0x280 [ 273.880284] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 273.885217] ? kasan_check_read+0x11/0x20 [ 273.889368] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 273.894651] ? rcu_softirq_qs+0x20/0x20 [ 273.898632] ? trace_hardirqs_off_caller+0x300/0x300 [ 273.903739] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 273.909279] ? check_preemption_disabled+0x48/0x280 [ 273.914309] handle_mm_fault+0x54f/0xc70 [ 273.918378] ? __handle_mm_fault+0x5be0/0x5be0 [ 273.922974] ? find_vma+0x34/0x190 [ 273.926522] __do_page_fault+0x5d6/0xe40 [ 273.930602] do_page_fault+0xed/0x7d1 [ 273.934409] ? vmalloc_sync_all+0x30/0x30 [ 273.938558] ? error_entry+0x76/0xd0 [ 273.942277] ? trace_hardirqs_off_caller+0xbb/0x300 [ 273.947312] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 273.952158] ? trace_hardirqs_on_caller+0x310/0x310 [ 273.957210] ? find_held_lock+0x36/0x1c0 [ 273.961288] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 273.966150] page_fault+0x1e/0x30 [ 273.969616] RIP: 0010:strnlen_user+0x15a/0x360 [ 273.974252] Code: 80 80 80 80 80 80 4c 39 eb 4c 89 e1 49 0f 47 dd 49 89 47 c8 4d 89 e7 31 c0 41 83 e7 07 4c 29 f9 4c 01 fb 48 89 8d 58 ff ff ff <4c> 8b 21 31 ff 89 c6 89 85 70 ff ff ff e8 04 1e d9 fd 8b 85 70 ff [ 273.993191] RSP: 0018:ffff88017df97cd0 EFLAGS: 00010206 [ 273.998557] RAX: 0000000000000000 RBX: 0000000000001000 RCX: 00000000202b9ff8 [ 274.005823] RDX: 1ffff1002fbf2fa4 RSI: ffffffff83a6163c RDI: ffff88017df97d20 [ 274.013090] RBP: ffff88017df97d80 R08: ffff88017df8a140 R09: ffffed0039b07508 [ 274.020386] R10: ffffed0039b07508 R11: 0000000000000006 R12: 00000000202b9ff8 [ 274.027652] R13: 0000000000001000 R14: 1ffff1002fbf2f9f R15: 0000000000000000 [ 274.034935] ? strnlen_user+0xcc/0x360 [ 274.038853] ? strncpy_from_user+0x5a0/0x5a0 [ 274.043265] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 274.048815] strndup_user+0x28/0xd0 [ 274.052449] ksys_mount+0x73/0x140 [ 274.055994] __x64_sys_mount+0xbe/0x150 [ 274.059981] do_syscall_64+0x1b9/0x820 [ 274.063867] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 274.069244] ? syscall_return_slowpath+0x5e0/0x5e0 [ 274.074197] ? trace_hardirqs_on_caller+0x310/0x310 [ 274.079219] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 274.084237] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 274.090902] ? __switch_to_asm+0x40/0x70 [ 274.094964] ? __switch_to_asm+0x34/0x70 [ 274.099032] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 274.103879] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.109086] RIP: 0033:0x457569 [ 274.112282] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 274.131208] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 274.138916] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 274.146197] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 274.153475] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 274.160747] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 274.168017] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 [ 274.182012] mmap: syz-executor0 (7804) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. 10:13:03 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x800000000000004) ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d5c6070") sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000780), 0xc, &(0x7f0000000880)={&(0x7f00000001c0)=ANY=[@ANYBLOB="f3a4e6ed47a04bac3e6aefc7f9d2e13e5990ec17c570a25d798ea23677dda186260e88260e19100bf4d0a215e28836f5f07b0f086cef4af7b76e62e79f5f9f37763194e73e2eab9d030909ba39badd3e7aa15a83232d182bb5100fc7cbe6e4debf2f403369c95060786a0800000000000000946846ba564bf798bdb5980901f7d280d24d6fafd72898c6ecdcaca23689a471fcdc136489e3fd9455"], 0x1}}, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000040)='memory.high\x00', 0x2, 0x0) writev(r2, &(0x7f0000000700), 0x1000000000000110) 10:13:03 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:03 executing program 1 (fault-call:1 fault-nth:3): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:03 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x10009, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x800) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x3866) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x1, 0x168, [0x20000180, 0x0, 0x0, 0x200001b0, 0x200001e0], 0x90, &(0x7f00000000c0), &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'dummy0\x00', 'team_slave_0\x00', 'syzkaller0\x00', 'rose0\x00', @dev, [], @link_local, [], 0xa0, 0xa0, 0xd8, [@cpu={'cpu\x00', 0x8}]}}, @snat={'snat\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}}]}]}, 0x1e0) [ 274.506013] hfsplus: unable to find HFS+ superblock [ 274.525037] kernel msg: ebtables bug: please report to author: Wrong nr. of counters requested [ 274.561784] FAULT_INJECTION: forcing a failure. [ 274.561784] name failslab, interval 1, probability 0, space 0, times 0 [ 274.625847] CPU: 0 PID: 7869 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 274.634286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 274.643644] Call Trace: [ 274.643671] dump_stack+0x244/0x39d [ 274.643697] ? dump_stack_print_info.cold.1+0x20/0x20 [ 274.643720] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 274.659885] should_fail.cold.4+0xa/0x17 [ 274.663962] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 274.669081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 274.674651] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 274.679435] ? retint_kernel+0x2d/0x2d [ 274.683357] ? lock_release+0x4ea/0xa10 [ 274.687367] ? perf_trace_sched_process_exec+0x860/0x860 [ 274.693055] ? retint_kernel+0x2d/0x2d [ 274.697731] __should_failslab+0x124/0x180 [ 274.701978] should_failslab+0x9/0x14 [ 274.705786] __kmalloc_track_caller+0x2d1/0x760 [ 274.710473] ? strncpy_from_user+0x5a0/0x5a0 [ 274.714888] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 274.720444] ? strndup_user+0x77/0xd0 [ 274.724263] memdup_user+0x2c/0xa0 [ 274.727821] strndup_user+0x77/0xd0 [ 274.731463] ksys_mount+0x73/0x140 [ 274.735018] __x64_sys_mount+0xbe/0x150 [ 274.739005] do_syscall_64+0x1b9/0x820 [ 274.742901] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 274.748402] ? syscall_return_slowpath+0x5e0/0x5e0 [ 274.753349] ? trace_hardirqs_on_caller+0x310/0x310 [ 274.758375] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 274.763402] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 274.770078] ? __switch_to_asm+0x40/0x70 [ 274.774140] ? __switch_to_asm+0x34/0x70 [ 274.778198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 274.783032] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 274.788206] RIP: 0033:0x457569 [ 274.791385] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 274.810273] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 274.817981] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 274.825238] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 274.832490] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 274.839756] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 274.847028] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 [ 274.898431] device lo entered promiscuous mode [ 274.904722] device lo left promiscuous mode [ 274.913664] device lo entered promiscuous mode [ 274.937530] device lo left promiscuous mode 10:13:03 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="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", 0x101, 0x0, &(0x7f0000001000)={0xa, 0x0, 0x0, @mcast2}, 0x1c) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d3, &(0x7f0000000200)) 10:13:03 executing program 0: mlockall(0x1) r0 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x5, 0x34040) bind$vsock_dgram(r0, &(0x7f0000000200)={0x28, 0x0, 0xffffffff}, 0x10) mmap(&(0x7f0000428000/0x2000)=nil, 0x2000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(0xffffffffffffffff, &(0x7f0000000240)={0xb, 0xff5a, 0xfa00, {&(0x7f0000000140), 0xffffffffffffffff, 0x7ff}}, 0x18) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='numa_maps\x00') readv(r1, &(0x7f0000000500), 0x0) 10:13:03 executing program 3: mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:03 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x10009, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x800) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x3866) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000000)=@nat={'nat\x00', 0x19, 0x1, 0x168, [0x20000180, 0x0, 0x0, 0x200001b0, 0x200001e0], 0x90, &(0x7f00000000c0), &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, 'dummy0\x00', 'team_slave_0\x00', 'syzkaller0\x00', 'rose0\x00', @dev, [], @link_local, [], 0xa0, 0xa0, 0xd8, [@cpu={'cpu\x00', 0x8}]}}, @snat={'snat\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}}]}]}, 0x1e0) 10:13:03 executing program 1 (fault-call:1 fault-nth:4): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:03 executing program 2: pipe(&(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$msdos(&(0x7f0000000340)='msdos\x00', &(0x7f0000000280)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f00000002c0)=ANY=[]) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000880)) write$P9_RXATTRWALK(r1, &(0x7f0000000480)={0xf, 0x1f, 0x1, 0x1ff}, 0xf) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) fchdir(r2) r3 = open(&(0x7f0000000200)='./bus\x00', 0x42042, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r2, &(0x7f0000000680)={&(0x7f00000004c0), 0xc, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYBLOB="050129bd"], 0x1}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x0, 0x0) write$binfmt_aout(r3, &(0x7f0000000b80)=ANY=[@ANYBLOB="bbced1de1fbaab45647c591de8e1e7eeb9ea52b4fa64e94c57c6445eb0c3780095c3e22f856517ae9278c8ee5a34a434", @ANYRES32=r2, @ANYRESDEC=r0], 0x48) syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00') sendfile(r3, r3, &(0x7f00000000c0), 0x8080ffffff10) pwritev(r3, &(0x7f0000000380)=[{&(0x7f0000000300)="765bac7828191357a2469814836e63186b", 0x11}], 0x1, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) bind$bt_sco(r0, &(0x7f00000000c0)={0x1f, {0x80000001, 0x0, 0x6, 0x8000, 0x0, 0x400}}, 0x8) write(r1, &(0x7f00000001c0), 0xfffffef3) setsockopt$bt_hci_HCI_TIME_STAMP(r4, 0x0, 0x3, &(0x7f0000000400)=0x4, 0x4) 10:13:03 executing program 5: r0 = socket$inet(0x15, 0x5, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x80000, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @rand_addr}, 0x10) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x4003, 0x0) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000040)=0x630041) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='nv\x00', 0x3) [ 275.275022] hfsplus: unable to find HFS+ superblock [ 275.299529] FAULT_INJECTION: forcing a failure. [ 275.299529] name failslab, interval 1, probability 0, space 0, times 0 [ 275.331706] kernel msg: ebtables bug: please report to author: Wrong nr. of counters requested [ 275.344741] CPU: 0 PID: 7900 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 275.353169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.362549] Call Trace: [ 275.365165] dump_stack+0x244/0x39d [ 275.368849] ? dump_stack_print_info.cold.1+0x20/0x20 [ 275.374060] ? __kernel_text_address+0xd/0x40 [ 275.374082] ? unwind_get_return_address+0x61/0xa0 [ 275.374108] should_fail.cold.4+0xa/0x17 [ 275.374133] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 275.383558] ? kasan_kmalloc+0xc7/0xe0 [ 275.383575] ? __kmalloc_track_caller+0x157/0x760 [ 275.383591] ? memdup_user+0x2c/0xa0 [ 275.383609] ? zap_class+0x640/0x640 [ 275.383626] ? do_syscall_64+0x1b9/0x820 [ 275.383643] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 275.383668] ? find_held_lock+0x36/0x1c0 [ 275.421837] ? perf_trace_sched_process_exec+0x860/0x860 [ 275.427307] ? lock_release+0xa10/0xa10 [ 275.431311] ? perf_trace_sched_process_exec+0x860/0x860 [ 275.436857] ? usercopy_warn+0x110/0x110 [ 275.440954] __should_failslab+0x124/0x180 [ 275.445231] should_failslab+0x9/0x14 [ 275.449046] kmem_cache_alloc_trace+0x2d7/0x750 [ 275.453748] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 275.459347] ? _copy_from_user+0xdf/0x150 [ 275.463522] copy_mount_options+0x5f/0x430 [ 275.467773] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 275.473326] ksys_mount+0xd0/0x140 [ 275.476899] __x64_sys_mount+0xbe/0x150 [ 275.480917] do_syscall_64+0x1b9/0x820 [ 275.484856] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 275.490259] ? syscall_return_slowpath+0x5e0/0x5e0 [ 275.495224] ? trace_hardirqs_on_caller+0x310/0x310 [ 275.500257] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 275.505291] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 275.511967] ? __switch_to_asm+0x40/0x70 [ 275.516039] ? __switch_to_asm+0x34/0x70 [ 275.520132] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 275.525002] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.530213] RIP: 0033:0x457569 10:13:04 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000240)=0x6d, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000280), 0x4) socket$nl_route(0x10, 0x3, 0x0) lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$reiserfs(&(0x7f00000000c0)='reiserfs\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x4, &(0x7f0000000500)=[{&(0x7f0000000300)="d20c0f165862570e43ca5c956cc955581007ba6d5f61d86988a8a967e192302649e327d5dcb74f9738111ae098aedce0aaf540b9c7b5be6eaf07647d511a75c5ae71ae8329a7f319b3ece0df637c9827c17b64901cd2eb29507088246d9c2c280c6a00d67b98b7feeb477f18bcfcc815bc4fd5c4c9ad791f1b97344d3fcf842e6a41a3405ffa58bf93fd6a9c08e666542120f70c2f44cc1376944e67edd36a0aa8ce30d967d94993159110949ee737cbc765e758f3cf495adfacc2f5e4813f70cabed2fa898d7c19d58739ddb80c18ed772c5615984e93187af97f0c97ad75985fa4e51baa49f55f87be51ce0a008780dd8c7f98cc1cc0", 0xf7, 0x9c}, {&(0x7f0000000180)="0c7470097218e70299e3c78eaa237f1c0d519b24eec4", 0x16, 0x5}, {&(0x7f0000000400)="8a26226c628b4bd58b759c177b8d8690eb54eb7ca9864e314bd514127f51082eea74a0d7e56cde8b486db0256d7f7f2805ca14db83dda4df6c4da72a2c906b0ee5f93a1ade539b59d1fed6386428af33f52997413be865f3e37c34e393792f96bc8d3ea9f904189beda82691f1d0b47a2b9d24ea526c09811682d5e67c8d3e6d511628fcdca2eca14b675557e47cafe87471f27734d4ea67a9eb7147105ff172fad4be8e85e70a0bedc68dcc5413828d0ac97e696501c82a5b039598176c531188f3f9dd71676fe5880bd0b5", 0xcc, 0x3510}, {&(0x7f00000001c0)="b2fa09da2d7ade7180c93da8d849b89081a3d8787aa77c3c59551b1b91e91be97aee40804758db71319337b0213aacb079c344", 0x33, 0x9}], 0x20000, &(0x7f0000000600)={[{@usrquota='usrquota'}, {@user_xattr='user_xattr'}, {@data_ordered='data=ordered'}, {@nouser_xattr='nouser_xattr'}, {@balloc_notest4='block-allocator=notest4'}, {@barrier_flush='barrier=flush'}, {@notail='notail'}, {@tails_on='tails=on'}], [{@dont_appraise='dont_appraise'}, {@subj_role={'subj_role', 0x3d, 'hash\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'bdevlo$trusted'}}, {@euid_lt={'euid<', r2}}]}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00') sendfile(r1, r3, &(0x7f00000002c0)=0xbc8, 0x1000007ffff000) [ 275.533421] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 275.552340] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 275.560063] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 275.567345] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 275.574621] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 275.581902] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 275.589403] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:04 executing program 4: r0 = socket(0xa, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bond_slave_0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={&(0x7f0000000b40), 0xc, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000010000100000000000000000000000000", @ANYRES32=r2, @ANYBLOB="0000eca8165c28a700001400010034a9696467655f736c617665020000000c00057b20f1528f182aba45"], 0x44}}, 0x0) r3 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0xffff, 0x10000) ioctl$UI_SET_RELBIT(r3, 0x40045566, 0xe) ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000100)="c2a8c5baec507bb8f256ba115a3b2734f4da79484ed5a859ea894d8e3cc23c952ce93915b87c1f5fd1bbc44804b34807b3d1b8415bfe891ab55e0fdb115a606ad6143efa14534ad545a9c467d02b00db7be319d577e9f8c6ae5eb7c4e9cc7abf00d4497a54696b4614d00e0eee88463db3eccc527385a3530a29a857e8f7ce9ca38e084aecb70927c9de67fe45983528db98ab96153435187eef7de77c5503afa43493060f1b157305a6412ec4d4a2267824672178") 10:13:04 executing program 3: mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 275.724035] netlink: 36 bytes leftover after parsing attributes in process `syz-executor4'. [ 275.775471] netlink: 36 bytes leftover after parsing attributes in process `syz-executor4'. 10:13:04 executing program 3: mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000380)={0x79}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000005c0)=ANY=[@ANYBLOB="010000000000000000fbff0001"]) 10:13:04 executing program 4: clone(0x2102001fff, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) r1 = getuid() getresgid(&(0x7f0000000100), &(0x7f0000000240), 0x0) getuid() ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000001580)) mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='overlay\x00', 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './file0'}}, {@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file0'}}], [{@fsuuid={'fsuuid', 0x3d, {[0x72, 0x64, 0x77, 0x30, 0x3f, 0x0, 0x0, 0x63], 0x2d, [0x62, 0x65, 0x0, 0x77], 0x2d, [0x0, 0x0, 0x77, 0x7c], 0x2d, [0x0, 0x62, 0x61, 0x77], 0x2d, [0x0, 0x7f, 0x0, 0x30, 0x0, 0x0, 0x0, 0x30]}}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_type={'subj_type', 0x3d, '+vboxnet1cgroup,\\'}}, {@fsname={'fsname', 0x3d, 'fscontext'}}, {@subj_type={'subj_type', 0x3d, '#'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '@+cgroup'}}, {@uid_eq={'uid', 0x3d, r1}}]}) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") syz_mount_image$erofs(&(0x7f0000001640)='erofs\x00', &(0x7f0000001680)='./file0\x00', 0x6, 0x4, &(0x7f00000027c0)=[{&(0x7f00000016c0)="508a7a02e0844f297d5b7a814bf478b0f4", 0x11, 0x2}, {&(0x7f0000001700)="2d4946914874963a845cc0c5a3986dfd23dc393ed87844953884cbee281b207adf48d926b9f9330c1d6fb57091b3ae605a1e885dbf1067002af388039be955f6c41c0dddf00259c02168ba551d3f3e69c66dbdd130eaf338a0f57fa7ca5afaf882e3c658dff6e4118abbf44ec069ac87976e03121dca673121868247f567e714b7982b55839a190d67ee6fc03d119b6e839375b20e0b9b262fca00ea89c2976b3f4feef8f6df18abcc1bbc521aed90c14c29b7106e721aae4f51b4cdde23279001065b9373793069c25b1a69147bf7141288b20d69e10a1c524d4eae2082fcba75cddbec65eb97b0bbe80c5b15fd7a771c5f07fd0d67898e6c68564ddb23515e5658f2c095edf8234dc48fdacf16bc27f6096717305ba5c1c9b8e760dbe276b1398ff630ee877234236d59e817f94e5846bab0ebec1e46cad9394366ba741153bd2904fc04fcfe8d3abeac450b866b5d2625c64761cd1e4f64f5b6dc3c9327f617c1147125fca27ad4ae861f6abf1c3995d80a467f5ec7e1c98d71f2326b8545287f6aaf9dddab7fe53b798572b0a528bee4bdfc6fd5b7dfb0f070f7756aeea94cad0369045696b5b6ca4949319f39808c25bd4e5f1231f7a4a65aec338ee243fb35c7b67ba378e5bdbb712067679dc361debe8cc3da93713fd95db925e3f3ce3d8a6e601eb53f6814f16004f9958bd5bf58f85a673eef0ce31419e366682cd804cf6042e144208cddade87ff761a40e4175ecc20e84156389d1e64b05e50aea0240e69c49b47bf871c6fe295d79f93367395ac61ce919a415a248b70d4e66f83af2221b52472f9655533c24eb099e8eae37aa4ff17dacf38357d8434096e998a66db70ebbf807a2ab25bb5974aa904ad251ffece96a91dbffa09dae3a8b3afb826fffc340b26ae4517efd03a6e1cbe064b0dd2ac004ddd5736e3e156fc7a66944ccc1aefec995d8476a458d36b3d3b4170a7f3353f78f36aa367214a32c97bb64537e9d444324bbb299f51a56df167ab1fe48e481e3d49a6c3f0267884f7b555b8d344127dde7fb60af9a9acac1517662b23c7d6cb9db6f3214dbe9c79100ca24ad51ee3a80e9bc28a06634d1f72a7901bbe0ceb4fbf26fdd927bc7a31ef2a5159c085f3c3eeed8bea33bfac7fcf91c73b54d507e53d1ce46c0741eac5a336e004225c0b1b499d48c21fe5db487c6825742f03082dcd69bfeaca017483d68f4e7a1f8403de9a0fab71332a859fdbde0a20e85e76a61bad15a9386963ceb5cc9dac982ed745c9eb5485889b4a788e380b6325aebe1867d441e94e5b878b734880968ade227bf9218941fb44a9bda24cd8e0a13237b1d18facefd4782205da9eb762c7ba530f67264e53156ddd4c0652d946e99fdfb0b25ed49248c2885db253efa1baee5c22c62bad6e5c575182d7739391989a316dfbc98ebd0a60f05b96b9e24651c41d3026f92397c5e0d8901118df0e2fbb0016b778d63828c9ac3b43a25aec8725b722de1af2a4fb2e22e40e15384d329cc3acfb02eb21b5c60debacb37a7e1156b05bdbce6bfa6c56eb3382ff3c7f99d8dffa1c17ce9a60564c6e05fca52b784d175a268b349e62b9878ec4ba96ad46306c4524d2acc9e5f388d63e8c02189aace9ce55a2c9758bde30f351ec303358f9fd68d00b358900f96020e801e73d94dad33111dd2985ab8d0c21646e2c0b4b79e5fd4b2156f6c62f4e08573cb3a4519cf1c83bfc41f8957bc2db1a87b3c76196410c2d2710582df90680ebbe79c9332dab066f0766b4627320951bc89eed7466fea9f02d52915fa343cbe97bc05fbc7886dabb80403315edcc3d96d82a8a3996f3963391ac9ac90013921bd75e16f7f3ff425272a27589ce279d92eec24f7adf33e46c74eef2db73a32a9953de0b81451a922cb10dd4cb6272230312eeae35e8125e12deffb9a908cffb40354a018e7d70ee85ee91d50dad65cf0596186328639cd68124645c4aeceb66a9260457233a045b22b0bce08982634877f5b756fd928226eb3a0ec0c77693e43a31f0629f6415470618dd556eec41ec990d761640ad08909ad1b7e3972000d2a0b2e83b8f4f588ffce6928a115bbf29e6515d9bf2d8331d6541a57a51f93a7897b8245be648dc0ae771bca8e3787194c8f721af77f14612dab0e0b51ff9fe93ddac5f19bb96d2e7cb896f5dd5f960f618c26c6191e43a585a686024ab37f3a6cc4e4af2349ca66abc71f4b1f8965c29f4e51e47a6c7b4a1a12704eb38022be9f172908d3dc6f1fa1019d34b5a2cf68aae3cf566a5c2a3066bab6e1845cbbe08dce5594062532849574676b59a81a8d1042f4369cc9e9438576c16ba9ea9d8b96160829f88ef867ae173c96f8a7dc0f98be16336e3f6d70f6e0dd272a6977e100be263c8bdbdfe6de547347b17a2ba26e376b19a4b7f5e315ec4b33dbbbb4a57e93e38fe6357f73f2bdf602aad1ebed58d37502e7bfb848d5299b0788d9a21fda5e879e848ec9698c02ec7214892fc9c64d7fb8d45e3b1ac162cfacd9253a95996a034c68a4b2257e004369c421c1b630209a79a93a1841e091270358d2401b822cc66ce0e93ac6654ac50f5906e030e2e8015ac887598c381ccca12baff1737d86ebe516551ce23b917eb776e58a737a2806004e42c70f21772ab22fe9df8e0066e9ca1ef3c9d6e86abde83f611f954e0f76f92e765e96beaf3d13fc5be13c4a862363b6dbbd0e6ab09d1a088c6477b9823bffd6eccd3f2efc076a4d33d986a5d59fcf47bfe88f3b07be2add528ba7122fa90a9b0d00c113cd4f0dd83e79e0a5c2d783007bc5de41fe099b0eb217a5ffdf1a15151f02e7853803bab07988567fb919e83588056b73e1f7a3a0af0e2a9f35d4f678acb0371d2deff8ea7ec7736ce654a8ae16b2ab7c4e38269a9e43032671cb6756392ebcd29a7e7cdcc52febc25ea3536e9ec318104abac91814c4df8197068699631b111b7fa26b2fedae6aac652dc0bf5548080354e65bd9b2c93e02f0a1e2652bb6498d4a9ccfb615cfc74d4019a2babb7043c7b86d0812c5f8401a262d03e861994f7c6e6d079bbe9b8c5933be9942f8dd095dddfb5d9c611d808b9c6a9ecf3226d721dbff519b2a4a038ee28a0edc460b6e41cc30bc0c1c9b8369742c0a2b72f04f4af2e843869933187567c3b02fce9296357a39a9b5f3cb8a229af9744ceabf4b54036ab385ab3daebc070812a30e87b1ffc1cefb618d88201596ec8727a3f8fb4c5108220d17900fe9c5725fd157938e8c9074a073152136aad7fff85fa4fac798c78113e14f43c2960901b29cd5ac2079c99c294dc8b288bf38608b1327e79842ab5143a2bb339e3d08368a1463cda71408f2b6f45eb675b82b1d021efa70096bd300c080134863a8063c098617503549d0b361f177cc00e7e8bac3ddd3fd50d5eebcc6da53e07b6de1930dec2328fe99427ec60e7cef7d745b8d87219c8416262a7f260d8ed59b07768281f3ec146268a0927536259dc42b95e3d950a4552de66c7f5fa6ecaa9ce9533e4afdf549d8ba07da27a4a52f8228eb61f1278e645045738e3504972f161045fdb04f0af82afbf21e723fea22f731f707dfff714eb6ae072c1c2e3b142ef5b4663447103334030a7be67598bea33e92d00e6dd218a75cdc9e4ddeecf5c7f8825b007425823bc6a2638fc6f9f442a1b11f17d29fbd31597c834da2d51e3241d820961319925a7a3a4ff2f2b1e5d2d412ffae37c49bead40301dc35bcd2235c0cd4cc19d0a5ed58a3f99a5ec4166ed4746d9242b5d423cfc84d902621638e5e8b3c2862a0ec0d9a90b7d5da9e32621273672d710735447e3badadb4bce79be2a21b4ddc69a5886a0c8658d8d6ccd88ba858e7acaa36a1ac056f488b06edea0545379e95c1e71ce6537492259f2cc5c2165627ab9744c647270e76e6403288b5e684a4ea0497c22e40d02a972118bab27be4cde276e21a05fb43b99d8aedb1dabc05e4250adf8f82dec33838cabe7ea222bf92a7385f7d27eb4e0180a8b0340b024200dcff684e2195855441aa771761f2f6a7ea3370d73f3055e93b03a7b049aac3c2265950bcf32878e5db2bf633c92e60483a0b15dfab835c5c0a82c0cf984771d005ca53277a49a374f156f27cfb5b04347013983db5dab7dbe9a186ad78d6260a68efd64eec6bf29b58d9a922c6bf164f4f49392eb9ecd35a900e3d706b48fe7c903eaf494c70f2a20b6b329fc700a439474d73105b6acd066b213975dec8b2defffddf7f72606661bf5806d5d3bf0915729212bc0ba2194ee5061a9aa65624434bd495dd09c5ee1df3d6bda6e3436ea6406e1abdecad66deb96cbc1f3034fdd8b9f7d84bba97717adf3a4f1947bd9556887b38c6fc023e6a24e366a8d1e16cbd87f01019840113f2a7af2ad81f6cf46a8e404fadc1afcb89eb70c0885d5ea246b2e35d6cc95ea395d35efbd9a7518ac233740ffec31f44a621ef59ece82f62a7596d3f18ea266ad1f4c926ff616955dea21e71b00318978260e71debff565c7859f24f5ee0186a7ed4dee3275e97edf8a925212fcb70b99571760bebfae7552969e2a4b36808dfc50c76e111826af735412b29844c4d4c285fdd8e8eab9bccbe0aed3acbb355052bcb828f0eea4b5af594d321ae48bff08d8223e664600fe76bb55e9fad4dc378f4ed17682d0e0e83954a80181419b772a2dada71a049ff904b0fe5f685ca73063fb4864448c8891caa82ef9984502adffd80cd25545f7e5c2a186f981e197094640951a829bf28081854cbb757419378fa32d938dfbfa410de6e25037dee92da63ab042b7303422c85bd94fd62670d17401fc110d595ad35b0cd130491dd87587c71e06dfc0ea7c109dfb9eb66043828eb7aa5fd3101a46931de0a6c9346886dd82dd8ff7fddf5fe47acc9ca8e8f3501a5817c8e2dd2225a1352fae21457435694c167aad5195b3090347ec14f37c565ea48cc457a58f43afcff9553a4cdf0c13e7e525a89eab0cf3cd1a22af0a56b31efcd512f08e41155c3e46a210e1a3b5a49662c45ad24765f37b4ee8c589a201e09022a87d4760c8a14d4fac965840b597e0d0c7a38a0ee38d79883f552ef97797260eefb22107a671ba8626f0ce5b78b9f5587a2f8136894cebd2a2ca3c133bf796a23eb4f7fe36b54edeaa9c01d2fb16cd0f0801c222d4a504c89e3f02b557094cf67245ca8011ae57c96dfb8f9d987f77b6eda57932b04bd2b06da00941cf17d60d7883edd7b6448faf0d36f68172ad09ba47d1c9df50ef7722db82d4311125849ed605ddd803cb02a093593ec32cbd4047d56367f5ce58e8861f8a6349be977831b5392047c0289fe7497ab76a19759b36ecba7e3add2dd1a704556bd657222259c3d59e04628282f20000a080fe906cdb0798e9fd20affe80599ec7fd3d0cbbf721740957aa0c81958a2f5617ae62a7fe43c093e6d41cb40fd7e15b2d133b95c9c9b26d36dac43c4d34ea9a8f5c245f4f0fce56e6a70fceeca10b8cbd5450ec23cec0308fbd3492c5cd879663927ad90d350f95d0278b6d405fec3778fd18b474291c91bb2785a36430ead633194251a14afece5c4ab9dd5161b30e2d9d608c4a0c339d6ef561c2dc325f3712880fbcf09004867e693b914b1481403e1115da9d3843dc1add37d1d75aba6c01d74bd5d7561649f0905f945286c9da10472ea951452ebe3b40cb2a18cf3d62d8d185b57f117623ac686e243e9db9be39f8c11ffb09fcd4c4cdfb0e787048bdf2a3d9ffb251b1b4fde8dd5f2f9af90400ab56b825cde4cb0f9e5", 0x1000, 0xda43}, {&(0x7f0000002700)="47319bc50ad546daa8d9bac6642ef6c55e95fd7969406093a14c06740fb20bb62685d6a3aa7de5efc3f415d9e58f9624f8e1f6c42e546610d82bf3261eab3a08e9107967328837b9b5729a85422ad818a7c606e8174db09e6a82ced10ddf98c17a31b7548a11dd2c96fe", 0x6a, 0x7}, {&(0x7f0000002780)="c0674ddf53ff442200e86e792b8f6799d6a16abe13475a67e62731a1eb1ebb597f2bd23a81a3be726543b44de24e2af0a66b0bfe200701", 0x37, 0x800}], 0x221081, &(0x7f0000002840)={[{@fault_injection={'fault_injection', 0x3d, 0x8}}, {@acl='acl'}, {@noacl='noacl'}, {@fault_injection={'fault_injection', 0x3d, 0x4}}, {@acl='acl'}, {@acl='acl'}, {@user_xattr='user_xattr'}, {@fault_injection={'fault_injection'}}], [{@dont_measure='dont_measure'}]}) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x200140, 0x0) syz_mount_image$f2fs(&(0x7f0000000000)='f2fs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f00000013c0)=[{&(0x7f00000002c0)="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", 0x486, 0x800}], 0x0, &(0x7f0000001440)) mount(&(0x7f00000014c0)=ANY=[@ANYBLOB="ac644a032b868a175533d099beb67fc19d65762f6c7f6f703000de433b6b1af7afaefaef8e34d41c28d03338cbdb6811c6654c96cd1bd3b14ae35da55dcee574a63cee253a94b8bd08ea81073061aa3a84dc1bf5a4d34d22e775e8b7aefba6b354cbb8879c0e909fc3f4c13f9d56267f267ed1fdb702b6fee4ab1b98a0e7fbac8abfe018b419f2022aba3e40aa2c24d11a521cc5a2888187b42cdc0dde2a6ff452478b19909a7f49471677e921e66e5f671c51def9"], &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='ext2\x00', 0x0, &(0x7f0000000480)='procem0+!userppp1nodev\x00') ioctl$KVM_DEASSIGN_PCI_DEVICE(r0, 0x4040ae72, &(0x7f0000000280)={0x96a, 0x5, 0x1ff, 0x3, 0x4}) mq_open(&(0x7f00000015c0)='.self\'\x00', 0x40, 0x4, &(0x7f0000001600)={0x10000, 0x2082, 0x4, 0x8, 0x9, 0x54e, 0x1, 0x6}) r3 = getpid() ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)=0x0) ioctl$ASHMEM_GET_NAME(r0, 0x81007702, &(0x7f0000002940)=""/93) tgkill(r3, r4, 0x1e) sendto(r0, &(0x7f00000004c0)="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", 0x1000, 0x0, &(0x7f0000000080)=@ax25={0x3, {"0b814a7873dfa9"}}, 0x80) open(&(0x7f0000002900)='./file0\x00', 0x44978f9d1cbfa785, 0x21) [ 276.008213] overlayfs: unrecognized mount option "fsuuid=rdw0?" or missing value 10:13:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000002b000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000540)="c4c140161666b833000f00d80fc79d04000000440f20c03505000000440f22c00f01c9c4e27913ccb9800000c00f3235000400000f3066b86e000f00d066b8e4008ee80fc7ab42430000", 0x4a}], 0x1, 0x0, &(0x7f0000000280), 0x0) r2 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x170c, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000006c0)={{{@in=@local, @in6}}, {{@in=@loopback}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8) r3 = dup2(r1, r0) ioctl$sock_inet_sctp_SIOCINQ(r3, 0x541b, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000026000/0x18000)=nil, &(0x7f00000002c0)=[@textreal={0x8, &(0x7f00000001c0)="64650f01d10f21c13e0fc71ee4e564260533092e0f083e3636650f1811650f01cf0f20d86635200000000f22d80f0138baf80c66b8d0ffdb8566efbafc0c66b80900000066ef", 0x46}], 0x1, 0x0, &(0x7f0000000300)=[@cr4={0x1, 0x40220}], 0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000340)={{{@in=@multicast1, @in6=@loopback}}, {{@in=@loopback}, 0x0, @in=@local}}, &(0x7f0000000440)=0xe8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind(0xffffffffffffffff, &(0x7f0000000640)=@in={0x2, 0x0, @multicast2}, 0x80) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) 10:13:05 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:05 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={"766574000000000000000000bd6800", 0x43732e5398416f1a}) r1 = socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = shmget$private(0x0, 0x2000, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil) shmctl$IPC_STAT(r2, 0x2, &(0x7f0000000080)=""/19) r3 = socket$inet(0x2, 0x3, 0x2) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20100, 0x0) ioctl$SIOCSIFMTU(r4, 0x8922, &(0x7f0000000200)={'rose0\x00'}) getsockname(r4, &(0x7f0000000140)=@ipx, &(0x7f00000001c0)=0x80) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r4, 0x28, 0x0, &(0x7f0000000100)=0x1, 0x8) setsockopt$inet_int(r3, 0x0, 0xca, &(0x7f0000000000)=0x10001, 0x10) dup2(r1, r1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x3e7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BLKGETSIZE64(0xffffffffffffffff, 0x80081272, &(0x7f0000000240)) write$smack_current(r4, &(0x7f0000000280)='clear_refs\x00', 0xb) r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='clear_refs\x00') r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-net\x00', 0x2, 0x0) pwritev(r5, &(0x7f0000000180)=[{&(0x7f0000000080)='4', 0x1}], 0x1, 0x0) accept4$unix(r5, &(0x7f0000000000), &(0x7f00000000c0)=0x6e, 0x800) ioctl$SCSI_IOCTL_DOORLOCK(r6, 0x5380) 10:13:05 executing program 2: mkdir(&(0x7f0000000140)='./file1\x00', 0x0) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000140)=ANY=[], &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f00000003c0)) chroot(&(0x7f0000000000)='./file0\x00') umount2(&(0x7f0000000740)='./file0\x00', 0x80003) ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x3f, 0x4, 0x1, 0xffffffffffffff9c}) fcntl$getflags(r0, 0x40b) mount$9p_xen(&(0x7f0000000040)='/\x00', &(0x7f0000000200)='./file1\x00', &(0x7f00000002c0)='9p\x00', 0x7048, &(0x7f0000000640)=ANY=[]) 10:13:05 executing program 1 (fault-call:1 fault-nth:5): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:05 executing program 0: clock_gettime(0x0, &(0x7f0000000000)) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) utimensat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)={{0x77359400}, {r0, r1/1000+10000}}, 0x1000000000000ff) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r3, r3) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r4, 0xc02c5341, &(0x7f0000000140)) getsockname$llc(r4, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000200)=0x10) fchdir(r2) [ 276.658962] hfsplus: unable to find HFS+ superblock [ 276.701408] FAULT_INJECTION: forcing a failure. [ 276.701408] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 276.713281] CPU: 1 PID: 7974 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 276.713293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 276.713305] Call Trace: [ 276.733652] dump_stack+0x244/0x39d [ 276.733676] ? dump_stack_print_info.cold.1+0x20/0x20 [ 276.733703] should_fail.cold.4+0xa/0x17 [ 276.733723] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 276.733745] ? __lock_acquire+0x62f/0x4c20 [ 276.733761] ? lock_downgrade+0x900/0x900 [ 276.733783] ? check_preemption_disabled+0x48/0x280 [ 276.765146] ? mark_held_locks+0x130/0x130 [ 276.769415] ? mark_held_locks+0x130/0x130 [ 276.773731] ? is_bpf_text_address+0xd3/0x170 [ 276.778248] ? kernel_text_address+0x79/0xf0 [ 276.782673] ? __kernel_text_address+0xd/0x40 [ 276.787210] ? unwind_get_return_address+0x61/0xa0 [ 276.792185] ? __save_stack_trace+0x8d/0xf0 [ 276.792209] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 276.792223] ? should_fail+0x22d/0xd01 [ 276.792241] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 276.792263] __alloc_pages_nodemask+0x34b/0xdd0 [ 276.792284] ? __kmalloc_track_caller+0x157/0x760 [ 276.820610] ? memdup_user+0x2c/0xa0 [ 276.824344] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 276.829385] ? find_held_lock+0x36/0x1c0 [ 276.833524] ? trace_hardirqs_off+0xb8/0x310 [ 276.837967] cache_grow_begin+0xa5/0x8c0 [ 276.842050] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 276.847611] ? check_preemption_disabled+0x48/0x280 [ 276.852647] kmem_cache_alloc_trace+0x684/0x750 [ 276.857332] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 276.857359] copy_mount_options+0x5f/0x430 [ 276.857376] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 276.857393] ksys_mount+0xd0/0x140 [ 276.857411] __x64_sys_mount+0xbe/0x150 [ 276.857431] do_syscall_64+0x1b9/0x820 [ 276.884130] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 276.889509] ? syscall_return_slowpath+0x5e0/0x5e0 [ 276.894460] ? trace_hardirqs_on_caller+0x310/0x310 [ 276.899496] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 276.904528] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 276.911222] ? __switch_to_asm+0x40/0x70 [ 276.915291] ? __switch_to_asm+0x34/0x70 [ 276.915315] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 276.915340] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 276.915353] RIP: 0033:0x457569 [ 276.915369] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 276.915379] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 276.915395] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 276.915406] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 276.915421] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 276.951582] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 276.951593] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000003 10:13:05 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:05 executing program 0: r0 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x2, 0x2040) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x2, 0x0) readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/73, 0x49}], 0x1) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x806004, 0x0) 10:13:05 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={&(0x7f0000000b40), 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv4_getaddr={0x18, 0x16, 0x1}, 0x18}}, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x101180, 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000040)={0x8}, 0x1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000080)={0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000180)=0x2c) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f00000001c0)={r2, 0xaf7}, &(0x7f0000000200)=0x8) [ 277.113497] autofs4:pid:7974:autofs_fill_super: called with bogus options 10:13:05 executing program 1 (fault-call:1 fault-nth:6): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:05 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 277.257770] hfsplus: unable to find HFS+ superblock [ 277.304393] FAULT_INJECTION: forcing a failure. [ 277.304393] name failslab, interval 1, probability 0, space 0, times 0 [ 277.382173] CPU: 1 PID: 8000 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 277.390630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.399985] Call Trace: [ 277.402580] dump_stack+0x244/0x39d [ 277.406224] ? dump_stack_print_info.cold.1+0x20/0x20 [ 277.411420] ? find_held_lock+0x36/0x1c0 [ 277.415495] should_fail.cold.4+0xa/0x17 [ 277.419562] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 277.424674] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 277.429603] ? kasan_check_read+0x11/0x20 [ 277.433777] ? rcu_softirq_qs+0x20/0x20 [ 277.437756] ? rcu_softirq_qs+0x20/0x20 [ 277.441744] ? unwind_dump+0x190/0x190 [ 277.445657] ? find_held_lock+0x36/0x1c0 [ 277.449745] ? perf_trace_sched_process_exec+0x860/0x860 [ 277.455205] ? save_stack+0xa9/0xd0 [ 277.458861] ? kmem_cache_alloc_trace+0x152/0x750 [ 277.463707] ? copy_mount_options+0x5f/0x430 [ 277.468123] __should_failslab+0x124/0x180 [ 277.472366] should_failslab+0x9/0x14 [ 277.476172] kmem_cache_alloc+0x2be/0x730 [ 277.480409] getname_flags+0xd0/0x590 [ 277.484227] user_path_at_empty+0x2d/0x50 [ 277.488383] do_mount+0x180/0x1d90 [ 277.491929] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 277.497485] ? rcu_pm_notify+0xc0/0xc0 [ 277.501376] ? copy_mount_string+0x40/0x40 [ 277.505620] ? copy_mount_options+0x5f/0x430 [ 277.510030] ? rcu_read_lock_sched_held+0x14f/0x180 [ 277.515050] ? kmem_cache_alloc_trace+0x353/0x750 [ 277.519901] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 277.525443] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.530982] ? copy_mount_options+0x315/0x430 [ 277.535482] ksys_mount+0x12d/0x140 [ 277.539124] __x64_sys_mount+0xbe/0x150 [ 277.543105] do_syscall_64+0x1b9/0x820 [ 277.546994] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 277.552364] ? syscall_return_slowpath+0x5e0/0x5e0 [ 277.557301] ? trace_hardirqs_on_caller+0x310/0x310 [ 277.562323] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 277.567347] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 277.574012] ? __switch_to_asm+0x40/0x70 [ 277.578073] ? __switch_to_asm+0x34/0x70 [ 277.582141] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 277.587016] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 277.592213] RIP: 0033:0x457569 [ 277.595405] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 277.614301] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 277.622008] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 10:13:06 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 277.629272] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 277.636537] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 277.643802] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 277.651084] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:06 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2500, 0x0) dup2(0xffffffffffffffff, r0) 10:13:06 executing program 2: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) close(r1) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'vlan0\x00', 0x2003}) mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000780)='9p\x00', 0x0, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x800, 0x0) ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0106426, &(0x7f0000000180)={0x8, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {0x0}, {}, {}]}) ioctl$DRM_IOCTL_GET_CTX(r3, 0xc0086423, &(0x7f00000001c0)={r4, 0x2}) 10:13:06 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x800000000000004) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x1, 0x0) getsockopt$inet6_buf(r1, 0x29, 0x35, &(0x7f0000c86000), &(0x7f0000000000)=0xfdc2) 10:13:06 executing program 1 (fault-call:1 fault-nth:7): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:06 executing program 4: r0 = creat(&(0x7f0000000340)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x800) r1 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0xa6b9d) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000040)=0x9) io_setup(0x40000100000003, &(0x7f0000000200)=0x0) io_submit(r2, 0x653, &(0x7f0000000540)=[&(0x7f00000000c0)={0x804000000000000, 0x0, 0x8, 0x1, 0x64, r0, &(0x7f0000000000), 0x377140be6b5ef4c7, 0xc00}]) mmap(&(0x7f0000787000/0x1000)=nil, 0x1000, 0x3, 0x13, r1, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f0000000440)={0x3, 0x1, 0x0, 'queue1\x00', 0x1}) 10:13:06 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 277.872602] hfsplus: unable to find HFS+ superblock [ 277.911153] FAULT_INJECTION: forcing a failure. [ 277.911153] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 277.922996] CPU: 1 PID: 8029 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 277.931413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 277.940780] Call Trace: [ 277.943395] dump_stack+0x244/0x39d [ 277.947041] ? dump_stack_print_info.cold.1+0x20/0x20 [ 277.952247] ? mark_held_locks+0x130/0x130 [ 277.956495] ? set_next_entity+0x485/0xc60 [ 277.960745] ? __lock_acquire+0x62f/0x4c20 [ 277.965003] should_fail.cold.4+0xa/0x17 [ 277.969086] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 277.974224] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.979858] ? __perf_event_task_sched_out+0x33a/0x1bf0 [ 277.985247] ? mark_held_locks+0x130/0x130 [ 277.989501] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 277.995055] ? zap_class+0x640/0x640 [ 277.998788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 278.004331] ? __perf_event_task_sched_in+0x2a9/0xb60 10:13:06 executing program 0: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=ANY=[]) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) lsetxattr$system_posix_acl(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000380)='system.posix_acl_access\x00', &(0x7f00000006c0)={{}, {}, [{0x2, 0x5}, {}], {}, [], {}, {0x20, 0x3}}, 0x34, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000400)={{}, {}, [], {0x4, 0x7}, [{}], {0x10, 0x1}, {0x20, 0x5}}, 0x2c, 0x1) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x84000, 0x0) connect$rds(r0, &(0x7f0000000240)={0x2, 0x4e24, @loopback}, 0x10) [ 278.009532] ? find_held_lock+0x36/0x1c0 [ 278.013616] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 278.019173] ? should_fail+0x22d/0xd01 [ 278.023086] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 278.028216] __alloc_pages_nodemask+0x34b/0xdd0 [ 278.032892] ? trace_hardirqs_on+0xbd/0x310 [ 278.032909] ? kasan_check_read+0x11/0x20 [ 278.032929] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 278.032986] ? compat_start_thread+0x80/0x80 [ 278.033009] ? find_held_lock+0x36/0x1c0 [ 278.054977] ? trace_hardirqs_off+0xb8/0x310 [ 278.059409] cache_grow_begin+0xa5/0x8c0 [ 278.063479] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 278.069032] ? check_preemption_disabled+0x48/0x280 [ 278.074064] kmem_cache_alloc+0x66b/0x730 [ 278.078235] getname_flags+0xd0/0x590 [ 278.082059] ? retint_kernel+0x2d/0x2d [ 278.085966] user_path_at_empty+0x2d/0x50 [ 278.090136] do_mount+0x180/0x1d90 [ 278.093696] ? copy_mount_string+0x40/0x40 [ 278.093719] ? retint_kernel+0x2d/0x2d [ 278.093749] ? copy_mount_options+0x239/0x430 [ 278.101865] ? copy_mount_options+0x23f/0x430 [ 278.101882] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 278.101897] ? copy_mount_options+0x315/0x430 [ 278.101916] ksys_mount+0x12d/0x140 [ 278.101933] __x64_sys_mount+0xbe/0x150 [ 278.101960] do_syscall_64+0x1b9/0x820 [ 278.101975] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 278.101993] ? syscall_return_slowpath+0x5e0/0x5e0 [ 278.125499] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 278.128595] ? trace_hardirqs_on_caller+0x310/0x310 [ 278.128620] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 278.128646] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 278.167455] ? __switch_to_asm+0x40/0x70 [ 278.171555] ? __switch_to_asm+0x34/0x70 [ 278.175634] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 278.180497] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 278.185697] RIP: 0033:0x457569 [ 278.188904] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 10:13:06 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) socket$nl_route(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setitimer(0x1, &(0x7f0000000100)={{0x0, 0x7530}, {0x0, 0x2710}}, &(0x7f0000000140)) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000240)) setitimer(0x1, &(0x7f0000000000)={{}, {0x77359400}}, &(0x7f000002c000)) [ 278.207825] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 278.215542] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 278.222819] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 278.230121] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 278.237405] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 278.244683] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:07 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000580)={&(0x7f00000001c0), 0xc, &(0x7f0000000540)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0xc09, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @ipip={{0xc, 0x1, 'ipip\x00'}, {0xc, 0x2, [@tunl_policy=[@IFLA_IPTUN_ENCAP_TYPE={0x8, 0x14}]]}}}]}, 0x3c}}, 0x0) r1 = shmget$private(0x0, 0x4000, 0x68002d3f7b0e2f9, &(0x7f0000ffa000/0x4000)=nil) shmctl$SHM_STAT(r1, 0xd, &(0x7f0000000000)) get_thread_area(&(0x7f0000000000)={0x10000, 0x20001000, 0x4000, 0x7, 0x4, 0x4a0, 0xa17, 0x4, 0x3, 0x80}) shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000040)=""/246) 10:13:07 executing program 5: r0 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x40000ffffff, 0x1) ioctl$FS_IOC_FSGETXATTR(r0, 0xc0185500, &(0x7f0000000040)={0x102, 0x3000000, 0x0, 0x0, 0x930000}) sendfile(r0, r0, 0x0, 0x2) 10:13:07 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 278.503566] autofs4:pid:8029:autofs_fill_super: called with bogus options [ 278.539895] ntfs: (device loop0): parse_options(): Unrecognized mount option ./file0. 10:13:07 executing program 1 (fault-call:1 fault-nth:8): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 278.608568] overlayfs: filesystem on './file0' not supported as upperdir 10:13:07 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0xfeffffbffffffffd, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'team_slave_1\x00', &(0x7f0000000040)=@ethtool_eee={0x2c}}) close(r2) close(r1) 10:13:07 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) write$P9_RRENAME(r1, &(0x7f0000000080)={0x7}, 0x7) close(r1) memfd_create(&(0x7f0000000040)='\v!GPL\x00', 0x0) splice(r0, 0x0, r1, &(0x7f00000000c0), 0x400000000005, 0x0) 10:13:07 executing program 5: perf_event_open(&(0x7f0000000d40)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000080)=""/200) r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7fff, 0x4200) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) 10:13:07 executing program 0: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=ANY=[]) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) lsetxattr$system_posix_acl(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000380)='system.posix_acl_access\x00', &(0x7f00000006c0)={{}, {}, [{0x2, 0x5}, {}], {}, [], {}, {0x20, 0x3}}, 0x34, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000400)={{}, {}, [], {0x4, 0x7}, [{}], {0x10, 0x1}, {0x20, 0x5}}, 0x2c, 0x1) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x84000, 0x0) connect$rds(r0, &(0x7f0000000240)={0x2, 0x4e24, @loopback}, 0x10) 10:13:07 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)) 10:13:07 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppp\x00', 0x101002, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000540)=""/246) r1 = getpgrp(0x0) perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, r1, 0x0, 0xffffffffffffffff, 0x0) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000400)={0xffffffffffffffff}) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f0000000140)={'bond_slave_0\x00'}) creat(&(0x7f00000001c0)='./file0\x00', 0x0) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000180)) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) r3 = memfd_create(&(0x7f0000000e40)="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", 0x0) execveat(r3, &(0x7f0000000000)='\x00', &(0x7f00000001c0), &(0x7f00000001c0), 0x1000) r4 = getpgid(0x0) r5 = syz_open_procfs(r4, &(0x7f0000000200)='fd\x00') ioctl$TIOCCBRK(r3, 0x5428) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x88d9, @loopback}, 0x1c) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000300)={@local}, &(0x7f0000000340)=0x20) ioctl$sock_inet_SIOCGIFBRDADDR(r5, 0x8919, &(0x7f0000000100)={'irlan0\x00', {0x2, 0x4e24, @local}}) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000f50f90)=[{&(0x7f0000000180)='&', 0x1}], 0x1, 0x81003) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000ddff8)=0x700000000000000, 0x80000004) ioctl$EVIOCGSW(r3, 0x8040451b, &(0x7f0000000440)=""/219) [ 278.840936] hfsplus: unable to find HFS+ superblock 10:13:07 executing program 5: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x1, 0x0) name_to_handle_at(r0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x39, 0x1ff, "a5d538120dfb8d1e6b3e0e7c59b794050ebfa2ac5fcbfdb8253d9c61bd98c5e6d963e4a476f60716078035947d4980afdc"}, &(0x7f0000000100), 0x1000) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r2, &(0x7f0000000400)={'syz0\x00', {}, 0xfffffffffffffffd}, 0x45c) clone(0x1000000000001fd, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) ioctl$UI_DEV_SETUP(r2, 0x5501, &(0x7f0000000300)={{}, 'syz0\x00'}) ioctl$KVM_SET_FPU(r0, 0x41a0ae8d, &(0x7f0000000880)={[], 0x4, 0x2, 0x0, 0x0, 0x6, 0x1, 0x2000, [], 0x100000001}) [ 278.868932] FAULT_INJECTION: forcing a failure. [ 278.868932] name failslab, interval 1, probability 0, space 0, times 0 10:13:07 executing program 2: socketpair$unix(0x1, 0x100000000001, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0), 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000000)={0x3, 0x40, 0xfa00, {{0x19000000, 0x0, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000]}}, {0xa, 0x0, 0x0, @local}, r2}}, 0x48) [ 278.968068] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 278.980502] EXT4-fs (sda1): re-mounted. Opts: [ 279.001543] input input5: cannot allocate more than FF_MAX_EFFECTS effects [ 279.028459] CPU: 1 PID: 8097 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 279.036912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.043405] QAT: Invalid ioctl [ 279.046276] Call Trace: [ 279.046304] dump_stack+0x244/0x39d [ 279.046333] ? dump_stack_print_info.cold.1+0x20/0x20 [ 279.046355] ? filename_lookup+0x39a/0x520 [ 279.065259] ? user_path_at_empty+0x40/0x50 [ 279.069595] ? do_mount+0x180/0x1d90 [ 279.069609] ? ksys_mount+0x12d/0x140 [ 279.069628] ? do_syscall_64+0x1b9/0x820 [ 279.069648] should_fail.cold.4+0xa/0x17 [ 279.069667] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 279.069682] ? mntput+0x74/0xa0 [ 279.069708] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.069732] ? zap_class+0x640/0x640 [ 279.099241] ? find_held_lock+0x36/0x1c0 [ 279.099284] ? perf_trace_sched_process_exec+0x860/0x860 [ 279.099301] ? lock_downgrade+0x900/0x900 [ 279.099326] __should_failslab+0x124/0x180 [ 279.099344] should_failslab+0x9/0x14 [ 279.099358] kmem_cache_alloc_trace+0x2d7/0x750 [ 279.099377] ? kasan_check_write+0x14/0x20 [ 279.099486] vfs_new_fs_context+0x5e/0x77c [ 279.099510] do_mount+0x613/0x1d90 [ 279.141551] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 279.147103] ? copy_mount_string+0x40/0x40 [ 279.147141] ? copy_mount_options+0x5f/0x430 [ 279.147160] ? kmem_cache_alloc_trace+0x353/0x750 [ 279.147191] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 279.166229] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.171786] ? copy_mount_options+0x315/0x430 [ 279.176295] ksys_mount+0x12d/0x140 [ 279.179949] __x64_sys_mount+0xbe/0x150 [ 279.183948] do_syscall_64+0x1b9/0x820 [ 279.187856] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 279.193250] ? syscall_return_slowpath+0x5e0/0x5e0 [ 279.198210] ? trace_hardirqs_on_caller+0x310/0x310 [ 279.202398] input input6: cannot allocate more than FF_MAX_EFFECTS effects [ 279.203255] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 279.203276] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 279.203292] ? __switch_to_asm+0x40/0x70 10:13:07 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)) 10:13:07 executing program 1 (fault-call:1 fault-nth:9): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 279.203311] ? __switch_to_asm+0x34/0x70 [ 279.230118] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 279.230144] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.230174] RIP: 0033:0x457569 [ 279.230203] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.230213] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 279.230230] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 10:13:07 executing program 5: r0 = socket(0xa, 0x1, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000000)={'team_slave_1\x00', 0x8d6d}) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x31, 0x0, 0x0) [ 279.230240] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 279.230249] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 279.230258] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 279.230267] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:07 executing program 2: sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x5) r0 = socket$inet_tcp(0x2, 0x1, 0x0) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f0000000040)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = socket$inet_smc(0x2b, 0x1, 0x0) r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000180)=ANY=[], 0xfffffd97) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000600)={@local, @dev, [], {@ipv6={0x86dd, {0x0, 0x6, "645cde", 0x10, 0x11, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x8848]}, @ipv4={[], [], @rand_addr}, {[], @dccp={{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "ffcba1", 0x0, "713af2"}}}}}}}, &(0x7f0000000040)={0x0, 0x3, [0x0, 0xfffffffffffffffe]}) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000200)={0xffffffffffffffff}, 0x13f, 0x3}}, 0x20) fsetxattr$trusted_overlay_upper(r2, &(0x7f00000002c0)='trusted.overlay.upper\x00', &(0x7f0000000340)={0x0, 0xfb, 0x30, 0x4, 0x5, "5f7ae16f7bb53f96df9ea6e264006736", "80d1ceed939895cb723bba77356cbdb4e389fd85cb738c86507121"}, 0x30, 0x1) write$RDMA_USER_CM_CMD_ACCEPT(r2, &(0x7f0000000780)={0x8, 0x120, 0xfa00, {0x3, {0x401, 0x7, "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", 0x31, 0xef4b, 0x2, 0x6, 0x80, 0x800, 0x2}, r3}}, 0x128) fchdir(r1) mknod(&(0x7f0000000440)='./file0/file1\x00', 0x0, 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, 0xffffffffffffffff) futex(&(0x7f0000000280), 0x6, 0x2, &(0x7f0000000300), &(0x7f0000000380), 0xffffffffffffffff) ioctl$LOOP_SET_DIRECT_IO(r2, 0x4c08, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) clone(0x0, &(0x7f00000006c0)="b37ba5600b66630f060500000000000000d039bcdbba07e04ad3ba9eda42abb251576f5fa8ff67cc6018900fe94ca49b7785d80c929ce91c988f2f8c4fbf836f89f48e9fbe6bc93e2c9ecd24896a5382ade2de04831776b454806248f1bbef17646123168d63bbf1fbb8278930d46e55ec20e32ec80f22d6001b0aee00c28eb80b9caf90b0637c09e6a66728fb0b6d", &(0x7f0000000040), &(0x7f0000000140), &(0x7f0000000180)) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r2, 0x10e, 0x8, &(0x7f00000000c0)=0x6, 0x4) [ 279.356026] hfsplus: unable to find HFS+ superblock [ 279.370283] EXT4-fs (sda1): re-mounted. Opts: [ 279.399250] FAULT_INJECTION: forcing a failure. [ 279.399250] name failslab, interval 1, probability 0, space 0, times 0 [ 279.431451] CPU: 1 PID: 8142 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 279.439913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.449305] Call Trace: [ 279.451913] dump_stack+0x244/0x39d [ 279.455569] ? dump_stack_print_info.cold.1+0x20/0x20 [ 279.460787] ? kernel_text_address+0x79/0xf0 [ 279.465214] should_fail.cold.4+0xa/0x17 [ 279.469286] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 279.474399] ? save_stack+0xa9/0xd0 [ 279.478031] ? save_stack+0x43/0xd0 [ 279.481680] ? kmem_cache_alloc_trace+0x152/0x750 [ 279.486542] ? vfs_new_fs_context+0x5e/0x77c [ 279.490957] ? do_mount+0x613/0x1d90 [ 279.494673] ? ksys_mount+0x12d/0x140 [ 279.498470] ? __x64_sys_mount+0xbe/0x150 [ 279.502625] ? do_syscall_64+0x1b9/0x820 [ 279.506692] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.512065] ? find_held_lock+0x36/0x1c0 [ 279.516149] ? perf_trace_sched_process_exec+0x860/0x860 [ 279.521611] ? debug_mutex_init+0x2d/0x60 [ 279.525770] __should_failslab+0x124/0x180 [ 279.530012] should_failslab+0x9/0x14 [ 279.533815] kmem_cache_alloc_trace+0x2d7/0x750 [ 279.538506] ? rcu_read_lock_sched_held+0x14f/0x180 [ 279.543526] ? kmem_cache_alloc_trace+0x353/0x750 [ 279.548381] legacy_init_fs_context+0x187/0x230 [ 279.553061] ? vfs_dup_fs_context+0x400/0x400 [ 279.557562] vfs_new_fs_context+0x3f4/0x77c [ 279.561894] do_mount+0x613/0x1d90 [ 279.565463] ? copy_mount_string+0x40/0x40 [ 279.569708] ? retint_kernel+0x2d/0x2d [ 279.573607] ? copy_mount_options+0x239/0x430 [ 279.578105] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 279.583001] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 279.588556] ? copy_mount_options+0x315/0x430 [ 279.593058] ksys_mount+0x12d/0x140 [ 279.596691] __x64_sys_mount+0xbe/0x150 [ 279.600677] do_syscall_64+0x1b9/0x820 [ 279.604569] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 279.609948] ? syscall_return_slowpath+0x5e0/0x5e0 [ 279.614885] ? trace_hardirqs_on_caller+0x310/0x310 [ 279.619919] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 279.624951] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 279.631622] ? __switch_to_asm+0x40/0x70 [ 279.635688] ? __switch_to_asm+0x34/0x70 [ 279.639763] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 279.644617] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.649808] RIP: 0033:0x457569 [ 279.653005] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.671960] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 279.679699] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 279.686981] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 10:13:08 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f00000001c0)) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x80200, 0x0) ioctl$TIOCCONS(r3, 0x541d) ioctl(r2, 0x100008912, &(0x7f0000000100)="025cc80700145f8f764070") ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000080)={{0x2, 0x0, @local}, {0xe0000304, @broadcast}, 0x80000000000003, {0x2, 0x0, @multicast2}, 'lo\x00'}) ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000140)={[{0x6f, 0x5608, 0x47f1, 0x67, 0x3, 0x4, 0x9, 0x0, 0xa5, 0xa7b4, 0x0, 0x800, 0x6}, {0x3ff, 0x1, 0x8, 0xfffffffffffffffe, 0x20, 0x1, 0x2, 0x99, 0x1, 0x2, 0xe428, 0xfffffffffffffffe, 0xfffffffffffffffa}, {0x9, 0xfffffffffffffffd, 0x1, 0x6, 0x0, 0x2, 0xffffffff, 0x0, 0x6, 0x0, 0x1, 0x4, 0x7}], 0x8}) getsockopt$inet6_dccp_buf(r2, 0x21, 0xce, &(0x7f0000000200)=""/4, &(0x7f0000000240)=0x4) 10:13:08 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000000)) r1 = perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x76, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x3, 0x42f0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x1f}, 0x0, 0x6, 0x0, 0x7, 0x0, 0xfffffffffffff001}, 0x0, 0xb, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000100)={0x0, @rand_addr, 0x0, 0x0, 'dh\x00', 0x4}, 0x2c) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000780), 0xffffffffffffffee, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[@ANYRESOCT], 0x1}}, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000140), &(0x7f00000001c0)=0x8) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='memory.high\x00', 0x2, 0x0) r2 = dup3(r0, r1, 0x80000) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000f40)={'team0\x00', 0x0}) setsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000f80)={r3, @loopback, @remote}, 0xc) r4 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0x2000, 0x0) setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000cecffc), 0x4) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000140)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="2800000010005fba000000000000000000000000992658c90c38bf296c86162e4bdb2b0f9f2e74d3471c70425e2044e735cd0abf913fbf92b3c8205f1d40430ef73690b1b7b23a1db7fc5e1167ab60d4fe", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b0000000000"], 0x28}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20006006}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=@ipv4_getrule={0x20, 0x22, 0x102, 0x0, 0x25dfdbfe, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, [""]}, 0x20}}, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000340)=@un=@abs, &(0x7f0000000240)=0x80, 0x80000) 10:13:08 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x8001000000002c) connect$inet6(r0, &(0x7f00000000c0), 0x1c) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x200000, 0x0) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f00000001c0)=""/223) futex(&(0x7f0000000000), 0x0, 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, &(0x7f0000000080), 0x0) sendmsg(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040), 0xffef}], 0x1, &(0x7f0000000200)}, 0x0) [ 279.694740] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 279.702028] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 279.709310] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:08 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)) 10:13:08 executing program 2: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$read(0xb, r0, &(0x7f00000000c0)=""/15, 0xf) futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000)=0x1, 0x0) r1 = gettid() timer_create(0x0, &(0x7f00000003c0)={0x0, 0x12, 0x0, @thr={&(0x7f0000000300), &(0x7f0000000380)}}, &(0x7f00000002c0)) r2 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x0, 0xa0000) ioctl$EVIOCGSW(r2, 0x8040451b, &(0x7f0000000140)=""/134) tkill(r1, 0x16) [ 279.943043] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. 10:13:08 executing program 1 (fault-call:1 fault-nth:10): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:08 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x8000000000000a, &(0x7f0000000140)=0x78, 0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f00000006c0)=0x3) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f00000003c0)={'NETMAP\x00'}, &(0x7f0000000400)=0x1e) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000100)=0x4, 0x4) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vga_arbiter\x00', 0x80100, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f00000001c0)={0x80, 0x8000, 0x3, 'queue1\x00', 0x101}) accept4$packet(0xffffffffffffff9c, &(0x7f00000002c0), &(0x7f0000000300)=0x14, 0x800) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in=@multicast1, @in=@loopback}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f0000000340)=0xe8) sendto$inet(r0, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xff6c, 0x1, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10) 10:13:08 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f00000007c0)='./control\x00', 0x0) rt_sigaction(0x0, &(0x7f00000002c0)={0x0, {0x100000000}, 0x0, 0x0}, &(0x7f0000000300), 0x8, &(0x7f0000000340)) setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f00000001c0)=0x8, 0x1) getpeername(r0, &(0x7f0000000380)=@hci={0x1f, 0x0}, &(0x7f0000000400)=0x80) syz_open_dev$sndseq(&(0x7f0000000280)='/dev/snd/seq\x00', 0x0, 0x80002) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x9, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f00000005c0)={0x0, 0x8000, 0xa, [0xff, 0x7, 0x1, 0x7f, 0x1, 0x6, 0x9, 0x5, 0x1, 0xfffffffeffffffff]}, &(0x7f0000000600)=0x1c) getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000640)={r4, 0x5, 0x9, 0x5, 0x800, 0xf0}, &(0x7f0000000680)=0x14) r5 = gettid() perf_event_open(&(0x7f0000000540)={0x5, 0x70, 0x7, 0x7, 0x401, 0x7f, 0x0, 0xffff, 0x0, 0x1, 0x2a8f, 0x0, 0x0, 0xfffffffffffffff8, 0x100000000, 0x40, 0x0, 0x0, 0x8, 0x7, 0x7, 0x537a, 0x4, 0x5, 0x4, 0xffff, 0xfffffffffffffff7, 0xe3, 0x8, 0x5, 0x3f, 0x200, 0x900, 0x9, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000500), 0x8}, 0x12, 0x10000, 0x0, 0x0, 0x1, 0x2, 0x81}, r5, 0x5, 0xffffffffffffffff, 0x678d5ce08a6acc09) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000000c0)={@remote, @multicast2}, &(0x7f00000004c0)=0xc) faccessat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f0000000100)=[{0x50, 0x0, 0x0, 0xffffffffffffffff}, {0x6}]}, 0x10) r6 = memfd_create(&(0x7f0000000440)='/dev/snd/seq\x00', 0x1) bind$can_raw(r6, &(0x7f0000000480)={0x1d, r2}, 0x10) sendmmsg(r0, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002240), 0x1ba, &(0x7f00000022c0)}}, {{0x0, 0x0, &(0x7f00000026c0), 0x0, &(0x7f0000002700)}}], 0x75a, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) [ 280.018387] EXT4-fs (sda1): re-mounted. Opts: 10:13:08 executing program 5: syz_emit_ethernet(0x66, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60b4090000306700000000000000000d00004fe225b40002ff02000000000000000000000000000121009078000b024cef00000060b680fa0000000000000000000000000000ffffffffffff00000000000000000000ffff"], 0x0) syz_extract_tcp_res$synack(&(0x7f0000000180), 0x1, 0x0) [ 280.057071] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. [ 280.199684] hfsplus: unable to find HFS+ superblock 10:13:08 executing program 5: clone(0x2102001fff, 0x0, 0xfffffffffffffffe, &(0x7f0000002840), 0xffffffffffffffff) socketpair$inet(0x2, 0x0, 0x0, &(0x7f00000000c0)) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x200, 0x0) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000002c0), &(0x7f0000000540)=0x4) socketpair$inet6(0xa, 0x80007, 0x20000000, &(0x7f00000003c0)) r1 = getpid() pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f00000001c0), 0xfffffef3) ioctl$EVIOCSABS3F(r3, 0x401845ff, &(0x7f0000000100)={0x401, 0x3, 0x5, 0x6, 0x7, 0x1}) ptrace(0x4206, r1) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000200)={{0x3, 0x3, 0x2, 0x0, 0x7}, 0xfffffffffffffc01, 0xfffffffffffffff8, 0x2}) wait4(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)) tkill(r1, 0x9) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, &(0x7f0000000340)=0x2) mq_notify(r2, &(0x7f0000000500)={0x0, 0x14, 0x4, @thr={&(0x7f0000000400)="c1b6766f916420274e0c34c96a640e21d01f9f5e09500059b4ca292e430367c9dc5fc76dbf4c7e5c94df6c9727fc307b2c198123e6e9e955183992d9d6276dd3f15c4fb3fbdb5a57fae38bd6833542cdc1d8217355bdf136e545dfa03f1635f3d87255da012e26e2c9f1a577e8b1848d67b2d5c254bf294f8723e96bc51c44f0f846ed6aed920528fc0c19eb993aea309180412545e9d04c6a78f185487b7d860ada3d1e103d0940f911c3c5b802dd6cf9dbe9ae67d1dd3c3523093c1104f1bd65aaab7391208e31c06ffc4411f03a579217c098343f479603ba45e3dd45dd717fcb0afe72c840015116b534eb1b2640e304ae5e5f", &(0x7f0000000280)="f4bebdb8f05cf32549f896d1de2ab77eb31911146099dee8"}}) [ 280.223607] FAULT_INJECTION: forcing a failure. [ 280.223607] name failslab, interval 1, probability 0, space 0, times 0 10:13:08 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio'}}]}) [ 280.385496] CPU: 1 PID: 8192 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 280.393971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.403336] Call Trace: [ 280.405955] dump_stack+0x244/0x39d [ 280.409615] ? dump_stack_print_info.cold.1+0x20/0x20 [ 280.414830] ? is_bpf_text_address+0xd3/0x170 [ 280.419354] should_fail.cold.4+0xa/0x17 [ 280.423438] ? __save_stack_trace+0x8d/0xf0 [ 280.427775] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 280.432920] ? save_stack+0xa9/0xd0 [ 280.436570] ? kasan_kmalloc+0xc7/0xe0 [ 280.440471] ? kmem_cache_alloc_trace+0x152/0x750 [ 280.445329] ? legacy_init_fs_context+0x187/0x230 [ 280.450192] ? vfs_new_fs_context+0x3f4/0x77c [ 280.454705] ? do_mount+0x613/0x1d90 [ 280.458432] ? ksys_mount+0x12d/0x140 [ 280.462242] ? __x64_sys_mount+0xbe/0x150 [ 280.466401] ? do_syscall_64+0x1b9/0x820 [ 280.470484] ? find_held_lock+0x36/0x1c0 [ 280.474582] ? check_preemption_disabled+0x48/0x280 [ 280.479613] ? perf_trace_sched_process_exec+0x860/0x860 [ 280.485088] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 280.490647] __should_failslab+0x124/0x180 [ 280.494903] should_failslab+0x9/0x14 [ 280.498717] kmem_cache_alloc_trace+0x2d7/0x750 [ 280.503405] ? legacy_init_fs_context+0x187/0x230 [ 280.508264] ? rcu_read_lock_sched_held+0x14f/0x180 [ 280.513298] ? kmem_cache_alloc_trace+0x353/0x750 [ 280.518157] ? rcu_read_lock_sched_held+0x14f/0x180 [ 280.523281] apparmor_fs_context_alloc+0x43/0xa0 [ 280.528100] security_fs_context_alloc+0x54/0xb0 [ 280.532882] vfs_new_fs_context+0x446/0x77c [ 280.537233] do_mount+0x613/0x1d90 [ 280.540788] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 280.546352] ? copy_mount_string+0x40/0x40 [ 280.550612] ? copy_mount_options+0x5f/0x430 [ 280.555038] ? kmem_cache_alloc_trace+0x353/0x750 [ 280.559928] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.565492] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.571046] ? copy_mount_options+0x315/0x430 [ 280.575561] ksys_mount+0x12d/0x140 [ 280.579214] __x64_sys_mount+0xbe/0x150 [ 280.583412] do_syscall_64+0x1b9/0x820 [ 280.587322] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 280.592704] ? syscall_return_slowpath+0x5e0/0x5e0 [ 280.597653] ? trace_hardirqs_on_caller+0x310/0x310 [ 280.602688] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 280.607726] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 280.614412] ? __switch_to_asm+0x40/0x70 [ 280.618489] ? __switch_to_asm+0x34/0x70 [ 280.622574] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 280.627439] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.632640] RIP: 0033:0x457569 [ 280.635849] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.654763] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 280.662484] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 280.669760] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 280.677037] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 10:13:09 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = syz_open_dev$sndctrl(&(0x7f00000001c0)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001000)={0x7, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r1, 0xc008551a, &(0x7f0000001000)) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') ioctl$UI_SET_RELBIT(r2, 0x40045566, 0xe) [ 280.684313] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 280.692061] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:09 executing program 4: socket$inet(0x2, 0x0, 0x0) ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607) getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000740)=ANY=[@ANYBLOB], &(0x7f0000000480)=0x1) syz_genetlink_get_family_id$fou(&(0x7f0000000640)='fou\x00') add_key$keyring(&(0x7f0000000580)='keyring\x00', &(0x7f0000000980)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) r0 = request_key(&(0x7f0000000a40)='logon\x00', &(0x7f0000000a80)={'syz', 0x3}, &(0x7f0000000ac0)='\x00', 0xfffffffffffffff9) request_key(&(0x7f0000000680)="6173796d6d657472332a99", &(0x7f0000000a00)={'syz', 0x2}, &(0x7f0000000200)='selfeth1^%#\x00', r0) add_key$user(&(0x7f0000000700)='user\x00', &(0x7f0000000780), &(0x7f0000000240), 0x6b, 0xfffffffffffffffd) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x8100}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x40, 0x10, 0xe3b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x243}, [@IFLA_MASTER={0x8, 0xa, 0x6}, @IFLA_LINKINFO={0x18, 0x12, @vti={{0x8, 0x1, 'vti\x00'}, {0xc, 0x2, [@IFLA_VTI_LOCAL={0x8, 0x4, @multicast2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xa00800}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="00072abd7000fbdbdf250c00000008000600070000002000020014000100fe8000000000000000000000000000aa080002004e24000028000300080003000200000014000200697036746e6c30000000000000000000080005007f00000108000500ff0000000c00030008000800040000000800050001000000200001000c0006006e6f6e650000000008000b007369700008000200870000004000030008000800070000000a0002007665746830000000000000000000000008000400eef7"], 0x1}}, 0x44000) sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x41000180}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="200028bd7000fedbdf250700000060000100080001cd020000000c0006006c626c6300000000080004004e2000000c0007002700000004000000080001000a0000000800060072720000080004004e210000080004004e2200000c0006006c626c6372000000080004004e24000008000600060000000800040001000000"], 0x1}, 0x1, 0x0, 0x0, 0x14}, 0x48080) setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001000), 0xc5) setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f00000007c0)={0x100000001, {{0x2, 0x4e21, @remote}}, 0x1, 0x2, [{{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e23}}]}, 0x236) getsockname$packet(r1, &(0x7f0000000300)={0x11, 0x0, 0x0}, &(0x7f0000000400)=0x14) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'rose0\x00', r3}) pwritev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0xfffffffffffffffd) 10:13:09 executing program 1 (fault-call:1 fault-nth:11): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 280.804748] EXT4-fs (sda1): re-mounted. Opts: journal_ioprio=0x0000000000000000, 10:13:09 executing program 5: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x802, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f0000000040)={0x6f, ""/111}) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000004ff0)={0x2, &(0x7f0000000180)=[{0x35, 0x0, 0x4000000000401}, {}]}, 0x10) [ 280.905196] hfsplus: unable to find HFS+ superblock 10:13:09 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio'}}]}) [ 280.981874] FAULT_INJECTION: forcing a failure. [ 280.981874] name failslab, interval 1, probability 0, space 0, times 0 [ 280.996419] CPU: 0 PID: 8226 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 281.004854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.014244] Call Trace: [ 281.016854] dump_stack+0x244/0x39d [ 281.020515] ? dump_stack_print_info.cold.1+0x20/0x20 [ 281.025717] ? __x64_sys_mount+0xbe/0x150 [ 281.029869] ? do_syscall_64+0x1b9/0x820 [ 281.033927] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.039312] should_fail.cold.4+0xa/0x17 [ 281.043387] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 281.048568] ? mwifiex_set_hs_params+0x648/0x7e0 [ 281.053335] ? check_preemption_disabled+0x48/0x280 [ 281.058358] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.063897] ? check_preemption_disabled+0x48/0x280 [ 281.068922] ? find_held_lock+0x36/0x1c0 [ 281.072995] ? mwifiex_set_hs_params+0x648/0x7e0 [ 281.077766] ? perf_trace_sched_process_exec+0x860/0x860 [ 281.083249] ? rcu_pm_notify+0xc0/0xc0 [ 281.087143] __should_failslab+0x124/0x180 [ 281.091384] should_failslab+0x9/0x14 [ 281.095197] __kmalloc_track_caller+0x2d1/0x760 [ 281.099886] ? vfs_parse_fs_string+0x1fd/0x2b0 [ 281.104479] ? legacy_parse_monolithic+0xde/0x1e0 [ 281.109329] kmemdup+0x24/0x50 [ 281.112528] legacy_parse_monolithic+0xde/0x1e0 [ 281.117214] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 281.121988] do_mount+0x6e9/0x1d90 [ 281.125537] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 281.131080] ? copy_mount_string+0x40/0x40 [ 281.135335] ? copy_mount_options+0x5f/0x430 [ 281.139777] ? kmem_cache_alloc_trace+0x353/0x750 [ 281.144641] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.150188] ? _copy_from_user+0xdf/0x150 [ 281.154341] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.159877] ? copy_mount_options+0x315/0x430 [ 281.164373] ksys_mount+0x12d/0x140 [ 281.168003] __x64_sys_mount+0xbe/0x150 [ 281.171988] do_syscall_64+0x1b9/0x820 [ 281.175878] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 281.181248] ? syscall_return_slowpath+0x5e0/0x5e0 [ 281.186200] ? trace_hardirqs_on_caller+0x310/0x310 [ 281.191236] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 281.196258] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 281.202938] ? __switch_to_asm+0x40/0x70 [ 281.207001] ? __switch_to_asm+0x34/0x70 [ 281.211068] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 281.215925] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.221125] RIP: 0033:0x457569 [ 281.224319] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 281.243221] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 281.250934] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 281.258207] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 281.265476] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 281.272742] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 281.280009] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000003 [ 281.314628] EXT4-fs (sda1): re-mounted. Opts: journal_ioprio=0x0000000000000000, 10:13:11 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234488dd25d766070") bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x11f}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x4, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="18009a000000000000000000000000007110000000000000000000000000000095000000000000009ae35a3704b6e180d8d82e3bdf1d8777abc30cf61747a8873c2999c3c289a3f2c6ed3b9ab668cc236cc5c8d9f51addd04a1ec524043c61d1270d06047dc05050334f462fb4a64d47236db3308146efef03f999799b6468bcb14e84fc3d71af50d0cdf76321e5a20125c7"], &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) 10:13:11 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x7501) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = memfd_create(&(0x7f0000000080)="008159a7811ff08a4c2ef26daf582a97c324824e153a4cb2c32228332e86baa97788319615b3c5c0ef621d910522a14631a3ba1b92da6a2c5623f76100951ed31d8ce579a26d20ede818e860e27ea2225c7794751c060f1fa1ceab21a9f0fc8eb562733bda3bbc1c5f450104742581f0cda42698c54fba8caf9ad0562f9961e5ad7522b6d558e77bc4aaaf8ee60f95c99744b456819133a2991faf1dbc02dd61af8d9a388798e1a674324e84b8de7d9890b25fe91cf06a3be7ce49b4cdd3c7866fc088afe449cf54904820cb2c41ad6f5609", 0x0) r2 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x44200) r3 = syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000000)) r4 = dup2(r2, r1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48008000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"}) write$sndseq(r1, &(0x7f000000a000)=[{0x0, 0xfdffffff, 0x0, 0x0, @time={0x77359400}, {}, {}, @ext={0x0, &(0x7f0000038ffe)}}], 0xfe23) 10:13:11 executing program 1 (fault-call:1 fault-nth:12): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:11 executing program 3: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio'}}]}) 10:13:11 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000080), 0x1000000000000294) 10:13:11 executing program 4: mkdir(&(0x7f0000000140)="2e02", 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x4, 0x40000) ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000240)={0x4, 0x29, 0xf, 0xd, 0x5, 0x80, 0x6, 0xdb, 0xffffffffffffffff}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f0000000100)=0xc) socket$bt_rfcomm(0x1f, 0x3, 0x3) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='9p\x00', 0xc0000, &(0x7f0000000180)={'trans=unix,', {[{@posixacl='posixacl'}, {@noextend='noextend'}], [{@smackfsfloor={'smackfsfloor', 0x3d, '{ppp1proc%'}}, {@uid_gt={'uid>', r1}}, {@dont_appraise='dont_appraise'}]}}) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000280)=0x1) 10:13:11 executing program 0: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x400000, 0x0) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000080)={0x40, 0x7}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x5, 0x0) ioctl$KDGKBLED(r0, 0xc0045103, &(0x7f0000a07fff)) 10:13:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="f36e0f20e06635002000000f22e00f30f20f1024660fdb03b894008ed00f20d86635200000000f22d80f35650f01c90f30", 0x31}], 0x241, 0x0, &(0x7f0000000600), 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000007000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000100)=ANY=[@ANYBLOB="820000000000000034d4000000000000010100007c050000000000000000000007cb63614476f218615536f672ea3dfe415546e302bb61a9fd6ce838dee72d1bd37ff594dab63849a65cb966583abab1a9faaa7a189b664a354be1e29200dfaa409bb6db208803d77a383e859cc218b25caf05e39652de2bec85a40cd392746b148cbf3061f148ded8a7ca0f2848f7d775e4853536cf42feb3616a3bc3bd742e4d659ffe20d2f13631e04b738c197456"]) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) r3 = accept(r0, &(0x7f00000002c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000000)=0x80) setsockopt$inet_udp_int(r3, 0x11, 0x66, &(0x7f0000000080)=0x6, 0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 283.216303] hfsplus: unable to find HFS+ superblock [ 283.228177] EXT4-fs (sda1): re-mounted. Opts: journal_ioprio=0x0000000000000000, [ 283.252315] FAULT_INJECTION: forcing a failure. [ 283.252315] name failslab, interval 1, probability 0, space 0, times 0 [ 283.313596] CPU: 1 PID: 8264 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 283.322029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.331388] Call Trace: [ 283.333999] dump_stack+0x244/0x39d [ 283.337653] ? dump_stack_print_info.cold.1+0x20/0x20 [ 283.342859] ? __x64_sys_mount+0xbe/0x150 [ 283.347017] ? do_syscall_64+0x1b9/0x820 [ 283.351107] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.356491] should_fail.cold.4+0xa/0x17 [ 283.360571] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 283.365698] ? check_preemption_disabled+0x48/0x280 [ 283.370735] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.376284] ? check_preemption_disabled+0x48/0x280 [ 283.381324] ? find_held_lock+0x36/0x1c0 [ 283.385462] ? perf_trace_sched_process_exec+0x860/0x860 [ 283.390921] ? rcu_pm_notify+0xc0/0xc0 [ 283.394837] __should_failslab+0x124/0x180 [ 283.399073] should_failslab+0x9/0x14 [ 283.402878] __kmalloc_track_caller+0x2d1/0x760 [ 283.407552] ? vfs_parse_fs_string+0x1fd/0x2b0 [ 283.412142] ? legacy_parse_monolithic+0xde/0x1e0 [ 283.416986] kmemdup+0x24/0x50 [ 283.420216] legacy_parse_monolithic+0xde/0x1e0 [ 283.424892] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 283.429654] do_mount+0x6e9/0x1d90 [ 283.433203] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 283.438753] ? copy_mount_string+0x40/0x40 [ 283.442999] ? copy_mount_options+0x5f/0x430 [ 283.447448] ? kmem_cache_alloc_trace+0x353/0x750 [ 283.452307] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.457851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.463476] ? copy_mount_options+0x315/0x430 [ 283.467978] ksys_mount+0x12d/0x140 [ 283.471606] __x64_sys_mount+0xbe/0x150 [ 283.475603] do_syscall_64+0x1b9/0x820 [ 283.479489] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 283.484870] ? syscall_return_slowpath+0x5e0/0x5e0 [ 283.489817] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.494692] ? trace_hardirqs_on_caller+0x310/0x310 [ 283.499713] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 283.504733] ? prepare_exit_to_usermode+0x291/0x3b0 [ 283.509757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.514640] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.519832] RIP: 0033:0x457569 [ 283.523024] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.541921] RSP: 002b:00007f5e0f18cc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 283.549635] RAX: ffffffffffffffda RBX: 00007f5e0f18cc90 RCX: 0000000000457569 [ 283.556901] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 10:13:12 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x278a45f2, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='\x00\x00\x00\x00\x00') setsockopt$inet_int(r0, 0x0, 0x0, &(0x7f00000000c0), 0x4) r2 = openat$cgroup_ro(r1, &(0x7f0000000000)="6d656d00017937737761532e63757289c942abe3fa72656e7400", 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x7, 0xffff, 0x3}) preadv(r2, &(0x7f0000000340)=[{&(0x7f0000000380)=""/245}, {&(0x7f00000001c0)=""/126, 0x25b}, {&(0x7f0000000240)=""/236}], 0x100000000000032c, 0x20001078) 10:13:12 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x802, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e21, 0x4, @mcast1, 0x2}}}, &(0x7f00000004c0)=0x90) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=""/4096, 0x1000, 0xffffffffffffffff}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000500), &(0x7f0000000540)=0x8) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) clone(0x2102001ffb, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x22, &(0x7f0000000200)={@mcast2, 0x0, 0x0, 0x0, 0xc}, 0x20) 10:13:12 executing program 3 (fault-call:2 fault-nth:0): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 283.564170] RBP: 000000000072bf00 R08: 00000000200003c0 R09: 0000000000000000 [ 283.571449] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f18d6d4 [ 283.578717] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000003 [ 283.651326] FAULT_INJECTION: forcing a failure. [ 283.651326] name failslab, interval 1, probability 0, space 0, times 0 [ 283.681472] CPU: 0 PID: 8287 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 283.689897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.699263] Call Trace: [ 283.701888] dump_stack+0x244/0x39d [ 283.705536] ? dump_stack_print_info.cold.1+0x20/0x20 [ 283.710745] ? lock_downgrade+0x900/0x900 [ 283.714903] should_fail.cold.4+0xa/0x17 [ 283.718979] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 283.724092] ? lock_downgrade+0x900/0x900 [ 283.728255] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 283.733827] ? proc_fail_nth_write+0x9e/0x210 [ 283.738320] ? proc_cwd_link+0x1d0/0x1d0 [ 283.742394] ? find_held_lock+0x36/0x1c0 [ 283.746542] ? spidev_release+0x1d8/0x280 [ 283.750711] ? perf_trace_sched_process_exec+0x860/0x860 [ 283.756170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.761734] __should_failslab+0x124/0x180 [ 283.765985] should_failslab+0x9/0x14 [ 283.769807] __kmalloc+0x2e0/0x760 [ 283.773343] ? strncpy_from_user+0x5a0/0x5a0 [ 283.777812] ? fput+0x130/0x1a0 [ 283.781098] ? do_syscall_64+0x9a/0x820 [ 283.785086] ? __x64_sys_memfd_create+0x142/0x4f0 [ 283.789930] ? do_syscall_64+0x9a/0x820 [ 283.793910] __x64_sys_memfd_create+0x142/0x4f0 [ 283.798580] ? memfd_fcntl+0x1910/0x1910 [ 283.802654] do_syscall_64+0x1b9/0x820 [ 283.806544] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 283.811911] ? syscall_return_slowpath+0x5e0/0x5e0 [ 283.816845] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.821708] ? trace_hardirqs_on_caller+0x310/0x310 [ 283.826726] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 283.831748] ? prepare_exit_to_usermode+0x291/0x3b0 [ 283.836772] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.841624] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.846824] RIP: 0033:0x457569 [ 283.850015] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.868913] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 283.876624] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000457569 [ 283.883890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc78a [ 283.891157] RBP: 000000000072bf00 R08: 0000000000100020 R09: 00000000fbad8001 10:13:12 executing program 0: perf_event_open(&(0x7f0000000d40)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000000c0)={0x0, @remote, 0x0, 0x0, 'lc\x00'}, 0x2c) r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x37c, 0x0) ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000040)=""/8) io_setup(0x100000001, &(0x7f0000000100)=0x0) io_getevents(r1, 0x0, 0x1, &(0x7f0000000140)=[{}], &(0x7f00000001c0)={0x77359400}) 10:13:12 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x800000000000004) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000140)=ANY=[@ANYBLOB="c8b7c5c60514ac64ff52f154c238da2cef06dc459ee44e0b95f9a18df4cab20a35156440bb1e0912183350aad29b7ef5643c9b7ad3d4627ef0432ce3a46df6c377be5a9158b8dd536faacbcc2ff7933b4aba123e6d5ed9da639c3e39975fc692ae1d945bc258000000000000"], &(0x7f00000000c0)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000)) getsockopt$inet6_tcp_int(r0, 0x6, 0x1f, &(0x7f0000000080), &(0x7f0000000100)=0x4) stat(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$security_capability(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='security.capability\x00', &(0x7f0000000340)=@v3={0x3000000, [{0x0, 0x8001}, {0x88, 0x1}], r1}, 0x18, 0x2) 10:13:12 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0xb, 0x1fd) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000003d80)='/dev/autofs\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000003dc0)={0x0, 0x2b, "c523b2710e4ecc740dbabdba48b89d1d72d6aaf7b50c4b6f6c4b75c40dc3cf885eb037c8ddabc5483c6ec6"}, &(0x7f0000003e00)=0x33) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000003e40)={r2, 0x5, 0x30}, 0xc) ioctl$BLKTRACETEARDOWN(r0, 0x227c, 0x930000000000) [ 283.898429] R10: 0000000020000100 R11: 0000000000000246 R12: 00007f93afa656d4 [ 283.905702] R13: 00000000004c4a1e R14: 00000000004d7d88 R15: 0000000000000003 10:13:12 executing program 1 (fault-call:1 fault-nth:13): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 284.064580] hfsplus: unable to find HFS+ superblock 10:13:12 executing program 2: r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="24000000020607031dfffd946fa2830020200a0009000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x4001c0, 0x0) recvmmsg(r1, &(0x7f0000004f80)=[{{&(0x7f0000000300)=@xdp, 0x80, &(0x7f0000004f00)=[{&(0x7f0000001e80)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/218, 0xda}, {&(0x7f0000002e80)=""/4096, 0x1000}, {&(0x7f0000000380)=""/57, 0x39}, {&(0x7f0000003e80)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/21, 0x15}, {&(0x7f0000004e80)=""/114, 0x72}], 0x7, &(0x7f0000000400)=""/50, 0x32, 0x49ec}, 0x200}], 0x1, 0x11775b0e63689637, &(0x7f0000004fc0)={0x77359400}) prctl$getname(0x10, &(0x7f00000005c0)=""/4096) syz_open_dev$sndtimer(&(0x7f0000005000)='/dev/snd/timer\x00', 0x0, 0x408200) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000fea000/0x14000)=nil, 0x14000}}) bind$unix(r1, &(0x7f0000000440)=@file={0x1, './file0\x00'}, 0x6e) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40010000}, 0xc, &(0x7f0000000580)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b4000000", @ANYRES16=r2, @ANYBLOB="00042abd7000ffdbdf250400000008000600040000006000030014000600ff0100000000000000000000000000011400020073797a6b616c6c6572310000000000001400020076657468315f746f5f7465616d00000008000100000000000800010000000000080007004e210000080007004e240000080006000001000038000300080004000000000008000500e00000011400020064756d6d79300000000000000000000008000100010000000800010001000000"], 0xbc}, 0x1, 0x0, 0x0, 0x8001}, 0x20000000) fsetxattr$security_selinux(r1, &(0x7f00000004c0)='security.selinux\x00', &(0x7f0000000500)='system_u:object_r:admin_passwd_exec_t:s0\x00', 0x29, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000280)) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x200000a, 0x50, r1, 0x0) recvmmsg(r1, &(0x7f0000001d00)=[{{&(0x7f00000016c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000019c0)=[{&(0x7f0000001740)=""/220, 0xdc}, {&(0x7f0000001840)=""/79, 0x4f}, {&(0x7f00000018c0)=""/220, 0xdc}], 0x3, 0x0, 0x0, 0x8}, 0x72a5}, {{&(0x7f0000001a00)=@nl=@unspec, 0x80, &(0x7f0000001c40)=[{&(0x7f0000001a80)=""/238, 0xee}, {&(0x7f0000001b80)=""/89, 0x59}, {&(0x7f0000001c00)=""/22, 0x16}], 0x3, &(0x7f0000001c80)=""/105, 0x69, 0x100000001}, 0x4}], 0x2, 0x40000000, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001d80)={{{@in6=@dev, @in=@local}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f0000000540)=0xe8) 10:13:12 executing program 3 (fault-call:2 fault-nth:1): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 284.102809] FAULT_INJECTION: forcing a failure. [ 284.102809] name failslab, interval 1, probability 0, space 0, times 0 [ 284.152321] CPU: 1 PID: 8316 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 284.160763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.170133] Call Trace: [ 284.171659] netlink: 'syz-executor2': attribute type 1 has an invalid length. [ 284.172744] dump_stack+0x244/0x39d [ 284.172771] ? dump_stack_print_info.cold.1+0x20/0x20 [ 284.172790] ? __x64_sys_mount+0xbe/0x150 [ 284.172810] ? do_syscall_64+0x1b9/0x820 [ 284.172835] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 10:13:12 executing program 2: r0 = socket$rds(0x15, 0x5, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000380)=0x3) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$can_raw(0x1d, 0x3, 0x1) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) getresuid(&(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000540)) lstat(&(0x7f0000000580)='./bus\x00', &(0x7f00000005c0)) write$P9_RUNLINKAT(r2, &(0x7f0000000040)={0xffffffffffffffca}, 0x7) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000800)) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000780)='/dev/rtc0\x00', 0x8000, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r4, 0x111, 0x5, 0x3, 0x4) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) write$P9_RREADDIR(r2, &(0x7f0000000480)=ANY=[@ANYBLOB="2a000000290100005378cda52d8c4bbc000000000000000000000000000000000007002e36666d6c6530"], 0x2a) write$P9_RGETATTR(r2, &(0x7f0000000200)={0xa0, 0x19, 0x1}, 0xa0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000900)='9p\x00', 0x0, &(0x7f0000000840)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) umount2(&(0x7f0000000500)='./file0\x00', 0x2) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f4) r5 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000d83ff8), 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000880)='/dev/kvm\x00', 0x81, 0x0) write$P9_RXATTRCREATE(r2, &(0x7f0000000080)={0x7, 0x21, 0x2}, 0x7) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000004c0)={r5, 0x10, &(0x7f00000003c0)={&(0x7f0000000640)=""/195, 0xc3, 0xffffffffffffffff}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000740)=r6, 0x4) r7 = fcntl$getown(r4, 0x9) ptrace$peek(0x3, r7, &(0x7f00000007c0)) 10:13:12 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = accept4(r0, &(0x7f0000000000)=@ax25, &(0x7f0000000080)=0x80, 0x800) bind$bt_sco(r1, &(0x7f0000000100)={0x1f, {0x3, 0xcd6f, 0x3b, 0x7ff, 0x6, 0x7fffffff}}, 0xfffffffffffffeda) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @rand_addr}, 0x10) getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f0000000140), &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000300)=[@in={0x2, 0x4e23, @remote}, @in={0x2, 0x4e21, @rand_addr=0x8}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e23, @loopback}], 0x40) sendto$inet(r0, &(0x7f0000000200), 0xfffffffffffffeb4, 0x2000800e, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback, [0x2]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='lp\x00', 0x3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f000039a000)=[{0x3c}, {0x6}]}, 0x10) socket$inet6(0xa, 0x3, 0x0) ioctl(r1, 0x8912, &(0x7f0000000800)="b2a6aaf800315f85715070494efcf9f2896669c8984ca1ed632d48a50e6864f3bfbff4a21e75e910e489690d280f8738a3d91fdb47dd45c6ee4af3af7672db1162e2124100dc4be4e20405dd9b674efe3f1ea0413a6cdbc049c3c7dc965a89fde951131e0133a2e83f58eb0c878e945a0aef9b") r3 = socket$inet(0x2, 0x3, 0x7d) setsockopt$inet_buf(r3, 0x0, 0x0, &(0x7f0000000500), 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000001c80)={{{@in=@dev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@local}}, &(0x7f0000001d80)=0xe8) setsockopt$inet_mreqn(r0, 0x0, 0x4, &(0x7f0000006ff4)={@empty, @loopback, r4}, 0x1000001cf) connect$inet(r1, &(0x7f0000000240)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10) sendto$inet(r3, &(0x7f00000004c0), 0x0, 0x0, &(0x7f0000002000), 0x10) r5 = socket$inet6(0xa, 0x2000000000080806, 0x1) ioctl(r5, 0x8912, &(0x7f0000000280)="02") r6 = socket$inet6(0xa, 0x4000000000005, 0x7) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000640)) socketpair$inet_udplite(0x2, 0x2, 0x88, &(0x7f0000000480)) sendmsg$nl_xfrm(r7, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="000000010100000100000000ea00000090862a02b39d79000000000000000000000000de9b00001e00d90061d30f49f323a74adf770000a300000000000811000000000000001b43d6f5d0d790faab8858d03ce5ee4ce5410dd44e000000000085ea7de6e7c62e261ce00000000000000000950e84489439a271718644fc9ef6a227db3b776649144960cbe229a98180f47e7a5a7af19cecc4027d277a1f78f054f905b8778387750000000000000000000000000000c25c71ef82df64f102130cbd3df1ab5df4655a7a78282e9e323922d3f2da57da2a3f3a74313c0a0ddb7aa2a47c5513c07c9dde7945dcda338c1cced5cb63a998ba55531dee5aae4562193e8c6c24777f8cd718bcc600e7a8bba10fc2fbfecda3c98b186ac60a0c6439c30a7187be6cb8c1a862b43b"], 0x1}}, 0x0) setsockopt$inet6_group_source_req(r6, 0x29, 0x20000000044, &(0x7f0000000340)={0x4, {{0xa, 0x0, 0x0, @mcast1}}}, 0x108) recvfrom(r0, &(0x7f0000f9cf9b)=""/101, 0x6478c8501c739e53, 0x120, 0x0, 0x4f) getsockopt$inet6_dccp_buf(r1, 0x21, 0xe, &(0x7f0000000200)=""/51, &(0x7f00000005c0)=0x33) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f00000002c0)={r6, 0x0, 0x7, 0x3, 0x3}) shutdown(r0, 0x0) [ 284.190465] netlink: 'syz-executor2': attribute type 1 has an invalid length. [ 284.193173] should_fail.cold.4+0xa/0x17 [ 284.193205] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 284.193242] ? check_preemption_disabled+0x48/0x280 [ 284.193273] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.229614] ? check_preemption_disabled+0x48/0x280 [ 284.234650] ? find_held_lock+0x36/0x1c0 [ 284.238754] ? perf_trace_sched_process_exec+0x860/0x860 [ 284.244237] ? rcu_pm_notify+0xc0/0xc0 [ 284.248150] __should_failslab+0x124/0x180 [ 284.252414] should_failslab+0x9/0x14 [ 284.256247] __kmalloc_track_caller+0x2d1/0x760 [ 284.260955] ? vfs_parse_fs_string+0x1fd/0x2b0 [ 284.265560] ? legacy_parse_monolithic+0xde/0x1e0 [ 284.270419] kmemdup+0x24/0x50 [ 284.273631] legacy_parse_monolithic+0xde/0x1e0 [ 284.278319] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 284.283095] do_mount+0x6e9/0x1d90 [ 284.286658] ? copy_mount_string+0x40/0x40 10:13:12 executing program 5: syz_open_dev$usbmon(&(0x7f0000000780)='/dev/usbmon#\x00', 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x1) write(r1, &(0x7f0000000340), 0x10000014c) openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x44000, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x4, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0)={0x64, 0x0, 0x0, 0x8}, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000200)={0x0, r2+30000000}, &(0x7f0000000380)={&(0x7f00000002c0), 0x8}) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) [ 284.289505] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 284.290912] ? retint_kernel+0x2d/0x2d [ 284.290940] ? copy_mount_options+0x228/0x430 [ 284.290966] ? copy_mount_options+0x239/0x430 [ 284.290994] ? __sanitizer_cov_trace_pc+0x26/0x50 [ 284.326335] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 284.331900] ? copy_mount_options+0x315/0x430 [ 284.336414] ksys_mount+0x12d/0x140 [ 284.340048] __x64_sys_mount+0xbe/0x150 [ 284.344041] do_syscall_64+0x1b9/0x820 [ 284.347931] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 284.353305] ? syscall_return_slowpath+0x5e0/0x5e0 [ 284.358242] ? trace_hardirqs_on_caller+0x310/0x310 [ 284.363263] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 284.368283] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 284.374958] ? __switch_to_asm+0x40/0x70 [ 284.379023] ? __switch_to_asm+0x34/0x70 [ 284.383100] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.387973] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.393172] RIP: 0033:0x457569 [ 284.396377] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.415282] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 284.423011] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 284.430311] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 284.437576] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 284.444847] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 284.452115] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:13 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xffffffff, 0x1) fcntl$dupfd(r0, 0x0, r0) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000540)='/dev/autofs\x00', 0x280, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x80000000003) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r2, 0x401c5504, &(0x7f0000000040)) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xe, 0x4, 0x4, 0x7}, 0x2c) r4 = memfd_create(&(0x7f0000000140)=')\x00', 0x3) r5 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000340)=ANY=[@ANYBLOB="0024ade322740427e7a821b4f04acf9bd1aa35bb4718218e5a080000000000"], &(0x7f00000002c0)=0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xe8) ioctl$sock_inet6_SIOCDIFADDR(r5, 0x8936, &(0x7f0000000280)={@loopback, 0x2c, r6}) setsockopt$inet6_int(r5, 0x29, 0xfb, &(0x7f00000001c0)=0x8, 0x4) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8936, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x3ac, 0x3ef, 0x5, 0x30c, 0x32b, 0x5, 0xe003, 0x33c, 0x2, 0x0, 0xf4, 0x15, 0x8]}, 0x75, r7}) socket$l2tp(0x18, 0x1, 0x1) ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000100)={@local, @empty, @loopback, 0x3, 0x0, 0x1f, 0x0, 0x100000000, 0x1c0270, r7}) ioctl$sock_inet6_udp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000300)) r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x509000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r8, 0x5382, &(0x7f0000000480)) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r9 = socket$inet6_sctp(0xa, 0x1, 0x84) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ffa000/0x3000)=nil) sendto$inet6(r9, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f0000000180)={0x78e0, 0x8, 0xffffffffffffff7a, 0x1000}, 0x8) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000040)={r3, &(0x7f0000000000), &(0x7f000089b000)}, 0x1ec) [ 284.537346] FAULT_INJECTION: forcing a failure. [ 284.537346] name failslab, interval 1, probability 0, space 0, times 0 [ 284.654967] CPU: 0 PID: 8339 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 284.663428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.672803] Call Trace: [ 284.675418] dump_stack+0x244/0x39d [ 284.679078] ? dump_stack_print_info.cold.1+0x20/0x20 [ 284.684307] should_fail.cold.4+0xa/0x17 [ 284.688384] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 284.693656] ? zap_class+0x640/0x640 [ 284.697383] ? __lock_acquire+0x62f/0x4c20 [ 284.701626] ? lock_downgrade+0x900/0x900 [ 284.705783] ? check_preemption_disabled+0x48/0x280 [ 284.710814] ? find_held_lock+0x36/0x1c0 [ 284.714915] ? expand_files.part.8+0x571/0x9a0 [ 284.719512] ? perf_trace_sched_process_exec+0x860/0x860 [ 284.724971] ? find_held_lock+0x36/0x1c0 [ 284.729048] __should_failslab+0x124/0x180 [ 284.733295] should_failslab+0x9/0x14 [ 284.737109] kmem_cache_alloc+0x2be/0x730 [ 284.741273] ? shmem_destroy_callback+0xc0/0xc0 [ 284.745956] shmem_alloc_inode+0x1b/0x40 [ 284.750031] alloc_inode+0x63/0x190 [ 284.753672] new_inode_pseudo+0x71/0x1a0 [ 284.757739] ? prune_icache_sb+0x1c0/0x1c0 [ 284.761988] ? _raw_spin_unlock+0x2c/0x50 [ 284.766152] new_inode+0x1c/0x40 [ 284.769541] shmem_get_inode+0xf1/0x920 [ 284.773529] ? shmem_encode_fh+0x340/0x340 [ 284.777784] ? lock_downgrade+0x900/0x900 [ 284.781949] ? lock_release+0xa10/0xa10 [ 284.785934] ? perf_trace_sched_process_exec+0x860/0x860 [ 284.791393] ? usercopy_warn+0x110/0x110 [ 284.795484] __shmem_file_setup.part.50+0x83/0x2a0 [ 284.800431] shmem_file_setup+0x65/0x90 [ 284.804424] __x64_sys_memfd_create+0x2af/0x4f0 [ 284.809110] ? memfd_fcntl+0x1910/0x1910 [ 284.813216] do_syscall_64+0x1b9/0x820 [ 284.817115] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 284.822506] ? syscall_return_slowpath+0x5e0/0x5e0 [ 284.827442] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.832307] ? trace_hardirqs_on_caller+0x310/0x310 [ 284.837333] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 284.842362] ? prepare_exit_to_usermode+0x291/0x3b0 [ 284.847394] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 284.852264] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.857462] RIP: 0033:0x457569 [ 284.860667] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.879572] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 284.887290] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000457569 [ 284.894576] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc78a [ 284.901854] RBP: 000000000072bf00 R08: 0000000000100020 R09: 00000000fbad8001 [ 284.909150] R10: 0000000020000100 R11: 0000000000000246 R12: 00007f93afa656d4 [ 284.916462] R13: 00000000004c4a1e R14: 00000000004d7d88 R15: 0000000000000003 10:13:13 executing program 3 (fault-call:2 fault-nth:2): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:13 executing program 1 (fault-call:1 fault-nth:14): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 285.105557] hfsplus: unable to find HFS+ superblock 10:13:13 executing program 0: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x2001, 0x0) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f00000000c0)={0x0, 0x401}) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x101000, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000040)=ANY=[@ANYBLOB="0008000014000002000800002a000000810000000800000005000020"]) 10:13:13 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x7, 0x0, 0x4, 0x440, 0x4, 0x1}, 0x2c) [ 285.169676] FAULT_INJECTION: forcing a failure. [ 285.169676] name failslab, interval 1, probability 0, space 0, times 0 [ 285.241321] FAULT_INJECTION: forcing a failure. [ 285.241321] name failslab, interval 1, probability 0, space 0, times 0 [ 285.269719] CPU: 1 PID: 8371 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 285.278151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.287528] Call Trace: 10:13:13 executing program 2: r0 = accept4$unix(0xffffffffffffff9c, &(0x7f0000000540), &(0x7f0000000100)=0x6e, 0x80800) signalfd4(r0, &(0x7f0000000200)={0x401}, 0x8, 0x0) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000000c0)={'bcsf0\x00', {0x2, 0x4e24, @remote}}) restart_syscall() prctl$getname(0x10, &(0x7f0000000480)=""/184) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x20000, 0x0) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000140)='ns/mnt\x00') getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000700)={{{@in6=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@local}}, &(0x7f00000006c0)=0xffffffffffffffbc) fstat(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000440)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = getegid() stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000680), &(0x7f0000000880)=0xc) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000a40)) r8 = getgid() stat(&(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f0000000980)={{}, {0x1, 0x3}, [{0x2, 0x2, r3}, {0x2, 0x0, r3}, {0x2, 0x5, r3}, {0x2, 0x4, r3}, {0x2, 0x2}, {0x2, 0x2, r3}, {0x2, 0x2, r3}], {0x4, 0x4}, [{0x8, 0x3}, {0x8, 0x1, r4}, {0x8, 0x1, r5}, {0x8, 0x5, r6}, {0x8, 0x1, r7}, {0x8, 0x0, r8}, {0x8, 0x0, r9}]}, 0x94, 0x2) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000a80)={{{@in=@multicast2, @in=@rand_addr}}, {{@in=@loopback}, 0x0, @in=@rand_addr}}, &(0x7f0000000b80)=0xe8) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write(r2, &(0x7f0000000280)="cf809a4d3835128549ae974a22a6814122ce65ce2fc34e56a42716835bf43870ec4ee179e2ad4bd9836c8974b9c6b9bbfa0c6d74db00a01906571061dc678ff957b5d29557013aa4fc48d7c3e86d7f5623f1892c86738e0c72cc7965cd24e3ec3fecf7d4254d764affd6c2d05f7df6fdb33fbb3852dfadbcd86e3b5b7e71ec2b5d3e01c2dcebe233e5b74533138dc57bc7585990d5f439f82e6f0d5764501c1763f040b2d353471d4b35e57284cdc9e445cd734b4bb8b5509a8fd131c72855b0251296629c133acb07e73bcbfbe56ae42f5ea2b75197551c659da976682bf08e91d6fe6ce1abc26c", 0xe8) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000bc0)=@filter={'filter\x00', 0xe, 0x4, 0x4c8, 0x278, 0x0, 0x0, 0x0, 0x128, 0x430, 0x430, 0x430, 0x430, 0x430, 0x4, &(0x7f0000000080), {[{{@ip={@remote, @rand_addr=0x3, 0xffffffff, 0xffffff00, 'bond_slave_0\x00', 'vcan0\x00', {0xff}, {0xff}, 0x33, 0x1, 0x4}, 0x0, 0xe0, 0x128, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@icmp={0x28, 'icmp\x00', 0x0, {0xd, 0x5, 0x8, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4, 'nr0\x00'}}}, {{@ip={@multicast2, @loopback, 0xffffffff, 0xff000000, 'eql\x00', 'tunl0\x00', {0xff}, {0xff}, 0xdf, 0x0, 0x2}, 0x0, 0xf0, 0x150, 0x0, {}, [@common=@inet=@udplite={0x30, 'udplite\x00', 0x0, {0x4e22, 0x4e21, 0x4e22, 0x4e23, 0x3}}, @common=@icmp={0x28, 'icmp\x00', 0x0, {0x4, 0x5, 0x80000000}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @dev={[], 0xa}, 0x0, 0x8, [0x10, 0x33, 0x19, 0x30, 0x33, 0xf, 0x3e, 0x29, 0x13, 0x2b, 0x3a, 0x1c, 0x26, 0xa, 0x35, 0x3e], 0x1, 0x1, 0x80000001}}}, {{@ip={@empty, @rand_addr=0x8, 0xffffffff, 0xff000000, 'yam0\x00', 'veth0_to_bridge\x00', {0xff}, {}, 0x2f, 0x3, 0x3}, 0x0, 0x190, 0x1b8, 0x0, {}, [@common=@unspec=@conntrack2={0xc0, 'conntrack\x00', 0x2, {{@ipv6=@mcast1, [0xff000000, 0xff0000ff, 0xffffffff, 0xff], @ipv6=@local, [0x0, 0xffffff00, 0xff000000, 0xffffff00], @ipv6=@loopback, [0xffffffff, 0xffffff00, 0xffffff00, 0xff000000], @ipv4=@dev={0xac, 0x14, 0x14, 0x17}, [0xff000000, 0xff000000, 0xffffffff, 0xffffff00], 0x76, 0x679f6eb, 0x6, 0x4e21, 0x4e22, 0x4e23, 0x4e21, 0x1000}, 0x141, 0x50}}, @common=@unspec=@statistic={0x38, 'statistic\x00', 0x0, {0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x7, 0x50}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x528) clone(0x10062101, &(0x7f0000000180), &(0x7f0000000240), &(0x7f0000000000), &(0x7f0000000200)) [ 285.290139] dump_stack+0x244/0x39d [ 285.293794] ? dump_stack_print_info.cold.1+0x20/0x20 [ 285.299017] should_fail.cold.4+0xa/0x17 [ 285.303104] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 285.308228] ? __kernel_text_address+0xd/0x40 [ 285.312749] ? unwind_get_return_address+0x61/0xa0 [ 285.317761] ? find_held_lock+0x36/0x1c0 [ 285.321842] ? iommu_area_alloc+0x68/0x120 [ 285.326103] ? perf_trace_sched_process_exec+0x860/0x860 [ 285.331573] __should_failslab+0x124/0x180 [ 285.335839] should_failslab+0x9/0x14 [ 285.339651] kmem_cache_alloc+0x2be/0x730 [ 285.343818] ? mpol_shared_policy_init+0x235/0x650 [ 285.348758] ? current_time+0x72/0x1b0 [ 285.352701] __d_alloc+0xc8/0xb90 [ 285.356192] ? shrink_dcache_for_umount+0x2b0/0x2b0 [ 285.361226] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 285.366321] ? ktime_get_coarse_real_ts64+0x22e/0x370 [ 285.371542] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.377084] ? timespec64_trunc+0xea/0x180 [ 285.381328] ? inode_init_owner+0x340/0x340 [ 285.385662] ? _raw_spin_unlock+0x2c/0x50 [ 285.389819] ? current_time+0x10b/0x1b0 [ 285.393803] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.399357] ? __lockdep_init_map+0x105/0x590 [ 285.403873] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 285.409424] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 285.414984] d_alloc_pseudo+0x1d/0x30 [ 285.418801] alloc_file_pseudo+0x158/0x3f0 [ 285.423047] ? alloc_file+0x4d0/0x4d0 [ 285.426854] ? usercopy_warn+0x110/0x110 [ 285.430945] __shmem_file_setup.part.50+0x110/0x2a0 [ 285.435985] shmem_file_setup+0x65/0x90 [ 285.439997] __x64_sys_memfd_create+0x2af/0x4f0 [ 285.444678] ? memfd_fcntl+0x1910/0x1910 [ 285.448761] do_syscall_64+0x1b9/0x820 [ 285.452673] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 285.458051] ? syscall_return_slowpath+0x5e0/0x5e0 [ 285.462992] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.467848] ? trace_hardirqs_on_caller+0x310/0x310 [ 285.472917] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 285.477968] ? prepare_exit_to_usermode+0x291/0x3b0 [ 285.483013] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.487877] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.493067] RIP: 0033:0x457569 [ 285.496277] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.515195] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 285.522911] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000457569 [ 285.530178] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc78a [ 285.537466] RBP: 000000000072bf00 R08: 0000000000100020 R09: 00000000fbad8001 [ 285.544762] R10: 0000000020000100 R11: 0000000000000246 R12: 00007f93afa656d4 [ 285.552033] R13: 00000000004c4a1e R14: 00000000004d7d88 R15: 0000000000000003 [ 285.559328] CPU: 0 PID: 8364 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 285.567742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.577090] Call Trace: [ 285.577123] dump_stack+0x244/0x39d [ 285.577157] ? dump_stack_print_info.cold.1+0x20/0x20 [ 285.577177] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.577234] should_fail.cold.4+0xa/0x17 [ 285.598434] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 285.603569] ? zap_class+0x640/0x640 [ 285.607321] ? find_held_lock+0x36/0x1c0 [ 285.611396] ? __lock_is_held+0xb5/0x140 [ 285.615478] ? __lockdep_init_map+0x105/0x590 [ 285.619977] ? perf_trace_sched_process_exec+0x860/0x860 [ 285.625434] ? lockdep_init_map+0x9/0x10 [ 285.629509] __should_failslab+0x124/0x180 [ 285.633761] should_failslab+0x9/0x14 [ 285.637562] __kmalloc+0x2e0/0x760 [ 285.641108] ? __init_waitqueue_head+0x9e/0x150 [ 285.645780] ? init_wait_entry+0x1c0/0x1c0 [ 285.650017] ? prealloc_shrinker+0x172/0x340 [ 285.654430] prealloc_shrinker+0x172/0x340 [ 285.658672] alloc_super+0x8db/0xb40 [ 285.662396] ? destroy_unused_super.part.10+0x110/0x110 [ 285.667761] ? sget_userns+0x17c/0x850 [ 285.671659] ? lock_downgrade+0x900/0x900 [ 285.675827] ? kasan_check_read+0x11/0x20 [ 285.679975] ? do_raw_spin_trylock+0x270/0x270 [ 285.684573] ? security_capable+0x99/0xc0 [ 285.688730] sget_userns+0x278/0x850 [ 285.692469] ? get_anon_bdev+0xc0/0xc0 [ 285.696366] ? vfs_get_super+0x270/0x270 [ 285.700461] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 285.706038] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.711581] ? ns_capable_common+0x13f/0x170 [ 285.716000] ? get_anon_bdev+0xc0/0xc0 [ 285.719904] sget+0x10b/0x150 [ 285.723086] ? autofs_get_inode+0x3e0/0x3e0 [ 285.727415] mount_nodev+0x38/0x120 [ 285.731052] ? ubifs_init_security+0xf0/0xf0 [ 285.735479] autofs_mount+0x34/0x40 [ 285.739130] legacy_get_tree+0x131/0x460 [ 285.743213] vfs_get_tree+0x1cb/0x5c0 [ 285.747018] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 285.751783] do_mount+0x70c/0x1d90 [ 285.755330] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 285.760876] ? copy_mount_string+0x40/0x40 [ 285.765119] ? copy_mount_options+0x5f/0x430 [ 285.769538] ? kmem_cache_alloc_trace+0x353/0x750 [ 285.774401] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 285.779952] ? _copy_from_user+0xdf/0x150 [ 285.784109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 285.789648] ? copy_mount_options+0x315/0x430 [ 285.794149] ksys_mount+0x12d/0x140 [ 285.797780] __x64_sys_mount+0xbe/0x150 [ 285.801765] do_syscall_64+0x1b9/0x820 [ 285.805659] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 285.811066] ? syscall_return_slowpath+0x5e0/0x5e0 [ 285.816002] ? trace_hardirqs_on_caller+0x310/0x310 [ 285.821022] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 285.826042] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 285.832734] ? __switch_to_asm+0x40/0x70 [ 285.836796] ? __switch_to_asm+0x34/0x70 [ 285.840866] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 285.845723] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.850913] RIP: 0033:0x457569 [ 285.854109] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.873030] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 285.880750] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 10:13:14 executing program 0: r0 = dup2(0xffffffffffffffff, 0xffffffffffffff9c) fcntl$setstatus(r0, 0x4, 0x4000) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, &(0x7f0000000280)}}], 0x1, 0x0, &(0x7f0000003280)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, 'net/icmp\x00'}, {0x20, ']'}, {0x20, 'net/icmp\x00'}, {}, {0x20, 'wlan1em1cgroup[@@posix_acl_access'}], 0xa, "c1f224136a23af3d2c75b3bbe729a5dfa859ec1ae7ed05ce08b6019803898dbe8498eed87b9efc330e16eae8db61c6b94631e5bfbb90a43674af727d2200e67fd3e3972881c303de9753f3ae191b7552aa4919e4ae18073c7393f5e835f1537a467ebe45db106b4e19fab38ae01fb8e50bb3b47148649c0bd6ea715983"}, 0xc1) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/icmp\x00') preadv(r1, &(0x7f00000017c0), 0x1a1, 0x0) [ 285.888018] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 285.895286] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 285.902553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 285.909825] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 10:13:14 executing program 5: userfaultfd(0x0) socket(0x0, 0x0, 0x0) socket$inet6(0xa, 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000640)) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000006c0)={@rand_addr, @remote}, &(0x7f0000000500)=0xffffffffffffff94) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='fuse\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2ce7726f75705f69641d", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x29, 0x4, 0x0, {0x1, 0x0, 0x1, 0x0, [0x0]}}, 0x29) getsockopt$inet_dccp_int(0xffffffffffffffff, 0x21, 0x0, &(0x7f0000000440), &(0x7f0000000480)=0x4) sendto$inet6(0xffffffffffffffff, &(0x7f00000007c0), 0x0, 0x0, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$TIOCGETD(0xffffffffffffffff, 0x5424, &(0x7f0000000400)) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000240), &(0x7f00000003c0)=0x4) syz_open_procfs(0x0, &(0x7f0000000780)='environ\x00') 10:13:14 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0xfffffffffffffff9, 0xc00) setsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000100)=0xd09, 0x2) r2 = socket(0x19, 0x5, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0x5) setregid(r4, r4) setreuid(0x0, r3) capset(&(0x7f0000000280)={0x19980330}, &(0x7f0000001fe8)={0x20000fffffffc, 0xffffffffffffffff}) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0xa000, 0x0) epoll_wait(r5, &(0x7f0000000080)=[{}, {}, {}], 0x3, 0xffffffff) ioctl$DRM_IOCTL_AGP_ALLOC(r5, 0xc0206434, &(0x7f0000000140)={0x100000000, 0x0, 0x1, 0x2}) ioctl$DRM_IOCTL_SG_FREE(r5, 0x40106439, &(0x7f0000000180)={0xffffffff, r6}) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) 10:13:14 executing program 3 (fault-call:2 fault-nth:3): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 286.103707] FAULT_INJECTION: forcing a failure. [ 286.103707] name failslab, interval 1, probability 0, space 0, times 0 [ 286.134854] CPU: 0 PID: 8398 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 286.143309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.152672] Call Trace: [ 286.155280] dump_stack+0x244/0x39d [ 286.158950] ? dump_stack_print_info.cold.1+0x20/0x20 [ 286.164167] ? __save_stack_trace+0x8d/0xf0 [ 286.168522] should_fail.cold.4+0xa/0x17 [ 286.172614] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 286.172825] capability: warning: `syz-executor4' uses 32-bit capabilities (legacy support in use) [ 286.177731] ? save_stack+0x43/0xd0 [ 286.177744] ? kasan_kmalloc+0xc7/0xe0 [ 286.177771] ? percpu_ref_put_many+0x11c/0x260 [ 286.198950] ? zap_class+0x640/0x640 [ 286.202687] ? find_held_lock+0x36/0x1c0 [ 286.206788] ? perf_trace_sched_process_exec+0x860/0x860 [ 286.212252] ? lock_downgrade+0x900/0x900 [ 286.216432] __should_failslab+0x124/0x180 [ 286.220689] should_failslab+0x9/0x14 [ 286.224502] kmem_cache_alloc+0x2be/0x730 [ 286.228679] ? d_set_d_op+0x31d/0x410 [ 286.232503] __alloc_file+0xa8/0x470 [ 286.236235] ? file_free_rcu+0xd0/0xd0 [ 286.240140] ? d_instantiate+0x79/0xa0 [ 286.244043] ? lock_downgrade+0x900/0x900 [ 286.248219] ? kasan_check_read+0x11/0x20 [ 286.252379] ? do_raw_spin_unlock+0xa7/0x330 [ 286.256799] ? do_raw_spin_trylock+0x270/0x270 [ 286.261402] alloc_empty_file+0x72/0x170 [ 286.265487] alloc_file+0x5e/0x4d0 [ 286.269040] ? _raw_spin_unlock+0x2c/0x50 [ 286.273217] alloc_file_pseudo+0x261/0x3f0 [ 286.277496] ? alloc_file+0x4d0/0x4d0 [ 286.281338] ? usercopy_warn+0x110/0x110 [ 286.285426] __shmem_file_setup.part.50+0x110/0x2a0 [ 286.290477] shmem_file_setup+0x65/0x90 [ 286.294475] __x64_sys_memfd_create+0x2af/0x4f0 [ 286.299153] ? memfd_fcntl+0x1910/0x1910 [ 286.303249] do_syscall_64+0x1b9/0x820 [ 286.307152] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 286.312553] ? syscall_return_slowpath+0x5e0/0x5e0 [ 286.317523] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.322377] ? trace_hardirqs_on_caller+0x310/0x310 [ 286.327395] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 286.332418] ? prepare_exit_to_usermode+0x291/0x3b0 [ 286.337446] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.342307] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.347498] RIP: 0033:0x457569 [ 286.350707] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.369620] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 286.377329] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000457569 [ 286.384594] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc78a [ 286.391873] RBP: 000000000072bf00 R08: 0000000000100020 R09: 00000000fbad8001 10:13:14 executing program 2: r0 = socket$inet6(0xa, 0x80003, 0x800000000000006) getpeername(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, &(0x7f0000000080)=0x80) ioctl(r0, 0x8912, &(0x7f0000000400)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000002000)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) setsockopt$inet_mreqsrc(r1, 0x0, 0x2000000000000004, &(0x7f0000013ff4)={@remote, @rand_addr}, 0x6) ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f00000000c0)={0x100, 0x9, 0x2, 0x75, 0x3, 0x1}) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0x15, &(0x7f0000000180)={@in6={{0xa, 0x0, 0x0, @mcast2}}, 0x0, 0x0, 0x0, "d53ab01df283e4d56fa56f6de7dfc37ae6bf3465656cb58ce6e1f8c9b407690d338413dad7cff42af4f36ead5fe7e28094c1e091133b38330b7922474e1a3d7d55a71fa8a4ae7991eee0d46449b4dfe3"}, 0xd8) close(r1) socket$inet6(0xa, 0x1000000000002, 0x0) dup3(r1, r2, 0x0) 10:13:15 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x100000003, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0}) recvmmsg(r0, &(0x7f0000001cc0), 0x4000000000002c0, 0x10102, &(0x7f0000001540)={r1}) socketpair$inet_sctp(0x2, 0xfffffffffffffffd, 0x84, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000280)={{{@in=@multicast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast2}}, &(0x7f0000000140)=0xe8) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f00000049c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="2857e30f9d4bc92ba1eb26c1ae741dad412bb6b3e7b4fb84a37ca3d78b213e764c53eb4bc3cba412cbfdd6fb4ecc4145d38d353cddcc0a1ba1e8203688f5869cf31f43756d5041a7ef11c34d9188b13d14cdb04a55eba1c4fced3d117b6abb202afeb93392aedd77cc489fc3589a99ee27223e49eb2436ac3bd06fffdf623be7755f2920bd6aac497a83467c8dc6c670e47569cff0f8b9d5dd62766fdb9673599520e0cc605d8e52dd8215daa05199d96b902ff75d1be5e41a97d968572238877b5cae471d534d35e8583ecfbc1ab3403e85bd3883a51b1790671336d4a19b447cbc92cce764582f69af873a5be564d34bf7c3c1afaddd8c142fb69f4f3502dc18fee41e177fdaa8031ae679f890342dcd81f6cfdf8cae555131e217faba2205fc75e83bc79d9ff122bc47d2a202eb6e6cbe23332e8fb26dd3fde2f8e54d991e6e403d1ea0b64acba9edd6f5795fbaceb6f87ffe72ba0949f557b9f8ee62a6d405c4a0dc7c5fbb24a37a36ca57ffa37823d5f168f545927aa2bca6ead5bc87ef76007ce7eca2223413ec96033de8db9b8baae97de3071db739af760bac9110bb2682cdec804a4f4b803aeae2f8039583c682e9a1597e05bd1cde6aa9d5a0cfb1ba0580dae5fceaf0cb299a968d8b20e3960c002b006401000000000000041071000f9dfb9bea63bded474b26f98c5346e1a90c9a047e46d7d01835c8ee6636468ad106bc0f1db103fbca80c8411a4455c699a0b61fe0ebce6bb25bf4f43416bc3b88dc99a48fe0f2d8778b8df36d4304f87b7d95752523de973babaca86ae478ac3904143c06b041d981ca1ed143c96b02c1aba05de0caf7697467391a195abbb9bf2480f90393afc4b8ac17abeaef3cee7a1bdc58c8644411d3bf7549db26b288920b17e89d1e7597a9d0060bda79aa391d427bbcacca758fcff44e7c2755027db280236f0bfdfbb50a6bab39a4158bb173fb92ca8964b1189eab4400a8f2c0c5055ef5d6efd9c45e25d74189c4b74a17da4e06a42912fd594877a43719ff91bc9b052f63427df92cb4641d9edaa1ca9103627a7db1c4030f8721b6b62984b062c68d2731dee69efa08a0b0249cad5399d707ef154eec6e1dae0bbe4dfe52c8fbe2b0311e3217bf6f07f7d8b08701fe2094b746492bca3cd83d4bd684b76c9283ba2b2b73013a5294368ae0af8482e35dca5083eee50acb27527a5b52fe114b61d1a0384fb331fcda806e225b2015cfa3f587c220ea2650f6975baf021957ad5f22a8aa8fc59b61260ab90c0f674a67f0a732c262b3460b4c8d232fc0da91712a378ffd8405a2222f88be57f4502c1aa3592fe0df93ae773280626b4fb1c7eb93c2ceecfbc0cef72bba5a512ed5657aaf3b06dadcc291fcf871126e45c6ac93e5a2853784873030b493f7eeafe4ab104de31ed21ce48dcc45adee4e0096dd364d57864c1cd62fc9c12c658b608bc953621ccc0d0116dbd18fc6323b47b249db5825f7ea8584e16f76dd70bbeeefc235f74de37d3f3cc857c9f785f1ad1abb750ebd8f5330ace8b78324634563d8fe4d3b905430a9bad90b6bcaff7946e5ca0cb4638760a0a0e90696a81bbc759754d8e40288bf183a819dae3675635672dc51587f8e2b5100ddffc782244f1c461e5029ddb81dd0b2a3339dd1b76276f4e0f6a1f4bb6fc912f5208d16abf5738a459432d5d8edde4efc0b9796c1d9704e0be6dac8da28e472437230de980d553fedb666af9f27b45f05e0cbea30a42c5588ed0cbb52ee78fa3729a5c8781e48bf71e5b0281e41e44ffcc0ffa8e1741505e628c3ce068dde19df42d7b05928f215218faa49ea50d5818848686c706634524b8e59c011a2fcdada39f76608bb00fefc60b5a62c9b1498823ab7ee81a7d5ee807fd1fc7d46c0bc36f50b2d1423cb4ee44c7870380c05f5b0f83ea5da196ee7896014c9b7850e9059d3140c7a2415f43963e3bb529caf8d0f06b4a16668bac85f4fba9534a7f12ff9f0a4a60e26ea5770fde510c6d7561b3db63c1358a90789d9a20a55082b1f0a05386927b266e7f9d73dc1f278aa55d3de1c730872fdf484d5a766d30e28a0104ad68c05b81df9861eafdc618bfa130ac23a0a8c8d9a27aded4dd80f5a2eed50c12beb85f7400b77bd78953f7db4a2bf0683b6c9f838f8d9319b1d3f26a34686712b48beffd5c5411f8982f2aee6218c9112c33a1ca8d9ba01b5527935e511a478b403c2be9f3c99cdfbc95f9bee658ed6d3ab09d44d81ac92e2033bdeb02345c836cdafdc318c80ffce62efcf992b4d897ba2fa7c14baa98532a4febc55e335be7124a4313ba5383aeb7ce0d6b99ce961e8994647c2d65fd09189dba6d82190fc86e4255d55577dfd569d9e1273e4b986c3e82997bb40a6cd7ebb7464f6843fd3c1daa059bc8205d714335f85b2e5f916710269a1f84cb1068ca14852194b3eda74c58ec4e795485dbaaaee92266221adf90c01690f8fd6d7772f6a8ddcfbf1098abc2fdbaae146fd162a912d2ae190835ffda2e76d34ec6d5e6d50ae46c797df949a62be6cc33e6d6371f62c04f2429208c20a977024d127f9525c1a935964ffc2f15b4771e8c7706764f1a0ea451684439e3367ebf5c587dab71c4d13e99db87c9c23281d0df292420b227cc2002005c8dfaf24f23772a8c29d697cadb30a90612cfc226f2adb392f7b8e4f92d66c7d26de950a658df0c694ab8e82d3937723594fa10147c1d2c08538b577ba70a3cbb47466cd3244d8fdcf531ae5d2301bae91f1fd4d630a25f245eff48169eb35371166b5bac7a40b66ebddebe594423ecd2a7d7d8db7ed8515e947f4e402a65b458e162bf67faff498184fdf9684555c1251a01b27546700d4bd87f542e3f838a7469e15d9e234bbe8076c33bc4d35e6c9ed87af09ce670c2a2e50e6fb041aa6b4529c0d60b3f199e6d3377f1ecc143c191e0e7b2790f64380035bdd572e9d1b9e0a4e7ef66f1ed5144976bf208d3b07426fc896747262b23d1c1934d1efd2ef216e46945c21f73e8eb08131c5c249714b4e86de85e93457fc2ab54b509e3a451d539b48a5fb2a2c918ba8b17461364f2081e99c3447ff5bec90f3467ce7616a4acf6323ef83f453b5c3c016659bff39d99963519859b344a75fbe23b41020ba96518c6e12070c8f579744ab49659eaaa75cb597f05fffdff6e2ccb4a4817da4276670c53f6316bd179fc5edcc0693a3e129b474814efdad4b36b662537a3ddc20fa7b37d767fa347e8f32ececc723ccf982e6f7d15be70cd01c67f1e5a2464b58cb5628a856806d98cb76a3ff4642f41a79e061f4f5fc4e5391c2c9a581edc236251f788ab767cebaaf6ee8ba521fa7a65b392929d7b51ceb3edaa4e9021ebf663f12b004a85fcf11ab6dc87b9986b183bbd005011f5f65a2ffa7ae36b705db7a0e591d4fa9bb5b514f87d0dfa9023a070eaee3ba8dc29b94f67d489cb978bb93bfb55087290c8735a3ad405a658419e7e6f28b40fc758795c0e63dd965bb0501b8488843cfcc5b0744c93bd1681bb01bc34eaede3de245bed325943e20d11cd185f1c0fd7e50c673a2714f8738f8a1fe7608720d0135d6434f543da83da95f57559081a6c626fa7c9f519b358395ec6e12f7c89be18ded7a6d84b356d7fd5bdd6037a0bf76664ef8ae074c8528e11376d548e3df95db9657e0bf5ba5a6a1878330a5d7e0a3ea9466a370594dfbdeff13d74147cdf2b73b8c42a5b1ccb38bc6ed4470120c5e939e24577297f11fe8e7acedef1c7e6bb489fe619169cc963f3b0420c931b8f2b84639d97fc57a4af41efa898981ae46ed3c5fac2cdefe7cc4a144558da452d962d6e40bb59ed6d7c0ba2b5c5529c3e9dc4aa34fd87e302c55a5882d7b4eac383b033817f2ab0022d707548797cd727727c986bc9019d90bad3803b60bf3aa086974d1678499f5756ff19dbb212607fcd93c5666e8ed36e9a343706199f8f50154eb9a0466b9d9a77683f8bba728db5a0acd5a3ac205ab553d2c3efa810acfa771e484bf19ce19f582a4b793f72700be555d30c462acce03cd087ae69b8846f553f3351dce8c62394a83b038a52725dd5035cb1d05c3d38bd7fefa8f0f18afc82636cbbe2e9179ef7f8448d43b426ef46a63ba8b495839376b41b303169772ffd84d54750591af0f8b5ab4e581bd26b4410cd8fba32447680c2b441a0214381515a7ecce95e6301d246afc7d7fb67c08f54e15bfaf9fa0f59627fa3e0c59d223b8edf511185318b7ded96159327c6e0c9ddd03dfc5286305fe5215ada5e7772dd378180d8d6fc3dc45b446b299c6806ca3fe6a4eb020536e3102b0530ca95013830fe004a74353bb038a2963ecdaf56b89eaac80413f1f94ac773c4144ebf8a7b611112476936dc60658ef8ca85f47b2ed2fb8aa5358eeea11542aa953f4a65085c8ffa113eae4c7a4cb7e8358a8897ccc9743895b76c90b98a1d940ba4ced4bd8ccd41cb83b4769784611f257aafa3cb5a1a44f728469764a5de58075fab8d4426211c2d8cf801a4ae116fce7f52d4e96302d14d1ab3851960f8b59bc61611049a8af4854f120256820028661cf06ef51a1ea9180619abbe411af6d908c150fa619a68857a0be89dc4315e95a8bc587acb74f867ae5ea57f2e2f92b8aeb6f2753d6b782a53f735724f8dc9f2e532d6469332544ec8bec877e8a0ad357eb9fe24388091fed86f814295c5e067cd0922c5e275fb883d76fa8618cb7a5b29912306ec1019e2c4261f79c00ffd40fb6621f703ccda23d509f1bff0a0ffb7f5267b126be973c4349cd5edcaf0f4ccf5bf1808ddc2ee88f4ad4870b152c187b4eaade67669ca943341d408f915d806995a6f7193207972264918595b64092fc26526b203a60be1d8b7aec1b02f0dca875b90d317327736ea7d24d22c5c7b1852eeb8142cb4dfba133e482d547473081e13fb14614c5b50c287cf82462b0119f10972d261c5f1823f95019402ce5eaaffe807f7361a5efe091d729ca90472b81cd8a9dd4012c55172af475b1a6c77ae8b19fb0332bd15aa7eca880826912deb36768420c5602ba2b1ca910f27b078a8ad3f495315948b8be8d7b8e3b249a6b5f4ef34b1a5339770b9b8e4e81c3e5ea2220a6af0e72a0c6c78f475f4ab2ada4bb87e43697894a5b11002ce5cf45bca8c200bf0aaf910d475d96b7fe608d021cf5206f748f6de0d52be206d711347819f370b933c813e7dde963c9c9b7ccd2a16b613d5c092b567e2a8f2b97dd8543e9f144d93f9bd8e4b3160b768b4045ab44d14ec63ed630153a5e536e7719a148205a0eaab7188555a8726a3f7c24ae88017c6e2d177e1a307ef15391f53e355507bb994c4dceca6bd29d8c709b7625ad5ae568d3c3e284247dbe60ab220ae18c2e20ae1b20cd0216fd004f7c8a843c0084dc49c1e858e374264bc71210a184ef74aeba56b9e3f6e7821bc5d88d22a2e898169fe39aafd7e29f587d1658d2500df5f624d5a0026ad9b35cf5f380317bee70d59147f986c5f445063be66c572651dcf8e8ec4e6abdce36e6fd88ab6fda19139462e30393b8b1facd55abe15bbf937fec884dcd9cef2563ad9b8b6764c9da2ab306a128f4c9b2131f4a5b65c9b7a0e257ce81ae99d7cd94cecaab2aa1ed81c33c58f5fffe321528fce369523b4f917b9fc2ce541a0519a48432db798c46b9c36f04ed121eb42f99dd8faace0e812ef1972266474a86b152e382d927ac7ec8512e0e056d872e88895d17788c9d670255d09f76053609f8932490aecee7d292115d0c305eec1bfdb730e5d251d1cc6d81661cfb08fd1e99804fc8c0367351968e8445e77dd6430f0a7c6cdf18ba078d9896971e56fc54c6c23030a6e0e9197b8fc381c2aaa22ec0f1de506ba527f9f5d72175427b24571f9c32aebc69d56a050543612bf8a46c77f9538f0e7b267764a3e788f7145ddb70708849e4e605f62bf3cee0d36820d56631fe3be90d2b49b3fc4b59b6af9a95907aa267aaa517775c5b693b041937e432de95fbb07a705d9543c3fb63a4910c7972bfb4e2cae03e6b879b0e375ec1fbdb44878b0aecae0460ad342837b526059218fda659629ae0229a53d47f6f72a004dce20e19b7adef68b995074da1466be19e95d4a3b8d149abd3a397dd4c364c4356e69308c87030f3ec2008c348e341c370226f62f6ff59cde9f0943479222d9c8ad4e1befe6cc8595228d192b5474115ad97ed07563e676272016a5b00da21d18523dc53b1c176489c3edfa290acb82cc1415bdaf0e2287dd220e35e9b5e997e6b6444be5deec5deb3bf9a1b0eef8bef92bf2c1d301d0e0f7b42ca23a6eb3f7ac9ed9ea2b63713ec2117a381d6d2fa89c227f2bc1b881aba898e92533c758fda96b588d302cc6953544456896fd6051b18dc1da6205589712aa5a7fff65c420747c86a953d8a73be580fe8dcd34de75e88df13f26eb6892f13b3d6502c7ed918b2631a3bc37a68d48218464035d3a78d39bba42eb2a4128a074cd35c93de82ff27df0863c44b9572ebf8524ff1c888c10d940e29f463f00d1ae1fd12dba0ffcd3e70772e4b640b56db7e00d4807f0cad086a7d341a87602e3f19e4cfcb72c50f79a4bd40bc3311776f920ad2b4f616d2aa3b845487a5a86e3d8eabaa705ca613adacbc4fa9e4ef1bec5bb9f819cd34247b32af845463f8a617f151ff966bfe9e45d837aaa7a613612020fab201abfa947f8bd0b3a2afa3da4d230593ec68139297e3147ef1dcfed10e7894952b0d4471f1a96cd16e97b56f4f2edb4dff6ea8ea99cc97ba2d58b29dbb5cd2cdb28f91ac509a34b5668c38e350fda8b4195dc3c9201eb769857a6d6986ebc10f53ba1a0dfe239a76962db66deebafc781fcacf5708aa193a7276a0762f99594dcf529265c9071e74eb605acdd1adf32d93785392aebb996ed6298b28c341e7902bd8475930d9519ac89e398ac54e1f04b1628e2664b65ae5eeaf8faecf8685c56e604768c84aed681460caefc4a5de4d299a891e9a1a6b7841a8ad6cb720d06f1a93cc090aac068a38997823950e885682eeaef223e7fa08d67c358b5c5e3367ac2d5805f4833f9a1da8106f62fb41cc3724874e464001194fe08e456afadc31542dc3ee837a0b925012c05c6c6d111201905103cfdf6e4b842d31d07e3eb9cae0be9ac61ab6dba7357023d644a79b4c97a02d336387ad20d77e2fb9b923f7327740507fe4a83872f3140dc0a5fc7a9ca50943ee0fca8ceecbdb8340dcc4c01791fce876775d348a64171d9f6d8bdb609497bd28a3547bdccdfa4836a01f9452b5738c46006444c9828affdc54421bff428e30537c4a1414153173bca30c8f55d858efc8e109e50d89003a97faa2e219a4f15f6e48d0aeb2b4aad2b6e716f4cf16b15c96b2a9445fdb32b6c84eb533ab101a600a7982db51ee44f054a295e308d68f9cb75ca01c149037aa74a5402efeda713cd2aab2c4fcce2e1f7f016dcef5c24df73289ca9589bff84fcbd316a44d8dfb41709b3fc9b576402dacb726652be035b5cc367e64c2af7dd448c2d03d4f36df5ddf9e5261824d49d244f63e599cf79234acbe343a50cf7a587dddbeb7e39a8ad3e763f9262a4ef1e51b383991a6a9ea7a35977c9bfb85814ad26eb812bf863ae681430f1761e316b5d9fb3f598eef25440dc3d70ae16805dd993349d3adb0793cac65b8ceca43eff386c716516eba5d9b2e7717c1aa41cc9f62769f85ae1fa7b0f773fa4357832977693054f0b16c37562876664599120e77a463db4388486a440a524c171b88665a790a35455e84587390e3cb1ca4f028cfb6a3c29a946b65b5016eb7850ac41fe57afb2a069d5e21da051c981bd85d991de324dfbaf7904b6b914df542d6326d6407eca486bee059044b1da1c9024fee63c3bb407ce8198f27d8b430863b3fe40831a7f537ea7c8ee55263deed7e2a5db8343f370a90c17fe07aedc04d8a305dc0c378b9ef0b115d7956616e8b773c0f4d5189494c9237fbee491506c82028b652c8102882f27e210001381eb64dd106ecf980968cf12e1d59a79570f7e26098bf96bd2b7b4aee00f820559e2bc1de51af998242b2f677fe4babf904058d85c50c7c2637b716aa081d2855a785a76fa1c9e4f50cb48549295ffa7df14312945b4517c3f72ef9fbd4b1456f97159aa58843afbc253588edb4abefdbf7e032d664e472c2321772ed5a2e970a53c40f0bffb7e01cdd43ab8ebd8f23d6cb4acf82304f05fa19afd1a9ece21e3a91541e08e835b2bc1f5097d940647ecdf8f3b8463f4306589e485377b6478478d1441672ea59ad72d5f3115cb9608f0427dabbad4addbaa10e2ccdddb8b16a4582490d82802994da1c067d0653cd14952b2301b86abb0577ee742cc7ecc824c879c9779efdff14994e77b8d2db019e549aa10497a34ae338d933838362ca17dcd0c0c75cb9169d55750f15d5c1e85b1a7cc87ab3c46de8d213e95ce1f233e32895ff8b0ed0977b3439f63e51918a61386c0868be247ac5234f9aa4aa8d3722d188d2ab1871f5786197a5de72378116fd3e625989980e0ac50d94f0e588e322069ca222fe75c65b1247e1361a9e52a1924daa48398268e7340d8fb0e2e5e605891b655cddf9d4b2e13ea1f83cedf7346a52addd84636240e8017ed4ef4cd14749ea9de3e015f5e6c8f233b4b82db7b53bfedb0936586454d87972523236be7d281fff3754cb2e029a5c05bd18494afe5f88597b7ae787153860dbe7d70b9febb55f2d72f01c2d7645f4d68ebcefc47d544eb4095ba72ea60ad039f447b72d647c4119cb614fd88a1a436af50364ddb8d8295bf1251c7c8e57458020734f174acaa5f305890015f6321fa52058cf3c48e9f0b527426099a8a3b72c755f5192c37fefbada6fab1dfb5caf40c8c20434cc93c96a3344d808b3a3dce293df6a58d6b4290041aa3931904d78040cee3134dc260c2a28e70bf2ed92ca5e8b3f38c7a74817f419e902675ef4e992d8d942df64f7cc2ef9b7221197aa10379ccced3267cb80ec5266c8131e661d8a6b899a3cac3f2a1d7348c488b818e065200ee6c4c108000de708ed3981321c24010fc25a954972ee8268a4d1281b492eaeaafb678590b4a66264b099433488f7b4273b896de3a91774b2332285158e484e4403743c4e996527f3b554a07bfee195aea847328b57fdc6163f0a7a98471047adb4ce233b2136de714eb056aa5ec287744164ad75eea7ab6f44058de4a74b6d0c20f404c1b2675424417532f61b70fe5060f0e65d21f3517eb98e56d48f33c32b8c1c119d5490c7ec5a755e28b2f2b755c7c672527da3b305172104a436d5e5fe21145c71259838f97e8726268808af1dc999ff145080b33e64c78bad8e8d3d651064b1ecc978466aac9b722e4feea9d44e0330a52ed976eb74d3d92cfa0e70f46cbd4349e24c1be80e1f9a00f91780bf6187560eb348466a71d56e8ec1cc06e6f5c8e3b0aecfcc7b3c56b266bd426a9ca12fd2d83d922bc5c7f08245b35de700f882d357808cf789a71aeb784842007cfbb8af3b2aa39c8058092d19ee5014cc6d266f518b8f52914441a4d79d042990f7b22dab949db1c5f963e9b786459992132c1a0ca36197c79dbb4b82bb35085dd19e495376bcc3fb53e77f022f10b8b57ec56c2876ed55a15644a9993f8436270945f43af845b5e468e8cca3a8d365076c12911746832cb31b0d53234a572db53b69fd4c274dda9992262ade52fd6801af8c19eece2bef5e5c60233bee564f419addf87a56fdbc1e73603f4f10e3ce142c24b859a66f84af1d0520513006fca12848e450730a3327dbfbb2655e8556b88609cf6e03cc3249d1cfc9572199a548c659bfb0dfa786ef8dd400c29e5a0f58cf09fb52c48ff8f3d9e556a0d01ee6823da5c2fd74f4d4bc126033cbde6951e740bdc1b04811ab8abad93b493ef05fd6260270e13f0ef7f6626c5dee064cae24f87d42e152f602615f3d9872af3a6cd41b8010c3231713cbea22d0d9ca0a7a0bd10eece3b89eaf7850f3637de4c5bf61fdb051c4253c0394abd1dcf0a98632ebf52c801571d6b70395bf932a653047a76b1a887fbff2f271b9a9f2fa6fb7644ea93f2bb0b47b721b0ec41d464e514ec8f196e93ae11fa9a9ecb234b36eb182dc5dab7a4c0a1de91794d188f242c83896db9f7736fc59749bd122a9572715051db684ba0ae8ac03b2ae01223a6d0ea21f52851e20eeb60b96115d7d58e55effb5ad774689292512338aff0350b1472e5d5cffaf292c3b7b6cc6b21251ae4012523f80efa44990dde3dcad602de25e28b26f97cb74f88f7c1c5f2868fd1544d6559f0ab31eb10c89344c15d31a3070e85053ca557f737dbcc951e1824bcf963b6557efd8914f1ba1bbe6d69b191bcb8675c481491686541f07827d0d52cef8912c876c02dc5478ce47d650a97af5d3172a9d23d814b3229cb1677e76196fffc25bd385262be156ba8f2c042cae30771435ecf292a26c7876c5038ec74d570607cd8e5ebe602737c1ffed954b7338a5d98c2151e67392c00251ff617430c6a8d0a5a86cb7bdb9290d8fa92446f3ae54cb4087b4d1e157c24596d8d9df7438d50f52ab6b74ec4bdd1467f635986baf359f9a93a6f19c86e5448593ca4f1434805b5b8114595598b1ea9871e7044257aae23b9b24d062ae7db7b8df8e12beb23916afbc3f06ce412ad84eec29808997ba8d9daf5ebb92c637fb16084dd872743fc9b75a4f1d1a0f6b7095afa8815369b518780a19ec4c8524d7b31b19a179826cb2c7328531922831ded9e1bec64b422dcfb72ff84e42ea4b6e31b4333eafc7a4f70fa7e0052a0bb584fbeefff02554dcd3dedbe3484a42f422a4b2fddef6b9aa83e644d8d54b411cf1c6b9670cab121668047edf22e49d2acb6cd1ca86f5fa6a90cfb8a26758494ac49711938bda610d4f3bc030ec76afac9ac6399c1fb5aa13a37480b364865dcade545bf61f2ec6879e00e994a6560cf487011a2be8061d3112fd450df3fcba6ffcd9571cbc91dd6d1636faf94b56ae0d4dbbbb1a3e2b585dc898c0552eb80fb22f66b901c97fcd55586835da5ff4854dc1eaab698166e896703b14f5e8e4b8d86b86160c9d8ab9a29d25b709784a558bd83747c1f930937c0858f9fabe35dd6207b4607b4684d7ab1f225ffefa2921a54d3e024abbdb9019836ec2e316ff4e7480bb47884d6f20aff54bdafc6079a7c87ed6dd714ac0bc8f412bcdb3749865e3b0097a4d17f9c23f2047678def5ba060247344c7b9daa4a343f07080bc765d6b72a1bc7a447bc812942ef391b61a7be5fb2b1588adfbd9236822c1e75ccdcd6a3cc7cb654a4f2dbf498f671355d1ffd38fe2e222437635cd542c5fa7f5cd8dcef47497659f20acf7bd344e2c8085bdbcc1fc3acb4d823aad13bfa3b2b6057fbb9df6e0010eed80239e504c9137867b5448083f99760255dca803d4a9c7abd299b4b71f43d5309b883103e106926ecafd5eff506620d10b15fe1f3a105f11fb40244a1e4b0351db76b7a47cc95c6db2951be742723af9bdee5adc6165cd3c54faf3396882d352951eb633cc7d76dd37498b880920fac2afe9674f9af71670e5185e2e7e5ec4b376d5084c44ba00fabd3d97cc221cc79966750753cd991f188d7e3905310a12fc08735b72e8bfc2a7c2cc9d26d5fb2a0b20bf213b0ef8bbc2d0ffe1ea2a06ae02d7ac02440609319ec2f00feec5a95b03fab1a68d683d5e96eef09a4949eece558d9dd1d30c818c92f8593ac63f1d5b9a8a3cc676d6b684cad08153d390c6a6ae9089e9d3f08f2866b11a82d69300b7b80023981e03b11894505aa8a3fe5fc83c89f4dd91987a00d4a0599bcee3074af362ae857711d4024ddec6d6b61c0cf8fd3e214cf91885670d1e48fcdf655c775caea30f77f9ab826c1fe1fcd4e80cf2074e16578fb6c159528915e49ea3e9e8bbe90659cb29b4612eb6a3cfa194a7aab3644c0e1f5913416bfbbd4fa6ef788f58307f2d014602efde5dc5f1f74869a19f4586976651c8c341bddbbd3c4fede5a3158be11d55ffbf111b4288e4ae226b4abb150bfc376e71638b4fd5be5b74c76a9219d8d0f87ba2978273f98a3cdca31e431af80d1b5899fef71264de1003c873f9d08d4253c8f8eafd6afbf740849923ac1f6ab9078dd100b0ccac695b3ec17fd2f9acaaba4c5df5d0ede14e3bdd50e47849b3ff3159831768e03d8bc642d6fd09de213c398d488ea295ce32348328f6ea20e2d4a3915abf0a82698f32aa52e1f0abce8ae6c9bb3fdce0734af7804df35c093031fec068ea3b6e5e0e48e4f7192c397e6d2cec3ecc04e1791a84441b093bd1bc232b2c14a32008b478b6c9636c482fb8253dac1f076df2f3c96acee723aacba36fa27378ac346a82625e8da062f8cb1e05173bb01525be23407bc1ccbfae9acbdcf65ba7cb9104a8e41a342364a5f34edf567be97d541d1f283d3f9a651c8af8755fd4193f1ba604760a934a6dc6a73a70267d311896e92300d0e654427502166fbab69b91d0f36a8fb9e3ce5a79b2c350a1ff91b6d7700940992cd53db3b4ebeb1fe6dfdca7f897e14a961ed71b3d90ef7108032987799597639bdbb12dbec62040e7dd5b0d508f1db333b096b88a285c2b415e7454d728171fbb9425d17fd3353c004c92d2dd972b4a1a186cf70e21c58258690ce89b379a973cc288b2a639520d85870db00c2c6c7d32c9921a10d40902f203cbbf2c00b2b7d7155c84ce96c64386a8fe6dca6950780dde5e1c554d0f8f846f4d94405c8ab175e52f18b925718e2c204fb80fa7df2a811b97e863fcfa929a2b495f38af5c49674242bdb935b9da14cb8f6dccac7758bc6d9cac1f7ad6d324c611878447a3bb902ab0bf8f6a7c2e013a6d6883cec6155cc8729874c1288bfd3e7f3ff35eb54bcfeeca92e82326dbf1d550124c3774d2b204a5352e56826e92df6919839bb525658e2cf274d68ee6846ce1398a42089133281d05f5b6b01dabe3d59c91eab3cad29e6a9e465c280df8eec7cf9299a7e918683edf1eddc9052ae29acdb02d7ca494cd189d5091392d6395f4d32a7134a4765effc140efc7f4a354ba41333422569d159e36ac6a9413a3b5144d28bb325d09b9050753597d8fffc585dee01460d0c5013a674d874cd0f76eabbbf24ea46fa88f11699626515dcdf92431312a2b23458b5669a4862727a73d4b5114b16525acd38b7276de7365f91c3881609516463fe017674f8f1c4a4bd0fa7b0ae7a6315cf3227cdd9481b8df16602b8bc44a88e61b760d6450b78332c8cf84e8d878e96e3494bee0c77aa2c46e296d317575b36d1821302ea4b55788d2fb101efaa64870d255d32de4fd0c179c03cb5c8a13eee6769e1f1c657166b93db4c80721a497982d171d6196fe289eafc537d9d232d4bf561bf2cb09fdafe507899264927712c36ce9552e3f0342308c1c6e68c2d4cf80288bbe876030afd2ff610ad151e8550733ce295e0896d571170aec7540dbeef12f8a85da88957ddc919762760c5f7be932f94889130aa539045746f28de6e1323141b8a3e934d7e5daa9315d9ea75eedd8a5663dae891a2a72fd7751c7693d3b09585a093c22f90ef88902eab00e24249efd6db55f1ea1ba98643bd894981c168c0cdca24f23add92ecf70d36befcba47a04d9095fe352ae7b2808344522df2cb1f24ef49aa18f6d53dbf51aa9cd312109c440aa0577d91d99597f58c1b636732191e43ea913fe468505879923a06fb7580e12e044f06ea4397ca726bd6d738563bf00418871effdefc1126f4da5e4d8648b4a494e77908e4e210c2e1ab7dca1f05e5d2cbc2688af12c6a7b0715408f89d2d8174377edb93a79cf3f5851bbaf472d2148587158ec439e69c851d2af3562f0fa962a48ebf60765e488ff2b0f34901d049dac3416d3b2dd782b727325d3f31f282a76bded82c9f1cdd657ff444738b0e52d1d1c22cd03fbf2533832473f74110abb386cc21bf93d769164b81d4265e064af5012f160f6654578a7c0441ab27f5a203f4acf0a7fd5f019afe8f3557fae3a86031868a8ff9cd3db99a6acfb3b823682c68009baba6d43c8b31ef0d11397114d0c750c3aa18156467fff31229969d6f78bf61f315a7b0914be4ac838b2d66736398c7233674be65809fa6dca71a229fc7bb2b355e265cf387e40012fcfa95baeffea50062895e3f07d46327aff6c48b4229c93e25b2de2332c3603a7e96bd49e7e69e3718476fa415991cb4e80c8f34aa83afb43d8a71c06fb7f1e94a7222dab2605373c7e909c3da070474603257fe89de0571fa589b40458cf7b285cbef7ae3d71bb0d78daaee2e4dd5fb7842b46d5b68a73443da2b34650f7215a281c6eb344804a8b357f54d7575c66a061fa78f5e00a6681b67ac47e5705d3672ecdf998c38cc92cb512fbc9f415d7c0dfd612057ea4cb0fc8d711e0422d8a6d80b122ca44e610e9334a8bfed995514ac0fa72673ef680b5b0e53edf8001b099e357340be9b6d3a21e51784fc3ab050fd8f0770d247eb769f5e7cf2aaa27fd38d9968173a694a9889391b779c5515221cc03b40bf66d8c399bc09b600bd0bd64841db023456280fc32a397746d33317938da99e8dd754437095ef9661820ca218a70cd0bc1b72ada4fe9ce00d159bca4dd5bc6b292af0e2c1e8f637de92e4a664be9084bbb066b584c0ff4cb19995ef50b24c64b261b2ae587381a0734a08c96d4a5639f471f66b6d2a76b1519003c845b12b298fc208641e129f853f26690f6cd66982539f6de196f2e9646e17ce9d67656f87046a10f832e72e943c9486d1081b4f33f219161cf0bcb2a5a22895cfe7e8b6c5b3707020a16b9ebf0a6f6e7c73b2599c28a3067871b066dd69fc41c63194d876346b8c143881e6b1838c6f074be13867a158d17b6f6c9b368d1571328bb001957f3a04f63e5e76a7a88c62275b8dd50b070f2a83dbaf2070b5f4cf356de6b054c196493db774bb855cf357be44f9000c3755fb8bb72efb6f35085eb3bc3a47d38ce851d0d301f223c40e2898c4e390ab6ace2a526c2027fd0b41ba949d2849d3ad84ee8c6762e3320f11d314850dfc334b5099cbf5c717963990fff0d6fd7e01bda42634f5deeae66843794d3b678cdd8ae335cf4d27d5798d449ac942c4d5f2605911673932332ef166ca536857df525e1f1be885ddd65de2128ffe13bc88ab9c994d5af61bf018b4143e3851aed4ea0eb718237797b81434d1d9759c1a42b89cce0c21df1ef74b4ec733b3b3112d65af00fe5765673e86f3e0087d04ad028f52ed09ce08e18ba05866bc493e9ddda6e4e048982be71d6441fea00e3602b448fa701a86912e9c1970d0fd6e6be0266fef2ed16b23cef8b8c00c43544e4b69d25422cb9aea3421a611b4dbeb4d2552813dd680da0aef788e78da304458ff234f124392c40f76d728ba171802d5782a7e29d594b2b6a1da2a06422867a12eac8a0ba0930a61e55d791845321798e2cd3b1c3051ca3391bff8fb040dc623f8d3b5087ac6f7b8445fb40c72ebff88d34890a2c70e9627397ee4c887551a06b5bc91b410cd735b077d49a8ebdcfd496af67d1c9204ba856dcd42a8b7dd84ea7cd864ad171c3735171df83a9ee1464c059c95570ab0a214c88366631c649b18229831d0bff8303f94fc7b1a79b2119854e1f4a9680af98abb862ec9ee35a332f46390165401ea03c9a628d3af7a13c1909fdcec00e88c36f80b0616b2972f0244575bdb7c4309ec09807b4430138f3687b30b2b259d3b07866aafbb82e7669c4ebad1bb42cdbf398196201adb028bd22d0a2a5f3dc66d732fe78c1c8a4c86e986ccec1572134b277227361d5d016d60a23be4df072b4b395c54938177f9ef52e0b659236e0025cb25b58306239cd1aab3a33d8433cd3317df416bf6c6068827d2a6f614915376f90b6c8df59b9bda2803e907e14ddcc33b739db6daa7dbb2fac76bb42242c7f99970533585220419eb765a6248e2e76a5f0b91aa3dd567230a21f8fdee6871ead447f775cc2d70cdf2f875f651eba77e0d15f2de8daa78c6cd21ff7d8df6c300157bd33b430726875206df71482f787981bcdedbf9ad25172d03493cabf822c7aa2e435ace49664a402fa9065bd9d3a9712b90735c4dad183c381705f934f4a51c9226c31577cc250479f59eb204daf8a756e5d81ebbea398d8676059b7ac3579c1049585d19f9b76610f6bc1be6dd361a1f2be74261b24fb9ca758f06aba1167f5b0266475c624715a561f330a4490b1543b32e5d3667f5d0cd02b68016f7dca9ee07fc820ec9dc005250cfcca8440a17d33672d01e023d09d58df4a775583da899edb6fc0dbf7494c80388e4730dfa8a58684e3a92e92711bf2c63dc0ed99faebebf9d1d28d4f0f753b19ac4fcfe9924532bbffc21487682af8a29071e5f03858a5f9aca69a7c130c49f1b1091b1496ee2bd7cf2218b10032a6b8d896467ae909eb41879daf3711cca98a0465b9a36902e95a77633e47f6cd96179c55309123d6da6aaed0e5e466c1d2cc06e032d7e60a3c1efb24b1bfe1a67090bf3b4eedec24d7fb98799ceabc92c6262068306f950a7165f0af449fbfbbd6bd1385ef0ca409a9b701856f0e8d76dd5a0b5a4e6a99dea0abee92fc3ff95cf761d35fd64828dab64ce095fc13923dbf862f346836b0c917b2387ce94b263cc3e6641e0f46b7c3f0a54d0d28b63df44b96dfbd3c0919afd2c6e2df6fc12544b2126f6e599d81f40dc6e71d66393dab5fcb096aa42f07af029b66323b0fcc29d49c62c1773f7a590e1215b97fc71796bb76b77e4e29a7723403942a61ca2899b78c15ed78b4ab9c117439ef73a77875e8db36f70cec6b92149f2eee1fefd9214c78709b8466f7d87a361d4e700d777e1d0b2656dd217282f4c345465d42c686c9bbab6320442f934de04f7d9d26d05fad8513b6c2d709ba0297966adb0fcaf12680d5a284bb1289302e4a8713f8a2ba5c4c7ab0c0761f5d10ef7bdc66e2d21ee72ced4a94a033cc3ae2036b554c7788a6e292210f60bd872848289f4984fc09ae093dcb69e1f7b55e9d93d8086fbc35989594c1f170e8ba8264db58322442d54d4bf189dea40ed9d6374cb903d11b7b63f51cb3ff0ae1cd36e3aa5d9cb3460dd6c7dc78e87ebdf86ecacc42c00b14e136c166f70228bcbdb03b23f5ed4054607605fe1d0218b3364d93d46011ab06a8c235d356bd116a3221052d6881e4b36b3c16ac2490f7d8479be661ac2d1f55044af8b8408526ac3a9479f831d5d8287010bd7d1c47157a187ca169efc2604f10788ab4b687b7324b7b1d12583ead698708761b6a21abd0f4fb9a253591ecdc647b3af69f55edbdfbd3a78188df0ab638d1f891bb51f45cf9c7bfc061c0cdb4b4daee1d20227aaa6fdb3616b51b36e2e829662dd10efb959582c0c1c58a0627c22fce616e2b0eec792b4f4ce877c82b92e2bc1b83dea58a926183fa4a66bf9b103f58964ff46872bf75b4ca38e8fd3e12ed4744f2fc17d5a80a2789a6713ef0f583f5fc44bfa937d5aaa747a59df637e8c79aef663dc9ecad62fd384cac2b44aff745c32a261bc8860d3063343146ffc8cb21a42ce44f15680918228391bf9003364581404398e6dae2f228acbbe93939a0adca3f700f7faa4caa237808ed7ee3e6d83bbb45fe87ae2c00cbdba9fafa069c9e682d7b334343cfb50c85ffa71342523f6d28568d4df5941a8845257b0e18ecebc67af65dc63821f0f5f1864688d334084f7edcc47751bd1d061da497547e6076513d74521df8501ab3a3dbfb96807d4d2ce0b808a5a82d193b9cd544f75e530570f6194d882ca775d650d11a8287df6d6cebf9ee029b81ed60512d48de724d2ca32ae03824bda179202f756075e5057f685463b9af0de032c6c33b6d389f0eb1c16626b75e96633e8f40155a2bd07e5c6ce0d726747f124e556a60eef081ebf8df91ce34f59ecd49e977055cb253bde7e59337c60c5c4ba365bf46e7bd76cb12be69bf019155a5af44e8b7c0ca6ffb0794dc582ccd3fd560a08008200", @ANYRES32=r3, @ANYBLOB="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"], 0x4474}}, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r2, 0x84, 0x70, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e24, 0x2, @mcast1, 0x2}}, [0x2, 0xffffffffffff8001, 0x328d, 0x5, 0x1, 0xfffffffffffffffc, 0x8, 0x8, 0x40, 0x1000, 0x2, 0x1, 0x401, 0x100000001, 0xffff]}, &(0x7f0000000200)=0x100) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000240)={r4, 0x3ff, 0x20, 0x8, 0x3}, &(0x7f0000000480)=0x18) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454d0, 0x1d) fcntl$setownex(r0, 0xf, &(0x7f0000000100)={0x2}) 10:13:15 executing program 4: io_submit(0x0, 0x1, &(0x7f0000000000)=[&(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000040), 0xffffffffffffffd3}]) r0 = socket$inet_tcp(0x2, 0x1, 0x0) io_setup(0x2, &(0x7f0000000280)=0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0xbd, &(0x7f00000014c0)}, &(0x7f0000000100)=0x10) io_submit(r1, 0x12f, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000001000)}]) r2 = add_key(&(0x7f0000000140)='asymmetric\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000002c0)="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", 0x1000, 0xfffffffffffffffc) add_key(&(0x7f0000000040)='id_resolver\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, r2) r3 = syz_open_dev$audion(&(0x7f00000012c0)='/dev/audio#\x00', 0x800, 0x2000) getresuid(&(0x7f0000001480)=0x0, &(0x7f0000001500), &(0x7f0000001540)) lstat(&(0x7f0000001580)='./file0\x00', &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001640)={{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast1}}, &(0x7f0000001740)=0xe8) r7 = getuid() fstat(r3, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, 0x0}) getresuid(&(0x7f0000001800), &(0x7f0000001840), &(0x7f0000001880)=0x0) stat(&(0x7f00000018c0)='./file0\x00', &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0}) r11 = getegid() r12 = getgid() r13 = getegid() getresgid(&(0x7f0000001980)=0x0, &(0x7f00000019c0), &(0x7f0000001a00)) lstat(&(0x7f0000001a40)='./file0\x00', &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r17 = getegid() fsetxattr$system_posix_acl(r0, &(0x7f0000001440)='system.posix_acl_access\x00', &(0x7f0000001b80)=ANY=[@ANYBLOB="02000000010002000000000002000100", @ANYRES32=r4, @ANYBLOB="02000300", @ANYRES32=r5, @ANYBLOB="02000700", @ANYRES32=r6, @ANYBLOB="02000100", @ANYRES32=r7, @ANYBLOB="02000000", @ANYRES32=r8, @ANYBLOB="02000300", @ANYRES32=r9, @ANYBLOB="02000600", @ANYRES32=r10, @ANYBLOB="040007000000000008000300", @ANYRES32=r11, @ANYBLOB="08000400", @ANYRES32=r12, @ANYBLOB="08000400", @ANYRES32=r13, @ANYBLOB="08000300", @ANYRES32=r14, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r15, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r16, @ANYBLOB="7cbcac90", @ANYRES32=r17, @ANYBLOB="10000200000000002000010000000000"], 0x94, 0x1) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000001c0)={0x0, @rand_addr, @dev}, &(0x7f0000000200)=0xc) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000240)={@loopback, @rand_addr=0xffffffffffff2d35, r18}, 0xc) setsockopt$RDS_GET_MR(r3, 0x114, 0x2, &(0x7f0000001400)={{&(0x7f0000001300)=""/188, 0xbc}, &(0x7f00000013c0), 0x20}, 0x20) [ 286.399152] R10: 0000000020000100 R11: 0000000000000246 R12: 00007f93afa656d4 [ 286.406430] R13: 00000000004c4a1e R14: 00000000004d7d88 R15: 0000000000000003 10:13:15 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000140)) r1 = memfd_create(&(0x7f0000000100)="0b656d31c1f8a68d4ec0a35ce2cba2bae5f497ac232aff", 0x0) ioctl(r0, 0xffffffff, &(0x7f0000000980)="0f81d37d73fbfbe703a32ce3605d09c40c8fae3222f55e78ad04c83a718c7e500288f2dab382ff4ba0eedb10368b1e2fc8847f60b0f28004093b817936dfbb65498cced42cb716c43127c937b987d042c262b0471ad9053c4eee4eca58df295fe3cdb054dff4d51eec46c9cdb0f7d6996333d86779e6681942519852eecf40e1e93c60a03c4649ebde78b06bdb3d4990a265a8c9469fae7eadf5da16011b62303290163dbd3f804a206107937426c562d4e81f490aff1a140fd8874eab2106b314032abf803407d04caab1af556cfaadce8faa1ffb256cadbee40e8a271e8e0f1fb7de996c2fa63eabb97bcb45692884f6") write(r1, &(0x7f0000000040)="0600", 0x2) write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="2c00000004000000000000000000000000000000000000000000000000000000040000000000000000000000c7d4fde8f70d60cbf4d101573ab7cbcd1a907c19bf638fb5e7f2dad44ab49123f32cd384c002d199e0f0c4e58d20a3a2363961e1636553a64be4e4da0c99dc8b"], 0x2c) sendfile(r1, r1, &(0x7f0000001000), 0xffff) syz_open_dev$sndpcmc(&(0x7f0000000500)='/dev/snd/pcmC#D#c\x00', 0xfffffffffffffffc, 0x200100) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000280)={'ip6gretap0\x00', @ifru_settings={0x0, 0x20, @raw_hdlc=&(0x7f0000000240)}}) sendmsg$kcm(r0, &(0x7f0000000940)={&(0x7f0000000340)=@un=@file={0x1, './file0\x00'}, 0x80, &(0x7f00000007c0)=[{&(0x7f00000003c0)="4100db1b691873094249332545ca5b99a371f6de995d765a0ecbac07a9bc949262ccb090a9dd8b0afd9f01fa7dd16dbce4ef0d146b35ab755c5d78772b06acb507a70243efbcdc3d1b8eabbe88d14e335f1f1c4c6e67bb9ba90bf32987bacf0feed5da91b171251cba12cb32850353a3f812602f3ed8cab107136215d1158e2dcb7d8e02943768be4901033e6911a173e2cb4e994c4cd47036cc4fbc924a71aa15cec73303d0d30b", 0xa8}, {&(0x7f0000000480)="80c2c68c15920c73b9de050bf498422fe4ae77b1219ea51d5eb3d91327771eadb469bcacc733b0428f2d3e1b39fa7bf641c87012703072ad5733ce554218295f8f368a49ed3693e138", 0x49}, {&(0x7f0000000500)}, {&(0x7f0000000540)="d52b768d7643f3c26e639881c35729e77fbd10dc54", 0x15}, {&(0x7f0000000580)="e3726d4844608fe65606b8b9356f2663a258cfe13b4f01d9dad450a1940a77e702e75febdc3f6c68dbc4b8f1ffba2283ee2de75c6bdd56a8d10490a05c906ae22c17089b9f53fb", 0x47}, {&(0x7f0000000600)="5c69846336186e812cf6975b8f320296ac06bc02e1965975f0188a102f9f9da0f9e6c50e3ec59c9b4e8dbfef8da1b9a4f6e36152fd33cf28639aa2d9fc45440bdf25fb06543f2bd5734571dc3932f0fa1c7fadb8aafe8f90fe71c6824e379053832eff370dc19bc4670473d2c9962b26f10e42a6f2a0fc57157fa62db7f4376c17f97193b90d858d43be6219f68fb3b7449909f361f4583a78d7718c7b7a0bc3f4893094d11b6eedd155ba29e343432227dc60b7000d", 0xb6}, {&(0x7f0000001040)="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", 0x1000}, {&(0x7f0000002040)="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", 0x1000}, {&(0x7f00000006c0)="e103095c7a37395733021999d8006a7f478aefd86310a31753779506467744b444cc23a6b6dbdecb1f723e6bc48d7578753754ee3e5ec28c806a2972adf8121cd214a260d616bd4e34d233488b8bbec5002b1c73bced5a", 0x57}, {&(0x7f0000000740)="05cbf69427b958ade995da1163f65cdc727aad03be4fa0115e59d30c266315b8ea4cfaab35f4a3afde6b2e8b9e8cb55834a6d5a6ad4e956f213605e43c12c09a7c7fa4ff6b80765a36860d95afd654b5a842e6c204b5ea7bcbd1328d3320a5c84a3f", 0x62}], 0xa, &(0x7f0000000880)=[{0x78, 0x11f, 0x9, "47bd79402bf1ccdab8a9c5862d0a011681c0e24231efc241c1f827c343f1fc61c317613605177687042ef895f9e09b84f97ebab39f6c1d868feacc9f545db87c8c79772a8b78ac6676b0fb2380715d561f3ab9a475f2cb29a9a96c7e2a5c465f50"}, {0x40, 0x11c, 0x7fffffff, "40b5b5b66886c995e516272513ab48bc76d78d9913527dad3cd222ad631063940b4c099d1acdba1291184798da0299cc"}], 0xb8, 0x8010}, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x60) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0xfffffffffffffffe, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setscheduler(0x0, 0x0, &(0x7f0000000200)) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000002c0)=0x1ff, 0x4) openat$autofs(0xffffffffffffff9c, &(0x7f0000000300)='/dev/autofs\x00', 0x801, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f000002eff0)={0x85c, &(0x7f0000000000)=[{}]}, 0x10) 10:13:15 executing program 1 (fault-call:1 fault-nth:15): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:15 executing program 3 (fault-call:2 fault-nth:4): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:15 executing program 4: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) socketpair$unix(0x1, 0x140000000000000b, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mount(&(0x7f0000000040)=ANY=[], &(0x7f0000000180)='./file0\x00', &(0x7f0000000540)='devtmpfs\x00', 0x0, &(0x7f000000a000)) chdir(&(0x7f0000000000)='./file0\x00') r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x1) write$P9_RFSYNC(r1, &(0x7f0000000080)={0x7, 0x33, 0x2}, 0x7) mkdir(&(0x7f000082f000)='./control\x00', 0x0) rmdir(&(0x7f0000000200)='./control\x00') 10:13:15 executing program 2: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2b, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") connect$inet(r0, &(0x7f0000000300)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000100)='tls\x00', 0x4) setsockopt$inet_mreqsrc(r0, 0x11a, 0x1, &(0x7f0000000140)={@rand_addr=0x3033300, @multicast2=0xe000000a, @loopback}, 0x28) r2 = dup(r1) write$P9_RCLUNK(r2, &(0x7f0000000040)={0xffffffffffffff56}, 0x7484335876a368f) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x6, {{0x2, 0x4e21, @loopback}}}, 0x88) bind$vsock_dgram(r2, &(0x7f00000000c0)={0x28, 0x0, 0x0, @host}, 0x10) ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000080)) 10:13:15 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0x40, 0xa9, 0x5, 0x1, 0x1}, 0x2c) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x9, 0xfffffffffffffffc}, 0x2c) lsetxattr$security_ima(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='security.ima\x00', &(0x7f0000000180)=@v1={0x2, "fc93f2a3f1ffffd87b638b0fa469fe1efd9d74"}, 0x14, 0x1) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r0, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20) bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xf}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r0, &(0x7f0000000080), &(0x7f00000000c0)}, 0x20) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x14000, 0x0) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000440)=""/4096) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000280)={r0, &(0x7f0000000080), &(0x7f00000003c0)=""/128}, 0x17) [ 286.704374] FAULT_INJECTION: forcing a failure. [ 286.704374] name failslab, interval 1, probability 0, space 0, times 0 [ 286.726942] hfsplus: unable to find HFS+ superblock [ 286.742389] CPU: 0 PID: 8432 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 286.750863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.760228] Call Trace: [ 286.762846] dump_stack+0x244/0x39d [ 286.766500] ? dump_stack_print_info.cold.1+0x20/0x20 [ 286.771706] ? lock_downgrade+0x900/0x900 [ 286.775866] ? check_preemption_disabled+0x48/0x280 [ 286.780909] should_fail.cold.4+0xa/0x17 [ 286.785017] ? rcu_softirq_qs+0x20/0x20 [ 286.789011] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 286.794151] ? is_bpf_text_address+0xd3/0x170 [ 286.798673] ? kernel_text_address+0x79/0xf0 [ 286.803095] ? __kernel_text_address+0xd/0x40 [ 286.807628] ? unwind_get_return_address+0x61/0xa0 [ 286.812584] ? __save_stack_trace+0x8d/0xf0 [ 286.816945] ? find_held_lock+0x36/0x1c0 [ 286.821057] ? __x64_sys_memfd_create+0x2af/0x4f0 [ 286.825918] ? perf_trace_sched_process_exec+0x860/0x860 [ 286.831459] __should_failslab+0x124/0x180 [ 286.835714] should_failslab+0x9/0x14 [ 286.839534] kmem_cache_alloc_trace+0x2d7/0x750 [ 286.844230] ? __might_sleep+0x95/0x190 [ 286.848237] apparmor_file_alloc_security+0x17b/0xac0 10:13:15 executing program 0: clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000600), 0xffffffffffffffff) r0 = dup(0xffffffffffffff9c) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000cc0)=ANY=[@ANYPTR64=&(0x7f0000001000)=ANY=[@ANYBLOB="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"], @ANYPTR64=&(0x7f0000000c80)=ANY=[@ANYRES16, @ANYRES32]]) r1 = perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VT_OPENQRY(0xffffffffffffffff, 0x5600, &(0x7f0000000280)) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xe, 0x24, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@mcast2, @in6=@ipv4={[], [], @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000140)=0xe8) lstat(&(0x7f0000000fc0)='./file0\x00', &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) connect$vsock_dgram(r0, &(0x7f00000006c0), 0x10) fchownat(r0, &(0x7f0000000f80)='./file0/file0\x00', r3, r4, 0x0) fstat(r2, &(0x7f00000003c0)) ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000700)) stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)) getresuid(&(0x7f00000005c0), &(0x7f0000000640), &(0x7f0000000680)) stat(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000840), &(0x7f0000000880)=0xc) getuid() fstat(r2, &(0x7f00000008c0)) geteuid() getresgid(&(0x7f0000000940), &(0x7f0000000980), &(0x7f00000009c0)) fstat(r1, &(0x7f0000000a00)) getresgid(&(0x7f0000000a80), &(0x7f0000000ac0), &(0x7f0000000b00)) ioctl$DRM_IOCTL_AGP_ENABLE(r0, 0x40086432, &(0x7f0000000740)=0xfff) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000b40)={{{@in=@rand_addr, @in=@broadcast}}, {{@in=@loopback}}}, &(0x7f0000000c40)=0xe8) nanosleep(&(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)) r5 = syz_open_dev$mouse(&(0x7f0000000500)='/dev/input/mouse#\x00', 0x800, 0x101000) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r5, 0xc0505510, &(0x7f0000000540)={0x0, 0x7, 0x7, 0x0, &(0x7f0000000d80)=[{}, {}, {}, {}, {}, {}, {}]}) getegid() fchdir(0xffffffffffffffff) perf_event_open(&(0x7f0000000180)={0x5, 0x70, 0x2, 0x3, 0x45f, 0x3f, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x3, 0x6, 0xb9a, 0x5, 0x0, 0x10001, 0x0, 0x100000000, 0x0, 0x100000001, 0x9, 0x4, 0x0, 0xfff, 0xfffffffffffffff7, 0x5, 0x3, 0x1, 0xb54, 0x7, 0x0, 0x0, 0xfff, 0x80000000, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x90fb}, 0x1038, 0x7, 0x4, 0x0, 0x3, 0x4, 0x85c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 286.853442] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 286.859017] ? apparmor_path_rename+0xcd0/0xcd0 [ 286.863711] ? rcu_read_lock_sched_held+0x14f/0x180 [ 286.868748] ? kmem_cache_alloc+0x33a/0x730 [ 286.873083] ? d_set_d_op+0x31d/0x410 [ 286.876964] security_file_alloc+0x4c/0xa0 [ 286.881232] __alloc_file+0x12a/0x470 [ 286.881252] ? file_free_rcu+0xd0/0xd0 [ 286.888936] ? d_instantiate+0x79/0xa0 [ 286.892841] ? lock_downgrade+0x900/0x900 [ 286.897008] ? kasan_check_read+0x11/0x20 [ 286.901170] ? do_raw_spin_unlock+0xa7/0x330 [ 286.905630] ? do_raw_spin_trylock+0x270/0x270 [ 286.910240] alloc_empty_file+0x72/0x170 [ 286.914320] alloc_file+0x5e/0x4d0 [ 286.917887] ? _raw_spin_unlock+0x2c/0x50 [ 286.922061] alloc_file_pseudo+0x261/0x3f0 [ 286.926332] ? alloc_file+0x4d0/0x4d0 [ 286.930149] ? usercopy_warn+0x110/0x110 [ 286.934329] __shmem_file_setup.part.50+0x110/0x2a0 [ 286.939380] shmem_file_setup+0x65/0x90 [ 286.943366] __x64_sys_memfd_create+0x2af/0x4f0 [ 286.948046] ? memfd_fcntl+0x1910/0x1910 [ 286.952134] do_syscall_64+0x1b9/0x820 [ 286.956040] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 286.961416] ? syscall_return_slowpath+0x5e0/0x5e0 [ 286.966366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.971240] ? trace_hardirqs_on_caller+0x310/0x310 [ 286.976281] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 286.981313] ? prepare_exit_to_usermode+0x291/0x3b0 [ 286.986349] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 286.991225] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.996429] RIP: 0033:0x457569 [ 286.999643] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.018558] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 287.026295] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000000457569 [ 287.033565] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000004bc78a [ 287.040856] RBP: 000000000072bf00 R08: 0000000000100020 R09: 00000000fbad8001 [ 287.048138] R10: 0000000020000100 R11: 0000000000000246 R12: 00007f93afa656d4 [ 287.055410] R13: 00000000004c4a1e R14: 00000000004d7d88 R15: 0000000000000003 [ 287.072160] FAULT_INJECTION: forcing a failure. [ 287.072160] name failslab, interval 1, probability 0, space 0, times 0 [ 287.083854] CPU: 0 PID: 8456 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 287.092278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.101633] Call Trace: [ 287.104231] dump_stack+0x244/0x39d [ 287.107873] ? dump_stack_print_info.cold.1+0x20/0x20 [ 287.113071] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.118613] should_fail.cold.4+0xa/0x17 [ 287.122694] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 287.127814] ? zap_class+0x640/0x640 [ 287.131545] ? zap_class+0x640/0x640 [ 287.135264] ? radix_tree_iter_tag_clear+0x90/0x90 [ 287.140211] ? find_held_lock+0x36/0x1c0 [ 287.144287] ? __lock_is_held+0xb5/0x140 [ 287.148361] ? perf_trace_sched_process_exec+0x860/0x860 [ 287.153813] ? perf_trace_sched_process_exec+0x860/0x860 [ 287.159280] __should_failslab+0x124/0x180 [ 287.163520] should_failslab+0x9/0x14 [ 287.167323] __kmalloc+0x2e0/0x760 [ 287.170872] ? __list_lru_init+0x151/0x840 [ 287.175147] __list_lru_init+0x151/0x840 [ 287.179223] ? list_lru_destroy+0x500/0x500 [ 287.183562] ? up_write+0x7b/0x220 [ 287.187107] ? down_write_nested+0x130/0x130 [ 287.191532] ? down_read+0x120/0x120 [ 287.195254] ? init_wait_entry+0x1c0/0x1c0 [ 287.199488] ? prealloc_shrinker+0x172/0x340 [ 287.203907] alloc_super+0x907/0xb40 [ 287.207630] ? destroy_unused_super.part.10+0x110/0x110 [ 287.212990] ? sget_userns+0x17c/0x850 [ 287.216882] ? lock_downgrade+0x900/0x900 [ 287.221051] ? kasan_check_read+0x11/0x20 [ 287.225215] ? do_raw_spin_trylock+0x270/0x270 [ 287.229805] ? security_capable+0x99/0xc0 [ 287.233977] sget_userns+0x278/0x850 [ 287.237693] ? get_anon_bdev+0xc0/0xc0 [ 287.241589] ? vfs_get_super+0x270/0x270 [ 287.245666] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.251233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.256775] ? ns_capable_common+0x13f/0x170 [ 287.261223] ? get_anon_bdev+0xc0/0xc0 [ 287.265114] sget+0x10b/0x150 [ 287.268232] ? autofs_get_inode+0x3e0/0x3e0 [ 287.272554] mount_nodev+0x38/0x120 [ 287.276183] ? ubifs_init_security+0xf0/0xf0 [ 287.280606] autofs_mount+0x34/0x40 [ 287.284254] legacy_get_tree+0x131/0x460 [ 287.288324] vfs_get_tree+0x1cb/0x5c0 [ 287.292150] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 287.296924] do_mount+0x70c/0x1d90 [ 287.300472] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 287.306025] ? copy_mount_string+0x40/0x40 [ 287.310270] ? copy_mount_options+0x5f/0x430 [ 287.314685] ? kmem_cache_alloc_trace+0x353/0x750 [ 287.319537] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 287.325092] ? _copy_from_user+0xdf/0x150 [ 287.329245] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.334782] ? copy_mount_options+0x315/0x430 [ 287.339284] ksys_mount+0x12d/0x140 [ 287.342926] __x64_sys_mount+0xbe/0x150 [ 287.346904] do_syscall_64+0x1b9/0x820 [ 287.350809] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 287.356179] ? syscall_return_slowpath+0x5e0/0x5e0 [ 287.361133] ? trace_hardirqs_on_caller+0x310/0x310 [ 287.366156] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 287.371197] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 287.377879] ? __switch_to_asm+0x40/0x70 [ 287.381941] ? __switch_to_asm+0x34/0x70 [ 287.386012] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.390867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.396056] RIP: 0033:0x457569 [ 287.399266] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.418168] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 287.425888] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 287.433196] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 287.440470] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 287.447737] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 10:13:16 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3) [ 287.455035] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000003 10:13:16 executing program 1 (fault-call:1 fault-nth:16): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:16 executing program 5: r0 = socket$inet(0x2, 0x4000000000000006, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)={@local, @broadcast, 0x0, 0x2, [@dev={0xac, 0x14, 0x14, 0x1b}, @multicast1]}, 0x18) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @rand_addr}, {0x2, 0x0, @dev}, {0x2, 0x0, @broadcast}, 0x46}) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000000)={0x0, 0x7d, 0x30, 0x63b, 0x4}, &(0x7f0000000040)=0x18) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000080)={r1, 0x10001, 0x100}, 0x8) r2 = syz_open_procfs(0x0, &(0x7f0000000180)='net/fib_triestat\x00') ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r2, 0x80dc5521, &(0x7f00000001c0)=""/36) 10:13:16 executing program 3 (fault-call:2 fault-nth:5): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 287.589556] hfsplus: unable to find HFS+ superblock [ 287.621345] FAULT_INJECTION: forcing a failure. [ 287.621345] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 287.633176] CPU: 0 PID: 8476 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 287.641623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.650987] Call Trace: [ 287.653599] dump_stack+0x244/0x39d [ 287.657268] ? dump_stack_print_info.cold.1+0x20/0x20 [ 287.662485] ? print_usage_bug+0xc0/0xc0 [ 287.666577] should_fail.cold.4+0xa/0x17 10:13:16 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x5, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="0000063fc900000000000000050000008c01000000000065750ede825e45a90f1c09876e6d0cd4e191a1f98937702d8f9523b12ed909205c7333bb937dee28d4b2921ea4c8fa86a915932f764b26916a0dc38b518cdf4dba35cebb98b7559414d05501b53517cdf5426294335b7189c3003b2cbdae69c720e6ff0000000000710e13"], 0x82) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x200000, 0x0) getpid() write$P9_RGETLOCK(r1, &(0x7f0000000080)={0x28, 0x37, 0x0, {0x0, 0x0, 0x0, 0x0, 0xa, '/dev/ptmx\x00'}}, 0x28) r2 = syz_open_pts(r0, 0x0) ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000000)) execve(&(0x7f0000000100)='./file0\x00', &(0x7f0000000400)=[&(0x7f0000000140)='-\x00', &(0x7f0000000240)='/dev/ptmx\x00', &(0x7f0000000280)='/dev/dsp\x00', &(0x7f00000002c0)='/dev/ptmx\x00', &(0x7f0000000300)='/dev/dsp\x00', &(0x7f0000000340)='/dev/dsp\x00', &(0x7f0000000380)='/dev/ptmx\x00', &(0x7f00000003c0)='/dev/dsp\x00'], &(0x7f00000004c0)=[&(0x7f0000000440)='bdevself}vmnet0posix_acl_access}wlan1selinuxvboxnet0\x00', &(0x7f0000000480)='cpusetsecuritysecurityvmnet0)\x00']) 10:13:16 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) sendmsg$nl_crypto(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)=@get={0x110, 0x13, 0x300, 0x70bd25, 0x25dfdbfc, {{'ecb-aes-aesni\x00'}, [], [], 0x0, 0x400}, [{0x8, 0x1, 0x2}, {0x8, 0x1, 0x2}, {0x8, 0x1, 0x12eeeb4}, {0x8, 0x1, 0x54}, {0x8, 0x1, 0x9}, {0x8, 0x1, 0x6}]}, 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) timer_create(0x7, &(0x7f0000000400)={0x0, 0xe, 0x2, @thr={&(0x7f00000002c0)="81e6bfc5b95156f2e8202601b9f244e1ce07370184a4542909d681055637b80e714b7f83becb35ab5e0aa36d2b46069f680d3f565f7eac1a19a0737055a1a94078bffb0787eccfdb45f5b1cfc5e3e5159538f24ac09d2e2847c1bdfd385f5b75faff", &(0x7f0000000340)="9fb55eb490f2ebc77456736bae1ffdc7512e1d221e361f38c37014f5d8ebfdcf3182795338b1a249f92920b0d53141a46281f1ebe100a42db643000041b2c61f8b90b910b168244220dce83422751230de8b74152d62a383d9d6bf5b846cd6e1d8c9e857415b2b60a0cc32ccea81969ef82d1dfc9ff40a8fd1b3eef584871f485453fe90d358d67a7a6cbdc576fbc57d33d394fc"}}, &(0x7f0000000440)=0x0) timer_settime(r1, 0x1, &(0x7f0000000480)={{}, {0x77359400}}, &(0x7f00000004c0)) openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000280)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r2 = socket$key(0xf, 0x3, 0x2) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$key(r2, &(0x7f0000b6dfc8)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000080)=ANY=[@ANYBLOB="02070100020000000000000000000000"], 0x10}}, 0x0) [ 287.670659] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 287.675782] ? print_usage_bug+0xc0/0xc0 [ 287.679882] ? mark_held_locks+0x130/0x130 [ 287.684133] ? print_usage_bug+0xc0/0xc0 [ 287.684152] ? __lock_acquire+0x62f/0x4c20 [ 287.684170] ? __lock_acquire+0x62f/0x4c20 [ 287.684214] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.684231] ? should_fail+0x22d/0xd01 [ 287.692530] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 287.711294] __alloc_pages_nodemask+0x34b/0xdd0 [ 287.715980] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 10:13:16 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000500)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x11) ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0xc) ioctl$TIOCGLCKTRMIOS(r0, 0x405c5503, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x8}) ioctl$UI_DEV_SETUP(r0, 0x5501, &(0x7f00000003c0)={{}, 'syz1\x00'}) [ 287.721024] ? find_held_lock+0x36/0x1c0 [ 287.725133] ? trace_hardirqs_off+0xb8/0x310 [ 287.729578] cache_grow_begin+0xa5/0x8c0 [ 287.729596] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 287.729613] ? check_preemption_disabled+0x48/0x280 [ 287.729636] kmem_cache_alloc_trace+0x684/0x750 [ 287.729650] ? should_fail+0x22d/0xd01 [ 287.729673] alloc_super+0xd4/0xb40 [ 287.739276] ? destroy_unused_super.part.10+0x110/0x110 [ 287.739290] ? sget_userns+0x17c/0x850 [ 287.739309] ? lock_downgrade+0x900/0x900 10:13:16 executing program 2: r0 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000240)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r1, &(0x7f0000000300)={0x1, 0x10, 0xfa00, {&(0x7f00000001c0), r2}}, 0x18) write$P9_RREMOVE(r1, &(0x7f0000000280)={0xff60}, 0xe3c7) sched_setattr(0x0, &(0x7f00000003c0)={0x30, 0x1, 0x0, 0x0, 0x5}, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100) fdatasync(r1) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) write$cgroup_type(r1, &(0x7f0000000200)='threaded\x00', 0x9) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000380)=0x10000, 0x4) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f0000000040)=0x6) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000200)) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f00000000c0)=[@in={0x2, 0x4e22}, @in6={0xa, 0x4e24, 0x1ff, @empty, 0xd21}], 0x2c) write$FUSE_LSEEK(r0, &(0x7f0000000080)={0x18}, 0x18) syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x0, 0x10000) sched_setattr(0x0, &(0x7f0000000180)={0x0, 0x5}, 0x0) flock(0xffffffffffffffff, 0x0) getsockopt$inet_opts(r1, 0x0, 0x9, &(0x7f0000000400)=""/4096, &(0x7f0000000340)=0x1000) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000001400)={@ipv4={[], [], @broadcast}, 0x1, 0x0, 0xff, 0xb, 0x0, 0x7, 0x9}, 0x20) [ 287.739335] ? kasan_check_read+0x11/0x20 [ 287.739349] ? do_raw_spin_unlock+0xa7/0x330 [ 287.739364] ? do_raw_spin_trylock+0x270/0x270 [ 287.739384] ? security_capable+0x99/0xc0 [ 287.787168] sget_userns+0x278/0x850 [ 287.790910] ? get_anon_bdev+0xc0/0xc0 [ 287.794817] ? vfs_get_super+0x270/0x270 [ 287.798911] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.804498] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.804519] ? ns_capable_common+0x13f/0x170 [ 287.814465] ? get_anon_bdev+0xc0/0xc0 [ 287.818370] sget+0x10b/0x150 [ 287.821501] ? autofs_get_inode+0x3e0/0x3e0 [ 287.825865] mount_nodev+0x38/0x120 [ 287.829510] ? ubifs_init_security+0xf0/0xf0 [ 287.833935] autofs_mount+0x34/0x40 [ 287.837593] legacy_get_tree+0x131/0x460 [ 287.841675] vfs_get_tree+0x1cb/0x5c0 [ 287.845511] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 287.850286] do_mount+0x70c/0x1d90 [ 287.853872] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 287.859431] ? copy_mount_string+0x40/0x40 [ 287.863697] ? copy_mount_options+0x5f/0x430 [ 287.868138] ? kmem_cache_alloc_trace+0x353/0x750 [ 287.872996] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 287.878555] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 287.884117] ? copy_mount_options+0x315/0x430 [ 287.888632] ksys_mount+0x12d/0x140 [ 287.892265] __x64_sys_mount+0xbe/0x150 [ 287.896252] do_syscall_64+0x1b9/0x820 [ 287.900149] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 287.905517] ? syscall_return_slowpath+0x5e0/0x5e0 [ 287.910465] ? trace_hardirqs_on_caller+0x310/0x310 [ 287.915485] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 287.920510] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 287.927177] ? __switch_to_asm+0x40/0x70 [ 287.931259] ? __switch_to_asm+0x34/0x70 [ 287.935329] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 287.940180] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.945382] RIP: 0033:0x457569 [ 287.948580] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.967479] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 287.975198] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 287.982473] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 [ 287.989745] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 287.997014] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 288.004294] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 [ 288.054164] input:  as /devices/virtual/input/input9 10:13:16 executing program 1 (fault-call:1 fault-nth:17): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 288.097623] autofs4:pid:8476:autofs_fill_super: called with bogus options [ 288.123681] FAULT_INJECTION: forcing a failure. [ 288.123681] name failslab, interval 1, probability 0, space 0, times 0 [ 288.199310] CPU: 1 PID: 8499 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 288.207765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.217142] Call Trace: [ 288.219749] dump_stack+0x244/0x39d [ 288.223403] ? dump_stack_print_info.cold.1+0x20/0x20 [ 288.228617] ? find_held_lock+0x36/0x1c0 [ 288.232706] should_fail.cold.4+0xa/0x17 [ 288.236780] ? find_held_lock+0x36/0x1c0 [ 288.240858] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 288.245986] ? lock_downgrade+0x900/0x900 [ 288.250157] ? current_time+0x72/0x1b0 [ 288.250182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.250209] ? timespec64_trunc+0xea/0x180 [ 288.250224] ? inode_init_owner+0x340/0x340 [ 288.250246] ? find_held_lock+0x36/0x1c0 [ 288.250283] ? perf_trace_sched_process_exec+0x860/0x860 [ 288.268329] hfsplus: unable to find HFS+ superblock [ 288.272322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.272349] __should_failslab+0x124/0x180 [ 288.272370] should_failslab+0x9/0x14 [ 288.272386] kmem_cache_alloc+0x2be/0x730 [ 288.272405] ? do_sys_ftruncate+0x428/0x550 [ 288.292385] FAULT_INJECTION: forcing a failure. [ 288.292385] name failslab, interval 1, probability 0, space 0, times 0 [ 288.292625] ? lock_downgrade+0x900/0x900 [ 288.320258] getname_flags+0xd0/0x590 [ 288.324070] ? __lock_is_held+0xb5/0x140 [ 288.328157] getname+0x19/0x20 [ 288.331376] do_sys_open+0x383/0x700 [ 288.335115] ? filp_open+0x80/0x80 [ 288.338668] ? trace_hardirqs_off_caller+0x300/0x300 [ 288.343794] ? do_sys_ftruncate+0x449/0x550 [ 288.348126] __x64_sys_open+0x7e/0xc0 [ 288.351937] do_syscall_64+0x1b9/0x820 [ 288.355843] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 288.361227] ? syscall_return_slowpath+0x5e0/0x5e0 [ 288.366171] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.371037] ? trace_hardirqs_on_caller+0x310/0x310 [ 288.376063] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 288.381094] ? prepare_exit_to_usermode+0x291/0x3b0 [ 288.386135] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.391001] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.396206] RIP: 0033:0x4111a1 [ 288.399411] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 288.418319] RSP: 002b:00007f93afa64a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 288.426029] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004111a1 [ 288.433305] RDX: 00007f93afa64afa RSI: 0000000000000002 RDI: 00007f93afa64af0 [ 288.440584] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a 10:13:17 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000020000000020000007f"], &(0x7f0000000040)='saller\x00', 0x0, 0xb1, &(0x7f0000000200)=""/177}, 0x48) mount(&(0x7f0000000080)=ANY=[@ANYBLOB="7be4ba6cd2d3ce74ba9b646eae4880fd1f47e4aab5f6c09f997904dd65879edde3865c967d548ffc284baa4778a524342fec3c6d1400000000000000000000000000"], &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000100)="03") 10:13:17 executing program 4: r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x400040000000001, 0x0) bind$unix(r1, &(0x7f0000003000)=@abs={0x1}, 0x8) listen(r1, 0x0) connect(r0, &(0x7f0000985ff8)=@un=@abs={0x1}, 0x8) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000080)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0xc) r2 = gettid() r3 = syz_open_procfs(r2, &(0x7f0000000140)='net/unix\x00') sendfile(r0, r3, &(0x7f0000000000), 0x800000c2) [ 288.447868] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 288.455140] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 288.462497] CPU: 0 PID: 8510 Comm: syz-executor1 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 288.470914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.480269] Call Trace: [ 288.482882] dump_stack+0x244/0x39d [ 288.486531] ? dump_stack_print_info.cold.1+0x20/0x20 [ 288.491740] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.497292] should_fail.cold.4+0xa/0x17 [ 288.501382] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 288.506523] ? zap_class+0x640/0x640 [ 288.510264] ? find_held_lock+0x36/0x1c0 [ 288.514343] ? __lock_is_held+0xb5/0x140 [ 288.518435] ? __lockdep_init_map+0x105/0x590 [ 288.522954] ? perf_trace_sched_process_exec+0x860/0x860 [ 288.528419] ? lockdep_init_map+0x9/0x10 [ 288.532501] __should_failslab+0x124/0x180 [ 288.532522] should_failslab+0x9/0x14 [ 288.532537] __kmalloc+0x2e0/0x760 [ 288.532556] ? __init_waitqueue_head+0x9e/0x150 [ 288.532586] ? init_wait_entry+0x1c0/0x1c0 [ 288.532601] ? prealloc_shrinker+0x172/0x340 [ 288.532622] prealloc_shrinker+0x172/0x340 [ 288.532645] alloc_super+0x8db/0xb40 [ 288.540686] ? destroy_unused_super.part.10+0x110/0x110 [ 288.540700] ? sget_userns+0x17c/0x850 [ 288.540719] ? lock_downgrade+0x900/0x900 [ 288.540744] ? kasan_check_read+0x11/0x20 [ 288.540761] ? do_raw_spin_trylock+0x270/0x270 [ 288.540780] ? security_capable+0x99/0xc0 [ 288.540805] sget_userns+0x278/0x850 [ 288.540826] ? get_anon_bdev+0xc0/0xc0 [ 288.549166] ? vfs_get_super+0x270/0x270 [ 288.549209] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.549253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.549290] ? ns_capable_common+0x13f/0x170 [ 288.562173] ? get_anon_bdev+0xc0/0xc0 [ 288.562211] sget+0x10b/0x150 [ 288.562234] ? autofs_get_inode+0x3e0/0x3e0 [ 288.562250] mount_nodev+0x38/0x120 [ 288.562268] ? ubifs_init_security+0xf0/0xf0 [ 288.562288] autofs_mount+0x34/0x40 [ 288.571369] legacy_get_tree+0x131/0x460 [ 288.571392] vfs_get_tree+0x1cb/0x5c0 [ 288.571411] ? legacy_fs_context_dup+0x1d0/0x1d0 [ 288.571431] do_mount+0x70c/0x1d90 [ 288.571459] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 288.571484] ? copy_mount_string+0x40/0x40 [ 288.571507] ? copy_mount_options+0x5f/0x430 [ 288.571527] ? kmem_cache_alloc_trace+0x353/0x750 [ 288.579563] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 288.579588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.579607] ? copy_mount_options+0x315/0x430 [ 288.579628] ksys_mount+0x12d/0x140 10:13:17 executing program 3 (fault-call:2 fault-nth:6): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:17 executing program 4: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x88041, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000280), &(0x7f0000000300)=0x10) io_setup(0x0, &(0x7f0000000240)) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000040)) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000100)) io_submit(0x0, 0x0, &(0x7f0000000540)) open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x0) ioctl$sock_inet_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f00000001c0)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 288.579646] __x64_sys_mount+0xbe/0x150 [ 288.579668] do_syscall_64+0x1b9/0x820 [ 288.579684] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 288.579703] ? syscall_return_slowpath+0x5e0/0x5e0 [ 288.579724] ? trace_hardirqs_on_caller+0x310/0x310 [ 288.579744] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 288.588632] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 288.588650] ? __switch_to_asm+0x40/0x70 [ 288.588665] ? __switch_to_asm+0x34/0x70 [ 288.588687] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.588711] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.588728] RIP: 0033:0x457569 [ 288.588745] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 288.602294] rpcbind: RPC call returned error 13 [ 288.604629] RSP: 002b:00007f5e0f16bc78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 288.604645] RAX: ffffffffffffffda RBX: 00007f5e0f16bc90 RCX: 0000000000457569 [ 288.604656] RDX: 0000000020000380 RSI: 0000000020cbeff8 RDI: 00000000202b9ff8 10:13:17 executing program 2: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f00000002c0)={r0}) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x10, 0x0, 0x1000f2) r2 = open(&(0x7f0000000180)='./bus\x00', 0x4002, 0x0) ioctl$VT_ACTIVATE(r1, 0x5606, 0x0) fcntl$getownex(r2, 0x10, &(0x7f00000000c0)={0x0, 0x0}) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f00000001c0)={0x0, 0x3ff}, &(0x7f0000000200)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000480)={r4, @in6={{0xa, 0x4e22, 0x73e3, @loopback, 0x8f}}}, 0x84) fcntl$notify(r0, 0x402, 0x0) pipe(&(0x7f0000000540)) syz_open_procfs(r3, &(0x7f0000000140)='net/psched\x00') getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000240)={r4, 0x8}, &(0x7f0000000280)=0x8) sendfile(r2, r2, &(0x7f0000d83ff8)=0x1200, 0x8000fffffffe) getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000300)={0x0, 0x8, 0x0, 0x80000001, 0x0, 0x1e, 0x7, 0x4, {0x0, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x11}}}, 0x8000, 0x68c, 0x7fffffff, 0x0, 0x80000000}}, &(0x7f00000003c0)=0xb0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000400)={r5, 0x10001}, &(0x7f0000000440)=0x8) [ 288.604665] RBP: 000000000072bfa0 R08: 00000000200003c0 R09: 0000000000000000 [ 288.604674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5e0f16c6d4 [ 288.604684] R13: 00000000004c289b R14: 00000000004d3c78 R15: 0000000000000005 [ 288.626795] rpcbind: RPC call returned error 13 10:13:17 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(0xffffffffffffffff, 0x800455d1, &(0x7f0000000080)) sendmsg$nl_route(r0, &(0x7f0000001cc0)={&(0x7f0000000000)={0x10, 0x9effffff, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="3000000010000108000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008000d000000000008011b0000000000"], 0x30}}, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = dup2(r1, r1) accept$inet6(r2, &(0x7f00000000c0), &(0x7f0000000100)=0x1c) r3 = getpid() syz_open_procfs(r3, &(0x7f0000000140)='smaps\x00') ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) mlockall(0x1) clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x3) [ 288.958395] audit: type=1804 audit(1540289597.568:31): pid=8569 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir402956747/syzkaller.6FLVQo/47/bus" dev="sda1" ino=16531 res=1 [ 288.991562] FAULT_INJECTION: forcing a failure. [ 288.991562] name failslab, interval 1, probability 0, space 0, times 0 10:13:17 executing program 0: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x10001, 0x80000) ioctl$sock_proto_private(r0, 0x89e3, &(0x7f0000000140)="a5644fbf09ab71c3dab75f71173a7e6c2a9a0c83add55b596a16524b9af24ce289d8621ac88ff31b5d5c18fd85e488a368bea311733ab9482678004d5085450e8f83841621a6aef854016c86d53756b7494d6a1e3644affb0390461334f04d8277311e1d3bbf77cc303ab995a2fccc5f25d7") openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fd/3\x00') write$binfmt_script(r1, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1d0) 10:13:17 executing program 1 (fault-call:1 fault-nth:18): syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) [ 289.169325] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. [ 289.209307] CPU: 0 PID: 8576 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 10:13:17 executing program 4: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r1, &(0x7f0000000700), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x8000, 0x0) ioctl$ASHMEM_GET_SIZE(r3, 0x7704, 0x0) sendmsg$can_raw(r1, &(0x7f0000001fc8)={&(0x7f0000000000)={0x1d, r2}, 0x10, &(0x7f0000017ff0)={&(0x7f0000007000)=@canfd={{0x1}, 0x23, 0x0, 0x0, 0x0, "0327e19a2b0100000000000000f9030008990039966a7d5c037dc12502080000a0000007496e6866856b76b5010000000000000000060000000118fa1efd9b0b"}, 0x48}}, 0x0) [ 289.217738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.227096] Call Trace: [ 289.229711] dump_stack+0x244/0x39d [ 289.233373] ? dump_stack_print_info.cold.1+0x20/0x20 [ 289.238590] ? debug_smp_processor_id+0x1c/0x20 [ 289.243271] ? perf_trace_lock+0x14d/0x7a0 [ 289.243293] should_fail.cold.4+0xa/0x17 [ 289.243312] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 289.243336] ? lock_downgrade+0x900/0x900 [ 289.243349] ? current_time+0x72/0x1b0 [ 289.243366] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.243382] ? check_preemption_disabled+0x48/0x280 [ 289.243403] ? debug_smp_processor_id+0x1c/0x20 [ 289.243422] ? perf_trace_lock+0x14d/0x7a0 [ 289.256845] ? find_held_lock+0x36/0x1c0 [ 289.277819] audit: type=1804 audit(1540289597.648:32): pid=8581 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor4" name="/root/syzkaller-testdir402956747/syzkaller.6FLVQo/47/bus" dev="sda1" ino=16531 res=1 [ 289.280088] ? perf_trace_sched_process_exec+0x860/0x860 [ 289.280106] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.280130] __should_failslab+0x124/0x180 [ 289.280150] should_failslab+0x9/0x14 [ 289.280166] kmem_cache_alloc+0x2be/0x730 [ 289.280180] ? do_sys_ftruncate+0x428/0x550 [ 289.280208] ? lock_downgrade+0x900/0x900 [ 289.280226] getname_flags+0xd0/0x590 [ 289.280243] getname+0x19/0x20 [ 289.280257] do_sys_open+0x383/0x700 [ 289.280275] ? filp_open+0x80/0x80 [ 289.280295] ? trace_hardirqs_off_caller+0x300/0x300 [ 289.280309] ? do_sys_ftruncate+0x449/0x550 [ 289.280329] __x64_sys_open+0x7e/0xc0 [ 289.280347] do_syscall_64+0x1b9/0x820 [ 289.280363] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 289.280379] ? syscall_return_slowpath+0x5e0/0x5e0 [ 289.280419] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.280436] ? trace_hardirqs_on_caller+0x310/0x310 [ 289.280476] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 289.280497] ? prepare_exit_to_usermode+0x291/0x3b0 [ 289.311676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.311713] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.311726] RIP: 0033:0x4111a1 10:13:18 executing program 3 (fault-call:2 fault-nth:7): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:18 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000200)) openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(0xffffffffffffffff, 0xc058534b, &(0x7f00000003c0)={0x3, 0xc, 0x0, 0x6, 0x0, 0x405}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, &(0x7f0000000740), &(0x7f0000000780)=0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$RTC_PIE_OFF(0xffffffffffffffff, 0x7006) setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000880)={@un=@abs={0x1, 0x0, 0x4e21}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300), 0x3}, 0xa0) ioctl$KVM_GET_NESTED_STATE(0xffffffffffffffff, 0xc080aebe, &(0x7f0000000ec0)={0x0, 0x0, 0x2080}) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}}, &(0x7f0000000380)) r2 = creat(&(0x7f0000000340)='./file0\x00', 0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r2, 0x800448d3, &(0x7f0000000440)={{0x9, 0x2, 0xfffffffeffffffff, 0xfffffffffffffffb, 0x3, 0x6c}, 0x6, 0x0, 0x40, 0x80, 0x0, "892b88a58ee0619c0fcb2249d803e68b5036b542677216b71d34357d4f08663646bfd7bf632415a9013cf9a7bc59d0cbfacc1000baa35129737111e2e2b2f1941714f3c6cbc97316666215de505bfc138a153fc6a97d90f0e26103d616f669f56883d961d3ba19c1a3d63aa959e14124b19cfb28fa498385a6af9a81d4f5840e"}) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000280)=r0, 0x4) r3 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000007c0), 0x4) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00006dbffc), 0x4) bind$inet(r3, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10) ioctl$int_in(r3, 0x5421, &(0x7f0000000900)=0x6) setsockopt$RDS_CONG_MONITOR(r3, 0x114, 0x6, &(0x7f0000000080), 0x4) sendto$inet(r3, &(0x7f0000000a00)="ba", 0x1, 0x0, &(0x7f000069affb)={0x2, 0x0, @loopback}, 0x10) r4 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x5}) mq_timedsend(r4, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)={0x77359400}) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x8000, 0x0) ioctl$BLKTRACESTART(r5, 0x1274, 0x0) ioctl$GIO_SCRNMAP(r5, 0x4b40, &(0x7f0000000200)=""/122) ioctl$GIO_SCRNMAP(r5, 0x4b40, &(0x7f00000002c0)=""/60) mq_timedsend(r5, &(0x7f0000000540)="8fdea0c9e172d96e6d6d3cb9195b3a6ef2477e8797add3691f901f", 0x1b, 0x0, &(0x7f0000000140)={0x77359400}) mq_timedreceive(r4, &(0x7f0000000100)=""/24, 0x18, 0x0, 0x0) getcwd(&(0x7f0000000580)=""/118, 0x339) [ 289.311743] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 289.311751] RSP: 002b:00007f93afa64a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 289.311767] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004111a1 [ 289.311777] RDX: 00007f93afa64afa RSI: 0000000000000002 RDI: 00007f93afa64af0 [ 289.311798] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 289.311806] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 289.311815] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 289.342721] audit: type=1804 audit(1540289597.648:33): pid=8569 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor4" name="/root/syzkaller-testdir402956747/syzkaller.6FLVQo/47/bus" dev="sda1" ino=16531 res=1 [ 289.593587] hfsplus: unable to find HFS+ superblock [ 289.644513] FAULT_INJECTION: forcing a failure. [ 289.644513] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 289.648630] audit: type=1800 audit(1540289597.788:34): pid=8616 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor2" name="bus" dev="sda1" ino=16563 res=0 [ 289.656336] CPU: 1 PID: 8648 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 289.656347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.656353] Call Trace: [ 289.656380] dump_stack+0x244/0x39d [ 289.656408] ? dump_stack_print_info.cold.1+0x20/0x20 [ 289.656443] should_fail.cold.4+0xa/0x17 [ 289.709041] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 289.714165] ? print_usage_bug+0xc0/0xc0 [ 289.718272] ? mark_held_locks+0x130/0x130 [ 289.722525] ? zap_class+0x640/0x640 [ 289.726260] ? print_usage_bug+0xc0/0xc0 [ 289.730338] ? zap_class+0x640/0x640 [ 289.734067] ? lock_downgrade+0x900/0x900 [ 289.738236] ? check_preemption_disabled+0x48/0x280 [ 289.743283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.748828] ? should_fail+0x22d/0xd01 [ 289.752729] ? find_held_lock+0x36/0x1c0 [ 289.756807] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 289.761946] __alloc_pages_nodemask+0x34b/0xdd0 [ 289.766635] ? current_time+0x72/0x1b0 [ 289.770540] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 289.775587] ? inode_init_owner+0x340/0x340 [ 289.779945] ? find_held_lock+0x36/0x1c0 [ 289.784084] ? zswap_frontswap_invalidate_area+0x108/0x140 [ 289.789737] ? trace_hardirqs_off+0xb8/0x310 [ 289.794163] cache_grow_begin+0xa5/0x8c0 [ 289.798253] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 289.803801] ? check_preemption_disabled+0x48/0x280 [ 289.808838] kmem_cache_alloc+0x66b/0x730 [ 289.813006] ? do_sys_ftruncate+0x428/0x550 [ 289.817384] getname_flags+0xd0/0x590 [ 289.821213] ? __lock_is_held+0xb5/0x140 [ 289.825301] getname+0x19/0x20 [ 289.828506] do_sys_open+0x383/0x700 [ 289.832237] ? filp_open+0x80/0x80 [ 289.835791] ? trace_hardirqs_off_caller+0x300/0x300 [ 289.840906] ? do_sys_ftruncate+0x449/0x550 [ 289.845245] __x64_sys_open+0x7e/0xc0 [ 289.849066] do_syscall_64+0x1b9/0x820 [ 289.852975] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 289.858353] ? syscall_return_slowpath+0x5e0/0x5e0 [ 289.863301] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.868167] ? trace_hardirqs_on_caller+0x310/0x310 [ 289.873221] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 289.878267] ? prepare_exit_to_usermode+0x291/0x3b0 [ 289.883300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.888160] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.893383] RIP: 0033:0x4111a1 [ 289.896590] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 289.915494] RSP: 002b:00007f93afa64a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 289.923226] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004111a1 [ 289.930499] RDX: 00007f93afa64afa RSI: 0000000000000002 RDI: 00007f93afa64af0 [ 289.937784] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a 10:13:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001d00fdff000000000011000000"], 0x14}}, 0x0) r1 = dup(r0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f0000000080)={0x1, 0x3, 0x6, 0x5, 0x4, 0x752, 0x2, 0x2, 0x0}, &(0x7f00000000c0)=0x20) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000140)={r2, 0xe5, 0x20, 0x1, 0x5}, &(0x7f0000000180)=0x18) [ 289.945062] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 289.952349] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:18 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofs\x00', 0x0, &(0x7f00000003c0)) 10:13:18 executing program 4: pipe2(&(0x7f0000000140), 0x800) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x80011, r2, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, &(0x7f0000000080)={0x400, 0x1}, 0x2) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001400), &(0x7f0000001440)=0xc) fcntl$getownex(r0, 0x10, &(0x7f00000014c0)) init_module(&(0x7f00000000c0)='vmnet1@eth1selinux\x00', 0x13, &(0x7f0000000100)='selfA\x00') [ 290.073384] audit: type=1800 audit(1540289598.688:35): pid=8651 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor2" name="bus" dev="sda1" ino=16563 res=0 [ 290.094901] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 290.117501] hfsplus: unable to find HFS+ superblock 10:13:18 executing program 3 (fault-call:2 fault-nth:8): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:18 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) close(r0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='oom_adj\x00') r2 = syz_open_procfs(0x0, &(0x7f0000000580)="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") sendfile(r2, r0, &(0x7f0000000000), 0x7fff) sendfile(r2, r0, &(0x7f0000000300), 0x7d) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f0000000100)={0xa4, 0x7, 0x0, 0x0, 0x0, [], [], [], 0x20, 0x4}) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x2, 0x8, 0x2, 0x5, 0x20, r1, 0x5}, 0x2c) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000280)={0x2, &(0x7f0000000240), 0x0, r2, 0x4}) [ 290.160901] autofs4:pid:8665:autofs_fill_super: called with bogus options 10:13:18 executing program 2: eventfd(0x7) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000080)="153f6234488dd25d766070") r1 = socket$inet(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="183373b381c3a77f10946b61e21ccf2bed58c30000000000cf11e4"], &(0x7f0000000000)="47504c00bc3047eb525f484f89fc96dd6ca64da40ff023122e66f6", 0x0, 0xce, &(0x7f0000000300)=""/206}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000d300000000028000007a0a00ffffffff0063"], &(0x7f0000000000)="47504c00bd304702525f484f89db96dd6ca64da40ff023122e60f6", 0x0, 0xce, &(0x7f0000001b80)=""/206}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xd, 0x5, &(0x7f0000000040)=@framed={{}, [@jmp]}, &(0x7f0000000200)='syzkaller\x00', 0x80000001, 0x228, &(0x7f0000000300)=""/187}, 0x48) sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000030707031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) timer_create(0x7, &(0x7f00000000c0)={0x0, 0x26, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000100)=0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x680000, 0x0) write$P9_RLINK(r3, &(0x7f00000001c0)={0x7, 0x47, 0x2}, 0x7) timer_delete(r2) getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f00000002c0)={0x0, 0x8, 0x5dba48b6, 0x6, 0x1ff, 0x3}, &(0x7f0000000400)=0x14) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000440)={r4}, &(0x7f0000000480)=0x8) [ 290.266519] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. [ 290.327836] netlink: 20 bytes leftover after parsing attributes in process `syz-executor2'. [ 290.360978] FAULT_INJECTION: forcing a failure. [ 290.360978] name failslab, interval 1, probability 0, space 0, times 0 [ 290.361789] netlink: 20 bytes leftover after parsing attributes in process `syz-executor2'. [ 290.390664] CPU: 0 PID: 8680 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 290.399091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.408451] Call Trace: [ 290.411081] dump_stack+0x244/0x39d [ 290.414738] ? dump_stack_print_info.cold.1+0x20/0x20 [ 290.419950] ? lock_downgrade+0x900/0x900 [ 290.424110] ? check_preemption_disabled+0x48/0x280 [ 290.429146] should_fail.cold.4+0xa/0x17 [ 290.433231] ? rcu_softirq_qs+0x20/0x20 [ 290.437232] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 290.442362] ? is_bpf_text_address+0xd3/0x170 [ 290.446874] ? kernel_text_address+0x79/0xf0 [ 290.451296] ? __kernel_text_address+0xd/0x40 [ 290.455807] ? unwind_get_return_address+0x61/0xa0 [ 290.460754] ? __save_stack_trace+0x8d/0xf0 [ 290.465091] ? find_held_lock+0x36/0x1c0 [ 290.469248] ? gfs2_alloc_blocks+0x2b58/0x2c00 [ 290.473860] ? do_syscall_64+0x1b9/0x820 [ 290.477952] ? perf_trace_sched_process_exec+0x860/0x860 [ 290.483427] __should_failslab+0x124/0x180 [ 290.487694] should_failslab+0x9/0x14 [ 290.491512] kmem_cache_alloc_trace+0x2d7/0x750 [ 290.496208] ? __might_sleep+0x95/0x190 [ 290.500223] apparmor_file_alloc_security+0x17b/0xac0 [ 290.505425] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 290.510992] ? apparmor_path_rename+0xcd0/0xcd0 [ 290.515687] ? rcu_read_lock_sched_held+0x14f/0x180 [ 290.520757] ? kmem_cache_alloc+0x33a/0x730 [ 290.525086] ? zap_class+0x640/0x640 [ 290.528820] security_file_alloc+0x4c/0xa0 [ 290.533069] __alloc_file+0x12a/0x470 [ 290.536894] ? file_free_rcu+0xd0/0xd0 [ 290.540810] ? find_held_lock+0x36/0x1c0 [ 290.544893] ? is_bpf_text_address+0xac/0x170 [ 290.549406] ? lock_downgrade+0x900/0x900 [ 290.553565] ? check_preemption_disabled+0x48/0x280 [ 290.558595] alloc_empty_file+0x72/0x170 [ 290.562666] path_openat+0x170/0x5150 [ 290.562684] ? rcu_softirq_qs+0x20/0x20 [ 290.562702] ? unwind_dump+0x190/0x190 [ 290.570482] ? zap_class+0x640/0x640 [ 290.570502] ? path_lookupat.isra.43+0xc00/0xc00 [ 290.570526] ? unwind_get_return_address+0x61/0xa0 [ 290.570561] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 290.578155] ? expand_files.part.8+0x571/0x9a0 [ 290.578178] ? find_held_lock+0x36/0x1c0 [ 290.578224] ? __alloc_fd+0x347/0x6e0 [ 290.588170] ? lock_downgrade+0x900/0x900 [ 290.588182] ? getname+0x19/0x20 [ 290.588295] ? kasan_check_read+0x11/0x20 [ 290.617386] ? do_raw_spin_unlock+0xa7/0x330 [ 290.621804] ? do_raw_spin_trylock+0x270/0x270 [ 290.626405] ? __lock_is_held+0xb5/0x140 [ 290.630478] ? __check_object_size+0xb1/0x782 [ 290.634993] ? _raw_spin_unlock+0x2c/0x50 [ 290.639157] ? __alloc_fd+0x347/0x6e0 [ 290.642993] do_filp_open+0x255/0x380 [ 290.646809] ? may_open_dev+0x100/0x100 [ 290.650818] ? get_unused_fd_flags+0x122/0x1a0 [ 290.655422] ? __alloc_fd+0x6e0/0x6e0 [ 290.659248] ? __lock_is_held+0xb5/0x140 [ 290.663332] do_sys_open+0x568/0x700 [ 290.667062] ? filp_open+0x80/0x80 [ 290.670619] ? trace_hardirqs_off_caller+0x300/0x300 [ 290.675730] ? do_sys_ftruncate+0x449/0x550 [ 290.675752] __x64_sys_open+0x7e/0xc0 [ 290.675772] do_syscall_64+0x1b9/0x820 [ 290.675787] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 290.675808] ? syscall_return_slowpath+0x5e0/0x5e0 [ 290.698225] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.698246] ? trace_hardirqs_on_caller+0x310/0x310 [ 290.698263] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 290.698298] ? prepare_exit_to_usermode+0x291/0x3b0 [ 290.718172] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.723046] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.728246] RIP: 0033:0x4111a1 [ 290.731449] Code: 75 14 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 b4 17 00 00 c3 48 83 ec 08 e8 8a fa ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 d3 fa ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 290.750367] RSP: 002b:00007f93afa64a80 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 290.758087] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004111a1 [ 290.765379] RDX: 00007f93afa64afa RSI: 0000000000000002 RDI: 00007f93afa64af0 [ 290.772658] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 290.779934] R10: 0000000000000075 R11: 0000000000000293 R12: 0000000000000004 [ 290.787222] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:19 executing program 5: r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0xfffffffffffffffb, 0x20000) accept4(r0, &(0x7f0000000140)=@rc, &(0x7f00000000c0)=0x80, 0x800) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, &(0x7f0000000100), 0x4) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) ioctl$sock_ifreq(r2, 0x89f4, &(0x7f0000000080)={'eql\x00\x00\x00\x00\x00\b\x00\x00\x00\x00\x005\x00', @ifru_settings={0x705000}}) 10:13:19 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='\nutofs\x00', 0x0, &(0x7f00000003c0)) 10:13:19 executing program 4: syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='.\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000540)="400000000002000019000000dc0100002c00000001000000000000000000ba9f002000000400000040000000000000003d5cbe5a0000ffff53eff3b290f3445011e18717b473c6eadf1696c86561099d67a4bc4714a960557584dad8ff8f7e681fa44d6167e9", 0x66, 0x400}], 0x0, &(0x7f0000000000)={[{@jqfmt_vfsv0='jqfmt=vfsv0'}]}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000740)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000000480)=0xe8) stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4, 0x6, &(0x7f0000000680)=[{&(0x7f0000000140)="d2de8182aa4aa037a5b064b1033fe0432237aa986c226a2be5eb4f213c2296bb2375fc62f56488d09e7198662b16bba4c0f4d913a35175b39e43ba8ac01b4ffaafe583e89cc6a8e6fff1b5f7c088", 0x4e, 0x8}, {&(0x7f00000001c0)="565f7b944c660bc6d54abaf647cc0bcf15a4e6ae407123db5e5cead907a77882d4edd0b9a2254d280142dff29d8b1c2fc4ee88dafb0ae2ac07f40c8ad2df4fa72c4307d6a94b8cdadee92148aad761a3461c3ccfff2669b89e9cf6844a4d24c697f668c1d9f5c967ce95dbf06117b9f9b2216b1f6f4825c5c5fc94033fe348c0eb", 0x81, 0xfffffffffffffffb}, {&(0x7f0000000280)="ed4eb10a7025ba39418e6576a54089e5f0c11eb0854b18f5ae04f0f69cff9dd638097ff6294c3f75039538d753b59c4cdeb9b90c439bc072684b7449ad32ca2fae4d1b6d7c88cb0851ab8cc10234693db1770ff78e4237075c0a9c73c69b4a24b1eebea83f91cf9e5f6fee1edee6ff3c28dc86141e005cc2193ae863ae576bf1aafd2d7d9dac48cf6d5fdef9fec82f45", 0x90, 0x84c}, {&(0x7f0000000340)="ff0d1ee419ae7cb5cb07e48051e4e80940628d55cca8e3b606e2a4d9fba557972f94c9c2f37babf7f73a16bb8de1328cf8b0ef3a7f11f8ecf3b3086fce6cf43e66428af545cc117ab4b0ba5ed890fce54ee4c179646fcecfa1bf5ac71611c6a395865fa3898dcce09221e03f0885ebfe712db2688d490389a0b173b44a8cde7080038c5eb0a564715aa0833135b69139fa356d3a0ec54a9e62a4ee07f378d7135b9ea64a2787717d9ec940d7f9feeb90b6601ff9cbf0fb1c8ec252f0d81ab9596d32c769463fa86af5df971d2916eb4af17ede2200a48c02f21aeab62fd5217f219e9a460b108bfabb0796c9", 0xec, 0x7}, {&(0x7f0000000440)="b2964b34cc34d81609cfb2fb524b2e1b3aeac500", 0x14, 0x6}, {&(0x7f00000005c0)="c3395e98744afad5523da9a41b87d2c797874dfaec4d701ca2939b89ca419fa48c5788e58b8a4b1521038a7b559711ec5cc7d95ebcb60fcaccef33c0bed7847252a27fd8656653a1b6ea815b283d32c660b6887332ea7ba74ec06d2cdb8a8b049aa19fa0690caa7e9a56b37270886c4c8dc2a8bcb98d47776b4b33781316fb66c9ae6fa66d44fd4c9be8bca7c44ac92c1e5212f0fed409a3a13a007a5de7ba15e4f783a3c36b10241b75bc821101c2eb8b694c5deda389b93fac26fee70d2a1a", 0xc0, 0x4}], 0x81808, &(0x7f00000008c0)={[{@noacl='noacl'}, {@errors_continue='errors=continue'}, {@i_version='i_version'}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}], [{@uid_lt={'uid<', r0}}, {@smackfsroot={'smackfsroot', 0x3d, 'jqfmt=vfsv0'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@uid_gt={'uid>', r1}}]}) 10:13:19 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_IO(r0, 0x2289, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, &(0x7f0000000440)}, &(0x7f0000000580), &(0x7f0000000100)=""/44, 0x0, 0x0, 0x0, &(0x7f00000000c0)}) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x400000, 0x0) ioctl$sock_bt(r1, 0xdd17, &(0x7f0000000440)="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") 10:13:19 executing program 0: r0 = memfd_create(&(0x7f0000000100)="885d292b00", 0x0) write(r0, &(0x7f0000000080)=')', 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r0, 0x0) memfd_create(&(0x7f0000000200)='\x00', 0x1) ftruncate(r0, 0xa00002) sendfile(r0, r0, &(0x7f0000000040), 0xff8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x1, 0x9, 0x0, 0x3, 0x9}, &(0x7f0000000140)=0x14) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000180)={r1, 0x6}, &(0x7f00000001c0)=0x8) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000003400)='./bus\x00') 10:13:19 executing program 3 (fault-call:2 fault-nth:9): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 290.966337] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled [ 290.981414] FAULT_INJECTION: forcing a failure. [ 290.981414] name failslab, interval 1, probability 0, space 0, times 0 [ 291.004469] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (614c0009) [ 291.020968] CPU: 0 PID: 8690 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 291.025651] hfsplus: unable to find HFS+ superblock [ 291.029390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.029398] Call Trace: [ 291.029425] dump_stack+0x244/0x39d [ 291.029463] ? dump_stack_print_info.cold.1+0x20/0x20 [ 291.029497] should_fail.cold.4+0xa/0x17 [ 291.059326] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 291.064460] ? down_write_nested+0x130/0x130 10:13:19 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x401, 0x101800) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f00000000c0)={'filter\x00'}, 0x28) socketpair$inet_udplite(0x2, 0x2, 0x88, &(0x7f0000000040)) r2 = openat$cgroup_procs(r0, &(0x7f0000000340)='cgroup.procs\x00', 0x2, 0x0) sendfile(r2, r2, &(0x7f0000000440), 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0xffffffffffffffff, r1, 0x0, 0x7, &(0x7f0000000140)='filter\x00'}, 0x30) syz_open_procfs$namespace(r3, &(0x7f00000001c0)='ns/cgroup\x00') 10:13:19 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x3, 0xa) ioctl(r0, 0x8000, &(0x7f0000000140)="135412e41c7977eb81ed05be79e861ce6849dd5f3e71844fcc479407596ce5ddfb7dd4e4c19ae725cd04dfa16a492055fa5c3b16e718824af3fa8c5e887bdd42194dca53dbc72c39fa44e74698a2d1fc77c17eeb9f4725651f076fb9224ec0e2e83ad80704d47a93e4debf6df033ef9ae22ff43c73e68476203e30cfbc5a950171579f3fd95294878ec25af0251a5cc52e9ed8da882b0c1cbe1b1a287a8b2d2056b81c26ea58fbca7c7a15d218d038ef47f6eecd08d2c0b41bf5a5a60a37d431747d6939a2d8847fb46867ec062d69080059b5ccbf5254ac8ae18c9cbdd61e52447d2d732477fc9b") sendfile(r1, 0xffffffffffffffff, &(0x7f0000000040), 0x100000001) recvmmsg(r1, &(0x7f0000003bc0)=[{{&(0x7f0000000080)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000000580), 0x0, &(0x7f0000000600)=""/4096, 0x1000}}], 0x1, 0x0, &(0x7f000000a440)) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x42000, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) [ 291.068882] ? down_read+0x120/0x120 [ 291.072612] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 291.078164] ? zap_class+0x640/0x640 [ 291.081912] ? lock_acquire+0x1ed/0x520 [ 291.085956] ? lo_ioctl+0x8e/0x1d60 [ 291.089613] ? find_held_lock+0x36/0x1c0 [ 291.093695] ? __lock_is_held+0xb5/0x140 [ 291.097811] ? vfio_msi_disable+0x68/0x2d0 [ 291.102079] ? perf_trace_sched_process_exec+0x860/0x860 [ 291.107554] __should_failslab+0x124/0x180 [ 291.111812] should_failslab+0x9/0x14 [ 291.115626] kmem_cache_alloc_trace+0x2d7/0x750 10:13:19 executing program 2: r0 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x5) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x80000, 0x0) timerfd_gettime(r2, &(0x7f0000000080)) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000380)="153f6234488dd25d766070") [ 291.120315] ? check_preemption_disabled+0x48/0x280 [ 291.125389] __kthread_create_on_node+0x137/0x540 [ 291.130305] ? loop_get_status64+0x140/0x140 [ 291.134760] ? kthread_parkme+0xb0/0xb0 [ 291.138765] ? __lockdep_init_map+0x105/0x590 [ 291.143272] ? __lockdep_init_map+0x105/0x590 [ 291.147791] ? loop_get_status64+0x140/0x140 [ 291.152227] kthread_create_on_node+0xb1/0xe0 [ 291.156748] ? __kthread_create_on_node+0x540/0x540 [ 291.161806] ? kasan_check_read+0x11/0x20 [ 291.165979] lo_ioctl+0x7f6/0x1d60 [ 291.169543] ? lo_rw_aio+0x1ef0/0x1ef0 [ 291.173490] blkdev_ioctl+0x9ac/0x2010 [ 291.177389] ? blkpg_ioctl+0xc10/0xc10 [ 291.181280] ? lock_downgrade+0x900/0x900 [ 291.185451] ? check_preemption_disabled+0x48/0x280 [ 291.190490] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 291.195449] ? kasan_check_read+0x11/0x20 [ 291.199611] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 291.204892] ? rcu_softirq_qs+0x20/0x20 [ 291.208895] ? __fget+0x4d1/0x740 [ 291.212355] ? ksys_dup3+0x680/0x680 [ 291.216084] block_ioctl+0xee/0x130 [ 291.219713] ? blkdev_fallocate+0x400/0x400 [ 291.224036] do_vfs_ioctl+0x1de/0x1720 [ 291.227924] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 291.233473] ? ioctl_preallocate+0x300/0x300 [ 291.237883] ? __fget_light+0x2e9/0x430 [ 291.241874] ? fget_raw+0x20/0x20 [ 291.245333] ? rcu_read_lock_sched_held+0x14f/0x180 [ 291.250362] ? kmem_cache_free+0x24f/0x290 [ 291.254601] ? putname+0xf7/0x130 [ 291.258062] ? do_syscall_64+0x9a/0x820 [ 291.262045] ? do_syscall_64+0x9a/0x820 [ 291.266025] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 291.270625] ? security_file_ioctl+0x94/0xc0 [ 291.275050] ksys_ioctl+0xa9/0xd0 [ 291.278530] __x64_sys_ioctl+0x73/0xb0 [ 291.282420] do_syscall_64+0x1b9/0x820 [ 291.286335] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 291.291700] ? syscall_return_slowpath+0x5e0/0x5e0 [ 291.296629] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 291.301481] ? trace_hardirqs_on_caller+0x310/0x310 [ 291.306503] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 291.311526] ? prepare_exit_to_usermode+0x291/0x3b0 [ 291.316555] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 291.321410] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 291.326599] RIP: 0033:0x4573d7 [ 291.329798] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 291.348698] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 291.356405] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 291.363675] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 10:13:20 executing program 5: r0 = gettid() madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) setpriority(0x3, r0, 0x8) mremap(&(0x7f0000492000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) process_vm_writev(r0, &(0x7f0000000040)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0x94d55ebd}], 0x23a, 0x0) munmap(&(0x7f0000595000/0x400000)=nil, 0x400000) munmap(&(0x7f00002f2000/0x1000)=nil, 0x1000) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x401, 0x400000) setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000080)={0x1, {{0xa, 0x4e20, 0xa0, @dev={0xfe, 0x80, [], 0xd}, 0x6}}, {{0xa, 0x4e24, 0x0, @remote, 0x5}}}, 0x108) madvise(&(0x7f0000541000/0x2000)=nil, 0x2000, 0x8) [ 291.370946] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 291.378220] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 291.385490] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 291.466975] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled [ 291.502573] hfsplus: unable to find HFS+ superblock 10:13:20 executing program 2: r0 = socket(0x1e, 0x5, 0x0) listen(r0, 0x0) r1 = creat(&(0x7f0000000200)='./file0\x00', 0x1) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) connect$llc(r0, &(0x7f00000000c0)={0x1e, 0x302}, 0x10) r2 = fcntl$dupfd(r0, 0x0, r0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000240)) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000080)) openat$zero(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/zero\x00', 0x200000, 0x0) r4 = getgid() write$P9_RGETATTR(r2, &(0x7f0000000100)={0xa0, 0x19, 0x2, {0x40, {0x4, 0x2, 0x3}, 0x0, r3, r4, 0x8, 0xdc, 0x6, 0xffff, 0x7707b8ed, 0x8, 0xa00000000000000, 0x3, 0x2, 0x8, 0xfffffffffffffffc, 0x2000001, 0x158, 0x6}}, 0xa0) [ 291.514371] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (614c0009) 10:13:20 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='%utofs\x00', 0x0, &(0x7f00000003c0)) 10:13:20 executing program 5: syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = creat(&(0x7f0000000340)='./bus\x00', 0x0) r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000240)={0x0, 0x40, 0xcc67, 0x0, 0x0, 0x3}, &(0x7f0000000280)=0x14) keyctl$join(0x1, &(0x7f0000000300)={'syz'}) fchdir(r1) r2 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r0, &(0x7f00000019c0)={0x8, "7c70ee3800d5ab5f2036f872e0ac57cbd592bca0d671633f50a3102066d6e765f5a64731e3fb8d90d250eda2cc33b60a7ff98074cdc3f1dd1a2df26a381d95974e0925d521c6b48c3dee0d430d398884316091aff6adb6153dc3c92549957d3488efc02d6f6fb172524b095c30c1bd35aae04236bdd42694d613eb54c0b65a338c48dc4c8bad70754fc81d9928e4a1b81f9c77075258a0805b4494867247966b24a023311fd91ef3754b98d3acde6f2ef0617f123c22fccb81c11389fdfa2e21c2365aabfc8916e02151d8643ae21cab7fcbec6142186d3bb57546c106484bc4c28a48da2b75dd82aabe99464558e60cd101f6b65856fabee614d271741a68dd550c8772f06a93cf8e5c0de549c3b75a72f8a590bd50b2af5f64009c969ed7596f0192b0f98b1afac0e8c5f4c653f611b4a71776400a9ae3f18e75f856788c97195749042510735880b9bb0ccb23210832a4f1c6f134d68f8e299837c426e0c9a45d5d2c959446cc363f370c67cd01a063c91254d692fe35abee92fabda4f66d93228c979ebe036c5c2e0028ec76562d67d0919ca28258fec0ed60603142b5c57c4cfb1ea1e892d0fd2f33970142b179c415d6bea344fbcc82d133052e848a885160737c69eb02ca9f544831c8e3ffcf40cb7b415d24795fc8aaeb8e76bec262aea5e28fe5d6495c4b5895a612b1cc2122286add66356f3ecd309f970634f1b09da1507964d35575167317f13c7fd9f11af27ceea86e9a5b3494a27ba98ba38dd1fb72ef2c6163664fd8f7c946935cd4833121f505ff277c03d959d9a12f3389e9eb6701a8b29f72c20c6abb7bd8349dd2e120bdd59dca9f1a2a877f1677b59d7920ddf29b9d94f7c6879b78e31cf1b65b60fe349ef9d4976f46609ee34e33f647aafbf64f6323d18598905f2e73af75661397595b8f9c1e9a4e993946820da5378ca5b363560e95edce316e99bac6e6250efcf1cb58fdcf94c7557c2d7f763a688543462d54b64e178c2e64c6ebba356894973051907fd8de8ba908e822168b171c1707efcd9ac827e64313721876e2ff26ac34e88557a4a0dfde08eda81cf0c1465a89b68429e48966044c767563e1121db48c9b619fd7362afd15ec6aa19b28759d7977be4fbcad0cf8dd5dc5362259bd5cb5089a9d18db969afe1192571f5fcc0c4d6be281d23b9c1f9f32873c058adfa1bf57a3718686957edfd6e4b58aa959541127696d59fb2810d042ced227961eb19a424e4cf45bc6243217bb7561b7ee11f8c0b8f39480343a26f2da5fe79d5e213c01ea47155ffa91e7d7ba0bc8ccb018bd69cfe71dd8565a645d678b404a295397e83ae69dbf8505f6947a836b44823a92861124330fccd4bc4a2e20d9047bd919d82c89623caa87eb09bd584d58f42b35ef55fddc06dfb3957f3f507e5ca9b8b98947cc5bb68846755527ddf32ffa444e1c7a5654d4d377e04a9f22e1069804fdcdb251acb6bd6b32d100feb44286991d779d2b3e2b7f5cc5f8eb3ae166a3b6fb9df11e1867989a6f9b2028e4c73b4d418b51f6e870713cadafddb47a48c9a97283da214f02db3326d42438d9a7db580693ad1887f99d86bb5fafd6d07c2647fc80c2c5a1ed9ea3b95be65ca422080ddefca5b49ccd538f6bc67390f892d9e416f7e835f76dd90edc56256348d20560caeea05c0922cab60dbf0b57ddaaed6ded5a336e01485fd571dc12050461271cee347c31ac245bfee9128630dfcc43b6d88b5ba9937a6f6ab70b7d256784ff72297cfcfd0ffacd09b55fb832bf60f04d87c48c74972b9f18fa178ce4880b025d1c1097ddb929e8f7e02f1c0e03012bec0fa61a49eb1c2a50a45fc0d98b6649de325184006938e421321e8b366649d9b6ebadf77509c9d48844e80f7752fd7daaa5c938b946feaaac0d871203270a747035c7e2f697c84e792a55cbce76c0a25360f7acbeaab60627aa9c37064af75b67f46732844eb2f6b37226004afe451a9fbfbbcf7e72ade67b017e9209b5627fbe16789abd90326751a1fd1d93efc59f2650f979ba71938d784064922bee2874c4b76d5f26e39ea0a98cf175950137feff9456c88c6a295830183fae3a9c2312c25f3d81708d73488d15a587e7e7cdde3b77917eef29c8b5965c916a65c3c5a53b7313c3115d0a8bb4e16f6b80ff6f78adb756aba94ced86047562a2cd2fb25e9a4656f6359c3f2fde8b5ab38852853cbd7221cb4d59b7f0e79bd37f9ade073f62b75edbe63c13c0d02bf076d88f5b750ea640aad47ce97d6a0783398dd3fbb63734ed969470cf45200235650532224fc28caf1e36ca6b402ec4c978add40fc59f2113485875682139f8aa9aeb48d09178de919370b0cd0ebcab5e60e1b0a2fc153db0dae8e50b48561622a677d0f1afc149676f832e016e14007fb298dcb96f11a92a1ac8bd4cc7b34d659d6cd2c9817b586585e72080255b083bc84512277ffb7f561c6a7a08cd128bfe9b525da531f0bf04f11d3de102b3538835807ac0b2f4325fc6765d02d692ec82f5b338c8257029136fcd3427c09874ecc7492becdd6608eac4adf1abc3f7e08868a72e57ce4dcfc288a25af73d19f1118a9254963c1548cdca5fc7c921a7f218f8e71edd7969dfb35beae1091d7530e32236397fa9fcd232b441ff1b0177829468c198d659d247ccca4fbd58c625501e4368075d0e5e69a6f90952f5bbe48e85a303131dedf7f1a513b291598a545784e1013521877c25d6069d3a855652a4bad5b2df2e4da2de756a20e790b756dd2925ce824561e5892b5e064c7c7b996acc4e29597e0cd00956e9c57ec374714f846be7632d3075e38bead499163498810886c78a2cc73fb64fd48e186083ce911e0751b4dc63476859c2824fa532a4b1711c244619e702eeab19380aeb7b17f67fade3dcad8ddddd893a526cd5d04d8ae982c88029ec71bdd0772fd74adbdb378fc204ca411a2d8a50331516a28552be78f9725f32d1b3a6c7bdf3277c5f7e385c7ebbacc419ec7ca3c5b8f46dbefee59b6422a6b22d60527edc012f852077d925619874f7709f283e01678fed36528003a696ee431a817f34f453c143dc56b70e1f810a5380a555cc8c4fc6522ab544ce5d715caa302ebdd0aa8286b7ef5dd6dd48a8ad9566818f7509daf02db0b98b432f57f1d107ee95a86228728cab4062e27922381e1e2ee351af5e2ea0fd6d1cea70b3b8f4a50f0776fc9aa2a7d2dff6e1ea3769864104f09137b99960b69af13895d842649eacaed8ddf183beba3323640af8deb52b902c0974d685d19fc87c93eb80ad5d28e54363705ad39231d989522e94f000256bc8d93af138a45d67dad3e21fa9fb31d9327c6e71f61956d9daf4f97333112704136d3d1bf6fe0e4c002e10b684d2344300ec70fae0b50532ebace58f0e8318354a172cceacf27d01ff41cc8fef42443f62b0e15b5fcc0728630b96fb2c2b59634f4993bb1ce2eace6fb0f53e5f84bc5f58b1b66d59e3c75a98670496f105a703607211aa9e882e72f13e9fe07f0767ad4e5ac5c732b65301d8ceab36b5ff2f71958fb1b51d2e703ac506e68d4026160fd3f60440b8b8f554f1feeba5d53f71cbe60d143620f8fa779acb94c965b729207a5ab11f4a51b694c31606171da44a28d80cde296dff5724ff718d6377eb8534e616cff39af943ee4ce87b4fadded30c702d370a71072ab3e20f19b8c1b73fdbbb9c675352bb73ee85e22597fc0c439a33f5febe1629bd084af7193f8d1a1415b02ca54706711505cbae11ec6411b012cc3a3eddcfb002901b6e7565b9fbf4d605c147031888ceb590c14697d00970ce9095c6f7fee41ec6a15d7ef52dfedfff2a0d3dbb387b61232aee6ca202787038021e6aabda18e2adf6fd89aa491e65f9813d73412fbfff089752d713d7efa690ec4fc254b56908d3057f65997acf81aea589e272f8fa852849e488f1e0c0cb6cdb5f46ca92e36d39224e704850056d2e9b91909aed0f55d054e274415ecc39b8958335a14cfb0a42d7f26ef8e82592dfd03b3550b5193fba077994c682951968869574fd94976760d9bd9b334353eeda836cc8dab244e72095cc46833f02bb2f6df35601b3085664261abb67fc9ab9f27210e6827cd15ce16c55f0f7f5b8ab401f24032b19a53a9299b62ebf4a8cf7f4753d95126f008a8ce349036666de66bcaf40b27fa875efa98873e1ef9302e2a24bfe07bd1054bdf9ba9ad1b1075402f26d682833b947c762513ba5f07537bb712473184a60e04ace5adb8d982d6153b011ae0b2034adc0ff4a64e2c6561c2e0840cdab2120bc916cde9b7a92c4d332d0f83945fe55e3c8f4d93f22e7759c20241d92cca0ae5a3d06a127e5614df708cea1ad3b2f231c81460ff4c3f349c67a87135a4b67589ffce311832923f71796276e81f0537e265404c0ee06d5ed98a5ec5f8ad62db589eb585fc4627173b51fd4e897a3e8d2acbb82ec2996ac3a6823368a1e12a0536a9d1a7b2d31d80c46c292ff51395481d4f65c53fab867e27bec9156ee189d245d94877a1405dc9e1e996822ad47071a9ab36c9bfd02c41ea5ba21591793053b1b64758bae0addfcd69d169849bc1ee6ce5c08f0d3da5ecc1b6ab31e13af2fa5ce4d921163270901264a88ac6350e8fb6371663dd04146932238597258b123a8036250c190fbb3cfc6ebbf9e06c4a9053e8332c95c91a890a3d35ddd35f47e7ab606f3e345e12560e6d52243883da7b8910834042ad12e7fb3f08a0b14ef6aee22251999e6079be2ef5666d7d5ae00d161720262761da3f378c63cb151f4e94d034e9de949dfe796b905804ca555691023c30ea7cf0cb276e1e3ba65793291f8287d1064606bf5787421b9b9bfc05e9c5eac750de92519fe9e2592cd34a2ef6ec18efed5e7c13bfcfce47327cbecac358bbe6d44164849308cf91cd5ea87fa4b02ba4939e28141c7dad42714b019470d91808a8f46150677b6c90f267ecb39ef42afc95de0cbd016775c89d8213ec9d4e061e6493f237296f91abfc64176c0e885ef54af4136a724fadfe89a25d7599998acebc4a27f8fb5b26936bda5c3d5fec3373dcd9a0e99fc939641c50669adc54119582e8835575d1c57fa955cd29d870360620f91c3ff90d264013816352317ae226f7d7bad5db711f8973382f6cebd63cd519ddd08e1772649be75f64f4acc15f828dc0b305584b6dd2213194603c44e2964358d305aa97fb08568a0a955ad7a6f8d042754b4bbf2fb3414052719fd9841bef8360d1d3195c69414be882115c2c64fecdcbdaed3a2e943fdfef9a13520e41d32a787bcfe4f61e2b378d35aa70784a772cf8ebcaaeb105e4627516db2ababfcb8c11f224c3a48c86160d34d0ee59f02c31648ae4b0309b378f0bf63266967dcfb4f1cc1902f613c6d0d48915a9cf28a52b106544cde1b38ff2e2a1275fd0d3899ce7f7c6653c9017f7ac4aaa35bcb2811a8f9dbb56746b45475350e7c13d42abb5692377da7a4045ee644ce00f8699e3251d75621c82cd659ea3add277affe3ff792f7d24a3d0979ef82cfc0d409697ae2e8598854a8327f46974c901d309dc6dbe31913c59d821aa50c0fe95cc822e8f07bbb00e9a09bc9a570b9778d29308740bc336a41258d209c206f87a709aa43415da0096f7d177e509a7d625645fb098ccc45367d82235e952670ac5f82f8ced3f59fd9ee20ac75be609cc832417e807ddc40630cba4c91e0785edcb5f20b9e6dedb1ec172cd16fc034f410e9ce375ea855144aa3076317f649cf4efe4d7abf244984c4e", 0x1000}, 0x1006) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(r2, &(0x7f00000002c0)=""/25, 0xa, 0xffffffffffffffff) sendfile(r2, r2, &(0x7f0000000180), 0x8080fffffffe) 10:13:20 executing program 4: setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000080)={0x0, 0xfb, 0x64, 0x5, 0x7ff, "f929a8b98a2704b9df74bb363df67cf6", "8127279d677f4c3bc0d726ecfc0a604de26024f6ca205f51b09dbc7f14d05782f266dc7a211bcfa01815c9ff925e5d54a31206d72fe39cc93569635d8855759291c92dfe699fd9857398f7399e3f63"}, 0x64, 0x3) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0) 10:13:20 executing program 3 (fault-call:2 fault-nth:10): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 291.653589] hfsplus: unable to find HFS+ superblock 10:13:20 executing program 2: capset(&(0x7f00000000c0)={0x20080522}, &(0x7f0000000000)) r0 = socket$inet_smc(0x2b, 0x1, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000280)={&(0x7f0000000080)='./file0\x00', 0x0, 0x8}, 0x10) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000040)={0x0, @multicast2, 0x0, 0x0, 'sed\x00'}, 0x2c) r1 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0xca, 0x30200) arch_prctl(0x1003, &(0x7f00000001c0)="ef4912b770a7ce6d6575b741a9c2e651cbf2cea199d93d4a847b7bffa224b63349cd5a21a9a23acaea50f71c733790c3b5dc749ea9938ad845421637b8009d9b98cd3cbd455cc6811e923096ecbe575db1952b3d7dae997acd32f02dae") ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000100)={{0x1, 0x1}, 'port1\x00', 0x41, 0x0, 0x0, 0x2596, 0xfff, 0x20000000000, 0x98c, 0x0, 0x6, 0x3ff}) munlockall() munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) [ 291.776754] hfsplus: unable to find HFS+ superblock [ 291.797773] FAULT_INJECTION: forcing a failure. [ 291.797773] name failslab, interval 1, probability 0, space 0, times 0 10:13:20 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00\b\x00') recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, &(0x7f0000000280), 0x10000030}}], 0x1, 0x0, &(0x7f0000003280)={0x0, 0x1c9c380}) r1 = socket$inet6(0xa, 0x3, 0x800000000000004) ioctl(r1, 0x8912, &(0x7f0000000280)="153f6234488dd25d5c6070") r2 = socket$kcm(0x29, 0x2, 0x0) socket$kcm(0x29, 0x2, 0x0) sendmmsg(r2, &(0x7f0000000d40)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000100)="116d36d4696343d77342fa5a4174f880b87a7ee2474df8dc04ae979dc11a86aee9fd97ffc57bed8c42df5e9ab3329a098a29225b7223f5b3a95b679eac6067a4111511aec88c4143d811b0e62359a30347c6f9fdbf7abe0567680e47d79c552744fecf27924acfdd6127128da239fccb79cbbadbb7a9c4200632eeadb8e9a3156fbcde8b463462fbaeb62bd09f65c047b158244073ecfc1593b4303e83d524fe77cac0cfe8d342b0c346279730f75062d29869dc1211b2fc276ccb3882eeb68e5abde924e8", 0xc5}, {&(0x7f0000000340)="0e00260dedaf42b9a21c9b04623a1b35f2f9de6e54a67cbb3a24afc1f4ae72aa59ff0de6613febc667b2e32f4f06036b2e961ebd136c54d49223075660ef54c7f947acc2b438633b7b9ae068bee40b9198e06fd5e4cd789221581ae8eff1cb9233b72008252e", 0x66}, {&(0x7f00000003c0)="91ba518c0cf258d8765772b0ae9963b7fad08f9f6f6f919b66032ce8758c86f624051083d130e27ed88b0ecede6f87faca6abd68cf9fda7b23ea20499987e191915bbdcb1b030e8a8726fa9bcc53a5ea48df2d2c06e1c5e721ac195dcbc1bef1b04a5c073f6d1008a7d292fbca992ba2", 0x70}, {&(0x7f0000000440)="7706d5c65a9ab4d396bf896c6d80633fafca18da00fdf887794318aeeae6e6cc608aadef0c3d078bc6ac1382ee07e11de357631878f4e95cf813e0783f48497bf0ecd3145e9ab3689558605b30f55becb770a584f9da273584c8be3802278a0a1c4b1164b911f643b3de8cb42643c1c4d574c0ab4aebad", 0x77}, {&(0x7f00000004c0)="5432db94afaa67514369e63bf276ad14b0145c57c27d4577474124c4814e068fce3f99e42ab18a2b4b56b7d7b23f54339e3d93a8f46c41b07d35e135dd09c9c33b9ef32cf86f73c7a9a3257832cd82c75e270279acb10a61aca38812c0ac3acf4871de28902038b8a846eee821da2d35d5dece0ca4515022b98a204ec05979c56fd3d4025f12e848834522b88ef6ec9ecde0f19b058cf2350c3c2e68e28b70ece6ce6a3da7f6897ea87a01138b9ac1760f927aa5c19d7625abb421fbeac0756ac2833fcc932852465312cea3c589c2b95b92d16388bc", 0xd6}, {&(0x7f0000000080)='f', 0x1}, {&(0x7f0000001480)="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", 0x1000}, {&(0x7f00000005c0)="4763886395911b7818e7e95c328d63bebb274b222bfff296a96fcd6b8ee0cbe62ff51cc7226216cbf6fe2d77aee94ca9b9937f77931df9bab17b0263d7fed210e0d18fb1c654dc41fb8c12c82ba2d8d1686d988e0a83bd0933664a7e306f431ae478956e772ed8744140fd0252d86f3d1e002d09ef948541", 0x78}], 0x8, 0x0, 0x0, 0x8010}, 0x3f}, {{&(0x7f00000006c0)=@rc={0x1f, {0xa43, 0x8000, 0x7, 0x2, 0x1, 0x6218}, 0x7d}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000740)="b37a76737ebe20d0558b2472e4e9d03957fe01ceee22bbafe9bc77a0e7730ddc4d667c3554b5b0a4d024b158a0fd265650b72ab890a75ab093ec27fddb997ab31417f634ff9e85bd898e4fb21fbecb437588f0c059861418fa730a6d7a883c9ead13923e6d9920ec7ee0c6be58fdd6beb8a5e5ec565279241d2dd70d0c838b205c9bc2b57beb50e2bd027976dfff61c8220951abd0b5", 0x96}, {&(0x7f0000000800)="476ccc1481005de87f757cf4b954f3988b2c9559cf34440f8e00c853b2bca796e44056cbf4f58bd6d6b5172f1ca0f2b0961a45e736fdb5bcd8c33f34cec53030b57fa7fbe35265e77605a141143562a5a73cd43fb4ecb93e10aceb3323fb318d149eaf355db3eb4523730a66595c0f7052acc2e6", 0x74}, {&(0x7f0000000200)="7245e37a8ed2aff749dfcaaf8c519a5c3033f8a2671eabeaa82f1a811253caf4b99b3a34fa09533194b49564263c3e426590b6339e8620", 0x37}, {&(0x7f0000000880)="cf23c68f07f16c68860b2417ec5794f8fad2f37dc7f0d33fd368247c91269be682efbf078db81f420b62034f4a5aa12a8efb422e24b7d18dff29b81333804606710e62c8aa30856c41fad2639655cf0c871bdc5448be60d03ef4b089559d929cd7e414780a64f27a9aed95dca3b02625efea50801b57700e819772c380283676af2685c011bcae38ec800d2d4917a19ae2c4ff7bb57449dad27df1", 0x9b}, {&(0x7f0000000940)="082f889087cc72042b3c53479cce27fd8e477f0d3cad4d7bc3c2ceb61f996d7961fd58b993aef32263", 0x29}, {&(0x7f0000000980)="4ba6565f6148c1e9e0e63b262606cb253c117b87e86aef413c2541bd6fab042e514e1fe85dae0d7c4edad425668701bd6c1c1ab51378a6a9924a2d3317fda696a23183d7d163d76e03d326bb6ce3db05ca44e741e3b96adebbc3b71fefd40ec18adf2b7be313866a62cce4da1e9c786018b4f31b7f52832ff96884746ffb458fd013c3c66c6e034da7dc7bbf487ba14098582120e41ebea6daa897bd475091987bc4a14f119d09516d5117b77884b90887b5c82290ede347e7263fd3fd55fbd7e9ece79e550d84bcaa11e06d5870ee686c5e10071a1a10c2c36143d87d9a85a233e8ff457074fc", 0xe7}, {&(0x7f0000000a80)="295b83a1b84800f0c1bf89badcd8dd71f15c0ac48b2169db40035da15423ad8839caf8188b2b03ec9906f57c8ea91fdd9cf8fee946fff30242ac3c6711ea248f8a2934754c454386b0c48f99834d303a931335127234e0674da7cab227db06463673578a080df0ff40f3297d25bd7c210b99004f5d6ad7793c3121ad69f730551fe753e77775e036", 0x88}, {&(0x7f0000000b40)="fd9499bd2dc19e7558d1726a6be587cf14b7a96b37abea04252fe416f11bf1623c91c9ddafcee827cf86c55884afb618dff0b224a2996bfd1ab8b6140ceb3d35938cc859fa0937fa84e7bd57d20f6a4c1fe925760bde1061fc7eb4ea1d6c2ea4c71ce684554166da996bc1cc02b3e013a136ed160b20a4a8bc8e352b888692e1485810151bed1cd51e8f4d24a4a0e7e478a42c59f8c9616b8b5bfde5e903767a0dc8dae4be45e803e599", 0xaa}, {&(0x7f0000000c00)="033aa1d7408e25d552e6d3d06738aec42b4adcc4f799b79793b66587bce8146a843e0c0ea6c0fa7db656d503c992ce4de1afa5226bbb89fa6899e7547254b4465ea23ceb6706a4b847329fcc75", 0x4d}], 0x9}, 0x5}], 0x2, 0x4000) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r3, &(0x7f00000017c0), 0x1a4, 0x6800) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x1, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) bind$inet(r4, &(0x7f0000deb000)={0x2, 0x4e23, @dev}, 0x10) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) sendto$inet(r4, &(0x7f0000000040), 0x0, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$inet_mtu(r4, 0x0, 0xa, &(0x7f0000000240)=0x3, 0x2) seccomp(0x1, 0x0, &(0x7f0000000e00)={0x2, &(0x7f0000000dc0)=[{0x5, 0x6, 0x0, 0x1}, {0x2, 0x400, 0x1, 0x1f}]}) [ 291.861278] CPU: 1 PID: 8759 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 291.869714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.879074] Call Trace: [ 291.881686] dump_stack+0x244/0x39d [ 291.885359] ? dump_stack_print_info.cold.1+0x20/0x20 [ 291.890589] should_fail.cold.4+0xa/0x17 [ 291.894674] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 291.899790] ? pick_next_task_fair+0xa35/0x1c90 [ 291.899811] ? rcu_read_lock_sched_held+0x14f/0x180 [ 291.899831] ? enqueue_entity+0x34b/0x20d0 [ 291.899850] ? zap_class+0x640/0x640 [ 291.899870] ? print_usage_bug+0xc0/0xc0 [ 291.909554] ? __account_cfs_rq_runtime+0x790/0x790 [ 291.909577] ? find_held_lock+0x36/0x1c0 [ 291.909598] ? __lock_is_held+0xb5/0x140 [ 291.909630] ? perf_trace_sched_process_exec+0x860/0x860 [ 291.909659] __should_failslab+0x124/0x180 [ 291.944465] should_failslab+0x9/0x14 [ 291.948284] kmem_cache_alloc+0x2be/0x730 [ 291.952453] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 291.957535] __kernfs_new_node+0x127/0x8d0 [ 291.961796] ? trace_hardirqs_off_caller+0x300/0x300 [ 291.966928] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 291.971717] ? _raw_spin_unlock_irq+0x60/0x80 [ 291.976237] ? __schedule+0x168b/0x21d0 [ 291.980251] ? zap_class+0x640/0x640 [ 291.984020] ? zap_class+0x640/0x640 [ 291.987761] ? trace_hardirqs_on+0xbd/0x310 [ 291.992111] ? kasan_check_read+0x11/0x20 [ 291.996286] ? find_held_lock+0x36/0x1c0 [ 292.000369] kernfs_new_node+0x95/0x120 [ 292.000392] kernfs_create_dir_ns+0x4d/0x160 10:13:20 executing program 2: syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x7ffff) syz_mount_image$xfs(&(0x7f0000000300)='xfs\x00', &(0x7f0000000400)='./file0\x00', 0x0, 0x0, &(0x7f0000002a40), 0x0, &(0x7f0000002b40)=ANY=[@ANYBLOB="62696f73697a653d30303030300545c280b0ed"]) 10:13:20 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aitofs\x00', 0x0, &(0x7f00000003c0)) [ 292.000450] internal_create_group+0x5fc/0xd80 [ 292.000480] ? remove_files.isra.1+0x190/0x190 [ 292.008882] ? up_write+0x7b/0x220 [ 292.008899] ? down_write_nested+0x130/0x130 [ 292.008914] ? down_read+0x120/0x120 [ 292.008951] sysfs_create_group+0x1f/0x30 [ 292.033905] lo_ioctl+0x1307/0x1d60 [ 292.037550] ? lo_rw_aio+0x1ef0/0x1ef0 [ 292.037567] blkdev_ioctl+0x9ac/0x2010 [ 292.037585] ? blkpg_ioctl+0xc10/0xc10 [ 292.037601] ? lock_downgrade+0x900/0x900 [ 292.037621] ? check_preemption_disabled+0x48/0x280 [ 292.058421] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 292.063367] ? kasan_check_read+0x11/0x20 [ 292.067529] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 292.067549] ? rcu_softirq_qs+0x20/0x20 [ 292.067578] ? __fget+0x4d1/0x740 [ 292.067600] ? ksys_dup3+0x680/0x680 [ 292.084011] block_ioctl+0xee/0x130 [ 292.087657] ? blkdev_fallocate+0x400/0x400 [ 292.092000] do_vfs_ioctl+0x1de/0x1720 [ 292.095905] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 292.101460] ? ioctl_preallocate+0x300/0x300 [ 292.105883] ? __fget_light+0x2e9/0x430 [ 292.109870] ? fget_raw+0x20/0x20 [ 292.113355] ? rcu_read_lock_sched_held+0x14f/0x180 [ 292.118393] ? kmem_cache_free+0x24f/0x290 [ 292.122640] ? putname+0xf7/0x130 [ 292.126113] ? do_syscall_64+0x9a/0x820 [ 292.130103] ? do_syscall_64+0x9a/0x820 [ 292.134096] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 292.138706] ? security_file_ioctl+0x94/0xc0 [ 292.143173] ksys_ioctl+0xa9/0xd0 [ 292.146673] __x64_sys_ioctl+0x73/0xb0 [ 292.150574] do_syscall_64+0x1b9/0x820 [ 292.154474] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 292.159851] ? syscall_return_slowpath+0x5e0/0x5e0 [ 292.164789] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.169650] ? trace_hardirqs_on_caller+0x310/0x310 [ 292.174695] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 292.179732] ? prepare_exit_to_usermode+0x291/0x3b0 [ 292.184771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.189638] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.194848] RIP: 0033:0x4573d7 [ 292.198054] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.216973] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.224692] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 292.231971] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 292.231981] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 292.231990] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 292.231999] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:20 executing program 0: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000900)={0x2, 0x0, @multicast2}, &(0x7f0000000e00)=0x10, 0x800) ioctl(r0, 0x4, &(0x7f0000001200)="0a5cc84267bd19a8b40a08d5bdfaff55436b0fca2fb3b088626ff34f4b3dfc7281f3a8267ad879e6879211ec8dcd5a9bdc94f809d9d225bc4696cf162a09f785b2e1142cb71c7a50794d55fbad2b0be3338f63f904d7f68374ffc999937745c6848df5783f74bb99dc67ea819afa1aabb71639e752ae58dd59403cd0d9a1ca7e0b85537d4c391796b9af70b1618b647e59d0c1b4493543f0321828bb57f9a628c236d6c88f538d") openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0) socket$inet6(0xa, 0x1000000000002, 0x0) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x8000002, 0x68002) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f00000002c0)={'ah\x00'}, &(0x7f0000000340)=0x1e) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4) sendmsg$alg(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f0000000ec0)="1d49e3685d9d8c35ef739167997b26a4e592951f4b7cda362f8ab99067dc40beba7bde6918fc85e1d97ea326fa609a6518419a8d06c6a48a037e59aac27c887195b6c60bcf080007ed4cb0a9e960be8789984af9131c125c7b10792bcb367088a314a55b2d7b91c75afe0a8e6b8721bf02003f7b5c0354d1332d7df10e33d782771860b36d663a479041899d970b7bf2153552a85b33d11fa5bc59e758a55c947a9b2054a5571a8704c88695983c82ee637eef16651791539d098a6a73b19727c9e9dd265da7752174c3f2ac9ffb2bc2fd6bcb192e496bc9d9355193de2288", 0xdf}], 0x1, &(0x7f0000001000)=[@assoc={0x18, 0x117, 0x4, 0x7}], 0x18, 0x8000}, 0x20000000) epoll_create(0x1) timer_create(0x5, &(0x7f0000000d40)={0x0, 0x23, 0x2, @thr={&(0x7f0000000880)="f4333d1da5e4383802659ab6f5e12e7986c2dfc68b0f50eda5415f748f363988a831584a41dfa196b05037c8338bc9ca0ef19700483e714b991b8ef6a20845491d019069c20eec35f70173741e76b16f6f7d61a1520d24d755", &(0x7f0000000800)="74620be6a296f204f112df6d19125909c47e8ac91f7533af7ba0a38c9bb8890da316f317c42cced21487d83701d3d2b9e1"}}, &(0x7f0000000d80)=0x0) timer_gettime(r3, &(0x7f0000000dc0)) write$FUSE_POLL(r1, &(0x7f00000000c0)={0xfffffe51, 0x1, 0xfffffffffffffffe, {0x400}}, 0x18) pwrite64(r1, &(0x7f0000000540)="3f277f944ddeecfc55cbf59cc689972f88165ff974e5e054146317729bab5525e315f204dce1933f10dca767929994eb25c8f5181c0b1c04b1b268595345aa51a77d8af130f955f9841bf8b09618207b0d8b8eed2c5efbd2397432bffd8b7036da4854ea202609e74f6db413eb9c6f13e9c774b1dd4ff18e7a5a904cdc97d44a5be832c041c3659ea4972b5adb5f98b72e925bd0dde42751fb4c4b329ec340b03a1a7e93110686c14210c166ca70f2804e103be29b5e59ce2afe5adc8c378a3308aa3d14d3770484c77e93abcc1fce5409d6c533f64798c5b4", 0xd9, 0x0) r4 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x2, 0xe78, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200007c0], 0x0, &(0x7f0000000080), &(0x7f0000001640)=ANY=[@ANYBLOB="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"]}, 0xef8) bind$inet(r2, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10) r5 = mq_open(&(0x7f0000000080)='bdev\x00', 0x41, 0xc4, &(0x7f00000000c0)={0x3f, 0x6, 0x94, 0xffffffff, 0x3, 0x10000, 0x1, 0x7}) mq_timedsend(r5, &(0x7f0000000000)="e1bd6cd0afde34321df09a6d21a196923c8789fbec2ea693ba8964b3fe243e2d42cdc1b9eef3721daa36ba559839d6", 0x2f, 0x6, &(0x7f0000000040)={0x1000000000, 0x989680}) mq_timedsend(r5, &(0x7f0000000100)="73b3cafec3dbd277099115feb843043bcd21914a3dd770451ca1844af1702112de1c7734850769393d14c839755a14d817df51fee3f9c0eb552a2c2ed1587ddc4541f459edf88ac4aeb604daa86338ecf4a9ac6ff010cf7c5811", 0x5a, 0x5, &(0x7f00000001c0)) inotify_init() mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000012c0)=ANY=[@ANYBLOB="b60000000400000001000000b857117bbb0592244cd56949659e28dd8c3bbf8efa901978d470f6c2bf2edcb2094729d352c4a6ba1d5ca1fbf684ce77de9312338c843d4c6fd31cfeefc3c59b8a98e2d179a3a64ecf646d382a63b845d3358667677b7a3bf2807b3de3dd21ed25cc89c46396876cebd2584b0d9dce013e734ea31a8564e06b5e8ef0996678df8bc5148f1c036e140845bd74002e4db133e324e046bb38b76ffa363f8f4d7f4922a2102220b7f9e655a70f5915fbed76a8f89f6a8c6c553677f48ddbffda2e260dca03ae9802fb260c8227d21b5d0bee8940ed185e5abf42a78179ea2668106d8033482d12a6bded7153fbcd88a4345cccbd820f27a35a26815e14f268108ac143ab3929a2297d95fd91e8d6f163f36f52d500000000000068a41124ed1b6b26be28f3846aaeb8d073665564b3a4fe7f69309bd7f3452b702c4e398152a0bcf136afa4e7b9eb49a4440a21cd6be1ae1bb9ab9561cb8c6d79e288c8ffbbb1b612a8056c1fd3225259c610226dce90f9cd695e707e8c123a230668a6e9128e3ddb33a7b03183e0a8234b925a0cd908dd1d870896ec35855d52f02af73a146adb"]) ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f0000000940)={"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"}) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000500)={0xc, 0x8, 0xfa00, {&(0x7f0000000380)}}, 0x10) socket$vsock_dgram(0x28, 0x2, 0x0) sendto$inet(r2, &(0x7f0000000a00), 0x73c5d3417c1b93e7, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback}, 0x10) 10:13:20 executing program 4: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x18) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x7fffffff, 0xf2, 0x7c, &(0x7f0000000080)="da031aed2298ffd2471095aec967f53a5409facdd8972feb99c5612cd365a18e261603edc731d4c8c08c5398ccc6b6676345e9cd875984feca73ebc42c9e58f14e06f76a541d55b19904ef68adcf8058729a20ae0a9cbed8610922e0f216571ecfbdd9d5290df9e8e78332ebdac01a6025326e0f513e51f9451844c3"}) write$P9_RWSTAT(r0, &(0x7f0000000140)={0x7, 0x7f, 0x1}, 0x7) mkdir(&(0x7f0000002a80)='./file0\x00', 0x0) clone(0x2102001ffb, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) mount(&(0x7f0000000180)=@nullb='/dev/nullb0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f00000001c0)='hfsplus\x00', 0x3f00, &(0x7f0000000200)="2f646576bd062f6e756c6c623001bae20811b3cb04f949592fa0f6b6c0f9b4bb1563323248c938472c73e8a6ca2008e3d1fb02d7c59c4cea1a1faf14e3230421a506762c97000000000000000000000000000000") [ 292.264415] XFS (loop2): unknown mount option [biosize=00000E€°í]. [ 292.271668] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 292.299312] hfsplus: unable to find HFS+ superblock 10:13:20 executing program 4: io_submit(0x0, 0x0, &(0x7f0000000780)) getpeername$inet6(0xffffffffffffffff, &(0x7f00000008c0)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000980)=0x1c) r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f00000007c0)=""/255) r1 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt(r1, 0x0, 0x0, &(0x7f00000003c0)="3b58a920bf133167868ac62068fc4e462d4a07411fd71b0caed0cd834ee0dda2d8c7f84350d0f0417e40a74997367f288a17271e00d8d4b8dda68c21108edb6952", 0x41) sysinfo(&(0x7f0000000d80)=""/201) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e20, 0x8, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x16}}, 0x81}}, [0x61da, 0x7, 0x8000, 0xff, 0x559, 0x0, 0x377, 0x1db9, 0xcc9, 0x7fffffff, 0x6, 0xd7f, 0x8000, 0x0, 0x401]}, &(0x7f0000000200)=0x100) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000280)={r2, 0x8000, 0x20, 0x0, 0x800}, &(0x7f00000002c0)=0x18) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000180)=ANY=[@ANYBLOB="858bba4ffedb8846cb3950c63632c7bff5a72193864c8b320bf979265fab98041d400c2808c109dafef46cc4a5775e4b61246af70a08f4732cfb8674062256b6dbb65fa9", @ANYRES32=0x0], &(0x7f0000000f80)=0x2) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000fc0)={0x0, 0x0, 0x5616, 0x80}, &(0x7f0000001000)=0x10) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x0, 0x3ef, 0x0, 0x3f00000000000000, 0x5c0d0000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}}) shutdown(0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000580)={0x81, @tick=0x3, 0xfff, {0x5, 0x200}, 0xfc, 0x0, 0x2}) ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000100)={@local, @empty, @loopback, 0x3}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000006c0)={{{@in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, &(0x7f0000000240)=0xe8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000009c0)=ANY=[], &(0x7f0000000000)) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000300)={0x0, 0x800, 0x10, 0x95a}, &(0x7f0000000540)=0x18) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x0, 0x0) ioctl$int_in(r1, 0x0, &(0x7f0000000380)=0x6) 10:13:21 executing program 5: r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl(r0, 0xc0884123, &(0x7f0000000100)="290b70a1358540f988b48d756e0dc58365b2c14287e0f3f8823d7d8ed35fa7f86bd5f6704ee7a4164ccdf6fdc48930fe6688b69d9c258c4171199a2e22d3036f7a1cc13abf9c2ea3cde925f0df21072febee7be35734c37c33ece77c7480e183999493786a91a10db80210358d172ae46065af0ef6ba00b80668edcd63a91be56e628b16faa12e34635e4f197fe36f406752d9ffb2f69bf7b19f085d53c9701191a662224630ade5884d5bbabded67a1832420963fc8de4ee31029935bee3cc325d464044b1394165119945a5a475a90368bc2b0ccd4") 10:13:21 executing program 2: gettid() ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f0000000080)={0x17, 0x8, 0x30, 0x8001}) clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r0 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, r0) r1 = shmget(0x3, 0x1000, 0x40, &(0x7f0000ffe000/0x1000)=nil) shmctl$IPC_INFO(r1, 0x3, &(0x7f00000004c0)=""/48) r2 = getpid() sched_setscheduler(r2, 0x5, &(0x7f0000000200)) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x11) r4 = fcntl$dupfd(r3, 0x0, r3) lseek(r3, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(r4, 0x405c5503, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x100, 0x0, 0x20, 0x0, 0x400}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00') creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x0) ioctl$UI_DEV_SETUP(r3, 0x5501, &(0x7f0000000300)={{}, 'syz1\x00'}) ioctl$UI_DEV_DESTROY(r3, 0x5502) 10:13:21 executing program 3 (fault-call:2 fault-nth:11): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 292.407006] hfsplus: unable to find HFS+ superblock [ 292.458429] kernel msg: ebtables bug: please report to author: Wrong len argument 10:13:21 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aotofs\x00', 0x0, &(0x7f00000003c0)) 10:13:21 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x200}, 0x1c) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e21, 0x81, @mcast1, 0x100000001}}, 0x4, 0x8000}, &(0x7f0000000240)=0x90) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000280)={0x3, 0x4, 0x8, 0x8, 0x4a, 0xf368, 0x7, 0x100000001, r2}, 0x20) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r3, &(0x7f0000e11ff0)=[{&(0x7f0000000080)="580000001400add427323b470c458c560a067fffffff81004e22000000050028925aa80000000000000080000efffeffe809000000fff5dd0000001000020000000000000000cfb193e7ee00000000000000000000000000", 0x58}], 0x1) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000018000)={&(0x7f0000000040)={0x10, 0xf0ffffff}, 0xc, &(0x7f0000013ff1)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000002a00000000f11cd7a47874cddfe603cbfcbb8f3ee048705d6826666a679c02d55172000000000000000000000000"], 0x14}}, 0x0) [ 292.588545] FAULT_INJECTION: forcing a failure. [ 292.588545] name failslab, interval 1, probability 0, space 0, times 0 [ 292.588968] kernel msg: ebtables bug: please report to author: Wrong len argument [ 292.643873] CPU: 1 PID: 8819 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 292.652303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.652310] Call Trace: [ 292.652338] dump_stack+0x244/0x39d [ 292.652366] ? dump_stack_print_info.cold.1+0x20/0x20 [ 292.652381] ? radix_tree_tag_set+0x3d0/0x3d0 [ 292.652409] should_fail.cold.4+0xa/0x17 [ 292.652432] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 292.652461] ? kernfs_activate+0x8e/0x2c0 [ 292.652487] ? zap_class+0x640/0x640 [ 292.652505] ? lock_release+0xa10/0xa10 [ 292.652522] ? perf_trace_sched_process_exec+0x860/0x860 [ 292.652548] ? find_held_lock+0x36/0x1c0 [ 292.652573] ? __lock_is_held+0xb5/0x140 [ 292.652610] ? perf_trace_sched_process_exec+0x860/0x860 [ 292.652628] ? find_held_lock+0x36/0x1c0 [ 292.652657] __should_failslab+0x124/0x180 [ 292.652680] should_failslab+0x9/0x14 [ 292.652698] kmem_cache_alloc+0x2be/0x730 [ 292.652714] ? find_held_lock+0x36/0x1c0 [ 292.652738] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 292.652760] __kernfs_new_node+0x127/0x8d0 [ 292.652783] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 292.652804] ? kasan_check_write+0x14/0x20 [ 292.652825] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 292.652843] ? __kernfs_new_node+0x697/0x8d0 [ 292.652865] ? wait_for_completion+0x8a0/0x8a0 [ 292.652887] ? zap_class+0x640/0x640 [ 292.652911] ? kasan_check_write+0x14/0x20 [ 292.652933] ? __lock_is_held+0xb5/0x140 [ 292.652951] ? wait_for_completion+0x8a0/0x8a0 [ 292.652994] ? mutex_unlock+0xd/0x10 [ 292.653012] ? kernfs_activate+0x21a/0x2c0 [ 292.653035] kernfs_new_node+0x95/0x120 [ 292.653062] __kernfs_create_file+0x5a/0x340 [ 292.653088] sysfs_add_file_mode_ns+0x222/0x530 [ 292.653119] internal_create_group+0x3df/0xd80 [ 292.653149] ? remove_files.isra.1+0x190/0x190 [ 292.653163] ? up_write+0x7b/0x220 [ 292.653181] ? down_write_nested+0x130/0x130 [ 292.653210] ? down_read+0x120/0x120 [ 292.653248] sysfs_create_group+0x1f/0x30 [ 292.653267] lo_ioctl+0x1307/0x1d60 [ 292.653301] ? lo_rw_aio+0x1ef0/0x1ef0 [ 292.668875] blkdev_ioctl+0x9ac/0x2010 [ 292.668895] ? blkpg_ioctl+0xc10/0xc10 [ 292.668911] ? lock_downgrade+0x900/0x900 [ 292.668927] ? check_preemption_disabled+0x48/0x280 [ 292.668949] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 292.705521] ? kasan_check_read+0x11/0x20 [ 292.705556] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 292.705575] ? rcu_softirq_qs+0x20/0x20 [ 292.705626] ? __fget+0x4d1/0x740 [ 292.719189] ? ksys_dup3+0x680/0x680 [ 292.719234] block_ioctl+0xee/0x130 [ 292.719252] ? blkdev_fallocate+0x400/0x400 10:13:21 executing program 5: unshare(0x400) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x300, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000240)=0x1ff, 0x2) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x0, 0x3ef, 0x0, 0x14, 0x0, 0x0, 0x1ac, 0x0, 0x2, 0x0, 0x5]}}) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f00000001c0)=0x4, 0x8) r1 = syz_open_procfs(0x0, &(0x7f0000000200)="2f65786500000000000409004bddd9de91be10eeaf000ee9a90f798058439ed554fa07424ada75af1f02ac06edbcd7a071fb35331ce39c5a00000000") getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e24}}, 0x0, 0x0, 0x80, 0xc000000000, 0x7}, &(0x7f0000000040)=0x98) fsetxattr(r1, &(0x7f0000000280)=@known='user.syz\x00', &(0x7f00000002c0)='\x00', 0x398, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000300)={r2, @in={{0x2, 0x4e23, @broadcast}}, 0x0, 0x7fffffff, 0x1800000000000000, 0x6}, &(0x7f00000003c0)=0x98) ioctl$KDGETMODE(r1, 0x4b3b, &(0x7f0000000400)) fremovexattr(r1, &(0x7f00000000c0)=@known='user.syz\x00') ioctl$TCXONC(r1, 0x540a, 0x3) bind$packet(r0, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x1000, 0x6, @local}, 0x14) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) r4 = socket$inet6(0xa, 0x1000000000002, 0x0) socketpair(0xf, 0x80005, 0x4, &(0x7f00000005c0)) ioctl(r4, 0x8912, &(0x7f0000000080)="0a5cc80700315f85715070") mknod(&(0x7f0000000440)='./file0\x00', 0x0, 0x7fff) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f00000004c0)=""/232) connect$l2tp(0xffffffffffffffff, &(0x7f00000000c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r3, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x3a) getsockopt$packet_buf(0xffffffffffffffff, 0x111, 0x1, &(0x7f0000000100)=""/162, &(0x7f0000000040)=0xa2) [ 292.719270] do_vfs_ioctl+0x1de/0x1720 [ 292.719291] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 292.719312] ? ioctl_preallocate+0x300/0x300 [ 292.719329] ? __fget_light+0x2e9/0x430 [ 292.719347] ? fget_raw+0x20/0x20 [ 292.719365] ? rcu_read_lock_sched_held+0x14f/0x180 [ 292.719383] ? kmem_cache_free+0x24f/0x290 [ 292.719400] ? putname+0xf7/0x130 [ 292.719425] ? do_syscall_64+0x9a/0x820 [ 292.719441] ? do_syscall_64+0x9a/0x820 [ 292.723953] input:  as /devices/virtual/input/input11 [ 292.727884] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 292.727905] ? security_file_ioctl+0x94/0xc0 [ 292.727927] ksys_ioctl+0xa9/0xd0 [ 292.735862] __x64_sys_ioctl+0x73/0xb0 [ 292.735882] do_syscall_64+0x1b9/0x820 [ 292.735899] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 292.735925] ? syscall_return_slowpath+0x5e0/0x5e0 [ 292.744987] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.745008] ? trace_hardirqs_on_caller+0x310/0x310 [ 292.745031] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 292.758357] ? prepare_exit_to_usermode+0x291/0x3b0 [ 292.758381] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.758405] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.758418] RIP: 0033:0x4573d7 [ 292.758436] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.758445] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.758461] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 292.758476] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 292.767801] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 292.767811] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 292.767820] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 293.011437] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 293.096031] hfsplus: unable to find HFS+ superblock [ 293.165717] hfsplus: unable to find HFS+ superblock 10:13:21 executing program 3 (fault-call:2 fault-nth:12): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:21 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='a%tofs\x00', 0x0, &(0x7f00000003c0)) 10:13:21 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup3(r1, r1, 0x80000) ioctl$EVIOCSABS2F(r2, 0x401845ef, &(0x7f0000000000)={0x3, 0x7, 0x7fff, 0xffffffff, 0x6c4, 0x4}) bind$alg(r0, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4309(morus1280-sse2)\x00'}, 0x58) close(r0) [ 293.401064] FAULT_INJECTION: forcing a failure. [ 293.401064] name failslab, interval 1, probability 0, space 0, times 0 [ 293.451433] hfsplus: unable to find HFS+ superblock [ 293.466733] CPU: 0 PID: 8856 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 293.475155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.475162] Call Trace: [ 293.475188] dump_stack+0x244/0x39d [ 293.475227] ? dump_stack_print_info.cold.1+0x20/0x20 [ 293.475260] ? __sched_text_start+0x8/0x8 [ 293.475289] should_fail.cold.4+0xa/0x17 [ 293.475324] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 293.475351] ? kernfs_activate+0x8e/0x2c0 [ 293.496097] ? zap_class+0x640/0x640 [ 293.496114] ? lock_release+0xa10/0xa10 [ 293.496130] ? perf_trace_sched_process_exec+0x860/0x860 [ 293.496156] ? find_held_lock+0x36/0x1c0 [ 293.496188] ? __lock_is_held+0xb5/0x140 [ 293.496227] ? perf_trace_sched_process_exec+0x860/0x860 [ 293.504424] ? find_held_lock+0x36/0x1c0 [ 293.504450] __should_failslab+0x124/0x180 [ 293.504480] should_failslab+0x9/0x14 [ 293.504497] kmem_cache_alloc+0x2be/0x730 [ 293.504522] ? find_held_lock+0x36/0x1c0 [ 293.504544] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 293.513783] __kernfs_new_node+0x127/0x8d0 [ 293.513806] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 293.513825] ? kasan_check_write+0x14/0x20 [ 293.513843] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 293.513859] ? __kernfs_new_node+0x697/0x8d0 [ 293.513879] ? wait_for_completion+0x8a0/0x8a0 [ 293.513898] ? zap_class+0x640/0x640 [ 293.517903] input:  as /devices/virtual/input/input13 [ 293.521580] ? kasan_check_write+0x14/0x20 [ 293.521603] ? __lock_is_held+0xb5/0x140 [ 293.521619] ? wait_for_completion+0x8a0/0x8a0 [ 293.521650] ? mutex_unlock+0xd/0x10 [ 293.521666] ? kernfs_activate+0x21a/0x2c0 [ 293.521686] kernfs_new_node+0x95/0x120 [ 293.521710] __kernfs_create_file+0x5a/0x340 [ 293.521733] sysfs_add_file_mode_ns+0x222/0x530 [ 293.521760] internal_create_group+0x3df/0xd80 [ 293.531279] ? remove_files.isra.1+0x190/0x190 [ 293.531294] ? up_write+0x7b/0x220 [ 293.531310] ? down_write_nested+0x130/0x130 [ 293.531326] ? down_read+0x120/0x120 [ 293.531359] sysfs_create_group+0x1f/0x30 [ 293.531375] lo_ioctl+0x1307/0x1d60 [ 293.531399] ? lo_rw_aio+0x1ef0/0x1ef0 [ 293.531414] blkdev_ioctl+0x9ac/0x2010 [ 293.531432] ? blkpg_ioctl+0xc10/0xc10 [ 293.531445] ? lock_downgrade+0x900/0x900 [ 293.541066] ? check_preemption_disabled+0x48/0x280 [ 293.541091] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 293.541108] ? kasan_check_read+0x11/0x20 [ 293.541140] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 293.541159] ? rcu_softirq_qs+0x20/0x20 [ 293.541189] ? __fget+0x4d1/0x740 [ 293.549499] ? ksys_dup3+0x680/0x680 [ 293.549532] block_ioctl+0xee/0x130 [ 293.549549] ? blkdev_fallocate+0x400/0x400 [ 293.549567] do_vfs_ioctl+0x1de/0x1720 [ 293.549587] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 293.549607] ? ioctl_preallocate+0x300/0x300 [ 293.549624] ? __fget_light+0x2e9/0x430 [ 293.549642] ? fget_raw+0x20/0x20 [ 293.557601] ? rcu_read_lock_sched_held+0x14f/0x180 [ 293.557620] ? kmem_cache_free+0x24f/0x290 [ 293.557638] ? putname+0xf7/0x130 [ 293.557657] ? do_syscall_64+0x9a/0x820 [ 293.557678] ? do_syscall_64+0x9a/0x820 [ 293.566748] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 293.566771] ? security_file_ioctl+0x94/0xc0 [ 293.566792] ksys_ioctl+0xa9/0xd0 [ 293.566812] __x64_sys_ioctl+0x73/0xb0 [ 293.566834] do_syscall_64+0x1b9/0x820 [ 293.575821] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 293.575843] ? syscall_return_slowpath+0x5e0/0x5e0 [ 293.575859] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 293.575879] ? trace_hardirqs_on_caller+0x310/0x310 [ 293.575899] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 293.585267] ? prepare_exit_to_usermode+0x291/0x3b0 [ 293.585316] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 293.585340] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 293.585357] RIP: 0033:0x4573d7 [ 293.585377] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 293.843544] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.851250] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 293.858520] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 293.865774] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 293.873045] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 293.880303] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:22 executing program 2: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000240)="a2", 0x1}], 0x0, 0x8) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000a94000/0x1000)=nil, 0x1000, 0x8, 0x31, r2, 0x0) ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = accept4$alg(r2, 0x0, 0x0, 0x0) splice(r0, 0x0, r4, 0x0, 0x20000000003, 0x0) [ 293.961330] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 294.006971] hfsplus: unable to find HFS+ superblock 10:13:22 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x100, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x7f) prctl$void(0x2e) 10:13:22 executing program 3 (fault-call:2 fault-nth:13): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:22 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aptofs\x00', 0x0, &(0x7f00000003c0)) 10:13:22 executing program 5: r0 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000300)) r1 = syz_open_dev$midi(&(0x7f0000000740)='/dev/midi#\x00', 0x3, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, 0xffffffffffffffff, &(0x7f0000000780)={0x80000000}) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000380)=@filter={'filter\x00', 0xe, 0x4, 0x330, 0x298, 0x0, 0x118, 0x1d8, 0x118, 0x298, 0x298, 0x298, 0x298, 0x298, 0x4, &(0x7f0000000340), {[{{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@ah={0x30, 'ah\x00', 0x0, {0x359, 0x7fff, 0x1}}, @common=@unspec=@connlabel={0x28, 'connlabel\x00', 0x0, {0xff, 0x1}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0x98, 0xc0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@loopback, @multicast2, 0xffffffff, 0xffffffff, 'gretap0\x00', 'lo\x00', {}, {0xff}, 0x2e, 0x2, 0x40}, 0x0, 0x98, 0xc0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x3, 0x5, 0x1}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x390) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) sendmmsg$alg(0xffffffffffffffff, &(0x7f0000001d80)=[{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f00000018c0)="89150795c3b003bf56b10f49707778a5780ffde464401341931e6898ea9e", 0x1e}], 0x1, &(0x7f0000001d00)}], 0x1, 0x0) pipe2(&(0x7f00000001c0)={0xffffffffffffffff}, 0x80800) ioctl$EVIOCGABS20(r4, 0x80184560, &(0x7f0000000200)=""/182) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f00000002c0)=0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000080)="b805000000b9966b00000f01c19a00000080df0066baf80cb867d3748cef66bafc0cecb9c10000000f32660f3882600566b8fb000f00d06466650f233a0f01f6b805000000b9d800c0fe0f01c166b8e3000f00d0", 0x54}], 0x1, 0x0, &(0x7f0000000000), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x1, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r5, 0x404c534a, &(0x7f0000000140)={0x6, 0x2, 0x7f}) 10:13:22 executing program 4: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, &(0x7f0000000300)) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000001c0)={'syzkaller1\x00', 0x6}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x1, 0x0, &(0x7f0000000100)=""/163, &(0x7f00000019c0)=""/246, &(0x7f00000004c0)=""/4096}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0)=ANY=[]) r2 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xffffffffffff8000, 0x0) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f0000000200)={@local, @multicast2}, &(0x7f0000000280)=0xc) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x200000000001, r1}) syz_open_dev$vcsn(&(0x7f00000002c0)='/dev/vcs#\x00', 0x6, 0x2) ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) 10:13:22 executing program 0: r0 = socket$nl_crypto(0x10, 0x3, 0x15) close(r0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x20000, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x10, 0xc32f, 0x2, 0x5, 0x18, r1, 0xfffffffffffffffb}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r2, &(0x7f0000000280), &(0x7f00000002c0)=""/209}, 0xffffffffffffff9d) [ 294.236385] hfsplus: unable to find HFS+ superblock [ 294.249659] FAULT_INJECTION: forcing a failure. [ 294.249659] name failslab, interval 1, probability 0, space 0, times 0 10:13:23 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x3f, 0x101000) recvfrom$inet(r0, &(0x7f0000000040)=""/232, 0xe8, 0x20, &(0x7f0000000140)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) socket$inet(0x28, 0x0, 0x10000) ioctl$RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000180)) [ 294.350767] hfsplus: unable to find HFS+ superblock [ 294.364993] CPU: 1 PID: 8896 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 294.373760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.373767] Call Trace: [ 294.373794] dump_stack+0x244/0x39d [ 294.373823] ? dump_stack_print_info.cold.1+0x20/0x20 [ 294.373853] should_fail.cold.4+0xa/0x17 [ 294.398645] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 294.403769] ? lock_release+0xa10/0xa10 [ 294.407754] ? perf_trace_sched_process_exec+0x860/0x860 [ 294.407781] ? zap_class+0x640/0x640 [ 294.407810] ? find_held_lock+0x36/0x1c0 [ 294.407832] ? __lock_is_held+0xb5/0x140 [ 294.407861] ? perf_trace_sched_process_exec+0x860/0x860 [ 294.421063] ? kernfs_activate+0x21a/0x2c0 [ 294.421093] __should_failslab+0x124/0x180 [ 294.421114] should_failslab+0x9/0x14 [ 294.421130] kmem_cache_alloc+0x2be/0x730 [ 294.421146] ? lock_downgrade+0x900/0x900 10:13:23 executing program 0: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@rand_addr, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@rand_addr}}, &(0x7f0000000040)=0xe8) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x7) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@multicast1, @in, 0x4e22, 0x83ad, 0x4e23, 0x80000001, 0xa, 0x80, 0xa0, 0x5e, r1, r2}, {0x6, 0xfffffffffffffff7, 0x3, 0x0, 0x603, 0x5, 0xfff, 0x5}, {0x0, 0x0, 0x9, 0x40}, 0xffffffff, 0x6e6bbe, 0x0, 0x0, 0x2, 0x3}, {{@in6=@local, 0x4d5, 0xff}, 0x2, @in=@loopback, 0x3505, 0x7, 0x0, 0x2, 0x1ff, 0x5, 0x9}}, 0xe8) open_by_handle_at(r0, &(0x7f00000002c0)={0xc, 0x0, "87983673"}, 0x0) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000300), &(0x7f0000000340)=0x4) [ 294.421166] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 294.421188] __kernfs_new_node+0x127/0x8d0 [ 294.460489] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 294.465274] ? zap_class+0x640/0x640 [ 294.469017] ? __lock_is_held+0xb5/0x140 [ 294.473089] ? wait_for_completion+0x8a0/0x8a0 [ 294.477700] ? mutex_unlock+0xd/0x10 [ 294.481425] ? kernfs_activate+0x21a/0x2c0 [ 294.485676] ? kernfs_walk_and_get_ns+0x340/0x340 [ 294.490535] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 294.490552] ? kernfs_link_sibling+0x1d2/0x3b0 [ 294.490576] kernfs_new_node+0x95/0x120 [ 294.490600] __kernfs_create_file+0x5a/0x340 [ 294.490622] sysfs_add_file_mode_ns+0x222/0x530 [ 294.490650] internal_create_group+0x3df/0xd80 [ 294.490677] ? remove_files.isra.1+0x190/0x190 [ 294.500790] ? up_write+0x7b/0x220 [ 294.500808] ? down_write_nested+0x130/0x130 [ 294.500824] ? down_read+0x120/0x120 [ 294.500857] sysfs_create_group+0x1f/0x30 [ 294.500874] lo_ioctl+0x1307/0x1d60 [ 294.500896] ? lo_rw_aio+0x1ef0/0x1ef0 [ 294.500912] blkdev_ioctl+0x9ac/0x2010 10:13:23 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="18000000030000dc0000000000000081ff00000000000000"], &(0x7f00002bf000)='syzkaller\x00', 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1}) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f00000006c0)=@acquire={0x128, 0x17, 0x401, 0x0, 0x0, {{@in=@multicast2}, @in, {@in6=@mcast1, @in6=@loopback}, {{@in6, @in6=@local}}}}, 0xff2f}}, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x200100, 0xb0) openat$cgroup_ro(r3, &(0x7f0000000180)='memory.swap.current\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000140)={r0}) [ 294.500929] ? blkpg_ioctl+0xc10/0xc10 [ 294.554185] ? lock_downgrade+0x900/0x900 [ 294.558361] ? check_preemption_disabled+0x48/0x280 [ 294.563404] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 294.568368] ? kasan_check_read+0x11/0x20 [ 294.572530] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 294.577824] ? rcu_softirq_qs+0x20/0x20 [ 294.581827] ? __fget+0x4d1/0x740 [ 294.583607] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 294.585447] ? ksys_dup3+0x680/0x680 [ 294.585477] block_ioctl+0xee/0x130 [ 294.585495] ? blkdev_fallocate+0x400/0x400 [ 294.585512] do_vfs_ioctl+0x1de/0x1720 [ 294.585532] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 294.585551] ? ioctl_preallocate+0x300/0x300 [ 294.585570] ? __fget_light+0x2e9/0x430 [ 294.632494] ? fget_raw+0x20/0x20 [ 294.635983] ? rcu_read_lock_sched_held+0x14f/0x180 [ 294.641016] ? kmem_cache_free+0x24f/0x290 [ 294.645264] ? putname+0xf7/0x130 [ 294.648746] ? do_syscall_64+0x9a/0x820 [ 294.652725] ? do_syscall_64+0x9a/0x820 [ 294.656689] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 294.661266] ? security_file_ioctl+0x94/0xc0 [ 294.665663] ksys_ioctl+0xa9/0xd0 [ 294.669119] __x64_sys_ioctl+0x73/0xb0 [ 294.673010] do_syscall_64+0x1b9/0x820 [ 294.676909] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 294.682293] ? syscall_return_slowpath+0x5e0/0x5e0 [ 294.687241] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 294.692094] ? trace_hardirqs_on_caller+0x310/0x310 [ 294.697111] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 294.702120] ? prepare_exit_to_usermode+0x291/0x3b0 [ 294.707142] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 294.711992] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.717170] RIP: 0033:0x4573d7 [ 294.720375] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.739280] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 10:13:23 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x10000008912, &(0x7f0000000080)="0a5cc80700315f85715062") r2 = dup(r0) setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000000)={0x8}, 0x4) r3 = accept4$vsock_stream(r2, &(0x7f00000001c0)={0x28, 0x0, 0x0, @hyper}, 0x10, 0x80000) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000200)={r3}) setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000080)=@req3={0x1, 0x9, 0x7, 0x3, 0x80000001, 0x1ff, 0x300}, 0x78) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x5, 0xbe4feb735e76d526) bind$inet(r0, &(0x7f0000738ff0)={0x2, 0x4e21, @multicast1}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f00000000c0)=[{0xc, 0xffffffffffffffc0}, {0x2, 0x9d59}], 0x2) connect$unix(r0, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e21}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000300)={0xffffffffffffffff, 0x7fff, 0x80000001}, 0x14) shutdown(r0, 0x1) [ 294.747008] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 294.754284] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 294.761561] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 294.768842] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 294.776112] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 294.786894] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:23 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='astofs\x00', 0x0, &(0x7f00000003c0)) 10:13:23 executing program 2: r0 = socket$inet6(0xa, 0x3, 0x7) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f0000000080)={&(0x7f0000006440)=ANY=[@ANYBLOB="b800000019000100000000000000000000000000000001e000000100000000000000000000000000000000000000004100000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x4}}, 0x20000000) setsockopt$sock_timeval(r1, 0x1, 0x5, &(0x7f0000000000), 0x10) openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='ns\x00') read$eventfd(r3, &(0x7f0000000140), 0x8) [ 294.866612] hfsplus: unable to find HFS+ superblock 10:13:23 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[], 0x0, 0x1a200}) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x2, &(0x7f0000000240)=@raw=[@initr0], &(0x7f0000000180)='GPL\x00', 0x0, 0x91, &(0x7f0000000300)=""/145}, 0x48) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000080)=0x3) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0x40405515, &(0x7f00000000c0)={0x0, 0x0, 0x8, 0xa51, "7914084b165e9ec52f1595ab29ebf015f37b541a5750acb2ac95e9ad3962af352e5323b779821fa55ee14bf9"}) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)) r3 = memfd_create(&(0x7f0000000040)='vboxnet1\x00', 0x1) ioctl$SG_SET_FORCE_PACK_ID(r3, 0x227b, &(0x7f0000000100)=0x1) syz_read_part_table(0x8, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000140)="a93f", 0x2, 0x9}]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:13:23 executing program 3 (fault-call:2 fault-nth:14): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:23 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000196fe4)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0203000211000000000000000000000005000600000000000a00000000000000020000000000000000000000000000000000000000000000030008000200000002000000e00000020000000000000000020001000000000000000000000000000500050000319e000a00000000000000fe8000000000000000000000000000ff000000000000000067c70027d35d7b8c032a7a43858cd10d16e4dabff8c4f316bf466cf32ff7c9ded2819bdffedb3c37ffc3e800cb6a0ef82f7f97601424566c857f44bd988898ea45c6c94e6f7f00c295e275d38c50d43361bc6e5285fdce2f2f0ea13b0ad1db7fc0c410f6ddccb4"], 0x88}}, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x20280, 0x0) setsockopt$inet_dccp_int(r1, 0x21, 0x13, &(0x7f0000000180)=0x392, 0x4) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000200)={0x10008, 0x0, &(0x7f0000ffc000/0x2000)=nil}) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000000c0)={0xa, &(0x7f0000000040)=[{}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}]}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r1, 0xc010641d, &(0x7f0000000140)={r2, &(0x7f0000000100)=""/64}) [ 294.952819] hfsplus: unable to find HFS+ superblock [ 295.036899] FAULT_INJECTION: forcing a failure. [ 295.036899] name failslab, interval 1, probability 0, space 0, times 0 [ 295.068558] CPU: 0 PID: 8958 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 295.076995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.077002] Call Trace: [ 295.077029] dump_stack+0x244/0x39d [ 295.077054] ? dump_stack_print_info.cold.1+0x20/0x20 [ 295.092631] should_fail.cold.4+0xa/0x17 [ 295.092658] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 295.107002] ? lock_release+0xa10/0xa10 [ 295.110993] ? perf_trace_sched_process_exec+0x860/0x860 [ 295.116471] ? zap_class+0x640/0x640 [ 295.120223] ? find_held_lock+0x36/0x1c0 [ 295.124309] ? __lock_is_held+0xb5/0x140 [ 295.128403] ? perf_trace_sched_process_exec+0x860/0x860 10:13:23 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x22) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={0xffffffffffffffff}, 0x13f, 0x8}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f00000001c0)={0x15, 0x110, 0xfa00, {r2, 0xbf41, 0x0, 0x0, 0x0, @ib={0x1b, 0x14a, 0x100000001, {"dc585c211fce833285a6ba5f1e7beb82"}, 0x4, 0x1, 0x8}, @ib={0x1b, 0x7, 0x1ff, {"0f2a05d2ca8ebcc5f319f6ff6ccd38f8"}, 0x37, 0xfffffffffffffff8, 0x80}}}, 0x118) bind$alg(r0, &(0x7f0000001800)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-generic\x00'}, 0x58) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000300)=0x8, 0x4) r4 = accept$alg(r0, 0x0, 0x0) ioctl$sock_SIOCGIFCONF(r1, 0x8910, &(0x7f00000003c0)=@req={0x28, &(0x7f0000000380)={'ipddp0\x00', @ifru_settings={0x2, 0x10000, @sync=&(0x7f0000000340)={0xff, 0x6, 0x10000}}}}) sendmmsg$alg(r4, &(0x7f0000006080)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000800)="7f02e767b1d8281172179b2cfb37825ebb572424b67ebb62da7fe647010e7120a5", 0x21}], 0x1, &(0x7f0000000280)}], 0x1, 0x48055) sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) readv(r4, &(0x7f00000007c0)=[{&(0x7f0000001d80)=""/4096, 0x1000}], 0x1) [ 295.133869] ? kernfs_activate+0x21a/0x2c0 [ 295.138133] __should_failslab+0x124/0x180 [ 295.142388] should_failslab+0x9/0x14 [ 295.146212] kmem_cache_alloc+0x2be/0x730 [ 295.150356] ? lock_downgrade+0x900/0x900 [ 295.154495] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 295.159503] __kernfs_new_node+0x127/0x8d0 [ 295.163727] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 295.168477] ? zap_class+0x640/0x640 [ 295.172187] ? __lock_is_held+0xb5/0x140 [ 295.176247] ? wait_for_completion+0x8a0/0x8a0 [ 295.180823] ? mutex_unlock+0xd/0x10 [ 295.184574] ? kernfs_activate+0x21a/0x2c0 [ 295.188799] ? kernfs_walk_and_get_ns+0x340/0x340 [ 295.193632] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 295.199168] ? kernfs_link_sibling+0x1d2/0x3b0 [ 295.203772] kernfs_new_node+0x95/0x120 [ 295.207737] __kernfs_create_file+0x5a/0x340 [ 295.212137] sysfs_add_file_mode_ns+0x222/0x530 [ 295.216799] internal_create_group+0x3df/0xd80 [ 295.221393] ? remove_files.isra.1+0x190/0x190 [ 295.225975] ? up_write+0x7b/0x220 [ 295.229511] ? down_write_nested+0x130/0x130 [ 295.233918] ? down_read+0x120/0x120 [ 295.237642] sysfs_create_group+0x1f/0x30 [ 295.241792] lo_ioctl+0x1307/0x1d60 [ 295.245416] ? lo_rw_aio+0x1ef0/0x1ef0 [ 295.249297] blkdev_ioctl+0x9ac/0x2010 [ 295.253173] ? blkpg_ioctl+0xc10/0xc10 [ 295.257056] ? lock_downgrade+0x900/0x900 [ 295.261208] ? check_preemption_disabled+0x48/0x280 [ 295.266225] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 295.271144] ? kasan_check_read+0x11/0x20 [ 295.275279] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 295.280543] ? rcu_softirq_qs+0x20/0x20 [ 295.284511] ? __fget+0x4d1/0x740 [ 295.287995] ? ksys_dup3+0x680/0x680 [ 295.291704] block_ioctl+0xee/0x130 [ 295.295320] ? blkdev_fallocate+0x400/0x400 [ 295.299633] do_vfs_ioctl+0x1de/0x1720 [ 295.303511] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 295.309057] ? ioctl_preallocate+0x300/0x300 [ 295.313486] ? __fget_light+0x2e9/0x430 [ 295.317447] ? fget_raw+0x20/0x20 [ 295.320894] ? rcu_read_lock_sched_held+0x14f/0x180 [ 295.325923] ? kmem_cache_free+0x24f/0x290 [ 295.330161] ? putname+0xf7/0x130 [ 295.333605] ? do_syscall_64+0x9a/0x820 [ 295.337572] ? do_syscall_64+0x9a/0x820 [ 295.341535] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 295.346124] ? security_file_ioctl+0x94/0xc0 [ 295.350524] ksys_ioctl+0xa9/0xd0 [ 295.353969] __x64_sys_ioctl+0x73/0xb0 [ 295.357849] do_syscall_64+0x1b9/0x820 [ 295.361722] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 295.367076] ? syscall_return_slowpath+0x5e0/0x5e0 [ 295.372009] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 295.376852] ? trace_hardirqs_on_caller+0x310/0x310 [ 295.381865] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 295.386871] ? prepare_exit_to_usermode+0x291/0x3b0 [ 295.391877] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 295.396709] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.401884] RIP: 0033:0x4573d7 [ 295.405100] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 295.424017] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 10:13:24 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aXtofs\x00', 0x0, &(0x7f00000003c0)) [ 295.431723] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 295.438984] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 295.446261] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 295.453521] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 295.460816] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 295.485424] *** Guest State *** [ 295.495960] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 295.516978] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 295.532374] hfsplus: unable to find HFS+ superblock 10:13:24 executing program 0: r0 = socket(0x10000000000010, 0x3, 0x0) r1 = getpgrp(0xffffffffffffffff) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x8000, 0x8000) ioctl$BLKTRACESTOP(r2, 0x1275, 0x0) ptrace$poke(0x5, r1, &(0x7f0000000000), 0x7) r3 = socket$inet6(0xa, 0x1000000000006, 0x0) ioctl(r3, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070") write(r0, &(0x7f0000000080), 0x0) write(r0, &(0x7f0000000040)="230000002e000100045200f50f00000000f0c98623fe290dee94277bfbdeff06000000", 0x23) [ 295.540606] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 295.541563] CR3 = 0x0000000000000000 10:13:24 executing program 4: [ 295.580127] RSP = 0x0000000000000000 RIP = 0x0000000000000000 10:13:24 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8995, &(0x7f0000000040)={'bond0\x00', @ifru_names='bond_slave_1\x00'}) r1 = dup2(r0, r0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="0000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000010400000000000000000000ffffffff00000000ff01000000000000040000000000000000000000000000000000000000000000000000000000000008000000080000000600000000000000070000000000f200000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"]) getpeername$llc(r1, &(0x7f0000000100)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000140)=0x10) getsockopt$bt_hci(r1, 0x0, 0x3, &(0x7f0000000080)=""/113, &(0x7f0000000000)=0x71) [ 295.623259] RFLAGS=0x0001a202 DR7 = 0x0000000000000400 [ 295.658899] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 295.700072] hfsplus: unable to find HFS+ superblock [ 295.706901] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 10:13:24 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fdatasync(r1) ioctl$void(r0, 0x5450) syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x2, 0x40040) mknod(&(0x7f0000000100)='./file0\x00', 0x1041, 0x0) [ 295.749934] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 295.782348] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) 10:13:24 executing program 3 (fault-call:2 fault-nth:15): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 295.796349] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 10:13:24 executing program 4: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x8912, &(0x7f0000000040)="157f6234488dd25d766070") perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x200000000, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e21, 0x1, @loopback, 0x200}}, 0x20, 0x80000000, 0x100000000, 0x3f, 0x401}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000340)=ANY=[@ANYRES32=r2, @ANYBLOB="990000006e8b8752ff77fbfc84264c995e484abfe7dce0f7c8fd3c7025e77bb9924957deacda8492e4379ded3a239d8e0a892711521b6ae8bfd07f3f20e4c7a10ce011dc271df4149d9545875e59bab7179cf4f35fefc5c99c8b45c84729d83a38191075c5455097ac67bb39be725064789ff9b0814a2f6d7508692c8b719db408c75e27a3d9e783393dfc50c57cc29c83758438c9fd1d9fd3d0ecabae"], &(0x7f0000000140)=0xa1) mount(&(0x7f0000000400)=ANY=[@ANYBLOB="c9d7a213e48fa07d3117452f99d53664a84fddb70c8312c7ce082b434939069d355fd8770290e018886bfb3e70d77edc49a4f8749e575bfdb15baf8e7f216a407570e129ab92d7452a69d934c203adafbb48d7a3cb0ac9178dbfee042800230905a70000"], &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='nfs\x00', 0x8092, &(0x7f0000000000)) 10:13:24 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='actofs\x00', 0x0, &(0x7f00000003c0)) [ 295.823277] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 295.847028] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 295.912924] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 295.936174] hfsplus: unable to find HFS+ superblock [ 295.974955] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 295.995130] FAULT_INJECTION: forcing a failure. [ 295.995130] name failslab, interval 1, probability 0, space 0, times 0 [ 296.049212] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 296.068571] CPU: 0 PID: 9019 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 296.076996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.086368] Call Trace: [ 296.088972] dump_stack+0x244/0x39d [ 296.092614] ? dump_stack_print_info.cold.1+0x20/0x20 [ 296.097822] should_fail.cold.4+0xa/0x17 [ 296.101892] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 296.107016] ? lock_release+0xa10/0xa10 [ 296.110987] ? perf_trace_sched_process_exec+0x860/0x860 [ 296.116466] ? zap_class+0x640/0x640 [ 296.120203] ? find_held_lock+0x36/0x1c0 [ 296.124275] ? __lock_is_held+0xb5/0x140 [ 296.128365] ? perf_trace_sched_process_exec+0x860/0x860 [ 296.133830] ? kernfs_activate+0x21a/0x2c0 [ 296.138079] __should_failslab+0x124/0x180 [ 296.142346] should_failslab+0x9/0x14 [ 296.146161] kmem_cache_alloc+0x2be/0x730 [ 296.150325] ? lock_downgrade+0x900/0x900 [ 296.154482] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 296.159503] __kernfs_new_node+0x127/0x8d0 [ 296.163746] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 296.168507] ? zap_class+0x640/0x640 [ 296.172243] ? __lock_is_held+0xb5/0x140 [ 296.176319] ? wait_for_completion+0x8a0/0x8a0 [ 296.180920] ? mutex_unlock+0xd/0x10 [ 296.184637] ? kernfs_activate+0x21a/0x2c0 [ 296.188880] ? kernfs_walk_and_get_ns+0x340/0x340 [ 296.193741] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 296.199285] ? kernfs_link_sibling+0x1d2/0x3b0 [ 296.203879] kernfs_new_node+0x95/0x120 [ 296.207860] __kernfs_create_file+0x5a/0x340 [ 296.212279] sysfs_add_file_mode_ns+0x222/0x530 [ 296.216978] internal_create_group+0x3df/0xd80 [ 296.221576] ? remove_files.isra.1+0x190/0x190 [ 296.226156] ? up_write+0x7b/0x220 [ 296.229699] ? down_write_nested+0x130/0x130 [ 296.234106] ? down_read+0x120/0x120 [ 296.237838] sysfs_create_group+0x1f/0x30 [ 296.242001] lo_ioctl+0x1307/0x1d60 [ 296.245638] ? lo_rw_aio+0x1ef0/0x1ef0 [ 296.249532] blkdev_ioctl+0x9ac/0x2010 [ 296.253425] ? blkpg_ioctl+0xc10/0xc10 [ 296.257319] ? lock_downgrade+0x900/0x900 [ 296.261475] ? check_preemption_disabled+0x48/0x280 [ 296.266499] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 296.271430] ? kasan_check_read+0x11/0x20 [ 296.275590] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 296.280871] ? rcu_softirq_qs+0x20/0x20 [ 296.284864] ? __fget+0x4d1/0x740 [ 296.288328] ? ksys_dup3+0x680/0x680 [ 296.292063] block_ioctl+0xee/0x130 [ 296.295697] ? blkdev_fallocate+0x400/0x400 [ 296.300034] do_vfs_ioctl+0x1de/0x1720 [ 296.303948] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 296.309496] ? ioctl_preallocate+0x300/0x300 [ 296.313909] ? __fget_light+0x2e9/0x430 [ 296.317901] ? fget_raw+0x20/0x20 [ 296.321436] ? rcu_read_lock_sched_held+0x14f/0x180 [ 296.326527] ? kmem_cache_free+0x24f/0x290 [ 296.330766] ? putname+0xf7/0x130 [ 296.334230] ? do_syscall_64+0x9a/0x820 [ 296.338240] ? do_syscall_64+0x9a/0x820 [ 296.342234] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 296.346826] ? security_file_ioctl+0x94/0xc0 [ 296.351244] ksys_ioctl+0xa9/0xd0 [ 296.354706] __x64_sys_ioctl+0x73/0xb0 [ 296.358595] do_syscall_64+0x1b9/0x820 [ 296.362492] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 296.367862] ? syscall_return_slowpath+0x5e0/0x5e0 [ 296.372791] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.377651] ? trace_hardirqs_on_caller+0x310/0x310 [ 296.382671] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 296.387690] ? prepare_exit_to_usermode+0x291/0x3b0 [ 296.392718] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.397569] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.402769] RIP: 0033:0x4573d7 [ 296.405967] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 296.424865] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.432590] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 296.439892] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 296.447156] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 296.454446] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 296.461720] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 296.475094] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 296.484170] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 296.492718] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 296.501179] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 296.507709] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 296.529192] Interruptibility = 00000000 ActivityState = 00000000 [ 296.535557] *** Host State *** [ 296.538849] RIP = 0xffffffff8120269c RSP = 0xffff88017eacf390 [ 296.548039] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 296.554974] FSBase=00007f04b27bc700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 296.566308] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 296.571402] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 296.573909] CR0=0000000080050033 CR3=00000001d8f26000 CR4=00000000001426f0 [ 296.586534] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87c01360 [ 296.593807] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 296.601222] *** Control State *** [ 296.604790] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c3 [ 296.612003] EntryControls=0000d1ff ExitControls=002fefff [ 296.617575] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 296.624912] VMEntry: intr_info=80000084 errcode=00000000 ilen=00000000 [ 296.631892] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 296.638582] reason=80000021 qualification=0000000000000000 [ 296.645067] IDTVectoring: info=00000000 errcode=00000000 10:13:25 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000180)={'tunl0\x00', 0x7}) fsetxattr$security_selinux(r1, &(0x7f00000000c0)='security.selinux\x00', &(0x7f0000000100)='system_u:object_r:hald_sonypic_exec_t:s0\x00', 0x29, 0x1) utime(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x8000, 0x8000000000}) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x200100, 0x0) prctl$intptr(0x1d, 0x6b) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000300)={"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"}) ioctl$ASHMEM_PURGE_ALL_CACHES(r3, 0x770a, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) sendto$unix(r3, &(0x7f00000001c0)="03fe6ea040", 0x5, 0x4008044, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e) setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000000)={0xff, @multicast1, 0x4e22, 0x4, 'wrr\x00', 0x31, 0x2806, 0x52}, 0x2c) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000700)={0x1, 0x0, [{0x0, 0x4, 0x0, 0x0, @irqchip={0x6, 0x8000}}]}) 10:13:25 executing program 2: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$TCSETAF(r0, 0x5404, &(0x7f0000000080)) 10:13:25 executing program 0: r0 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='mountinfo\x00') perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r1, 0xc0186419, &(0x7f0000000100)={0x1, &(0x7f0000000180)=""/77, &(0x7f0000000000)=[{0xfffffffffffffff7, 0x73, 0x59a0, &(0x7f0000000200)=""/115}]}) sendfile(r0, r1, &(0x7f0000000040)=0x2e, 0x10000000000443) 10:13:25 executing program 4: accept4$packet(0xffffffffffffff9c, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000240)=0x14, 0x800) recvmmsg(0xffffffffffffffff, &(0x7f0000009340)=[{{0xffffffffffffffff, 0x0, &(0x7f0000003280)=[{&(0x7f0000002180)=""/113, 0x71}, {&(0x7f0000002280)=""/4096, 0x1000}], 0x2, &(0x7f00000032c0)=""/224, 0xe0, 0x9}, 0xfffffffffffffffe}, {{&(0x7f00000034c0)=@sco, 0x80, &(0x7f0000003700)=[{&(0x7f0000003540)=""/187, 0xbb}], 0x1, &(0x7f0000003740)=""/165, 0xa5, 0x10001}}, {{&(0x7f0000006c40)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000006ec0)=[{&(0x7f0000006e40)=""/103, 0x67}], 0x1, &(0x7f0000006f00)=""/245, 0xf5}, 0x5}], 0x3, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f000000d4c0)={'vcan0\x00'}) getpeername$packet(0xffffffffffffffff, &(0x7f000000e980)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f000000e9c0)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000011440)={'syzkaller1\x00'}) getpeername(0xffffffffffffffff, &(0x7f0000000000)=@hci, &(0x7f0000011540)=0x18) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0) r1 = accept$alg(r0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000100)=@nl=@proc, 0x34e, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x276}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) 10:13:25 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='adtofs\x00', 0x0, &(0x7f00000003c0)) [ 296.650835] TSC Offset = 0xffffff5f6c102427 [ 296.655318] TPR Threshold = 0x00 [ 296.658725] EPT pointer = 0x00000001cbfd601e 10:13:25 executing program 3 (fault-call:2 fault-nth:16): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 296.733278] hfsplus: unable to find HFS+ superblock 10:13:25 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fd\x00') bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x10}, 0x10) exit(0xfffffffffffffffe) getsockopt$inet_tcp_buf(r0, 0x6, 0x3f, &(0x7f0000000000)=""/119, &(0x7f0000000080)=0x77) getdents64(r0, &(0x7f0000000180)=""/57, 0x39) [ 296.839667] hfsplus: unable to find HFS+ superblock [ 296.864627] FAULT_INJECTION: forcing a failure. [ 296.864627] name failslab, interval 1, probability 0, space 0, times 0 [ 296.903716] CPU: 1 PID: 9053 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 296.912145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.921503] Call Trace: [ 296.924113] dump_stack+0x244/0x39d [ 296.927771] ? dump_stack_print_info.cold.1+0x20/0x20 [ 296.933002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.938575] should_fail.cold.4+0xa/0x17 [ 296.942652] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 296.942670] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.942685] ? wake_up_klogd+0x11a/0x180 [ 296.942702] ? console_device+0xc0/0xc0 [ 296.953359] ? __down_trylock_console_sem+0x151/0x1f0 [ 296.953382] ? zap_class+0x640/0x640 [ 296.953408] ? vprintk_emit+0x293/0x990 [ 296.953431] ? find_held_lock+0x36/0x1c0 [ 296.953463] ? __lock_is_held+0xb5/0x140 [ 296.953509] ? perf_trace_sched_process_exec+0x860/0x860 [ 296.987916] ? vprintk_default+0x28/0x30 [ 296.992022] __should_failslab+0x124/0x180 [ 296.996249] should_failslab+0x9/0x14 [ 297.000038] kmem_cache_alloc_trace+0x2d7/0x750 [ 297.004704] kobject_uevent_env+0x2f3/0x101e [ 297.009122] kobject_uevent+0x1f/0x24 [ 297.012954] lo_ioctl+0x1385/0x1d60 [ 297.016602] ? lo_rw_aio+0x1ef0/0x1ef0 [ 297.020481] blkdev_ioctl+0x9ac/0x2010 [ 297.024358] ? blkpg_ioctl+0xc10/0xc10 [ 297.028236] ? lock_downgrade+0x900/0x900 [ 297.032370] ? check_preemption_disabled+0x48/0x280 [ 297.037380] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 297.042299] ? kasan_check_read+0x11/0x20 [ 297.046448] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 297.051731] ? rcu_softirq_qs+0x20/0x20 [ 297.055724] ? __fget+0x4d1/0x740 [ 297.059207] ? ksys_dup3+0x680/0x680 [ 297.062925] block_ioctl+0xee/0x130 [ 297.066543] ? blkdev_fallocate+0x400/0x400 [ 297.070853] do_vfs_ioctl+0x1de/0x1720 [ 297.074730] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 297.080259] ? ioctl_preallocate+0x300/0x300 [ 297.084656] ? __fget_light+0x2e9/0x430 [ 297.088620] ? fget_raw+0x20/0x20 [ 297.092083] ? rcu_read_lock_sched_held+0x14f/0x180 [ 297.097102] ? kmem_cache_free+0x24f/0x290 [ 297.101351] ? putname+0xf7/0x130 [ 297.104826] ? do_syscall_64+0x9a/0x820 [ 297.108799] ? do_syscall_64+0x9a/0x820 [ 297.112776] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 297.117376] ? security_file_ioctl+0x94/0xc0 [ 297.121781] ksys_ioctl+0xa9/0xd0 [ 297.125229] __x64_sys_ioctl+0x73/0xb0 [ 297.129116] do_syscall_64+0x1b9/0x820 [ 297.133017] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 297.138370] ? syscall_return_slowpath+0x5e0/0x5e0 [ 297.143296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.148128] ? trace_hardirqs_on_caller+0x310/0x310 [ 297.153164] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 297.158171] ? prepare_exit_to_usermode+0x291/0x3b0 [ 297.163211] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.168047] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.173229] RIP: 0033:0x4573d7 [ 297.176432] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 297.195350] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.203054] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 10:13:25 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x88) ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f00000000c0)={{0x9, 0x6d66, 0xfffffffffffffffc, 0x8, 0x1453, 0xfffffffffffffffa}}) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000400)={0x0, 0x6}, &(0x7f00000002c0)=0xfffffffffffffff0) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000300)={r2, 0x1}, 0x8) write$input_event(r1, &(0x7f0000000200)={{0x0, 0x7530}, 0x1f, 0x100000000, 0x4}, 0x18) ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000000240)={0xff, 0x40, 0x9, 0x7, 0x9}) setsockopt$RDS_GET_MR(r1, 0x114, 0x2, &(0x7f00000003c0)={{&(0x7f0000000340)=""/56, 0x38}, &(0x7f0000000380)}, 0x20) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000100)=@sack_info={0x0, 0x2}, &(0x7f0000000140)=0xc) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f00000001c0)={r3, 0x3cf}, 0x8) clone(0x2102002003, 0x0, 0xfffffffffffffffe, &(0x7f0000000b00), 0xffffffffffffffff) rt_sigtimedwait(&(0x7f0000000000), 0x0, &(0x7f0000000180)={0x0, 0x1c9c380}, 0x8) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x0, 0x0) ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000900)) write$binfmt_script(r0, &(0x7f0000000440)={'#! ', './file0/../file0', [{0x20, '/dev/mixer\x00'}, {0x20, '/dev/mixer\x00'}, {0x20, 'vmnet0'}, {0x20, '/dev/mixer\x00'}], 0xa, "d5836636498b38c564a8317328a7ad777a3b8b0923508415657bbb7a5b3ebbd73147126ec912b033bd606ee95d6d67586113a6202cd47e13bfcf328ddc5e47"}, 0x7e) [ 297.210326] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 297.217583] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 297.224844] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 297.232130] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:25 executing program 4: r0 = socket(0xa, 0x3, 0x8) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x89e0, &(0x7f0000000100)={'gretap0\x00', 0x102}) 10:13:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000280)=""/219) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x10000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f00000000c0)={0x81, 0x0, [0x2]}) getsockopt$inet6_dccp_int(0xffffffffffffffff, 0x21, 0x0, &(0x7f0000000080), &(0x7f0000000240)=0x4) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000140)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x5ae8}}) 10:13:25 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='axtofs\x00', 0x0, &(0x7f00000003c0)) [ 297.270246] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:26 executing program 3 (fault-call:2 fault-nth:17): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:26 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x0, 0x80040) r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) mq_open(&(0x7f0000000080)="706f72ff070000000000000000000000000b000000000000000000001f0000ffffff03000000ef000003ff02000000000012000000000000004000000600", 0x0, 0x0, &(0x7f00000000c0)={0x8, 0x7f, 0x0, 0x40, 0x2, 0xffffffffffffff00, 0x0, 0x80000000}) ppoll(&(0x7f0000000000)=[{r0, 0xffc99a3b00000000}], 0x1, &(0x7f0000000040)={0x77359400}, &(0x7f0000000280), 0x8) openat$vsock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vsock\x00', 0x101400, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000001c0)={{0x80}, "706f72ff070000000000000000000000000b000000000000000000001f0000ffffff03000000ef000003ff02000000000012000000000000004000000600", 0xc7, 0x80003}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x2000000088007, 0x0) close(r0) close(r1) [ 297.436396] hfsplus: unable to find HFS+ superblock [ 297.543113] FAULT_INJECTION: forcing a failure. [ 297.543113] name failslab, interval 1, probability 0, space 0, times 0 [ 297.566089] hfsplus: unable to find HFS+ superblock [ 297.582999] CPU: 1 PID: 9094 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 297.591420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.600779] Call Trace: [ 297.603385] dump_stack+0x244/0x39d [ 297.607039] ? dump_stack_print_info.cold.1+0x20/0x20 [ 297.612270] should_fail.cold.4+0xa/0x17 [ 297.616367] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 297.621504] ? lock_release+0xa10/0xa10 [ 297.625489] ? perf_trace_sched_process_exec+0x860/0x860 [ 297.630954] ? zap_class+0x640/0x640 [ 297.634712] ? find_held_lock+0x36/0x1c0 [ 297.638793] ? __lock_is_held+0xb5/0x140 10:13:26 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c000000100007070000000000000000000000004de195e3db6003c8bdde0668ca53b1b8a39e59736f0ac3d6", @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012000c000100697036746e6c00000c00020008000f0000060000"], 0x3c}}, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='trusted.overlay.opaque\x00', &(0x7f0000000180)='y\x00', 0x2, 0x3) 10:13:26 executing program 5: mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c832, 0xffffffffffffffff, 0x0) r0 = socket(0x1e, 0x7, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000100)) [ 297.642886] ? perf_trace_sched_process_exec+0x860/0x860 [ 297.648348] ? kernfs_activate+0x21a/0x2c0 [ 297.652609] __should_failslab+0x124/0x180 [ 297.656861] should_failslab+0x9/0x14 [ 297.660703] kmem_cache_alloc+0x2be/0x730 [ 297.664872] ? lock_downgrade+0x900/0x900 [ 297.669026] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 297.674036] __kernfs_new_node+0x127/0x8d0 [ 297.678260] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 297.683028] ? zap_class+0x640/0x640 [ 297.686736] ? __lock_is_held+0xb5/0x140 [ 297.690802] ? wait_for_completion+0x8a0/0x8a0 [ 297.695383] ? mutex_unlock+0xd/0x10 [ 297.699102] ? kernfs_activate+0x21a/0x2c0 [ 297.703341] ? kernfs_walk_and_get_ns+0x340/0x340 [ 297.708175] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 297.713707] ? kernfs_link_sibling+0x1d2/0x3b0 [ 297.718279] kernfs_new_node+0x95/0x120 [ 297.722267] __kernfs_create_file+0x5a/0x340 [ 297.726704] sysfs_add_file_mode_ns+0x222/0x530 [ 297.731379] internal_create_group+0x3df/0xd80 [ 297.735969] ? remove_files.isra.1+0x190/0x190 [ 297.740537] ? up_write+0x7b/0x220 [ 297.744079] ? down_write_nested+0x130/0x130 [ 297.748474] ? down_read+0x120/0x120 [ 297.752184] sysfs_create_group+0x1f/0x30 [ 297.756327] lo_ioctl+0x1307/0x1d60 [ 297.759970] ? lo_rw_aio+0x1ef0/0x1ef0 [ 297.763849] blkdev_ioctl+0x9ac/0x2010 [ 297.767727] ? blkpg_ioctl+0xc10/0xc10 [ 297.771598] ? lock_downgrade+0x900/0x900 [ 297.775740] ? check_preemption_disabled+0x48/0x280 [ 297.780763] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 297.785680] ? kasan_check_read+0x11/0x20 [ 297.789826] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 297.795089] ? rcu_softirq_qs+0x20/0x20 [ 297.799064] ? __fget+0x4d1/0x740 [ 297.802525] ? ksys_dup3+0x680/0x680 [ 297.806265] block_ioctl+0xee/0x130 [ 297.809896] ? blkdev_fallocate+0x400/0x400 [ 297.814237] do_vfs_ioctl+0x1de/0x1720 [ 297.818124] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 297.823663] ? ioctl_preallocate+0x300/0x300 [ 297.828061] ? __fget_light+0x2e9/0x430 [ 297.832023] ? fget_raw+0x20/0x20 [ 297.835468] ? rcu_read_lock_sched_held+0x14f/0x180 [ 297.840472] ? kmem_cache_free+0x24f/0x290 [ 297.844707] ? putname+0xf7/0x130 [ 297.848161] ? do_syscall_64+0x9a/0x820 [ 297.852167] ? do_syscall_64+0x9a/0x820 [ 297.856131] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 297.860735] ? security_file_ioctl+0x94/0xc0 [ 297.865132] ksys_ioctl+0xa9/0xd0 [ 297.868575] __x64_sys_ioctl+0x73/0xb0 [ 297.872449] do_syscall_64+0x1b9/0x820 [ 297.876327] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 297.881698] ? syscall_return_slowpath+0x5e0/0x5e0 [ 297.886626] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.891457] ? trace_hardirqs_on_caller+0x310/0x310 [ 297.896472] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 297.901484] ? prepare_exit_to_usermode+0x291/0x3b0 [ 297.906490] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.911326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.916501] RIP: 0033:0x4573d7 [ 297.919690] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 10:13:26 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='altofs\x00', 0x0, &(0x7f00000003c0)) [ 297.938589] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.946285] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 297.953538] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 297.960791] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 297.968046] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 297.975306] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 297.985681] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:26 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x2000000008912, &(0x7f0000000080)="153f6234488dd25d766070") r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x80000, 0x0) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f0000000180)="98f5df76b54654e186170572c8d325c22fdb5dc25e7fe5eca35fdcd4edb1e776942d7467dcc2ce03f979604c77bb38ef081edd5c2e610d6678e6e17508b82fb5f43ecad8a1bddb16709abe6f9d88a73df2754501603db3ccf54a7aea78c6966b421ab5e90321e5cd1f1a2f2e51e8f0057284d7661b882dc00d8788504944256ffb063fedd9e74a305c25e0c3c62e0135993a3d8f45d81bb9e9b13c13e6d324071e598e50a9472ad4bd16f98db21d6e741a7469396b28dfaabe1346bf33b66d5c95d53324e23a9eba10b638365c1d") r2 = creat(&(0x7f00000000c0)='./bus\x00', 0x0) ftruncate(r2, 0x8200) r3 = open(&(0x7f0000000100)='./bus\x00', 0x14303e, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r3, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, 0x12, r3, 0x0) mlock(&(0x7f0000001000/0x2000)=nil, 0x2000) sigaltstack(&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)) mlock2(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0) r4 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfff7fffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x80011, r4, 0x0) 10:13:26 executing program 3 (fault-call:2 fault-nth:18): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 298.081560] netlink: 28 bytes leftover after parsing attributes in process `syz-executor0'. [ 298.101857] hfsplus: unable to find HFS+ superblock 10:13:26 executing program 2: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000140)=ANY=[], &(0x7f0000001300)='./file0\x00', &(0x7f0000000100)='tmpfs\x00', 0xc8e, &(0x7f0000000080)) open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x480, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r2, 0x80045500, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2) fstatfs(r0, &(0x7f00000002c0)=""/4096) 10:13:26 executing program 4: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(&(0x7f0000000100)=ANY=[@ANYBLOB="7057bac405ea36510c0000730d000000000000ea082bd09a920a058d571fb544ccac3f00a1324540092cb060a3bf264c219cf043adda1d3949d3bdaefa63ce6ca5"], &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180)='hfs\x00', 0x3, &(0x7f0000000080)='$\x00') r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) execveat(r0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000300)=[&(0x7f0000000200)='cpusetbdevppp0eth1\x00', &(0x7f0000000280)='hfs\x00', &(0x7f00000002c0)='\x00'], &(0x7f0000000580)=[&(0x7f0000000340)='hfs\x00', &(0x7f0000000380)='hfs\x00', &(0x7f00000003c0)='vboxnet1^\x00', &(0x7f0000000640)='-]}vboxnet0GPL,$selinux*,user\x00', &(0x7f0000000680)="1c405e00", &(0x7f0000000480)='hfs\x00', &(0x7f00000004c0)='GPLcgroup\x00', &(0x7f0000000500)='-]}vboxnet0GPL,$selinux*,user\x00', &(0x7f0000000540)='&bdev\'eth0bdev[\x00'], 0x1000) faccessat(r0, &(0x7f0000000240)='./bus\x00', 0x2, 0x0) [ 298.143033] netlink: 28 bytes leftover after parsing attributes in process `syz-executor0'. [ 298.225896] hfsplus: unable to find HFS+ superblock 10:13:26 executing program 0: clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300030c000000000000200000000002000900400000000000bc0000000000030006000000000002000000e0000054d81458186fe8b90002000100000000000000020200044a7b030005000000000002000000e0003f010000000000fca0d9"], 0x60}}, 0x0) socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) flistxattr(0xffffffffffffffff, &(0x7f0000000140)=""/19, 0x13) fcntl$getown(r2, 0x9) r3 = syz_open_dev$vcsn(&(0x7f0000000340)='/dev/vcs#\x00', 0x6, 0x10000) readahead(r1, 0x3, 0x3) ioctl$EVIOCREVOKE(r3, 0x40044591, &(0x7f0000000380)=0x8) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) fstat(r4, &(0x7f0000000200)) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0xf, 0x7fff, 0xd9d4, 0x4, 0x4, r4}, 0x2c) exit(0x0) r5 = add_key(&(0x7f00000001c0)='ceph\x00', &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) r6 = add_key$keyring(&(0x7f0000000440)='keyring\x00', &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$search(0xa, r5, &(0x7f0000000300)='dns_resolver\x00', &(0x7f00000003c0)={'syz', 0x2}, r6) [ 298.255025] FAULT_INJECTION: forcing a failure. [ 298.255025] name failslab, interval 1, probability 0, space 0, times 0 [ 298.293457] CPU: 0 PID: 9135 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 298.301907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.311276] Call Trace: [ 298.313882] dump_stack+0x244/0x39d [ 298.317532] ? dump_stack_print_info.cold.1+0x20/0x20 [ 298.322745] ? is_bpf_text_address+0xd3/0x170 [ 298.327265] should_fail.cold.4+0xa/0x17 [ 298.331366] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 298.336504] ? zap_class+0x640/0x640 [ 298.340255] ? save_stack+0x43/0xd0 [ 298.343919] ? kasan_kmalloc+0xc7/0xe0 [ 298.347831] ? kmem_cache_alloc_trace+0x152/0x750 [ 298.352690] ? kobject_uevent_env+0x2f3/0x101e [ 298.357289] ? kobject_uevent+0x1f/0x24 [ 298.361269] ? lo_ioctl+0x1385/0x1d60 [ 298.365118] ? find_held_lock+0x36/0x1c0 [ 298.369225] ? __lock_is_held+0xb5/0x140 [ 298.373319] ? perf_trace_sched_process_exec+0x860/0x860 [ 298.378829] __should_failslab+0x124/0x180 [ 298.383079] should_failslab+0x9/0x14 [ 298.386906] __kmalloc+0x2e0/0x760 [ 298.390472] ? kobject_uevent_env+0x2f3/0x101e [ 298.395073] ? rcu_read_lock_sched_held+0x14f/0x180 [ 298.400103] ? kobject_get_path+0xc2/0x1b0 [ 298.404363] ? kmem_cache_alloc_trace+0x353/0x750 [ 298.409232] kobject_get_path+0xc2/0x1b0 [ 298.413335] kobject_uevent_env+0x314/0x101e [ 298.417770] kobject_uevent+0x1f/0x24 [ 298.421588] lo_ioctl+0x1385/0x1d60 [ 298.425247] ? lo_rw_aio+0x1ef0/0x1ef0 [ 298.429146] blkdev_ioctl+0x9ac/0x2010 [ 298.433049] ? blkpg_ioctl+0xc10/0xc10 [ 298.436976] ? lock_downgrade+0x900/0x900 [ 298.441152] ? check_preemption_disabled+0x48/0x280 [ 298.446192] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 298.451145] ? kasan_check_read+0x11/0x20 [ 298.455323] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 298.460630] ? rcu_softirq_qs+0x20/0x20 [ 298.464629] ? __fget+0x4d1/0x740 [ 298.468105] ? ksys_dup3+0x680/0x680 [ 298.471845] block_ioctl+0xee/0x130 [ 298.475497] ? blkdev_fallocate+0x400/0x400 [ 298.479853] do_vfs_ioctl+0x1de/0x1720 [ 298.483774] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 298.489340] ? ioctl_preallocate+0x300/0x300 [ 298.493757] ? __fget_light+0x2e9/0x430 [ 298.497721] ? fget_raw+0x20/0x20 [ 298.501179] ? rcu_read_lock_sched_held+0x14f/0x180 [ 298.506231] ? kmem_cache_free+0x24f/0x290 [ 298.510490] ? putname+0xf7/0x130 [ 298.513975] ? do_syscall_64+0x9a/0x820 [ 298.517966] ? do_syscall_64+0x9a/0x820 [ 298.521954] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 298.526559] ? security_file_ioctl+0x94/0xc0 [ 298.530983] ksys_ioctl+0xa9/0xd0 [ 298.534467] __x64_sys_ioctl+0x73/0xb0 [ 298.538372] do_syscall_64+0x1b9/0x820 [ 298.542271] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 298.547652] ? syscall_return_slowpath+0x5e0/0x5e0 [ 298.552601] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 298.557474] ? trace_hardirqs_on_caller+0x310/0x310 [ 298.562522] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 298.567561] ? prepare_exit_to_usermode+0x291/0x3b0 [ 298.572609] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 298.577509] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 298.582709] RIP: 0033:0x4573d7 [ 298.586138] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 10:13:27 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='a\ntofs\x00', 0x0, &(0x7f00000003c0)) [ 298.605052] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 298.612779] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 298.620075] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 298.627346] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 298.634613] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 298.641881] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:27 executing program 4: clone(0x1000007, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) socket$inet6(0xa, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00') socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000000)=0x0) syz_open_procfs$namespace(r2, &(0x7f0000000140)='ns/user\x00') r3 = socket(0x10, 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000000000), 0x36f, 0x0, &(0x7f00000000c0)={r4, r5+30000000}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) ptrace$getregs(0xc, r6, 0x9, &(0x7f00000002c0)=""/227) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000180)={{0x3, 0x0, 0x4, 0x2, 0x4fae}, 0x80, 0x9}) ioctl$KVM_NMI(r0, 0xae9a) setresuid(0x0, r7, 0x0) 10:13:27 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) utimes(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)) bind$alg(r0, &(0x7f0000eccfa8)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x2000000008) accept$alg(0xffffffffffffffff, 0x0, 0x0) fstat(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETOWNER(r0, 0x400454cc, r1) [ 298.674717] hfsplus: unable to find HFS+ superblock [ 298.683569] tmpfs: No value for mount option '/dev/vga_arbiter' 10:13:27 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x100000c, 0x3d, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES16], &(0x7f0000000180)='syzkaller\x00', 0x1, 0xcf, &(0x7f0000000340)=""/207, 0x41000, 0xfffffffffffffffe}, 0xfffffffffffffc75) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-vsock\x00', 0x2, 0x0) fcntl$getflags(r0, 0x409) r1 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x4d4c, 0x94e0c5e84df354b3) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000100)={0x3, 0x0, 0x10001}) ioctl$DRM_IOCTL_AGP_UNBIND(r1, 0x40106437, &(0x7f0000000140)={r2, 0x677df92f}) [ 298.738552] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:27 executing program 2: r0 = syz_open_dev$mice(&(0x7f0000000200)='/dev/input/mice\x00', 0x0, 0x8000) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000280)={&(0x7f00000001c0)='./file0\x00', r0}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x40000000000009) perf_event_open(&(0x7f0000000340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000000580)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000068f50)={{0x80}, "706f72ff0700000000000000000000000000000000000000000000001f0000ffffffffffffffef000003ff00000000000012000000000000000000000600", 0xc3, 0x80003}) clock_gettime(0x7, &(0x7f0000000540)) ioctl$TUNGETSNDBUF(r0, 0x800454d3, &(0x7f0000000300)) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x10000080002, 0x0) r3 = dup2(r1, r2) write$binfmt_aout(r0, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x961) read(r3, &(0x7f00000000c0)=""/85, 0x321) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1, 0x10}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, 0x1c) sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x400000000000025, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000002c0)={r2, 0x10, &(0x7f0000000080)={&(0x7f00000003c0)=""/179, 0xb3, 0x0}}, 0x10) write$smack_current(r3, &(0x7f00000004c0)='*vmnet1\x00', 0x8) r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000480)=r4, 0x4) ioctl$EVIOCGABS0(r3, 0x80184540, &(0x7f0000000500)=""/7) r6 = creat(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$inet(0x2, 0x1, 0xffffffffffffffd9, &(0x7f0000000600)) setsockopt$packet_rx_ring(r6, 0x107, 0x5, &(0x7f0000000140)=@req={0x0, 0x0, 0x80000001, 0x7}, 0x10) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f00000005c0)=r5) 10:13:27 executing program 0: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) lsetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.opaque\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', 0x19, 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0) fdatasync(r0) syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000c00)=ANY=[]) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) [ 298.780683] hfsplus: unable to find HFS+ superblock 10:13:27 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x80080, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7fff, 0x90200) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x2, &(0x7f0000000180)=0x100000001, 0x404, 0x0) get_mempolicy(&(0x7f0000000080), &(0x7f00000000c0), 0xffd, &(0x7f000041e000/0x1000)=nil, 0x2) bind$bt_l2cap(r0, &(0x7f0000000140)={0x1f, 0x20c, {0x6, 0x0, 0x2b000000000, 0x4, 0x9, 0x8}, 0x4eb}, 0xe) 10:13:27 executing program 3 (fault-call:2 fault-nth:19): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:27 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='au\nofs\x00', 0x0, &(0x7f00000003c0)) [ 298.982512] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 299.027107] hfsplus: unable to find HFS+ superblock [ 299.040473] FAULT_INJECTION: forcing a failure. [ 299.040473] name failslab, interval 1, probability 0, space 0, times 0 [ 299.053926] CPU: 1 PID: 9217 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 299.062364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.071753] Call Trace: [ 299.074381] dump_stack+0x244/0x39d [ 299.074405] ? dump_stack_print_info.cold.1+0x20/0x20 [ 299.074432] should_fail.cold.4+0xa/0x17 [ 299.074451] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 299.074473] ? __save_stack_trace+0x8d/0xf0 [ 299.096755] ? zap_class+0x640/0x640 [ 299.100474] ? save_stack+0xa9/0xd0 [ 299.104089] ? save_stack+0x43/0xd0 [ 299.107709] ? find_held_lock+0x36/0x1c0 [ 299.111774] ? __lock_is_held+0xb5/0x140 [ 299.115834] ? zap_class+0x640/0x640 [ 299.119563] ? perf_trace_sched_process_exec+0x860/0x860 [ 299.125023] ? check_preemption_disabled+0x48/0x280 [ 299.130043] __should_failslab+0x124/0x180 [ 299.134297] should_failslab+0x9/0x14 [ 299.138113] kmem_cache_alloc_node_trace+0x270/0x740 [ 299.143237] __kmalloc_node_track_caller+0x3c/0x70 [ 299.143311] __kmalloc_reserve.isra.40+0x41/0xe0 [ 299.143335] __alloc_skb+0x150/0x770 [ 299.153021] ? netdev_alloc_frag+0x1f0/0x1f0 [ 299.153041] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 299.153057] ? kasan_check_read+0x11/0x20 [ 299.153076] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 299.153095] ? rcu_softirq_qs+0x20/0x20 [ 299.153194] ? netlink_has_listeners+0x2cb/0x4a0 [ 299.153226] ? netlink_tap_init_net+0x3d0/0x3d0 [ 299.189042] alloc_uevent_skb+0x84/0x1da [ 299.193108] kobject_uevent_env+0xa52/0x101e [ 299.197511] kobject_uevent+0x1f/0x24 [ 299.201322] lo_ioctl+0x1385/0x1d60 [ 299.204960] ? lo_rw_aio+0x1ef0/0x1ef0 [ 299.208861] blkdev_ioctl+0x9ac/0x2010 [ 299.212737] ? blkpg_ioctl+0xc10/0xc10 [ 299.216629] ? lock_downgrade+0x900/0x900 [ 299.220775] ? check_preemption_disabled+0x48/0x280 [ 299.225793] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 299.230726] ? kasan_check_read+0x11/0x20 [ 299.234872] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 299.240169] ? rcu_softirq_qs+0x20/0x20 [ 299.244163] ? __fget+0x4d1/0x740 [ 299.247626] ? ksys_dup3+0x680/0x680 [ 299.251356] block_ioctl+0xee/0x130 [ 299.255001] ? blkdev_fallocate+0x400/0x400 [ 299.259335] do_vfs_ioctl+0x1de/0x1720 [ 299.263248] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 299.268788] ? ioctl_preallocate+0x300/0x300 [ 299.273217] ? __fget_light+0x2e9/0x430 [ 299.277194] ? fget_raw+0x20/0x20 [ 299.280656] ? rcu_read_lock_sched_held+0x14f/0x180 [ 299.285672] ? kmem_cache_free+0x24f/0x290 [ 299.289896] ? putname+0xf7/0x130 [ 299.293335] ? do_syscall_64+0x9a/0x820 [ 299.297315] ? do_syscall_64+0x9a/0x820 [ 299.301307] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 299.305884] ? security_file_ioctl+0x94/0xc0 [ 299.310282] ksys_ioctl+0xa9/0xd0 [ 299.313737] __x64_sys_ioctl+0x73/0xb0 [ 299.317643] do_syscall_64+0x1b9/0x820 [ 299.321548] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 299.326913] ? syscall_return_slowpath+0x5e0/0x5e0 [ 299.331845] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.336688] ? trace_hardirqs_on_caller+0x310/0x310 [ 299.341717] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 299.346738] ? prepare_exit_to_usermode+0x291/0x3b0 [ 299.351776] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.356627] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.361810] RIP: 0033:0x4573d7 [ 299.365019] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 299.383911] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.391621] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 299.398875] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 299.406131] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 299.413392] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 299.420685] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 10:13:28 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8090, 0xf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r0, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) r2 = socket$kcm(0x29, 0x5, 0x0) write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="24df679b970000000000f307a048e2d0e00bfe3c13c2f1e55d1214ec1d82fa4aa3e700"], 0x23) r3 = syz_open_dev$rtc(&(0x7f0000000040)='/dev/rtc#\x00', 0x7, 0x101000) ioctl$RTC_WIE_ON(r3, 0x700f) [ 299.431459] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 299.446413] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 10:13:28 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept(r1, &(0x7f00000004c0)=@sco, &(0x7f0000000540)=0x80) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000580)=0x101, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x20000000400201) ioctl$sock_ifreq(r2, 0x0, &(0x7f00000005c0)={'bridge_slave_0\x00', @ifru_names='bcsf0\x00'}) mprotect(&(0x7f00004d9000/0x3000)=nil, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffff9c, 0x0, 0x2, &(0x7f0000000000)="be00", 0xffffffffffffffff}, 0x30) fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x2, r3}) syz_mount_image$bfs(&(0x7f0000000100)='bfs\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x5, &(0x7f0000000440)=[{&(0x7f0000000180)="86c82a0baa32ad7baaa1fa65ebc6a60e5d25c6011356f327c48235efaeac83d6ba93cf509088f96213bc2def7f57387876a6fd02acfc891815580e4de7484ee595", 0x41, 0x80}, {&(0x7f0000000200)="00020fc475", 0x5, 0x1}, {&(0x7f0000000240)="259e928e466fbab7812d0dd74adcd3cf86b568defda6eb6eecda57c1d58bdcfe759ef94cf2d2a01bb459b5c0e602df65e7ddc3d9a5b7f6412873f026c3ab08ebe16c0985eba38ddb0733e9621ca98388f43fa9b665f7e693d0bc6784a227c8de244c0673cc21fa7bef9c5fd1257f97c9c70dd61c0841fed9e8cbf287522fa147c4d6564b843e9e7c076fea75c2d22e13ca2446", 0x93, 0x7}, {&(0x7f0000000300)="ab73ce96aa262789e11f38231a42e7db46c31eabeeaa3024166bf565cad66380acde8efb8f15fc9304c500bbd84f54154e34c45a916195888e2df4631ed5fbfb9c3f0561eaab16e6863188850888e48ecf1475d50d9ca4adc7c18420778b2dd6564d12a697d6c0762f09b4a8258a01530ea529e3026b6a8fbdb96c91ef13219f43be617fc1185dd8ae7baa0f9068c3c8e363b9a7bf29ca89d4c02f829073a269538cb8c79a178d9b74aa64b673adff6dd22e54b0d13c25906107f34ae8e33fe57384c919c5ba219e45d35637a96a84afad78e519c00e7b4f200a90b550ae765065e6c509b3cb9e9d4c565666", 0xec, 0x1f}, {&(0x7f0000000400)="9803c993fd94a93c1cb5e97b69f478fbdf01bb97244740215de319ff69bd82b8337577", 0x23, 0x9}], 0x81800, 0x0) [ 299.484904] overlayfs: filesystem on './file0' not supported as upperdir [ 299.498144] hfsplus: unable to find HFS+ superblock 10:13:28 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x4000100000008912, &(0x7f0000000280)="88f96234488dd25d766070") r1 = socket$inet(0x2, 0x10000000006, 0x4000000006) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000001340)={0x0, @empty, @broadcast}, &(0x7f0000001380)=0xc) 10:13:28 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='au%ofs\x00', 0x0, &(0x7f00000003c0)) 10:13:28 executing program 3 (fault-call:2 fault-nth:20): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:28 executing program 5: syz_mount_image$msdos(&(0x7f0000000500)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f0000000540)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x18, &(0x7f0000000580)=ANY=[]) r0 = creat(&(0x7f00000004c0)='./file0\x00', 0x0) r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000240)={0x0, 0x40, 0xcc67, 0x0, 0x0, 0x3}, &(0x7f0000000280)=0x14) bind$can_raw(0xffffffffffffffff, &(0x7f0000000200), 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'nr0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'\x00', r2}) fchdir(r1) setsockopt$inet6_dccp_int(r0, 0x21, 0x0, &(0x7f00000002c0)=0x7, 0x4) timer_gettime(0x0, &(0x7f0000000640)) r3 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) modify_ldt$write(0x1, &(0x7f0000000040)={0x1000, 0x20000000, 0xffffffffffffffff, 0x200, 0x6, 0x3, 0x10001, 0x4, 0x6, 0x20}, 0x10) setsockopt$inet6_tcp_buf(r0, 0x6, 0x0, &(0x7f0000000680)="832f279f451acf1e7c89c02196a484440e6cf90c60cd03e204de183c2d0ffe5261bc4fc1ee10bc42d698006441333c574841cc6a1645069a6612c16dd5e42a944857c7278745bc745e65d2ccb847dea750ecc882fcbd52df4a6aef23d52ff2e819bf509a5fd068", 0x67) write$UHID_INPUT(r3, &(0x7f0000000980)={0x8, "7c70ee3800d5ab5f2036f872e0ac57cbd592bca0d671633f50a3102066d6e765f5a64731e3fb8d90d250eda2cc33b60a7ff98074cdc3f1dd1a2df26a381d95974e0925d521c6b48c3dee0d430d398884316091aff6adb6153dc3c92549957d3488efc02d6f6fb172524b095c30c1bd35aae04236bdd42694d613eb54c0b65a338c48dc4c8bad70754fc81d9928e4a1b81f9c77075258a0805b4494867247966b24a023311fd91ef3754b98d3acde6f2ef0617f123c22fccb81c11389fdfa2e21c2365aabfc8916e02151d8643ae21cab7fcbec6142186d3bb57546c106484bc4c28a48da2b75dd82aabe99464558e60cd101f6b65856fabee614d271741a68dd550c8772f06a93cf8e5c0de549c3b75a72f8a590bd50b2af5f64009c969ed7596f0192b0f98b1afac0e8c5f4c653f611b4a71776400a9ae3f18e75f856788c97195749042510735880b9bb0ccb23210832a4f1c6f134d68f8e299837c426e0c9a45d5d2c959446cc363f370c67cd01a063c91254d692fe35abee92fabda4f66d93228c979ebe036c5c2e0028ec76562d67d0919ca28258fec0ed60603142b5c57c4cfb1ea1e892d0fd2f33970142b179c415d6bea344fbcc82d133052e848a885160737c69eb02ca9f544831c8e3ffcf40cb7b415d24795fc8aaeb8e76bec262aea5e28fe5d6495c4b5895a612b1cc2122286add66356f3ecd309f970634f1b09da1507964d35575167317f13c7fd9f11af27ceea86e9a5b3494a27ba98ba38dd1fb72ef2c6163664fd8f7c946935cd4833121f505ff277c03d959d9a12f3389e9eb6701a8b29f72c20c6abb7bd8349dd2e120bdd59dca9f1a2a877f1677b59d7920ddf29b9d94f7c6879b78e31cf1b65b60fe349ef9d4976f46609ee34e33f647aafbf64f6323d18598905f2e73af75661397595b8f9c1e9a4e993946820da5378ca5b363560e95edce316e99bac6e6250efcf1cb58fdcf94c7557c2d7f763a688543462d54b64e178c2e64c6ebba356894973051907fd8de8ba908e822168b171c1707efcd9ac827e64313721876e2ff26ac34e88557a4a0dfde08eda81cf0c1465a89b68429e48966044c767563e1121db48c9b619fd7362afd15ec6aa19b28759d7977be4fbcad0cf8dd5dc5362259bd5cb5089a9d18db969afe1192571f5fcc0c4d6be281d23b9c1f9f32873c058adfa1bf57a3718686957edfd6e4b58aa959541127696d59fb2810d042ced227961eb19a424e4cf45bc6243217bb7561b7ee11f8c0b8f39480343a26f2da5fe79d5e213c01ea47155ffa91e7d7ba0bc8ccb018bd69cfe71dd8565a645d678b404a295397e83ae69dbf8505f6947a836b44823a92861124330fccd4bc4a2e20d9047bd919d82c89623caa87eb09bd584d58f42b35ef55fddc06dfb3957f3f507e5ca9b8b98947cc5bb68846755527ddf32ffa444e1c7a5654d4d377e04a9f22e1069804fdcdb251acb6bd6b32d100feb44286991d779d2b3e2b7f5cc5f8eb3ae166a3b6fb9df11e1867989a6f9b2028e4c73b4d418b51f6e870713cadafddb47a48c9a97283da214f02db3326d42438d9a7db580693ad1887f99d86bb5fafd6d07c2647fc80c2c5a1ed9ea3b95be65ca422080ddefca5b49ccd538f6bc67390f892d9e416f7e835f76dd90edc56256348d20560caeea05c0922cab60dbf0b57ddaaed6ded5a336e01485fd571dc12050461271cee347c31ac245bfee9128630dfcc43b6d88b5ba9937a6f6ab70b7d256784ff72297cfcfd0ffacd09b55fb832bf60f04d87c48c74972b9f18fa178ce4880b025d1c1097ddb929e8f7e02f1c0e03012bec0fa61a49eb1c2a50a45fc0d98b6649de325184006938e421321e8b366649d9b6ebadf77509c9d48844e80f7752fd7daaa5c938b946feaaac0d871203270a747035c7e2f697c84e792a55cbce76c0a25360f7acbeaab60627aa9c37064af75b67f46732844eb2f6b37226004afe451a9fbfbbcf7e72ade67b017e9209b5627fbe16789abd90326751a1fd1d93efc59f2650f979ba71938d784064922bee2874c4b76d5f26e39ea0a98cf175950137feff9456c88c6a295830183fae3a9c2312c25f3d81708d73488d15a587e7e7cdde3b77917eef29c8b5965c916a65c3c5a53b7313c3115d0a8bb4e16f6b80ff6f78adb756aba94ced86047562a2cd2fb25e9a4656f6359c3f2fde8b5ab38852853cbd7221cb4d59b7f0e79bd37f9ade073f62b75edbe63c13c0d02bf076d88f5b750ea640aad47ce97d6a0783398dd3fbb63734ed969470cf45200235650532224fc28caf1e36ca6b402ec4c978add40fc59f2113485875682139f8aa9aeb48d09178de919370b0cd0ebcab5e60e1b0a2fc153db0dae8e50b48561622a677d0f1afc149676f832e016e14007fb298dcb96f11a92a1ac8bd4cc7b34d659d6cd2c9817b586585e72080255b083bc84512277ffb7f561c6a7a08cd128bfe9b525da531f0bf04f11d3de102b3538835807ac0b2f4325fc6765d02d692ec82f5b338c8257029136fcd3427c09874ecc7492becdd6608eac4adf1abc3f7e08868a72e57ce4dcfc288a25af73d19f1118a9254963c1548cdca5fc7c921a7f218f8e71edd7969dfb35beae1091d7530e32236397fa9fcd232b441ff1b0177829468c198d659d247ccca4fbd58c625501e4368075d0e5e69a6f90952f5bbe48e85a303131dedf7f1a513b291598a545784e1013521877c25d6069d3a855652a4bad5b2df2e4da2de756a20e790b756dd2925ce824561e5892b5e064c7c7b996acc4e29597e0cd00956e9c57ec374714f846be7632d3075e38bead499163498810886c78a2cc73fb64fd48e186083ce911e0751b4dc63476859c2824fa532a4b1711c244619e702eeab19380aeb7b17f67fade3dcad8ddddd893a526cd5d04d8ae982c88029ec71bdd0772fd74adbdb378fc204ca411a2d8a50331516a28552be78f9725f32d1b3a6c7bdf3277c5f7e385c7ebbacc419ec7ca3c5b8f46dbefee59b6422a6b22d60527edc012f852077d925619874f7709f283e01678fed36528003a696ee431a817f34f453c143dc56b70e1f810a5380a555cc8c4fc6522ab544ce5d715caa302ebdd0aa8286b7ef5dd6dd48a8ad9566818f7509daf02db0b98b432f57f1d107ee95a86228728cab4062e27922381e1e2ee351af5e2ea0fd6d1cea70b3b8f4a50f0776fc9aa2a7d2dff6e1ea3769864104f09137b99960b69af13895d842649eacaed8ddf183beba3323640af8deb52b902c0974d685d19fc87c93eb80ad5d28e54363705ad39231d989522e94f000256bc8d93af138a45d67dad3e21fa9fb31d9327c6e71f61956d9daf4f97333112704136d3d1bf6fe0e4c002e10b684d2344300ec70fae0b50532ebace58f0e8318354a172cceacf27d01ff41cc8fef42443f62b0e15b5fcc0728630b96fb2c2b59634f4993bb1ce2eace6fb0f53e5f84bc5f58b1b66d59e3c75a98670496f105a703607211aa9e882e72f13e9fe07f0767ad4e5ac5c732b65301d8ceab36b5ff2f71958fb1b51d2e703ac506e68d4026160fd3f60440b8b8f554f1feeba5d53f71cbe60d143620f8fa779acb94c965b729207a5ab11f4a51b694c31606171da44a28d80cde296dff5724ff718d6377eb8534e616cff39af943ee4ce87b4fadded30c702d370a71072ab3e20f19b8c1b73fdbbb9c675352bb73ee85e22597fc0c439a33f5febe1629bd084af7193f8d1a1415b02ca54706711505cbae11ec6411b012cc3a3eddcfb002901b6e7565b9fbf4d605c147031888ceb590c14697d00970ce9095c6f7fee41ec6a15d7ef52dfedfff2a0d3dbb387b61232aee6ca202787038021e6aabda18e2adf6fd89aa491e65f9813d73412fbfff089752d713d7efa690ec4fc254b56908d3057f65997acf81aea589e272f8fa852849e488f1e0c0cb6cdb5f46ca92e36d39224e704850056d2e9b91909aed0f55d054e274415ecc39b8958335a14cfb0a42d7f26ef8e82592dfd03b3550b5193fba077994c682951968869574fd94976760d9bd9b334353eeda836cc8dab244e72095cc46833f02bb2f6df35601b3085664261abb67fc9ab9f27210e6827cd15ce16c55f0f7f5b8ab401f24032b19a53a9299b62ebf4a8cf7f4753d95126f008a8ce349036666de66bcaf40b27fa875efa98873e1ef9302e2a24bfe07bd1054bdf9ba9ad1b1075402f26d682833b947c762513ba5f07537bb712473184a60e04ace5adb8d982d6153b011ae0b2034adc0ff4a64e2c6561c2e0840cdab2120bc916cde9b7a92c4d332d0f83945fe55e3c8f4d93f22e7759c20241d92cca0ae5a3d06a127e5614df708cea1ad3b2f231c81460ff4c3f349c67a87135a4b67589ffce311832923f71796276e81f0537e265404c0ee06d5ed98a5ec5f8ad62db589eb585fc4627173b51fd4e897a3e8d2acbb82ec2996ac3a6823368a1e12a0536a9d1a7b2d31d80c46c292ff51395481d4f65c53fab867e27bec9156ee189d245d94877a1405dc9e1e996822ad47071a9ab36c9bfd02c41ea5ba21591793053b1b64758bae0addfcd69d169849bc1ee6ce5c08f0d3da5ecc1b6ab31e13af2fa5ce4d921163270901264a88ac6350e8fb6371663dd04146932238597258b123a8036250c190fbb3cfc6ebbf9e06c4a9053e8332c95c91a890a3d35ddd35f47e7ab606f3e345e12560e6d52243883da7b8910834042ad12e7fb3f08a0b14ef6aee22251999e6079be2ef5666d7d5ae00d161720262761da3f378c63cb151f4e94d034e9de949dfe796b905804ca555691023c30ea7cf0cb276e1e3ba65793291f8287d1064606bf5787421b9b9bfc05e9c5eac750de92519fe9e2592cd34a2ef6ec18efed5e7c13bfcfce47327cbecac358bbe6d44164849308cf91cd5ea87fa4b02ba4939e28141c7dad42714b019470d91808a8f46150677b6c90f267ecb39ef42afc95de0cbd016775c89d8213ec9d4e061e6493f237296f91abfc64176c0e885ef54af4136a724fadfe89a25d7599998acebc4a27f8fb5b26936bda5c3d5fec3373dcd9a0e99fc939641c50669adc54119582e8835575d1c57fa955cd29d870360620f91c3ff90d264013816352317ae226f7d7bad5db711f8973382f6cebd63cd519ddd08e1772649be75f64f4acc15f828dc0b305584b6dd2213194603c44e2964358d305aa97fb08568a0a955ad7a6f8d042754b4bbf2fb3414052719fd9841bef8360d1d3195c69414be882115c2c64fecdcbdaed3a2e943fdfef9a13520e41d32a787bcfe4f61e2b378d35aa70784a772cf8ebcaaeb105e4627516db2ababfcb8c11f224c3a48c86160d34d0ee59f02c31648ae4b0309b378f0bf63266967dcfb4f1cc1902f613c6d0d48915a9cf28a52b106544cde1b38ff2e2a1275fd0d3899ce7f7c6653c9017f7ac4aaa35bcb2811a8f9dbb56746b45475350e7c13d42abb5692377da7a4045ee644ce00f8699e3251d75621c82cd659ea3add277affe3ff792f7d24a3d0979ef82cfc0d409697ae2e8598854a8327f46974c901d309dc6dbe31913c59d821aa50c0fe95cc822e8f07bbb00e9a09bc9a570b9778d29308740bc336a41258d209c206f87a709aa43415da0096f7d177e509a7d625645fb098ccc45367d82235e952670ac5f82f8ced3f59fd9ee20ac75be609cc832417e807ddc40630cba4c91e0785edcb5f20b9e6dedb1ec172cd16fc034f410e9ce375ea855144aa3076317f649cf4efe4d7abf244984c4e", 0x1000}, 0x1006) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/25, 0x19, 0x0) sendfile(r3, r3, &(0x7f00000000c0), 0x8080fffffffe) 10:13:28 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg(r0, &(0x7f0000001f00)={&(0x7f0000000040)=@sco={0x1f, {0x20, 0x180, 0xfffffffffffffeff, 0x6, 0x3, 0x72ac}}, 0x80, &(0x7f0000001a40)=[{&(0x7f0000000140)="0e610b586515dea8d598bbb5fedbcd3a26dab11c13174ca1eaafab42352faaee531229f919c1456d9e98dca6f1cc667080c828159fe52e531df61f5c21847ab1cc81d91821de5dda89e0c7", 0x4b}, {&(0x7f00000001c0)="c0ec40a6fa6a61", 0x7}, {&(0x7f00000005c0)="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", 0x1000}, {&(0x7f0000000200)="4cfc3234b0ca401e7ea0e52f875aec91b0de8112dd91cfd5958802f036b8204086bc3041b32f7676bd1af256707c3113cbfd7e135a8a5feedb6a56e3c4c1c6a335b18f9d2e537a021984f07527460f22bb2cd08412e90872ba2c7dc65e5fde2fb22226d17357dd7d143bd9cde1c0bef683108437d1135d08181a4b0ed0f2db84f252c6", 0x83}, {&(0x7f00000015c0)="e7c81276e1491c77eb7c70f8ea50c98a05b2841f5e499d3862d6b56bc912ef09298a5f5d64e6e7b20d5c6eabd99daffeea6fe0095ce3b1d67971d6656accc87dc09d40ca5fb779a42374ac72bee2a6464869f5b6dcb9940c91017f9931d069383774d92196457ddf5d5e421addc6ddc488badb95fe0eb9c986e0ddcf0cbc33d710b69ca27bb7691f1efb2c08166a4861e6b2c19ffdc8ae1bc9cc4d038875733d51f69e319234121c80d46b999d53e881b70cd416b116892810f72d7dc6d2357896bb69cf9a5f57fe7cb7eab2683fe9063380185e967ab0d0ddd823ee09209e031287a179623799f955588e96", 0xec}, {&(0x7f00000016c0)="fa42b497ace6210600b88d29e557230bff0e90b9d47b7fda0ae10a7008e251cef2cab0b15696b94ff8c3532f1d146bbe1acc2ccfb6619cd3cf51828718bf65e287110ab13f62ee3db016b418d80deba6651caf915c812c734c936d3591666644677c7f7bb66eb322ca42c5cbfc777f02128272851e0b6b0165157ed54213a85963e6c27f9b28a8429d81b8", 0x8b}, {&(0x7f0000001780)="cfd0b715e7f0776c0cab5bff367410730d87f447f2a1013693e2784ad0fe604eaf5bbe96a6fe71fbdd5bcdc56ee8dafaec018cd3c80fc6db061924f1e6f39e9c45a9faa68bdb9a6d", 0x48}, {&(0x7f0000001800)="861b49c57106596d001d8a5ab9a7c16881c9b31ce7180a2924b120fd8d1dd59c628eb6a501e6b26ed9a710a46a98efba39dc15bfd7d6af017000cf8903569e3713848ba7f9b2ad6bedeafb0fb83f40a1ae16bc00a510a448f4e335a2ccbdff5e1b7e7f00a22755c78d87594c7dbffcb1ff04a5aee932bcbf0425458a0c44affba699c59c10defe036e34cadc6b511f4ed185c0fb3267522c2f8ff55c008b2a0e47b2beb54d400907c40792e468a8a3633bcbea9e5403b182ed4620e481105b50faf0646fdaf8cebb27f6f04c5b1de325cdd59cdfdc3b8b479288bd01b8af3706edf742bc43f4f6a4278b5ddb2b90eaeccf4408", 0xf3}, {&(0x7f0000001900)="253901aceaa50b59e676833401d165790a32b58121d9a827382ed364eb5682a5de6a249dbf061223c6e064aed2ca862f7af1dce5511ec53c389e69af913f1a7523036477d8a2d97cb5708ea576b212bf57660e4516809f8c7faf2e400151792e2b4326", 0x63}, {&(0x7f0000001980)="6f0f3ebd5998c924408f17d8c80c41cb1d7d8edd363f6d8820412a674e2e01bc8417b8520a8d9bc72e752cff749bd22cab12446789cf7f1dc01cdd0d942709455b465c0059428ea34d00591cdde1e68c164f83ed6177d0d3210b5ad63493bef3813b77f5e5c3e3a903368ac28d9e8583d2bfc0710413c8715a805dea6ab9527279ce6a76930267024521a307c70d3e2cb4db7a79cbb9", 0x96}], 0xa, &(0x7f0000001b00)=[{0x110, 0x108, 0x19, "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"}, {0x90, 0x11, 0xfffffffffffffff8, "a9911210ea8f30ca5642db1f7386b4521c64ca22aa9ef15793874b426ff058150af254abc979500d0126519aef512cae1bc757a6d0fb8908f21e52147087159cf5b582dee60ed941156c36ef505402a4b619490d906924db5853a98b03ee6f7f13c387ab28765269b5cf8918363ebfc920b6c5960311dc6e59d73cdfb73b9521"}, {0x28, 0x117, 0x3, "7be701abe70ae46097a5d25e32f54584e116c4c5"}, {0xb8, 0x18b, 0x2, "e03a82c3cbc9115a41dda02fd8f3e4dfd96a98b425de20165e4a65536cd0f8039552a04208c06a2abbffd4a40be945368be770f42d6718f3287af2032099767e8af64b9ac3b32bb37d49808e3bcc4b38fd5e904c541b815f3e9d124d88df75f4aeff4612a9361453d7a03789e31ba2042005e2cca0595a12687c6b2315400c5375046c723df6193aed477b32204ac642fcac5a971ce99ec2465dfcaed3e6797dc8312e"}, {0xa8, 0x1, 0x5, "05f7983d4ca3f4debd22071578a0a9db2f60db9ade143393b25c9b8568174fba3214c23f7d79521eccc8d370782902f0151f9ed62c8a571ae58aa288b99baa9e89b13be2dcb7cb1aedf3376ec09bb30de107c3f2a061bfc44327125dd62463d84984e04e599077cc7c0653fa6410c69349ca5fd1c348d96b6429ed7fe9c99fd9245eff175007f17eb9a4c0ad5091821eee64d55bad04b7"}, {0xa0, 0x103, 0x1, "c0beab3de311b33d373093963cda392cb07159071e3c780f3f7a50903bfed900657cdb0708381fe77c6867b94549276db4f8553c4f6c788fa825400440513c5f52106e03c0108ed6a42cfe5a1ce27751b13da59fe4e7694754586ee63e04b0cfc0a451a2c16aae6ee7b6eb1235f64f2cc598e564cf16381107cd4b73547f6eddc12faf23e5de0bb64cbfbd20"}], 0x3c8}, 0x44000) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x2, 0x2d0, [0x200002c0, 0x0, 0x0, 0x200002f0, 0x20000320], 0x0, &(0x7f0000000000), &(0x7f00000002c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x5, 0x0, 0x0, 'bridge0\x00', 'rose0\x00', 'veth0_to_bridge\x00', 'vlan0\x00', @link_local, [], @link_local, [], 0x70, 0x70, 0xa0}}, @common=@redirect={'redirect\x00', 0x8, {{0xfffffffffffffffe}}}}, {{{0x11, 0x0, 0x0, 'yam0\x00', 'veth0_to_team\x00', 'teql0\x00', 'gretap0\x00', @remote, [], @local, [], 0xb0, 0x138, 0x170, [@statistic={'statistic\x00', 0x18, {{0x7}}}]}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x0, 'syz1\x00'}}}, @snat={'snat\x00', 0x10, {{@remote}}}]}, @snat={'snat\x00', 0x10, {{@broadcast}}}}]}]}, 0x348) [ 299.750601] FAULT_INJECTION: forcing a failure. [ 299.750601] name failslab, interval 1, probability 0, space 0, times 0 [ 299.798381] CPU: 0 PID: 9249 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 299.806814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.816175] Call Trace: [ 299.818801] dump_stack+0x244/0x39d [ 299.822454] ? dump_stack_print_info.cold.1+0x20/0x20 [ 299.827690] should_fail.cold.4+0xa/0x17 [ 299.831768] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 299.836887] ? __save_stack_trace+0x8d/0xf0 [ 299.841252] ? zap_class+0x640/0x640 [ 299.844985] ? save_stack+0xa9/0xd0 [ 299.845005] ? save_stack+0x43/0xd0 [ 299.845027] ? find_held_lock+0x36/0x1c0 [ 299.845054] ? __lock_is_held+0xb5/0x140 [ 299.852325] ? zap_class+0x640/0x640 [ 299.852342] ? perf_trace_sched_process_exec+0x860/0x860 [ 299.852362] ? check_preemption_disabled+0x48/0x280 [ 299.852395] __should_failslab+0x124/0x180 [ 299.878927] should_failslab+0x9/0x14 [ 299.882760] kmem_cache_alloc_node_trace+0x270/0x740 [ 299.887893] __kmalloc_node_track_caller+0x3c/0x70 [ 299.892840] __kmalloc_reserve.isra.40+0x41/0xe0 [ 299.897612] __alloc_skb+0x150/0x770 [ 299.901368] ? netdev_alloc_frag+0x1f0/0x1f0 [ 299.905796] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 299.910743] ? kasan_check_read+0x11/0x20 [ 299.914905] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 299.920214] ? rcu_softirq_qs+0x20/0x20 [ 299.924257] ? netlink_has_listeners+0x2cb/0x4a0 [ 299.929075] ? netlink_tap_init_net+0x3d0/0x3d0 [ 299.933766] alloc_uevent_skb+0x84/0x1da [ 299.937847] kobject_uevent_env+0xa52/0x101e [ 299.942285] kobject_uevent+0x1f/0x24 10:13:28 executing program 4: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) creat(&(0x7f00000001c0)='./file0\x00', 0xfffffffffffffffc) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) getsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000000200), &(0x7f0000000380)=0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff) r2 = memfd_create(&(0x7f0000000e40)="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", 0x0) write$binfmt_elf64(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="4f45b302b399cc4c46d3000040ad5dd355452a4cf0b680adb083ce360200000000922aa2080a41e4ff01003e0000000000bf307f97f007690000200000"], 0x3d) execveat(r2, &(0x7f0000000000)='\x00', &(0x7f00000001c0), &(0x7f0000000740)=[&(0x7f00000002c0)='lo-keyring/\x00', &(0x7f0000000500)='/proc/self/net/pfkey\x00', &(0x7f0000000540)='/proc/self/net/pfkey\x00', &(0x7f0000000580)='bond_slave_0\x00', &(0x7f0000000600)='ppp0F$vboxnet0trusted/ppp1\x00', &(0x7f00000006c0)='syzkaller1\x00'], 0x1000) creat(&(0x7f0000000700)='./bus\x00', 0x0) getpgid(0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0xfffffffffffffffd, 0x0, @loopback}, 0x1c) ioctl$ION_IOC_HEAP_QUERY(0xffffffffffffffff, 0xc0184908, &(0x7f0000000280)={0x34, 0x0, &(0x7f0000000240)}) creat(&(0x7f0000000080)='./bus\x00', 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400)='/proc/self/net/pfkey\x00', 0x100, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000004c0), 0xffffffffffffffff) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x189000, 0x0) setsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x112, 0x4, &(0x7f0000000100)={0x2, 0x6}, 0x2) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000001c0)={0x0, 0x1, 0x3, 0x81, 0x100000, 0x4, 0x0, 0x3, 0x0, 0x76}) fcntl$lock(r0, 0x7, &(0x7f0000000080)={0x2, 0x0, 0x0, 0xe69}) 10:13:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x5) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000100)=ANY=[@ANYBLOB="700000000000000000000000000000000000000000000000ea6011635f2c6578e34ec375d43f998c34a86ca6c761fe69431cc8fab7214b65139cc719af50020f9b6daec35cca9ee4aae17a6d3ed6edc937a1fbc4f8b4207b92b886dd9b4a057838bd707ec6e248c1e808544cb3e12f09a76a6489e38fe099c7ce57df64553e7a58a4ed076478f992709dff7f208bca106dafd59dba21f72f082eefd0e76052605d70daeb23f6c5fbc0b31ffb3266e22eee35b9052707c814ac874803f79dae468de763d4e199d1ff42"]) [ 299.942304] lo_ioctl+0x1385/0x1d60 [ 299.942327] ? lo_rw_aio+0x1ef0/0x1ef0 [ 299.942347] blkdev_ioctl+0x9ac/0x2010 [ 299.949779] ? blkpg_ioctl+0xc10/0xc10 [ 299.949797] ? lock_downgrade+0x900/0x900 [ 299.949813] ? check_preemption_disabled+0x48/0x280 [ 299.949835] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 299.949852] ? kasan_check_read+0x11/0x20 [ 299.949870] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 299.949892] ? rcu_softirq_qs+0x20/0x20 [ 299.989020] ? __fget+0x4d1/0x740 [ 299.992520] ? ksys_dup3+0x680/0x680 [ 299.996258] block_ioctl+0xee/0x130 [ 299.999890] ? blkdev_fallocate+0x400/0x400 [ 300.004236] do_vfs_ioctl+0x1de/0x1720 [ 300.008147] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 300.013701] ? ioctl_preallocate+0x300/0x300 [ 300.018113] ? __fget_light+0x2e9/0x430 [ 300.022091] ? fget_raw+0x20/0x20 [ 300.025552] ? rcu_read_lock_sched_held+0x14f/0x180 [ 300.030577] ? kmem_cache_free+0x24f/0x290 [ 300.034823] ? putname+0xf7/0x130 [ 300.038285] ? do_syscall_64+0x9a/0x820 [ 300.042269] ? do_syscall_64+0x9a/0x820 [ 300.046269] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 300.050883] ? security_file_ioctl+0x94/0xc0 [ 300.055300] ksys_ioctl+0xa9/0xd0 [ 300.058761] __x64_sys_ioctl+0x73/0xb0 [ 300.062654] do_syscall_64+0x1b9/0x820 [ 300.066544] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 300.071918] ? syscall_return_slowpath+0x5e0/0x5e0 [ 300.076848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.081695] ? trace_hardirqs_on_caller+0x310/0x310 [ 300.086716] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 300.091739] ? prepare_exit_to_usermode+0x291/0x3b0 [ 300.096792] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.101643] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.106831] RIP: 0033:0x4573d7 [ 300.110024] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.128926] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.136644] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 300.143916] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 300.151185] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 300.158468] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 300.165737] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 300.202549] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 300.211624] hfsplus: unable to find HFS+ superblock [ 300.266598] hfsplus: unable to find HFS+ superblock 10:13:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000040)=0x3, 0x4) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x640000, 0x0) ioctl$ASHMEM_GET_PIN_STATUS(r3, 0x7709, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000001ac0)={0x7b, 0x0, [0x12, 0x0, 0x40000108, 0x20]}) 10:13:29 executing program 0: pipe(&(0x7f0000000000)={0xffffffffffffffff}) r1 = dup(0xffffffffffffffff) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f0000000040)={0x2, r1, 0x1}) clone(0x1007ffe, 0x0, 0xfffffffffffffffe, &(0x7f0000000200), 0xffffffffffffffff) unshare(0x18000000) r2 = getpid() exit_group(0x0) tgkill(r2, r2, 0x3c) 10:13:29 executing program 3 (fault-call:2 fault-nth:21): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:29 executing program 4: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80040, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f00000000c0)={0x3c6, 0xffff, 0x40, 0x8000}) syz_emit_ethernet(0x0, &(0x7f0000000100)=ANY=[], &(0x7f0000000000)={0x0, 0x4, [0x0, 0x0, 0xffffffffffffffff, 0xd56]}) 10:13:29 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aut\nfs\x00', 0x0, &(0x7f00000003c0)) 10:13:29 executing program 0: getsockname$packet(0xffffffffffffff9c, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000200)=0x14) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000200)) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'syz_tun\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="470000000000000065d298a45ea1994943"]}) 10:13:29 executing program 2: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/snapshot\x00', 0x200000, 0x0) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000001a40)=0x1) recvmmsg(0xffffffffffffff9c, &(0x7f0000001800)=[{{&(0x7f0000000080)=@ethernet={0x0, @local}, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000000180)=""/122, 0x7a}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/70, 0x46}, {&(0x7f0000001280)=""/247, 0xf7}, {&(0x7f0000001380)=""/31, 0x1f}], 0x6, &(0x7f0000001440)=""/2, 0x2, 0x4}, 0x3f}, {{&(0x7f0000001480)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000001780)=[{&(0x7f0000001500)=""/112, 0x70}, {&(0x7f0000001580)=""/193, 0xc1}, {&(0x7f0000001680)=""/172, 0xac}, {&(0x7f0000001740)=""/18, 0x12}], 0x4, &(0x7f00000017c0)=""/5, 0x5, 0x5}}], 0x2, 0x0, &(0x7f0000001880)={0x0, 0x989680}) sendto$llc(r1, &(0x7f00000018c0)="9b693605040d4f7ea02284444f9e4b97137701f01eab71fc1c2dd3f21a4b9ea1918660dd807ceab2ee23e5bdc05935964b9eed2ae48cc982e82c4a7a8c89d0204f8f21bc3d020de1041fdf0c5de07da3ddfe12f4ecc3d495ce3ca402220a", 0x5e, 0xc000, &(0x7f0000001940)={0x1a, 0x205, 0xffffffff, 0x0, 0xa8, 0x20, @local}, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000000)=0x1, 0x4) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001980)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) ioctl$DRM_IOCTL_GET_MAGIC(r3, 0x80046402, &(0x7f00000019c0)=0xfffffffffffffeff) [ 300.593830] hfsplus: unable to find HFS+ superblock [ 300.599642] FAULT_INJECTION: forcing a failure. [ 300.599642] name failslab, interval 1, probability 0, space 0, times 0 [ 300.636368] CPU: 1 PID: 9323 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 300.638152] audit: type=1804 audit(1540289609.248:36): pid=9267 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor5" name="/root/syzkaller-testdir886466576/syzkaller.FKKjK1/65/file0" dev="sda1" ino=16628 res=1 [ 300.644798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.644805] Call Trace: [ 300.644833] dump_stack+0x244/0x39d [ 300.644863] ? dump_stack_print_info.cold.1+0x20/0x20 [ 300.644893] ? lock_downgrade+0x900/0x900 [ 300.693819] should_fail.cold.4+0xa/0x17 [ 300.697877] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 300.702999] ? rcu_softirq_qs+0x20/0x20 [ 300.706995] ? unwind_dump+0x190/0x190 [ 300.710904] ? is_bpf_text_address+0xd3/0x170 [ 300.715417] ? zap_class+0x640/0x640 [ 300.719153] ? __kernel_text_address+0xd/0x40 [ 300.723654] ? unwind_get_return_address+0x61/0xa0 [ 300.728591] ? find_held_lock+0x36/0x1c0 [ 300.732678] ? __lock_is_held+0xb5/0x140 [ 300.736765] ? kobject_uevent+0x1f/0x24 [ 300.740757] ? perf_trace_sched_process_exec+0x860/0x860 [ 300.746224] ? do_vfs_ioctl+0x1de/0x1720 [ 300.750296] ? ksys_ioctl+0xa9/0xd0 [ 300.753934] ? __x64_sys_ioctl+0x73/0xb0 [ 300.758013] ? do_syscall_64+0x1b9/0x820 [ 300.762114] __should_failslab+0x124/0x180 [ 300.766369] should_failslab+0x9/0x14 [ 300.770181] kmem_cache_alloc+0x2be/0x730 [ 300.774418] skb_clone+0x1bb/0x500 [ 300.777989] ? skb_split+0x11e0/0x11e0 [ 300.781907] ? __sanitizer_cov_trace_cmp4+0x16/0x20 10:13:29 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x400000000001, 0x0) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="0200f02272f3ffff64a9d1f49882015c399a810774507f98361db17bea35e5cbc2f2633c59001c4e68322bf6ccfd4feadff9a7f49336efbe5e44d7b4ef20ac356664e422a539ee8083a998fab4706fad5630dd8e27d5d77add3a13f68d9e4ddd988c1aa677d9abff3d66191045de2fb7b8f97151b9d38ba3cd09a590cc0b2cc2a06443e35f4cfcaa2e04b07763d19e98d892b94f236bc002de2a2ef153638013b40e8cf0cbf41610"], 0x8) r3 = dup(r2) setsockopt$IPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x41, &(0x7f0000000140)=ANY=[@ANYBLOB="726177000000000000000000000000000000000000000000000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ca55b95661543c98905c329c22315b1d832238e647ec734c59858a1c7c383bb5194dc2ca0867a683fd15b0d253ffba0fe698bc730e320e9153412a22779316b73282486d1ffa28a413b94f6d94a711cd9dd14af"], 0x58) userfaultfd(0x80800) mq_open(&(0x7f0000000000)='V-trusted$+\x00', 0x1, 0x4, &(0x7f0000000040)={0x0, 0x5, 0xceb0, 0x0, 0x40, 0x9049469, 0x8, 0x8}) [ 300.786955] ? netlink_trim+0x1b4/0x380 [ 300.790957] ? netlink_skb_destructor+0x210/0x210 [ 300.795818] netlink_broadcast_filtered+0x110f/0x1680 [ 300.801059] ? __netlink_sendskb+0xd0/0xd0 [ 300.805319] ? kasan_check_read+0x11/0x20 [ 300.809504] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 300.814812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.820366] ? refcount_inc_not_zero_checked+0x1e5/0x2f0 [ 300.825822] ? refcount_add_not_zero_checked+0x330/0x330 [ 300.831277] ? netlink_has_listeners+0x2cb/0x4a0 [ 300.836043] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 300.841052] netlink_broadcast+0x3a/0x50 [ 300.845103] kobject_uevent_env+0xa83/0x101e [ 300.849507] kobject_uevent+0x1f/0x24 [ 300.853298] lo_ioctl+0x1385/0x1d60 [ 300.856928] ? lo_rw_aio+0x1ef0/0x1ef0 [ 300.860811] blkdev_ioctl+0x9ac/0x2010 [ 300.864701] ? blkpg_ioctl+0xc10/0xc10 [ 300.868578] ? lock_downgrade+0x900/0x900 [ 300.872714] ? check_preemption_disabled+0x48/0x280 [ 300.877733] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 300.882662] ? kasan_check_read+0x11/0x20 [ 300.886814] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 300.892097] ? rcu_softirq_qs+0x20/0x20 [ 300.896079] ? __fget+0x4d1/0x740 [ 300.899524] ? ksys_dup3+0x680/0x680 [ 300.903253] block_ioctl+0xee/0x130 [ 300.906885] ? blkdev_fallocate+0x400/0x400 [ 300.911233] do_vfs_ioctl+0x1de/0x1720 [ 300.915126] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 300.920655] ? ioctl_preallocate+0x300/0x300 [ 300.925079] ? __fget_light+0x2e9/0x430 [ 300.929078] ? fget_raw+0x20/0x20 [ 300.932536] ? rcu_read_lock_sched_held+0x14f/0x180 [ 300.937542] ? kmem_cache_free+0x24f/0x290 [ 300.941781] ? putname+0xf7/0x130 [ 300.945229] ? do_syscall_64+0x9a/0x820 [ 300.949208] ? do_syscall_64+0x9a/0x820 [ 300.953197] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 300.957775] ? security_file_ioctl+0x94/0xc0 [ 300.962181] ksys_ioctl+0xa9/0xd0 [ 300.965633] __x64_sys_ioctl+0x73/0xb0 [ 300.969509] do_syscall_64+0x1b9/0x820 [ 300.973384] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 300.978738] ? syscall_return_slowpath+0x5e0/0x5e0 [ 300.983654] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.988487] ? trace_hardirqs_on_caller+0x310/0x310 [ 300.993493] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 300.998512] ? prepare_exit_to_usermode+0x291/0x3b0 [ 301.003559] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 301.008392] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.013569] RIP: 0033:0x4573d7 [ 301.016769] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.035655] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.043348] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 301.050601] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 301.057856] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 301.065109] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 301.072363] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 301.085913] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00') sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={&(0x7f0000000080)=@nl, 0x80, &(0x7f0000000540), 0x0, &(0x7f0000000000)=ANY=[]}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) preadv(r0, &(0x7f00000017c0), 0x1fe, 0x400000000000) ioctl$IOC_PR_RELEASE(r1, 0x401070ca, &(0x7f0000000040)={0xe6, 0x3, 0x1}) 10:13:29 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = epoll_create1(0x0) r2 = fcntl$dupfd(r0, 0x406, r1) ioctl$TIOCSTI(r2, 0x5412, 0x1009) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x600200, 0x0) ioctl$TCSBRK(r2, 0x5409, 0x8) write$P9_RMKNOD(r2, &(0x7f0000000180)={0x14, 0x13, 0x1, {0x21, 0x2, 0x1}}, 0x14) ioctl$BLKREPORTZONE(r3, 0xc0101282, &(0x7f0000000080)={0x66be, 0x3, 0x0, [{0x1, 0x9, 0x6a08cbbf, 0x7ff, 0xd895, 0x0, 0x2}, {0x5b, 0x8, 0x6, 0x3, 0x7, 0xffffffffffffff43, 0x80000000}, {0x5, 0xd73, 0x6, 0x32e7, 0x1, 0x8, 0x10001}]}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x20000000}) close(r0) 10:13:29 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000002c0)=@broute={'broute\x00', 0x20, 0x2, 0x458, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20001540], 0x0, &(0x7f0000000000), &(0x7f0000000340)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000040000000feffffff0000000000000000000000000000000000000002000000000000000000000000000000000000000000000000ffffffff020000000300000000000000000076657468305f746f5f626f6e640000006272696467655f736c6176650700000073797a6b616c6c65723100000000000064756d6d793000000000000000000000aaaaaaaaaaaa0000000000000180c20000000000000000000000e000000060020000b0020000726174656573740000000000000000000000000000db0000000000000000000048000000000000006970366772653000000000000000000073797a6b616c6c657230000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000005345434d41524b000000000000000000000000000000000000000000000000000801000000000000000000000000000073797374656d5f753a6f626a6563745f723a6661696c6c6f675f743a73300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f9c760afe000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffe9000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000000073797a31000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000000000073797a300000000000000000000000000000000000000000000000000000000000000000110000000000000000006272696467653000000000000000000065716c00000000000000000000000000626f6e645f736c6176655f310000000076657468305f746f5f62726964676500d9e1e29788d0000000000000000000000000000000000000000070000000e8000000180100006e666c6f670000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000741307e3713108c4adedbb71136765c3716b0eeb989dd2a8ae3d04473dd70f8d5e7a09ccf56ea2ff7f4476c6690fcc1228914166f5ed3d038a6e45fe84f8d9580000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000"]}, 0x4d5) 10:13:29 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) r1 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000080), 0x4) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) recvmmsg(r3, &(0x7f0000004240)=[{{&(0x7f00000011c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000001240)=""/159, 0x9f}, {&(0x7f0000000140)=""/89, 0x59}, {&(0x7f0000001380)=""/242, 0xf2}, {&(0x7f00000000c0)=""/35, 0x23}, {&(0x7f0000001480)=""/115, 0x73}], 0x5, &(0x7f0000004640)=""/242, 0xf2}}, {{&(0x7f0000002940)=@can, 0x80, &(0x7f0000002ac0)=[{&(0x7f00000029c0)=""/62, 0x3e}, {&(0x7f0000002a00)=""/137, 0x89}], 0x100000000000031b, &(0x7f0000000740)=""/115, 0x73}}, {{&(0x7f0000003fc0)=@nfc_llcp, 0x80, &(0x7f0000004140), 0x0, &(0x7f0000000240)=""/170, 0xaa}}], 0x3, 0x0, &(0x7f00000043c0)={0x0, 0x989680}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) dup3(r4, r3, 0x0) sendmmsg(r1, &(0x7f0000005fc0), 0x800000000000059, 0xa) wait4(0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000200)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000800)={{{@in6=@mcast2, @in=@local}}, {{@in6=@remote}, 0x0, @in6=@ipv4={[], [], @local}}}, &(0x7f0000000140)=0xffffffffffffff65) getegid() setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000400), 0xc) r6 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffffffe}, 0x4) fchdir(r0) socket$inet(0x2, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e21, 0x0, @mcast2, 0x101}}}, &(0x7f0000000640)=0x84) ioctl$TIOCGLCKTRMIOS(r2, 0x5456, &(0x7f0000000000)={0xfffffffffffffe01, 0x1000, 0x7, 0x3, 0xe, 0x101, 0x0, 0x2, 0x37c5, 0x4, 0x78ba, 0x1}) r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, r2) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000004c0), 0x13f, 0x1007}}, 0x20) ioctl$RTC_VL_READ(r2, 0x80047013, &(0x7f0000000440)) [ 301.167224] hfsplus: unable to find HFS+ superblock [ 301.182810] kernel msg: ebtables bug: please report to author: Wrong len argument 10:13:29 executing program 3 (fault-call:2 fault-nth:22): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:29 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x3, &(0x7f0000000080), &(0x7f0000000140)='syzkaller\x00', 0x3, 0xc3, &(0x7f0000386000)=""/195}, 0x37) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000100)=r0, 0xfffffc61) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x3, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r1, &(0x7f0000000040), &(0x7f0000000100)}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000280)={r1, &(0x7f0000000180)}, 0x10) 10:13:29 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='aut%fs\x00', 0x0, &(0x7f00000003c0)) 10:13:29 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0x8001, 0x4) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x10000000013, &(0x7f0000000100), 0xfb) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000040), 0x4) getpeername$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000280)=0x14) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x8}) write$cgroup_int(r1, &(0x7f0000000080), 0x2001007f) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000006c0), 0x0, 0x0) chroot(&(0x7f0000000180)='./file0\x00') pwritev(r1, &(0x7f0000002480)=[{&(0x7f00000000c0)='M', 0x1}], 0x1, 0x0) ioctl$EXT4_IOC_MIGRATE(r1, 0x6609) bind$alg(0xffffffffffffffff, &(0x7f0000000700)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58) 10:13:29 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0xa, 0x3, 0x8) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={"627269646765300000d00300"}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000100)={'bridge0\x00', 0xfffffffffffffffd}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001b80)={{{@in=@broadcast}}, {{@in6=@mcast2}, 0x0, @in6=@loopback}}, &(0x7f0000000040)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001cc0)={{{@in=@remote, @in6=@ipv4={[], [], @remote}}}, {{}, 0x0, @in6=@remote}}, &(0x7f0000001dc0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001e00)={{{@in6=@dev, @in=@broadcast}}, {{@in=@local}, 0x0, @in6=@dev}}, &(0x7f0000001f00)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000002180)={'team0\x00'}) accept$packet(0xffffffffffffffff, &(0x7f00000021c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000002200)=0x14) accept$packet(0xffffffffffffffff, &(0x7f0000002280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000022c0)=0x14) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000140)=0x78) accept$packet(r0, &(0x7f0000002600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000002640)=0x14) getpeername$packet(0xffffffffffffffff, &(0x7f0000002880)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000028c0)=0x14) [ 301.339866] FAULT_INJECTION: forcing a failure. [ 301.339866] name failslab, interval 1, probability 0, space 0, times 0 [ 301.386306] CPU: 1 PID: 9355 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 301.394754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 301.404112] Call Trace: [ 301.406724] dump_stack+0x244/0x39d [ 301.410375] ? dump_stack_print_info.cold.1+0x20/0x20 [ 301.415600] should_fail.cold.4+0xa/0x17 [ 301.419683] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 301.424802] ? __save_stack_trace+0x8d/0xf0 [ 301.429149] ? zap_class+0x640/0x640 [ 301.432879] ? save_stack+0xa9/0xd0 [ 301.436546] ? save_stack+0x43/0xd0 [ 301.440226] ? find_held_lock+0x36/0x1c0 [ 301.444316] ? __lock_is_held+0xb5/0x140 [ 301.448402] ? zap_class+0x640/0x640 [ 301.452130] ? perf_trace_sched_process_exec+0x860/0x860 [ 301.457600] ? check_preemption_disabled+0x48/0x280 [ 301.462663] __should_failslab+0x124/0x180 [ 301.466917] should_failslab+0x9/0x14 [ 301.470731] kmem_cache_alloc_node_trace+0x270/0x740 [ 301.475890] __kmalloc_node_track_caller+0x3c/0x70 [ 301.480840] __kmalloc_reserve.isra.40+0x41/0xe0 [ 301.485632] __alloc_skb+0x150/0x770 [ 301.489370] ? netdev_alloc_frag+0x1f0/0x1f0 [ 301.493799] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 301.498741] ? kasan_check_read+0x11/0x20 [ 301.502903] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 301.508224] ? rcu_softirq_qs+0x20/0x20 [ 301.512242] ? netlink_has_listeners+0x2cb/0x4a0 [ 301.517015] ? netlink_tap_init_net+0x3d0/0x3d0 [ 301.521710] alloc_uevent_skb+0x84/0x1da [ 301.525806] kobject_uevent_env+0xa52/0x101e [ 301.530245] kobject_uevent+0x1f/0x24 [ 301.534078] lo_ioctl+0x1385/0x1d60 [ 301.537729] ? lo_rw_aio+0x1ef0/0x1ef0 [ 301.541630] blkdev_ioctl+0x9ac/0x2010 [ 301.545533] ? blkpg_ioctl+0xc10/0xc10 [ 301.549436] ? lock_downgrade+0x900/0x900 [ 301.553598] ? check_preemption_disabled+0x48/0x280 [ 301.558677] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 301.563636] ? kasan_check_read+0x11/0x20 [ 301.567812] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 301.573144] ? rcu_softirq_qs+0x20/0x20 [ 301.577143] ? __fget+0x4d1/0x740 [ 301.580628] ? ksys_dup3+0x680/0x680 [ 301.584381] block_ioctl+0xee/0x130 [ 301.588024] ? blkdev_fallocate+0x400/0x400 [ 301.592360] do_vfs_ioctl+0x1de/0x1720 [ 301.596267] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 301.601820] ? ioctl_preallocate+0x300/0x300 [ 301.606259] ? __fget_light+0x2e9/0x430 [ 301.610251] ? fget_raw+0x20/0x20 [ 301.613728] ? rcu_read_lock_sched_held+0x14f/0x180 [ 301.618760] ? kmem_cache_free+0x24f/0x290 [ 301.623014] ? putname+0xf7/0x130 [ 301.626499] ? do_syscall_64+0x9a/0x820 [ 301.630483] ? do_syscall_64+0x9a/0x820 [ 301.634471] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 301.639074] ? security_file_ioctl+0x94/0xc0 [ 301.643506] ksys_ioctl+0xa9/0xd0 [ 301.646987] __x64_sys_ioctl+0x73/0xb0 [ 301.650891] do_syscall_64+0x1b9/0x820 [ 301.654795] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 301.660175] ? syscall_return_slowpath+0x5e0/0x5e0 [ 301.665140] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 301.670011] ? trace_hardirqs_on_caller+0x310/0x310 [ 301.675059] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 301.680091] ? prepare_exit_to_usermode+0x291/0x3b0 [ 301.685139] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 301.690009] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.695228] RIP: 0033:0x4573d7 [ 301.698606] Code: 48 83 c4 08 48 89 d8 5b 5d c3 66 0f 1f 84 00 00 00 00 00 48 89 e8 48 f7 d8 48 39 c3 0f 92 c0 eb 92 66 90 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d b5 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.717513] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.725241] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 00000000004573d7 [ 301.732519] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 301.739791] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 301.747068] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 301.754342] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 301.763271] bridge0: port 2(bridge_slave_1) entered disabled state [ 301.773997] bridge0: port 1(bridge_slave_0) entered disabled state 10:13:30 executing program 4: r0 = syz_open_dev$mice(&(0x7f0000000280)='/dev/input/mice\x00', 0x0, 0x0) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) r1 = getpid() ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000000c0)=0x208000000) sched_setscheduler(r1, 0x5, &(0x7f0000000080)) mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000003, 0xb1053, r0, 0x0) syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x7fffffff, 0x200) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x3, @broadcast, 'veth0\x00'}}, 0x1e) [ 301.960893] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 301.980322] hfsplus: unable to find HFS+ superblock [ 302.030782] hfsplus: unable to find HFS+ superblock 10:13:30 executing program 3 (fault-call:2 fault-nth:23): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:30 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x8000000004) utime(&(0x7f0000001580)='./file0\x00', &(0x7f00000015c0)={0x7fff, 0x5572}) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000140)="580000001400192340834b80040d8c560a007fffffff81004e220000000058000b4824ca945f64009400050028925aa8000000000000008000f0fffeffe809000000fff5dd000000100001000204080000010000000000ff", 0x58}], 0x1) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001340)={{{@in=@broadcast, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@loopback}}, &(0x7f0000001440)=0xe8) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0x3f, 0x3, &(0x7f00000012c0)=[{&(0x7f0000000080)="81cbb0721d8f3416292279b8374e77f5a93d8e803d18a30a5f55d51807850aa99961c23e423b591e5ba5a99b60ed23216776e5f961fe4df8273ba3631a663ae8e68e9d589f83d2854c46dd8fb801a707fe541cc79d7966f2cad59b8ef09a94293a03a1be926c1911a589f20422c99077a146f14086def5034ea73fd252a13c7712063502b12b48b70e5f93c95eed8763d43ba8cc62be92939913e05b44ce11415ce009d407", 0xa5, 0x1f}, {&(0x7f00000001c0)="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", 0x1000, 0x9}, {&(0x7f00000011c0)="8a5334392d752d512890a8dbbb57959b8349d50456694680787a03e46a106e09ec5bc62625cd7ef28b6dfb14bf67089ba73cb064f794bb44acb5d3012add5c2c97136e5a395a5e832a4e9f9515756d2e979860b166f03dd09631c9add0dab4ed576f25d847f2905cb8980466b68d943eb4987af069a3f3ca8ec46509a0021543782c4f1e1e2574257a620fd6bc2c4f6c8f05823f0f93fdc93963a92c8a59381898703652ed0c466b01b596d22c7c49c917bbdd2e093b6f4a41df047fd2b22511eddbfba25f41c6b61e02381bc1eabe00b983e67c433fe8e9ec71688d3e752a085b88454a66ffbd4fb108a55ae0bdc53f93ad903f65", 0xf5, 0x100000000}], 0x1000400, &(0x7f0000001480)={[{@uni_xlateno='uni_xlate=0'}, {@numtail='nonumtail=0'}, {@numtail='nonumtail=0'}, {@utf8no='utf8=0'}, {@rodir='rodir'}, {@numtail='nonumtail=0'}], [{@subj_role={'subj_role', 0x3d, 'GPLcgroup%self\\vmnet1ppp0keyringcpuset]$bdev,-nodev#keyring%wlan0:'}}, {@smackfsdef={'smackfsdef', 0x3d, 'cpuset'}}, {@hash='hash'}, {@uid_lt={'uid<', r1}}, {@dont_hash='dont_hash'}]}) setxattr$security_smack_entry(&(0x7f0000001600)='./file0\x00', &(0x7f0000001640)='security.SMACK64MMAP\x00', &(0x7f0000001680)='subj_role', 0x9, 0x3) 10:13:30 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='auto%s\x00', 0x0, &(0x7f00000003c0)) [ 302.253167] FAT-fs (loop4): Unrecognized mount option "subj_role=GPLcgroup%self\vmnet1ppp0keyringcpuset]$bdev" or missing value [ 302.269557] FAULT_INJECTION: forcing a failure. [ 302.269557] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 302.281379] CPU: 0 PID: 9394 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 302.289783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.299139] Call Trace: [ 302.301800] dump_stack+0x244/0x39d [ 302.305445] ? dump_stack_print_info.cold.1+0x20/0x20 [ 302.310665] should_fail.cold.4+0xa/0x17 [ 302.314739] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 302.319855] ? kobject_uevent_env+0xf76/0x101e [ 302.324447] ? wait_for_completion+0x8a0/0x8a0 [ 302.329066] ? mark_held_locks+0x130/0x130 [ 302.333315] ? kobject_uevent_env+0x100d/0x101e [ 302.338008] ? mutex_unlock+0xd/0x10 [ 302.341730] ? lo_ioctl+0xe6/0x1d60 [ 302.345378] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 302.350919] ? should_fail+0x22d/0xd01 [ 302.354828] ? blkdev_ioctl+0x15d/0x2010 [ 302.358896] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 302.364003] ? blkpg_ioctl+0xc10/0xc10 [ 302.367921] ? lock_downgrade+0x900/0x900 [ 302.372093] __alloc_pages_nodemask+0x34b/0xdd0 [ 302.376782] ? kasan_check_read+0x11/0x20 [ 302.380944] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 302.386248] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 302.391283] ? find_held_lock+0x36/0x1c0 [ 302.395381] ? trace_hardirqs_off+0xb8/0x310 [ 302.399801] cache_grow_begin+0xa5/0x8c0 [ 302.403884] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 302.409451] ? check_preemption_disabled+0x48/0x280 [ 302.414494] kmem_cache_alloc+0x66b/0x730 [ 302.418654] ? fget_raw+0x20/0x20 [ 302.422126] getname_flags+0xd0/0x590 [ 302.425936] do_mkdirat+0xc5/0x310 [ 302.429494] ? __ia32_sys_mknod+0xb0/0xb0 [ 302.433653] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.439028] ? trace_hardirqs_off_caller+0x300/0x300 [ 302.444141] ? ksys_ioctl+0x81/0xd0 [ 302.447784] __x64_sys_mkdir+0x5c/0x80 [ 302.451682] do_syscall_64+0x1b9/0x820 [ 302.455574] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 302.460965] ? syscall_return_slowpath+0x5e0/0x5e0 [ 302.465901] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 302.470753] ? trace_hardirqs_on_caller+0x310/0x310 [ 302.475782] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 302.480812] ? prepare_exit_to_usermode+0x291/0x3b0 [ 302.485848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 302.490719] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.495926] RIP: 0033:0x456987 [ 302.499131] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 cd bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad bf fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 302.518035] RSP: 002b:00007f93afa64a88 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 302.525749] RAX: ffffffffffffffda RBX: 0000000020000110 RCX: 0000000000456987 [ 302.533053] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000080 [ 302.540327] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000000a [ 302.547600] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000004 [ 302.554877] R13: 0000000000000000 R14: 00000000004d7d88 R15: 0000000000000003 [ 302.562741] bridge0: port 2(bridge_slave_1) entered blocking state [ 302.569157] bridge0: port 2(bridge_slave_1) entered forwarding state [ 302.571269] hfsplus: unable to find HFS+ superblock [ 302.575866] bridge0: port 1(bridge_slave_0) entered blocking state [ 302.587384] bridge0: port 1(bridge_slave_0) entered forwarding state [ 302.595843] device bridge0 entered promiscuous mode [ 302.601743] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready 10:13:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd(0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2}) r3 = dup2(r0, r2) ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0xbc6) [ 302.630646] FAT-fs (loop4): Unrecognized mount option "subj_role=GPLcgroup%self\vmnet1ppp0keyringcpuset]$bdev" or missing value [ 302.649341] bridge0: port 2(bridge_slave_1) entered disabled state [ 302.655797] bridge0: port 1(bridge_slave_0) entered disabled state [ 302.663034] device bridge0 left promiscuous mode [ 302.669877] hfsplus: unable to find HFS+ superblock 10:13:31 executing program 4: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x40000, 0x0) r1 = getpid() ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000080)=r1) capset(&(0x7f00000fc000)={0x19980330}, &(0x7f00000000c0)) r2 = socket$netlink(0x10, 0x3, 0x9) bind$netlink(r2, &(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc) ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f0000000000)={'veth1\x00', {0x2, 0x4e24}}) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000140)={{0x2, 0x4e24, @loopback}, {0x306}, 0x2, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1d}}, 'vlan0\x00'}) 10:13:31 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x8, 0x40000) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0xf2d, 0x800, 0x0, 0x100}) openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x4000, 0x0) ioctl$SG_GET_NUM_WAITING(r0, 0x227c, &(0x7f0000000000)) 10:13:31 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='auto.s\x00', 0x0, &(0x7f00000003c0)) 10:13:31 executing program 4: socketpair$unix(0x1, 0x200000000000001, 0x0, &(0x7f00000001c0)) socketpair(0x4, 0xffffffffffffffff, 0x2, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$NBD_SET_TIMEOUT(r0, 0xab09, 0x2000000000009) syz_emit_ethernet(0x7e, &(0x7f0000000140)={@local, @link_local={0x1, 0x80, 0xc2, 0xe80}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x3, 0xf, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x104, 0x0, @local, @dev, {[@timestamp={0x44, 0x40, 0x0, 0x0, 0x0, [{[@rand_addr]}, {[@multicast2]}, {[@multicast1]}, {}, {[@loopback]}, {[@broadcast]}, {[@multicast1]}, {[@dev]}]}]}}}}}}}, &(0x7f00000000c0)={0x0, 0x2, [0x0, 0xfffffffffffffffd]}) 10:13:31 executing program 2: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000000)={0xffffffa4, 0x3, 0x0, {0x1}}, 0x21) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/fuse\x00', 0x2, 0x0) pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000400)="05b03b909fd7d36553819485dffb001b38f50558dc0d8e7a15d4ed74e951243d2be67a603da9a6e5b6f9df83a59fe6bfcc5def3bd134150387979700b82484b2d43fe786101acc3f975d", 0x4a}, {&(0x7f0000000480)="ca78a71c4b58e239ef60e87dfba4a8c1b36aeedf293c0c28e185e9e5c110c2a1d309e51ee0e4", 0x26}, {&(0x7f00000004c0)="09bc59bded640635f28e25bf3795c65f8252dd3d51953ebfcf0172b8261fcb93ac3ef0ceb8f293ff266111e11da6be18f966d465808cb0210db2e897232fdc6da49f733c221ff2cb887dd2b8f6a503d55803653404410a1074f6d3cf8b512f51ea247406d32a6f2bf33b5aecf0516e6dd2b451a4623cfc6d2ccd01239166a943347e80cd1d3c24a0cd307e0040aa462fa0414846bfa132205917afad9e1e246441de2a7772b88d8f5665e314e046dc89d3f078c303986b09ad0a8eab66e9541588c9b17568192288827d7014900ab1ab46c26708c7f2d5130a88b7ff", 0xdc}, {&(0x7f00000005c0)="d0335f549893dced8e93feff1ef787e28c2f5d5c14a9e2d67140b88e89be3e30135832eacfda9503e9c6bbd51c4bff9b8d85709ca17ca097", 0x38}], 0x4, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="ac2c2eaaf6205be551807f6ef4d8de22cbbe6e3a9fe3e296b148321b75da12ad6380305ad55ae503052a3bf2b1c01993140136630667c8855802ac2fff5240fd7397ae3d2eaf8c4e9fa9940223eb77ac01ea19844048f2b2effe6a1b05bea867e047bfb333f801b443b906743c738b30b646c2879548d04eadb4353ee885ab5d0cd02ff91acb7369392efdb294968140fd0d9347191a29cad3af4e575722351b4058603de8b4c9e102837c973d7e56fcffcc8b5b23c82dde9f00596a0b2f56bbcab4700db8d0a63251b537035ec5"]) write$FUSE_NOTIFY_POLL(r2, &(0x7f00000001c0)={0x18}, 0x18) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000280)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000002c0)=0x1c) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000340)={r3, 0x3, 0x6, 0x2, 0x91, 0x2}, &(0x7f0000000380)=0x14) 10:13:31 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB="5b00000075e731b51b499d7562ddbcd922e1ff29dc11d6d34130fa5b2ed4a7661bf23c31a5a10fd2b7cfcf24fcb298f5afd5be7006f1208dff5aeca183fead67a35e9f25b3ecffa1f70980a927d8cf623268f3d2cddb57cd02000000000000b443adba422a1bdb7cfcfed4088d05416a6ec89c1e45b33b5bd33c360f927b81c3c0404d4b8b4f03b55a"], &(0x7f0000000440)=0x63) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000380)={r1, @in={{0x2, 0x0, @multicast2}}, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000001c0)=0x98) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(&(0x7f00000004c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f000000a000)) mkdir(&(0x7f0000000080)='./file0/file0\x00', 0x0) mkdir(&(0x7f00000001c0)='./file0/file1\x00', 0x0) mkdir(&(0x7f0000000180)='./file0/file1/file0\x00', 0x0) umount2(&(0x7f0000000380)='./file0\x00', 0x0) gettid() stat(&(0x7f0000000540)='\x00', &(0x7f0000000580)) syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x0, 0x0) splice(r0, &(0x7f0000000200), r0, &(0x7f0000000240), 0x9, 0x0) symlink(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file1/file0\x00') ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, &(0x7f0000000100)) [ 302.919703] hfsplus: unable to find HFS+ superblock [ 302.996150] hfsplus: unable to find HFS+ superblock [ 303.035714] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) [ 303.052808] bridge0: port 2(bridge_slave_1) entered blocking state [ 303.059245] bridge0: port 2(bridge_slave_1) entered forwarding state [ 303.065917] bridge0: port 1(bridge_slave_0) entered blocking state [ 303.072354] bridge0: port 1(bridge_slave_0) entered forwarding state 10:13:31 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-clmulni\x00'}, 0x58) r1 = accept4(r0, 0x0, &(0x7f0000000040), 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad56b6c50400aeb995298992ea5400c2", 0x10) sendto(r1, &(0x7f0000000040), 0xfffffffffffffe39, 0x0, &(0x7f0000000380)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80) ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000100)={&(0x7f0000000000)=[0x77b65338, 0x4, 0x294, 0xfffffffffffeffff], 0x4, 0x200, 0xf3b, 0xfffffffffffffffa, 0x8, 0x88, {0x2e, 0x6, 0x5, 0x2, 0x1, 0x1, 0x5, 0x9, 0x8001, 0x4, 0x400000000000, 0x6, 0xff, 0x7, "839f4492db8f3fc2553d1ec560b281d4c9367152dd9dcd16693150f02dc4a5d3"}}) 10:13:31 executing program 2: r0 = memfd_create(&(0x7f00000000c0)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) write$binfmt_aout(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="080100000000000079030000b7000000008012000000ba6e77"], 0x19) ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x2) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) execveat(r0, &(0x7f0000000000)='\x00', &(0x7f00000007c0), &(0x7f0000000240), 0x1000) [ 303.086454] device bridge0 entered promiscuous mode [ 303.092583] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready 10:13:31 executing program 3 (fault-call:2 fault-nth:24): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:31 executing program 0: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0xffff8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000100)={0x17, 0x6a, &(0x7f0000000200)="99bcbae62e974d20a8faa4617c0e8b141d123d54be6ee497d8dec720d9eb3d86933c889ad505eefee8ec21c8d2d6f849b8a11325f9e32ef471b5a38a2bfe56aaa4f81d3b8cdae1e1d4d5654471786d41be25f28551b87a848e94bc707a0f8db629d8ee02de3f47df8536"}) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000140)=@assoc_value, &(0x7f0000000180)=0x2bd) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000040)={{0x3, 0x1}, 'port0\x00', 0x8, 0x1800, 0x0, 0x0, 0x6, 0x5, 0x81, 0x0, 0x2}) getresuid(&(0x7f0000000600), &(0x7f0000000640)=0x0, &(0x7f0000000680)) stat(&(0x7f00000006c0)='./bus\x00', &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$xfs(&(0x7f0000000280)='xfs\x00', &(0x7f00000002c0)='./bus\x00', 0x8, 0x5, &(0x7f0000000580)=[{&(0x7f0000000300)="a537b48757028f4ad1a2e0a2ce99ca8ade06495110b47120082b5b33ef42fd748b0ad1b36efcc6fe91e4a79cbaf4c54967ca9fa23341e0f4d16dbe42c013dd86195d2c55deb663d036c786abe6f4de91bc81986ba7a806df7052fabee9ebcca29cd66b33ca53ce65d739f46f11f9707f2e0684401320e8f934e52acc9ad5a9af737334eebd4ad2463610a5721d4b16fb2b8d8ed8b3d19d5f1266140213dd4a9a0c0d9e03236b9d1fa24d9bf5220a5251d8277100eee6dea29e95708f52d11db2f7", 0xc1, 0x7ff}, {&(0x7f0000000400)="beae7a", 0x3, 0x6}, {&(0x7f0000000440)="43eb9b5b138417de9df1c220a041a927907c3c742efa8e081e6e2e50731b0da665deb160301ea3fa3d97a2d3faa49c293c12a57a0356109436340d7392eff4cd6e73b6a8292f7e86cadd6eb90094511512427f8facd8596f7cda44ffad31a81ecf", 0x61, 0x8}, {&(0x7f00000004c0)="e56c38c88fec815d9471bd52dc1bbde14bced7e531f94acb5b45f8251711c7c8950c7ca65fb5ec5fd5633738a8c52af72e0d1ea8de8224f75cc9669280aae37c8585c380fcd90abcf318216e572444", 0x4f, 0x6}, {&(0x7f0000000540)="562a9d", 0x3, 0x1}], 0x808, &(0x7f0000000780)={[{@swalloc='swalloc'}, {@sunit={'sunit', 0x3d, 0x9}}, {@biosize={'biosize', 0x3d, 0x6}}, {@noattr2='noattr2'}, {@swalloc='swalloc'}, {@mtpt='mtpt'}, {@qnoenforce='qnoenforce'}, {@pquota='pquota'}], [{@smackfsroot={'smackfsroot', 0x3d, 'securityvboxnet0{'}}, {@fowner_lt={'fowner<', r1}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@context={'context', 0x3d, 'user_u'}}, {@uid_lt={'uid<', r2}}, {@smackfshat={'smackfshat', 0x3d, 'port0\x00'}}, {@permit_directio='permit_directio'}, {@subj_type={'subj_type', 0x3d, 'port0\x00'}}, {@pcr={'pcr', 0x3d, 0x35}}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x77, 0x37, 0x39, 0x37, 0x66, 0x77, 0x35], 0x2d, [0x66, 0x37, 0x77, 0x77], 0x2d, [0x31, 0x7d, 0x77, 0x7d], 0x2d, [0x77, 0x36, 0x36, 0x77], 0x2d, [0x3b, 0x63, 0x37, 0x34, 0x3f, 0x7f, 0x64, 0x37]}}}]}) 10:13:31 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='auto/s\x00', 0x0, &(0x7f00000003c0)) 10:13:31 executing program 4: clock_settime(0x0, &(0x7f0000001280)={0x0, 0x989680}) r0 = openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/current\x00', 0x2, 0x0) mlockall(0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f00000001c0)='ppp0+,selfppp0vmnet1proc\']\x00', 0x0) r2 = syz_open_dev$sndseq(&(0x7f0000050000)='/dev/snd/seq\x00', 0x0, 0x2) r3 = dup2(r2, r1) pselect6(0x40, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xffffffffffff780b}, &(0x7f0000000340)={0x4, 0x0, 0x800, 0xfffffffffffffffe, 0x0, 0x9}, &(0x7f0000000380)={0x9, 0x800, 0x0, 0x6, 0x1, 0x0, 0x3f, 0x1f}, &(0x7f00000003c0)={0x0, 0x989680}, &(0x7f0000000440)={&(0x7f0000000400)={0x3}, 0x8}) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000000c0)={0x0, 0x0, 0x0, "9ede7a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"}) write$sndseq(r1, &(0x7f0000042f70)=[{0x0, 0x95ffffff, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {0x6}, {}, @addr}], 0xffffffbd) keyctl$clear(0x7, 0x0) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x100, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f00000004c0)='trusted.overlay.redirect\x00', &(0x7f0000000540)='./file0\x00', 0x8, 0x0) r5 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$clear(0x7, r5) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000200), &(0x7f00000002c0)=0x8) io_submit(0x0, 0x1, &(0x7f0000001780)=[&(0x7f0000001740)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000001680)="9718009541a74e43b7170a809f7fb68588cd07288ace64cba7d7cb58ada8e85bbe00339a8a211659f1b049a72376805f8cf4e97407fa515bdb34e6341ee181f477e25a4beeedbe4d5dba5529b2c82b6075121b0f4abe7e755e018ed67c85dc5a93a765bf253b1dc0684ead8cfc50a39ff86947b4e0363265aedce0c40d9cad640199", 0x82, 0x0, 0x0, 0x1}]) getsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000280)=0x5, &(0x7f0000000480)=0x4) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, &(0x7f0000000100), 0x8) ioctl$TIOCMBIC(r4, 0x5417, &(0x7f0000000240)=0x8) dup(r0) [ 303.237369] hfsplus: unable to find HFS+ superblock [ 303.268720] XFS (loop0): mtpt option not allowed on this system [ 303.279290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 10:13:31 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000340)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x0, 0x101800) [ 303.325125] XFS (loop0): mtpt option not allowed on this system [ 303.335383] hfsplus: unable to find HFS+ superblock [ 303.342163] FAULT_INJECTION: forcing a failure. [ 303.342163] name failslab, interval 1, probability 0, space 0, times 0 [ 303.354032] CPU: 1 PID: 9458 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 303.362451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.371810] Call Trace: 10:13:32 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$DRM_IOCTL_RM_MAP(r0, 0x4028641b, &(0x7f00000000c0)={&(0x7f0000ffb000/0x3000)=nil, 0x0, 0x5, 0x20, &(0x7f0000ffc000/0x2000)=nil, 0xa0}) ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070") syz_mount_image$btrfs(&(0x7f0000000040)='btrfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x10080, &(0x7f0000000800)=ANY=[@ANYBLOB='\b\x00']) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) [ 303.374418] dump_stack+0x244/0x39d [ 303.378073] ? dump_stack_print_info.cold.1+0x20/0x20 [ 303.383278] ? __handle_mm_fault+0xa57/0x5be0 [ 303.387797] should_fail.cold.4+0xa/0x17 [ 303.391882] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 303.397006] ? kasan_check_read+0x11/0x20 [ 303.401166] ? do_raw_spin_unlock+0xa7/0x330 [ 303.405596] ? trace_hardirqs_on+0x310/0x310 [ 303.410044] ? zap_class+0x640/0x640 [ 303.413785] ? zap_class+0x640/0x640 [ 303.417512] ? zap_class+0x640/0x640 [ 303.417536] ? find_held_lock+0x36/0x1c0 [ 303.417576] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 303.417597] ? perf_trace_sched_process_exec+0x860/0x860 [ 303.430291] ? rcu_softirq_qs+0x20/0x20 [ 303.430313] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 303.430335] __should_failslab+0x124/0x180 [ 303.430356] should_failslab+0x9/0x14 [ 303.430373] __kmalloc_track_caller+0x2d1/0x760 [ 303.430393] ? strncpy_from_user+0x5a0/0x5a0 [ 303.430414] ? strndup_user+0x77/0xd0 [ 303.466253] memdup_user+0x2c/0xa0 [ 303.469818] strndup_user+0x77/0xd0 [ 303.473462] ksys_mount+0x3c/0x140 [ 303.477024] __x64_sys_mount+0xbe/0x150 [ 303.481019] do_syscall_64+0x1b9/0x820 [ 303.484926] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 303.490312] ? syscall_return_slowpath+0x5e0/0x5e0 [ 303.495260] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 303.500117] ? trace_hardirqs_on_caller+0x310/0x310 [ 303.505149] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 303.510182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 303.515744] ? prepare_exit_to_usermode+0x291/0x3b0 [ 303.520782] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 303.525645] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 303.530844] RIP: 0033:0x459fda [ 303.534052] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 303.546595] QAT: Invalid ioctl [ 303.553002] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 303.553017] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda 10:13:32 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='auto\ns\x00', 0x0, &(0x7f00000003c0)) [ 303.553027] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 303.553037] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 303.553046] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 303.553055] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 10:13:32 executing program 0: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x2842, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000100)="66b91000004066b80000000066ba000000000f30baa000eddb8f05000f89ae6a660f3a22efa80f09f00fc709f20f1ab60d0066b93608000066b80000000066ba008000000f3066b9800000c00f326635000800000f30", 0x56}], 0x1, 0x0, &(0x7f0000000180), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r3, 0xc0a85352, &(0x7f0000000500)={{0x2, 0xff}, 'port0\x00', 0x4, 0x11000, 0x4, 0x4a20, 0x8, 0x2, 0xffffffffffffcafc, 0x0, 0x0, 0x9}) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0xf, 0x11, r3, 0x0) fsetxattr$security_smack_entry(0xffffffffffffffff, &(0x7f0000000440)='security.SMACK64IPOUT\x00', &(0x7f0000000480)=')-%)\x00', 0x5, 0x0) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000080)={0x3, 0x10000, 0x100}) syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="040628bd7000fddbdf250200000008000400d50000005400010008000600727200000c0007000400000028000000080004004e210000080004004e21"], 0x1}}, 0x0) ioctl$KVM_GET_XCRS(r3, 0x8188aea6, &(0x7f0000000000)) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = memfd_create(&(0x7f0000000040)="237d00d3fc1ee4671fbaa0a455e73e678b8e96f7fd829d4d39f1828ebf765e220913b73db94f6d495077a6df5ab82b4c4f8d", 0x0) write$FUSE_NOTIFY_POLL(r4, &(0x7f00000000c0)={0x18}, 0xffffff4a) sendfile(r0, r4, &(0x7f0000000000), 0xffe4) 10:13:32 executing program 5: mkdir(&(0x7f00000000c0)='./control\x00', 0x0) r0 = open(&(0x7f0000028000)='./control\x00', 0x0, 0x0) prctl$setmm(0x23, 0x7, &(0x7f0000ffd000/0x3000)=nil) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x220}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) fstatfs(r0, &(0x7f0000000140)=""/234) [ 303.691767] hfsplus: unable to find HFS+ superblock 10:13:32 executing program 3 (fault-call:2 fault-nth:25): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) 10:13:32 executing program 5: r0 = socket$kcm(0x2, 0x5, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f2, &(0x7f0000000140)='sit0\x00') [ 303.813144] hfsplus: unable to find HFS+ superblock 10:13:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) fstatfs(0xffffffffffffffff, &(0x7f0000000300)=""/5) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={"393b0000000004000000000000110400"}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000040)="0f425f69f20f38f10b650feda5000066b9800000c00f326635004000000f30b80d008ec86666de3c0f01cf260f01cb2665660f3a618c0060540fc76b39", 0x3d}], 0x1, 0x0, &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp(0x0, 0x1, &(0x7f0000000200)={0x1, &(0x7f00000001c0)=[{}]}) ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f00000002c0)={0x7c, 0x8fe, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x136, 0x0, 0x99}) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000015000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, &(0x7f00000009c0)="0f230e66b91a0200000f32b8c7008ee0baf80c66b8d068258366efbafc0c66ed2ef30f32660f383a2600000f01c971000f01c866b9800000c00f326635000400000f30", 0x43}], 0x1, 0x21, &(0x7f0000000a40), 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000140)="65d9f3ba2000b0e1eed9ff66b8c4b800000f23c00f21f86635000005000f23f80f01d1baf80c66b8a322e48266efbafc0cb09dee6726670f32670fb2aec1cb0000ff22c02200", 0x46}], 0x1, 0x0, &(0x7f0000000300), 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="0b019e007a0300002f03000000000000bb000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x620) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000001d40)={0x400000008, 0x400fd}) [ 303.847549] FAULT_INJECTION: forcing a failure. [ 303.847549] name failslab, interval 1, probability 0, space 0, times 0 10:13:32 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofu\x00', 0x0, &(0x7f00000003c0)) [ 303.969225] CPU: 1 PID: 9491 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 303.977684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.987047] Call Trace: [ 303.989657] dump_stack+0x244/0x39d [ 303.993307] ? dump_stack_print_info.cold.1+0x20/0x20 [ 303.998531] ? __kernel_text_address+0xd/0x40 [ 304.003051] ? unwind_get_return_address+0x61/0xa0 [ 304.008011] should_fail.cold.4+0xa/0x17 [ 304.012087] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 304.017241] ? save_stack+0x43/0xd0 [ 304.020888] ? kasan_kmalloc+0xc7/0xe0 [ 304.024794] ? __kmalloc_track_caller+0x157/0x760 [ 304.029650] ? memdup_user+0x2c/0xa0 [ 304.033382] ? do_syscall_64+0x1b9/0x820 [ 304.037454] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 304.042831] ? zap_class+0x640/0x640 [ 304.046573] ? zap_class+0x640/0x640 [ 304.050304] ? find_held_lock+0x36/0x1c0 [ 304.054410] ? perf_trace_sched_process_exec+0x860/0x860 [ 304.059872] ? lock_release+0xa10/0xa10 [ 304.063864] ? perf_trace_sched_process_exec+0x860/0x860 [ 304.069336] __should_failslab+0x124/0x180 [ 304.073589] should_failslab+0x9/0x14 [ 304.077408] __kmalloc_track_caller+0x2d1/0x760 [ 304.082093] ? strncpy_from_user+0x5a0/0x5a0 [ 304.086516] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 304.092068] ? strndup_user+0x77/0xd0 [ 304.095887] memdup_user+0x2c/0xa0 [ 304.099443] strndup_user+0x77/0xd0 [ 304.103085] ksys_mount+0x73/0x140 [ 304.106653] __x64_sys_mount+0xbe/0x150 [ 304.110661] do_syscall_64+0x1b9/0x820 [ 304.114565] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 304.119945] ? syscall_return_slowpath+0x5e0/0x5e0 [ 304.124891] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 304.129751] ? trace_hardirqs_on_caller+0x310/0x310 [ 304.134779] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 304.139817] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 304.145370] ? prepare_exit_to_usermode+0x291/0x3b0 [ 304.150416] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 304.155314] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 304.160516] RIP: 0033:0x459fda [ 304.163732] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 304.182647] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 304.190371] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 304.197648] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 304.204941] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 304.212238] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 304.219526] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 [ 304.253479] QAT: Invalid ioctl 10:13:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/kvm\x00', 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) accept$alg(r2, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={r1, r2, 0x3, 0x1}, 0x10) r4 = socket$inet6(0xa, 0x3, 0x5) r5 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x1, 0x82200) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={0xffffffffffffffff}, 0x106, 0x1000}}, 0x20) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xd8, 0xee, &(0x7f00000001c0)="5f96250094d23091cf153280a26f172d45036c1dd4df061af5b5d57454769982eeecee86d855f9ac8423b586387efa20d9a9744731a5c41bdd7abdbc2a7892d3d3d9adeb6696e698e79264857ad3b8e1be7ab31d1affdf234fe1abd1104bb6f1f88b8a32d46db99edae7474fe3546c18d9965d842a0eeadb8db58faac41d96728f63c6d50aecd0168c8d9e07f32b0563246ca3f0e7e0623f5c11a1289a3e73890f62c51cd6074db111a8224d6c2671a9f79b19deec4333b31027f908fd89f436c472e2adbfc3851626d733715baf4f51634919e3962caca0", &(0x7f00000002c0)=""/238, 0x9}, 0x28) write$RDMA_USER_CM_CMD_LISTEN(r5, &(0x7f0000000100)={0x7, 0x8, 0xfa00, {r6, 0xfff}}, 0x10) setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000000)='westwood\x00', 0x9) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) 10:13:32 executing program 5: socketpair$unix(0x1, 0x10000000005, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = inotify_init1(0x0) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$getownex(r1, 0x10, &(0x7f0000000a00)={0x0, 0x0}) ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x4207, r2) ptrace$getregset(0x4, r2, 0x7fffff, &(0x7f0000000040)={&(0x7f0000002400)=""/4096, 0x1000}) r3 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x9, 0x400800) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_GET_CLIENT(r3, 0xc0286405, &(0x7f0000000180)={0x9, 0x5, r2, 0x5, r4, 0x4, 0x10001, 0x5}) [ 304.288428] hfsplus: unable to find HFS+ superblock [ 304.325066] sched: DL replenish lagged too much 10:13:33 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) shutdown(r0, 0x0) r1 = dup3(r0, r0, 0x80000) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00') sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_AF={0x8, 0x2, 0x2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000004}, 0x20004014) 10:13:33 executing program 3 (fault-call:2 fault-nth:26): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 304.526557] FAULT_INJECTION: forcing a failure. [ 304.526557] name failslab, interval 1, probability 0, space 0, times 0 [ 304.563819] hfsplus: unable to find HFS+ superblock [ 304.609226] CPU: 0 PID: 9518 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 304.617679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.627077] Call Trace: [ 304.629696] dump_stack+0x244/0x39d [ 304.633369] ? dump_stack_print_info.cold.1+0x20/0x20 [ 304.638613] ? __handle_mm_fault+0xa57/0x5be0 [ 304.643155] should_fail.cold.4+0xa/0x17 [ 304.647258] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 304.652377] ? kasan_check_read+0x11/0x20 [ 304.656537] ? do_raw_spin_unlock+0xa7/0x330 [ 304.660974] ? trace_hardirqs_on+0x310/0x310 [ 304.665412] ? zap_class+0x640/0x640 [ 304.669158] ? zap_class+0x640/0x640 [ 304.672885] ? zap_class+0x640/0x640 [ 304.676614] ? find_held_lock+0x36/0x1c0 [ 304.680713] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 304.685655] ? perf_trace_sched_process_exec+0x860/0x860 [ 304.691330] ? rcu_softirq_qs+0x20/0x20 [ 304.695320] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 304.700880] __should_failslab+0x124/0x180 [ 304.705144] should_failslab+0x9/0x14 [ 304.708960] __kmalloc_track_caller+0x2d1/0x760 [ 304.713643] ? strncpy_from_user+0x5a0/0x5a0 [ 304.718068] ? strndup_user+0x77/0xd0 [ 304.721889] memdup_user+0x2c/0xa0 [ 304.725443] strndup_user+0x77/0xd0 [ 304.729093] ksys_mount+0x3c/0x140 [ 304.732648] __x64_sys_mount+0xbe/0x150 [ 304.736650] do_syscall_64+0x1b9/0x820 [ 304.740580] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 304.745970] ? syscall_return_slowpath+0x5e0/0x5e0 [ 304.750911] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 304.755768] ? trace_hardirqs_on_caller+0x310/0x310 [ 304.760801] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 304.765837] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 304.771402] ? prepare_exit_to_usermode+0x291/0x3b0 [ 304.776444] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 304.781315] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 304.786510] RIP: 0033:0x459fda [ 304.789740] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 10:13:33 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x3a) r1 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r1, 0x0, 0x61, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000500)=0x1) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_mreqn(r2, 0x0, 0x0, &(0x7f0000000080)={@dev, @rand_addr, 0x0}, &(0x7f00000000c0)=0xff09) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e20, 0x5, @mcast2, 0x2d}}, 0xd536, 0x11}, &(0x7f00000006c0)=0x90) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000700)={0x73, 0xcc, 0x8006, 0x89c6, 0x3ff, 0x8, 0x4332, 0x80, r4}, 0x20) ioctl$int_out(r0, 0x2, &(0x7f0000000240)) r5 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r5, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070") r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)="2f67726f75702e73746174003c23fb572a1f0294e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)}, &(0x7f00000003c0)=0x10) poll(&(0x7f00000001c0)=[{}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0xc0c0583b, &(0x7f0000000140)) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={@empty, @ipv4={[], [], @loopback}, @remote, 0x200, 0x81, 0x987, 0x500, 0x4, 0x1260302, r3}) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e20, 0x9, @remote, 0xf8}}}, &(0x7f0000000200)=0x84) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000380)={r7, 0x5e, 0x10, 0x9}, &(0x7f00000003c0)=0x18) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000740)={'filter\x00', 0x9411e6bd9b44e9b}, 0xde) ioctl$KVM_SET_CPUID(r6, 0x4008ae8a, &(0x7f0000000f00)={0x2, 0x0, [{0x8000001f, 0x400, 0x4, 0xffffffffffffffe0, 0x200}, {0xb, 0xfffffffffffffff8, 0x6, 0x4a, 0x1}]}) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000000)) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000400), &(0x7f0000000580)=0x4) recvmsg(r0, &(0x7f0000000ec0)={&(0x7f00000005c0)=@rc, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000880)=""/208, 0xd0}, {&(0x7f0000000640)=""/78, 0x4e}, {&(0x7f0000000980)=""/119, 0x77}, {&(0x7f0000000b80)=""/216, 0xd8}, {&(0x7f0000000c80)=""/106, 0x6a}, {&(0x7f0000000d00)=""/214, 0xd6}, {&(0x7f0000000540)=""/39, 0x27}], 0x7, &(0x7f0000000e80)=""/40, 0x28, 0x4}, 0x0) sendfile(r2, r0, 0x0, 0x20) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000007c0)={r7, @in6={{0xa, 0x4e22, 0x80000000, @mcast2, 0x100}}, 0x7, 0x0, 0x2, 0x1a42, 0x8}, 0x98) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f0000000280)=0x20000000000, 0x4) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000040)={0x8, 0x1, 0x9, 0x80000000, 0xfffffffffffffff7}, 0x14c) setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xc9, &(0x7f0000000180)={{0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, {0xa, 0x0, 0x0, @remote}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x4]}, 0x5c) [ 304.808659] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 304.816379] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 304.823656] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 304.830933] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 304.838219] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 304.845512] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 10:13:33 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autof#\x00', 0x0, &(0x7f00000003c0)) 10:13:33 executing program 5: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000340)=ANY=[], &(0x7f0000000a80)='./file0\x00', &(0x7f0000000a40)='ramfs\x00', 0x0, &(0x7f0000000b80)) chdir(&(0x7f0000000040)='./file0\x00') r0 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000), &(0x7f0000000080)=0x10) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000000c0)=0x7, 0x4) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vga_arbiter\x00', 0x20002, 0x0) bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x25dfdbfd, 0x2000000}, 0xc) r2 = creat(&(0x7f0000000100)='./bus\x00', 0x40000000000000) r3 = open(&(0x7f00000002c0)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x12, r3, 0x0) write$FUSE_ENTRY(r2, &(0x7f0000000200)={0x90}, 0x90) readv(r3, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x3b6) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0), 0x1f, 0x3) 10:13:33 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x610a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x200000, 0x2a) add_key(&(0x7f0000000140)='big_key\x00', &(0x7f0000000300)={'\a\x00'}, &(0x7f0000000200), 0xd1b2, 0xfffffffffffffffe) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080)='fou\x00') sendfile(r0, r1, &(0x7f00000000c0), 0xffe000000000000) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="00002bbd7000fbdb0025e7f6ddbf021c0000080001004e220000"], 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x4000) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r1, &(0x7f0000000340)="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", &(0x7f0000000200)=""/135}, 0x18) 10:13:33 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4000000000003, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) sendto$inet(r0, &(0x7f00000001c0), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10) sendto$inet(r0, &(0x7f00000002c0)="20d6dac772b6f65cc7c3fc9bf8d917fbd5bd28cd6ad9243ec3c3fc41fe4295b32b630b3e888a8d0eb1abd9d081c0c6655507c293ed17dcc8e25f2cb85d0e732ff34d9f574cdd31597a5e3a688fff4a8f31474711e4b8f7ab05068770f885c03286fadc1d0fd02098bd981aaf152f2da86443cc605a5cb9a63475b63d354cb1f158bd", 0x82, 0x1, &(0x7f0000000200)={0x2, 0x0, @dev}, 0x10) sendto$inet(r0, &(0x7f0000000580)="89", 0x1, 0x0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1e, 0x8031, 0xffffffffffffffff, 0x0) write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="4ff4de143ed6abeed9bb84476707ca9c1b62630c3cbccc1a"], 0x1) recvfrom(r0, &(0x7f0000000380)=""/239, 0xff4e, 0x0, 0x0, 0x307) close(r0) [ 304.954123] hfsplus: unable to find HFS+ superblock 10:13:33 executing program 3 (fault-call:2 fault-nth:27): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 305.002016] audit: type=1804 audit(1540289613.626:37): pid=9540 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor5" name="/root/syzkaller-testdir886466576/syzkaller.FKKjK1/73/file0/bus" dev="ramfs" ino=30028 res=1 10:13:33 executing program 5: r0 = userfaultfd(0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000100)) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, &(0x7f0000527ff8), 0x2, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x121102, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@remote, @in6=@ipv4={[], [], @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@loopback}}, &(0x7f0000000300)=0xe8) bind$xdp(r1, &(0x7f0000000340)={0x2c, 0x4, r2, 0xb, r1}, 0x10) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) [ 305.060842] hfsplus: unable to find HFS+ superblock [ 305.097886] FAULT_INJECTION: forcing a failure. [ 305.097886] name failslab, interval 1, probability 0, space 0, times 0 [ 305.109972] CPU: 0 PID: 9551 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 305.118394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.127749] Call Trace: [ 305.127779] dump_stack+0x244/0x39d [ 305.127805] ? dump_stack_print_info.cold.1+0x20/0x20 [ 305.127829] ? __kernel_text_address+0xd/0x40 10:13:33 executing program 0: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000700)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000280)=0x200000000) openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x40001, 0x0) write$vnet(r0, &(0x7f0000000340)={0x1, {&(0x7f0000000180)=""/44, 0xffffffffffffff0d, &(0x7f0000000000)=""/38, 0x0, 0x2}}, 0x1d6) [ 305.143764] ? unwind_get_return_address+0x61/0xa0 [ 305.148708] should_fail.cold.4+0xa/0x17 [ 305.152783] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 305.157916] ? kasan_kmalloc+0xc7/0xe0 [ 305.161811] ? __kmalloc_track_caller+0x157/0x760 [ 305.166673] ? memdup_user+0x2c/0xa0 [ 305.170406] ? zap_class+0x640/0x640 [ 305.174136] ? do_syscall_64+0x1b9/0x820 [ 305.178226] ? zap_class+0x640/0x640 [ 305.181957] ? zap_class+0x640/0x640 [ 305.185690] ? find_held_lock+0x36/0x1c0 [ 305.185810] ? svc_udp_recvfrom+0x7c8/0x12c0 [ 305.185841] ? perf_trace_sched_process_exec+0x860/0x860 [ 305.199749] ? lock_release+0xa10/0xa10 [ 305.203738] ? perf_trace_sched_process_exec+0x860/0x860 [ 305.209198] ? usercopy_warn+0x110/0x110 [ 305.209234] __should_failslab+0x124/0x180 [ 305.209256] should_failslab+0x9/0x14 [ 305.209273] kmem_cache_alloc_trace+0x2d7/0x750 [ 305.209295] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 305.231563] ? _copy_from_user+0xdf/0x150 [ 305.235739] copy_mount_options+0x5f/0x430 [ 305.239990] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 305.245542] ksys_mount+0xd0/0x140 [ 305.249100] __x64_sys_mount+0xbe/0x150 [ 305.253118] do_syscall_64+0x1b9/0x820 [ 305.257031] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 305.262409] ? syscall_return_slowpath+0x5e0/0x5e0 [ 305.267350] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 305.272217] ? trace_hardirqs_on_caller+0x310/0x310 [ 305.277257] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 305.282286] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 305.287839] ? prepare_exit_to_usermode+0x291/0x3b0 [ 305.292879] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 305.297743] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 305.302938] RIP: 0033:0x459fda [ 305.306185] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 305.325106] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 305.332826] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 305.340126] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 305.347408] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 305.354687] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 305.361989] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 10:13:34 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autof+\x00', 0x0, &(0x7f00000003c0)) 10:13:34 executing program 0: timer_create(0x3, &(0x7f0000000380)={0x0, 0x28, 0x6}, &(0x7f00000003c0)=0x0) timer_delete(r0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000140)=0x0) sched_setattr(r2, &(0x7f0000000280)={0x30, 0x3, 0x1, 0x800, 0x0, 0x8948, 0x4, 0x2}, 0x0) r3 = getuid() connect$pppoe(r1, &(0x7f0000000100)={0x18, 0x0, {0x1, @remote, 'teql0\x00'}}, 0x1e) fstat(r1, &(0x7f0000000400)) r4 = getegid() write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000040)={0xa0, 0x0, 0x0, {{0x3, 0x2, 0x0, 0x9, 0x8d14, 0x1000000000000000, {0x3, 0x9, 0x1ff, 0x9, 0x8001, 0x9cdd, 0x6, 0x0, 0x5, 0x0, 0x5, r3, r4, 0x6, 0x7ff}}, {0x0, 0x7}}}, 0xa0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(0xffffffffffffffff, 0x80dc5521, &(0x7f00000001c0)=""/153) kexec_load(0x201ef1c0, 0x1, &(0x7f0000000180)=[{&(0x7f00000001c0), 0x0, 0x1aa9a1000, 0x1000000}], 0x0) ioctl(r1, 0x400, &(0x7f0000000480)="9dcedbb0830c587c81eaec6a6a873f94c1444c623d6f700bdf2594e11ec75cd8d930d6528b73bc3514d16012dff4f61b521305f2f9dce264d4982b726906753b9853d54046786584399f4a4629efd22ea1f38365ba0f25fc26a7a60e4bf27812f8a7b2d921d360e6aa1858041a5819fc4c6c9bf1e544d1ef1e2706de7a11547f12cab8fd23db21956bd90e6d74b0046609016d07a2455ff66d9c6e387b6b49a550a1c87acea6fd1439009b1dd8043c725b9d5c39ce2bf9c4f2272ad1ede837971d7039ec71a857220c4b403c1accea24a893026e92ac9e03d8c150351c81d32907f6d6a3fd7816b6b6c1f28358885a05c1ae6451fedc8e88e715bd208148") openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vcs\x00', 0x140, 0x0) [ 305.508999] hfsplus: unable to find HFS+ superblock 10:13:34 executing program 3 (fault-call:2 fault-nth:28): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 305.880955] FAULT_INJECTION: forcing a failure. [ 305.880955] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 305.892824] CPU: 1 PID: 9573 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 305.901242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.910604] Call Trace: [ 305.913228] dump_stack+0x244/0x39d [ 305.916886] ? dump_stack_print_info.cold.1+0x20/0x20 [ 305.922114] ? find_get_entries_tag+0x1400/0x1400 [ 305.926983] ? print_usage_bug+0xc0/0xc0 [ 305.931058] ? print_usage_bug+0xc0/0xc0 [ 305.935142] should_fail.cold.4+0xa/0x17 [ 305.939236] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 305.944371] ? mark_held_locks+0x130/0x130 [ 305.948624] ? zap_class+0x640/0x640 [ 305.952349] ? zap_class+0x640/0x640 [ 305.956092] ? print_usage_bug+0xc0/0xc0 [ 305.960174] ? is_bpf_text_address+0xac/0x170 [ 305.964715] ? find_held_lock+0x36/0x1c0 [ 305.968801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 305.974352] ? should_fail+0x22d/0xd01 [ 305.978260] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 305.983390] __alloc_pages_nodemask+0x34b/0xdd0 [ 305.988073] ? rcu_softirq_qs+0x20/0x20 [ 305.992071] ? __alloc_pages_slowpath+0x2dd0/0x2dd0 [ 305.997115] ? find_held_lock+0x36/0x1c0 [ 306.001224] ? trace_hardirqs_off+0xb8/0x310 [ 306.005654] cache_grow_begin+0xa5/0x8c0 [ 306.009734] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 306.015289] ? check_preemption_disabled+0x48/0x280 [ 306.020328] kmem_cache_alloc+0x66b/0x730 [ 306.024483] ? find_held_lock+0x36/0x1c0 [ 306.028566] getname_flags+0xd0/0x590 [ 306.032388] user_path_at_empty+0x2d/0x50 [ 306.036552] do_mount+0x180/0x1d90 [ 306.040194] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 306.045772] ? rcu_pm_notify+0xc0/0xc0 [ 306.049688] ? copy_mount_string+0x40/0x40 [ 306.053948] ? copy_mount_options+0x5f/0x430 [ 306.058381] ? rcu_read_lock_sched_held+0x14f/0x180 [ 306.063408] ? kmem_cache_alloc_trace+0x353/0x750 [ 306.063431] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 306.063449] ? _copy_from_user+0xdf/0x150 [ 306.063472] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.083550] ? copy_mount_options+0x315/0x430 [ 306.088059] ksys_mount+0x12d/0x140 [ 306.091706] __x64_sys_mount+0xbe/0x150 [ 306.095703] do_syscall_64+0x1b9/0x820 [ 306.099606] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 306.104998] ? syscall_return_slowpath+0x5e0/0x5e0 [ 306.109942] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 306.114807] ? trace_hardirqs_on_caller+0x310/0x310 [ 306.119841] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 306.124877] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.130435] ? prepare_exit_to_usermode+0x291/0x3b0 [ 306.135473] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 306.140345] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 306.145549] RIP: 0033:0x459fda [ 306.148755] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 306.167672] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 10:13:34 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofX\x00', 0x0, &(0x7f00000003c0)) [ 306.175397] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 306.182677] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 306.189975] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 306.197264] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 306.204547] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 [ 306.223262] hfsplus: unable to find HFS+ superblock 10:13:34 executing program 4: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000c34000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000b4e000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) pipe2(&(0x7f0000001ff8)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$DRM_IOCTL_RM_MAP(0xffffffffffffffff, 0x4028641b, &(0x7f0000b1d000)={&(0x7f00003ba000/0x3000)=nil, 0x20000002, 0x0, 0x0, &(0x7f0000fff000/0x1000)=nil}) mprotect(&(0x7f0000b1d000/0x2000)=nil, 0x2000, 0x5) vmsplice(r1, &(0x7f0000b1d000)=[{&(0x7f0000005fe3)}], 0x1, 0x0) close(r0) 10:13:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000700)=[@in={0x2, 0x0, @rand_addr=0x4}, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, @in6={0xa, 0x0, 0x5, @local}], 0x48) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000003c0), 0xffffffffffffffff) syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @broadcast, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x5, 0x4, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4001, 0x0, @local, @dev={0xac, 0x14, 0x14, 0x48}}}}}}}, &(0x7f0000000000)) [ 306.295254] hfsplus: unable to find HFS+ superblock 10:13:34 executing program 2: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) flock(r0, 0x1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$pppoe(0x18, 0x1, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000240)={0x80000001, {{0x2, 0x0, @remote}}, {{0x2, 0x4e22}}}, 0x108) flock(r1, 0x2) flock(r0, 0xfffffffffffffffe) 10:13:35 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofi\x00', 0x0, &(0x7f00000003c0)) [ 306.351592] EXT4-fs (sda1): Invalid journal IO priority (must be 0-7) 10:13:35 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sysinfo(&(0x7f00000007c0)=""/154) ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f00000006c0)={0x0, 0x0, 0x0, &(0x7f0000000800)}) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}) openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='memory.current\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x10, 0xffffffffffffffff, 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000005c0)) gettid() keyctl$read(0xb, 0x0, &(0x7f0000000140)=""/23, 0x17) add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz'}, &(0x7f0000000280), 0x0, 0xfffffffffffffffe) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff) request_key(&(0x7f0000000200)='dns_resolver\x00', &(0x7f0000000180)={'sy.'}, &(0x7f0000000240)='syz', 0xffffffffffffffff) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vga_arbiter\x00', 0x0, 0x0) [ 306.436566] hfsplus: unable to find HFS+ superblock 10:13:35 executing program 3 (fault-call:2 fault-nth:29): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)="0000000080", &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x100020, &(0x7f0000000440)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x48}}]}) [ 306.524833] hfsplus: unable to find HFS+ superblock 10:13:35 executing program 0: r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x1a7) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) unlink(&(0x7f0000000200)='./file0\x00') getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000800)=ANY=[@ANYRESOCT], &(0x7f00000002c0)=0x1) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000300)=0xc, 0x4) ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0) mkdir(&(0x7f00000001c0)='./file0\x00', 0xf6ffffff) mount(&(0x7f0000000540)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)='f2fs\x00', 0x10, &(0x7f0000000640)='/dev/qat_adf_ctl\x00') write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f0000000100)={0xc, 0x8, 0xfa00, {&(0x7f0000000680)}}, 0x10) socket$netlink(0x10, 0x3, 0x110) getpid() creat(&(0x7f0000000480)='./file0\x00', 0x0) sched_setscheduler(0x0, 0x5, &(0x7f0000000040)) 10:13:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000200)='/dev/urandom\x00', 0x400000, 0x0) ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0xf002], 0x0, 0x40, 0x75f6}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000240)={0x79}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000007c0)={"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"}) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0xefff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000440)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, &(0x7f0000000400), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 10:13:35 executing program 1: syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f00000003c0)={[{@uid={'uid'}}]}) mount(&(0x7f00002b9ff8), &(0x7f0000cbeff8)='./file0\x00', &(0x7f0000000380)='autofc\x00', 0x0, &(0x7f00000003c0)) 10:13:35 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-avx2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x359, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x34e, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) [ 306.645068] FAULT_INJECTION: forcing a failure. [ 306.645068] name failslab, interval 1, probability 0, space 0, times 0 [ 306.656930] CPU: 1 PID: 9609 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 306.665360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.674740] Call Trace: [ 306.677353] dump_stack+0x244/0x39d [ 306.681015] ? dump_stack_print_info.cold.1+0x20/0x20 [ 306.686232] ? filename_lookup+0x39a/0x520 [ 306.691002] ? user_path_at_empty+0x40/0x50 [ 306.695345] ? do_mount+0x180/0x1d90 [ 306.699065] ? ksys_mount+0x12d/0x140 [ 306.699082] ? do_syscall_64+0x1b9/0x820 [ 306.699108] should_fail.cold.4+0xa/0x17 [ 306.699127] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 306.716144] ? mntput+0x74/0xa0 [ 306.719447] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.724999] ? check_preemption_disabled+0x48/0x280 [ 306.730027] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 306.735571] ? find_held_lock+0x36/0x1c0 [ 306.739654] ? filename_lookup+0x39f/0x520 [ 306.743893] ? perf_trace_sched_process_exec+0x860/0x860 [ 306.749350] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 306.754893] __should_failslab+0x124/0x180 [ 306.759148] should_failslab+0x9/0x14 [ 306.762951] kmem_cache_alloc_trace+0x2d7/0x750 [ 306.767646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.773197] vfs_new_fs_context+0x5e/0x77c [ 306.777471] ? ns_capable_common+0x13f/0x170 [ 306.781926] do_mount+0xb70/0x1d90 [ 306.785490] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 306.791037] ? copy_mount_string+0x40/0x40 [ 306.795280] ? copy_mount_options+0x5f/0x430 [ 306.799703] ? kmem_cache_alloc_trace+0x353/0x750 [ 306.804549] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 306.810104] ? _copy_from_user+0xdf/0x150 [ 306.814265] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.819804] ? copy_mount_options+0x315/0x430 [ 306.824308] ksys_mount+0x12d/0x140 [ 306.827946] __x64_sys_mount+0xbe/0x150 [ 306.831929] do_syscall_64+0x1b9/0x820 [ 306.835817] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 306.841185] ? syscall_return_slowpath+0x5e0/0x5e0 [ 306.846130] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 306.850987] ? trace_hardirqs_on_caller+0x310/0x310 [ 306.856022] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 306.861039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 306.866579] ? prepare_exit_to_usermode+0x291/0x3b0 [ 306.871603] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 306.876458] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 306.881653] RIP: 0033:0x459fda [ 306.884855] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 306.903755] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 306.911466] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 306.918742] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 306.926034] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 306.933305] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 10:13:35 executing program 2: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) flock(r0, 0x1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$pppoe(0x18, 0x1, 0x0) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000240)={0x80000001, {{0x2, 0x0, @remote}}, {{0x2, 0x4e22}}}, 0x108) flock(r1, 0x2) flock(r0, 0xfffffffffffffffe) [ 306.940597] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 [ 306.976229] hfsplus: unable to find HFS+ superblock [ 306.993507] block nbd0: Attempted send on invalid socket [ 306.999440] print_req_error: I/O error, dev nbd0, sector 0 [ 307.010146] F2FS-fs (nbd0): Unable to read 1th superblock [ 307.023049] block nbd0: Attempted send on invalid socket [ 307.028560] print_req_error: I/O error, dev nbd0, sector 8 [ 307.034721] F2FS-fs (nbd0): Unable to read 2th superblock [ 307.047503] block nbd0: Attempted send on invalid socket [ 307.053072] print_req_error: I/O error, dev nbd0, sector 0 [ 307.060293] F2FS-fs (nbd0): Unable to read 1th superblock 10:13:35 executing program 2: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) flock(r0, 0x1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) flock(r1, 0x2) flock(r0, 0xfffffffffffffffe) [ 307.073709] hfsplus: unable to find HFS+ superblock [ 307.084792] block nbd0: Attempted send on invalid socket [ 307.090335] print_req_error: I/O error, dev nbd0, sector 8 [ 307.096739] F2FS-fs (nbd0): Unable to read 2th superblock [ 307.115172] block nbd0: Attempted send on invalid socket [ 307.120775] print_req_error: I/O error, dev nbd0, sector 0 [ 307.126577] F2FS-fs (nbd0): Unable to read 1th superblock [ 307.141627] block nbd0: Attempted send on invalid socket [ 307.147154] print_req_error: I/O error, dev nbd0, sector 8 [ 307.153030] F2FS-fs (nbd0): Unable to read 2th superblock [ 307.154370] BUG: unable to handle kernel paging request at fffffffffffffff4 [ 307.165682] PGD 926d067 P4D 926d067 PUD 926f067 PMD 0 [ 307.165893] kobject: 'loop2' (00000000e5a86811): kobject_uevent_env [ 307.170980] Oops: 0000 [#1] PREEMPT SMP KASAN [ 307.170996] CPU: 1 PID: 9609 Comm: syz-executor3 Not tainted 4.19.0-rc8-next-20181019+ #98 [ 307.171004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 307.171025] RIP: 0010:do_mount+0xb98/0x1d90 [ 307.171043] Code: 06 00 48 89 c2 48 89 c3 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8a 11 00 00 48 b8 00 00 00 00 00 fc ff df <4c> 8b 33 49 8d 7e 18 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 5e 11 [ 307.178805] block nbd0: Attempted send on invalid socket [ 307.181932] RSP: 0018:ffff880186327c28 EFLAGS: 00010246 [ 307.181945] RAX: dffffc0000000000 RBX: fffffffffffffff4 RCX: ffffc90007eae000 [ 307.181954] RDX: 1ffffffffffffffe RSI: ffffffff81e011ec RDI: 0000000000000282 [ 307.181963] RBP: ffff880186327db0 R08: ffff8801c2482440 R09: ffffed003b5e5b4f [ 307.181979] R10: ffffed003b5e5b4f R11: ffff8801daf2da7b R12: ffff8801ba9b5030 [ 307.181994] R13: ffff8801c9fe8b00 R14: ffff8801c9fe8b00 R15: ffff880184cc8880 [ 307.190420] print_req_error: I/O error, dev nbd0, sector 0 [ 307.199747] FS: 00007f93afa65700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 307.199757] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 307.199772] CR2: fffffffffffffff4 CR3: 00000001b9979000 CR4: 00000000001426e0 [ 307.204169] F2FS-fs (nbd0): Unable to read 1th superblock [ 307.222983] DR0: 000000000000b8c4 DR1: 0000000000000000 DR2: 0000000000000000 [ 307.222992] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 307.222997] Call Trace: [ 307.223022] ? rcu_lockdep_current_cpu_online+0x1a4/0x210 [ 307.223043] ? copy_mount_string+0x40/0x40 [ 307.228535] kobject: 'loop2' (00000000e5a86811): fill_kobj_path: path = '/devices/virtual/block/loop2' [ 307.233844] ? copy_mount_options+0x5f/0x430 [ 307.233863] ? kmem_cache_alloc_trace+0x353/0x750 [ 307.233884] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 307.241693] kobject: 'loop1' (00000000f2c09f9a): kobject_uevent_env [ 307.248413] ? _copy_from_user+0xdf/0x150 [ 307.248438] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 307.255921] block nbd0: Attempted send on invalid socket [ 307.262963] ? copy_mount_options+0x315/0x430 [ 307.262988] ksys_mount+0x12d/0x140 [ 307.263005] __x64_sys_mount+0xbe/0x150 [ 307.270320] print_req_error: I/O error, dev nbd0, sector 8 [ 307.275889] do_syscall_64+0x1b9/0x820 [ 307.275911] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 307.284248] F2FS-fs (nbd0): Unable to read 2th superblock [ 307.290008] ? syscall_return_slowpath+0x5e0/0x5e0 [ 307.290024] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 307.290042] ? trace_hardirqs_on_caller+0x310/0x310 [ 307.290062] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 307.427489] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 307.433031] ? prepare_exit_to_usermode+0x291/0x3b0 [ 307.438049] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 307.442899] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 307.448083] RIP: 0033:0x459fda [ 307.451293] Code: b8 a6 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d 89 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5a 89 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 307.470193] RSP: 002b:00007f93afa64a88 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 307.477919] RAX: ffffffffffffffda RBX: 00007f93afa64b30 RCX: 0000000000459fda [ 307.485185] RDX: 00007f93afa64ad0 RSI: 0000000020000080 RDI: 00007f93afa64af0 [ 307.492457] RBP: 0000000020000080 R08: 00007f93afa64b30 R09: 00007f93afa64ad0 [ 307.499726] R10: 0000000000100020 R11: 0000000000000206 R12: 0000000000000004 [ 307.506992] R13: 0000000000100020 R14: 00000000004d7d88 R15: 0000000000000003 [ 307.514262] Modules linked in: [ 307.517451] CR2: fffffffffffffff4 [ 307.520907] ---[ end trace b85e9ce3831fea28 ]--- [ 307.525667] RIP: 0010:do_mount+0xb98/0x1d90 [ 307.529992] Code: 06 00 48 89 c2 48 89 c3 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 8a 11 00 00 48 b8 00 00 00 00 00 fc ff df <4c> 8b 33 49 8d 7e 18 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 5e 11 [ 307.548889] RSP: 0018:ffff880186327c28 EFLAGS: 00010246 [ 307.554251] RAX: dffffc0000000000 RBX: fffffffffffffff4 RCX: ffffc90007eae000 [ 307.561517] RDX: 1ffffffffffffffe RSI: ffffffff81e011ec RDI: 0000000000000282 [ 307.568780] RBP: ffff880186327db0 R08: ffff8801c2482440 R09: ffffed003b5e5b4f [ 307.576045] R10: ffffed003b5e5b4f R11: ffff8801daf2da7b R12: ffff8801ba9b5030 [ 307.583340] R13: ffff8801c9fe8b00 R14: ffff8801c9fe8b00 R15: ffff880184cc8880 [ 307.590611] FS: 00007f93afa65700(0000) GS:ffff8801daf00000(0000) knlGS:0000000000000000 [ 307.598830] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 307.604705] CR2: fffffffffffffff4 CR3: 00000001b9979000 CR4: 00000000001426e0 [ 307.612007] DR0: 000000000000b8c4 DR1: 0000000000000000 DR2: 0000000000000000 [ 307.619271] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 307.626535] Kernel panic - not syncing: Fatal exception [ 307.632785] Kernel Offset: disabled [ 307.636407] Rebooting in 86400 seconds..