utf8='utf8=1'}], [{@appraise='appraise'}]}) [ 517.152998] input: syz1 as /devices/virtual/input/input312 [ 517.181919] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value 05:51:46 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) syz_init_net_socket$llc(0x1a, 0x2, 0x0) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000040)=0x10001, 0x4) ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f0000000080)) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:46 executing program 1 (fault-call:6 fault-nth:18): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:46 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x200, 0x402) ioctl$DRM_IOCTL_GET_UNIQUE(r0, 0xc0106401, &(0x7f00000001c0)={0xffffffffffffffd2, &(0x7f0000000080)=""/236}) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000180)={0x2713, 0x0, &(0x7f0000009000/0x1000)=nil}) 05:51:46 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(0x0, 0x4, 0x0) dup2(r1, r0) 05:51:46 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@uni_xlate='uni_xlate=1'}, {@utf8='utf8=1'}, {@fat=@check_normal='check=normal'}, {@utf8='utf8=1'}], [{@appraise='appraise'}]}) 05:51:46 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$sock_inet6_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000080)) [ 517.300513] binder: BINDER_SET_CONTEXT_MGR already set [ 517.306048] binder: 23339:23340 ioctl 40046207 0 returned -16 [ 517.313362] binder: 23339:23340 ioctl 80044943 20000000 returned -22 [ 517.322716] binder: BINDER_SET_CONTEXT_MGR already set [ 517.328425] binder: 23339:23342 ioctl 80044943 20000000 returned -22 [ 517.333091] binder: 23339:23340 ioctl 40046207 0 returned -16 05:51:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 517.378133] FAULT_INJECTION: forcing a failure. [ 517.378133] name failslab, interval 1, probability 0, space 0, times 0 [ 517.398680] CPU: 1 PID: 23353 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 517.405839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 517.405846] Call Trace: [ 517.405863] dump_stack+0x138/0x197 [ 517.405882] should_fail.cold+0x10f/0x159 [ 517.405898] should_failslab+0xdb/0x130 [ 517.405910] kmem_cache_alloc+0x2d7/0x780 [ 517.405920] ? save_trace+0x290/0x290 [ 517.405932] ? check_preemption_disabled+0x3c/0x250 [ 517.405947] mmu_topup_memory_caches+0x86/0x320 [ 517.421486] kvm_mmu_load+0x21/0xd40 [ 517.421509] vcpu_enter_guest+0x2eb4/0x5210 [ 517.429603] ? perf_trace_lock+0x500/0x500 [ 517.429617] ? __lock_is_held+0x10/0x140 [ 517.429630] ? emulator_read_emulated+0x50/0x50 [ 517.429641] ? lock_acquire+0x16f/0x430 [ 517.447247] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 517.447267] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 517.447276] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 517.447293] kvm_vcpu_ioctl+0x401/0xd10 [ 517.458819] input: syz1 as /devices/virtual/input/input313 [ 517.459537] ? kvm_vcpu_block+0xbb0/0xbb0 [ 517.472185] ? trace_hardirqs_on+0x10/0x10 [ 517.472200] ? save_trace+0x290/0x290 [ 517.472208] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 517.472217] ? __f_unlock_pos+0x19/0x20 [ 517.472227] ? __fget+0x210/0x370 [ 517.472238] ? find_held_lock+0x35/0x130 [ 517.496716] ? __fget+0x210/0x370 05:51:46 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000280)={0x0, @in6={{0xa, 0x4e20, 0x1, @mcast1, 0x9}}}, &(0x7f0000000040)=0x84) 05:51:46 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303}, "4c500dcbcf5fd6f5", "1ae1e4154009fdcf4058eece356dd9e3", "0a3fa50f", "4d35814ee9a77697"}, 0x28) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='environ\x00') write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={0xffffffffffffffff}, 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f0000000280)={0x12, 0x10, 0xfa00, {&(0x7f00000001c0), r2, r1}}, 0x18) connect$l2tp(r1, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @multicast2}, 0x4, 0x2, 0x2, 0x3}}, 0x2e) [ 517.496732] ? kvm_vcpu_block+0xbb0/0xbb0 [ 517.496743] do_vfs_ioctl+0x7ae/0x1060 [ 517.496756] ? selinux_file_mprotect+0x5d0/0x5d0 [ 517.505105] ? lock_downgrade+0x6e0/0x6e0 [ 517.521201] ? ioctl_preallocate+0x1c0/0x1c0 [ 517.521215] ? __fget+0x237/0x370 [ 517.521234] ? security_file_ioctl+0x89/0xb0 [ 517.528710] SyS_ioctl+0x8f/0xc0 [ 517.528721] ? do_vfs_ioctl+0x1060/0x1060 [ 517.528734] do_syscall_64+0x1e8/0x640 [ 517.528745] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 517.536745] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 517.536755] RIP: 0033:0x459879 [ 517.536760] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 517.545635] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 517.545642] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 517.545648] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 517.545654] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 517.545660] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:46 executing program 1 (fault-call:6 fault-nth:19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:46 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x0, 0x0) dup2(r1, r0) [ 517.640426] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value 05:51:46 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@uni_xlate='uni_xlate=1'}, {@utf8='utf8=1'}, {@fat=@check_normal='check=normal'}, {@rodir='rodir'}], [{@appraise='appraise'}]}) [ 517.802666] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value [ 517.827275] input: syz1 as /devices/virtual/input/input314 [ 517.862621] FAULT_INJECTION: forcing a failure. [ 517.862621] name failslab, interval 1, probability 0, space 0, times 0 [ 517.867907] binder: 23380:23384 ioctl 400454dc 20000080 returned -22 [ 517.882318] binder: BINDER_SET_CONTEXT_MGR already set [ 517.886276] CPU: 1 PID: 23375 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 517.888472] binder: 23380:23384 ioctl 40046207 0 returned -16 [ 517.894704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 517.894710] Call Trace: [ 517.894730] dump_stack+0x138/0x197 [ 517.894749] should_fail.cold+0x10f/0x159 [ 517.894765] should_failslab+0xdb/0x130 [ 517.894777] kmem_cache_alloc+0x2d7/0x780 [ 517.894786] ? save_trace+0x290/0x290 [ 517.894800] ? check_preemption_disabled+0x3c/0x250 [ 517.894817] mmu_topup_memory_caches+0x86/0x320 [ 517.894831] kvm_mmu_load+0x21/0xd40 [ 517.894851] vcpu_enter_guest+0x2eb4/0x5210 [ 517.894862] ? perf_trace_lock+0x500/0x500 [ 517.894874] ? __lock_is_held+0x10/0x140 [ 517.894887] ? emulator_read_emulated+0x50/0x50 05:51:47 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000080)=0x1) 05:51:47 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x10141, 0x0) ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000080)={0x3f, @broadcast}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:47 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:47 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@uni_xlate='uni_xlate=1'}, {@utf8='utf8=1'}, {@rodir='rodir'}], [{@appraise='appraise'}]}) [ 517.894896] ? lock_acquire+0x16f/0x430 [ 517.894908] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 517.904581] binder: 23380:23385 ioctl 400454dc 20000080 returned -22 [ 517.910171] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 517.910182] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 517.910199] kvm_vcpu_ioctl+0x401/0xd10 [ 517.910211] ? kvm_vcpu_block+0xbb0/0xbb0 [ 517.910224] ? trace_hardirqs_on+0x10/0x10 [ 517.913281] binder: BINDER_SET_CONTEXT_MGR already set [ 517.916408] ? save_trace+0x290/0x290 [ 517.916419] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 517.916429] ? __f_unlock_pos+0x19/0x20 [ 517.916440] ? __fget+0x210/0x370 [ 517.916452] ? find_held_lock+0x35/0x130 [ 517.921154] binder: 23380:23386 ioctl 40046207 0 returned -16 [ 517.924549] ? __fget+0x210/0x370 [ 517.924565] ? kvm_vcpu_block+0xbb0/0xbb0 [ 517.924576] do_vfs_ioctl+0x7ae/0x1060 [ 517.924588] ? selinux_file_mprotect+0x5d0/0x5d0 [ 517.924601] ? lock_downgrade+0x6e0/0x6e0 [ 517.942183] ? ioctl_preallocate+0x1c0/0x1c0 [ 517.942198] ? __fget+0x237/0x370 [ 517.942217] ? security_file_ioctl+0x89/0xb0 [ 517.942228] SyS_ioctl+0x8f/0xc0 [ 517.942236] ? do_vfs_ioctl+0x1060/0x1060 [ 517.942248] do_syscall_64+0x1e8/0x640 [ 517.942260] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 517.958575] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 517.958585] RIP: 0033:0x459879 [ 517.958591] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 517.958602] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:51:47 executing program 1 (fault-call:6 fault-nth:20): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:47 executing program 2: r0 = syz_open_dev$dspn(&(0x7f0000002280)='/dev/dsp#\x00', 0x120, 0xd5d688ccc3e06ace) ioctl$SIOCRSSCAUSE(r0, 0x89e1, &(0x7f00000022c0)=0x4) r1 = socket$inet(0xa, 0x2, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x5, 0x208e, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200001c0], 0x0, &(0x7f0000000000), &(0x7f00000001c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{0x5, 0x14, 0x88f7, 'bond0\x00', 'veth1_to_team\x00', 'team_slave_1\x00', 'team_slave_0\x00', @dev={[], 0x1b}, [0x0, 0xff, 0xff, 0xff, 0xff], @dev={[], 0x27}, [0x0, 0xff, 0xff, 0x0, 0x0, 0xff], 0xce, 0xfe, 0x12e, [@vlan={'vlan\x00', 0x8, {{0x2, 0x1, 0x56f9efbfaf8badd2, 0x2, 0x2}}}, @state={'state\x00', 0x8, {{0x5f}}}], [@common=@AUDIT={'AUDIT\x00', 0x8, {{0xaebea9509e1303db}}}], @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x6}}}}, {0x3, 0x2, 0x16, 'dummy0\x00', 'rose0\x00', 'ip6erspan0\x00', 'bcsh0\x00', @broadcast, [0x0, 0xff, 0xff, 0xff], @remote, [0xff, 0xff, 0x0, 0x0, 0x0, 0xff], 0x916, 0x916, 0xa46, [@among={'among\x00', 0x880, {{@offset, @offset, 0x1, {[0x1f, 0x80000001, 0xd8f, 0x4, 0x5, 0x5ce0, 0x7fffffff, 0x4, 0x465, 0x8, 0x6, 0x2, 0x0, 0xfffffffffffffff8, 0x1, 0x9, 0x80000001, 0x7fffffff, 0x80000000, 0x100, 0x6, 0x7, 0x80000000, 0x101, 0x1, 0x1, 0xd18, 0x7ff, 0x5, 0x0, 0x2, 0xfffffffffffffffa, 0x1f, 0x100000001, 0x5, 0x3, 0x2, 0xffffffffffffe7f9, 0x401, 0x100000001, 0x1f75, 0xc3, 0x20, 0xb277, 0xf8c, 0x0, 0x80000000, 0xfffffffffffffbbb, 0x307327d9000, 0xff, 0x34, 0x0, 0x7fff, 0x2, 0x7fff, 0x80000001, 0x3f, 0x2, 0x1, 0x3, 0x100000000, 0x3f, 0x80, 0xff, 0x2, 0x1ff, 0x4, 0x100000001, 0x3, 0x4, 0x58, 0x2, 0xfb3, 0x81, 0xff, 0x1, 0x6, 0x2, 0x4, 0x80000000, 0x2, 0x6be, 0x8, 0x5, 0x0, 0x80000000, 0x0, 0x8, 0x2, 0x3ff, 0x0, 0x1, 0x0, 0x8, 0x200, 0xfffffffffffffffd, 0x2b6c, 0x4, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x1000, 0x10000, 0x100000000, 0xfffffffffffffffa, 0x6, 0x3f, 0x2, 0x7, 0x1, 0xfff, 0x3, 0x7, 0x5, 0x3fffffffc, 0x9, 0x8, 0x100000000, 0x6, 0x1, 0x80, 0x8, 0xffffffffffff7b0a, 0x80, 0x9342, 0x3, 0x1, 0x32, 0x200, 0x8, 0x0, 0x67, 0x9, 0x2, 0x7, 0x6d, 0x4, 0xffffffffffffffa1, 0x0, 0xfffffffffffeffff, 0x4, 0x9, 0x141f, 0x6, 0x5, 0x8001, 0x100000001, 0x300000, 0x9, 0x90, 0x1, 0x7, 0x2, 0x5, 0x5, 0x80, 0x7, 0x8, 0x10001, 0x24, 0xacff, 0x3f, 0x1, 0x2, 0xce10, 0xfffffffffffffff7, 0x7fff, 0x10200000000, 0x9, 0x1208, 0x200, 0x7, 0x80000001, 0x20, 0x8, 0x6, 0x348, 0x7, 0xff, 0x400, 0xb822, 0x1, 0x6, 0x8, 0x4, 0xa2, 0x3, 0x3f, 0x8, 0x8, 0x5, 0xffffffffffffff80, 0x100000000, 0xf86, 0x6, 0xffffffff00000000, 0xab8, 0xaa3f, 0x7fff, 0x4, 0x101, 0x7f, 0x131, 0xffffffffffff7fff, 0x3, 0x9, 0x4e0, 0x1, 0x0, 0x7, 0x7, 0x2, 0x3, 0x0, 0x30e, 0x80, 0x9, 0x1, 0x6, 0x550, 0x81, 0x1, 0x20, 0x20, 0x5, 0x5, 0x80, 0x2f, 0x10001, 0x6, 0xfffffffffffff919, 0x3, 0x2, 0x4, 0x4, 0x74, 0x5, 0x800, 0x136, 0x0, 0xffffffff, 0x6, 0x7fffffff, 0x6, 0x2, 0x0, 0x5, 0x4dd83e4a, 0x6, 0x0, 0xfff, 0xfffffffffffffd16, 0x20], 0x1, [{[0xb0a6, 0x4], @remote}]}, {[0x0, 0x7, 0xfff, 0x8, 0x1, 0x1, 0x3, 0x7f, 0x1ff, 0x8, 0xfffffffffffff001, 0x20, 0x2, 0x800, 0x2d7, 0x1, 0x6, 0x7fffffff, 0x6, 0x9, 0x7ff, 0x80, 0x0, 0xe29, 0x1, 0xfff, 0x1ff, 0x6, 0xfffffffffffffff9, 0x6c9, 0x3, 0x3, 0x3ff, 0x7f, 0xfffffffffffffff8, 0x8, 0x1, 0xfffffffffffffffd, 0x10000, 0x2, 0x1, 0x4, 0x8, 0x3, 0x200, 0x9, 0xfffffffffffffffc, 0x1ff, 0x3, 0x100000001, 0x1ee1eb02, 0x1, 0xe41, 0xfffffffffffffe00, 0x1, 0x2, 0x31, 0x2, 0x0, 0x71, 0x8, 0x7, 0x4, 0x0, 0x100, 0x8, 0x9, 0xafc, 0x1, 0x0, 0x2, 0x4, 0x4, 0x3, 0x7fff, 0x7, 0x1, 0x9000, 0x8000, 0x4, 0xd7d, 0x7fff, 0xd10, 0x0, 0x100000001, 0x9, 0x7, 0x8, 0x200, 0x2, 0x4491, 0xffffffffffffffff, 0x4, 0x73, 0x2, 0x0, 0xff, 0x8001, 0x7b, 0x363c, 0x2, 0x8, 0x80000000000, 0x6, 0x10001, 0x2fb7, 0xbe, 0x7fffffff, 0x7, 0x5, 0x8, 0x4, 0xfffffffffffffffb, 0xdd, 0x100, 0xd0a7, 0x5, 0x8001, 0x6, 0x1000, 0xffff, 0x2, 0x735, 0xfffffffffffff001, 0x8, 0x9, 0x5, 0xffffffffffffffe1, 0xff9, 0x4, 0x80000001, 0x6, 0x0, 0x20, 0x4132371f, 0x1, 0x98d8, 0x200, 0x9, 0x3, 0x8, 0x8, 0xffff, 0x4, 0xfffffffffffffe01, 0x0, 0x2, 0x7, 0xff, 0x8, 0xa5b, 0x7ff, 0x800, 0x8, 0x1, 0x20, 0x0, 0x9, 0x5, 0x2, 0x1, 0x1f, 0x0, 0xffff, 0x1f, 0xfff, 0xffff, 0x4, 0xffffffff, 0x0, 0x101, 0x5, 0x800, 0x68c9, 0x9, 0x81, 0x8001, 0xfffffffffffffa92, 0x2, 0x4, 0x0, 0x5, 0x6, 0x55d0527d, 0x4, 0x5, 0x1, 0x10001, 0x3f, 0x4, 0x1, 0x81, 0x6, 0x5, 0xfffffffffffffff7, 0x7, 0x10000, 0x1000, 0x4, 0x8, 0x800, 0x10000, 0x4, 0x7, 0x3, 0x2, 0xffffffff, 0x8, 0x2, 0x6, 0x4, 0x80, 0x1f, 0x40, 0x400, 0x7ff, 0x7, 0x2, 0xffff, 0x35, 0x2, 0x8001, 0x4, 0x5, 0x9, 0x1, 0x0, 0x5, 0x6, 0x0, 0x100000001, 0x9, 0x7fff, 0x1, 0x80000001, 0x7, 0x21, 0x8000, 0xfffffffffffffffa, 0x1, 0x8, 0x7fffffff, 0x3, 0x2, 0x5, 0x0, 0x200, 0xce3b, 0x3, 0x6, 0x5, 0x5, 0x9, 0xfffffffffffffffa, 0x4, 0x25b, 0x5e0], 0x7, [{[0x4, 0x5], @remote}, {[0x5, 0xffffffffffff8001], @loopback}, {[0x27, 0x100000000], @rand_addr=0x4}, {[0x4, 0x7], @rand_addr=0xff}, {[0x10001, 0x1], @rand_addr=0x8}, {[0x3, 0x8], @multicast1}, {[0x1, 0x3], @empty}]}}}}], [], @common=@SECMARK={'SECMARK\x00', 0x108, {{0x1, 0x2489, 'system_u:object_r:inetd_log_t:s0\x00'}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x1, [{0x9, 0x32, 0x6, 'syzkaller1\x00', 'vcan0\x00', 'bond_slave_0\x00', 'veth0_to_team\x00', @local, [0x0, 0xff, 0xff, 0x0, 0xff], @empty, [0x0, 0x0, 0x0, 0xff, 0xef0ecf71169ee7a9], 0x6e, 0xe6, 0x116, [], [@common=@NFLOG={'NFLOG\x00', 0x50, {{0x9, 0x3ff, 0x295, 0x0, 0x0, "d4cee47ea12cf567aaafea77387bc9862f7db15921c0abfe02d42a76b05883956def129d552f19bd206d62a14c5d30d413fb44f4d40ec320e64745a079d5159f"}}}], @common=@AUDIT={'AUDIT\x00', 0x8}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x2, [{0x3, 0x3c690b7934b4d92d, 0xdada, 'bridge_slave_0\x00', 'yam0\x00', 'rose0\x00', 'veth1_to_team\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, [0xff, 0xff], @random="0686cfc611f1", [0x0, 0x0, 0xff, 0x0, 0x0, 0xff], 0x8b6, 0x8b6, 0x906, [@u32={'u32\x00', 0x7c0, {{[{[{0x0, 0x1}, {0x31b, 0x3}, {0x8000, 0x3}, {0x3, 0x2}, {0x1, 0x3}, {0x4cc, 0x3}, {0x8000, 0x1}, {0x5, 0x3}, {0x3, 0x1}, {0xd6, 0x3}, {0x0, 0x1}], [{0x5, 0x9}, {0x1, 0x2c036e42}, {0x0, 0x100000001}, {0x1, 0x8}, {0x1, 0x9}, {0x80000000, 0x6}, {0x8}, {0x0, 0x5}, {0xa796, 0xffffffff}, {0xc770, 0xffffffffffffff3a}, {0x0, 0x8}], 0x4, 0x6}, {[{0xfdd}, {0x1, 0x1}, {0x6}, {0x0, 0x1}, {0x3b}, {0x5, 0x2}, {0x0, 0x3}, {0x27, 0x1}, {0x100000001}, {0x800, 0x2}, {0x40, 0x707d2a708d2ea07}], [{0x2, 0x8}, {0x1, 0xfffffffffffffffc}, {0xffffffffffffffe1, 0x8}, {0x6, 0x9}, {0xfffffffffffffff9, 0x1}, {0x80, 0x800}, {0x100000001, 0x8}, {0xffffffffffffffa0, 0xb4}, {0xc3f, 0x3}, {0x800000000000, 0x7}, {0xfffffffffffffff8, 0x9}], 0xa, 0x2}, {[{0x7, 0x3}, {0xffffffffffff1bdc, 0x3}, {0x5, 0x3}, {0x4}, {0x6, 0x3}, {0x7, 0x1}, {0x1}, {0x1f, 0x3}, {0xdf, 0x3}, {0x9, 0x3}, {0x8}], [{0x9, 0xd7}, {0x7, 0x5}, {0x80000001, 0x2}, {0xfffffffffffffffe, 0x96}, {0xfffffffffffffe01, 0x200}, {0x5}, {0x3ff, 0x4}, {0x1, 0x9}, {0x4, 0x6}, {0xf0, 0x7}, {0x1ff, 0x4}], 0x0, 0x6}, {[{0x4, 0x3}, {0xbb0}, {0x3ff, 0x3}, {0x0, 0x3}, {0x800, 0x1}, {0xfffffffffffffff7, 0x1}, {0x0, 0x2}, {0x3, 0x2}, {0x560, 0x2}, {0x3b34, 0x3}, {0xfffffffffffffffc, 0x3}], [{0x2, 0x100000001}, {0x8, 0x1}, {0x2, 0x2}, {0x3, 0x3f}, {0x2}, {0x3, 0x400}, {0x2c, 0x5824}, {0x2, 0x7fff}, {0x7, 0x1000}, {0x0, 0xffffffffffffffcc}, {0x80000001, 0x7}], 0xa}, {[{0x4, 0x1}, {0x3f5}, {0x4}, {0x6, 0x1}, {0x7, 0x2}, {0x1, 0x3}, {0x2, 0x1}, {0x7ff, 0x1}, {0xffff, 0x2}, {0x2, 0x2}, {0x1, 0x1}], [{0x3}, {0x3, 0x5}, {0x401, 0x8}, {0xff, 0x2}, {0x4, 0x40}, {0x0, 0x8000}, {0x9, 0xfffffffffffffeff}, {0x5, 0x80000001}, {0xea, 0x8011}, {0x1, 0x2}, {0xfffffffffffeffff, 0x1}], 0x6, 0x3}, {[{0x1000, 0x2}, {0x6, 0x2}, {0xfffffffffffffffc, 0x3}, {0x7, 0x1}, {0x1, 0x3}, {0xffff, 0x3f1e4228d133be01}, {0x400, 0x1}, {0x80000001, 0x1}, {0x9}, {0x3, 0x3}, {0x100, 0x3}], [{0x0, 0x4}, {0x9, 0x3ef}, {0x227ed1c4, 0x2}, {0x6, 0x400}, {0x81, 0x4}, {0x6, 0x5}, {0x80000000, 0x17}, {0xfffffffffffffffc, 0x80000001}, {0xffff, 0xffffffffffff0001}, {0x3, 0x1}, {0x0, 0xde0}], 0x2, 0x9}, {[{0x800, 0x3}, {0x1, 0x2}, {0x400, 0x1}, {0x7, 0x3}, {0x5}, {0x6}, {0x4, 0xcfe51a10fd5be1b2}, {0x1, 0x3}, {0x401}, {0x2}, {0x4, 0x1}], [{0x3, 0x9}, {0xdd, 0x7ff}, {0x6, 0x9}, {0x7, 0x2}, {0x81, 0xfffffffffffffffe}, {0x3, 0x6}, {0x9}, {0x0, 0xfff}, {0x8, 0x2}, {0xfff, 0x8}, {0x2, 0x3}], 0x9, 0x7}, {[{0x1, 0x3}, {0x9, 0x1}, {0x7, 0x3}, {0xfffffffffffffff8, 0x2}, {0x200, 0x3}, {0x4}, {0x7, 0x1}, {0x0, 0x1}, {0x7fff}, {0x80000001, 0x2}, {0x7}], [{0x8000, 0x7f}, {0x81, 0xb3}, {0x0, 0x200}, {0x0, 0x40}, {0x8}, {0x1f, 0xffffffffffffff01}, {0x4d, 0x8}, {0x2, 0x7}, {0xc5c, 0x10000}, {0x100, 0x401}, {0x8, 0x3}], 0x8, 0x1}, {[{0x6}, {0x9, 0x2}, {0x200, 0x2}, {0x9, 0x3}, {0x400}, {0x4, 0x1}, {0x9, 0x3}, {0x9}, {0x200, 0x1}, {0x0, 0x2}, {0xfffffffffffffff9, 0x1}], [{0x8148, 0x7ff}, {0x6274, 0xb}, {0x2, 0x3b7f}, {0xff, 0x1}, {0x6, 0x8}, {0xa97, 0xffffffffffff0000}, {0x5, 0x400}, {0x2, 0xfff}, {0x7, 0xcb27}, {0x8, 0x8}, {0x7, 0x1}], 0x1, 0x6}, {[{0x4, 0x1}, {0x74, 0x1}, {0xfffffffffffffffc}, {0x3, 0xe455c6f1fe958074}, {0xff}, {0x10000, 0x2}, {0x39e}, {0x20}, {0x6, 0x2}, {0xfa}, {0x5}], [{0x7fff, 0x401}, {0x44, 0x3}, {0x1, 0x5}, {0x8, 0x9}, {0x8, 0x6}, {0x21, 0x6}, {0x4, 0x1}, {0x2, 0x2}, {0x1, 0x7}, {0xc62, 0x1}, {0x6, 0x100000001}], 0xb, 0xa}, {[{0x61cb, 0x1}, {0x9, 0x703b423b0badd295}, {0x3}, {0x81}, {0x3, 0x3}, {0x3}, {0x9, 0x2}, {0xe02, 0x1}, {0xfffffffffffffffe}, {0x9, 0x3}, {0x1000, 0x2}], [{0x7, 0x7fffffff}, {0x1}, {0x6e4, 0xea98}, {0x2, 0x8001}, {0x1ff, 0x100000001}, {0x4bfc, 0x932}, {0xfffffffffffff972, 0x100}, {0x0, 0x10001}, {0x4, 0x7}, {0x19, 0xfff}, {0x3, 0x6}], 0x5, 0x1}], 0x5, 0x1}}}, @arp={'arp\x00', 0x38, {{0x30e, 0x88e7, 0xd592aefbb0fb27eb, @multicast1, 0xff000000, @loopback, 0x0, @local, [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], @empty, [0x0, 0xff, 0xf5d6df3756ed0ba1, 0x0, 0xff, 0xff], 0x8, 0x1}}}], [], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x100, 'syz0\x00', 0xfffffffffffffffe}}}}, {0x11, 0x2, 0xa9e20e40f0946015, 'lo\x00', 'yam0\x00', 'vcan0\x00', 'veth0_to_bond\x00', @remote, [0xff, 0x0, 0xff, 0x0, 0xff, 0xff], @empty, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], 0x96e, 0x9ee, 0xa3e, [@realm={'realm\x00', 0x10, {{0x9, 0x5, 0x1}}}, @among={'among\x00', 0x8a0, {{@offset, @zero, 0x2, {[0x6, 0x7ff, 0x0, 0xffffffff, 0x1, 0x3, 0x38, 0x80, 0xe, 0x4, 0x1, 0x753, 0x100, 0x6, 0xffff, 0x6, 0x2, 0x4, 0x29e, 0x40, 0x63, 0x7fffffff, 0x1000, 0x7, 0x7fff, 0x4, 0x9, 0x3f, 0xf2d, 0xffffffff, 0x2, 0x4, 0x4, 0xff07, 0x0, 0x3ff, 0x2, 0x1, 0xa77, 0xb736, 0x9, 0x4, 0x814, 0x100000000, 0x8, 0x1000, 0x79, 0x2, 0x3, 0x7, 0x1, 0x8000000000000000, 0x200, 0x81, 0x7, 0x7, 0x1, 0x8, 0x7fffffff, 0x5, 0x1000, 0x8000, 0x35, 0x7, 0x2, 0x800000, 0x2, 0xeae, 0x6, 0x36, 0x1000, 0x5, 0x4000000000, 0x6, 0x6efd, 0x1, 0x8000, 0xfffffffffffffeff, 0x3, 0x1, 0x1, 0x5, 0xfffffffffffffffd, 0x2, 0x9, 0x7, 0x79f666ea, 0x62, 0x25b, 0x1, 0x40, 0x9, 0x8, 0x2, 0x5, 0x5, 0x200, 0x3f, 0xb0, 0x5a1b, 0xcd, 0x80000000, 0xffffffff, 0x74, 0x724, 0x0, 0x7, 0x6570, 0x6, 0x8000, 0x7fff, 0x200, 0x0, 0x8001, 0x401, 0x20, 0x1e5940000, 0x3, 0x100000001, 0x6, 0x7680, 0x5, 0x7ff, 0x7fff, 0x101, 0x3ff, 0x81, 0x7, 0x7f, 0x4, 0x8, 0x7ff, 0x10001, 0x81, 0x7fff, 0xffffffffffff8001, 0x100000000, 0x2, 0x1, 0x8001, 0x101, 0x2, 0x2, 0x7f, 0x1, 0x50f, 0x4, 0x7af, 0x0, 0x7ff, 0x7, 0xe1, 0xffffffffffffffc0, 0xe0ce, 0x0, 0x9, 0x8, 0x90000000, 0x6, 0x7ff, 0x8, 0x1f, 0x20, 0x40, 0x1a, 0xfffffffffffffffe, 0xa000000, 0x20, 0x7fffffff, 0x44, 0x8fa, 0x6, 0x6, 0xe1, 0x1ff, 0xdb8, 0xf99, 0x3, 0x4, 0x7, 0x7e3b, 0x8, 0xfffffffffffffff9, 0x40, 0x4, 0xffff, 0x4, 0x1, 0x2, 0xff, 0x1, 0x9, 0x2, 0x0, 0x5, 0x101, 0xadf, 0x247, 0x5f0ba02e, 0x0, 0x9, 0xcb, 0x5, 0x4, 0x0, 0x10001, 0x2, 0x1, 0x2, 0x100000001, 0x7ff, 0x8001, 0x2, 0x200, 0x6, 0x1, 0xffffffff, 0x8, 0x8, 0xfff, 0x7, 0x8, 0x3f, 0x7ecfa119, 0x3, 0x5, 0x7, 0x6, 0x0, 0x8000, 0x52, 0x7, 0xffff, 0x6, 0x6, 0x6, 0x75, 0x3, 0x4, 0x3f, 0x3, 0x4, 0x35, 0x81, 0x0, 0xb6, 0x9, 0xc000000000000, 0xfffffffffffffffa, 0x6, 0x7fff, 0x71, 0x1, 0x401, 0x5, 0x95a3, 0x8001], 0x3, [{[0xe9, 0x6], @dev={0xac, 0x14, 0x14, 0x29}}, {[0x22839d9f, 0x2], @multicast1}, {[0x9, 0x6], @remote}]}, {[0x7, 0x5a006867, 0x6, 0x8, 0x4000, 0x3c, 0xd, 0x3, 0xadb, 0x401, 0x4, 0x6, 0x6, 0x7, 0x2, 0xffffffff, 0x1, 0x5ac1, 0xfffffffffffffffb, 0x1, 0x4, 0x1, 0x6, 0x3, 0x9, 0x1, 0x5, 0x48d88ee800000000, 0x2000000000000000, 0x1ff, 0x40, 0x915, 0x88a, 0xffffffffffff9d9f, 0x10000, 0x3f, 0x2, 0x0, 0x80000000, 0x7, 0x401, 0x2, 0x101, 0x9, 0x5, 0x0, 0x6, 0x3ff, 0x3, 0x346, 0xfffffffffffffff9, 0x5, 0x1000, 0x129, 0x101, 0x8001, 0x9, 0x0, 0x4, 0x5, 0x8, 0x0, 0x5, 0x5, 0x8, 0x7e, 0xffffffff, 0x2, 0x5, 0xfffffffffffffb3b, 0x0, 0xfffffffffffffffb, 0x4, 0x7, 0x100000000, 0x4, 0x0, 0x42c, 0x9d6, 0x9, 0xc9, 0x5, 0xffff800000000000, 0x2, 0x7, 0x40, 0x4, 0xf3b5, 0x5, 0x3f1, 0xc7, 0x9, 0x7, 0x400, 0x1, 0x7fffffff, 0x7a, 0xffffffffffffffff, 0x3, 0x1f, 0x0, 0x8000, 0x40, 0x10000000000000, 0xffffffffffffffe1, 0x3, 0x20, 0x1f, 0x3, 0x401, 0x5, 0x80000001, 0x5, 0x6, 0x401, 0x7, 0x80000001, 0x42, 0x9, 0x0, 0x4, 0x1, 0xffff, 0x0, 0xfff, 0x11a, 0x7c, 0x2c, 0x863f, 0x1, 0xfffffffffffffc00, 0x7, 0x8001, 0x5, 0x81, 0x0, 0xfff, 0x7f, 0xf66, 0x6, 0x1, 0x0, 0x1ff, 0x80, 0x0, 0xfffffffffffffffd, 0x4, 0x6, 0x1, 0x1, 0x0, 0xbc1, 0x4, 0x4, 0x4, 0x7f, 0x5, 0x7ff, 0x6, 0x8, 0x10000, 0x800, 0x1800000000000000, 0x400, 0x10001, 0x401, 0x2, 0x40, 0x1, 0x9, 0x8, 0x9, 0xbced, 0x5, 0xfffffffffffffbff, 0x9, 0x6, 0x100, 0x800, 0x9773, 0xffffffffffffffe1, 0x6, 0x0, 0x1, 0x9, 0x401, 0x7, 0x3, 0x3ff, 0x9, 0x3, 0x10000, 0x7ff, 0x7fffffff, 0xcf, 0x7, 0x2, 0x5, 0x6, 0x7, 0xff, 0x2, 0x3, 0x10001, 0x1, 0x2, 0x6, 0x6, 0x0, 0x1, 0x6, 0x7, 0x2, 0x24000000000000, 0x800, 0x4, 0x4, 0x8, 0x7, 0x52, 0x5, 0x3677, 0x7ff, 0x3f, 0x401, 0x100, 0x6, 0x7, 0x7fffffff, 0x83, 0x2df0, 0x5, 0x2d, 0x1, 0x37a, 0xf773, 0x6, 0xffffffff, 0x200, 0x3f4c, 0x1, 0x7fff, 0x10001, 0xfffffffffffffff9, 0x400, 0x2e7, 0x8, 0x8000, 0x2, 0x100000001, 0x3, 0x40, 0x9, 0x4, 0x4, 0x0, 0xef], 0x8, [{[0x3, 0x3ff], @empty}, {[0x8, 0x8001], @rand_addr=0x8f}, {[0x1, 0x4], @multicast1}, {[0x7, 0x735], @loopback}, {[0x9, 0x5727], @local}, {[0x4, 0x7fff], @rand_addr=0xffffffffffff2b80}, {[0x4, 0x9], @initdev={0xac, 0x1e, 0x1, 0x0}}, {[0xdce, 0x9], @multicast1}]}}}}], [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x9, 0xfffffffffffffa76, 0x2}}}, @common=@dnat={'dnat\x00', 0x10, {{@dev={[], 0x24}, 0xffffffffffffffff}}}], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x200, 'syz0\x00', 0x912}}}}]}]}, 0x2106) sendmsg$sock(r1, &(0x7f0000002600)={&(0x7f0000002300)=@nfc={0x27, 0x1, 0x1, 0x6}, 0x80, &(0x7f0000002580)=[{&(0x7f0000002380)="1b76a75589ce7ecce461dc5c19983a1af983fca9284cff959e4fd269fc88683056a410bbd80c677dc653d91d0e7ae2f19301697031284911e0d85ee8b732ea7dbfe945ea3e5119c6ca65421a182026e16797d43a6ad5350e8f07b9ce0719681a434c9235ffa465dcbfc7fab04ee81096536a7d4d7ba4d850744296bfaa7bfed6a4c0781f648bedbe52242c6790ee0ec24abfdf91aefb932c4a2a6a8435d7c27a796bffcee27a19efb7825243f2cd2c4a153401c7c443b10c161e0643ccd5d1faf8863f5e7c90642b945ff3fbc0", 0xcd}, {&(0x7f0000002480)="935d6d3a24bbed5c2d36a22f55f4fefcf05cb089cc4d56e88b2ecc9e5db3de155419ac902ee5734451104604cf6b3e6eda8253047eeb7f2ca72cdb0117fbd0d09a675b139ffd667b6d5a834d9b9f09a5f32f2ed0d07555d2acfce467f4c0d59bf5acfdf38dc95d26e3a93ae134d796d979eb2ba706d14539128625a2eb0b664cb6bc8aee071857f2cb5740c532ae45035f5cf12aaac975bc80568ae4a32ed81a31d77bbfffaea30e366f5c0e42fe231ab74bd4457a1f139ca7e210895eb7b4b40a14773d6f9178474485393433cb8855aa7ecc89772d6b1214b7e70ca4a0c9e0fc4c0eb4600d7a0cf580bb39697a5fdc42f2dc3c38", 0xf5}], 0x2, &(0x7f00000025c0)=[@mark={{0x14, 0x1, 0x24, 0x80000000}}], 0x18}, 0x40000) [ 517.958607] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 517.958615] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 517.973946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 517.973952] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 518.079342] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value 05:51:47 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@uni_xlate='uni_xlate=1'}, {@rodir='rodir'}], [{@appraise='appraise'}]}) 05:51:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x3, 0x0, 0x2000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = dup2(r0, r1) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x1}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=r3, 0x4) [ 518.219096] FAULT_INJECTION: forcing a failure. [ 518.219096] name failslab, interval 1, probability 0, space 0, times 0 [ 518.242516] CPU: 1 PID: 23396 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 518.249651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 518.259010] Call Trace: [ 518.261607] dump_stack+0x138/0x197 [ 518.265251] should_fail.cold+0x10f/0x159 [ 518.269413] should_failslab+0xdb/0x130 [ 518.273397] kmem_cache_alloc+0x2d7/0x780 [ 518.273412] ? save_trace+0x290/0x290 [ 518.273435] mmu_topup_memory_caches+0x86/0x320 [ 518.273452] kvm_mmu_load+0x21/0xd40 [ 518.273476] vcpu_enter_guest+0x2eb4/0x5210 [ 518.281404] ? perf_trace_lock+0x500/0x500 [ 518.281418] ? __lock_is_held+0x10/0x140 [ 518.281433] ? emulator_read_emulated+0x50/0x50 [ 518.281442] ? lock_acquire+0x16f/0x430 [ 518.281451] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 518.281472] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 518.281484] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 518.289845] kvm_vcpu_ioctl+0x401/0xd10 [ 518.289859] ? kvm_vcpu_block+0xbb0/0xbb0 [ 518.289872] ? trace_hardirqs_on+0x10/0x10 [ 518.289888] ? save_trace+0x290/0x290 [ 518.300629] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value [ 518.302479] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 518.302490] ? __f_unlock_pos+0x19/0x20 [ 518.302502] ? __fget+0x210/0x370 [ 518.302514] ? find_held_lock+0x35/0x130 [ 518.302523] ? __fget+0x210/0x370 [ 518.302538] ? kvm_vcpu_block+0xbb0/0xbb0 [ 518.311146] do_vfs_ioctl+0x7ae/0x1060 [ 518.311160] ? selinux_file_mprotect+0x5d0/0x5d0 [ 518.311171] ? lock_downgrade+0x6e0/0x6e0 [ 518.311183] ? ioctl_preallocate+0x1c0/0x1c0 [ 518.311193] ? __fget+0x237/0x370 [ 518.311209] ? security_file_ioctl+0x89/0xb0 [ 518.311221] SyS_ioctl+0x8f/0xc0 [ 518.311232] ? do_vfs_ioctl+0x1060/0x1060 [ 518.326060] do_syscall_64+0x1e8/0x640 [ 518.326071] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:51:47 executing program 1 (fault-call:6 fault-nth:21): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 518.326091] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 518.326099] RIP: 0033:0x459879 [ 518.326108] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 518.334196] ORIG_RAX: 0000000000000010 [ 518.334203] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 518.334209] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 518.334215] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 518.334221] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 518.334227] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:47 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}], [{@appraise='appraise'}]}) 05:51:47 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x0, 0x0) dup2(r1, r0) 05:51:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x444000) ioctl$VIDIOC_S_SELECTION(r2, 0xc040565f, &(0x7f0000000080)={0x8, 0x3, 0x2, {0x9d, 0x2, 0x7, 0x6}}) [ 518.569546] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value [ 518.598777] FAULT_INJECTION: forcing a failure. [ 518.598777] name failslab, interval 1, probability 0, space 0, times 0 [ 518.617277] CPU: 1 PID: 23423 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 518.624499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 518.633934] Call Trace: [ 518.633951] dump_stack+0x138/0x197 [ 518.633970] should_fail.cold+0x10f/0x159 [ 518.640148] should_failslab+0xdb/0x130 [ 518.640164] kmem_cache_alloc+0x2d7/0x780 [ 518.640176] ? save_trace+0x290/0x290 [ 518.640188] ? check_preemption_disabled+0x3c/0x250 [ 518.640204] mmu_topup_memory_caches+0x86/0x320 [ 518.656303] kvm_mmu_load+0x21/0xd40 [ 518.656322] vcpu_enter_guest+0x2eb4/0x5210 [ 518.665974] ? perf_trace_lock+0x500/0x500 [ 518.665990] ? __lock_is_held+0x10/0x140 [ 518.682270] ? emulator_read_emulated+0x50/0x50 [ 518.686940] ? lock_acquire+0x16f/0x430 [ 518.686954] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 518.686970] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 518.695927] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 518.695946] kvm_vcpu_ioctl+0x401/0xd10 [ 518.695957] ? kvm_vcpu_block+0xbb0/0xbb0 [ 518.695970] ? trace_hardirqs_on+0x10/0x10 [ 518.705827] ? save_trace+0x290/0x290 [ 518.705838] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 518.705847] ? __f_unlock_pos+0x19/0x20 [ 518.705857] ? __fget+0x210/0x370 [ 518.713948] ? find_held_lock+0x35/0x130 [ 518.713961] ? __fget+0x210/0x370 [ 518.713975] ? kvm_vcpu_block+0xbb0/0xbb0 [ 518.721975] do_vfs_ioctl+0x7ae/0x1060 [ 518.721988] ? selinux_file_mprotect+0x5d0/0x5d0 [ 518.721996] ? lock_downgrade+0x6e0/0x6e0 [ 518.722007] ? ioctl_preallocate+0x1c0/0x1c0 [ 518.722017] ? __fget+0x237/0x370 [ 518.722035] ? security_file_ioctl+0x89/0xb0 [ 518.741834] SyS_ioctl+0x8f/0xc0 [ 518.741845] ? do_vfs_ioctl+0x1060/0x1060 [ 518.741860] do_syscall_64+0x1e8/0x640 [ 518.741867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 518.741884] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 518.748091] input: syz1 as /devices/virtual/input/input315 [ 518.749882] RIP: 0033:0x459879 [ 518.749888] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 518.749900] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 518.749905] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 518.749912] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 518.763180] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 518.763187] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:48 executing program 4: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:51:48 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x9, 0x468802) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={0x0, r1, 0x10, 0x1}, 0x14) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000080)=0x2ed) 05:51:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) 05:51:48 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x101c00, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x1f, 0x1b4d, 0x7, 0x40, 0x10, r1, 0x5, [], r2, r3, 0x4}, 0x3c) r4 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 05:51:48 executing program 1 (fault-call:6 fault-nth:22): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:48 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x0, 0x0) dup2(r1, r0) [ 518.955534] FAT-fs (loop4): bogus number of reserved sectors [ 518.962769] FAT-fs (loop4): Can't find a valid FAT filesystem [ 518.996505] FAULT_INJECTION: forcing a failure. [ 518.996505] name failslab, interval 1, probability 0, space 0, times 0 [ 519.048338] CPU: 1 PID: 23444 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 519.055485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 519.064846] Call Trace: [ 519.067440] dump_stack+0x138/0x197 [ 519.071107] should_fail.cold+0x10f/0x159 [ 519.075268] should_failslab+0xdb/0x130 [ 519.079245] kmem_cache_alloc+0x2d7/0x780 [ 519.079257] ? save_trace+0x290/0x290 [ 519.079273] ? check_preemption_disabled+0x3c/0x250 [ 519.087198] mmu_topup_memory_caches+0x86/0x320 [ 519.087216] kvm_mmu_load+0x21/0xd40 [ 519.096875] vcpu_enter_guest+0x2eb4/0x5210 [ 519.096889] ? perf_trace_lock+0x500/0x500 [ 519.096900] ? __lock_is_held+0x10/0x140 [ 519.096911] ? emulator_read_emulated+0x50/0x50 [ 519.109143] ? lock_acquire+0x16f/0x430 [ 519.109157] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 519.109173] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 519.109184] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 519.117789] input: syz1 as /devices/virtual/input/input316 [ 519.117889] kvm_vcpu_ioctl+0x401/0xd10 05:51:48 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000080)={{0x2, 0x4e20, @local}, {0x306, @dev={[], 0x15}}, 0x4, {0x2, 0x4e21, @local}, 'sit0\x00'}) [ 519.131689] ? kvm_vcpu_block+0xbb0/0xbb0 [ 519.131703] ? trace_hardirqs_on+0x10/0x10 [ 519.131717] ? save_trace+0x290/0x290 [ 519.131724] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 519.131733] ? __f_unlock_pos+0x19/0x20 [ 519.131745] ? __fget+0x210/0x370 [ 519.144910] ? find_held_lock+0x35/0x130 [ 519.144923] ? __fget+0x210/0x370 [ 519.144938] ? kvm_vcpu_block+0xbb0/0xbb0 [ 519.144950] do_vfs_ioctl+0x7ae/0x1060 [ 519.153066] ? selinux_file_mprotect+0x5d0/0x5d0 [ 519.153075] ? lock_downgrade+0x6e0/0x6e0 05:51:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) timer_create(0x3, &(0x7f0000000000)={0x0, 0xf, 0x7}, &(0x7f0000000080)=0x0) timer_gettime(r2, &(0x7f00000000c0)) [ 519.153085] ? ioctl_preallocate+0x1c0/0x1c0 [ 519.153098] ? __fget+0x237/0x370 [ 519.153117] ? security_file_ioctl+0x89/0xb0 [ 519.153130] SyS_ioctl+0x8f/0xc0 [ 519.166050] ? do_vfs_ioctl+0x1060/0x1060 [ 519.166067] do_syscall_64+0x1e8/0x640 [ 519.166076] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 519.166094] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 519.166103] RIP: 0033:0x459879 [ 519.173500] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:51:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x100) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x7ff) 05:51:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) timer_create(0x3, &(0x7f0000000000)={0x0, 0xf, 0x7}, &(0x7f0000000080)=0x0) timer_gettime(r2, &(0x7f00000000c0)) [ 519.173512] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 519.173518] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 519.173524] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 519.173531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 519.173537] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:48 executing program 1 (fault-call:6 fault-nth:23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:48 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000240)='/proc/capi/capi20ncci\x00', 0x80600, 0x0) ioctl$TIOCGDEV(r1, 0x80045432, &(0x7f0000000280)) ioctl$BLKROGET(r1, 0x125e, &(0x7f00000002c0)) r2 = getpgrp(0xffffffffffffffff) ptrace$getsig(0x4202, r2, 0x0, &(0x7f0000000080)) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0x6000, 0x0) setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, &(0x7f0000000200)={0x2, 0xe8}, 0x2) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) ioctl$sock_bt_cmtp_CMTPCONNADD(r1, 0x400443c8, &(0x7f0000000300)={r3, 0x7ff}) 05:51:48 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(0xffffffffffffffff, r0) [ 519.424418] FAULT_INJECTION: forcing a failure. [ 519.424418] name failslab, interval 1, probability 0, space 0, times 0 [ 519.479511] input: syz1 as /devices/virtual/input/input317 [ 519.486349] CPU: 0 PID: 23471 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 519.493467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 519.502814] Call Trace: [ 519.502834] dump_stack+0x138/0x197 [ 519.502859] should_fail.cold+0x10f/0x159 [ 519.502876] should_failslab+0xdb/0x130 [ 519.502891] kmem_cache_alloc+0x2d7/0x780 [ 519.502902] ? save_trace+0x290/0x290 [ 519.502915] ? check_preemption_disabled+0x3c/0x250 [ 519.502931] mmu_topup_memory_caches+0x86/0x320 [ 519.502944] kvm_mmu_load+0x21/0xd40 [ 519.534798] vcpu_enter_guest+0x2eb4/0x5210 [ 519.534813] ? perf_trace_lock+0x500/0x500 [ 519.534824] ? __lock_is_held+0x10/0x140 [ 519.542827] ? emulator_read_emulated+0x50/0x50 [ 519.542839] ? lock_acquire+0x16f/0x430 [ 519.542854] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 519.542870] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 519.542879] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 519.542896] kvm_vcpu_ioctl+0x401/0xd10 [ 519.542909] ? kvm_vcpu_block+0xbb0/0xbb0 [ 519.542919] ? trace_hardirqs_on+0x10/0x10 [ 519.542932] ? save_trace+0x290/0x290 [ 519.542941] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 519.542949] ? __f_unlock_pos+0x19/0x20 [ 519.542960] ? __fget+0x210/0x370 [ 519.574671] ? find_held_lock+0x35/0x130 [ 519.574682] ? __fget+0x210/0x370 [ 519.574696] ? kvm_vcpu_block+0xbb0/0xbb0 [ 519.574706] do_vfs_ioctl+0x7ae/0x1060 [ 519.574719] ? selinux_file_mprotect+0x5d0/0x5d0 [ 519.574727] ? lock_downgrade+0x6e0/0x6e0 05:51:48 executing program 0: prctl$PR_SET_MM(0x23, 0x6, &(0x7f000000a000/0x1000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000001c0)=0x100000001, 0x4) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x2, 0x0) ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000480)={0x4, 0xff, 0x80000000, 0x7}) r3 = add_key(&(0x7f0000000200)='blacklist\x00', &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa) r4 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000540)="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", 0x831, r3) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f00000000c0)={r4, 0xe9, 0xb5}, &(0x7f0000000100)={'enc=', 'raw', ' hash=', {'sha512-generic\x00'}}, &(0x7f0000000280)="136a8d38e3fa3743e1d21674d751df1992ba0159183edfc84b747bc8bc376ad78047ef6b726081b9bafff7b6de3361aa6ab43c908883f81e7392d5074d3b4c2232782021dafa75ae32cffb8c3af9e33d05d6806a43d3551eaaecfd32a967ca8c55ec1bd6a8beec52aab5e8032c27e15877236e1205ce2375bd29214ac6118b6198a62fda252a7147030e7688742539ec21562a76812d57f6e9c99fd07dbb61a8583247abca4cc1e64c325207befbf06621e724b00d6be80098a5442c1479564fde9fc4158b5844d1a3ddffee28b29149a6a7b1c304caccb6ae33c3f65841337a511ad8b145bb5907ab", &(0x7f0000000380)=""/181) 05:51:48 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) socket$inet6(0xa, 0x0, 0x0) [ 519.574739] ? ioctl_preallocate+0x1c0/0x1c0 [ 519.574750] ? __fget+0x237/0x370 [ 519.574767] ? security_file_ioctl+0x89/0xb0 [ 519.574778] SyS_ioctl+0x8f/0xc0 [ 519.587090] ? do_vfs_ioctl+0x1060/0x1060 [ 519.587105] do_syscall_64+0x1e8/0x640 [ 519.587115] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 519.618788] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 519.618798] RIP: 0033:0x459879 [ 519.618806] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 519.632071] ORIG_RAX: 0000000000000010 [ 519.632078] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 519.632084] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 519.632091] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 519.632097] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 519.632102] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:49 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) openat$smack_task_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/attr/current\x00', 0x2, 0x0) write$UHID_INPUT2(r1, &(0x7f0000000040)={0xc, 0x12, "9bd61a977c58ad6ae72b1920fa2ea356ff31"}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:49 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:51:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f00000000c0)=0x2) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000080)={r0}) r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/status\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x44, 0x0, &(0x7f0000000140)=[@increfs_done={0x40106308, 0x1}, @acquire_done={0x40106309, 0x2}, @enter_looper, @acquire={0x40046305, 0x1}, @decrefs={0x40046307, 0x1}, @acquire], 0x1000, 0x0, &(0x7f0000000280)="8b8110f345c2b01907d701ade97bcbeca3640332f54443a686f3bb0ddfc1e0e40af4f1747dcdc11f0b300274752668a7cd2debd631b336ec975ece2ceaba47566beb23effdaff7cbf5ab0fcdf89bcd490ac01ed04768bce3f29687d38e117dbf8d0496d190cde1ad274ffe65c05be7bb8fb205031e5c3c89cb1b76a016c89fd9998b31f9e058d8b8b2e85bb123ac5abb6e4e470a25ccd9ba4e143db3f68fbae4e9a50fb25a42d17d159555fa5ba4658f9ed6e023474d1857fa3c969adac1dc2cacae46ee53b206c8af801509db4fbf5ca357d1090ec7626d2a8c1707fcfbc6e5552b6c31193ee6ad16808b63f6a3f9ff7beab40199d29c1f1b07d916635d2e5b70afda5bcc2decb9373b6ca11a579feed5bed417b140b2163beffbb1ba5464cc8449a92f476e9a928425b7d0993806b188e7f4df9d2f5e0ac6b2e1c57840f21f5500f0e22f72e7b13db1378072a5144f01bd39d8d5a695f0d664457b7a2baff3d500c000112c64ba90fd70a6a91f65136a3ee15befe4b203f6e62e21989b1ebc98aaded2ff0272d38311b1979f83891dcc2f710047d216800c06e65257fa888cb95ec074c89bf2d904c09e1a31476fa1368f43f95b1e56b7ef4372b6aad252447d2d1deb81b6867acc413a215beb0ff3e1ddd3675d34e4a734f53161e2de030eacf79e6a821eacc36f4dfa23c9c271d91f003872b7742103e2ef013552d70f01e413f60837b2c702354b9ec79d705ff1a42c582597088780b46b6efe74245041d7dca07599c6f41cc030e729542aed66166b9cd68a93ec74ee0df7315951b0e2ef020da042d02a0fb96694109cddc7d859e04f616e4051f0d63301425e792e9fd012b07e9a85c09cc7d7112ef646175358d833b54454d3eaae4c0b506889046f085bb25f29b103bd33f85aa4480143ebe984810f8536ee0932523e9b51e6d9f509ef1f6faf3f9e0c2b1bd4deed2543934dd72f08dc857fe46f8c932c2bae06fda6cc61d4c63ccc7d06eda83211918ee2f783303c48be40519642e150e9fac4a87e13d6b4c036ec968f90a6540e3d9a715cf401c3375bd9fbd8ac00f0b383a65a7f2eb293b588f2379837ea5cd9b766add8c5363e555009c23ecbe679897a9c0ba0ea1babd79ed13701c9744a4e3380f399a9e6af3dfc331ea9d737e3251a0f4292829db514714103f57970eed553502ccca304a672deef4516937df76ecb383787333c1c8e5bfa892b43d51b99fd67035da52a62bf4d9cfb8cc389cb835b139c9c02087a24dee65810661ca4886e3b8c57fc3b4f8e88bcc97014bed3e43a2098ecd966b0826de82cba69d2b0406635dbb243c7f515442f757071974f099d1919930dd74034413f10e2e0323d4c91c1713b872850b87940c263350f41cd2f4e268cd556303ebb91c36348da80d3731891d8f0131d86d7b6f99d75e2fe4f96c953d01d68ca5f2935debc76c732382225dde9c3280eb20c3fe17a0aed942f2cfce3daf6b0b8f4dbcad50378ec4164986d7ee8735278e0bb45062c322b572852422dea381468ceeabfa36ca3fa01a696f42e42cbf55429367423f3f6aec3c5e455353fc3ab3b583ae12491b45a1b67cdbcdc64e059d42515dbaef49a41493fe93f3fdffe1bc328b3695c2b73ecddf570c12a0738d8920e1053d465089776f539512a8f649c7e20b997753004255bb1ac1379793c3bd5f1d45dbe60bcac312a6f0606ed63c2627bd6e1f64c819f8e9521f071f2c6c21b94072bed5ced309bc75001cacdeee75102bc3773bbbed95742101b37ab0de5db672dc4c316a1e32b67ad692281f860c35d25e3e2157154d0239229172aff26454fde0ea56a50a3f3e03f20cba94a97ef4b7f8946cf223dfe26be0ef4670b32f976352c6118e5c9d63c2941ec92bf2712aecc52d496d3873a94c3c39f21ecfb4bc3a7e5974f6d94ae844df0745df55eabdc1b6d0c5add53887a2b922dfa7601018b62fc1ff0782de49504d95cc77f8c3072f64cdc7869e4907dc0ddd9e8c5ad58bf5cd21334635711f805b354ada4eded044f14484ed6f66cc946651ece930a0f5c0ffeae08adfb9326e9e49aadb659c930eb5d890235d7452f927264ac17c581af18d16eb9d54d23e9a9bd8c73fa41e6fa7a603c547992b80a02dd59c6083e75d9be85a8877a92bd9262a9071111be67494f5a7f2de85224929d891b6648ee76078c9a5353acc05e6d3cacbd24023f5a868feef1859d8def84a2b05b53d19b4f688b42ed7bde640b2d74e59bc9bd3b71b408f890a9f2669c4a55bb1adda5ddaeea64c6ef4a78d1d6d05e1693bd89b75a75f885a20e169fcdd1aa2ad937850311b71cfde717477183b5770f6d24ab2ef6dc56380098ddba927c0383c2cf19f76cebb7fc790fa3c00de2bfedc811fc2e7b427fff3fb62f64fda8ec34f61fa2f916237872073ffd99bc511e7ba5e17acf634a3e34906363c96361e2c5487b068a7edf0c995123447f172f6ed15262c7dbee351974fde1a6b34393abd3c5c44c8d4ff74d4fc544ebef88f15b2d6cbd63865e2e7134b6acadd5436aa5dc23444ce7b03ba60dba3bd9197c9398a3777f28ab694ce982e7d5f33a567f5dae9f83e71dd362b27d4adfb538553f856c7e4a3a229e0ca0fefdab5436a61b48ab90a9ae99a29f78cb0f318d1ecd4ab3783c133d683ad3cd46db609e49f469fa754192e3ce0639849df0f2b10a800cf175d324cf744e904063cc0a54469841c46b777856a4a52b09b851e561b4f7bcbdef1581f72ca5393d8b934c96dd54d0a65f0eb40d48f12328164fac4bdde94b986091eb7d4ed5329185cce4928514e8e34c761ce37b5bc6465d250891475e683a3f8cc70737fc752ce912ba07d4fdd70c47ba18101f9b4a072ca86139b8ab4847ff806ab23a919e0b969d9b3b58b9ce5779fc00c873e36e2d203c64a840fc2c4e4089d99d15179b992f10f0131f480e06fc508f44aa5b811d573cbd221623ff3dea2299c4ce174ec2eed1c3716d43581cde328688b0fc5c924886783e12c809c550bca26816e2f2f9f8f9f884b2b16ad3cfde8501b370c66d21998721fcb63116b79a43d23e55952775228e80a18e23bd4dc9a5c01eddd9d22edfab6e60740c265f3534b4c859ad249962444bfefe4c77d8ccbb5fa5160aff2cd60c1d6daeb2e6391c986b67bde9a9ca25664c18ae9375729816ef8e05f230799c1456163b8bf85170214bda58b1ff47f603c324c462ecfc0ea6bf7422b372a6f8b57b14b6bdc5d459b7468b621a4a46e3d7c63760977c3d1e2363c85e0a1113d59b35f8aad74afc5b76cf2cbd21a2be84a02d0ca2def297bc90641cf52335ea5354702a4eb7e0585e176a33df74f61b39e27065aacfd202af6f2714c5659d8833bdb2f95e9e85899c960de6df6d9048f5334d827c6ee5e994098918528900b433d3110146490e4a4e07306aff594954f68dc2777b14e0b53a8161a5a007127254d7c7d5e0138f3b9703c85e2b7dd7cfda34e1157bbdb8b609e4ce5767d27933cbef631948b2c4b4eb09249a78e351db8d745512d7a82828ccff6772a0418699bcd670cd259f094997678b3d1f4656fc84f15bef58fff76fc9c7c6f006626a502c57b7bae18251017e06d265ad603f05f28f93d0e45c1cd48966ff37af8a319af32eb5b082f8f80e299c7139fbef8fddf8682149e08d24c1183ff22af3037fc7c715e78c75dc1e7f5ec4c76092210c47a55b286d025aff9a716e37057ee7a19f7c729a1baef1ce526d61a9b9b3d1fb3a246f156cc8b51882896509f1540d8ecdac9d7449aecbae6fc3321ea0b3ebb910a447f25a0f4c455ed993b18bec1cb1851219a3e676b9fe034fff4f79f363f5e335c5440a2dfdf2c2c21fb3c4babdc65d481846aa1e410d755871fab04961ca722b50a114831c81a339ecbc9461e605eb63ae700c44ed5fc26b9e3dbc07c8b7a9273c77fef0e2edd2ee57866816f17435a8f351cffb7e5f2ca47e901f9d2afccc957856b606595a1ebcddabe86fad8d151210fd4183cb96386cf5cebd215854560040466343f76b9025182b772c2b682cf24f7e5cd5d9de95e263194bdcf24b75cb8a3aabee61d92d261e38ea1404c705fd216fdf2bc82f5952b7fa9920c82e857742aafab32a2fec75d02907c3c4e5d1d65967bf4313b274f95992c613f7cb126ddaaa1628a1626a00274f14c4e9d60c6415724012f0a5a47544c69100e238ea67827e4eb549bbae72771415de90ec29a1e8bfa3a9b3878f59d00693324b05bb91959ac318042ba27ee2894c394915fe463d51e85d9267cfaa6957bceeaa3bfb782525ec2025a39a44cd44dec31a3a0b80ef125812801e84d6b6b5b1e6eec14f698a08cd8cb435681072d6f8f2165ec8bbf8919e69cb0d4528e17723ccc0891a8a6723d4eaabf36338d4676fffa8f2112d710e6b034d4002f8b0554abd8228ed1d4d3ed75bcc49a85da9541fae464378cd82441b2d40625733f883e64a540aba9591f1543c479cb8bf51efa924516221b32cf22cf3ac395889e60a25f653a2dd39f7a2484d68d4cbb3eb8385ca92bf922855661ff24621c12ec887e136d0317c678d82749b128b1612ac4a4478a281b45d019e2c3f839b290f1c30c7e7dacb1098b6548759c13510f462c25ba0c019b25905df498fc773eed59d823d38f35aba4638986134a3f040635cf543d8a02f4d151b0c9ca51f28f29a94463842b9fe70d0c5f940560543e1a48a7a706eac4c0967b034270f99298eda0b231f59bc898a185d0c15bbea6f4632e476d80ad1abecc9fb7368c24a6e5f0275916f37b6511a4ea570fe4ef0202f597e196c3b32b8d0e06f1c3956baf9ed27edc9f14aaa13d8f023394b74885e1f34dee1f394d86a1ccb92d27420d28009ad8d0e100279a86362fa8f36245e3d5e70b45e36505f7f942cb85377212cfdb72fcd37607715088a1c62015580cb7447df67b29ce5fed62f9dd76dad3cca6bddce0d466a0da627f8f708fc51576e7011f93823f48bccaca169ff76989b0b362e698629d5536bd2868c041b08ebf132731524b146270effbecfb879ab51da4766852aedf626118b97d09369c1e661cd9b69aea925c82ee29f589069a2f4dd949cb2ab1dadbc7368dd9f02744c2b3a3ca87064585c696fbbcfc869466aa822ba1ab089a0658345cd2411eee8948d65e4b22c4654548972c1d20961fd827f6d75f6e50f2fff5bfc82225be83ca9ee8b220a5ffde5bb08a972cfd082c2a21781cd8600ac02aeb41df2f484ee67bd1f1436b8dd14fc0db9f58ad6d4706693846561350fc5fe1cb9794d9ce26a8fae446ad55b6083ede5a6bb8ed60d617e2e95e323a740634dfdf0f0b86bc08e2ca9f5d9832a2fbeb76abc70c8db25ea34effe90c7f9f8045e1a472eaae5980c47c40170d7ea1aed0cf36812fdfadbf3230e4f0cb2603b9d05e817598a674c522d15beddf15a13cf6e6599a8c5e9996ec0a945828adcb79a7691ff943e7a56ad18c2642aee88fe7406bd6dd526c1e37e4c03149e281146f3a2904fc32a010861ca7a0d99631d76a6cd7905b392e23f1d8b8eb4b6577f47737e960e87e2929802a15488c24f1a8060809daca806e9d38f104c43171afc15831d3f7892338a2ddd987d8d87c8006b77850c806009bbf0f75629078e73382d6e8334c30a0fd97b446fb484a494bbb328323a4e714a2d0bffa4e5683d58fd482a753790b9937ef947adf3b6f30258852156e2d55b0d84fd92024c7c75e230b83dcfb9e365d32bd5b521594e3bef37ad563aaf7ac6c3d69eec8469f0ff2706b7"}) ioctl$SIOCRSSL2CALL(r1, 0x89e2, &(0x7f0000000200)=@default) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0x2, 0x2000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000240)={0x10201, 0x0, &(0x7f0000ffc000/0x4000)=nil}) 05:51:49 executing program 1 (fault-call:6 fault-nth:24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:49 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(0xffffffffffffffff, r0) 05:51:49 executing program 2: socket$inet(0xa, 0x2, 0x80) openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) [ 519.827409] binder: BINDER_SET_CONTEXT_MGR already set [ 519.833365] binder: 23484:23502 ioctl 40046207 0 returned -16 05:51:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/psched\x00') r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, r3, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3f}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x24040880) getrandom(&(0x7f0000000080)=""/124, 0x7c, 0x3) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 519.886306] input: syz1 as /devices/virtual/input/input319 [ 519.899844] FAULT_INJECTION: forcing a failure. [ 519.899844] name failslab, interval 1, probability 0, space 0, times 0 [ 519.945115] CPU: 0 PID: 23510 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 519.952245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 519.961612] Call Trace: [ 519.964044] binder: BINDER_SET_CONTEXT_MGR already set [ 519.964214] dump_stack+0x138/0x197 [ 519.969581] binder: 23523:23524 ioctl 40046207 0 returned -16 [ 519.975595] should_fail.cold+0x10f/0x159 [ 519.975610] should_failslab+0xdb/0x130 [ 519.975621] kmem_cache_alloc+0x2d7/0x780 [ 519.975632] ? save_trace+0x290/0x290 [ 519.975652] mmu_topup_memory_caches+0x86/0x320 [ 519.975666] kvm_mmu_load+0x21/0xd40 [ 519.975682] vcpu_enter_guest+0x2eb4/0x5210 [ 519.975694] ? perf_trace_lock+0x500/0x500 [ 520.010247] ? __lock_is_held+0x10/0x140 [ 520.010263] ? emulator_read_emulated+0x50/0x50 [ 520.010272] ? lock_acquire+0x16f/0x430 [ 520.010281] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 520.010298] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.010306] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.010323] kvm_vcpu_ioctl+0x401/0xd10 [ 520.010335] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.018606] ? trace_hardirqs_on+0x10/0x10 [ 520.018621] ? save_trace+0x290/0x290 [ 520.018630] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 520.018639] ? __f_unlock_pos+0x19/0x20 [ 520.018650] ? __fget+0x210/0x370 [ 520.046048] ? find_held_lock+0x35/0x130 [ 520.046061] ? __fget+0x210/0x370 [ 520.046076] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.046088] do_vfs_ioctl+0x7ae/0x1060 [ 520.054433] ? selinux_file_mprotect+0x5d0/0x5d0 [ 520.054443] ? lock_downgrade+0x6e0/0x6e0 [ 520.054456] ? ioctl_preallocate+0x1c0/0x1c0 [ 520.054467] ? __fget+0x237/0x370 [ 520.054484] ? security_file_ioctl+0x89/0xb0 [ 520.074709] SyS_ioctl+0x8f/0xc0 [ 520.074721] ? do_vfs_ioctl+0x1060/0x1060 [ 520.074735] do_syscall_64+0x1e8/0x640 [ 520.074746] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 520.082325] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 520.082335] RIP: 0033:0x459879 [ 520.082341] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:51:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:49 executing program 4: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) socket$inet6(0xa, 0x0, 0x0) 05:51:49 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(0xffffffffffffffff, r0) [ 520.082353] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 520.082358] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 520.082362] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 520.082367] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 520.082372] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:49 executing program 1 (fault-call:6 fault-nth:25): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x9) [ 520.277909] input: syz1 as /devices/virtual/input/input320 [ 520.299423] binder: BINDER_SET_CONTEXT_MGR already set [ 520.373049] FAULT_INJECTION: forcing a failure. [ 520.373049] name failslab, interval 1, probability 0, space 0, times 0 [ 520.404010] CPU: 1 PID: 23550 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 520.411150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 520.420520] Call Trace: [ 520.423109] dump_stack+0x138/0x197 [ 520.423133] should_fail.cold+0x10f/0x159 [ 520.430898] should_failslab+0xdb/0x130 [ 520.430913] kmem_cache_alloc+0x2d7/0x780 [ 520.430922] ? save_trace+0x290/0x290 [ 520.430935] ? check_preemption_disabled+0x3c/0x250 [ 520.430955] mmu_topup_memory_caches+0x86/0x320 [ 520.439054] kvm_mmu_load+0x21/0xd40 [ 520.439073] vcpu_enter_guest+0x2eb4/0x5210 [ 520.447857] ? perf_trace_lock+0x500/0x500 [ 520.447870] ? __lock_is_held+0x10/0x140 [ 520.447882] ? emulator_read_emulated+0x50/0x50 [ 520.460625] ? lock_acquire+0x16f/0x430 [ 520.460638] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 520.460655] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.468910] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.468931] kvm_vcpu_ioctl+0x401/0xd10 [ 520.468944] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.474315] binder: 23523:23530 ioctl 40046207 0 returned -16 [ 520.477548] ? trace_hardirqs_on+0x10/0x10 [ 520.477564] ? save_trace+0x290/0x290 [ 520.477576] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 520.487393] ? __f_unlock_pos+0x19/0x20 [ 520.496345] ? __fget+0x210/0x370 [ 520.496358] ? find_held_lock+0x35/0x130 [ 520.496368] ? __fget+0x210/0x370 [ 520.523241] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.530711] do_vfs_ioctl+0x7ae/0x1060 [ 520.530723] ? selinux_file_mprotect+0x5d0/0x5d0 [ 520.530733] ? lock_downgrade+0x6e0/0x6e0 [ 520.530743] ? ioctl_preallocate+0x1c0/0x1c0 [ 520.530754] ? __fget+0x237/0x370 [ 520.530772] ? security_file_ioctl+0x89/0xb0 [ 520.564567] SyS_ioctl+0x8f/0xc0 [ 520.567937] ? do_vfs_ioctl+0x1060/0x1060 05:51:49 executing program 5: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x23cec73ae4977be5) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x7) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r1, r1) ioctl$BLKRESETZONE(r1, 0x40101283, &(0x7f0000000040)={0x1, 0x1000}) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x4, 0x2000) 05:51:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = dup(r0) ioctl$DRM_IOCTL_AGP_INFO(r2, 0x80386433, &(0x7f0000000080)=""/77) ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5) 05:51:49 executing program 2: r0 = socket$inet(0xa, 0x80000, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip6_mr_cache\x00') ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f00000000c0)) r2 = dup(r0) ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000000000)=0x2) 05:51:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f000000b000/0x2000)=nil}) [ 520.572090] do_syscall_64+0x1e8/0x640 [ 520.575978] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 520.580826] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 520.586020] RIP: 0033:0x459879 [ 520.589221] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 520.596927] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 520.596934] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 520.596939] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 05:51:49 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, 0xffffffffffffffff) 05:51:49 executing program 1 (fault-call:6 fault-nth:26): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 520.596946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 520.596952] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:49 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x5, 0x1) ioctl$SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x20000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000ffa000/0x2000)=nil}) ioctl$KVM_DEASSIGN_DEV_IRQ(r2, 0x4040ae75, &(0x7f0000000000)={0x0, 0xfff, 0x1c, 0x102}) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="57b0d4ea5b2f"], &(0x7f0000000100)=0xa) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000140)={r3, 0x9, 0x101, 0x81}, &(0x7f0000000180)=0x10) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x10004, 0x0, &(0x7f0000ffa000/0x3000)=nil}) [ 520.669024] input: syz1 as /devices/virtual/input/input321 05:51:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = dup(r0) ioctl$DRM_IOCTL_AGP_INFO(r2, 0x80386433, &(0x7f0000000080)=""/77) ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5) 05:51:50 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, 0xffffffffffffffff) [ 520.752232] FAULT_INJECTION: forcing a failure. [ 520.752232] name failslab, interval 1, probability 0, space 0, times 0 05:51:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000000)={0xa, &(0x7f0000000080)=[{}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}]}) r3 = dup(r1) ioctl$VHOST_GET_VRING_BASE(r3, 0xc008af12, &(0x7f0000000140)) ioctl$DRM_IOCTL_SWITCH_CTX(r0, 0x40086424, &(0x7f0000000100)={r2, 0x1}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 520.828418] CPU: 1 PID: 23571 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 520.835556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 520.844918] Call Trace: [ 520.844938] dump_stack+0x138/0x197 [ 520.844959] should_fail.cold+0x10f/0x159 [ 520.855288] should_failslab+0xdb/0x130 [ 520.855306] kmem_cache_alloc+0x2d7/0x780 [ 520.863392] ? save_trace+0x290/0x290 [ 520.863412] mmu_topup_memory_caches+0x86/0x320 [ 520.863426] kvm_mmu_load+0x21/0xd40 [ 520.875658] vcpu_enter_guest+0x2eb4/0x5210 [ 520.875671] ? perf_trace_lock+0x500/0x500 [ 520.884207] ? __lock_is_held+0x10/0x140 [ 520.886197] input: syz1 as /devices/virtual/input/input322 [ 520.888279] ? emulator_read_emulated+0x50/0x50 [ 520.888291] ? lock_acquire+0x16f/0x430 [ 520.888302] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 520.888318] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.902533] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 520.902553] kvm_vcpu_ioctl+0x401/0xd10 [ 520.902567] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.902579] ? trace_hardirqs_on+0x10/0x10 [ 520.902591] ? save_trace+0x290/0x290 [ 520.913465] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 520.913477] ? __f_unlock_pos+0x19/0x20 [ 520.913487] ? __fget+0x210/0x370 [ 520.913499] ? find_held_lock+0x35/0x130 [ 520.922458] ? __fget+0x210/0x370 [ 520.922474] ? kvm_vcpu_block+0xbb0/0xbb0 [ 520.922484] do_vfs_ioctl+0x7ae/0x1060 [ 520.922495] ? selinux_file_mprotect+0x5d0/0x5d0 [ 520.922505] ? lock_downgrade+0x6e0/0x6e0 [ 520.922515] ? ioctl_preallocate+0x1c0/0x1c0 [ 520.946960] ? __fget+0x237/0x370 [ 520.946981] ? security_file_ioctl+0x89/0xb0 [ 520.946994] SyS_ioctl+0x8f/0xc0 [ 520.954471] ? do_vfs_ioctl+0x1060/0x1060 [ 520.954486] do_syscall_64+0x1e8/0x640 [ 520.954495] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 520.954515] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 520.971380] RIP: 0033:0x459879 [ 520.971387] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 520.971399] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:51:50 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = socket(0x1, 0x4, 0xe7) setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000000)=0x4, 0x4) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = dup(r0) ioctl$DRM_IOCTL_AGP_INFO(r2, 0x80386433, &(0x7f0000000080)=""/77) ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5) [ 520.971405] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 520.971411] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 520.971416] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 520.971421] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 521.151254] binder: 23602:23603 ioctl 40101283 20000040 returned -22 [ 521.162356] binder: 23602:23603 ioctl 40101283 20000040 returned -22 05:51:50 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000500)={0xc8, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b63000010630840000000000000000006630440020000000d63000009631040030000000000000000000000000000000e630c4003000000000000000000000001634040030000000000000000000000000000000000000001000000000000000000000050000000000000001800000000000000", @ANYPTR=&(0x7f0000000040)=ANY=[@ANYBLOB="852a627700010000030000000000000000000000000000008561646600000000030000000000000001000000000000002800000000000000852a68770100"/80], @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB="000000000000000018000000000000003800000000000000"], @ANYBLOB="00634040000000000000000000000000000000000000000010000000000000000000000068000000000000001800000000000000", @ANYPTR=&(0x7f0000000580)=ANY=[@ANYBLOB="852a747000000000070f77a9e85a644d1a", @ANYPTR=&(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/205], @ANYBLOB="cd0000000000000001000000000000002d00000000000000852a747001000000", @ANYPTR=&(0x7f0000000200)=ANY=[@ANYBLOB='\x00'/57], @ANYBLOB="390000000000000002000000000000003600000000000000852a6877010100000100"/48], @ANYPTR=&(0x7f00000002c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00(\x00\x00\x00\x00\x00\x00\x00P\x00\x00\x00\x00\x00\x00\x00']], 0xf8, 0x0, &(0x7f0000000400)="52a2226bff667add27bfce5546aea9106dea5ed3395ed4519a8a4f85674260d4f4ee3119596920d433731a8b04666cb7830fcf8ee31b05a42347087b34467d46513735324a11d2f96926d3dced2246d202dd46fdf4a00a8a8d2a43de441adc9cbf5b62d0d1171142260c0f476213ddd0c8402cc66e3775e083a65543c6d6f6d803af0e73fded814178a3782e969602d51cd8e9da08b03089edc96e2912dcc94858c53e9de43d4c5b88ddc5af110c63705b1c57cf0dc7d5224ec5c9dad9835d6b74f56683ea345ea389ce56fa979fd3876e21a033037048fd19ad9b3e04a53c48f462d77be6cc4ba526797b5fb761c405b8943f7594a5adc9"}) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000540)='/dev/dlm-control\x00', 0x105080, 0x0) ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000280)={0x4, &(0x7f0000000240)=[{0x9, 0x7, 0xc75a, 0x5}, {0x8000, 0x1, 0x8001, 0x1}, {0x1, 0x200000, 0x9, 0x7}, {0x4, 0x2, 0x0, 0x401}]}) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000007c0)={r1, &(0x7f0000000600)="d25e1677db04bd6b4f0146586e2b198563c85e36e3b0ded04239b1ac9cc0d099f8c01c69519381a6f1ca8f799e04c47f40a1038d73d93e6523357e1aa82b6da94faf32dfa2f59c531ab58a1f0953e910228892b937aef4f0356a674dd5d442d7f40fac63a2e937fb8a33ef9c9038ea53c4e86489c3573450bb190d2b8eb674f74f190118d8d325e7074e4c70a1b2deecc6dc75818f9c162830a2b203b46fe446e38b4fbfd7dc0df15b3a00ff0593a89fcc7146f4bd6276020c3c26aadfe2a7e37a2f97b8faa65ad9809b5888373d130d088423024cc4f71d3c09fef84a4f57813676755d0646d0bbbdcd302c5754ab69002a4048dd", &(0x7f0000000700)=""/158}, 0x18) 05:51:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x20000, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:etc_mail_t:s0\x00', 0x20, 0x2) 05:51:50 executing program 1 (fault-call:6 fault-nth:27): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:50 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, 0xffffffffffffffff) 05:51:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x9) 05:51:50 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={0x0, @broadcast, @remote}, &(0x7f00000000c0)=0xc) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000001c0)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @local, @rand_addr="438f02fd1161ccb3aa80d173e81e71b2", 0x6, 0xa4a3, 0x1000, 0x400, 0x90, 0x1000001, r1}) accept4$tipc(r0, &(0x7f0000000280), &(0x7f00000002c0)=0x10, 0x80000) openat$usbmon(0xffffffffffffff9c, &(0x7f0000000240)='/dev/usbmon0\x00', 0x2000, 0x0) r2 = socket$inet(0xa, 0x801, 0x84) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm_plock\x00', 0x90100, 0x0) setsockopt$inet6_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000340)=@gcm_256={{0x303}, "084594c8fe1b05bb", "8c53880746589b15d4973a464f10ac8760009f9cf5c297085fc266868b0a0679", "9d5f7f4d", "2ef76ada3c4c00a2"}, 0x38) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x9) [ 521.292312] input: syz1 as /devices/virtual/input/input323 [ 521.328395] FAULT_INJECTION: forcing a failure. [ 521.328395] name failslab, interval 1, probability 0, space 0, times 0 05:51:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f000000a000/0x4000)=nil}) ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605) openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) [ 521.353299] CPU: 1 PID: 23618 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 521.360430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 521.369805] Call Trace: [ 521.372399] dump_stack+0x138/0x197 [ 521.376040] should_fail.cold+0x10f/0x159 [ 521.380207] should_failslab+0xdb/0x130 [ 521.384200] kmem_cache_alloc+0x2d7/0x780 [ 521.388626] ? save_trace+0x290/0x290 [ 521.392436] ? check_preemption_disabled+0x3c/0x250 [ 521.397455] mmu_topup_memory_caches+0x86/0x320 [ 521.397473] kvm_mmu_load+0x21/0xd40 [ 521.397492] vcpu_enter_guest+0x2eb4/0x5210 [ 521.397506] ? perf_trace_lock+0x500/0x500 [ 521.405867] ? __lock_is_held+0x10/0x140 [ 521.405883] ? emulator_read_emulated+0x50/0x50 [ 521.405893] ? lock_acquire+0x16f/0x430 [ 521.405902] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 521.405918] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 521.432103] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 521.432125] kvm_vcpu_ioctl+0x401/0xd10 [ 521.432137] ? kvm_vcpu_block+0xbb0/0xbb0 05:51:50 executing program 2: r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) r1 = syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x1000, 0x8000) r2 = accept$alg(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x1, 0x202001) r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r6 = getpgrp(0xffffffffffffffff) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000a80)={{{@in6, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000b80)=0xe8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000bc0)={0x0, 0x0, 0x0}, &(0x7f0000000c00)=0xc) r9 = getpgid(0xffffffffffffffff) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000c40)={{{@in6=@empty, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@dev}}, &(0x7f0000000d40)=0xe8) r11 = getgid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000d80)={0x0}, &(0x7f0000000dc0)=0xc) r13 = geteuid() lstat(&(0x7f0000000e00)='./file0\x00', &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000001240)=0x0) lstat(&(0x7f0000001280)='./file0\x00', &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000001340), &(0x7f0000001380)=0x0, &(0x7f00000013c0)) r18 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000004ac0)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000004b00)={{{@in, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@mcast1}}, &(0x7f0000004c00)=0xe8) getgroups(0x1, &(0x7f0000004c40)=[0x0]) r22 = getpgrp(0xffffffffffffffff) getresuid(&(0x7f0000004c80), &(0x7f0000004cc0)=0x0, &(0x7f0000004d00)) getgroups(0x2, &(0x7f0000004d40)=[0xee00, 0x0]) r25 = userfaultfd(0x800) r26 = socket$can_raw(0x1d, 0x3, 0x1) r27 = openat$tun(0xffffffffffffff9c, &(0x7f0000007100)='/dev/net/tun\x00', 0x100, 0x0) r28 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000007140)='/selinux/access\x00', 0x2, 0x0) r29 = openat$null(0xffffffffffffff9c, &(0x7f0000007180)='/dev/null\x00', 0x80, 0x0) r30 = openat$md(0xffffffffffffff9c, &(0x7f00000071c0)='/dev/md0\x00', 0x80, 0x0) r31 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000007200)='/selinux/load\x00', 0x2, 0x0) r32 = socket$pppoe(0x18, 0x1, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000007280)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000007240)='\x00', 0xffffffffffffffff}, 0x30) fstat(0xffffffffffffffff, &(0x7f00000072c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r35 = getgid() r36 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000007340)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) r37 = openat$cgroup(0xffffffffffffffff, &(0x7f0000007380)='syz1\x00', 0x200002, 0x0) r38 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000073c0)='/dev/hwrng\x00', 0x400000, 0x0) r39 = openat$autofs(0xffffffffffffff9c, &(0x7f0000007400)='/dev/autofs\x00', 0x1, 0x0) r40 = timerfd_create(0x8, 0x800) r41 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r42 = getpgrp(0xffffffffffffffff) r43 = geteuid() r44 = getgid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000007480)={0x0, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000007440)='\x00', 0xffffffffffffffff}, 0x30) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000074c0)={{{@in, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@loopback}}, &(0x7f00000075c0)=0xe8) getgroups(0x5, &(0x7f0000007600)=[0xffffffffffffffff, 0xffffffffffffffff, 0xee00, 0xffffffffffffffff, 0xee00]) r48 = accept$netrom(0xffffffffffffffff, &(0x7f0000007640)={{0x3, @default}, [@default, @rose, @null, @netrom, @null, @remote, @rose, @null]}, &(0x7f00000076c0)=0x48) r49 = syz_open_dev$vcsn(&(0x7f0000007700)='/dev/vcs#\x00', 0x8, 0x800) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000007740)={0xffffffffffffffff, 0xffffffffffffffff}) r51 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000007780)='/dev/snapshot\x00', 0x80000, 0x0) r52 = openat$vfio(0xffffffffffffff9c, &(0x7f00000077c0)='/dev/vfio/vfio\x00', 0x42800, 0x0) r53 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000007800)='/dev/ubi_ctrl\x00', 0xc00, 0x0) r54 = socket$inet_dccp(0x2, 0x6, 0x0) r55 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000007840)=0x0) getresuid(&(0x7f0000007880), &(0x7f00000078c0), &(0x7f0000007900)=0x0) r58 = getgid() r59 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000007940)='/dev/btrfs-control\x00', 0x501000, 0x0) r60 = accept4$inet(0xffffffffffffffff, &(0x7f0000007980)={0x2, 0x0, @local}, &(0x7f0000001400)=0x10, 0x800) r61 = socket$nl_xfrm(0x10, 0x3, 0x6) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000007a00)={0x0, 0x0}) getresuid(&(0x7f0000007a40), &(0x7f0000007a80), &(0x7f0000007ac0)=0x0) fstat(0xffffffffffffffff, &(0x7f0000007b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r65 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000008200)='/selinux/status\x00', 0x0, 0x0) r66 = syz_open_dev$ndb(&(0x7f0000008240)='/dev/nbd#\x00', 0x0, 0x1) pipe2(&(0x7f0000008280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x2cc25aa3e07ce8a0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000008300)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1e, &(0x7f00000082c0)='vboxnet1^vboxnet0\\.systemuser\x00'}, 0x30) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000008340)={{{@in6=@mcast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f0000008440)=0xe8) stat(&(0x7f0000008480)='./file0\x00', &(0x7f00000084c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r71 = getpid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000008540)={{{@in6=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@loopback}}, &(0x7f0000008640)=0xe8) lstat(&(0x7f0000008680)='./file0\x00', &(0x7f00000086c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000008740)=0x0) fstat(0xffffffffffffffff, &(0x7f0000008780)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000008800)=0x0, &(0x7f0000008840), &(0x7f0000008880)) sendmmsg$unix(r0, &(0x7f0000008980)=[{&(0x7f0000000080)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000000)="1f29d4d90a685b435ad7495129eca9f42bd86b9709ccf04f24e26f512235d4d89d6fb2476e975d945f16eb195389beccbb3c52cb62", 0x35}], 0x1, &(0x7f0000000280)=[@rights={{0x24, 0x1, 0x1, [r1, r2, r3, r4, r5]}}], 0x28, 0x40000}, {&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000340)="99840d164958b7ada3584a433bfb8cb322cfca4d47aa3fc9d8e56852f71f0d60e8730f112b1d357c2ce42f77", 0x2c}, {&(0x7f0000000380)="e866372f359b8898f8fbb1eab920737fa7e922921e51c28f8e0fb22496f0d4d868ee34e69ff1f14f6f87f5dd7b9de637460193bdf19fc36c3b5ada20a53d5030c4751ff0d4c4bf0b03d7e3c5bb014c4825cb602891c4c879a8647031402cb642a254dacb816b8922ea63c2d1ede703c11f0e9fda0c0871758901f8aea1d58e2f5a46e1d3799af9949b243ce04619f50f58df4460d03e8b69655bce2c7d8c334f637a49c594d9d1232ac3dcf74beb43f69b17ecdf64f47e3fa2c1486bc60bdea3a6e0d72bef70928ca71338f37f66c0d0d4188101d6a25615c45a066c01a2e2679a29aae5dac9f3d888", 0xe9}, {&(0x7f0000000480)="bcf54c1e8d06b8a7bf9d40125285469c952887eb8a6df963cac6735edcd107a06598194277f77ad321f6dea896629df8b27bf7277dea64bc3bd425e5257a40da639cbfba548b88223371f28cad7bd4d386de9ebba00352386f1bbdc192283f836e27fa4c05e41e50ef48cd05a0ccd5feca767841f6b11e", 0x77}], 0x3}, {&(0x7f0000000540)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000a00)=[{&(0x7f00000005c0)="772e202b4925295779f1093b0f7a4f786c88be221b2426a50cb0ca7c5ae99b710a8c1e31a19fe54c7d5950f602896842ea1d6b168ebd7aaf80130dc3c63abd40020ff14cfe9ce760a62e9dcde56816cc0ee9aa170e595137b65a03861532f960c4492ffb595ba7", 0x67}, {&(0x7f0000000640)="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", 0xfb}, {&(0x7f0000000740)="c6e6b54968e9ab935a59e454373aa1c080ec53ff2b20031417fed56d2044a3f4226d4271eeca89", 0x27}, {&(0x7f0000000780)="6823b3ae2ed00e700961770b2ec8d61abb6683a447279d7618d9fca30c7b5d0a918a474673f82cffc4a5111dbe916d1bc61a010e17a27af2ae4d6be7d244f86b13f315f58178637db67895cb1574aaef0340ab2f7a4f5391766c9d77dd2bd7eb2d0bf618bd4f9acb87da2e0f354acb2177289d4a690a1664740a8fd57f115fd88d24b41c042e5b07be31da221c665de674197cf4ad7f65f9503b5c063c87acfd6bec5880aaf15e4242585eec3a052d36b65ccc1330d15fdbbc303a405bf2496ff241cc32388ee4c98db8b818f93357eb5042", 0xd2}, {&(0x7f0000000880)="03c06ca35d27bd38e2a7fba68ed0366107d790621033035bb620788a86f31d871e19d0e3568894", 0x27}, {&(0x7f00000008c0)="8314642a9bf32307303108abab0b8b2a541f67bf9a0ed5ffac3eeeca8dd73cb18032c9c0d5dcfd82a1fd2e0cf604d0c48c", 0x31}, {&(0x7f0000000900)="eed150f34ce583d7e7a853017e6edd416afd36807297b342ab7881825843cad6fac0fbe6ad08e2426923f08c4f2b3cc2c7ef4dc24cb7ef89a8435b154dfa81fe8784ec3f265ba3c21d263b4c8b1c193e9de2f41e3a2476020ada139c31610ce938326357cde4e287b08cfa18194b07fea3bf536b649e654ec16ac9d8e6ebe2440f01330241f57f6cb1d8b2e6f33708125b336ec87f06d575777a4e5af3e334e35ecf85f78a1a8ca2ac8352faf49370691bff66b4f877712b94ad73ba6b15a3ca9a9a57444bd0fe5bf1638dccb06f9fec4e0321e498ec3981a3c06d51f7539c2428425ae6bd", 0xe5}], 0x7, &(0x7f0000000ec0)=[@cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}, @cred={{0x1c, 0x1, 0x2, {r9, r10, r11}}}, @cred={{0x1c, 0x1, 0x2, {r12, r13, r14}}}], 0x60, 0x4000000}, {&(0x7f0000000f40)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001200)=[{&(0x7f0000000fc0)="a6d842c77180b0eb03cb6cc080af945712a61d2756405de7cd888f5ed54ed37eb02476016bb196e00d4579ae9d2536e91c59f63678f312e5e2d13cdd2bec41b505f1e2fa025f9bfe8a1c238fa2fba4d35d1cd5527b664ad23d8996aaf588d926e8189850e78d", 0x66}, {&(0x7f0000001040)="bbf4aebf13e1386e0e0f64179a645f0534d478681c597125576d24758cf99987a32eea95f691c4820c3bb31d1f63fda1c9277adc960adc44391fcf5cb6272373764be7939b2bc1006624675f4d2adee1ab8169e621541067b3fc79e7c2d33346471e69726daad7b42fd45baea6c8221f9dd3a506c82c43663b16291508664fd5cb90308a57f02e73533b9186d9c97caadfd90cc5ade37a3d117684be08712ec20932aa9766e82d6c92bd3099c273fcd187a35469d4", 0xb5}, {&(0x7f0000001100)="f0e787248cc1cf7e81cb3bd656d12bc17afa70c2669844e8ef88e2d18db18515591cbe26c6b55f9cd15ae42086018fb086f0697fef9ec2592ddf41b6dd482fef765b7334708585f7b38ca08508240b87f402d0834be4f8709842a53bb92bfa84760cb3246a05c9fe6a8295e232f4405d089c7d25a88f3a8f0610e0c348dd84fb8a1f97e68be7e204763e9ef42bf0fec0791c7d9ee2aeb13d0019f76be695205571d03f66c501225553d615165adcbf260a7e97133f061e0344a30fcdff395b46531c225fcf", 0xc5}], 0x3, &(0x7f0000008c00)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r15, @ANYRES32=r16, @ANYRES32=r17, @ANYBLOB="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", @ANYRES32=r18, @ANYBLOB='\x00\x00\x00\x00'], 0x38, 0x19cbf57082f33d4}, {&(0x7f0000001440)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000004a00)=[{&(0x7f00000014c0)="f58f920eabb945dfeaffba48e22b7e4f292688ff5312cce6443084b304009601b1abbca7b8f2ff3a92d2885368ddf914cb98f93b", 0x34}, {&(0x7f0000001500)="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", 0x1000}, {&(0x7f0000002500)="a9981aeafaf0c71606b4fde8395c9960aa65354a8c03d8918230e3c34761653373447dd363d2244386ec93e5f1ebf390d077a1db62e5f58ba7dde01d550c0353afbc", 0x42}, {&(0x7f0000002580)="ec32a9b155398307ed40ac2532a186f0589e6101bd366a7078803390b75c3ee17486781f9a5e90b8228823cc826ec93b1ab1976e06051e8fe58ac2fff01d3686543488f49a82fa69542db0f3bfdd4a940c9492b8", 0x54}, {&(0x7f0000002600)="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", 0x1000}, {&(0x7f0000003600)="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", 0xfb}, {&(0x7f0000003700)="3cdda0d71161abcdc51803fda7ebe548a9a281b2cf12c72fc9412a1ca475e784ec369f6c896635543a67f70f9a7ba337dc5fee12cf72d999e3ac791fa066d499b6d5260fdf73501d03d89c7c7744ebdf78da3762ca08577d2eb5ec36ffab5df90e95215670463905b3c3a675555c64be002bce511bdf16125fefb668b8150845a81f404fedebea7b6b322bac2632a05c21d72cd76f188711597e1732c642cb17b85fca5e3745a94b0aea1cbff289e03ffdcce3a869b26ba8bcf7541e136635716b423401f1e2bd05902323ef00ce1b1f709744a932", 0xd5}, {&(0x7f0000003800)="1017cbad78cd0c3d4a654b01ef5917df91a81fea821704f4c1a9fda79bac1a312389707a044a4e48455b42b48c2f1d753c04ac661c7368ec56245d14235fbbd2ab2b306ebe54eda7fc6e27ae7b4098f5097be87f2100a9513408f9a3fcb15f6f5b472260dc57629ec5d31999c525fecfb540744cd0a769665e36d27a2c9f6be2f325950754fa2810da0c7b0d6cc497a35202f46a7ada5505aa0be852340e50d640d42a865f805cd46f38b7042d2557c66750cb36a3c439183e8659f9a60ea3e40451762ee4f56257eefd00ee7f1d165da2c3d70b823101d88455a54ba2f0d07ccdc0", 0xe2}, {&(0x7f0000003900)="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", 0x1000}, {&(0x7f0000004900)="7f7cef4721b1b55bdc8faa3f9ca78aad42542a90ae50eec96a88d2705ea0d3f0b03f7080a6571fb704cd3e5cddae5f60f910c583bf5ed40f17357046aebef81a572e19afc6d3e79f3bc7bf0ddd4da2bb31339f42438d60400ab0c6c3b5822bb4c4f66010aeb77560a4c716694628eab70040692d4400641535bc46929b6e1f734b4c764b7cca449e4f136277db97576fa202099de75641500901dc88129cb233279e79acc439ea6fcc5bd538409e40bc8590c806535606adfaba13a62f37cc2d745d7c85eaabd61248d5582f9a", 0xcd}], 0xa, &(0x7f0000008b40)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r19, @ANYRES32=r20, @ANYRES32=r21, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r22, @ANYRES32=r23, @ANYRES32=r24, @ANYBLOB="000000001400000000b20563138e7533496f0000000100000001000000f1123ca5a989c4f7d48e4cb22b70dc5467d327f0c043f7cbb303ca5948ad3b73a2168dc8567cb08f06", @ANYRES32=r25, @ANYBLOB='\x00\x00\x00\x00'], 0x58}, {&(0x7f0000004e00)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000007080)=[{&(0x7f0000004e80)="5868bbab3dd9f28505c2c36a68ff67fa68af11ccebe8a16dc4effe3f39fe41d9f567479ea24c7cdca827d3e80da1163b0a66c8e6dfc5c73cebaaccac21b068c60173b9b65af136c1ab6040688b04ad50b19caa506ad16eda3771c8299c6c4dc48e2b8f66018ed6db07ddfe16627bb24fc37c1d70d6e939e4f83af88a6b4d14f347f193782f778c318ee2c697d28ce8724455590ae83aa349a73a07c56b29ebfa26fbdfafd8c5b0bf2a271b4b967e138dd20f85412dc666d3c9b0e7c4d28b068962943ab41051da0eb2217ed0e39f60465ce558d7850f28303bc3661757e173d0d8fc8059bac8423ce5278393153a6ae37469061eaae51c", 0xf7}, {&(0x7f0000004f80)="5ed21e49a2833777e7d5bf34bf6ee5d5db", 0x11}, {&(0x7f0000004fc0)="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", 0x1000}, {&(0x7f0000005fc0)="1e87dc8292ef73db39497fce12e5ccf26155b3826475d5e679bb10c65bc5ca8937b21179c538b535db4dee778e0642c65082d9308c053f50031fae15d6713f90dbd6b8d1232562f0", 0x48}, {&(0x7f0000006040)="d331d7632fed8dcecb4920988e44593c4caa", 0x12}, {&(0x7f0000006080)="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", 0x1000}], 0x6, &(0x7f0000007b80)=[@rights={{0x2c, 0x1, 0x1, [r26, r27, r28, r29, r30, r31, r32]}}, @cred={{0x1c, 0x1, 0x2, {r33, r34, r35}}}, @rights={{0x28, 0x1, 0x1, [r36, r37, r38, r39, r40, r41]}}, @cred={{0x1c, 0x1, 0x2, {r42, r43, r44}}}, @cred={{0x1c, 0x1, 0x2, {r45, r46, r47}}}, @rights={{0x30, 0x1, 0x1, [r48, r49, r50, r51, r52, r53, r54, r55]}}, @cred={{0x1c, 0x1, 0x2, {r56, r57, r58}}}, @rights={{0x1c, 0x1, 0x1, [r59, r60, r61]}}, @cred={{0x1c, 0x1, 0x2, {r62, r63, r64}}}], 0x148, 0x4}, {&(0x7f0000007d00)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000008180)=[{&(0x7f0000007d80)="fab9a0f15673d74e33ca17898532000f2f02b1d8bd7b717135e8ebbff35ad9915aac18437cc8dc92c81b4a31c527ae46662c24b060f638303437b105cc0d175e1dda7926851dd645a6812c1e340d821d08c93c0eac59d6888a6f46403c9e0b353a715ad9a4c3b7cd3d7908fcb5f1cefd9524fc95c9854379a7c768bd87c5829b386ee284ab2668e64fcaafb8", 0x8c}, {&(0x7f0000007e40)="aac36dcec4189c99eb8b325075f5dafb8b8fb666345efd42e253112af6697100aa8f53cf4bcaedfa273c654d3de625c232140c6f4ade1a4988d341674eea4135403df941b87dae8993c0c23cbec39d3bfb81517c91e69fd8e043030e6a12193c93facbe99421db5acc6d527cc223c2d07fb7b99f5fff", 0x76}, {&(0x7f0000007ec0)="4bb6a080e95cc4bc5f8f9c3c01f3f431300bed4f91c3172ea6b066067ee281a222032058e7b60c3fbe37f9de40013066d93e64be828807c87da820ef501040ff0e2eb776bfd9249b8df6c002fb6bfb79e900dc2f75de7a0e4720909c3d1d3e", 0x5f}, {&(0x7f0000007f40)="9fe651480f5535c71dada9a869c7a6ac5e7908622be74090142c566b740d35ffe2714e2f2a53bef196956fbb55959e59f5e5dc389188d2dd23000aeed998e97106fdaa7aaaae77a13bdc190feb0dc8d78ad266f7df219dfac19eb86a2348bedabac130094a2ed17b50d323a74851a7107ed3", 0x72}, {&(0x7f0000007fc0)="fd7de323faaa7e699adad050be4dc78111880bdbc4ebc8777a906bf42b8f477cf431cd6b4fa02d77c6cdac10ca4c93b0e9145d", 0x33}, {&(0x7f0000008000)="7daf765d17a3ce2245dec46dae2102ebc8fc2047ff8532569226dc1ac4080aa83d276fa0cf4ec13f0fbfe6daa54eb14e5e1314dd7b44978519ebae0d9c7bc7299c388ec2f62239d938661e542de81775d2ba2e430189626275eda911f9f94d17af8f73d7653293402ad969014d0b9a76853a32e3f0dd23a1b7a99114644074228e9ca945e604ae7f668e482d37181cb24500fc17ca772af35f5699510fecd05ae176640830b2429bb5afe520d27bdfa0d1dc2887d0d340c335f5744699908a23fbe3cb1027974187b2a5839cb4fffcf98b8d971c56c870f83c25f66a4ba83c96446af5", 0xe3}, {&(0x7f0000008100)="4598495311c8ee4039c22dabca8bbb615e9d8ff10b470019363d9b54b32b1be9f7f00ec5c4f684a8d6922c0682b8c5668d1058861cbeae669eb0745bbde383bd49d0918da82e", 0x46}], 0x7, &(0x7f0000008d40)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r65, @ANYRES32=r66, @ANYBLOB="1400000000000000000000000000000037c578589a64b7d5a1545175f1b79a14156e1498c1ce3531a935b80cfe7bf81d017641f1d7902010da6da4c90ec56ecfa90834383bf48455ae512c29d2c07aa2bb26", @ANYRES32=r67, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r68, @ANYRES32=r69, @ANYRES32=r70, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r71, @ANYRES32=r72, @ANYRES32=r73, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r74, @ANYRES32=r75, @ANYRES32=r76, @ANYBLOB='\x00\x00\x00\x00'], 0x90, 0x8000}], 0x7, 0x20040000) r77 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r77, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 521.432148] ? trace_hardirqs_on+0x10/0x10 [ 521.432161] ? save_trace+0x290/0x290 [ 521.432169] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 521.432180] ? __f_unlock_pos+0x19/0x20 [ 521.442006] ? __fget+0x210/0x370 [ 521.442019] ? find_held_lock+0x35/0x130 [ 521.442029] ? __fget+0x210/0x370 [ 521.442043] ? kvm_vcpu_block+0xbb0/0xbb0 [ 521.442054] do_vfs_ioctl+0x7ae/0x1060 [ 521.442067] ? selinux_file_mprotect+0x5d0/0x5d0 [ 521.442075] ? lock_downgrade+0x6e0/0x6e0 [ 521.442085] ? ioctl_preallocate+0x1c0/0x1c0 [ 521.499257] ? __fget+0x237/0x370 05:51:50 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x1, 0x2080) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000080)={0x80000, 0x0, [0x44, 0x3, 0x3, 0xfffffffffffffffe, 0x140000000000, 0x6, 0x7fffffff, 0x20]}) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 521.502731] ? security_file_ioctl+0x89/0xb0 [ 521.507142] SyS_ioctl+0x8f/0xc0 [ 521.510507] ? do_vfs_ioctl+0x1060/0x1060 [ 521.514658] do_syscall_64+0x1e8/0x640 [ 521.518562] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 521.523414] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 521.528601] RIP: 0033:0x459879 [ 521.531787] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 521.539494] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 521.546760] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:50 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x20080, 0x0) recvfrom$ax25(r1, &(0x7f0000000080)=""/116, 0x74, 0x40, &(0x7f00000001c0)={{0x3, @default, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @default, @null]}, 0x48) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x6d) [ 521.554042] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 521.561310] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 521.568265] binder: BINDER_SET_CONTEXT_MGR already set [ 521.568579] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0x3, 0x40) setsockopt$inet_MCAST_LEAVE_GROUP(r2, 0x0, 0x2d, &(0x7f0000000280)={0xffffffffffffedca, {{0x2, 0x4e20, @rand_addr=0x8}}}, 0x88) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x40, 0x0) ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000080)) flistxattr(r1, &(0x7f00000000c0)=""/236, 0xec) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:51 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000040)={0x6, 0x6bd}) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x1, 0x800) accept4$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14, 0x80800) sendmsg$can_raw(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x1d, r3}, 0x10, &(0x7f00000001c0)={&(0x7f0000000180)=@can={{0x1, 0x200, 0xf9, 0x100000000}, 0x6, 0x1, 0x0, 0x0, "56000047a0d436e1"}, 0x10}, 0x1, 0x0, 0x0, 0x1}, 0x20000000) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0xe69a) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x9) 05:51:51 executing program 1 (fault-call:6 fault-nth:28): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:51 executing program 2: r0 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000001c0)={0x7fff, 0x10000000, 0x101, 0x6, 0x87}) r1 = socket$inet(0xa, 0x801, 0x84) r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) ioctl$TIOCCBRK(r2, 0x5428) ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000000080)=""/79) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$TIOCSISO7816(r1, 0xc0285443, &(0x7f0000000080)={0x7, 0x7, 0x3, 0x1e0e, 0x7fffffff}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 521.747036] binder: 23635:23639 ioctl 40046207 0 returned -16 [ 521.775480] binder: BINDER_SET_CONTEXT_MGR already set [ 521.786007] binder: 23635:23646 ioctl 40046207 0 returned -16 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) [ 521.865867] FAULT_INJECTION: forcing a failure. [ 521.865867] name failslab, interval 1, probability 0, space 0, times 0 [ 521.896011] CPU: 1 PID: 23662 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 521.903229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 521.903234] Call Trace: [ 521.903252] dump_stack+0x138/0x197 [ 521.903271] should_fail.cold+0x10f/0x159 [ 521.903289] should_failslab+0xdb/0x130 [ 521.903301] kmem_cache_alloc+0x2d7/0x780 [ 521.903312] ? save_trace+0x290/0x290 [ 521.903330] mmu_topup_memory_caches+0x86/0x320 [ 521.923027] kvm_mmu_load+0x21/0xd40 [ 521.923046] vcpu_enter_guest+0x2eb4/0x5210 [ 521.931138] ? perf_trace_lock+0x500/0x500 [ 521.943274] ? __lock_is_held+0x10/0x140 [ 521.943289] ? emulator_read_emulated+0x50/0x50 [ 521.943298] ? lock_acquire+0x16f/0x430 [ 521.943308] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 521.969685] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 521.976547] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 521.981573] kvm_vcpu_ioctl+0x401/0xd10 [ 521.981586] ? kvm_vcpu_block+0xbb0/0xbb0 [ 521.981599] ? trace_hardirqs_on+0x10/0x10 [ 521.989713] ? save_trace+0x290/0x290 [ 521.997713] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 522.002825] ? __f_unlock_pos+0x19/0x20 [ 522.006834] ? __fget+0x210/0x370 [ 522.010295] ? find_held_lock+0x35/0x130 [ 522.014361] ? __fget+0x210/0x370 [ 522.017819] ? kvm_vcpu_block+0xbb0/0xbb0 [ 522.021968] do_vfs_ioctl+0x7ae/0x1060 [ 522.022144] binder: 23670:23671 ioctl c008561c 20000040 returned -22 [ 522.025852] ? selinux_file_mprotect+0x5d0/0x5d0 [ 522.025865] ? lock_downgrade+0x6e0/0x6e0 [ 522.025877] ? ioctl_preallocate+0x1c0/0x1c0 [ 522.025892] ? __fget+0x237/0x370 [ 522.033231] binder: BINDER_SET_CONTEXT_MGR already set [ 522.037121] ? security_file_ioctl+0x89/0xb0 [ 522.037141] SyS_ioctl+0x8f/0xc0 [ 522.037149] ? do_vfs_ioctl+0x1060/0x1060 05:51:51 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) close(r0) close(r1) pipe(&(0x7f0000000040)) write(r1, &(0x7f0000000200)='8', 0x1) write(r1, &(0x7f00000000c0)='D', 0x1) write(0xffffffffffffffff, 0x0, 0x0) [ 522.037162] do_syscall_64+0x1e8/0x640 [ 522.041934] binder: 23670:23671 ioctl 40046207 0 returned -16 [ 522.045676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 522.045696] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 522.045705] RIP: 0033:0x459879 [ 522.045710] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 522.051899] binder: 23670:23671 ioctl c008561c 20000040 returned -22 [ 522.054430] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:51:51 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x1f, 0x57641d4ac61cf8e7) mmap$perf(&(0x7f0000006000/0x4000)=nil, 0x4000, 0x3000000, 0x4010, r1, 0x0) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:51 executing program 2: r0 = add_key(&(0x7f0000000000)='trusted\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000001c0)="084e248096e17d84ceede8a14c041c50fc3d92ce5b9947581942cac03d1d5f9e273e8681db20e4b156403654273f3a07c418a4351ad697e44fc72bc6e3d37a3ddeb5631eb24859104c90d8db3aa5b3d8b02258606662a3598c4ceca0376f636b04113f54df13819290167fa364612784861d87768fce824cb83bb3f234902775c3cb4a0ce8b3c8f24b0685bc888f2f15fe2db0401d5db07be645c24c1b3d20d8f21d9c259dc587ec58991105a5c05e9063b2ebb02fccea7005503e422ccfaf41edec83176091c54c6bab4765cf47523978b1a06d1a04f248fd67e700510154374279de4e406ca855fb150dafa44dbed9", 0xf0, 0xfffffffffffffffb) keyctl$read(0xb, r0, &(0x7f00000000c0), 0x0) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 522.054437] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 522.054443] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 522.054449] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 522.054455] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) 05:51:51 executing program 1 (fault-call:6 fault-nth:29): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 522.296549] FAULT_INJECTION: forcing a failure. [ 522.296549] name failslab, interval 1, probability 0, space 0, times 0 [ 522.314987] CPU: 0 PID: 23690 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 522.322106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 522.322112] Call Trace: [ 522.322132] dump_stack+0x138/0x197 [ 522.322152] should_fail.cold+0x10f/0x159 [ 522.322170] should_failslab+0xdb/0x130 [ 522.341854] kmem_cache_alloc+0x2d7/0x780 [ 522.341867] ? save_trace+0x290/0x290 [ 522.341883] ? check_preemption_disabled+0x3c/0x250 [ 522.358767] mmu_topup_memory_caches+0x86/0x320 [ 522.363438] kvm_mmu_load+0x21/0xd40 [ 522.367157] vcpu_enter_guest+0x2eb4/0x5210 [ 522.371479] ? perf_trace_lock+0x500/0x500 [ 522.375716] ? __lock_is_held+0x10/0x140 [ 522.379784] ? emulator_read_emulated+0x50/0x50 [ 522.384456] ? lock_acquire+0x16f/0x430 [ 522.388442] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 522.393555] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 522.398412] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 522.403534] kvm_vcpu_ioctl+0x401/0xd10 [ 522.407511] ? kvm_vcpu_block+0xbb0/0xbb0 [ 522.411660] ? trace_hardirqs_on+0x10/0x10 [ 522.415897] ? save_trace+0x290/0x290 [ 522.419695] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 522.424625] ? __f_unlock_pos+0x19/0x20 [ 522.428592] ? __fget+0x210/0x370 [ 522.428609] ? find_held_lock+0x35/0x130 [ 522.428620] ? __fget+0x210/0x370 [ 522.428637] ? kvm_vcpu_block+0xbb0/0xbb0 05:51:51 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x1, 0x94583b9659580565) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000040)=""/133) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000100)={0x40, 0x8, 0xe6, 0x103}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:51 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1200008912, &(0x7f00000000c0)="0800a1695e1dcfe87b1071") r1 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[0xfeffffff], [], @loopback}}, 0x1c) setsockopt$inet6_mreq(r1, 0x29, 0x1600bd7f, 0x0, 0x300) 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:51 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0xbd) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000)=0x8703, 0x4) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) r2 = getpgid(0xffffffffffffffff) write$P9_RGETLOCK(r1, &(0x7f00000000c0)={0x32, 0x37, 0x1, {0x2, 0x9, 0xdc, r2, 0x14, '-vmnet1$bdevselinux{'}}, 0x32) 05:51:51 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) close(r0) r1 = socket$inet(0x2, 0x3, 0x7f) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='ip6gretap0\x00', 0x10) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @rand_addr=0x400}, 0x10) [ 522.439555] do_vfs_ioctl+0x7ae/0x1060 [ 522.439569] ? selinux_file_mprotect+0x5d0/0x5d0 [ 522.439579] ? lock_downgrade+0x6e0/0x6e0 [ 522.439590] ? ioctl_preallocate+0x1c0/0x1c0 [ 522.460950] ? __fget+0x237/0x370 [ 522.464416] ? security_file_ioctl+0x89/0xb0 [ 522.468830] SyS_ioctl+0x8f/0xc0 [ 522.472369] ? do_vfs_ioctl+0x1060/0x1060 [ 522.476522] do_syscall_64+0x1e8/0x640 [ 522.480411] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 522.485258] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 522.490438] RIP: 0033:0x459879 05:51:51 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) shutdown(r0, 0x1) recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000400)=""/4096, 0xf7e9}], 0x1, 0x0, 0xff96ce4aaaa4784c}, 0x100) 05:51:51 executing program 2: r0 = socket$inet(0xa, 0x2, 0x1) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000000)=0x44) 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) write$selinux_create(r2, &(0x7f00000000c0)=@access={'system_u:object_r:dhcpc_exec_t:s0', 0x20, '/usr/sbin/cups-browsed', 0x20, 0x1}, 0x4e) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:51 executing program 1 (fault-call:6 fault-nth:30): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 522.490444] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 522.490457] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 522.490463] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 522.490469] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 522.490475] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 522.490480] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x181000) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000013c0)='ramfs\x00', 0x0, 0x0) chroot(&(0x7f0000000280)='./file0\x00') umount2(&(0x7f0000000140)='./file0\x00', 0x6) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 522.658721] FAULT_INJECTION: forcing a failure. [ 522.658721] name failslab, interval 1, probability 0, space 0, times 0 [ 522.701817] CPU: 1 PID: 23714 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 522.708952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 522.718309] Call Trace: [ 522.720907] dump_stack+0x138/0x197 [ 522.724550] should_fail.cold+0x10f/0x159 [ 522.728711] should_failslab+0xdb/0x130 [ 522.732684] kmem_cache_alloc+0x2d7/0x780 [ 522.732697] ? save_trace+0x290/0x290 [ 522.732713] ? check_preemption_disabled+0x3c/0x250 [ 522.732733] mmu_topup_memory_caches+0x86/0x320 [ 522.732748] kvm_mmu_load+0x21/0xd40 [ 522.732768] vcpu_enter_guest+0x2eb4/0x5210 [ 522.740685] ? perf_trace_lock+0x500/0x500 [ 522.740699] ? __lock_is_held+0x10/0x140 [ 522.740713] ? emulator_read_emulated+0x50/0x50 [ 522.740723] ? lock_acquire+0x16f/0x430 [ 522.740733] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 522.740749] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 522.740758] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 522.740777] kvm_vcpu_ioctl+0x401/0xd10 [ 522.750427] ? kvm_vcpu_block+0xbb0/0xbb0 [ 522.750438] ? trace_hardirqs_on+0x10/0x10 [ 522.750453] ? save_trace+0x290/0x290 [ 522.750463] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 522.750473] ? __f_unlock_pos+0x19/0x20 [ 522.750484] ? __fget+0x210/0x370 [ 522.750497] ? find_held_lock+0x35/0x130 [ 522.758495] ? __fget+0x210/0x370 [ 522.758508] ? kvm_vcpu_block+0xbb0/0xbb0 [ 522.758519] do_vfs_ioctl+0x7ae/0x1060 [ 522.758532] ? selinux_file_mprotect+0x5d0/0x5d0 [ 522.758539] ? lock_downgrade+0x6e0/0x6e0 [ 522.758550] ? ioctl_preallocate+0x1c0/0x1c0 [ 522.785237] ? __fget+0x237/0x370 [ 522.785257] ? security_file_ioctl+0x89/0xb0 [ 522.785270] SyS_ioctl+0x8f/0xc0 [ 522.798359] ? do_vfs_ioctl+0x1060/0x1060 [ 522.798375] do_syscall_64+0x1e8/0x640 [ 522.798385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 522.798404] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 522.798414] RIP: 0033:0x459879 [ 522.815300] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 522.826213] ORIG_RAX: 0000000000000010 [ 522.826221] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 522.826227] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 522.826234] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 522.826241] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 522.826247] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 522.858148] binder: BINDER_SET_CONTEXT_MGR already set [ 522.898615] binder: 23731:23732 ioctl 40046207 0 returned -16 05:51:52 executing program 1 (fault-call:6 fault-nth:31): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:52 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000300)=0x80, 0x4) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) shutdown(r0, 0x1) recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000400)=""/4096, 0xf7e9}], 0x1, 0x0, 0xff96ce4aaaa4784c}, 0x100) 05:51:52 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) write$apparmor_exec(r1, &(0x7f0000000040)={'exec ', '/dev/binder#\x00'}, 0x12) 05:51:52 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x2002, 0x0) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r1, 0x800455d1, &(0x7f0000000080)) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000000c0)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000001c0)=0x18) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={r2, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:52 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 523.064569] FAULT_INJECTION: forcing a failure. [ 523.064569] name failslab, interval 1, probability 0, space 0, times 0 [ 523.104390] CPU: 0 PID: 23744 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 523.111526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.120886] Call Trace: [ 523.123484] dump_stack+0x138/0x197 [ 523.127123] should_fail.cold+0x10f/0x159 [ 523.131278] should_failslab+0xdb/0x130 [ 523.135261] kmem_cache_alloc+0x2d7/0x780 [ 523.139416] ? save_trace+0x290/0x290 [ 523.143232] ? check_preemption_disabled+0x3c/0x250 [ 523.146331] binder: BINDER_SET_CONTEXT_MGR already set [ 523.148254] mmu_topup_memory_caches+0x86/0x320 [ 523.148270] kvm_mmu_load+0x21/0xd40 [ 523.148295] vcpu_enter_guest+0x2eb4/0x5210 [ 523.157870] binder: 23758:23759 ioctl 40046207 0 returned -16 [ 523.158211] ? perf_trace_lock+0x500/0x500 [ 523.176302] ? __lock_is_held+0x10/0x140 [ 523.180368] ? emulator_read_emulated+0x50/0x50 [ 523.185037] ? lock_acquire+0x16f/0x430 [ 523.189014] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 523.194036] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.198879] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.203904] kvm_vcpu_ioctl+0x401/0xd10 [ 523.207883] ? kvm_vcpu_block+0xbb0/0xbb0 [ 523.208388] binder: BINDER_SET_CONTEXT_MGR already set [ 523.212027] ? trace_hardirqs_on+0x10/0x10 [ 523.212042] ? save_trace+0x290/0x290 [ 523.212052] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 523.212062] ? __f_unlock_pos+0x19/0x20 [ 523.212072] ? __fget+0x210/0x370 [ 523.212081] ? find_held_lock+0x35/0x130 [ 523.212090] ? __fget+0x210/0x370 [ 523.212101] ? kvm_vcpu_block+0xbb0/0xbb0 [ 523.212112] do_vfs_ioctl+0x7ae/0x1060 [ 523.212123] ? selinux_file_mprotect+0x5d0/0x5d0 [ 523.212132] ? lock_downgrade+0x6e0/0x6e0 05:51:52 executing program 2: r0 = socket$inet(0xa, 0x801, 0x3) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:52 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8946, &(0x7f0000000040)={'bond0\x00@@\xea\xff\xff\x80\x00\x00\x02\x00', @ifru_names='bond_slave_1\x00'}) 05:51:52 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 523.212142] ? ioctl_preallocate+0x1c0/0x1c0 [ 523.212153] ? __fget+0x237/0x370 [ 523.212171] ? security_file_ioctl+0x89/0xb0 [ 523.223471] binder: 23758:23759 ioctl 40046207 0 returned -16 [ 523.225439] SyS_ioctl+0x8f/0xc0 [ 523.225450] ? do_vfs_ioctl+0x1060/0x1060 [ 523.225465] do_syscall_64+0x1e8/0x640 [ 523.225477] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 523.241848] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 523.241858] RIP: 0033:0x459879 [ 523.241864] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 523.241874] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 523.241878] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 523.241883] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 523.241889] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 523.241894] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:52 executing program 1 (fault-call:6 fault-nth:32): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:52 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 523.327710] audit: type=1400 audit(1567403512.588:191): avc: denied { ioctl } for pid=23764 comm="syz-executor.3" path="socket:[100499]" dev="sockfs" ino=100499 ioctlcmd=0x8946 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 523.399861] FAULT_INJECTION: forcing a failure. [ 523.399861] name failslab, interval 1, probability 0, space 0, times 0 05:51:52 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x5000, 0x2000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dlm_plock\x00', 0x40000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f00000002c0)={{0x6, 0x5, 0x7ff, 0x0, 'syz0\x00', 0x9}, 0x0, [0xfffffffffffffff9, 0x9, 0xb6, 0x2, 0x1, 0x6, 0x3, 0x200, 0x8, 0xfffffffffffffffa, 0x3, 0x3, 0x5, 0x3, 0x200, 0x4, 0x80000000, 0x1, 0x8, 0x5, 0x1ff, 0x3, 0xca, 0xb8, 0x7, 0x8, 0x8e8, 0xf0, 0x10001, 0x2, 0x0, 0x4, 0x5, 0x400, 0x80000001, 0x2, 0x40, 0x400, 0x8, 0x4, 0x7, 0xfffffffffffff000, 0xfa, 0x2, 0x1, 0x2, 0x0, 0x7, 0x6, 0x80000000, 0xe1f, 0x80000001, 0x7fff, 0x5, 0x7c6, 0x4, 0x0, 0x3, 0x2b61, 0xfffffffffffffffa, 0xb80, 0x3, 0x8, 0x9, 0x1ff, 0x2, 0x6, 0x735, 0x8, 0xffffffff, 0x100, 0x3ff, 0x3f, 0x7, 0x8, 0x8, 0x9, 0x2, 0x3f, 0x7f, 0x0, 0x3, 0x20, 0x7, 0x7ff, 0xff, 0x10000, 0x3, 0x8, 0x5, 0x7, 0x2, 0x1, 0x8001, 0x6, 0x1, 0xb10e, 0x69d, 0xfffffffffffffffd, 0x3, 0x7, 0x8, 0x6588, 0x3f, 0x7, 0x7, 0x1, 0x5269, 0xbc, 0xfffffffffffffffe, 0x5, 0xfffffffffffffff8, 0x6, 0x8, 0x9, 0x20, 0x3, 0x2, 0x6, 0x4, 0x1f81, 0x20, 0x6, 0x8, 0x81, 0x8, 0x1ff, 0x9], {0x0, 0x1c9c380}}) syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x8001, 0x7dc, 0x6, 0x3, 0x401, 0xf8, 0xc000, {0x0, @in6={{0xa, 0x4e21, 0x3, @rand_addr="072d0b438734bec736b1d2a9a4e541e3", 0x7b}}, 0x7ff, 0x7, 0x4, 0x1, 0xffffffffffff0001}}, &(0x7f0000000000)=0xb0) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={r3, 0xd5a}, 0x8) r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$EVIOCGABS3F(r4, 0x8018457f, &(0x7f0000000240)=""/41) [ 523.475278] CPU: 1 PID: 23772 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 523.482408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.482414] Call Trace: [ 523.482433] dump_stack+0x138/0x197 [ 523.482452] should_fail.cold+0x10f/0x159 [ 523.482469] should_failslab+0xdb/0x130 [ 523.482485] kmem_cache_alloc+0x2d7/0x780 [ 523.482495] ? save_trace+0x290/0x290 [ 523.482517] mmu_topup_memory_caches+0x86/0x320 [ 523.482533] kvm_mmu_load+0x21/0xd40 [ 523.482552] vcpu_enter_guest+0x2eb4/0x5210 [ 523.482564] ? perf_trace_lock+0x500/0x500 [ 523.482576] ? __lock_is_held+0x10/0x140 [ 523.482589] ? emulator_read_emulated+0x50/0x50 [ 523.482598] ? lock_acquire+0x16f/0x430 [ 523.482609] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 523.482626] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.482635] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.482653] kvm_vcpu_ioctl+0x401/0xd10 [ 523.482668] ? kvm_vcpu_block+0xbb0/0xbb0 [ 523.506323] ? trace_hardirqs_on+0x10/0x10 [ 523.506338] ? save_trace+0x290/0x290 [ 523.506348] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 523.514264] ? __f_unlock_pos+0x19/0x20 [ 523.514276] ? __fget+0x210/0x370 [ 523.514286] ? find_held_lock+0x35/0x130 [ 523.514295] ? __fget+0x210/0x370 [ 523.522632] ? kvm_vcpu_block+0xbb0/0xbb0 [ 523.522643] do_vfs_ioctl+0x7ae/0x1060 [ 523.522655] ? selinux_file_mprotect+0x5d0/0x5d0 [ 523.522665] ? lock_downgrade+0x6e0/0x6e0 [ 523.522676] ? ioctl_preallocate+0x1c0/0x1c0 [ 523.522687] ? __fget+0x237/0x370 [ 523.587200] ? security_file_ioctl+0x89/0xb0 [ 523.587215] SyS_ioctl+0x8f/0xc0 [ 523.594776] ? do_vfs_ioctl+0x1060/0x1060 [ 523.594791] do_syscall_64+0x1e8/0x640 [ 523.594801] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 523.602804] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 523.611655] RIP: 0033:0x459879 [ 523.611661] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 523.611671] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 523.611677] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:52 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 523.611682] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 523.611688] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 523.611693] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:53 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x10000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) write$USERIO_CMD_REGISTER(r1, &(0x7f0000000080)={0x0, 0x9}, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:51:53 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:53 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000100)="39000000130009006900000000000000ab008048060000004600010707000014190002001000000800005068000000000000ef38bf461e59d7", 0x39}], 0x1) 05:51:53 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x600002, 0x0) ioctl$TUNGETIFF(r1, 0x800454d2, &(0x7f00000000c0)) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) mlockall(0x1) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80000) ioctl$LOOP_GET_STATUS(r2, 0x4c03, &(0x7f00000001c0)) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000280)={{0x400, 0x1ff}, {0x0, 0x1}, 0x6e, 0x6, 0x595d6aa8}) 05:51:53 executing program 0: openat$vimc1(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video1\x00', 0x2, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000800)='/dev/vga_arbiter\x00', 0x69385a91c235a320, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000840)="2db35607a3f878bc18fd00c74a1eb63c", 0x10) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x14000, 0x0) ioctl$VIDIOC_SUBDEV_S_FMT(r3, 0xc0585605, &(0x7f0000000300)={0x75b3d1ca60e8d4f2, 0x0, {0xffffffffffffffff, 0x3, 0x5001, 0x0, 0x1, 0x1, 0x0, 0x6}}) fstat(r2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000400)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@local}}, &(0x7f0000000540)=0xe8) getgroups(0x2, &(0x7f0000000580)=[0xffffffffffffffff, 0xee00]) stat(&(0x7f00000005c0)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000f40)=@nat={'nat\x00', 0x19, 0x7, 0x8a2, [0x20000680, 0x0, 0x0, 0x2000092c, 0x20000ae2], 0x0, &(0x7f0000000280), &(0x7f00000018c0)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="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"]}, 0x959) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x1000, &(0x7f000000a000/0x1000)=nil}) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$md(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/md0\x00', 0xe963e8e0732ecbb8, 0x0) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) setsockopt$inet_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f00000001c0)='tls\x00', 0x4) r9 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000740)='/dev/sequencer2\x00', 0x80, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r9, 0x6, 0x3, &(0x7f0000000140)=0x10, 0x4) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r9, 0x4008240b, &(0x7f0000000080)={0x2, 0x70, 0x6, 0x80000000, 0x1000, 0x1, 0x0, 0x4, 0x44610, 0x2a5a76900ed5cfd8, 0x4, 0x7, 0x100000000, 0x3d5e4000000000, 0x6, 0x0, 0x4, 0x3, 0x8, 0x1, 0x100000001, 0x7fff, 0x3, 0x7, 0x816e, 0x8, 0x80, 0x10001, 0x7fff, 0x9c, 0x4, 0xfffffffffffffc01, 0x7, 0x100, 0x7, 0x8, 0x1ff, 0x10000, 0x0, 0x6, 0xbbfa72ff3b82e5d1, @perf_config_ext={0x1, 0x80}, 0x21000, 0xffffffff, 0x4, 0x6, 0x7, 0x6, 0xb3}) write$selinux_create(r3, &(0x7f0000000600)=@objname={'system_u:object_r:inetd_exec_t:s0', 0x20, '/usr/sbin/ntpd', 0x20, 0x4, 0x20, './file0\x00'}, 0x4e) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/dlm-monitor\x00', 0x200202, 0x0) pipe2(&(0x7f0000000680)={0xffffffffffffffff}, 0x4000) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r9, 0xc0045516, &(0x7f0000000100)=0x8) ioctl$DRM_IOCTL_AGP_ALLOC(r9, 0xc0206434, &(0x7f0000000000)={0x7fff, 0x0, 0x10000, 0x7ff}) ioctl$DRM_IOCTL_AGP_ALLOC(r10, 0xc0206434, &(0x7f0000000780)={0x5, r11, 0x10001, 0x7f}) 05:51:53 executing program 1 (fault-call:6 fault-nth:33): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:53 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000100)="39000000130009006900000000000000ab008048060000004600010707000014190002001000000800005068000000000000ef38bf461e59d7", 0x39}], 0x1) [ 523.886360] FAULT_INJECTION: forcing a failure. [ 523.886360] name failslab, interval 1, probability 0, space 0, times 0 [ 523.940936] CPU: 1 PID: 23804 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 523.948079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 523.957429] Call Trace: [ 523.957452] dump_stack+0x138/0x197 [ 523.957472] should_fail.cold+0x10f/0x159 [ 523.957488] should_failslab+0xdb/0x130 [ 523.957503] kmem_cache_alloc+0x2d7/0x780 [ 523.957513] ? save_trace+0x290/0x290 [ 523.957525] ? check_preemption_disabled+0x3c/0x250 [ 523.957541] mmu_topup_memory_caches+0x86/0x320 [ 523.957556] kvm_mmu_load+0x21/0xd40 [ 523.957574] vcpu_enter_guest+0x2eb4/0x5210 [ 523.957587] ? perf_trace_lock+0x500/0x500 [ 523.957600] ? __lock_is_held+0x10/0x140 [ 523.957611] ? emulator_read_emulated+0x50/0x50 [ 523.957620] ? lock_acquire+0x16f/0x430 [ 523.957631] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 523.957648] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.957657] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 523.957675] kvm_vcpu_ioctl+0x401/0xd10 [ 523.957687] ? kvm_vcpu_block+0xbb0/0xbb0 05:51:53 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000100)=ANY=[@ANYBLOB="0200000000000020"], 0x8) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f00000000c0)="0800a1695e1dcfe87b1071") setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000340)={0xa, 0x0, 0x0, @empty}, 0x1c) [ 523.957697] ? trace_hardirqs_on+0x10/0x10 [ 523.957710] ? save_trace+0x290/0x290 [ 523.957718] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 523.957727] ? __f_unlock_pos+0x19/0x20 [ 523.957737] ? __fget+0x210/0x370 [ 523.957748] ? find_held_lock+0x35/0x130 [ 523.957757] ? __fget+0x210/0x370 [ 523.957771] ? kvm_vcpu_block+0xbb0/0xbb0 [ 523.982909] do_vfs_ioctl+0x7ae/0x1060 [ 523.982924] ? selinux_file_mprotect+0x5d0/0x5d0 [ 523.982935] ? lock_downgrade+0x6e0/0x6e0 [ 523.982946] ? ioctl_preallocate+0x1c0/0x1c0 [ 524.009143] ? __fget+0x237/0x370 [ 524.017751] ? security_file_ioctl+0x89/0xb0 [ 524.017766] SyS_ioctl+0x8f/0xc0 [ 524.017775] ? do_vfs_ioctl+0x1060/0x1060 [ 524.017788] do_syscall_64+0x1e8/0x640 [ 524.032726] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 524.032748] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 524.032756] RIP: 0033:0x459879 [ 524.032761] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 524.032772] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:51:53 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1200008912, &(0x7f00000000c0)="0800a1695e1dcfe87b1071") r1 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[0xfeffffff], [], @loopback}}, 0x1c) setsockopt$inet6_mreq(r1, 0x29, 0x2, 0x0, 0x300) 05:51:53 executing program 1 (fault-call:6 fault-nth:34): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:53 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000200)=0x6, 0x4) [ 524.032780] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 524.040862] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 524.040868] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 524.040874] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 524.231313] FAULT_INJECTION: forcing a failure. [ 524.231313] name failslab, interval 1, probability 0, space 0, times 0 [ 524.245014] CPU: 1 PID: 23827 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 524.252216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 524.252221] Call Trace: [ 524.252238] dump_stack+0x138/0x197 [ 524.252257] should_fail.cold+0x10f/0x159 [ 524.264179] should_failslab+0xdb/0x130 [ 524.271919] kmem_cache_alloc+0x2d7/0x780 [ 524.271929] ? save_trace+0x290/0x290 [ 524.271954] mmu_topup_memory_caches+0x86/0x320 [ 524.280052] kvm_mmu_load+0x21/0xd40 [ 524.280071] vcpu_enter_guest+0x2eb4/0x5210 [ 524.288494] ? perf_trace_lock+0x500/0x500 [ 524.288506] ? __lock_is_held+0x10/0x140 [ 524.288518] ? emulator_read_emulated+0x50/0x50 [ 524.296504] ? lock_acquire+0x16f/0x430 [ 524.313434] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 524.318460] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 524.323304] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 524.328330] kvm_vcpu_ioctl+0x401/0xd10 [ 524.332311] ? kvm_vcpu_block+0xbb0/0xbb0 [ 524.336458] ? trace_hardirqs_on+0x10/0x10 [ 524.340696] ? save_trace+0x290/0x290 [ 524.344392] binder: BINDER_SET_CONTEXT_MGR already set [ 524.344495] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 524.349771] binder: 23816:23832 ioctl 40046207 0 returned -16 [ 524.354663] ? __f_unlock_pos+0x19/0x20 [ 524.354675] ? __fget+0x210/0x370 [ 524.354686] ? find_held_lock+0x35/0x130 [ 524.354695] ? __fget+0x210/0x370 [ 524.362750] binder: BINDER_SET_CONTEXT_MGR already set [ 524.364551] ? kvm_vcpu_block+0xbb0/0xbb0 [ 524.364566] do_vfs_ioctl+0x7ae/0x1060 [ 524.367999] binder: 23816:23833 ioctl 40046207 0 returned -16 [ 524.372040] ? selinux_file_mprotect+0x5d0/0x5d0 [ 524.372050] ? lock_downgrade+0x6e0/0x6e0 [ 524.372061] ? ioctl_preallocate+0x1c0/0x1c0 [ 524.372073] ? __fget+0x237/0x370 [ 524.411368] ? security_file_ioctl+0x89/0xb0 [ 524.415786] SyS_ioctl+0x8f/0xc0 [ 524.419154] ? do_vfs_ioctl+0x1060/0x1060 [ 524.423309] do_syscall_64+0x1e8/0x640 [ 524.427191] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 524.432040] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 524.437223] RIP: 0033:0x459879 [ 524.440406] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 524.448111] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 524.455383] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 524.462653] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 524.469915] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:51:53 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$RTC_UIE_ON(r1, 0x7003) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0xfffffffffffffff9, 0x410040) ioctl$VIDIOC_G_FMT(r2, 0xc0d05604, &(0x7f0000000080)={0x2, @vbi={0x1, 0x800, 0x401, 0x20363159, [0x2e43, 0x48f], [0x4, 0x3], 0x13b}}) [ 524.477183] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:53 executing program 2: fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) r0 = dup(0xffffffffffffffff) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, {0x2, 0x4e22, @rand_addr=0x9}, {0x2, 0x4e24, @loopback}, {0x2, 0x4e22, @remote}, 0x120, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000000)='syzkaller0\x00', 0x8001, 0xfffffffffffffff7}) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) socket$packet(0x11, 0x3, 0x300) 05:51:53 executing program 3: r0 = epoll_create1(0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)={0x210c}) epoll_wait(r0, &(0x7f0000000080)=[{}], 0x1, 0x7c96) 05:51:53 executing program 1 (fault-call:6 fault-nth:35): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:53 executing program 0: r0 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/access\x00', 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) getresgid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)=0x0) fchown(r0, r2, r3) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sched_setaffinity(r1, 0x8, &(0x7f00000001c0)=0x9425) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r5, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:53 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0800a1695e1dcfe87b1071") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000040)=0x74, 0x4) bind$inet(r1, &(0x7f00000001c0)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r1, 0x0, 0xfffffffffffffe66, 0x200007fd, &(0x7f00000000c0)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r1, &(0x7f0000000b80)="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", 0xfffffffffffffdd4, 0x10002, 0x0, 0xfe6f) 05:51:53 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 524.719897] FAULT_INJECTION: forcing a failure. [ 524.719897] name failslab, interval 1, probability 0, space 0, times 0 [ 524.773646] CPU: 1 PID: 23856 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 524.780772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 524.780777] Call Trace: [ 524.780796] dump_stack+0x138/0x197 [ 524.780815] should_fail.cold+0x10f/0x159 [ 524.780832] should_failslab+0xdb/0x130 [ 524.780845] kmem_cache_alloc+0x2d7/0x780 [ 524.780857] ? save_trace+0x290/0x290 [ 524.780868] ? check_preemption_disabled+0x3c/0x250 [ 524.780884] mmu_topup_memory_caches+0x86/0x320 [ 524.792815] kvm_mmu_load+0x21/0xd40 [ 524.792833] vcpu_enter_guest+0x2eb4/0x5210 [ 524.812478] ? perf_trace_lock+0x500/0x500 [ 524.812490] ? __lock_is_held+0x10/0x140 [ 524.822153] ? emulator_read_emulated+0x50/0x50 [ 524.822162] ? lock_acquire+0x16f/0x430 [ 524.822172] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 524.822189] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 524.822197] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 524.822215] kvm_vcpu_ioctl+0x401/0xd10 [ 524.865912] ? kvm_vcpu_block+0xbb0/0xbb0 [ 524.870047] ? trace_hardirqs_on+0x10/0x10 [ 524.874271] ? save_trace+0x290/0x290 [ 524.878054] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 524.882963] ? __f_unlock_pos+0x19/0x20 [ 524.886940] ? __fget+0x210/0x370 [ 524.890375] ? find_held_lock+0x35/0x130 [ 524.894415] ? __fget+0x210/0x370 [ 524.897855] ? kvm_vcpu_block+0xbb0/0xbb0 [ 524.901985] do_vfs_ioctl+0x7ae/0x1060 [ 524.905854] ? selinux_file_mprotect+0x5d0/0x5d0 [ 524.910589] ? lock_downgrade+0x6e0/0x6e0 [ 524.914742] ? ioctl_preallocate+0x1c0/0x1c0 [ 524.919134] ? __fget+0x237/0x370 [ 524.922571] ? security_file_ioctl+0x89/0xb0 [ 524.926963] SyS_ioctl+0x8f/0xc0 [ 524.930308] ? do_vfs_ioctl+0x1060/0x1060 [ 524.934438] do_syscall_64+0x1e8/0x640 [ 524.938652] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 524.943480] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 524.948649] RIP: 0033:0x459879 [ 524.951819] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 524.959508] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 524.966757] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sysfs$3(0x3) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:54 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 524.974008] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 524.981257] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 524.988505] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 525.095287] binder: 23847:23876 ioctl 7003 0 returned -22 [ 525.102406] binder: BINDER_SET_CONTEXT_MGR already set [ 525.107889] binder: 23847:23876 ioctl 40046207 0 returned -16 [ 525.115741] binder: 23847:23876 ioctl 7003 0 returned -22 [ 525.132228] binder: BINDER_SET_CONTEXT_MGR already set 05:51:54 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:54 executing program 1 (fault-call:6 fault-nth:36): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000080)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) fcntl$setsig(r1, 0xa, 0x1b) 05:51:54 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) setreuid(r3, r4) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:51:54 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e20, 0x4, @empty, 0xff}}}, &(0x7f0000000000)=0x84) [ 525.168277] binder: 23847:23877 ioctl 40046207 0 returned -16 05:51:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 525.246636] FAULT_INJECTION: forcing a failure. [ 525.246636] name failslab, interval 1, probability 0, space 0, times 0 [ 525.292052] CPU: 1 PID: 23887 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 525.299178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 525.299185] Call Trace: [ 525.299202] dump_stack+0x138/0x197 [ 525.299224] should_fail.cold+0x10f/0x159 [ 525.299239] should_failslab+0xdb/0x130 [ 525.318902] kmem_cache_alloc+0x2d7/0x780 [ 525.318914] ? save_trace+0x290/0x290 [ 525.318929] ? check_preemption_disabled+0x3c/0x250 [ 525.318945] mmu_topup_memory_caches+0x86/0x320 [ 525.340527] kvm_mmu_load+0x21/0xd40 [ 525.344251] vcpu_enter_guest+0x2eb4/0x5210 [ 525.348577] ? perf_trace_lock+0x500/0x500 [ 525.352816] ? __lock_is_held+0x10/0x140 [ 525.354380] binder: BINDER_SET_CONTEXT_MGR already set [ 525.356932] ? emulator_read_emulated+0x50/0x50 [ 525.356944] ? lock_acquire+0x16f/0x430 [ 525.356955] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 525.356974] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 525.356983] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 525.357000] kvm_vcpu_ioctl+0x401/0xd10 05:51:54 executing program 5: ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x20080) getsockname$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000080)=0x10) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000000)) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 525.366911] ? kvm_vcpu_block+0xbb0/0xbb0 [ 525.366923] ? trace_hardirqs_on+0x10/0x10 [ 525.366937] ? save_trace+0x290/0x290 [ 525.366947] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 525.366956] ? __f_unlock_pos+0x19/0x20 [ 525.366967] ? __fget+0x210/0x370 [ 525.375929] ? find_held_lock+0x35/0x130 [ 525.375940] ? __fget+0x210/0x370 [ 525.375956] ? kvm_vcpu_block+0xbb0/0xbb0 [ 525.375968] do_vfs_ioctl+0x7ae/0x1060 [ 525.375980] ? selinux_file_mprotect+0x5d0/0x5d0 [ 525.375990] ? lock_downgrade+0x6e0/0x6e0 [ 525.392049] binder: 23896:23897 ioctl 40046207 0 returned -16 [ 525.393999] ? ioctl_preallocate+0x1c0/0x1c0 [ 525.394015] ? __fget+0x237/0x370 [ 525.394034] ? security_file_ioctl+0x89/0xb0 [ 525.394046] SyS_ioctl+0x8f/0xc0 [ 525.394057] ? do_vfs_ioctl+0x1060/0x1060 [ 525.434692] do_syscall_64+0x1e8/0x640 [ 525.434703] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 525.444805] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 525.444814] RIP: 0033:0x459879 [ 525.444819] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 525.444830] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 525.444834] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 525.444840] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 525.444846] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 525.444858] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:54 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x74, 0x4) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000100), 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0xfffffffffffffe66, 0x200007fd, &(0x7f00000000c0)={0x2, 0x4e23, @local}, 0x10) write$binfmt_misc(r0, &(0x7f0000000500)=ANY=[@ANYBLOB='l'], 0x1) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='reno\x00', 0x5) sendto$inet(r0, &(0x7f00000002c0)="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", 0x209, 0x0, 0x0, 0x0) 05:51:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:54 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000200)={0x0, @speck128, 0x0, "32ff0d9ae1983036"}) 05:51:54 executing program 1 (fault-call:6 fault-nth:37): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x200000, 0x0) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f0000000080)="adac5503e19684b59b54b825493011f410e00f77c713ea284786f869504564d39dda6bc2a033f8cd0c627d86f97c1a2ca3af1d7adefb77a0d54dd5409a3722678ef26110b3ad52b5823217ae9eeb37b7e97d697d69ed4124a5b4ba") ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 525.719478] FAULT_INJECTION: forcing a failure. [ 525.719478] name failslab, interval 1, probability 0, space 0, times 0 [ 525.765056] CPU: 1 PID: 23917 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 525.772191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 525.781534] Call Trace: [ 525.784134] dump_stack+0x138/0x197 [ 525.787752] should_fail.cold+0x10f/0x159 [ 525.791885] should_failslab+0xdb/0x130 [ 525.795845] kmem_cache_alloc+0x2d7/0x780 [ 525.799973] ? save_trace+0x290/0x290 [ 525.803755] ? check_preemption_disabled+0x3c/0x250 [ 525.808754] mmu_topup_memory_caches+0x86/0x320 [ 525.813407] kvm_mmu_load+0x21/0xd40 [ 525.817107] vcpu_enter_guest+0x2eb4/0x5210 [ 525.821409] ? perf_trace_lock+0x500/0x500 [ 525.825627] ? __lock_is_held+0x10/0x140 [ 525.829672] ? emulator_read_emulated+0x50/0x50 [ 525.834321] ? lock_acquire+0x16f/0x430 [ 525.838278] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 525.843279] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 525.848105] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 525.853109] kvm_vcpu_ioctl+0x401/0xd10 [ 525.857078] ? kvm_vcpu_block+0xbb0/0xbb0 [ 525.861206] ? trace_hardirqs_on+0x10/0x10 [ 525.865423] ? save_trace+0x290/0x290 [ 525.869205] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 525.874113] ? __f_unlock_pos+0x19/0x20 [ 525.878069] ? __fget+0x210/0x370 [ 525.881507] ? find_held_lock+0x35/0x130 [ 525.885549] ? __fget+0x210/0x370 [ 525.888985] ? kvm_vcpu_block+0xbb0/0xbb0 [ 525.893112] do_vfs_ioctl+0x7ae/0x1060 [ 525.896981] ? selinux_file_mprotect+0x5d0/0x5d0 [ 525.901714] ? lock_downgrade+0x6e0/0x6e0 [ 525.905844] ? ioctl_preallocate+0x1c0/0x1c0 [ 525.910242] ? __fget+0x237/0x370 [ 525.913681] ? security_file_ioctl+0x89/0xb0 [ 525.918072] SyS_ioctl+0x8f/0xc0 [ 525.921419] ? do_vfs_ioctl+0x1060/0x1060 [ 525.925551] do_syscall_64+0x1e8/0x640 [ 525.929415] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 525.934243] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 525.939516] RIP: 0033:0x459879 [ 525.942684] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 525.950374] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 525.957624] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) 05:51:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) sendto$rxrpc(r2, &(0x7f0000000080)="252e1ab096a91c3e7b3126137deead4a353f1457bc17d32a70e2a41d3b394f4d0a3638e3e0795a8e07d293a441fbbecc5e30046877346c5ec67e148147d1147e08864e68b07f1985195a124094d008fd396bd547e38cb47121ed2ca6b000a5b8d4f63f9838c187e14eab4bdf7a352ece0d85d5122a57a77be208179491939635d41f05a0d17fb0270fecaf2287bbde6bd7139aed68b6fbde15222173396c4c1984a2c969e9648282c9e993493fe026657b4854ecf4280903f00a353f00916a1a3edfb5f3c22752311e54d063738182f4f05dee4bd507e556d9a432f1bd40fe", 0xdf, 0x1, 0x0, 0x0) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000240)) getsockopt$TIPC_NODE_RECVQ_DEPTH(r2, 0x10f, 0x83, &(0x7f0000000180), &(0x7f00000001c0)=0x4) readv(r1, &(0x7f0000000200)=[{&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000000280)=""/107, 0x6b}, {&(0x7f0000000300)=""/146, 0x92}, {&(0x7f00000003c0)=""/208, 0xd0}], 0x4) [ 525.964874] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 525.973913] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 525.981165] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:55 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000500)={0xc8, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b63000010630840000000000000000006630440020000000d63000009631040030000000000000000000000000000000e630c4003000000000000000000000001634040030000000000000000000000000000000000000001000000000000000000000050000000000000001800000000000000", @ANYPTR=&(0x7f0000000040)=ANY=[@ANYBLOB="852a627700010000030000000000000000000000000000008561646600000000030000000000000001000000000000002800000000000000852a68770100"/80], @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB="000000000000000018000000000000003800000000000000"], @ANYBLOB="00634040000000000000000000000000000000000000000010000000000000000000000068000000000000001800000000000000", @ANYPTR=&(0x7f0000000580)=ANY=[@ANYBLOB="852a747000000000070f77a9e85a644d1a", @ANYPTR=&(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/205], @ANYBLOB="cd0000000000000001000000000000002d00000000000000852a747001000000", @ANYPTR=&(0x7f0000000200)=ANY=[@ANYBLOB='\x00'/57], @ANYBLOB="390000000000000002000000000000003600000000000000852a6877010100000100"/48], @ANYPTR=&(0x7f00000002c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00(\x00\x00\x00\x00\x00\x00\x00P\x00\x00\x00\x00\x00\x00\x00']], 0xf8, 0x0, &(0x7f0000000400)="52a2226bff667add27bfce5546aea9106dea5ed3395ed4519a8a4f85674260d4f4ee3119596920d433731a8b04666cb7830fcf8ee31b05a42347087b34467d46513735324a11d2f96926d3dced2246d202dd46fdf4a00a8a8d2a43de441adc9cbf5b62d0d1171142260c0f476213ddd0c8402cc66e3775e083a65543c6d6f6d803af0e73fded814178a3782e969602d51cd8e9da08b03089edc96e2912dcc94858c53e9de43d4c5b88ddc5af110c63705b1c57cf0dc7d5224ec5c9dad9835d6b74f56683ea345ea389ce56fa979fd3876e21a033037048fd19ad9b3e04a53c48f462d77be6cc4ba526797b5fb761c405b8943f7594a5adc9"}) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000540)='/dev/dlm-control\x00', 0x105080, 0x0) ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000280)={0x4, &(0x7f0000000240)=[{0x9, 0x7, 0xc75a, 0x5}, {0x8000, 0x1, 0x8001, 0x1}, {0x1, 0x200000, 0x9, 0x7}, {0x4, 0x2, 0x0, 0x401}]}) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000007c0)={r1, &(0x7f0000000600)="d25e1677db04bd6b4f0146586e2b198563c85e36e3b0ded04239b1ac9cc0d099f8c01c69519381a6f1ca8f799e04c47f40a1038d73d93e6523357e1aa82b6da94faf32dfa2f59c531ab58a1f0953e910228892b937aef4f0356a674dd5d442d7f40fac63a2e937fb8a33ef9c9038ea53c4e86489c3573450bb190d2b8eb674f74f190118d8d325e7074e4c70a1b2deecc6dc75818f9c162830a2b203b46fe446e38b4fbfd7dc0df15b3a00ff0593a89fcc7146f4bd6276020c3c26aadfe2a7e37a2f97b8faa65ad9809b5888373d130d088423024cc4f71d3c09fef84a4f57813676755d0646d0bbbdcd302c5754ab69002a4048dd", &(0x7f0000000700)=""/158}, 0x18) 05:51:55 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@ccm_128={{0x304}, "1f1b277c742eae52", "40eca3b74d092e124d9d60f33cf3dc03", "55aa2b54", "81fba33b1c0c6f4a"}, 0x28) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 526.072329] binder: BINDER_SET_CONTEXT_MGR already set [ 526.080773] binder: 23934:23935 ioctl 40046207 0 returned -16 05:51:55 executing program 5: r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/checkreqprot\x00', 0x400, 0x0) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f00000002c0)) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = dup2(r0, r0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000280)={{0x26, 0x2}, 0x48}, 0x10) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) getgroups(0x4, &(0x7f0000000000)=[0xffffffffffffffff, 0xee01, 0xee00, 0xee01]) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000300)={{{@in=@dev, @in6=@empty}}, {{@in6=@loopback}, 0x0, @in=@local}}, &(0x7f0000000400)=0xe8) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000440)) fstat(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r2, 0xc0305616, &(0x7f0000000040)={0x0, {0x4, 0x9}}) setregid(r3, r6) ioctl$KVM_SET_CLOCK(r2, 0x4030ae7b, &(0x7f0000000480)={0xc2fb, 0x4}) msgget$private(0x0, 0x440) r7 = msgget$private(0x0, 0x40) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000180)=0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000001c0)=0x0) msgctl$IPC_SET(r7, 0x1, &(0x7f0000000200)={{0x1, r5, r4, r5, r3, 0x40, 0xbfa}, 0x7ff, 0x9, 0xdba, 0x6, 0x8, 0x8, r8, r9}) 05:51:55 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$net_dm(&(0x7f00000000c0)='NET_DM\x00') sendmsg$NET_DM_CMD_START(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x200, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4004) 05:51:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) 05:51:55 executing program 1 (fault-call:6 fault-nth:38): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:55 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000200)={0x0, @speck128, 0x0, "32ff0d9ae1983036"}) 05:51:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x200000, 0x0) ioctl$SIOCGIFHWADDR(r2, 0x8927, &(0x7f0000000080)) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:55 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000200)={0x0, @speck128, 0x0, "32ff0d9ae1983036"}) 05:51:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) [ 526.317033] FAULT_INJECTION: forcing a failure. [ 526.317033] name failslab, interval 1, probability 0, space 0, times 0 [ 526.366954] CPU: 1 PID: 23955 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 526.374086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 526.374092] Call Trace: [ 526.374111] dump_stack+0x138/0x197 [ 526.374130] should_fail.cold+0x10f/0x159 [ 526.374147] should_failslab+0xdb/0x130 [ 526.374160] kmem_cache_alloc+0x2d7/0x780 [ 526.374171] ? save_trace+0x290/0x290 [ 526.374188] mmu_topup_memory_caches+0x86/0x320 [ 526.389762] kvm_mmu_load+0x21/0xd40 [ 526.389787] vcpu_enter_guest+0x2eb4/0x5210 [ 526.389801] ? perf_trace_lock+0x500/0x500 [ 526.410562] ? __lock_is_held+0x10/0x140 [ 526.410578] ? emulator_read_emulated+0x50/0x50 [ 526.410586] ? lock_acquire+0x16f/0x430 [ 526.410596] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 526.410613] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 526.418609] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 526.418629] kvm_vcpu_ioctl+0x401/0xd10 [ 526.418642] ? kvm_vcpu_block+0xbb0/0xbb0 [ 526.418652] ? trace_hardirqs_on+0x10/0x10 [ 526.435532] ? save_trace+0x290/0x290 05:51:55 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) socket$inet(0x2, 0x8673703e2c44a479, 0x3) 05:51:55 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x8000, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0xd, &(0x7f0000000080)='/dev/net/tun\x00', 0xffffffffffffffff}, 0x30) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=0x0) kcmp(r1, r2, 0x3, r0, r0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm_plock\x00', 0xbd4b59e000a8efbc, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000180)={0x0, 0x1a}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000200)={0x3a9d4000000, 0x100000000, 0x8004, 0x100000001, 0x9, 0x4, 0x620, 0xffff, r6}, &(0x7f0000000280)=0x20) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 526.450347] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 526.450359] ? __f_unlock_pos+0x19/0x20 [ 526.450370] ? __fget+0x210/0x370 [ 526.450379] ? find_held_lock+0x35/0x130 [ 526.450389] ? __fget+0x210/0x370 [ 526.450403] ? kvm_vcpu_block+0xbb0/0xbb0 [ 526.450414] do_vfs_ioctl+0x7ae/0x1060 [ 526.494330] ? selinux_file_mprotect+0x5d0/0x5d0 [ 526.494343] ? lock_downgrade+0x6e0/0x6e0 [ 526.494357] ? ioctl_preallocate+0x1c0/0x1c0 [ 526.503254] ? __fget+0x237/0x370 [ 526.503273] ? security_file_ioctl+0x89/0xb0 [ 526.503286] SyS_ioctl+0x8f/0xc0 [ 526.503296] ? do_vfs_ioctl+0x1060/0x1060 [ 526.503311] do_syscall_64+0x1e8/0x640 [ 526.503320] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 526.503339] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 526.526921] RIP: 0033:0x459879 [ 526.536915] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 526.536927] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 526.536933] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:55 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000200)={0x0, @speck128, 0x0, "32ff0d9ae1983036"}) 05:51:55 executing program 1 (fault-call:6 fault-nth:39): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 526.536939] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 526.536945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 526.536951] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 526.702369] FAULT_INJECTION: forcing a failure. [ 526.702369] name failslab, interval 1, probability 0, space 0, times 0 [ 526.722925] CPU: 0 PID: 23981 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 526.730056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 526.739439] Call Trace: [ 526.742023] dump_stack+0x138/0x197 [ 526.742042] should_fail.cold+0x10f/0x159 [ 526.742059] should_failslab+0xdb/0x130 [ 526.742071] kmem_cache_alloc+0x2d7/0x780 [ 526.742082] ? save_trace+0x290/0x290 [ 526.742095] ? check_preemption_disabled+0x3c/0x250 [ 526.766723] mmu_topup_memory_caches+0x86/0x320 [ 526.771413] kvm_mmu_load+0x21/0xd40 [ 526.775125] vcpu_enter_guest+0x2eb4/0x5210 [ 526.779429] ? perf_trace_lock+0x500/0x500 [ 526.783646] ? __lock_is_held+0x10/0x140 [ 526.787690] ? emulator_read_emulated+0x50/0x50 [ 526.792494] ? lock_acquire+0x16f/0x430 [ 526.796457] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 526.801467] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 526.806302] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 526.811315] kvm_vcpu_ioctl+0x401/0xd10 [ 526.815283] ? kvm_vcpu_block+0xbb0/0xbb0 [ 526.819426] ? trace_hardirqs_on+0x10/0x10 [ 526.823644] ? save_trace+0x290/0x290 [ 526.827432] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 526.832348] ? __f_unlock_pos+0x19/0x20 [ 526.836310] ? __fget+0x210/0x370 [ 526.839922] ? find_held_lock+0x35/0x130 [ 526.843965] ? __fget+0x210/0x370 [ 526.847944] ? kvm_vcpu_block+0xbb0/0xbb0 [ 526.852085] do_vfs_ioctl+0x7ae/0x1060 [ 526.855968] ? selinux_file_mprotect+0x5d0/0x5d0 [ 526.860709] ? lock_downgrade+0x6e0/0x6e0 [ 526.864845] ? ioctl_preallocate+0x1c0/0x1c0 [ 526.869237] ? __fget+0x237/0x370 [ 526.872695] ? security_file_ioctl+0x89/0xb0 [ 526.877094] SyS_ioctl+0x8f/0xc0 [ 526.880550] ? do_vfs_ioctl+0x1060/0x1060 [ 526.884693] do_syscall_64+0x1e8/0x640 [ 526.888567] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 526.893422] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 526.898593] RIP: 0033:0x459879 05:51:56 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x802) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) write$P9_RLERRORu(r1, &(0x7f0000000040)={0x1b, 0x7, 0x2, {{0xe, '\x16cgroup]cpuset'}, 0x7}}, 0x1b) ioctl$CAPI_INSTALLED(r1, 0x80024322) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:56 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:56 executing program 2: r0 = socket$inet(0xa, 0x801, 0x82) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e21, 0x2, @empty}}}, &(0x7f0000000000)=0xfffffffffffffd7f) 05:51:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) delete_module(&(0x7f0000000000)='&em1proc&ppp0selinux3]/)\x00', 0xa00) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 526.901770] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 526.909475] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 526.916731] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 526.923989] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 526.931246] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 526.938512] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:56 executing program 1 (fault-call:6 fault-nth:40): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:56 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b, r1}, &(0x7f00000001c0)=0x20) 05:51:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:56 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 527.104967] FAULT_INJECTION: forcing a failure. [ 527.104967] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 527.147730] CPU: 0 PID: 24002 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 527.154866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 527.164303] Call Trace: [ 527.164325] dump_stack+0x138/0x197 [ 527.164346] should_fail.cold+0x10f/0x159 [ 527.164358] ? __might_sleep+0x93/0xb0 [ 527.164370] __alloc_pages_nodemask+0x1d6/0x7a0 [ 527.164383] ? __alloc_pages_slowpath+0x2930/0x2930 [ 527.164397] ? mmu_topup_memory_caches+0x86/0x320 [ 527.164416] ? rcu_read_lock_sched_held+0x110/0x130 [ 527.188367] alloc_pages_current+0xec/0x1e0 [ 527.188385] __get_free_pages+0xf/0x40 [ 527.188398] mmu_topup_memory_caches+0x194/0x320 [ 527.198227] kvm_mmu_load+0x21/0xd40 [ 527.198248] vcpu_enter_guest+0x2eb4/0x5210 [ 527.198264] ? perf_trace_lock+0x500/0x500 [ 527.223245] binder: 24013:24014 ioctl 80024322 0 returned -22 [ 527.223484] ? __lock_is_held+0x10/0x140 [ 527.229821] binder: BINDER_SET_CONTEXT_MGR already set [ 527.233403] ? emulator_read_emulated+0x50/0x50 [ 527.233414] ? lock_acquire+0x16f/0x430 05:51:56 executing program 0: pselect6(0x40, &(0x7f0000000580)={0x6, 0x3ff, 0x0, 0x1ff, 0x7, 0xd6, 0xc000000000000000, 0x3}, &(0x7f00000005c0)={0xffff, 0x1990, 0x5, 0x2, 0x8, 0x80000000, 0x8, 0x100}, &(0x7f0000000600)={0x2, 0xe82, 0xa6d4, 0x4, 0x9, 0x100, 0x42, 0x6}, &(0x7f0000000640)={0x77359400}, &(0x7f00000006c0)={&(0x7f0000000680)={0xfffffffffffffffb}, 0x8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2288, &(0x7f0000000080)) r2 = accept$ax25(0xffffffffffffffff, &(0x7f0000000140)={{0x3, @rose}, [@null, @bcast, @default, @bcast, @default, @rose, @rose, @bcast]}, &(0x7f0000000040)=0x48) getsockname$ax25(r2, &(0x7f00000001c0)={{0x3, @netrom}, [@default, @bcast, @rose, @netrom, @rose, @null, @null, @null]}, &(0x7f00000000c0)=0x48) r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000280)='/proc/capi/capi20\x00', 0xa000, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000340)={0x0, 0x4c, &(0x7f00000002c0)=[@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xd}}, @in={0x2, 0x4e24, @rand_addr=0xfffe000000000}, @in6={0xa, 0x4e24, 0x400, @rand_addr="5be99a43c0f9a7e9c9dd9d38f92a6325", 0xb3f}, @in={0x2, 0x4e24, @empty}]}, &(0x7f0000000380)=0x10) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f00000003c0)={r4, @in={{0x2, 0x4e22, @broadcast}}}, 0x84) getsockopt$inet6_dccp_buf(r3, 0x21, 0x80, &(0x7f0000000700)=""/80, &(0x7f0000000540)=0x6) syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00') 05:51:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:56 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) r2 = syz_open_dev$binder(&(0x7f0000000240)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0xffffffffffffffff, r1, 0x0, 0xd, &(0x7f0000000180)='/dev/binder#\x00'}, 0x30) fcntl$setownex(r0, 0xf, &(0x7f0000000200)={0x2, r3}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000040)=""/225, &(0x7f0000000140)=0xe1) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000280)={@remote, @empty, 0x1, 0x7, [@multicast1, @rand_addr=0x3, @local, @empty, @remote, @multicast2, @multicast1]}, 0x2c) [ 527.233425] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 527.233442] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 527.233452] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 527.233472] kvm_vcpu_ioctl+0x401/0xd10 [ 527.233483] ? kvm_vcpu_block+0xbb0/0xbb0 [ 527.233492] ? trace_hardirqs_on+0x10/0x10 [ 527.233505] ? save_trace+0x290/0x290 [ 527.233513] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 527.233521] ? __f_unlock_pos+0x19/0x20 [ 527.233532] ? __fget+0x210/0x370 [ 527.240949] binder: 24013:24014 ioctl 40046207 0 returned -16 [ 527.243460] ? find_held_lock+0x35/0x130 [ 527.243473] ? __fget+0x210/0x370 [ 527.243488] ? kvm_vcpu_block+0xbb0/0xbb0 [ 527.243501] do_vfs_ioctl+0x7ae/0x1060 [ 527.250508] binder: 24013:24015 ioctl 80024322 0 returned -22 [ 527.252750] ? selinux_file_mprotect+0x5d0/0x5d0 [ 527.252763] ? lock_downgrade+0x6e0/0x6e0 [ 527.252777] ? ioctl_preallocate+0x1c0/0x1c0 [ 527.252788] ? __fget+0x237/0x370 [ 527.252803] ? security_file_ioctl+0x89/0xb0 [ 527.252813] SyS_ioctl+0x8f/0xc0 [ 527.252821] ? do_vfs_ioctl+0x1060/0x1060 05:51:56 executing program 3: getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:51:56 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) socketpair(0x1, 0x0, 0x100000000, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000040)={0x0, 0x6a, "6236c5b8257150f29b1ca9254099318d521602be365b218bb880ba64202fe9add2439fec42b105262cdd59ca71106211f7ddbeddc326c79f0659e5460a9fe2323197993940dc67ff1929670b13b5d4ad0558e3b56ba74cd0dc4cac8bffbc3f4d17410ea15228ef308280"}, &(0x7f0000000440)=0x72) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000480)={r2, 0xe01a}, 0x8) bind$rxrpc(r1, &(0x7f0000000100)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e22, 0x5, @ipv4={[], [], @local}, 0xa278}}, 0x24) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x2, 0xbfbc, 0x8}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e21, 0x3, @mcast2, 0x8}}, 0x7, 0x2, 0x3, 0x6, 0x7}, &(0x7f00000002c0)=0x14f) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000300)={0x0, 0x6}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000003c0)={0x0, 0x33, "d3bfa973473e4ba9c584a79b2fb3355a2f528968a031d3cb51303f3b9d3980ff784d8e1c646f7eb16b1de22c52295f57004717"}, &(0x7f0000000400)=0x3b) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000004c0)={r2, @in6={{0xa, 0x4e20, 0x8, @ipv4={[], [], @remote}, 0x6}}}, &(0x7f0000000380)=0x84) [ 527.252835] do_syscall_64+0x1e8/0x640 [ 527.278915] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 527.297379] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 527.297389] RIP: 0033:0x459879 [ 527.297395] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 527.297406] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 527.297412] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 527.297418] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 05:51:56 executing program 3: getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 527.297424] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 527.297429] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) delete_module(&(0x7f0000000000)='&em1proc&ppp0selinux3]/)\x00', 0xa00) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:56 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='nlmon0\x00', 0x10) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:56 executing program 1 (fault-call:6 fault-nth:41): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x3) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:56 executing program 3: getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:51:56 executing program 3: r0 = socket$inet(0xa, 0x0, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 527.627078] FAULT_INJECTION: forcing a failure. [ 527.627078] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:51:56 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x2, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x1, 0x3, &(0x7f0000000500)=[{&(0x7f00000003c0)="479360834b2f", 0x6, 0x1}, {&(0x7f0000000b40)="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", 0x1000, 0xfffffffffffffff8}, {&(0x7f0000000400)="954fe3d73aa3641299829051b9576e71287d6b0ea434990251af0c6b055245b3e4ce2c80cc0d8bb2482e1694a4e6e13a073717e6f0a64f94822982d5ec2eaeb24791cdc7575bc6c66f878cd32d2d30d92b0bdea473208cd73cf4619527f6be0567aaae12ab485162ff450344e3ca10a4e24db2cd5cf5771fe6556c5e4b8783d0362c69cdee09c24985694bf1296fcf6bf125af8a576a22e323306c335b2162e24f165d3731eb7a8d9f4b1509c8f13b7b7db0d6ee684e3a321a73c1eb78ea43d9711794f24ed5f8c3ce551f0d09a33db471bd1df83b", 0xd5, 0x2}], 0x4000, &(0x7f0000000580)={[{@uni_xlate='uni_xlate=1'}, {@utf8='utf8=1'}, {@fat=@check_normal='check=normal'}, {@utf8='utf8=1'}, {@rodir='rodir'}, {@utf8='utf8=1'}, {@uni_xlateno='uni_xlate=0'}], [{@appraise='appraise'}]}) getresuid(&(0x7f0000000140)=0x0, &(0x7f0000000180), &(0x7f00000001c0)) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000300)) sendmsg$nl_netfilter(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40020}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0xb, 0xd, 0x4, 0x70bd28, 0x25dfdbfc, {0xa, 0x0, 0x6}, [@typed={0x8, 0x11, @uid=r2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 527.672559] CPU: 1 PID: 24043 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 527.679740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 527.689395] Call Trace: [ 527.692010] dump_stack+0x138/0x197 [ 527.695669] should_fail.cold+0x10f/0x159 [ 527.699831] ? __might_sleep+0x93/0xb0 [ 527.699847] __alloc_pages_nodemask+0x1d6/0x7a0 [ 527.699863] ? __alloc_pages_slowpath+0x2930/0x2930 [ 527.708645] ? mmu_topup_memory_caches+0x86/0x320 05:51:57 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = socket$inet(0x2, 0x80000, 0x401) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) r2 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x3, 0x2) ioctl$VIDIOC_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f00000001c0)={0x0, @reserved}) [ 527.708671] ? rcu_read_lock_sched_held+0x110/0x130 [ 527.723580] alloc_pages_current+0xec/0x1e0 [ 527.727926] __get_free_pages+0xf/0x40 [ 527.731831] mmu_topup_memory_caches+0x194/0x320 [ 527.731848] kvm_mmu_load+0x21/0xd40 [ 527.731868] vcpu_enter_guest+0x2eb4/0x5210 [ 527.731881] ? perf_trace_lock+0x500/0x500 [ 527.731891] ? __lock_is_held+0x10/0x140 [ 527.731902] ? emulator_read_emulated+0x50/0x50 [ 527.731913] ? lock_acquire+0x16f/0x430 [ 527.740441] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 527.740459] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 527.740469] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 527.740487] kvm_vcpu_ioctl+0x401/0xd10 [ 527.740498] ? kvm_vcpu_block+0xbb0/0xbb0 [ 527.740508] ? trace_hardirqs_on+0x10/0x10 [ 527.740520] ? save_trace+0x290/0x290 [ 527.740528] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 527.740540] ? __f_unlock_pos+0x19/0x20 [ 527.748819] FAT-fs (loop4): Unrecognized mount option "appraise" or missing value [ 527.749101] ? __fget+0x210/0x370 [ 527.776714] ? find_held_lock+0x35/0x130 [ 527.776728] ? __fget+0x210/0x370 [ 527.776745] ? kvm_vcpu_block+0xbb0/0xbb0 [ 527.784901] do_vfs_ioctl+0x7ae/0x1060 [ 527.793030] ? selinux_file_mprotect+0x5d0/0x5d0 [ 527.793044] ? lock_downgrade+0x6e0/0x6e0 [ 527.793055] ? ioctl_preallocate+0x1c0/0x1c0 [ 527.793067] ? __fget+0x237/0x370 [ 527.809811] ? security_file_ioctl+0x89/0xb0 [ 527.809827] SyS_ioctl+0x8f/0xc0 [ 527.809836] ? do_vfs_ioctl+0x1060/0x1060 [ 527.809850] do_syscall_64+0x1e8/0x640 [ 527.823374] input: syz1 as /devices/virtual/input/input324 [ 527.825016] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 527.825038] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 527.825045] RIP: 0033:0x459879 [ 527.825053] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 527.834151] ORIG_RAX: 0000000000000010 [ 527.834159] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 527.834165] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 527.834171] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 527.834177] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 527.834184] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 528.032983] binder: BINDER_SET_CONTEXT_MGR already set [ 528.038405] binder: 24064:24065 ioctl 40046207 0 returned -16 [ 528.060259] binder: BINDER_SET_CONTEXT_MGR already set 05:51:57 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000540)='/dev/hwrng\x00', 0x180, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000580)=0x0) write$cgroup_pid(r1, &(0x7f00000005c0)=r2, 0x12) r3 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x7, 0x4, 0x438, 0x120, 0x238, 0x120, 0x350, 0x350, 0x350, 0x4, &(0x7f0000000040), {[{{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @remote, 0xffffff00, 0x0, @empty, {[0x0, 0x0, 0xff, 0x0, 0x4dfd34866034d8ef]}, @empty, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}, 0x100000000, 0x6, 0x1, 0x10000, 0x6, 0x5, 'gre0\x00', 'gre0\x00', {}, {0xff}}, 0xf0, 0x120}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0xffff, 0x3f, 0x3}}}, {{@uncond, 0xf0, 0x118}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0xffffffff, 0x3}}}, {{@uncond, 0xf0, 0x118}, @unspec=@AUDIT={0x28, 'AUDIT\x00'}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x488) 05:51:57 executing program 0: r0 = syz_open_dev$dmmidi(&(0x7f0000000280)='/dev/dmmidi#\x00', 0xfffffffffffff510, 0x145002) getsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000002c0), &(0x7f0000000300)=0x4) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000080)={0x5, 0x10, 0xfa00, {&(0x7f0000000380), r2}}, 0x18) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000140)={[{0x80000000000, 0x4fda, 0x1, 0x7, 0x40, 0xfffffffffffffffe, 0xe2, 0x8000, 0x10001, 0x4000000, 0x7, 0x4, 0xfffffffffffffff8}, {0x48a6, 0xfffffffffffffffd, 0x0, 0x1000, 0x6, 0x4, 0x0, 0x29, 0x0, 0x8, 0xffffffffffffff00, 0x101, 0xd96}, {0xfffffffffffffffe, 0x4, 0x100000001, 0x7f, 0xfffffffffffffff8, 0xd4, 0x9, 0x0, 0x2, 0xfffffffffffffffa, 0x40, 0x400, 0x7}], 0x4}) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:57 executing program 2: r0 = socket$inet(0xa, 0x801, 0x4037289af5) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:57 executing program 1 (fault-call:6 fault-nth:42): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x30800, 0x0) ioctl$RTC_EPOCH_SET(r2, 0x4008700e, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x80) 05:51:57 executing program 3: r0 = socket$inet(0xa, 0x0, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.088520] binder: 24064:24069 ioctl 40046207 0 returned -16 [ 528.138267] FAULT_INJECTION: forcing a failure. [ 528.138267] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:51:57 executing program 3: r0 = socket$inet(0xa, 0x0, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.236624] CPU: 1 PID: 24080 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 528.243868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 528.243874] Call Trace: [ 528.243894] dump_stack+0x138/0x197 [ 528.243912] should_fail.cold+0x10f/0x159 [ 528.263900] ? __might_sleep+0x93/0xb0 [ 528.268322] __alloc_pages_nodemask+0x1d6/0x7a0 [ 528.273017] ? __alloc_pages_slowpath+0x2930/0x2930 [ 528.278219] ? mmu_topup_memory_caches+0x86/0x320 05:51:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$BLKFLSBUF(r2, 0x1261, &(0x7f0000000080)=0x2000000000003ff) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r2) write$cgroup_subtree(r2, &(0x7f00000000c0)={[{0x2d, 'pids'}, {0x5c591eb95e22ada2, 'memory'}, {0x2b, 'memory'}, {0x2d, 'cpu'}]}, 0x1b) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 528.278238] ? rcu_read_lock_sched_held+0x110/0x130 [ 528.278254] alloc_pages_current+0xec/0x1e0 [ 528.278268] __get_free_pages+0xf/0x40 [ 528.296965] mmu_topup_memory_caches+0x194/0x320 [ 528.301922] kvm_mmu_load+0x21/0xd40 [ 528.305663] vcpu_enter_guest+0x2eb4/0x5210 [ 528.310080] ? perf_trace_lock+0x500/0x500 [ 528.310091] ? __lock_is_held+0x10/0x140 [ 528.310103] ? emulator_read_emulated+0x50/0x50 [ 528.310111] ? lock_acquire+0x16f/0x430 [ 528.310121] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 528.310136] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 528.327507] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 528.327528] kvm_vcpu_ioctl+0x401/0xd10 [ 528.327541] ? kvm_vcpu_block+0xbb0/0xbb0 [ 528.327553] ? trace_hardirqs_on+0x10/0x10 [ 528.350696] ? save_trace+0x290/0x290 [ 528.350707] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 528.350719] ? __f_unlock_pos+0x19/0x20 [ 528.350730] ? __fget+0x210/0x370 [ 528.350739] ? find_held_lock+0x35/0x130 [ 528.350747] ? __fget+0x210/0x370 [ 528.350761] ? kvm_vcpu_block+0xbb0/0xbb0 [ 528.350772] do_vfs_ioctl+0x7ae/0x1060 [ 528.375894] ? selinux_file_mprotect+0x5d0/0x5d0 [ 528.383504] ? lock_downgrade+0x6e0/0x6e0 [ 528.383519] ? ioctl_preallocate+0x1c0/0x1c0 [ 528.383534] ? __fget+0x237/0x370 [ 528.383552] ? security_file_ioctl+0x89/0xb0 [ 528.401139] SyS_ioctl+0x8f/0xc0 [ 528.401156] ? do_vfs_ioctl+0x1060/0x1060 [ 528.401172] do_syscall_64+0x1e8/0x640 [ 528.401180] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 528.401197] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 528.401208] RIP: 0033:0x459879 05:51:57 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = dup2(r1, r0) ioctl$DRM_IOCTL_MODESET_CTL(r1, 0x40086408, &(0x7f0000000080)={0x10000, 0x68f1a337}) openat$cgroup_ro(r2, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x0, 0x0) [ 528.409500] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 528.409512] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 528.409517] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 528.409523] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 528.409528] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 528.409534] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:57 executing program 1 (fault-call:6 fault-nth:43): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:57 executing program 2: r0 = socket$inet(0xa, 0x2, 0x5) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:57 executing program 3: r0 = socket$inet(0xa, 0x801, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.564170] input: syz1 as /devices/virtual/input/input325 [ 528.589025] FAULT_INJECTION: forcing a failure. [ 528.589025] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 528.606416] CPU: 0 PID: 24109 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 528.613560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 528.622950] Call Trace: [ 528.625572] dump_stack+0x138/0x197 [ 528.629596] should_fail.cold+0x10f/0x159 [ 528.633764] ? __might_sleep+0x93/0xb0 [ 528.637831] __alloc_pages_nodemask+0x1d6/0x7a0 [ 528.637845] ? __alloc_pages_slowpath+0x2930/0x2930 [ 528.637857] ? mmu_topup_memory_caches+0x86/0x320 [ 528.647639] ? rcu_read_lock_sched_held+0x110/0x130 [ 528.647655] alloc_pages_current+0xec/0x1e0 [ 528.647674] __get_free_pages+0xf/0x40 [ 528.666016] mmu_topup_memory_caches+0x194/0x320 [ 528.670942] kvm_mmu_load+0x21/0xd40 [ 528.674729] vcpu_enter_guest+0x2eb4/0x5210 [ 528.678953] binder: BINDER_SET_CONTEXT_MGR already set [ 528.679219] ? perf_trace_lock+0x500/0x500 [ 528.684775] binder: 24116:24117 ioctl 40046207 0 returned -16 [ 528.688847] ? __lock_is_held+0x10/0x140 [ 528.688864] ? emulator_read_emulated+0x50/0x50 [ 528.688874] ? lock_acquire+0x16f/0x430 [ 528.688883] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 05:51:58 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:58 executing program 3: r0 = socket$inet(0xa, 0x801, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.688899] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 528.697784] binder: BINDER_SET_CONTEXT_MGR already set [ 528.698863] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 528.698885] kvm_vcpu_ioctl+0x401/0xd10 [ 528.698896] ? kvm_vcpu_block+0xbb0/0xbb0 [ 528.698909] ? trace_hardirqs_on+0x10/0x10 [ 528.703967] binder: 24116:24118 ioctl 40046207 0 returned -16 [ 528.707913] ? save_trace+0x290/0x290 [ 528.707924] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 528.707935] ? __f_unlock_pos+0x19/0x20 [ 528.707946] ? __fget+0x210/0x370 05:51:58 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x3ff}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000340)={r1, @in6={{0xa, 0x4e23, 0x100000001, @rand_addr="aefb33feba7de521e50f6097f1cfda55", 0x7ff}}}, &(0x7f00000000c0)=0x84) [ 528.707957] ? find_held_lock+0x35/0x130 [ 528.707969] ? __fget+0x210/0x370 [ 528.770856] ? kvm_vcpu_block+0xbb0/0xbb0 [ 528.775016] do_vfs_ioctl+0x7ae/0x1060 [ 528.778911] ? selinux_file_mprotect+0x5d0/0x5d0 [ 528.783712] ? lock_downgrade+0x6e0/0x6e0 [ 528.787884] ? ioctl_preallocate+0x1c0/0x1c0 [ 528.792314] ? __fget+0x237/0x370 [ 528.795788] ? security_file_ioctl+0x89/0xb0 [ 528.800214] SyS_ioctl+0x8f/0xc0 [ 528.803603] ? do_vfs_ioctl+0x1060/0x1060 [ 528.807922] do_syscall_64+0x1e8/0x640 05:51:58 executing program 3: r0 = socket$inet(0xa, 0x801, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.811829] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 528.816697] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 528.821905] RIP: 0033:0x459879 [ 528.825116] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 528.833093] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 528.833099] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 528.833105] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 528.833110] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:51:58 executing program 3: socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:51:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 528.833115] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:58 executing program 1 (fault-call:6 fault-nth:44): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:58 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = dup2(r1, r0) ioctl$DRM_IOCTL_MODESET_CTL(r1, 0x40086408, &(0x7f0000000080)={0x10000, 0x68f1a337}) openat$cgroup_ro(r2, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x0, 0x0) 05:51:58 executing program 3: socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 528.992966] FAULT_INJECTION: forcing a failure. [ 528.992966] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 529.014510] CPU: 1 PID: 24141 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 529.021671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 529.031163] Call Trace: [ 529.033784] dump_stack+0x138/0x197 [ 529.037444] should_fail.cold+0x10f/0x159 [ 529.041939] ? __might_sleep+0x93/0xb0 [ 529.046062] __alloc_pages_nodemask+0x1d6/0x7a0 [ 529.046077] ? __alloc_pages_slowpath+0x2930/0x2930 [ 529.046087] ? mmu_topup_memory_caches+0x86/0x320 [ 529.046100] ? rcu_read_lock_sched_held+0x110/0x130 [ 529.046111] alloc_pages_current+0xec/0x1e0 [ 529.046122] __get_free_pages+0xf/0x40 [ 529.046130] mmu_topup_memory_caches+0x194/0x320 [ 529.046141] kvm_mmu_load+0x21/0xd40 [ 529.046157] vcpu_enter_guest+0x2eb4/0x5210 [ 529.046168] ? perf_trace_lock+0x500/0x500 [ 529.046179] ? __lock_is_held+0x10/0x140 [ 529.046191] ? emulator_read_emulated+0x50/0x50 [ 529.046200] ? lock_acquire+0x16f/0x430 [ 529.046211] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 529.060928] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 529.060938] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 529.060956] kvm_vcpu_ioctl+0x401/0xd10 [ 529.060968] ? kvm_vcpu_block+0xbb0/0xbb0 [ 529.060981] ? trace_hardirqs_on+0x10/0x10 [ 529.079227] ? save_trace+0x290/0x290 [ 529.087639] ? perf_trace_lock_acquire+0x10d/0x4f0 05:51:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x10b000, 0x0) setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f0000000080), 0x4) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 529.087651] ? __f_unlock_pos+0x19/0x20 [ 529.087662] ? __fget+0x210/0x370 [ 529.087673] ? find_held_lock+0x35/0x130 [ 529.109720] ? __fget+0x210/0x370 [ 529.109737] ? kvm_vcpu_block+0xbb0/0xbb0 [ 529.109749] do_vfs_ioctl+0x7ae/0x1060 [ 529.119923] ? selinux_file_mprotect+0x5d0/0x5d0 [ 529.119935] ? lock_downgrade+0x6e0/0x6e0 [ 529.119945] ? ioctl_preallocate+0x1c0/0x1c0 [ 529.119956] ? __fget+0x237/0x370 [ 529.136386] ? security_file_ioctl+0x89/0xb0 [ 529.136402] SyS_ioctl+0x8f/0xc0 05:51:58 executing program 2: r0 = socket$inet(0xa, 0x801, 0x94) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) socketpair$unix(0x1, 0x8000000000001, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet(0x10, 0x80003, 0x0) sendmsg(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000200007041dfffd946f6105000200000a1f000002002808000800040004000300280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) ppoll(&(0x7f0000000000)=[{r0, 0x80}, {r0, 0x2004}, {r0, 0x8000}], 0x3, &(0x7f0000000080)={0x0, 0x1c9c380}, &(0x7f00000000c0)={0x2}, 0x8) [ 529.136413] ? do_vfs_ioctl+0x1060/0x1060 [ 529.149858] input: syz1 as /devices/virtual/input/input326 [ 529.150846] do_syscall_64+0x1e8/0x640 [ 529.150856] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 529.150874] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 529.150883] RIP: 0033:0x459879 [ 529.150888] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 529.158590] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 529.158596] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:51:58 executing program 3: socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 529.158601] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 529.158606] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 529.158612] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 529.349565] binder: BINDER_SET_CONTEXT_MGR already set [ 529.397922] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 529.422086] binder: 24158:24159 ioctl 40046207 0 returned -16 05:51:58 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x4) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:51:58 executing program 1 (fault-call:6 fault-nth:45): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:58 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, &(0x7f00000001c0)) 05:51:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pread64(r1, &(0x7f0000000080)=""/181, 0xb5, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x1, 0x1, 0x2000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:58 executing program 4 (fault-call:2 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 529.469945] binder: BINDER_SET_CONTEXT_MGR already set [ 529.475766] binder: 24158:24170 ioctl 40046207 0 returned -16 05:51:58 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, &(0x7f00000001c0)) 05:51:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x2000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r2, 0x80045301, &(0x7f0000000100)) fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000180)='trusted.overlay.origin\x00', &(0x7f0000000080)='y\x00', 0xfffffffffffffe8f, 0x2) write$P9_RRENAMEAT(r2, &(0x7f0000000000)={0x7, 0x4b, 0x2}, 0x7) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000140)={0x6b696e29c950ef40, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 529.552666] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 529.596594] FAULT_INJECTION: forcing a failure. [ 529.596594] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 529.633001] CPU: 1 PID: 24181 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 529.640268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 529.649821] Call Trace: [ 529.649844] dump_stack+0x138/0x197 [ 529.649863] should_fail.cold+0x10f/0x159 [ 529.649873] ? __might_sleep+0x93/0xb0 [ 529.649887] __alloc_pages_nodemask+0x1d6/0x7a0 [ 529.664337] ? __alloc_pages_slowpath+0x2930/0x2930 [ 529.664349] ? mmu_topup_memory_caches+0x86/0x320 [ 529.664364] ? rcu_read_lock_sched_held+0x110/0x130 [ 529.684742] alloc_pages_current+0xec/0x1e0 [ 529.684762] __get_free_pages+0xf/0x40 [ 529.693199] mmu_topup_memory_caches+0x194/0x320 [ 529.693212] kvm_mmu_load+0x21/0xd40 [ 529.693230] vcpu_enter_guest+0x2eb4/0x5210 [ 529.693245] ? perf_trace_lock+0x500/0x500 [ 529.693256] ? __lock_is_held+0x10/0x140 [ 529.693267] ? emulator_read_emulated+0x50/0x50 [ 529.710609] ? lock_acquire+0x16f/0x430 [ 529.710642] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 529.710680] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 529.719570] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 529.719591] kvm_vcpu_ioctl+0x401/0xd10 [ 529.719603] ? kvm_vcpu_block+0xbb0/0xbb0 05:51:59 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, 0x0, &(0x7f00000001c0)) 05:51:59 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x63, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 529.742622] ? trace_hardirqs_on+0x10/0x10 [ 529.742636] ? save_trace+0x290/0x290 [ 529.742646] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 529.751273] ? __f_unlock_pos+0x19/0x20 [ 529.751285] ? __fget+0x210/0x370 [ 529.751296] ? find_held_lock+0x35/0x130 [ 529.751304] ? __fget+0x210/0x370 [ 529.751319] ? kvm_vcpu_block+0xbb0/0xbb0 [ 529.751328] do_vfs_ioctl+0x7ae/0x1060 [ 529.751341] ? selinux_file_mprotect+0x5d0/0x5d0 [ 529.788677] ? lock_downgrade+0x6e0/0x6e0 [ 529.792939] ? ioctl_preallocate+0x1c0/0x1c0 [ 529.792953] ? __fget+0x237/0x370 [ 529.792972] ? security_file_ioctl+0x89/0xb0 [ 529.792984] SyS_ioctl+0x8f/0xc0 [ 529.792992] ? do_vfs_ioctl+0x1060/0x1060 [ 529.793005] do_syscall_64+0x1e8/0x640 [ 529.793015] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 529.801157] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 529.801167] RIP: 0033:0x459879 [ 529.801172] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 529.801183] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:51:59 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x480002, 0x0) r1 = socket$inet(0xa, 0x801, 0x84) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000200)={r0, 0x10, &(0x7f00000001c0)={&(0x7f0000000080)=""/92, 0x5c, 0x0}}, 0x10) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240)=r2, 0x4) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/cachefiles\x00', 0x20000, 0x0) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f0000000300)) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/pfkey\x00', 0x80000, 0x0) ioctl$TIOCSISO7816(r2, 0xc0285443, &(0x7f0000000280)={0x3, 0x8, 0xffff, 0x101, 0x6061e137}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000080)=0x4) fsetxattr(r0, &(0x7f00000001c0)=@known='trusted.overlay.metacopy\x00', &(0x7f0000000340)='trusted.overlay.metacopy\x00', 0x19, 0x3) r5 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x9, 0x2) accept4$llc(r5, &(0x7f0000000140), &(0x7f0000000180)=0x10, 0x80800) setsockopt$bt_BT_SECURITY(r5, 0x112, 0x4, &(0x7f0000000100)={0x8, 0x1}, 0x2) ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000380)={[{0x7, 0x6, 0x64, 0x7, 0x4, 0x9, 0x8, 0x9, 0x80000001, 0x4, 0x9, 0x3, 0x5}, {0x1f, 0x9, 0x7, 0x3, 0x2, 0x7, 0x6, 0x1ff, 0x5, 0x1, 0x2, 0x5, 0x3}, {0x34926e6b, 0x8, 0x2, 0x9, 0x0, 0xfffffffffffffff8, 0x7fffffff, 0x80000001, 0x2, 0x81, 0x0, 0x8, 0x20}], 0x2}) 05:51:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) epoll_pwait(r2, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x7, &(0x7f0000000100)={0xaf5}, 0x8) [ 529.801188] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 529.801194] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 529.801199] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 529.801204] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:59 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x8000) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, 0x0}) ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f0000000080)=r3) ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f0000000000)) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x46, 0x0, 0x19d) sendmmsg(r1, &(0x7f00000092c0), 0x170, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r4 = dup2(r0, r0) ioctl$TIOCMBIC(r4, 0x5417, &(0x7f0000000040)=0x7ff) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 05:51:59 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x2, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:51:59 executing program 1 (fault-call:6 fault-nth:46): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:51:59 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x3, [@broadcast, @local, @remote]}, 0x1c) 05:51:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000000)=0x4) lgetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'osx.', '/dev/kvm\x00'}, &(0x7f0000000540)=""/4096, 0x1000) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:59 executing program 4: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x7ce12f3eb3dafd4d, 0x0) connect$bt_sco(r0, &(0x7f0000000100)={0x1f, {0x40, 0x5, 0xff, 0x6, 0x40, 0x10001}}, 0x8) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xfffffffffffffe01, 0x0) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000080)=0x3f, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 530.030702] binder: BINDER_SET_CONTEXT_MGR already set [ 530.036184] binder: 24213:24214 ioctl 40046207 0 returned -16 [ 530.043156] binder: BINDER_SET_CONTEXT_MGR already set [ 530.057853] binder: 24213:24214 ioctl 40046207 0 returned -16 [ 530.065371] binder: BINDER_SET_CONTEXT_MGR already set [ 530.072460] binder: 24213:24215 ioctl 40046207 0 returned -16 [ 530.140210] FAULT_INJECTION: forcing a failure. [ 530.140210] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 530.155255] CPU: 1 PID: 24224 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 530.162574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 530.172130] Call Trace: [ 530.174806] dump_stack+0x138/0x197 [ 530.178483] should_fail.cold+0x10f/0x159 [ 530.182643] ? __might_sleep+0x93/0xb0 [ 530.186765] __alloc_pages_nodemask+0x1d6/0x7a0 [ 530.186781] ? __alloc_pages_slowpath+0x2930/0x2930 [ 530.196474] ? mmu_topup_memory_caches+0x86/0x320 [ 530.196489] ? rcu_read_lock_sched_held+0x110/0x130 [ 530.196503] alloc_pages_current+0xec/0x1e0 [ 530.210912] __get_free_pages+0xf/0x40 [ 530.214980] mmu_topup_memory_caches+0x194/0x320 [ 530.214995] kvm_mmu_load+0x21/0xd40 [ 530.223483] vcpu_enter_guest+0x2eb4/0x5210 [ 530.227980] ? perf_trace_lock+0x500/0x500 [ 530.227994] ? __lock_is_held+0x10/0x140 [ 530.228006] ? emulator_read_emulated+0x50/0x50 [ 530.228019] ? lock_acquire+0x16f/0x430 [ 530.245025] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 530.250234] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 530.255416] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 530.255436] kvm_vcpu_ioctl+0x401/0xd10 [ 530.255452] ? kvm_vcpu_block+0xbb0/0xbb0 [ 530.264432] ? trace_hardirqs_on+0x10/0x10 [ 530.264449] ? save_trace+0x290/0x290 [ 530.264459] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 530.281777] ? __f_unlock_pos+0x19/0x20 [ 530.285765] ? __fget+0x210/0x370 [ 530.289426] ? find_held_lock+0x35/0x130 [ 530.289443] ? __fget+0x210/0x370 [ 530.296945] ? kvm_vcpu_block+0xbb0/0xbb0 [ 530.296957] do_vfs_ioctl+0x7ae/0x1060 [ 530.296970] ? selinux_file_mprotect+0x5d0/0x5d0 [ 530.309964] ? lock_downgrade+0x6e0/0x6e0 [ 530.314137] ? ioctl_preallocate+0x1c0/0x1c0 [ 530.318550] ? __fget+0x237/0x370 [ 530.322031] ? security_file_ioctl+0x89/0xb0 [ 530.326662] SyS_ioctl+0x8f/0xc0 [ 530.330045] ? do_vfs_ioctl+0x1060/0x1060 [ 530.334212] do_syscall_64+0x1e8/0x640 [ 530.338102] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 530.338123] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 530.348280] RIP: 0033:0x459879 [ 530.348286] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 530.348298] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 530.366715] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 530.374003] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 530.374009] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:51:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x600, 0x0) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000200)=""/157) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:51:59 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3f, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:51:59 executing program 0: openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x2000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:51:59 executing program 1 (fault-call:6 fault-nth:47): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 530.374014] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:51:59 executing program 2: getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0xd9b6}, &(0x7f0000000080)=0x8) r1 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r0, @in6={{0xa, 0x4e21, 0xffffffffffffffc0, @remote, 0xffffffff}}, 0x81, 0x9, 0x3, 0x6, 0x23}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:51:59 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x7, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) [ 530.446850] Unknown ioctl -2131205114 [ 530.478634] FAULT_INJECTION: forcing a failure. [ 530.478634] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 530.496579] Unknown ioctl -2131205114 [ 530.539101] CPU: 1 PID: 24238 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 530.546540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 530.555914] Call Trace: [ 530.558527] dump_stack+0x138/0x197 [ 530.562182] should_fail.cold+0x10f/0x159 [ 530.566646] ? __might_sleep+0x93/0xb0 [ 530.570556] __alloc_pages_nodemask+0x1d6/0x7a0 [ 530.575249] ? __alloc_pages_slowpath+0x2930/0x2930 [ 530.580284] ? mmu_topup_memory_caches+0x86/0x320 [ 530.585148] ? rcu_read_lock_sched_held+0x110/0x130 [ 530.590351] alloc_pages_current+0xec/0x1e0 [ 530.594698] __get_free_pages+0xf/0x40 [ 530.598605] mmu_topup_memory_caches+0x194/0x320 [ 530.603554] kvm_mmu_load+0x21/0xd40 [ 530.607292] vcpu_enter_guest+0x2eb4/0x5210 [ 530.611632] ? perf_trace_lock+0x500/0x500 [ 530.616133] ? __lock_is_held+0x10/0x140 [ 530.620297] ? emulator_read_emulated+0x50/0x50 [ 530.624989] ? lock_acquire+0x16f/0x430 [ 530.629137] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 530.629157] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 530.639165] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 530.639187] kvm_vcpu_ioctl+0x401/0xd10 [ 530.639198] ? kvm_vcpu_block+0xbb0/0xbb0 [ 530.652739] ? trace_hardirqs_on+0x10/0x10 [ 530.657005] ? save_trace+0x290/0x290 [ 530.660955] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 530.666066] ? __f_unlock_pos+0x19/0x20 [ 530.670186] ? __fget+0x210/0x370 [ 530.670198] ? find_held_lock+0x35/0x130 [ 530.670207] ? __fget+0x210/0x370 [ 530.670220] ? kvm_vcpu_block+0xbb0/0xbb0 [ 530.670231] do_vfs_ioctl+0x7ae/0x1060 [ 530.677744] ? selinux_file_mprotect+0x5d0/0x5d0 [ 530.677757] ? lock_downgrade+0x6e0/0x6e0 [ 530.698287] ? ioctl_preallocate+0x1c0/0x1c0 [ 530.702715] ? __fget+0x237/0x370 [ 530.706383] ? security_file_ioctl+0x89/0xb0 [ 530.710817] SyS_ioctl+0x8f/0xc0 [ 530.714370] ? do_vfs_ioctl+0x1060/0x1060 [ 530.718537] do_syscall_64+0x1e8/0x640 [ 530.722435] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 530.727496] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 530.732695] RIP: 0033:0x459879 [ 530.735894] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 530.743618] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 530.751026] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 530.758322] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 530.765640] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 530.771564] binder: 24251:24253 ioctl 5417 20000040 returned -22 [ 530.773293] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 530.828075] binder: BINDER_SET_CONTEXT_MGR already set [ 530.866290] binder: 24251:24255 ioctl 40046207 0 returned -16 05:52:00 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) 05:52:00 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0xa1, 0x10400) 05:52:00 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:52:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x40, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0xc) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x5, 0x9d, 0x9, 0x3, 0x0, 0x5, 0x200, 0x4, 0xfb00, 0x3, 0x6, 0x9, 0x3f, 0x4dd, 0x8, 0x0, 0x6c2, 0x1, 0x3, 0x5, 0x1, 0x5, 0x1000, 0x8, 0x401, 0x1ff, 0xfffffffffffffff8, 0x4, 0x262, 0x9, 0x1, 0x34, 0x0, 0x7, 0x10000, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x2fe}, 0x9120, 0x1000, 0x7, 0x1, 0x3, 0x0, 0x9}, r3, 0xd, 0xffffffffffffffff, 0x1) ioctl$TCSETXF(r2, 0x5434, &(0x7f0000000080)={0xffffffffffffff81, 0x9, [0x8, 0x0, 0x0, 0x4, 0x9], 0x22}) 05:52:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0) ioctl$VFIO_CHECK_EXTENSION(r2, 0x3b65, 0xa) 05:52:00 executing program 1 (fault-call:6 fault-nth:48): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 531.103153] binder: 24251:24255 ioctl 5417 20000040 returned -22 [ 531.183782] FAULT_INJECTION: forcing a failure. [ 531.183782] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 531.215564] CPU: 0 PID: 24266 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 531.222723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 531.232456] Call Trace: [ 531.235069] dump_stack+0x138/0x197 [ 531.238724] should_fail.cold+0x10f/0x159 [ 531.242899] ? __might_sleep+0x93/0xb0 [ 531.247005] __alloc_pages_nodemask+0x1d6/0x7a0 [ 531.251695] ? __alloc_pages_slowpath+0x2930/0x2930 [ 531.256730] ? mmu_topup_memory_caches+0x86/0x320 [ 531.261836] ? rcu_read_lock_sched_held+0x110/0x130 [ 531.266659] binder: BINDER_SET_CONTEXT_MGR already set [ 531.266999] alloc_pages_current+0xec/0x1e0 [ 531.267016] __get_free_pages+0xf/0x40 [ 531.272427] binder: 24273:24274 ioctl 40046207 0 returned -16 [ 531.276609] mmu_topup_memory_caches+0x194/0x320 [ 531.276627] kvm_mmu_load+0x21/0xd40 [ 531.276645] vcpu_enter_guest+0x2eb4/0x5210 [ 531.276658] ? perf_trace_lock+0x500/0x500 [ 531.295038] ? __lock_is_held+0x10/0x140 [ 531.303584] ? emulator_read_emulated+0x50/0x50 [ 531.303593] ? lock_acquire+0x16f/0x430 [ 531.303603] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 531.303619] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 531.303627] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 531.303644] kvm_vcpu_ioctl+0x401/0xd10 [ 531.303656] ? kvm_vcpu_block+0xbb0/0xbb0 [ 531.303666] ? trace_hardirqs_on+0x10/0x10 [ 531.303679] ? save_trace+0x290/0x290 [ 531.303689] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 531.316684] ? __f_unlock_pos+0x19/0x20 [ 531.316697] ? __fget+0x210/0x370 [ 531.316708] ? find_held_lock+0x35/0x130 [ 531.316717] ? __fget+0x210/0x370 [ 531.326914] ? kvm_vcpu_block+0xbb0/0xbb0 [ 531.326927] do_vfs_ioctl+0x7ae/0x1060 [ 531.326940] ? selinux_file_mprotect+0x5d0/0x5d0 [ 531.326950] ? lock_downgrade+0x6e0/0x6e0 [ 531.336402] ? ioctl_preallocate+0x1c0/0x1c0 [ 531.336417] ? __fget+0x237/0x370 [ 531.336435] ? security_file_ioctl+0x89/0xb0 [ 531.336447] SyS_ioctl+0x8f/0xc0 [ 531.344899] ? do_vfs_ioctl+0x1060/0x1060 [ 531.344913] do_syscall_64+0x1e8/0x640 [ 531.344922] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 531.344942] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 531.386021] RIP: 0033:0x459879 [ 531.394043] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:52:00 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) setxattr$security_smack_transmute(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0x2) 05:52:00 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) pipe2(&(0x7f00000000c0), 0x4800) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x101) write$FUSE_LSEEK(r1, &(0x7f0000000080)={0x18, 0x0, 0x5, {0x88d0}}, 0x18) 05:52:00 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x33b}, &(0x7f00000001c0)=0x20) 05:52:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:00 executing program 1 (fault-call:6 fault-nth:49): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 531.394055] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 531.394062] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 531.394068] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 531.394074] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 531.394079] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:00 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x33b}, &(0x7f00000001c0)=0x20) 05:52:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x6, 0x200000) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000080)={0x9, 0xfd44}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000000)) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000080)={0x12715, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:00 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:00 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), 0x0) [ 531.651240] FAULT_INJECTION: forcing a failure. [ 531.651240] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:52:01 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x1000, &(0x7f000000b000/0x1000)=nil}) [ 531.717690] CPU: 1 PID: 24296 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 531.725072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 531.734588] Call Trace: [ 531.737363] dump_stack+0x138/0x197 [ 531.741019] should_fail.cold+0x10f/0x159 [ 531.745179] ? __might_sleep+0x93/0xb0 [ 531.749207] __alloc_pages_nodemask+0x1d6/0x7a0 [ 531.749222] ? __alloc_pages_slowpath+0x2930/0x2930 [ 531.749234] ? mmu_topup_memory_caches+0x86/0x320 [ 531.749250] ? rcu_read_lock_sched_held+0x110/0x130 [ 531.768952] alloc_pages_current+0xec/0x1e0 [ 531.773295] __get_free_pages+0xf/0x40 [ 531.777198] mmu_topup_memory_caches+0x194/0x320 [ 531.781973] kvm_mmu_load+0x21/0xd40 [ 531.786717] vcpu_enter_guest+0x2eb4/0x5210 [ 531.791061] ? perf_trace_lock+0x500/0x500 [ 531.795306] ? __lock_is_held+0x10/0x140 [ 531.799386] ? emulator_read_emulated+0x50/0x50 [ 531.804067] ? lock_acquire+0x16f/0x430 [ 531.808395] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 531.808416] kvm_arch_vcpu_ioctl_run+0x318/0x1000 05:52:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x4, 0x1, 0xf000, 0x2000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 531.808426] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 531.808445] kvm_vcpu_ioctl+0x401/0xd10 [ 531.808457] ? kvm_vcpu_block+0xbb0/0xbb0 [ 531.832592] ? trace_hardirqs_on+0x10/0x10 [ 531.832607] ? save_trace+0x290/0x290 [ 531.832616] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 531.832626] ? __f_unlock_pos+0x19/0x20 [ 531.832636] ? __fget+0x210/0x370 [ 531.832644] ? find_held_lock+0x35/0x130 [ 531.832652] ? __fget+0x210/0x370 [ 531.832666] ? kvm_vcpu_block+0xbb0/0xbb0 [ 531.832676] do_vfs_ioctl+0x7ae/0x1060 [ 531.832688] ? selinux_file_mprotect+0x5d0/0x5d0 [ 531.832696] ? lock_downgrade+0x6e0/0x6e0 [ 531.832708] ? ioctl_preallocate+0x1c0/0x1c0 [ 531.832719] ? __fget+0x237/0x370 [ 531.865075] ? security_file_ioctl+0x89/0xb0 [ 531.865091] SyS_ioctl+0x8f/0xc0 [ 531.865100] ? do_vfs_ioctl+0x1060/0x1060 [ 531.865114] do_syscall_64+0x1e8/0x640 [ 531.874058] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 531.907005] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 531.912231] RIP: 0033:0x459879 [ 531.915436] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 531.923169] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 531.927895] binder: BINDER_SET_CONTEXT_MGR already set [ 531.930599] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 531.930606] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 531.930613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 531.930620] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 531.966678] binder: 24314:24315 ioctl 40046207 0 returned -16 05:52:01 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x800) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vga_arbiter\x00', 0x200, 0x0) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f00000001c0)={0x1, 0x5, [@empty, @link_local, @dev={[], 0x1b}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @broadcast]}) r2 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x9, 0xa9934c1d5e18fd2) setsockopt$inet_sctp6_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000080)=0x2, 0x4) ioctl$KVM_ASSIGN_PCI_DEVICE(r2, 0x8040ae69, &(0x7f00000000c0)={0x0, 0x2, 0x19, 0x4, 0xb0}) ioctl$CAPI_NCCI_OPENCOUNT(r2, 0x80044326, &(0x7f0000000140)=0x4) r3 = dup2(r0, r0) ioctl$KDMKTONE(r0, 0x4b30, 0x5) syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) 05:52:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:01 executing program 2: fstat(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_xen(&(0x7f0000000140)='/dev/snapshot\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000340)='9p\x00', 0x200000, &(0x7f0000000540)={'trans=xen,', {[{@cache_mmap='cache=mmap'}, {@cache_none='cache=none'}, {@posixacl='posixacl'}, {@msize={'msize', 0x3d, 0xffffffff}}, {@debug={'debug'}}, {@debug={'debug', 0x3d, 0x6}}, {@cache_none='cache=none'}, {@cache_none='cache=none'}], [{@hash='hash'}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@obj_user={'obj_user'}}, {@fowner_eq={'fowner', 0x3d, r0}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@measure='measure'}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}}) r1 = socket$inet(0xa, 0x1, 0x81) write$binfmt_aout(r1, &(0x7f0000000680)={{0x108, 0x5, 0x5, 0x3b1, 0x0, 0x3, 0x22c, 0x400000000000}, "268949b2051a77a3184960751f64a07a06afe59226f470a555959da509578d620d562e5a45424e68e14616ffa0da2921e71b33ce3f560acdb12093237f6aa28e677e7e10ad57a15c6035d5424b46c37cd5c975e97d4a7ecf8afc92e2c35059a8c6d12bf8409702652a2f54de562b97c795f811562f28edd518aaa723904935b35861056037c6c983c7d9ccb44b53594619524a5d1b9534", [[], []]}, 0x2b7) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000080)=0x84) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuacct.usage_percpu\x00', 0x0, 0x0) ioctl$ASHMEM_GET_SIZE(r2, 0x7704, 0x0) getsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x400, 0x0) ioctl$DRM_IOCTL_SET_MASTER(r3, 0x641e) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000001c0)={[0x621a, 0xe8, 0x1ff, 0x2, 0xfff, 0xfff, 0x95, 0x9, 0x3, 0x1, 0x6, 0xe6a0, 0x200, 0x9, 0x2, 0x2], 0x2000, 0x40}) 05:52:01 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), 0x0) 05:52:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = dup2(r0, r1) setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000000)=0x401, 0x4) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:01 executing program 1 (fault-call:6 fault-nth:50): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 532.037779] binder: BINDER_SET_CONTEXT_MGR already set [ 532.058604] binder: 24314:24315 ioctl 40046207 0 returned -16 [ 532.114140] FAULT_INJECTION: forcing a failure. [ 532.114140] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 532.154889] CPU: 1 PID: 24330 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 532.162212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 532.171958] Call Trace: [ 532.171980] dump_stack+0x138/0x197 [ 532.171998] should_fail.cold+0x10f/0x159 [ 532.172009] ? __might_sleep+0x93/0xb0 [ 532.172024] __alloc_pages_nodemask+0x1d6/0x7a0 [ 532.172040] ? __alloc_pages_slowpath+0x2930/0x2930 [ 532.172050] ? mmu_topup_memory_caches+0x86/0x320 05:52:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x44) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000080)={0x0, 0x40}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000100)={r2, 0x6}, &(0x7f0000000140)=0x8) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x0, 0x1000, &(0x7f000000b000/0x1000)=nil}) getgid() [ 532.172065] ? rcu_read_lock_sched_held+0x110/0x130 [ 532.178777] alloc_pages_current+0xec/0x1e0 [ 532.178795] __get_free_pages+0xf/0x40 [ 532.178807] mmu_topup_memory_caches+0x194/0x320 [ 532.196889] kvm_mmu_load+0x21/0xd40 [ 532.220153] vcpu_enter_guest+0x2eb4/0x5210 [ 532.220166] ? perf_trace_lock+0x500/0x500 [ 532.220178] ? __lock_is_held+0x10/0x140 [ 532.220189] ? emulator_read_emulated+0x50/0x50 [ 532.220197] ? lock_acquire+0x16f/0x430 [ 532.220207] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 532.220223] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 532.220232] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 532.236767] kvm_vcpu_ioctl+0x401/0xd10 [ 532.236779] ? kvm_vcpu_block+0xbb0/0xbb0 [ 532.236792] ? trace_hardirqs_on+0x10/0x10 [ 532.260527] ? save_trace+0x290/0x290 [ 532.260537] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 532.260545] ? __f_unlock_pos+0x19/0x20 [ 532.260555] ? __fget+0x210/0x370 [ 532.260564] ? find_held_lock+0x35/0x130 [ 532.260573] ? __fget+0x210/0x370 [ 532.260585] ? kvm_vcpu_block+0xbb0/0xbb0 [ 532.260595] do_vfs_ioctl+0x7ae/0x1060 [ 532.260605] ? selinux_file_mprotect+0x5d0/0x5d0 [ 532.260615] ? lock_downgrade+0x6e0/0x6e0 [ 532.269095] ? ioctl_preallocate+0x1c0/0x1c0 [ 532.269108] ? __fget+0x237/0x370 [ 532.269129] ? security_file_ioctl+0x89/0xb0 [ 532.293946] SyS_ioctl+0x8f/0xc0 [ 532.293958] ? do_vfs_ioctl+0x1060/0x1060 [ 532.314685] do_syscall_64+0x1e8/0x640 [ 532.314696] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 532.322557] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 532.322565] RIP: 0033:0x459879 05:52:01 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), 0x0) [ 532.322569] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 532.322580] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 532.322585] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 532.322590] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 532.322596] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 532.322602] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:01 executing program 0: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000000080)=""/183) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:01 executing program 2: r0 = socket$inet(0xa, 0x801, 0x4) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) getpeername$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10) r1 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x1, 0x2) clock_gettime(0x0, &(0x7f00000011c0)={0x0, 0x0}) write$sndseq(r1, &(0x7f0000001200)=[{0x6, 0x1ff, 0x80000000, 0x8, @tick=0xfffffffffffffff7, {0x200, 0x900}, {0x1, 0x5b}, @raw8={"bbee75ee099e8441b748dd20"}}, {0xffffffffffff8000, 0x7, 0xfda, 0x6, @tick=0x9, {0x8000, 0x1}, {0x8001, 0x2}, @ext={0x1000, &(0x7f00000001c0)="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"}}, {0x200, 0x2, 0x20, 0x400, @time={r2, r3+30000000}, {0x4, 0x30f5}, {0x9, 0xffffffffffff9967}, @raw8={"4c556dd42c2325990b736f27"}}], 0x90) ioctl$DRM_IOCTL_SET_VERSION(r1, 0xc0106407, &(0x7f00000012c0)={0xffffffffcc3cc74f, 0x8, 0x1, 0x4}) 05:52:01 executing program 3: socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x2, 0x300) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) remap_file_pages(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x0, 0x0) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0) clock_gettime(0x0, &(0x7f0000000240)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) 05:52:01 executing program 0: ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000000)={0x9, {{0x2, 0x4e21, @local}}, {{0x2, 0x4e20, @loopback}}}, 0x108) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0x80000, 0x0) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r1, 0xc0305615, &(0x7f0000000180)={0x0, {0x40, 0x8}}) [ 532.590888] binder: 24361:24362 ioctl 4b30 5 returned -22 [ 532.613911] binder: BINDER_SET_CONTEXT_MGR already set [ 532.619617] binder: 24361:24362 ioctl 40046207 0 returned -16 05:52:01 executing program 5: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x214880, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000080)="d5a12e7252e58e511a4ed3e0a1ec518b3c6c9e1e1c2284883659a196a6ceda5900e4d11c0932c70741651c052fc1511cd06729e4e578fe2d3129612bcee0772cbe10cea27c053fece19b823df5aa674a095dba1b2dd74349172e154d447ef54f90fc1bc46aa1bf60e4eff46932c98e40027d0dcde3b83f05d3c41f389d4f834c81e367cc406c9d524e667a01a033cf652d9c01285c4aee6749d10806", &(0x7f0000000140)="f6950655af79ec1ddd4bc0dc38e8baac", 0x3}, 0x20) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = dup2(r1, r1) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00') ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:01 executing program 1 (fault-call:6 fault-nth:51): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = open(&(0x7f0000000000)='./file0\x00', 0x220480, 0x80) ioctl$TIOCMGET(r2, 0x5415, &(0x7f0000000180)) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) write(r1, &(0x7f0000000080)="bbe4d7a7e776741ca9bf76eabfd3de17accea25324fc8436ef34d7e575da44222c3a38af87fed295518fa30621b11d6320634ba8479c9ab09d4cc23306a824250355d593e606db968f8d77e0dd773fc48ae10e8487677c7b86f0c49a8cc22d6ad66f3b2f229e3d75a51e5b0895d4448042b1cf259bc500ea4720654b9cd19d9d57bf48e2fe2e3334a59e251c3d999b556778505469540ee81e5382588182942fc82f0f44557c18d983611859cc5b4f2d7e2d94e762b67b1d79e07c5fcc9b9a7df4ec24cd57c07fb3c3c4181c20ab13a6ef84f04f0404fcd187563a0e29f2d552", 0xe0) [ 532.665921] binder: 24361:24362 ioctl 4b30 5 returned -22 [ 532.712441] FAULT_INJECTION: forcing a failure. [ 532.712441] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 532.725169] CPU: 1 PID: 24381 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 532.732636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 532.732643] Call Trace: [ 532.732664] dump_stack+0x138/0x197 [ 532.732684] should_fail.cold+0x10f/0x159 [ 532.732693] ? __might_sleep+0x93/0xb0 [ 532.732708] __alloc_pages_nodemask+0x1d6/0x7a0 05:52:02 executing program 2: r0 = socket$inet(0xa, 0x805, 0x1) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 532.732722] ? __alloc_pages_slowpath+0x2930/0x2930 [ 532.732736] ? mmu_topup_memory_caches+0x86/0x320 [ 532.732751] ? rcu_read_lock_sched_held+0x110/0x130 [ 532.732765] alloc_pages_current+0xec/0x1e0 [ 532.732781] __get_free_pages+0xf/0x40 [ 532.732790] mmu_topup_memory_caches+0x194/0x320 [ 532.732805] kvm_mmu_load+0x21/0xd40 [ 532.732821] vcpu_enter_guest+0x2eb4/0x5210 [ 532.732834] ? perf_trace_lock+0x500/0x500 [ 532.732847] ? __lock_is_held+0x10/0x140 [ 532.732859] ? emulator_read_emulated+0x50/0x50 [ 532.732868] ? lock_acquire+0x16f/0x430 [ 532.732878] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 532.732895] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 532.732904] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 532.732922] kvm_vcpu_ioctl+0x401/0xd10 [ 532.732935] ? kvm_vcpu_block+0xbb0/0xbb0 [ 532.732945] ? trace_hardirqs_on+0x10/0x10 [ 532.732958] ? save_trace+0x290/0x290 [ 532.772839] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 532.772849] ? __f_unlock_pos+0x19/0x20 [ 532.772860] ? __fget+0x210/0x370 [ 532.772870] ? find_held_lock+0x35/0x130 [ 532.772879] ? __fget+0x210/0x370 [ 532.772892] ? kvm_vcpu_block+0xbb0/0xbb0 [ 532.772903] do_vfs_ioctl+0x7ae/0x1060 [ 532.786359] ? selinux_file_mprotect+0x5d0/0x5d0 [ 532.831743] ? lock_downgrade+0x6e0/0x6e0 [ 532.831758] ? ioctl_preallocate+0x1c0/0x1c0 [ 532.831770] ? __fget+0x237/0x370 [ 532.831786] ? security_file_ioctl+0x89/0xb0 [ 532.831798] SyS_ioctl+0x8f/0xc0 [ 532.831806] ? do_vfs_ioctl+0x1060/0x1060 [ 532.831819] do_syscall_64+0x1e8/0x640 [ 532.840232] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 532.840252] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 532.840260] RIP: 0033:0x459879 [ 532.840265] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 532.840275] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 532.840281] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 532.840286] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 532.840291] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:52:02 executing program 3: socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x2, 0x300) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) remap_file_pages(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x0, 0x0) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, 0x0) clock_gettime(0x0, &(0x7f0000000240)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200), 0x0) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) 05:52:02 executing program 1 (fault-call:6 fault-nth:52): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) ioctl$TIOCSIG(r1, 0x40045436, 0x16) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 532.840296] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 532.954704] protocol 88fb is buggy, dev hsr_slave_0 [ 532.954765] protocol 88fb is buggy, dev hsr_slave_1 05:52:02 executing program 3: r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f00000000c0)={0x28, 0x0, 0x0, @host}, 0x10) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @hyper}, 0x10) 05:52:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x8083, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x7b, 0x0) ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000040)) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000080)={0x1f, 0x868, 0xfffffffffffff258, 0x8, 0x800, 0x1}) [ 533.079230] FAULT_INJECTION: forcing a failure. [ 533.079230] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:52:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)=0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000180)='/dev/snd/pcmC#D#p\x00', 0x5, 0x40000) ioctl$VIDIOC_S_TUNER(r3, 0x4054561e, &(0x7f00000001c0)={0x1, "f94f1978532b2e7084a1f3482bbdf3466b1741ebb070ff7bfabeb4da35ad21d2", 0x3, 0x8, 0x6, 0x8, 0x4, 0x2, 0x3, 0x7}) ptrace$getregs(0xc, r2, 0x6, &(0x7f0000000100)=""/124) r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x2000, 0x0) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000080)={0x401, 0x4, 0x1000}, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) setsockopt$IP_VS_SO_SET_STOPDAEMON(r3, 0x0, 0x48c, &(0x7f0000000240)={0x1, 'teql0\x00', 0x1}, 0x18) [ 533.155264] CPU: 1 PID: 24390 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 533.162420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 533.171971] Call Trace: [ 533.174584] dump_stack+0x138/0x197 [ 533.178252] should_fail.cold+0x10f/0x159 [ 533.182419] ? __might_sleep+0x93/0xb0 [ 533.186513] __alloc_pages_nodemask+0x1d6/0x7a0 [ 533.191201] ? __alloc_pages_slowpath+0x2930/0x2930 [ 533.191214] ? mmu_topup_memory_caches+0x86/0x320 [ 533.191229] ? rcu_read_lock_sched_held+0x110/0x130 [ 533.191245] alloc_pages_current+0xec/0x1e0 [ 533.201102] __get_free_pages+0xf/0x40 [ 533.201112] mmu_topup_memory_caches+0x194/0x320 [ 533.201126] kvm_mmu_load+0x21/0xd40 [ 533.201144] vcpu_enter_guest+0x2eb4/0x5210 [ 533.201156] ? perf_trace_lock+0x500/0x500 [ 533.201170] ? __lock_is_held+0x10/0x140 [ 533.219372] ? emulator_read_emulated+0x50/0x50 [ 533.227702] ? lock_acquire+0x16f/0x430 [ 533.227714] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 533.227731] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 533.249962] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 533.249982] kvm_vcpu_ioctl+0x401/0xd10 [ 533.259830] ? kvm_vcpu_block+0xbb0/0xbb0 [ 533.259841] ? trace_hardirqs_on+0x10/0x10 [ 533.259854] ? save_trace+0x290/0x290 [ 533.276249] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 533.277442] binder: BINDER_SET_CONTEXT_MGR already set [ 533.281376] ? __f_unlock_pos+0x19/0x20 [ 533.281389] ? __fget+0x210/0x370 [ 533.281400] ? find_held_lock+0x35/0x130 [ 533.281408] ? __fget+0x210/0x370 [ 533.281422] ? kvm_vcpu_block+0xbb0/0xbb0 05:52:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) r2 = getpgrp(0xffffffffffffffff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=0xc) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = getpgid(0x0) r6 = getuid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000028c0)={0x0, 0x0, 0x0}, &(0x7f0000002900)=0xc) r8 = getpgrp(0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002940)={0x0, 0x0}, &(0x7f0000002980)=0xc) r10 = getgid() ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000029c0)=0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002a00)={0x0, 0x0}, &(0x7f0000002a40)=0xc) r13 = getgid() r14 = getpgrp(0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000002a80)={0x0, 0x0}, &(0x7f0000002ac0)=0xc) lstat(&(0x7f0000002b00)='./file0\x00', &(0x7f0000002b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000002bc0)=0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000002c00)={{{@in=@multicast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@local}}, &(0x7f0000002d00)=0xe8) getresgid(&(0x7f0000002d40), &(0x7f0000002d80)=0x0, &(0x7f0000002dc0)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000004200)=0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004240)={0x0, 0x0}, &(0x7f0000004280)=0xc) r22 = getgid() ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000042c0)=0x0) r24 = geteuid() getresgid(&(0x7f0000004300), &(0x7f0000004340), &(0x7f0000004380)=0x0) r26 = getpid() getresuid(&(0x7f00000043c0)=0x0, &(0x7f0000004400), &(0x7f0000004440)) getresgid(&(0x7f0000004480), &(0x7f00000044c0), &(0x7f0000004500)=0x0) fcntl$getownex(r0, 0x10, &(0x7f0000004540)={0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000004580)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@empty}}, &(0x7f0000004680)=0xe8) lstat(&(0x7f00000046c0)='./file0\x00', &(0x7f0000004700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r32 = gettid() stat(&(0x7f0000004780)='./file0\x00', &(0x7f00000047c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004840)={0x0, 0x0, 0x0}, &(0x7f0000004880)=0xc) fcntl$getownex(r0, 0x10, &(0x7f00000048c0)={0x0, 0x0}) r36 = geteuid() getgroups(0x3, &(0x7f0000004900)=[0x0, 0xee01, 0xee01]) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000004b80)=0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000004bc0)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@initdev}}, &(0x7f0000004cc0)=0xe8) fstat(r0, &(0x7f0000004d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r41 = getpgrp(0x0) lstat(&(0x7f0000004e40)='./file0\x00', &(0x7f0000004dc0)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000400), &(0x7f00000041c0)=0x0, &(0x7f0000004ec0)) fcntl$getownex(r0, 0x10, &(0x7f0000005080)={0x0, 0x0}) r45 = geteuid() stat(&(0x7f00000050c0)='./file0\x00', &(0x7f0000005100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r0, 0x10, &(0x7f0000004100)={0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000005440)={{{@in6=@ipv4={[], [], @broadcast}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast1}}, &(0x7f0000005540)=0xe8) fstat(r0, &(0x7f0000005580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000005600)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000005640)={{{@in6, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@local}}, &(0x7f0000005740)=0xe8) getresgid(&(0x7f0000005780), &(0x7f00000057c0)=0x0, &(0x7f0000005800)) [ 533.281432] do_vfs_ioctl+0x7ae/0x1060 [ 533.281445] ? selinux_file_mprotect+0x5d0/0x5d0 [ 533.281456] ? lock_downgrade+0x6e0/0x6e0 [ 533.286952] binder: 24416:24417 ioctl 40046207 0 returned -16 [ 533.290836] ? ioctl_preallocate+0x1c0/0x1c0 [ 533.290850] ? __fget+0x237/0x370 [ 533.290866] ? security_file_ioctl+0x89/0xb0 [ 533.290877] SyS_ioctl+0x8f/0xc0 [ 533.290886] ? do_vfs_ioctl+0x1060/0x1060 [ 533.290897] do_syscall_64+0x1e8/0x640 [ 533.290905] ? trace_hardirqs_off_thunk+0x1a/0x1c sendmmsg$unix(r1, &(0x7f0000005940)=[{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000100)="714295f3", 0x4}, {&(0x7f0000000140)="8b1b5e7b7f50e3081eac3f1b2903c87873c376fb8475239ccbd69c2714596476", 0x20}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000000180)="1efaa94fab76025b0c6f7e67b1ac42b00858011b712152678bbf5d80f5ac4ae8fb00d5a2a8b452d8b29581e3e6346e9061630a2c8f91e732b63b00ea15f97c412ab20ce8a19396c59d121a9789e9334ce5ff4d02af969ca2791247104a28f71d2c891df473feb492ac77704901989313580c9811be304cdea1569b254722d79e764220240aaeeb8b0099974eadb640b5e577b3d7b689dc0aa0e7c52539095ede2f5a43e03accb5938294760f74527b5e2fe934873dff503df9e30ca3a6569b18", 0xc0}], 0x4, &(0x7f0000005c00)=ANY=[@ANYBLOB="1c000000000000000100000002000000cdcf6f7a4e158a48ee13a01fe4f2468212c48fbefe0ea903b11b1f14877d9c70403e2d386962d90abcef3dd9b072610284c6b6993c789e9cd3b4b7e830d6817e181c1dbfd13aad9de7bf5d7999107665e53836e7b9f3bd5f0ac0fe8ea36384f4a0eab2a75d8bf346936516618448d631fbe2a361c0262cab51d3e85fd6cdf78a1dca566a9c0b1c3fa98d93807e492763045e76fee9", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0], 0x40, 0x8010}, {&(0x7f0000000440)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000002840)=[{&(0x7f0000001540)="7d804fbbf10359147451d6a7153c466c82cbd5508b02df68a595abdaf8f27a7a11b00cd4cc24c35c518b80ca045d098fadb9ed8ce3b218780fa4dfcd9129e08eaeaa5187530db005175f", 0x4a}, {&(0x7f00000015c0)="8e5682eb7a760a25df5af74f87a4bbed448eec0c3397e47c0776cea5b64e41618a0b703948bca0d8f09ccee7d6ee158d786056c9590249377b34ddff4c0603cd2ab45589076f3c09e06b23290c965a75c5d231c1f418710cd4000cbdc35447bc20dfb0ff5f4a596c3795f283b50ed5a5a0f8a255", 0x74}, {&(0x7f0000001640)="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", 0x1000}, {&(0x7f00000004c0)="9fbcc724d9efa0b1895bde027335c55b0572", 0x12}, {&(0x7f0000002640)="dfbb3c5e4f74bb8053736122735dcff815b3af3e5d0551b580ae31e1ed4f826ab0126d71c83f347ee03b5d8e4512f2304837bfe122715a699602d9", 0x3b}, {&(0x7f0000002680)="fd7a790a9b9ecf8da8e8b458f8d8f8e91d074ca3a3e0fe006cc70f0d34d3d6dacdb42fc9199b08ab590e8302fb6a38d006017865f84d61e86e6a4c731d1e75b96ff29ce45406aec0e6423d676b78af67c2cccaec7b67f6991e99e8aefd0570e7eb17f01da7e6738b8cfeb40b4f2de721d496c72c78ec6ae203c685b571d587eebae55f1f3f4f7aa28bcde35a001aa935ff56f6c373273d081d2649d826fd5388fae454dc", 0xa4}, {&(0x7f0000002740)="a436167724cb0818d37bcfa92c4f87db9f34b83a1405c04d883cc1491ad2738f15f53678124631abdaf46dd94df8369e12f55775c79cabadaf5d13f87033bece71d751218a3b31e7", 0x48}, {&(0x7f00000027c0)="744a55921e4da97b493d0d5c09a141dd3ae3c87036293305ae86e8251cdc821b5a1ac9637290b044cabf7d7554de215b64038a2250c73b7a028bc4e2223e19db093f11e5b63770c76caf14213450d57c2d1a259a40ed7875410b", 0x5a}], 0x8, &(0x7f0000005d00)=ANY=[@ANYBLOB="34000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="370000002800000000000000013bc500ccfd01000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r11, @ANYRES32=r12, @ANYRES32=r13, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r14, @ANYRES32=r15, @ANYRES32=r16, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r17, @ANYRES32=r18, @ANYRES32=r19, @ANYBLOB='\x00\x00\x00\x00'], 0x148, 0xc004}, {&(0x7f0000002f80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000040c0)=[{&(0x7f0000003000)="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", 0x1000}, {&(0x7f0000004000)="5d0156098288a02e8457d0c8b694e96198bc40857fa4a266e2921fc29877419dd03b04fccfef29ba9f10381d8fc6b19a0fac3ab9af4868bcf6562c99c738956eb3bcc7597274bec790f51f900dbce405ca098c8e733d776dc4d529837778dded", 0x60}, {&(0x7f0000004080)="76b54917ef8b9602ba199eb00474e2eb0f3fabda1c15c87fb1b592ecb44f41", 0x1f}], 0x3, &(0x7f0000004100), 0x0, 0x1}, {&(0x7f0000004140)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000041c0), 0x0, &(0x7f0000004940)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r20, @ANYRES32=r21, @ANYRES32=r22, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r23, @ANYRES32=r24, @ANYRES32=r25, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r26, @ANYRES32=r27, @ANYRES32=r28, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="000000001c00c890460000ff0f00000100000000", @ANYRES32=r29, @ANYRES32=r30, @ANYRES32=r31, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r32, @ANYRES32=r33, @ANYRES32=r34, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r35, @ANYRES32=r36, @ANYRES32=r37, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0x108, 0x4ec4f672b90218fc}, {&(0x7f0000004a80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004b40)=[{&(0x7f0000004b00)}], 0x1, &(0x7f0000004f00)=[@cred={{0x1c, 0x1, 0x2, {r38, r39, r40}}}, @cred={{0x1c, 0x1, 0x2, {r41, r42, r43}}}, @rights={{0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}}], 0x68, 0x800}, {&(0x7f0000004f80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000005040)=[{&(0x7f0000005000)}], 0x1, &(0x7f0000005180)=[@cred={{0x1c, 0x1, 0x2, {r44, r45, r46}}}], 0x20, 0x44810}, {&(0x7f00000051c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000053c0)=[{&(0x7f0000005240)="39c6448ac43d287abc95cfa49540ab4cdb94ac8f15ba192ecca45f658988a47efe3ffc4099178bbabda3f66dcfd4757f13b00b43f42978c9d35e6f8fae9a2b077ef7c6e2d8f488bfe4f22d0bb533e321418a692fee94e8994c7612b02fc66434996574a6d5147a46b3c09cdc2d748a0ea851fc87fb22bd06b4609e7fe05f64341c824cb26e2a2dfc75d3170439141e74683ae542bf9442b9e26666956018bf072ea54887650958ef9063ef0fe4bb027175f9af61d78d7c39f5587dc043a8a368780326f0d4cba7dab5b63a6d04032584b5", 0xd1}, {&(0x7f0000005340)="c6866a08f4ec6d2a25e2a5a4fb47aef394c664a470efa0ec6d9a2d5b1d375fa0546b2b3595baefa68d7cf9d26892c8dd34e13c74daab7b9d2532682efd3a4f4b78e44b8e5d2456e7d380586c5f0f34fd934b91968a136ff7b1f13e0681c40c", 0x5f}], 0x2, &(0x7f0000005840)=ANY=[@ANYBLOB="24000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="000a0000100000e7eaf5f5bd561a1185ff00000000000100000001000000010000001d00", @ANYRES32=r0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r47, @ANYRES32=r48, @ANYRES32=r49, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r50, @ANYRES32=r51, @ANYRES32=r52, @ANYBLOB="0000000018eba2be5a8b1f06000000000000002d", @ANYRES32=r0, @ANYRES32=r0], 0xf8, 0x400c4}], 0x7, 0x20000000) r53 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r53, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r53, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 533.290921] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 533.290929] RIP: 0033:0x459879 [ 533.290937] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 533.310053] ORIG_RAX: 0000000000000010 [ 533.310060] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 533.310066] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 533.310071] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 533.310076] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 533.310081] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:02 executing program 3: socketpair(0x0, 0xe, 0x0, &(0x7f0000002f80)) 05:52:02 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) getcwd(&(0x7f0000000040)=""/214, 0xd6) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') setsockopt$ax25_SO_BINDTODEVICE(r1, 0x101, 0x19, &(0x7f00000001c0)=@bpq0='bpq0\x00', 0xff52) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) ioctl$DRM_IOCTL_AGP_RELEASE(r1, 0x6431) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:02 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0xc031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000768000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00000dc000/0x2000)=nil) socket$inet6(0xa, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070") rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:52:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x1000}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000100)={0x1000, 0x100, 0x2, 0x1000, 0xffff, 0x1, 0x4, 0x0, r2}, 0x20) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x20000, 0x0) ioctl$SG_GET_COMMAND_Q(r2, 0x2270, &(0x7f0000000080)) write$P9_ROPEN(r2, &(0x7f00000000c0)={0x18, 0x71, 0x1, {{0x50, 0x1, 0x8}, 0x100000000}}, 0x18) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:02 executing program 3: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x0, @remote}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1}, &(0x7f0000000140)=0xc) 05:52:02 executing program 1 (fault-call:6 fault-nth:53): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:02 executing program 3: r0 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x0, 0x0) ioctl$KDSKBSENT(r0, 0x4b49, 0x0) 05:52:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x2, 0x8200) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r3, 0x300, 0x70bd26, 0x25dfdbfb, {{}, 0x0, 0x4102, 0x0, {0x10, 0x13, @udp='udp:syz1\x00'}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0xc131699531274d18) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 533.666465] FAULT_INJECTION: forcing a failure. [ 533.666465] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 533.728292] CPU: 1 PID: 24442 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 533.735437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 533.744792] Call Trace: [ 533.744814] dump_stack+0x138/0x197 [ 533.744833] should_fail.cold+0x10f/0x159 [ 533.744844] ? __might_sleep+0x93/0xb0 [ 533.744857] __alloc_pages_nodemask+0x1d6/0x7a0 [ 533.744869] ? __alloc_pages_slowpath+0x2930/0x2930 [ 533.744878] ? mmu_topup_memory_caches+0x86/0x320 [ 533.744892] ? rcu_read_lock_sched_held+0x110/0x130 [ 533.744907] alloc_pages_current+0xec/0x1e0 [ 533.744921] __get_free_pages+0xf/0x40 [ 533.744930] mmu_topup_memory_caches+0x194/0x320 [ 533.744945] kvm_mmu_load+0x21/0xd40 [ 533.744968] vcpu_enter_guest+0x2eb4/0x5210 [ 533.759270] ? perf_trace_lock+0x500/0x500 [ 533.759282] ? __lock_is_held+0x10/0x140 [ 533.759296] ? emulator_read_emulated+0x50/0x50 [ 533.791789] ? lock_acquire+0x16f/0x430 [ 533.791804] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 533.791820] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 533.791828] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 533.791846] kvm_vcpu_ioctl+0x401/0xd10 [ 533.791858] ? kvm_vcpu_block+0xbb0/0xbb0 [ 533.791868] ? trace_hardirqs_on+0x10/0x10 [ 533.791882] ? save_trace+0x290/0x290 [ 533.791892] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 533.799905] ? __f_unlock_pos+0x19/0x20 [ 533.799918] ? __fget+0x210/0x370 [ 533.799929] ? find_held_lock+0x35/0x130 [ 533.799938] ? __fget+0x210/0x370 [ 533.812858] ? kvm_vcpu_block+0xbb0/0xbb0 [ 533.821807] do_vfs_ioctl+0x7ae/0x1060 [ 533.821819] ? selinux_file_mprotect+0x5d0/0x5d0 [ 533.821829] ? lock_downgrade+0x6e0/0x6e0 [ 533.821838] ? ioctl_preallocate+0x1c0/0x1c0 [ 533.821849] ? __fget+0x237/0x370 [ 533.821865] ? security_file_ioctl+0x89/0xb0 [ 533.821876] SyS_ioctl+0x8f/0xc0 [ 533.821884] ? do_vfs_ioctl+0x1060/0x1060 [ 533.821898] do_syscall_64+0x1e8/0x640 [ 533.821906] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 533.821923] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 533.840011] RIP: 0033:0x459879 05:52:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x101002, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)={0x1ec, r3, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x18, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NODE={0x1c, 0x6, [@TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7fff}]}, @TIPC_NLA_NET={0x68, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x360}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x112e}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x101}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}, @TIPC_NLA_NET={0x1c, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfff}]}, @TIPC_NLA_NODE={0x14, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2040000000000}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x10c, 0x5, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffff8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6db500000000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffff9b96}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9d1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x8becc94a2edff0d6}, 0x840) ioctl$PPPIOCSNPMODE(r2, 0x4008744b, &(0x7f0000000400)={0xc023}) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) ioctl$RNDADDTOENTCNT(r4, 0x40045201, &(0x7f0000000080)=0x9) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x1ff, 0x5, 0x100000, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:03 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0xd) ioctl$VT_ACTIVATE(r0, 0x5606, 0x0) 05:52:03 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x81, 0x0) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r1 = semget$private(0x0, 0x2ca362b45b3b3ae, 0x620) semctl$GETALL(r1, 0x0, 0xd, &(0x7f0000000080)=""/108) [ 533.840018] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 533.840030] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 533.840036] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 533.840042] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 533.840047] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 533.840052] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:03 executing program 1 (fault-call:6 fault-nth:54): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 534.154469] binder: BINDER_SET_CONTEXT_MGR already set [ 534.159840] binder: 24473:24474 ioctl 40046207 0 returned -16 [ 534.216000] FAULT_INJECTION: forcing a failure. [ 534.216000] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 534.228241] CPU: 0 PID: 24480 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 534.235353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 534.244714] Call Trace: [ 534.247493] dump_stack+0x138/0x197 [ 534.251125] should_fail.cold+0x10f/0x159 [ 534.255271] ? __might_sleep+0x93/0xb0 [ 534.259167] __alloc_pages_nodemask+0x1d6/0x7a0 [ 534.263843] ? __alloc_pages_slowpath+0x2930/0x2930 [ 534.268854] ? mmu_topup_memory_caches+0x86/0x320 [ 534.273698] ? rcu_read_lock_sched_held+0x110/0x130 [ 534.278717] alloc_pages_current+0xec/0x1e0 [ 534.283047] __get_free_pages+0xf/0x40 [ 534.286929] mmu_topup_memory_caches+0x194/0x320 [ 534.291684] kvm_mmu_load+0x21/0xd40 [ 534.295401] vcpu_enter_guest+0x2eb4/0x5210 [ 534.299721] ? perf_trace_lock+0x500/0x500 [ 534.303959] ? __lock_is_held+0x10/0x140 [ 534.308024] ? emulator_read_emulated+0x50/0x50 [ 534.312695] ? lock_acquire+0x16f/0x430 [ 534.316706] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 534.321736] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 534.326662] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 534.331687] kvm_vcpu_ioctl+0x401/0xd10 [ 534.335664] ? kvm_vcpu_block+0xbb0/0xbb0 [ 534.339813] ? trace_hardirqs_on+0x10/0x10 [ 534.344056] ? save_trace+0x290/0x290 [ 534.347861] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 534.352792] ? __f_unlock_pos+0x19/0x20 [ 534.356773] ? __fget+0x210/0x370 [ 534.360229] ? find_held_lock+0x35/0x130 05:52:03 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e22, 0x4, @mcast1, 0x2}}}, &(0x7f0000000000)=0x35) 05:52:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0xe) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r2, 0x100, 0x70bd27, 0x25dfdbfb, {{}, 0x0, 0x4109, 0x0, {0x4c, 0x18, {0x20, @link='syz1\x00'}}}, ["", "", "", ""]}, 0x68}}, 0x800) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="11dca50d5e0bcfe47bf070") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1e, 0x8031, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x5, 0x515001) 05:52:03 executing program 5: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000140)={0x5, 0xc6, 0xd2, @remote, 'sit0\x00'}) r1 = syz_open_dev$binder(&(0x7f00000001c0)='/dev/binder#\x00', 0x0, 0x985d1c395ad44347) openat$random(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x400, 0x0) r2 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x100000000, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000180)=ANY=[@ANYBLOB="01fd88b8ebb8ea1557ebf75b31bfdeee00"/27]) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r3 = dup2(r1, r1) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) ioctl$PPPIOCGFLAGS(r1, 0x8004745a, &(0x7f0000000100)) 05:52:03 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000900)="085ae7f42ee5d2017e") [ 534.364292] ? __fget+0x210/0x370 [ 534.367786] ? kvm_vcpu_block+0xbb0/0xbb0 [ 534.371936] do_vfs_ioctl+0x7ae/0x1060 [ 534.371950] ? selinux_file_mprotect+0x5d0/0x5d0 [ 534.371960] ? lock_downgrade+0x6e0/0x6e0 [ 534.371972] ? ioctl_preallocate+0x1c0/0x1c0 [ 534.380598] ? __fget+0x237/0x370 [ 534.380618] ? security_file_ioctl+0x89/0xb0 [ 534.380631] SyS_ioctl+0x8f/0xc0 [ 534.380639] ? do_vfs_ioctl+0x1060/0x1060 [ 534.380651] do_syscall_64+0x1e8/0x640 [ 534.380663] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:52:03 executing program 3: perf_event_open(&(0x7f0000000440)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000280)) [ 534.404517] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 534.413198] RIP: 0033:0x459879 [ 534.413204] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 534.413213] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 534.413218] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 534.413223] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 534.413229] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 534.413234] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:03 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x1c) 05:52:03 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) clock_gettime(0x0, &(0x7f0000000000)={0x0}) setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000040)={r1}, 0x8) 05:52:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup2(r1, r0) ioctl$SNDRV_TIMER_IOCTL_STOP(r2, 0x54a1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10000, 0x3, 0x3000, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:03 executing program 1 (fault-call:6 fault-nth:55): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:03 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x82) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) socket(0x0, 0x0, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) dup3(r1, r2, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4138ae84, &(0x7f0000000040)) dup2(r0, r3) 05:52:04 executing program 4: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0) ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f0000000080)=0x3) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 534.687772] FAULT_INJECTION: forcing a failure. [ 534.687772] name fail_page_alloc, interval 1, probability 0, space 0, times 0 05:52:04 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x19e, {0x3ee, 0x20, 0x1, 0xe7b, 0x40, 0xfffffffffffffffc}, 0x1c69, 0x4}, 0xe) r1 = socket$inet(0xa, 0x801, 0x84) setsockopt$packet_buf(r0, 0x107, 0x6, &(0x7f00000001c0)="3baea0eb460d75835d7d539cac504be907cc26873f65425ef37d72eb688d6f1016741b608fd408b095e56d3e8528e53e2a2b17510e453019df5aa0f256d4f29219f8cf4c1d54d3936d334e53c49f2e7e204e432ea4eb3c390acb4d2792740db8998e36e737ce1355121618b09f59b2574ddde14dc8f8134dd321abc7a6e6accd31630a6b6f9c3e60fb9cc82c6ebad1d3eff7b97ebba99a41fbc7cd14db49d4b67ab30699595d85133726", 0xaa) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 534.762440] CPU: 1 PID: 24511 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 534.769578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 534.778934] Call Trace: [ 534.781536] dump_stack+0x138/0x197 [ 534.785170] should_fail.cold+0x10f/0x159 [ 534.789319] ? __might_sleep+0x93/0xb0 [ 534.793215] __alloc_pages_nodemask+0x1d6/0x7a0 [ 534.797977] ? __alloc_pages_slowpath+0x2930/0x2930 [ 534.803003] ? mmu_topup_memory_caches+0x86/0x320 [ 534.807857] ? rcu_read_lock_sched_held+0x110/0x130 [ 534.812881] alloc_pages_current+0xec/0x1e0 [ 534.817206] __get_free_pages+0xf/0x40 [ 534.821082] mmu_topup_memory_caches+0x194/0x320 [ 534.821095] kvm_mmu_load+0x21/0xd40 [ 534.821113] vcpu_enter_guest+0x2eb4/0x5210 [ 534.821125] ? perf_trace_lock+0x500/0x500 [ 534.821135] ? __lock_is_held+0x10/0x140 [ 534.821147] ? emulator_read_emulated+0x50/0x50 [ 534.821156] ? lock_acquire+0x16f/0x430 [ 534.821167] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 534.821185] kvm_arch_vcpu_ioctl_run+0x318/0x1000 05:52:04 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio\x00', 0x101000, 0x0) ioctl$EVIOCGBITSW(r1, 0x80404525, &(0x7f00000002c0)=""/224) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000000)=0x84) stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)) setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'system.', 'vboxnet0:eth1[ppp1C$\x00'}, &(0x7f00000000c0)=',-eth0\x00', 0x7, 0x2) [ 534.860697] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 534.865739] kvm_vcpu_ioctl+0x401/0xd10 [ 534.869718] ? kvm_vcpu_block+0xbb0/0xbb0 [ 534.873863] ? trace_hardirqs_on+0x10/0x10 [ 534.878100] ? save_trace+0x290/0x290 [ 534.881900] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 534.886831] ? __f_unlock_pos+0x19/0x20 [ 534.890812] ? __fget+0x210/0x370 [ 534.894266] ? find_held_lock+0x35/0x130 [ 534.898343] ? __fget+0x210/0x370 [ 534.901800] ? kvm_vcpu_block+0xbb0/0xbb0 [ 534.905953] do_vfs_ioctl+0x7ae/0x1060 [ 534.909842] ? selinux_file_mprotect+0x5d0/0x5d0 [ 534.914603] ? lock_downgrade+0x6e0/0x6e0 [ 534.918932] ? ioctl_preallocate+0x1c0/0x1c0 [ 534.923344] ? __fget+0x237/0x370 [ 534.926807] ? security_file_ioctl+0x89/0xb0 [ 534.931241] SyS_ioctl+0x8f/0xc0 [ 534.934604] ? do_vfs_ioctl+0x1060/0x1060 [ 534.938750] do_syscall_64+0x1e8/0x640 [ 534.942623] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 534.942640] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 534.942648] RIP: 0033:0x459879 05:52:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) [ 534.942653] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 534.942663] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 534.942668] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 534.942673] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 534.942678] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 534.942683] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:04 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0) ioctl$DRM_IOCTL_MODESET_CTL(r1, 0x40086408, &(0x7f0000000080)={0xc844, 0xfffffffffffffffb}) r2 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:04 executing program 1 (fault-call:6 fault-nth:56): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:04 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x4000, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, r0}) r2 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x1, 0x2) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000100)={r1, 0x0, r2}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) prctl$PR_GET_SECUREBITS(0x1b) 05:52:04 executing program 2: r0 = socket$inet(0xa, 0x6, 0x9693) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) prctl$PR_CAPBSET_DROP(0x18, 0x7) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$TIOCGETD(r1, 0x5424, &(0x7f0000000080)) [ 535.135155] FAULT_INJECTION: forcing a failure. [ 535.135155] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 535.169921] CPU: 0 PID: 24539 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 535.177060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 535.186406] Call Trace: [ 535.186426] dump_stack+0x138/0x197 [ 535.186447] should_fail.cold+0x10f/0x159 [ 535.186458] ? __might_sleep+0x93/0xb0 [ 535.186473] __alloc_pages_nodemask+0x1d6/0x7a0 [ 535.186488] ? __alloc_pages_slowpath+0x2930/0x2930 [ 535.186498] ? mmu_topup_memory_caches+0x86/0x320 [ 535.186512] ? rcu_read_lock_sched_held+0x110/0x130 [ 535.196876] alloc_pages_current+0xec/0x1e0 [ 535.196893] __get_free_pages+0xf/0x40 [ 535.196907] mmu_topup_memory_caches+0x194/0x320 [ 535.215272] kvm_mmu_load+0x21/0xd40 [ 535.215295] vcpu_enter_guest+0x2eb4/0x5210 [ 535.215310] ? perf_trace_lock+0x500/0x500 [ 535.215322] ? __lock_is_held+0x10/0x140 [ 535.215335] ? emulator_read_emulated+0x50/0x50 [ 535.224746] ? lock_acquire+0x16f/0x430 [ 535.224760] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 535.224780] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 535.224789] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 535.224807] kvm_vcpu_ioctl+0x401/0xd10 [ 535.258422] ? kvm_vcpu_block+0xbb0/0xbb0 [ 535.258437] ? trace_hardirqs_on+0x10/0x10 05:52:04 executing program 0: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x20000, 0x0) epoll_pwait(r0, &(0x7f00000000c0)=[{}, {}, {}, {}], 0x4, 0x6, &(0x7f0000000100)={0x2}, 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = msgget(0x1, 0x102) msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000000)=""/58) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 535.258451] ? save_trace+0x290/0x290 [ 535.258458] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 535.258469] ? __f_unlock_pos+0x19/0x20 [ 535.277264] ? __fget+0x210/0x370 [ 535.277280] ? find_held_lock+0x35/0x130 [ 535.277290] ? __fget+0x210/0x370 [ 535.277303] ? kvm_vcpu_block+0xbb0/0xbb0 [ 535.277314] do_vfs_ioctl+0x7ae/0x1060 [ 535.285667] ? selinux_file_mprotect+0x5d0/0x5d0 [ 535.285680] ? lock_downgrade+0x6e0/0x6e0 [ 535.285693] ? ioctl_preallocate+0x1c0/0x1c0 [ 535.285705] ? __fget+0x237/0x370 05:52:04 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x8, 0x202a40) ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r1, 0x80845663, &(0x7f00000001c0)={0x0, @reserved}) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 535.285721] ? security_file_ioctl+0x89/0xb0 [ 535.294421] SyS_ioctl+0x8f/0xc0 [ 535.294431] ? do_vfs_ioctl+0x1060/0x1060 [ 535.294447] do_syscall_64+0x1e8/0x640 [ 535.294456] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 535.294473] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 535.301853] RIP: 0033:0x459879 [ 535.301858] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 535.301870] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 535.301876] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:52:04 executing program 1 (fault-call:6 fault-nth:57): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:04 executing program 3: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mlockall(0x5) [ 535.301883] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 535.301889] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 535.301895] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x6, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x2a01, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r3, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7739}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x98}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1ff}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24004004}, 0x4040094) 05:52:04 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0xc031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000768000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00000dc000/0x2000)=nil) socket$inet6(0xa, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfe47bf070") rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 535.547396] FAULT_INJECTION: forcing a failure. [ 535.547396] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 535.612175] CPU: 0 PID: 24560 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 535.619367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 535.628729] Call Trace: [ 535.631325] dump_stack+0x138/0x197 [ 535.634975] should_fail.cold+0x10f/0x159 [ 535.639125] ? __might_sleep+0x93/0xb0 [ 535.643018] __alloc_pages_nodemask+0x1d6/0x7a0 [ 535.647701] ? __alloc_pages_slowpath+0x2930/0x2930 [ 535.652719] ? mmu_topup_memory_caches+0x86/0x320 [ 535.657575] ? rcu_read_lock_sched_held+0x110/0x130 [ 535.662591] alloc_pages_current+0xec/0x1e0 [ 535.662609] __get_free_pages+0xf/0x40 [ 535.662619] mmu_topup_memory_caches+0x194/0x320 [ 535.662633] kvm_mmu_load+0x21/0xd40 [ 535.662649] vcpu_enter_guest+0x2eb4/0x5210 [ 535.675571] ? perf_trace_lock+0x500/0x500 [ 535.675584] ? __lock_is_held+0x10/0x140 [ 535.675601] ? emulator_read_emulated+0x50/0x50 [ 535.683606] ? lock_acquire+0x16f/0x430 [ 535.683619] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 535.683638] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 535.683649] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 535.692030] kvm_vcpu_ioctl+0x401/0xd10 [ 535.692044] ? kvm_vcpu_block+0xbb0/0xbb0 [ 535.692057] ? trace_hardirqs_on+0x10/0x10 [ 535.692071] ? save_trace+0x290/0x290 [ 535.692078] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 535.692090] ? __f_unlock_pos+0x19/0x20 [ 535.705703] ? __fget+0x210/0x370 [ 535.715523] ? find_held_lock+0x35/0x130 [ 535.715535] ? __fget+0x210/0x370 [ 535.715551] ? kvm_vcpu_block+0xbb0/0xbb0 [ 535.715561] do_vfs_ioctl+0x7ae/0x1060 05:52:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x8, 0x942}) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000080)="2e0f781866470f01f80f0fc0a666ba4300b03cee26260f3066b86d000f00d0c744240074000000c7442402b9a30000ff1c24646443dccc48b804000000000000000f23c00f21f835030005000f23f8f2476d", 0x52}], 0x1, 0x40, &(0x7f0000000140), 0x0) [ 535.715575] ? selinux_file_mprotect+0x5d0/0x5d0 [ 535.727907] ? lock_downgrade+0x6e0/0x6e0 [ 535.727922] ? ioctl_preallocate+0x1c0/0x1c0 [ 535.727936] ? __fget+0x237/0x370 [ 535.727953] ? security_file_ioctl+0x89/0xb0 [ 535.736645] SyS_ioctl+0x8f/0xc0 [ 535.748277] ? do_vfs_ioctl+0x1060/0x1060 [ 535.748293] do_syscall_64+0x1e8/0x640 [ 535.748302] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 535.748320] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 535.755874] RIP: 0033:0x459879 [ 535.755880] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 535.755893] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 535.755899] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 535.755905] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 535.755910] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 535.755918] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:05 executing program 5: ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) bind$rose(r0, &(0x7f0000000000)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x1, @null}, 0x1c) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) 05:52:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x181800, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000080)={0x1000000000000000, 0xd000, 0x3, 0x2, 0x8}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:05 executing program 1 (fault-call:6 fault-nth:58): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:05 executing program 2: r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000080)={0x1, [0x0]}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={r1, 0x5, 0x2, 0x5, 0x5, 0x14}, &(0x7f0000000200)=0x14) r2 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r3 = accept$inet(r0, &(0x7f0000000240)={0x2, 0x0, @remote}, &(0x7f0000000280)=0x10) setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f00000002c0)=0x2, 0x4) 05:52:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)=0xe, 0x80000) r2 = accept$alg(r1, 0x0, 0x0) r3 = accept(r2, &(0x7f0000000280)=@ethernet={0x0, @link_local}, &(0x7f0000000000)=0x80) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x61, &(0x7f0000000100)={'filter\x00', 0x4}, 0x68) [ 536.062323] FAULT_INJECTION: forcing a failure. [ 536.062323] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 536.111821] CPU: 1 PID: 24592 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 536.118985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 536.128335] Call Trace: [ 536.128356] dump_stack+0x138/0x197 [ 536.128376] should_fail.cold+0x10f/0x159 [ 536.128387] ? __might_sleep+0x93/0xb0 [ 536.128401] __alloc_pages_nodemask+0x1d6/0x7a0 [ 536.138731] ? __alloc_pages_slowpath+0x2930/0x2930 [ 536.152257] ? mmu_topup_memory_caches+0x86/0x320 [ 536.157099] ? rcu_read_lock_sched_held+0x110/0x130 [ 536.157116] alloc_pages_current+0xec/0x1e0 [ 536.157132] __get_free_pages+0xf/0x40 [ 536.157141] mmu_topup_memory_caches+0x194/0x320 [ 536.157155] kvm_mmu_load+0x21/0xd40 [ 536.175077] vcpu_enter_guest+0x2eb4/0x5210 [ 536.175093] ? perf_trace_lock+0x500/0x500 [ 536.175104] ? __lock_is_held+0x10/0x140 [ 536.175116] ? emulator_read_emulated+0x50/0x50 [ 536.187339] ? lock_acquire+0x16f/0x430 [ 536.187354] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 536.187373] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 536.187384] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 536.214939] kvm_vcpu_ioctl+0x401/0xd10 [ 536.218922] ? kvm_vcpu_block+0xbb0/0xbb0 [ 536.223081] ? trace_hardirqs_on+0x10/0x10 [ 536.227319] ? save_trace+0x290/0x290 [ 536.231123] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 536.236035] ? __f_unlock_pos+0x19/0x20 [ 536.239993] ? __fget+0x210/0x370 [ 536.243435] ? find_held_lock+0x35/0x130 [ 536.247477] ? __fget+0x210/0x370 [ 536.250914] ? kvm_vcpu_block+0xbb0/0xbb0 [ 536.255061] do_vfs_ioctl+0x7ae/0x1060 [ 536.258943] ? selinux_file_mprotect+0x5d0/0x5d0 [ 536.263680] ? lock_downgrade+0x6e0/0x6e0 [ 536.267821] ? ioctl_preallocate+0x1c0/0x1c0 [ 536.272210] ? __fget+0x237/0x370 [ 536.275663] ? security_file_ioctl+0x89/0xb0 [ 536.280056] SyS_ioctl+0x8f/0xc0 [ 536.283404] ? do_vfs_ioctl+0x1060/0x1060 [ 536.287534] do_syscall_64+0x1e8/0x640 [ 536.291400] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 536.296227] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 536.301398] RIP: 0033:0x459879 [ 536.304580] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:52:05 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x8000) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, 0x0}) ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f0000000080)=r3) ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f0000000000)) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x46, 0x0, 0x19d) sendmmsg(r1, &(0x7f00000092c0), 0x170, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r4 = dup2(r0, r0) ioctl$TIOCMBIC(r4, 0x5417, &(0x7f0000000040)=0x7ff) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 05:52:05 executing program 2: getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x10000, 0x8, 0x10001, 0x100000000, 0x6, 0x6, 0x4, 0x0}, &(0x7f0000001280)=0x20) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000012c0)={r0, 0x93, "f9255fd9a74924d1eb25c73159f1d37aed7f6d1b867b1b240b8a256a8deecd24405aecf049bf93ac2b9e5afcf373e8cff8852afaebc4b7dd439045e917ea91897769c22b7b94f09f58ece0fea419d653e416e65e415863c033be6062ce59da2b00b218a09dd111cf426ac48ea353803efc883dd20657defa48f6c74af50f4f01f22ec5153db9ea304e07b4322b746e9a6d121e"}, &(0x7f0000001380)=0x9b) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x10000, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f00000011c0)={@nfc_llcp={0x27, 0x0, 0x0, 0x7, 0x1ff, 0x911f, "b3e0425d1e31ee39db998ce995be0b7442eefe1d2167d760295aa0aabd196ed3ae8f80300477b7a5f994297e5f0f90538ad750e5c266a997b1a76fd29ed235", 0x7}, {&(0x7f00000001c0)=""/4096, 0x1000}, &(0x7f0000000080), 0x10}, 0xa0) 05:52:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e24, 0x8, @local, 0x80000000}}, 0x6, 0x1}, &(0x7f0000000140)=0x90) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000180)={r2, @in6={{0xa, 0x4e20, 0x5, @ipv4={[], [], @local}, 0x1}}, 0x2733c, 0x4, 0xc231, 0x9, 0x9}, &(0x7f0000000280)=0x98) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 536.312371] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 536.319620] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 536.326869] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 536.334116] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 536.341481] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:05 executing program 4: openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x20000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2083, 0x0) [ 536.446109] binder: 24603:24613 ioctl 5417 20000040 returned -22 [ 536.465618] binder: BINDER_SET_CONTEXT_MGR already set [ 536.485787] binder: 24603:24613 ioctl 40046207 0 returned -16 05:52:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) ioctl$VIDIOC_G_AUDOUT(r2, 0x80345631, &(0x7f0000000080)) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000080)="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") 05:52:06 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x15, 0x4) 05:52:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000300)={0x0, 0xa2, "280a692785d250bf49710cbaf05da38156bbb9787d564e3d4ceceb654c60b6b3c18d69e88eb4e7ad0b9efbf0b3fa5fc68b72019fe6d4590a01c5211b9ddccce3fa8494217317acf28f04bb25d388bd76a9736a889a55de3760716182fab6b90f3406298943fe67bc3e035050b03255a2711d7e7d0f6e6827a507521800b3d5f43d12b06b4a6dd3e59e63d5aa99a83bb790ada00953090c0b320d5890d87c16de536b"}) r2 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0xc) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@dev, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@dev}}, &(0x7f00000001c0)=0xe8) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000002c0)={r3, r4, r5}, 0xc) 05:52:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) 05:52:06 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x20) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={r1, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:52:06 executing program 1 (fault-call:6 fault-nth:59): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:06 executing program 3 (fault-call:1 fault-nth:0): r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 536.903434] FAULT_INJECTION: forcing a failure. [ 536.903434] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 536.918351] CPU: 1 PID: 24641 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 536.925479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 536.934830] Call Trace: [ 536.934852] dump_stack+0x138/0x197 [ 536.934875] should_fail.cold+0x10f/0x159 [ 536.934886] ? __might_sleep+0x93/0xb0 [ 536.934901] __alloc_pages_nodemask+0x1d6/0x7a0 [ 536.934915] ? __alloc_pages_slowpath+0x2930/0x2930 [ 536.934925] ? mmu_topup_memory_caches+0x86/0x320 [ 536.934939] ? rcu_read_lock_sched_held+0x110/0x130 [ 536.945264] alloc_pages_current+0xec/0x1e0 [ 536.945282] __get_free_pages+0xf/0x40 [ 536.945293] mmu_topup_memory_caches+0x194/0x320 [ 536.953904] kvm_mmu_load+0x21/0xd40 [ 536.953922] vcpu_enter_guest+0x2eb4/0x5210 [ 536.953934] ? perf_trace_lock+0x500/0x500 [ 536.953947] ? __lock_is_held+0x10/0x140 [ 536.953960] ? emulator_read_emulated+0x50/0x50 [ 536.953969] ? lock_acquire+0x16f/0x430 [ 536.953978] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 536.953994] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 536.954002] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 536.954019] kvm_vcpu_ioctl+0x401/0xd10 [ 536.968840] ? kvm_vcpu_block+0xbb0/0xbb0 [ 536.977181] ? trace_hardirqs_on+0x10/0x10 [ 536.977197] ? save_trace+0x290/0x290 [ 536.977205] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 536.977216] ? __f_unlock_pos+0x19/0x20 [ 536.998231] ? __fget+0x210/0x370 05:52:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000080)) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xfbb, 0x450000) getsockopt$EBT_SO_GET_INIT_ENTRIES(r2, 0x0, 0x83, &(0x7f0000000240)={'broute\x00', 0x0, 0x4, 0xc8, [], 0x3, &(0x7f0000000100)=[{}, {}, {}], &(0x7f0000000140)=""/200}, &(0x7f00000002c0)=0x78) 05:52:06 executing program 2: r0 = socket$inet(0xa, 0x801, 0x7) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e23, @multicast2}}}, &(0x7f0000000000)=0x2a0) 05:52:06 executing program 3: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200000, 0x0) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100040}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)={0x1ec, r1, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x3c, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffffffffffffffd}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0xb8, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x300000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x25}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2c2d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x14}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc0}]}]}, @TIPC_NLA_SOCK={0x30, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x400}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xf2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x10000}]}, @TIPC_NLA_NET={0x18, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x90}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}]}, @TIPC_NLA_LINK={0x9c, 0x4, [@TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x995}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffffffffff7}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0xb0bc5936741e0642}, 0x0) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000180)=0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r0, 0xc0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=0x86, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x5, 0x5}, 0x0, 0x0, &(0x7f00000004c0)={0x2, 0xc, 0x7, 0x10001}, &(0x7f0000000500)=0x200, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10) fdatasync(r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000640)={r2, r0, 0x0, 0x1, &(0x7f0000000400)='\x00', r3}, 0x30) r4 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 536.998245] ? find_held_lock+0x35/0x130 [ 536.998256] ? __fget+0x210/0x370 [ 537.011878] ? kvm_vcpu_block+0xbb0/0xbb0 [ 537.011892] do_vfs_ioctl+0x7ae/0x1060 [ 537.011903] ? selinux_file_mprotect+0x5d0/0x5d0 [ 537.011913] ? lock_downgrade+0x6e0/0x6e0 [ 537.011923] ? ioctl_preallocate+0x1c0/0x1c0 [ 537.011935] ? __fget+0x237/0x370 [ 537.011951] ? security_file_ioctl+0x89/0xb0 [ 537.011963] SyS_ioctl+0x8f/0xc0 [ 537.046772] ? do_vfs_ioctl+0x1060/0x1060 [ 537.046787] do_syscall_64+0x1e8/0x640 [ 537.046798] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:52:06 executing program 3: r0 = socket$inet(0xa, 0x3, 0x2) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x2700, 0x0) ioctl$LOOP_SET_CAPACITY(r1, 0x4c07) r2 = msgget(0x2, 0x80) msgctl$IPC_RMID(r2, 0x0) [ 537.054304] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 537.054315] RIP: 0033:0x459879 [ 537.054324] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 537.062086] ORIG_RAX: 0000000000000010 [ 537.071216] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 537.071223] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 537.071229] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 537.071235] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 537.071241] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:06 executing program 3: r0 = socket$inet(0xa, 0x6, 0x10000084) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = fcntl$getown(r0, 0x9) socket$inet_udp(0x2, 0x2, 0x0) process_vm_writev(r1, &(0x7f0000000100)=[{&(0x7f0000000000)=""/14, 0xe}, {&(0x7f0000000040), 0xffffffffffffffd2}, {&(0x7f0000000200)=""/246, 0xf6}, {&(0x7f0000000080)=""/23, 0x7}], 0x7334b573223c1b52, &(0x7f0000000180)=[{&(0x7f0000000340)=""/30, 0x1e}], 0x10000000000001f5, 0x0) 05:52:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/icmp6\x00') getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000280)=0x10) getpeername$ax25(r2, &(0x7f0000000180)={{0x3, @bcast}, [@default, @null, @bcast, @rose, @rose, @null, @default, @rose]}, &(0x7f00000002c0)=0x48) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000300)={[{0x80000000, 0x91, 0x0, 0x5, 0x10001, 0x5, 0x80, 0x1000, 0x5, 0x4, 0x7, 0x40, 0xfff}, {0x8, 0x9, 0x6, 0xe8f, 0x2c, 0x40, 0x100000000, 0x0, 0x5, 0x3, 0x0, 0x1, 0x40}, {0x100000000, 0x0, 0x5, 0x0, 0x9, 0x9, 0x200, 0x2, 0x1, 0xff, 0x4, 0x6, 0x7}], 0x1dfe}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) r3 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x100000000, 0x22800) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r3, 0x81785501, &(0x7f0000000080)=""/181) 05:52:06 executing program 5: ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) prctl$PR_SET_DUMPABLE(0x4, 0x1) 05:52:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x10000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:06 executing program 1 (fault-call:6 fault-nth:60): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:06 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x1, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x4e23, @rand_addr=0x10000}}}, &(0x7f0000000040)=0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x8, 0x5, 0x202, 0xf1d1, 0x0, 0x100, 0x3, 0x7ff000000, r1}, &(0x7f0000000200)=0x20) r2 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:06 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) pipe(&(0x7f0000000000)={0xffffffffffffffff}) r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/mls\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f00000000c0)={0x20, 0xf, 0x1, r2}) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) ioctl$VIDIOC_G_SLICED_VBI_CAP(r2, 0xc0745645, &(0x7f00000001c0)={0x80000001, [0x9, 0x5, 0x3, 0x2, 0x0, 0x80000000, 0x800, 0x80000001, 0x200, 0x8001, 0x100000001, 0x7, 0x6, 0xffffffffffffff5a, 0x6, 0x80000000, 0x20, 0x9, 0x1, 0x8, 0x9, 0x3, 0xc6c8, 0xa1, 0x6, 0x800, 0x7, 0xffffffffffff6337, 0x7, 0x7, 0x8, 0x8001, 0x0, 0x101, 0x7fffffff, 0x5, 0x40, 0x5, 0x4, 0x5, 0xffffffffffffffff, 0x7, 0x9b, 0x4, 0x5, 0x6, 0x8], 0x6}) 05:52:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000009000/0x3000)=nil}) [ 537.436985] binder: 24683:24685 ioctl 6611 0 returned -22 [ 537.445815] binder: BINDER_SET_CONTEXT_MGR already set [ 537.451374] binder: 24683:24685 ioctl 40046207 0 returned -16 [ 537.458274] binder: 24683:24685 ioctl 6611 0 returned -22 [ 537.465215] binder: BINDER_SET_CONTEXT_MGR already set [ 537.470600] binder: 24683:24686 ioctl 40046207 0 returned -16 05:52:06 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x0, 0x4000) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, 0xfffffffffffffffd) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000040)={0x4, [0x1366, 0x4, 0xfff, 0x3]}, &(0x7f0000000080)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 537.536276] FAULT_INJECTION: forcing a failure. [ 537.536276] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 537.557433] CPU: 1 PID: 24693 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 537.564575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 537.564580] Call Trace: [ 537.564600] dump_stack+0x138/0x197 [ 537.564619] should_fail.cold+0x10f/0x159 [ 537.564631] ? __might_sleep+0x93/0xb0 [ 537.564646] __alloc_pages_nodemask+0x1d6/0x7a0 [ 537.564661] ? __alloc_pages_slowpath+0x2930/0x2930 [ 537.564674] ? mmu_topup_memory_caches+0x86/0x320 [ 537.564692] ? rcu_read_lock_sched_held+0x110/0x130 [ 537.564706] alloc_pages_current+0xec/0x1e0 [ 537.564719] __get_free_pages+0xf/0x40 [ 537.564727] mmu_topup_memory_caches+0x194/0x320 [ 537.564742] kvm_mmu_load+0x21/0xd40 [ 537.564760] vcpu_enter_guest+0x2eb4/0x5210 [ 537.564773] ? perf_trace_lock+0x500/0x500 [ 537.564786] ? __lock_is_held+0x10/0x140 [ 537.564798] ? emulator_read_emulated+0x50/0x50 [ 537.564807] ? lock_acquire+0x16f/0x430 [ 537.564817] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 537.564841] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 537.584526] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 537.584546] kvm_vcpu_ioctl+0x401/0xd10 [ 537.584558] ? kvm_vcpu_block+0xbb0/0xbb0 [ 537.598092] ? trace_hardirqs_on+0x10/0x10 [ 537.598107] ? save_trace+0x290/0x290 [ 537.598114] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 537.598127] ? __f_unlock_pos+0x19/0x20 [ 537.624573] ? __fget+0x210/0x370 [ 537.624587] ? find_held_lock+0x35/0x130 [ 537.624597] ? __fget+0x210/0x370 [ 537.641825] ? kvm_vcpu_block+0xbb0/0xbb0 [ 537.641838] do_vfs_ioctl+0x7ae/0x1060 [ 537.641852] ? selinux_file_mprotect+0x5d0/0x5d0 [ 537.641863] ? lock_downgrade+0x6e0/0x6e0 [ 537.641873] ? ioctl_preallocate+0x1c0/0x1c0 [ 537.641886] ? __fget+0x237/0x370 [ 537.655692] ? security_file_ioctl+0x89/0xb0 [ 537.672995] SyS_ioctl+0x8f/0xc0 [ 537.673006] ? do_vfs_ioctl+0x1060/0x1060 [ 537.673019] do_syscall_64+0x1e8/0x640 05:52:06 executing program 2: r0 = socket$inet(0xa, 0x80f, 0x2) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:52:07 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f00000001c0)=0x0) fstat(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000000)='./file0\x00', r1, r2) [ 537.673029] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 537.681742] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 537.681751] RIP: 0033:0x459879 [ 537.681758] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 537.757980] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 537.765252] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 537.772536] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 537.779822] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:52:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x3, 0x0, 0x2000b000, &(0x7f0000009000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000100)={0x10201, 0x0, &(0x7f0000009000/0x3000)=nil}) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x2000, 0x0) ioctl$DRM_IOCTL_AGP_FREE(r2, 0x40206435, &(0x7f0000000080)={0xff, 0x0, 0x10000, 0x8}) 05:52:07 executing program 3: r0 = socket$inet(0xa, 0x5, 0x7) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_mount_image$minix(&(0x7f0000000000)='minix\x00', &(0x7f0000000080)='./file0\x00', 0xff, 0xa, &(0x7f00000003c0)=[{&(0x7f00000000c0)="09c2872f6f792b5220d86e699ba7ce7f03eb848b5cdd7163bae3f43a11884a33f1f749f04c837ff60e0d75ca06a50fa6270122600d4005e1c5aa56a9ee68e7aef886995382b0317e5a50d71e337529ddd28e7c543d669357e6fa17031018a4dc1ecb80d5826a69d4585d61e9d6e459493267dcb1601badbf1eaf97320c4b0ceab19ab075310c7a9adcc1eafc7ae37b4a355156924a6f34884fb7", 0x9a, 0x3}, {&(0x7f0000000180)='T|x\\', 0x4, 0x5}, {&(0x7f00000001c0)="e378c2a42331e541d889438ecac43e261d743dcb7cca321e1de62620358c547d87cc06c44e144d891993e063150860086abad0775ea4fe1595d3d5245eed6fdd86fbc601b334df7703b6e5614121020906862fdaaff35866a06f79be55f2d68c27306401a21d8dd7f62de74da14dc676b2c22a94fe6024c3dcefff3e1bbde61dfd599c774220ee9ac47cb84fb4304423820bdb3b13f23ef00a59a2dc64f7d5577eefe94b46f729ad9983bf4812fd78e1885bfafb2e91d7", 0xb7, 0x9e46}, {&(0x7f0000000540)="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", 0x1000, 0xffffffffffffffdd}, {&(0x7f0000000280)="34778179c6539312881b173afbec30be29c4aa8a740a3c950a", 0x19, 0x2}, {&(0x7f0000001540)="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", 0x1000, 0x5}, {&(0x7f0000002540)="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", 0x1000}, {&(0x7f00000002c0)="8c287b2835571d1943bffd2062140664cce7fc0074713bd0c6e0d2ee784ecf46fc1c2a4c184ffa1db6d40a2586b4628563e72b9b69dc6410a1b65f13edaa65b17fc09635eea71c28e8c2d691aac3c67f40da2a1014225fac0ec16615b2f89d1af6c16dc8a46c6ccc4007eae78803ca9d70509f58c6c040ebfd5f6662d65e501e62937996951d8f98a40a8fc85eb10840e7becaf403bd35d08f7303c943efebcc0aa84410aefcdc1e531f58e2e727c52526c32c705828f68beb687355a40ebeed369755e8e7b659e52a3d7527bf830d0d2d6e25ee1cab6a15e34f7dc7177841c16b52715ee68e289d9590bd08b7bc", 0xee, 0x200}, {&(0x7f0000003540)="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", 0x1000, 0x20}, {&(0x7f0000004540)="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", 0x1000, 0x7fff}], 0x20, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000005540)='/dev/vcs#\x00', 0xffffffffffffffff, 0x4000) ioctl$EVIOCGKEY(r3, 0x80404518, &(0x7f0000005580)=""/243) r4 = syz_open_dev$sndpcmc(&(0x7f0000005680)='/dev/snd/pcmC#D#c\x00', 0x3, 0x60080) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) write$cgroup_type(r1, &(0x7f00000004c0)='threaded\x00', 0x9) r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000005700)='nbd\x00') sendmsg$NBD_CMD_STATUS(r4, &(0x7f00000057c0)={&(0x7f00000056c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000005780)={&(0x7f0000005740)={0x28, r5, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x44000}, 0x20048050) [ 537.787092] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:07 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000080)={r1, r1, 0x7, 0x22, &(0x7f0000000000)="f8e1220a08d94df245e881c8c26af4e7f7176cfc9b905d982f3295897dca7cf072e8", 0x5, 0x7f, 0x82, 0x1, 0x3, 0x3, 0x9, 'syz1\x00'}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000580)={0x90, 0x0, &(0x7f00000003c0)=[@reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@fda={0x66646185, 0x5, 0x1, 0x1c}, @flat=@binder={0x73622a85, 0x1000, 0x3}, @fda={0x66646185, 0xa, 0x1, 0x2c}}, &(0x7f00000001c0)={0x0, 0x20, 0x38}}}, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000300)={@flat=@weak_binder, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000200)=""/233, 0xe9, 0x1, 0x1b}}, &(0x7f0000000380)={0x0, 0x18, 0x30}}, 0x1000}], 0xcf, 0x0, &(0x7f0000000480)="24b40590d87d924153b782b6c97a3b9eba58bc84ba5b37a9e8fda71fb754bc19dad01364d42aba087cd0b3eb2a84f0905093eb3bab3f0db0cb3761f3d0a82405c77062a19f935e6acea38ddd383936aab56e7b22e04391a3fa0abc4b1c36bd8fbbea7f97a19eb8a213dde523b59e45fcc803ee58a667e6d584c76508877e859a1fd3c7ab000936e76e667ab19f4b70f251e054b2c2d58d881808685957f5df6dfb0d964bbd84d82d65ef5b037eaae69a66196b23c678c2579808311ff8e701c19532755186d5d76f2bbbdb595619d1"}) 05:52:07 executing program 0 (fault-call:4 fault-nth:0): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:07 executing program 1 (fault-call:6 fault-nth:61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:07 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000080)=""/119, &(0x7f0000000000)=0x77) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) 05:52:07 executing program 4: r0 = syz_init_net_socket$ax25(0x3, 0x0, 0x8) accept$ax25(r0, 0x0, &(0x7f0000000700)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:07 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x1, 0x0) ioctl$UI_BEGIN_FF_ERASE(r1, 0xc00c55ca, &(0x7f0000000040)={0x6, 0x5, 0x3f}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 538.123717] input: syz1 as /devices/virtual/input/input327 [ 538.149597] FAULT_INJECTION: forcing a failure. [ 538.149597] name failslab, interval 1, probability 0, space 0, times 0 [ 538.187014] FAULT_INJECTION: forcing a failure. [ 538.187014] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 538.208391] CPU: 0 PID: 24748 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 538.215521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 538.224882] Call Trace: [ 538.227480] dump_stack+0x138/0x197 [ 538.231125] should_fail.cold+0x10f/0x159 [ 538.235289] should_failslab+0xdb/0x130 [ 538.239303] __kmalloc_track_caller+0x2ec/0x790 [ 538.243975] ? pointer+0xb10/0xb10 [ 538.247510] ? kasprintf+0xa2/0xbe [ 538.251049] kvasprintf+0xa7/0x110 [ 538.254585] ? bust_spinlocks+0xc0/0xc0 [ 538.254606] kasprintf+0xa2/0xbe [ 538.254617] ? kvasprintf_const+0x170/0x170 [ 538.254630] ? save_trace+0x290/0x290 [ 538.261946] ? save_trace+0x290/0x290 [ 538.261960] ? input_default_getkeycode+0x4d0/0x4d0 [ 538.261968] input_devnode+0x4c/0x90 [ 538.261981] device_get_devnode+0x170/0x2e0 [ 538.261996] devtmpfs_delete_node+0x9b/0x170 [ 538.262006] ? devtmpfs_create_node+0x220/0x220 [ 538.262019] ? refcount_sub_and_test+0x8d/0xf0 [ 538.300578] ? refcount_dec_and_test+0x1b/0x20 [ 538.305157] ? kobject_put+0x6d/0x80 [ 538.308866] ? klist_children_put+0x44/0x50 [ 538.313179] ? klist_put+0xc6/0x160 [ 538.316804] device_del+0x799/0xaa0 [ 538.320432] ? __device_links_no_driver+0x220/0x220 [ 538.325448] cdev_device_del+0x1a/0x70 [ 538.329333] evdev_disconnect+0x42/0xb0 [ 538.333305] __input_unregister_device+0x1eb/0x480 [ 538.338229] input_unregister_device+0xa9/0xf0 [ 538.342804] uinput_destroy_device+0x1ce/0x220 [ 538.347385] ? uinput_destroy_device+0x220/0x220 [ 538.352222] uinput_release+0x3c/0x60 [ 538.356014] __fput+0x275/0x7a0 [ 538.359292] ____fput+0x16/0x20 [ 538.362564] task_work_run+0x114/0x190 [ 538.366446] exit_to_usermode_loop+0x1da/0x220 [ 538.371029] do_syscall_64+0x4bc/0x640 [ 538.374903] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 538.379830] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 538.385010] RIP: 0033:0x459879 05:52:07 executing program 3: socket$inet(0xa, 0x801, 0x84) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) r3 = dup(r1) bind$inet6(r3, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) recvmmsg(0xffffffffffffffff, &(0x7f000000a400)=[{{&(0x7f0000000680)=@ax25={{0x3, @bcast}, [@netrom, @default, @null, @remote, @remote, @default, @netrom, @default]}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000700)=""/86, 0x56}, {&(0x7f0000001780)=""/45, 0x2d}], 0x2, &(0x7f00000018c0)=""/238, 0xee}, 0x2c}, {{&(0x7f00000019c0)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000001a80)=[{0x0}, {&(0x7f0000001a40)=""/43, 0x2b}, {0x0}], 0x3, &(0x7f0000001ac0)=""/69, 0x45}}, {{0x0, 0x0, &(0x7f0000003480)=[{0x0}, {&(0x7f0000001f00)=""/209, 0xd1}, {0x0}, {&(0x7f0000003140)=""/161, 0xa1}, {0x0}], 0x5, &(0x7f0000003540)=""/1, 0x1}}], 0x3, 0x0, &(0x7f000000a680)) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f000000fac0)={{{@in6=@local, @in=@local}}, {{@in=@initdev}, 0x0, @in6=@mcast1}}, &(0x7f000000fbc0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f000000fc00)={{{@in=@initdev, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@initdev}}, &(0x7f000000fd00)=0xe8) r5 = socket$unix(0x1, 0x2, 0x0) bind$unix(r5, &(0x7f0000000440)=@abs={0x1}, 0x4d) bind$unix(r5, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f000000fd40)={@mcast1}, &(0x7f000000fd80)=0x14) getpeername$packet(r0, &(0x7f000000fdc0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x0) getpeername$packet(r2, &(0x7f000000fe80)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f000000fec0)=0x14) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, 0x0, 0x0) getsockname$packet(r2, &(0x7f0000010380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000103c0)=0x14) accept4$packet(r3, &(0x7f0000010500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000010540)=0x14, 0xd967d5e4013ee7d6) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000010880), 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000015240)={@remote, 0x0}, &(0x7f0000015280)=0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000152c0)={{{@in=@remote, @in=@loopback}}, {{@in=@remote}, 0x0, @in6=@loopback}}, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000015440)) getsockopt$inet6_mreq(r1, 0x29, 0x1c, 0x0, &(0x7f0000015740)) getsockname$packet(0xffffffffffffffff, &(0x7f00000159c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000015a00)=0x14) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, &(0x7f0000015b40)) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000016540)={&(0x7f0000000100), 0xc, &(0x7f0000016500)={&(0x7f0000015cc0)=ANY=[@ANYRES16, @ANYBLOB="100025bd7000fedbdf2501000000", @ANYBLOB="40000100240001006d6f646500"/27, @ANYBLOB="400002003c000100240001006d", @ANYRES32, @ANYRES32=r4, @ANYBLOB, @ANYBLOB, @ANYRES32=r6, @ANYBLOB='\b\x00', @ANYBLOB="f00002003c00010024000100656e61626c656400000000000000000000000000000000000000000000000000080003000600000004", @ANYBLOB="40000100240001007072696f7269747900"/29, @ANYRES32, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000080003000300000008000400160cd75a3800010024000100", @ANYBLOB, @ANYRES32=r7, @ANYBLOB="3c0002003800010024000100616374697665706f72740000000000000000000000000000000000000000000008000300030000000800", @ANYRES32, @ANYBLOB="080001", @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c0000", @ANYRES32=r8, @ANYBLOB, @ANYBLOB="38000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000080003000300000008000400", @ANYRES32, @ANYBLOB="080007000000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000080003000b00000008000400f9ffffff08000700000000003c0001002400", @ANYRES32, @ANYRES32, @ANYBLOB="080007000000000040000100240001007072696f72697479000000000000000000"], 0x1f}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x0) 05:52:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)={0x9}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f00000000c0)=0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x5, 0x6000, 0x1000, &(0x7f000000a000/0x1000)=nil}) [ 538.388192] RSP: 002b:00007ffa129d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 538.395896] RAX: 0000000000000003 RBX: 00007ffa129d8c90 RCX: 0000000000459879 [ 538.403160] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 538.410419] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 538.417680] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa129d96d4 [ 538.424940] R13: 00000000004bfefc R14: 00000000004d1e28 R15: 0000000000000005 [ 538.449046] CPU: 0 PID: 24752 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 538.456176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 538.456182] Call Trace: [ 538.456199] dump_stack+0x138/0x197 [ 538.456219] should_fail.cold+0x10f/0x159 [ 538.456231] ? __might_sleep+0x93/0xb0 [ 538.479788] __alloc_pages_nodemask+0x1d6/0x7a0 [ 538.479804] ? __alloc_pages_slowpath+0x2930/0x2930 [ 538.479816] ? mmu_topup_memory_caches+0x86/0x320 [ 538.479833] ? rcu_read_lock_sched_held+0x110/0x130 [ 538.479847] alloc_pages_current+0xec/0x1e0 [ 538.503678] __get_free_pages+0xf/0x40 [ 538.507561] mmu_topup_memory_caches+0x194/0x320 [ 538.507577] kvm_mmu_load+0x21/0xd40 [ 538.516034] vcpu_enter_guest+0x2eb4/0x5210 [ 538.520360] ? perf_trace_lock+0x500/0x500 [ 538.524600] ? __lock_is_held+0x10/0x140 [ 538.528669] ? emulator_read_emulated+0x50/0x50 [ 538.533340] ? lock_acquire+0x16f/0x430 [ 538.537313] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 538.537332] kvm_arch_vcpu_ioctl_run+0x318/0x1000 05:52:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x46b773391c01a137}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x400, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}}, 0x50) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 538.537342] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 538.537363] kvm_vcpu_ioctl+0x401/0xd10 [ 538.537374] ? kvm_vcpu_block+0xbb0/0xbb0 [ 538.537384] ? trace_hardirqs_on+0x10/0x10 [ 538.556161] ? save_trace+0x290/0x290 [ 538.556171] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 538.556181] ? __f_unlock_pos+0x19/0x20 [ 538.556193] ? __fget+0x210/0x370 [ 538.556204] ? find_held_lock+0x35/0x130 [ 538.556213] ? __fget+0x210/0x370 [ 538.556226] ? kvm_vcpu_block+0xbb0/0xbb0 [ 538.592271] do_vfs_ioctl+0x7ae/0x1060 [ 538.596162] ? selinux_file_mprotect+0x5d0/0x5d0 [ 538.601097] ? lock_downgrade+0x6e0/0x6e0 [ 538.605251] ? ioctl_preallocate+0x1c0/0x1c0 [ 538.609670] ? __fget+0x237/0x370 [ 538.613132] ? security_file_ioctl+0x89/0xb0 [ 538.613148] SyS_ioctl+0x8f/0xc0 [ 538.613158] ? do_vfs_ioctl+0x1060/0x1060 [ 538.613173] do_syscall_64+0x1e8/0x640 [ 538.613181] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 538.613198] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 538.620945] RIP: 0033:0x459879 [ 538.620951] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:52:07 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.evm\x00', &(0x7f0000000200)=@v2={0x5, 0x2, 0xa, 0x3, 0xf1, "21ce6cc0caedf6f667ef46b39e45a63ff81afc3336ec53244f899eb74ab55c3efa50c4f6ad8a7785a675b2fa7704529644ee2864d811e2b3c5f9cc7050d621f08523be66dd9ad0ffe8ab1e795bb19fd46ae356533357f14169850008edcd3f3f34ec76b205d26c7c4208379605101d23ec1c0cee040371160d6e4d5cb372a990244ac2fbcca3b11f85606ffc9cb69f259d137355e62d85c4d6311997f1941a140651e8540a0be12f2e571b51839030cd2900679f13efe4cb2dcef3df04dfddb87d1a583283712fac035b0192da95a7b6827ffbd3b2a3330de5cc6e084e0e8dc89778d80169aebc09ae0fbc1362258ade10"}, 0xfb, 0x3) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 538.620963] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 538.620969] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 538.620977] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 538.633796] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 538.642152] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 538.722779] IPVS: length: 119 != 8 05:52:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x400400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) 05:52:08 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000280)={0x0, {0x2, 0x4e20, @empty}, {0x2, 0x4e21, @multicast2}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x8, 0x0, 0x0, 0x0, 0xea, &(0x7f00000000c0)='rose0\x00', 0x4, 0x1}) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000001c0)={r1, @in6={{0xa, 0x4e23, 0xfffffffffffff28a, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x20}}, 0xfffffffffffffffc, 0x9}, 0x90) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 538.745707] IPVS: length: 119 != 8 05:52:08 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000080)={0x3ff, 0x9, 0xfffffffffffffff9, 0x8}) r1 = dup2(r0, r0) setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f0000000040), 0x4) ioctl$TIOCSTI(r1, 0x5412, 0x3) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x280100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = open(&(0x7f0000000040)='./file0\x00', 0x191840, 0xe6cdf5ccb1065fa1) getsockopt$IP_VS_SO_GET_DESTS(r2, 0x0, 0x484, &(0x7f0000000080)=""/194, &(0x7f0000000180)=0xc2) 05:52:08 executing program 3: r0 = socket$inet(0xa, 0x3, 0xcb5a) openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/attr/current\x00', 0x2, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x10000, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f0000000080)) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2) 05:52:08 executing program 1 (fault-call:6 fault-nth:62): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:08 executing program 0 (fault-call:4 fault-nth:1): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:08 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/icmp\x00') getsockopt$inet_buf(r0, 0x0, 0x25, &(0x7f00000001c0)=""/240, &(0x7f0000000080)=0xf0) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 538.861987] binder: 24780:24785 ioctl 400448c8 20000080 returned -22 [ 538.868782] binder: 24780:24785 ioctl 40087703 1 returned -22 [ 538.875563] binder: BINDER_SET_CONTEXT_MGR already set [ 538.880968] binder: 24780:24785 ioctl 40046207 0 returned -16 [ 538.888123] binder: 24780:24785 ioctl 400448c8 20000080 returned -22 [ 538.890214] binder: 24780:24786 ioctl 40087703 1 returned -22 [ 538.901085] binder: BINDER_SET_CONTEXT_MGR already set [ 538.906363] binder: 24780:24785 ioctl 40046207 0 returned -16 05:52:08 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e00000004000000b00300002001000000000000580200000000000020010000180300001803000018030000180300001803000004000000", @ANYPTR=&(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000000000000000000000000008000000000000000000000000000000000000000000000000fdffffff00"/64], @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f80020010000000000000000000000000000000000000000000000003000616464727479706500000000000000000000000000000000000000000000840010000100000001000000000000003000616800000000000000000000000000000000000000000000000000000000ffffffff080000000000000000000000280052454a4543540000000000000000000000000000000000000000000000000300000000000000000000007f00000100000000000000ff73697430000000000000000000000000726f7365300000000000000000000000000000000000000000000000880000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000067009f31000000000000000000000000000010013801000000000000000000000000000000000000000000000000280069636d7000000000000000000000000000000000000000000000000000000001ff010000000050006f736600000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000ecec0000010000000200000001000000280052454a4543540000000000000000000000000000000000000000000000000500000000000000ac1414aa00000009000000ff0000000069726c616e30000000000000000000006e723000000000000000000000000000000000000000000000000000ff0000000000000000000000000000000000000000000000000000000000ff0000000000000000000000000000000100010600000000000000000000000000009800c000000000000000000000000000000000000000000000000000280052454a4543540000000000000000000000000000000000000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x410) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000040)={r1, 0x3ff}, 0x8) r2 = accept$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000140)=0x1c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000180)={r1, 0x7fff}, 0x8) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000080)=@buf={0xed, &(0x7f0000000640)="df703883bdc2935712463691f44333efde0cad43f6b566f2dac5effd680ef1a2192d07bb1e34bd5cec8bf6e83de8fa354ab3275e864ca773c974b5dc38d717ea6f34bda0af9da9f736ff26988cd7f1b5793aa4e3e378e350e279fbac0bfde7691d3691a7c57314be151718a36de9af1c90d66dfdd34395744d2b13229b8acd186f6d5d8b25dbf92b87d1e5184f06b982a7e4f511877f25e207351bb7e0e77c1ffe8b7e239c9d16a8d335157bf277730a94ac5bb7b6555e9fa15c6a546008e56d147b6e45a605e536a836e97d1238eabcfdecd88c11dd30b4a0263ead4354f6093a2b912192b037d9b3a887e3a6"}) [ 538.946227] input: syz1 as /devices/virtual/input/input328 [ 538.954643] FAULT_INJECTION: forcing a failure. [ 538.954643] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 538.973029] FAULT_INJECTION: forcing a failure. [ 538.973029] name failslab, interval 1, probability 0, space 0, times 0 [ 538.990715] CPU: 1 PID: 24793 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 538.997835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 539.007218] Call Trace: [ 539.009820] dump_stack+0x138/0x197 [ 539.013455] should_fail.cold+0x10f/0x159 [ 539.017607] should_failslab+0xdb/0x130 [ 539.021588] kmem_cache_alloc_trace+0x2e9/0x790 [ 539.026289] ? lock_downgrade+0x6e0/0x6e0 [ 539.030432] ? devm_device_remove_groups+0x50/0x50 [ 539.035359] kobject_uevent_env+0x378/0xc23 [ 539.039668] ? wait_for_completion+0x420/0x420 [ 539.039690] kobject_uevent+0x20/0x26 [ 539.039704] device_del+0x65c/0xaa0 [ 539.048089] ? __device_links_no_driver+0x220/0x220 [ 539.056880] cdev_device_del+0x1a/0x70 [ 539.060870] evdev_disconnect+0x42/0xb0 [ 539.064852] __input_unregister_device+0x1eb/0x480 [ 539.069787] input_unregister_device+0xa9/0xf0 [ 539.074367] uinput_destroy_device+0x1ce/0x220 [ 539.078950] ? uinput_destroy_device+0x220/0x220 [ 539.083709] uinput_release+0x3c/0x60 [ 539.087512] __fput+0x275/0x7a0 [ 539.090890] ____fput+0x16/0x20 [ 539.094157] task_work_run+0x114/0x190 [ 539.098048] exit_to_usermode_loop+0x1da/0x220 [ 539.102652] do_syscall_64+0x4bc/0x640 [ 539.106625] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 539.111475] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 539.116658] RIP: 0033:0x459879 [ 539.119840] RSP: 002b:00007ffa129d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 539.127631] RAX: 0000000000000003 RBX: 00007ffa129d8c90 RCX: 0000000000459879 [ 539.134896] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 05:52:08 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000040)=0x80, 0x4) r1 = fanotify_init(0x40, 0x0) r2 = fcntl$dupfd(r0, 0x2e01a6fa005db956, r0) fsetxattr$security_selinux(r1, &(0x7f0000000080)='security.selinux\x00', &(0x7f0000000180)='system_u:object_r:policy_config_t:s0\x00', 0x25, 0x3) ioctl$FICLONE(r1, 0x40049409, r2) sendmsg$kcm(r2, &(0x7f0000000800)={&(0x7f0000000100)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'rfc4106(gcm(des3_ede-asm))\x00'}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000200)="b97e16ed0a7fb04a481cb722094662baabff50585d101278485e0c2153ab5942e8856affabf593eca844a7f4974d8ece1c4f82911138f4af9e30f12ce1ee6c49939a60980419293eb95650b789bc8c387f5b592c834b49b51e516e61b49754", 0x5f}, {&(0x7f0000000280)="83c8adef314a3ff9d28177f8d7e6d622fdf44da2968afb1764ad63b0ab6d26c3acfb46dc9ceef406231f9c4548acf6f710653e06f464e23c9ba429a6eaaaa5d6d708c08e4d28f9a3c57eafb77224d95ee3101d77be00bf2e4cde062006cfd6728d1f9850c12ee71e195345962339abda821d30db652a731979661b8ceb1931759651e5f91be4681d24e339328f9b67035519cd4e28cab241a4e078de3c0d3d73794c21361b7c8b9a258012f963d4d03c86a657cfae691f36fb285b8c04254e0311978eef0556ac383d18ce97a1", 0xcd}, {&(0x7f0000000380)="5f30efa85da2de4a5ed5fc536bc38c793c0d87f975dda9d47ba4533f74b9f00664d54de1520055a4c584752a6b29e2769258531cd821a6d4cba906987acc4137affdc45afa2e31a91708131ebd4bfb9537140cf1107f3a17a73b1b6183ee029a10d80e687727bc0d75907d276a23a5227fe24b5756fa1e64e37f9a3a2e69cf87dd0d23786f35a518a150fdd2540f3b8231192599693574cac2f839bdd75b2d7614e989ecb1ca13553295c28a3c281ee182b806aded9e143016653ea89ec849e616bc8f933c6fda71574f745bc53fd341b6fda0b1f5d9fcbdf517", 0xda}, {&(0x7f0000000480)="64f7b555f97dbd031b0c16a48ebe57c93c00639de8baeb8c6c0bc2407e5ee08d4fae6e821b3b9dd273948dba1e212391793aba9bf6ffe985dc368b9507cfadd37918e9edabe92c81f55bf51ebab26b9e2e3707f46e54fe2b9b1d0cc7cfcbd7e5172833cfef6966942180b3f51e5460da6352ac375af25746a373d99eaf55a1edda9b7d26484c01a0aeaf2b44892988aa1689623315f2", 0x96}, {&(0x7f0000000180)}, {&(0x7f0000000540)="ff4d095fe97ffe4f022d950c744c8cc69717ee97143753508bfc55c2ae2f779a1849d4b92b3138767ebcbb24654dd97726a9e52afe1fda715ac526dba6d03774cfda0a3733202f47c0bffb12cfdab0d4400c2852439e21eed74bddbb35139ff00607e67f9e9db751d4755fb2b508499bfb3805406dd684d4ed4a3eebeb392669e925e29074168281cec32016ff8584285b0a49f9bec444bf671556813b90b871f350b1bff97c90d3694528b4381dda6c0ee60bbb11ec92350fe204a90d90817630b4163f", 0xc4}, {&(0x7f0000000640)="ae4c3e03674bd11935225cd0fc331a3acb5ddf6ebc4159bdcbc4b5f570833eb1dc260350fa25eed2ae9a03c1647a53d78bad42c1df49832acf98c89e419b1ded3881f64438fcd543913929b93342601157a31e05b6b2491836cc3091bbd84ce65014e6f683f3584780ae370720b5c0694c836fcc3a5e7cf51493872dd42d992fb280c33d4e97b345c7f1f6452edc569f11931715f63033bd306e7a3a9222ca7c2e124fbb13614eb4f0edd95bf6bb20cfd0766ddf95267fcb42d5b910616e", 0xbe}], 0x7, &(0x7f0000000780)=[{0x78, 0x100, 0x400, "0baf56993a887bb0be2b309ce96604a81243a4db014ffb51c65cace808e64e15f0933a328d741b3a02b1f512f26c7f7d70b3c6418bb3cce620b623340f34887d523fd308a66837ca6f720e11979302e920aba29c5606fbb1e150ce13dbede8476eaa"}], 0x78}, 0x20040000) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000000)={r0, r2}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) recvmsg(r0, &(0x7f0000000d00)={&(0x7f0000000840)=@xdp, 0x80, &(0x7f0000000c00)=[{&(0x7f00000008c0)=""/106, 0x6a}, {&(0x7f0000000940)=""/164, 0xa4}, {&(0x7f0000000a00)=""/21, 0x15}, {&(0x7f0000000a40)=""/46, 0x2e}, {&(0x7f0000000a80)=""/166, 0xa6}, {&(0x7f0000000b40)=""/40, 0x28}, {&(0x7f0000000b80)=""/66, 0x42}], 0x7, &(0x7f0000000c80)=""/71, 0x47}, 0x41) 05:52:08 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000000)=@sack_info={0x0, 0x4}, &(0x7f0000000040)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f00000001c0)=0x20) [ 539.144671] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 539.151943] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa129d96d4 [ 539.159213] R13: 00000000004bfefc R14: 00000000004d1e28 R15: 0000000000000005 [ 539.173836] CPU: 0 PID: 24791 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 539.180967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 539.190419] Call Trace: [ 539.193035] dump_stack+0x138/0x197 05:52:08 executing program 2: r0 = socket$inet(0xa, 0x801, 0x87) r1 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x7ff, 0x7f19472db6141636) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000001280)={r1, &(0x7f0000000200)="072035b47dc70930ebbe9da427767a2cb4a73758980a4ae2ca135babf76b69dae38f5dd6c3f82579c981679c3ccb45d2c926077d88f49737f0af7a0bd39eb91bef2bd340c3a4f6789a72f16db96fdb9d8e46d7fc0446bdb33b9eb916d23e782f0a913a031a6c4934bb14f4e7", &(0x7f0000000280)=""/4096}, 0x18) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r2 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x0, 0x4000) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x3) getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000), &(0x7f0000000080)=0x8) munlockall() write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000001340)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000001300)={0xffffffffffffffff}, 0x13f, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f0000001380)={0x12, 0x10, 0xfa00, {&(0x7f00000012c0), r3, r2}}, 0x18) [ 539.196674] should_fail.cold+0x10f/0x159 [ 539.200830] ? __might_sleep+0x93/0xb0 [ 539.204728] __alloc_pages_nodemask+0x1d6/0x7a0 [ 539.209408] ? __alloc_pages_slowpath+0x2930/0x2930 [ 539.214436] ? mmu_topup_memory_caches+0x86/0x320 [ 539.219287] ? rcu_read_lock_sched_held+0x110/0x130 [ 539.224319] alloc_pages_current+0xec/0x1e0 [ 539.228652] __get_free_pages+0xf/0x40 [ 539.232548] mmu_topup_memory_caches+0x194/0x320 [ 539.237318] kvm_mmu_load+0x21/0xd40 [ 539.241229] vcpu_enter_guest+0x2eb4/0x5210 05:52:08 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x8800, 0x0) ioctl$MON_IOCQ_RING_SIZE(r1, 0x9205) ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f0000000080)={0x0, 0xe4, &(0x7f00000001c0)="4e17148d2083d37abe91f4c6396ff73077b1dc856463ca9176577d937e5f6506ad97decd30cc34f1e1a563723882f27b189b724b0dc0ca8184028f6bcd701e1367ee9b6c34a2dc8700adb71f30284aa935a09b20e63d81cb1e6db4e79474fb023d2addd57a5d6e1e373ab9938852f477be103ac0df8794238e369ab4fe52c0073eafc93cb3e7a6c4478d17c91afea7f4cb977e8c007e885a88dc47c8c46bf891fca5d002fe4b4288fd0bbf440323e4582698caa8799a9c3f3b2c404c1400b263fde2f8bb8ebdc16f0c08f14c392cdb45bea4f218ff5dc0142ed647752ebbab254bfd6b9b"}) [ 539.245561] ? perf_trace_lock+0x500/0x500 [ 539.249806] ? __lock_is_held+0x10/0x140 [ 539.253875] ? emulator_read_emulated+0x50/0x50 [ 539.258549] ? lock_acquire+0x16f/0x430 [ 539.262550] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 539.267577] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 539.272431] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 539.277469] kvm_vcpu_ioctl+0x401/0xd10 [ 539.281462] ? kvm_vcpu_block+0xbb0/0xbb0 [ 539.285617] ? trace_hardirqs_on+0x10/0x10 [ 539.289864] ? save_trace+0x290/0x290 05:52:08 executing program 2: rt_sigtimedwait(&(0x7f0000000000)={0x400}, &(0x7f0000000080), &(0x7f00000001c0), 0x8) r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) [ 539.293671] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 539.298603] ? __f_unlock_pos+0x19/0x20 [ 539.302586] ? __fget+0x210/0x370 [ 539.306047] ? find_held_lock+0x35/0x130 [ 539.310110] ? __fget+0x210/0x370 [ 539.313566] ? kvm_vcpu_block+0xbb0/0xbb0 [ 539.317716] do_vfs_ioctl+0x7ae/0x1060 [ 539.321607] ? selinux_file_mprotect+0x5d0/0x5d0 [ 539.326373] ? lock_downgrade+0x6e0/0x6e0 [ 539.330531] ? ioctl_preallocate+0x1c0/0x1c0 [ 539.334940] ? __fget+0x237/0x370 [ 539.338405] ? security_file_ioctl+0x89/0xb0 [ 539.342822] SyS_ioctl+0x8f/0xc0 [ 539.346194] ? do_vfs_ioctl+0x1060/0x1060 [ 539.350341] do_syscall_64+0x1e8/0x640 [ 539.354229] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 539.359085] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 539.364273] RIP: 0033:0x459879 [ 539.367457] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 539.367470] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 539.367476] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 539.367482] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 539.367488] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 539.367494] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 539.468000] binder: 24831:24832 ioctl 401870cc 20000080 returned -22 [ 539.476201] binder: 24831:24832 ioctl 5412 3 returned -22 [ 539.482698] binder: BINDER_SET_CONTEXT_MGR already set [ 539.488111] binder: 24831:24832 ioctl 40046207 0 returned -16 [ 539.496670] binder: 24831:24833 ioctl 401870cc 20000080 returned -22 [ 539.508840] binder: 24831:24832 ioctl 5412 3 returned -22 05:52:08 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) 05:52:08 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={0x0, @in={{0x2, 0x0, @loopback}}}, &(0x7f0000000040)=0x84) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x280002, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb4, r2, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x64, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'irlan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x734dcab2cf47a9e3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}]}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@local}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xd251}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffffffffffffe}]}, 0xb4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x48, r3, 0xa, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x88}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x23}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3b}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x24008080}, 0x4000000) 05:52:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x40, 0x0) ioctl$SIOCX25SFACILITIES(r2, 0x89e3, &(0x7f0000000080)={0x5a, 0x2, 0x8, 0x8, 0x5, 0x81}) 05:52:08 executing program 1 (fault-call:6 fault-nth:63): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:08 executing program 3: r0 = socket$inet(0xa, 0x1, 0x86) r1 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x9c5, 0x501000) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f0000000100)={0x80000001, 0x3, 0x8, 'queue1\x00', 0xede}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:08 executing program 0 (fault-call:4 fault-nth:2): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) [ 539.514942] binder: BINDER_SET_CONTEXT_MGR already set [ 539.520954] binder: 24831:24833 ioctl 40046207 0 returned -16 [ 539.558129] input: syz1 as /devices/virtual/input/input329 [ 539.577151] FAULT_INJECTION: forcing a failure. [ 539.577151] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 539.588975] CPU: 1 PID: 24843 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 539.588983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 539.588987] Call Trace: [ 539.589007] dump_stack+0x138/0x197 [ 539.589027] should_fail.cold+0x10f/0x159 [ 539.589043] __alloc_pages_nodemask+0x1d6/0x7a0 [ 539.589057] ? __alloc_pages_slowpath+0x2930/0x2930 [ 539.589086] cache_grow_begin+0x80/0x400 [ 539.589099] kmem_cache_alloc_trace+0x6b2/0x790 [ 539.605559] ? devm_device_remove_groups+0x50/0x50 [ 539.605576] kobject_uevent_env+0x378/0xc23 [ 539.605584] ? wait_for_completion+0x420/0x420 [ 539.605600] kobject_uevent+0x20/0x26 [ 539.605609] device_del+0x65c/0xaa0 [ 539.605621] ? __device_links_no_driver+0x220/0x220 [ 539.605636] cdev_device_del+0x1a/0x70 [ 539.605656] evdev_disconnect+0x42/0xb0 [ 539.616030] __input_unregister_device+0x1eb/0x480 [ 539.625689] input_unregister_device+0xa9/0xf0 [ 539.625703] uinput_destroy_device+0x1ce/0x220 [ 539.625716] ? uinput_destroy_device+0x220/0x220 [ 539.625727] uinput_release+0x3c/0x60 [ 539.649871] FAULT_INJECTION: forcing a failure. [ 539.649871] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 539.652018] __fput+0x275/0x7a0 [ 539.652035] ____fput+0x16/0x20 [ 539.652048] task_work_run+0x114/0x190 [ 539.652067] exit_to_usermode_loop+0x1da/0x220 [ 539.652081] do_syscall_64+0x4bc/0x640 [ 539.652089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 539.652106] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 539.668554] RIP: 0033:0x459879 [ 539.668562] RSP: 002b:00007ffa129d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 539.668573] RAX: 0000000000000003 RBX: 00007ffa129d8c90 RCX: 0000000000459879 [ 539.668579] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 539.668585] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 539.668593] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa129d96d4 05:52:09 executing program 2: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000080)={r1, r1, 0x7, 0x22, &(0x7f0000000000)="f8e1220a08d94df245e881c8c26af4e7f7176cfc9b905d982f3295897dca7cf072e8", 0x5, 0x7f, 0x82, 0x1, 0x3, 0x3, 0x9, 'syz1\x00'}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000580)={0x90, 0x0, &(0x7f00000003c0)=[@reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@fda={0x66646185, 0x5, 0x1, 0x1c}, @flat=@binder={0x73622a85, 0x1000, 0x3}, @fda={0x66646185, 0xa, 0x1, 0x2c}}, &(0x7f00000001c0)={0x0, 0x20, 0x38}}}, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000300)={@flat=@weak_binder, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000200)=""/233, 0xe9, 0x1, 0x1b}}, &(0x7f0000000380)={0x0, 0x18, 0x30}}, 0x1000}], 0xcf, 0x0, &(0x7f0000000480)="24b40590d87d924153b782b6c97a3b9eba58bc84ba5b37a9e8fda71fb754bc19dad01364d42aba087cd0b3eb2a84f0905093eb3bab3f0db0cb3761f3d0a82405c77062a19f935e6acea38ddd383936aab56e7b22e04391a3fa0abc4b1c36bd8fbbea7f97a19eb8a213dde523b59e45fcc803ee58a667e6d584c76508877e859a1fd3c7ab000936e76e667ab19f4b70f251e054b2c2d58d881808685957f5df6dfb0d964bbd84d82d65ef5b037eaae69a66196b23c678c2579808311ff8e701c19532755186d5d76f2bbbdb595619d1"}) 05:52:09 executing program 4: ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) sched_getscheduler(r0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:09 executing program 2: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000080)={r1, r1, 0x7, 0x22, &(0x7f0000000000)="f8e1220a08d94df245e881c8c26af4e7f7176cfc9b905d982f3295897dca7cf072e8", 0x5, 0x7f, 0x82, 0x1, 0x3, 0x3, 0x9, 'syz1\x00'}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000580)={0x90, 0x0, &(0x7f00000003c0)=[@reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@fda={0x66646185, 0x5, 0x1, 0x1c}, @flat=@binder={0x73622a85, 0x1000, 0x3}, @fda={0x66646185, 0xa, 0x1, 0x2c}}, &(0x7f00000001c0)={0x0, 0x20, 0x38}}}, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000300)={@flat=@weak_binder, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000200)=""/233, 0xe9, 0x1, 0x1b}}, &(0x7f0000000380)={0x0, 0x18, 0x30}}, 0x1000}], 0xcf, 0x0, &(0x7f0000000480)="24b40590d87d924153b782b6c97a3b9eba58bc84ba5b37a9e8fda71fb754bc19dad01364d42aba087cd0b3eb2a84f0905093eb3bab3f0db0cb3761f3d0a82405c77062a19f935e6acea38ddd383936aab56e7b22e04391a3fa0abc4b1c36bd8fbbea7f97a19eb8a213dde523b59e45fcc803ee58a667e6d584c76508877e859a1fd3c7ab000936e76e667ab19f4b70f251e054b2c2d58d881808685957f5df6dfb0d964bbd84d82d65ef5b037eaae69a66196b23c678c2579808311ff8e701c19532755186d5d76f2bbbdb595619d1"}) [ 539.678068] R13: 00000000004bfefc R14: 00000000004d1e28 R15: 0000000000000005 [ 539.693382] CPU: 0 PID: 24844 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 539.743378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 539.743383] Call Trace: [ 539.743400] dump_stack+0x138/0x197 [ 539.743416] should_fail.cold+0x10f/0x159 [ 539.757950] ? __might_sleep+0x93/0xb0 [ 539.757965] __alloc_pages_nodemask+0x1d6/0x7a0 [ 539.757979] ? __alloc_pages_slowpath+0x2930/0x2930 [ 539.815064] ? mmu_topup_memory_caches+0x86/0x320 05:52:09 executing program 2: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, &(0x7f0000000080)={r1, r1, 0x7, 0x22, &(0x7f0000000000)="f8e1220a08d94df245e881c8c26af4e7f7176cfc9b905d982f3295897dca7cf072e8", 0x5, 0x7f, 0x82, 0x1, 0x3, 0x3, 0x9, 'syz1\x00'}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000580)={0x90, 0x0, &(0x7f00000003c0)=[@reply={0x40406301, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000140)={@fda={0x66646185, 0x5, 0x1, 0x1c}, @flat=@binder={0x73622a85, 0x1000, 0x3}, @fda={0x66646185, 0xa, 0x1, 0x2c}}, &(0x7f00000001c0)={0x0, 0x20, 0x38}}}, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000300)={@flat=@weak_binder, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x1, &(0x7f0000000200)=""/233, 0xe9, 0x1, 0x1b}}, &(0x7f0000000380)={0x0, 0x18, 0x30}}, 0x1000}], 0xcf, 0x0, &(0x7f0000000480)="24b40590d87d924153b782b6c97a3b9eba58bc84ba5b37a9e8fda71fb754bc19dad01364d42aba087cd0b3eb2a84f0905093eb3bab3f0db0cb3761f3d0a82405c77062a19f935e6acea38ddd383936aab56e7b22e04391a3fa0abc4b1c36bd8fbbea7f97a19eb8a213dde523b59e45fcc803ee58a667e6d584c76508877e859a1fd3c7ab000936e76e667ab19f4b70f251e054b2c2d58d881808685957f5df6dfb0d964bbd84d82d65ef5b037eaae69a66196b23c678c2579808311ff8e701c19532755186d5d76f2bbbdb595619d1"}) [ 539.824899] ? rcu_read_lock_sched_held+0x110/0x130 [ 539.824915] alloc_pages_current+0xec/0x1e0 [ 539.824931] __get_free_pages+0xf/0x40 [ 539.838120] mmu_topup_memory_caches+0x194/0x320 [ 539.842901] kvm_mmu_load+0x21/0xd40 [ 539.847324] vcpu_enter_guest+0x2eb4/0x5210 [ 539.851656] ? perf_trace_lock+0x500/0x500 [ 539.855901] ? __lock_is_held+0x10/0x140 [ 539.859967] ? emulator_read_emulated+0x50/0x50 [ 539.864640] ? lock_acquire+0x16f/0x430 [ 539.868620] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 539.873649] kvm_arch_vcpu_ioctl_run+0x318/0x1000 05:52:09 executing program 2 (fault-call:0 fault-nth:0): syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) [ 539.878497] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 539.883529] kvm_vcpu_ioctl+0x401/0xd10 [ 539.887516] ? kvm_vcpu_block+0xbb0/0xbb0 [ 539.891672] ? trace_hardirqs_on+0x10/0x10 [ 539.895921] ? save_trace+0x290/0x290 [ 539.899727] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 539.904656] ? __f_unlock_pos+0x19/0x20 [ 539.908636] ? __fget+0x210/0x370 [ 539.909733] binder: BINDER_SET_CONTEXT_MGR already set [ 539.912085] ? find_held_lock+0x35/0x130 [ 539.912096] ? __fget+0x210/0x370 05:52:09 executing program 2: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x345801, 0x0) write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000040)={0x18, 0x1, 0x0, {0x81}}, 0x18) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x40406, &(0x7f0000000580)=ANY=[]) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x400000, 0x0) [ 539.912111] ? kvm_vcpu_block+0xbb0/0xbb0 [ 539.912129] do_vfs_ioctl+0x7ae/0x1060 [ 539.912140] ? selinux_file_mprotect+0x5d0/0x5d0 [ 539.912151] ? lock_downgrade+0x6e0/0x6e0 [ 539.931315] binder: 24859:24862 ioctl 40046207 0 returned -16 [ 539.933108] ? ioctl_preallocate+0x1c0/0x1c0 [ 539.933125] ? __fget+0x237/0x370 [ 539.933150] ? security_file_ioctl+0x89/0xb0 [ 539.949348] binder: 24859:24862 ioctl 1276 0 returned -22 [ 539.952322] SyS_ioctl+0x8f/0xc0 [ 539.952334] ? do_vfs_ioctl+0x1060/0x1060 [ 539.952347] do_syscall_64+0x1e8/0x640 [ 539.952358] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 539.975891] binder: BINDER_SET_CONTEXT_MGR already set [ 539.976691] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 539.976700] RIP: 0033:0x459879 [ 539.976709] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 539.980714] binder: 24859:24868 ioctl 1276 0 returned -22 [ 539.985502] ORIG_RAX: 0000000000000010 [ 539.985509] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 539.985514] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 539.985519] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 539.985525] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 539.985531] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 540.005201] binder: 24859:24862 ioctl 40046207 0 returned -16 05:52:09 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x1, 0x2) close(r0) getsockopt$inet_opts(r1, 0x0, 0x4, &(0x7f0000000080)=""/7, &(0x7f00000000c0)=0x7) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0) r2 = dup2(r0, r0) syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x20000000, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = fanotify_init(0x10, 0x8000) writev(r0, &(0x7f0000000480)=[{&(0x7f0000000000)="9e5cbb5e74e528d2ba", 0x9}, {&(0x7f0000000040)="b39938f05af01056f6260fe6073b6b3f7a36e88810d8e54618ff7690eb6bc21be9dd8edc6a2152098442088931e4854943aef2e53413f4363a81452d67087b06a591bb7e1ac98b964c0012da18548c37b244635c2f2442970f664fd956771f2a440ceedc380d33997d433122c898c6e66cc769643004154c3ee82c7558fbe06f22fb560a0b203a2f0d944178b61a9dc06af082af8b9beafc3d4487660d82b59030672a62166e6a59023c827fbeae4111a6dbda964b247daf1e12a94a26e48da9f85dbc1203363ba44e1505e79b9f7a098c14", 0xd2}, {&(0x7f0000000140)="6e073aec4c0eecb9a9ff9771d3cd655a6d6da164d96d08922a439015128ca692e955a9c27006332681a6968a9f5b1e7f40d42cef9e7c460c3efe2fa56c124cb9c0f4d5e6c682c656f49cc79ddf40f061347ccedfc751d25bad55368e19c27d", 0x5f}, {&(0x7f00000001c0)="a3614e837ed6bff24a349b70c93c2ebd48e8b5bd192cdb550e91fe0ddf5ea38bc0c48da4da0cd4dc47079fe2ef34b572bf899dc24fce0143e95032daa3fb9eb5eea059bcf677e991cca3b1605b7229bcca72fe9b4d5beba56fee76384a1b44fe1c0aadf3027c9bd96a65b6e5e5139b152dbde1004b88e406ba405ed6fbe2c745e84397ec522ba77315b0738d52ab18da0c53b623dc672b0ef6025d98d94fe80147e8ba0cdb8139241164a4d57c01c20f0c862618438d482703c4f1f08040f5ad3a17dba6cf1178f5d8ac076b9724e5465325374f759214cede", 0xd9}, {&(0x7f00000002c0)="f558715cf676aae5cae4cfa8395f2a2accd9a39df1ef2c75b7171f7f5fabcdf23a6bda49723c3ab62d99662c058e4f60bcf9f78d646e78", 0x37}, {&(0x7f00000003c0)="5ebcf84096a40f25f78d312e11887881a9ad09a7c9ef67cf6ffa81e7d473ab167814567eef27f3c819fc8bbfff2dadbb911c2cc6de0e44c54da83a30a8e2eedbfc33d57b9597946f6760f74bb82c0355d7f14b01a9f55313a6da4a1c1c870c5608d28baec813150a553325940cbb57c3a70e4bc62f3b0e081560c32b74bab5eaf28de0dd19d7be56c06419f47f2b7cd7489a30f25868a3fa89170edc2a33c2f51efa8e01e6536018ebbe4d500d8d25c542d9586aee5307eeaa4eaf", 0xbb}], 0x6) 05:52:09 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0xfffbffffffffff91, 0x80001) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000200)={{{@in, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f0000000040)=0xe8) r2 = socket$inet(0xa, 0x801, 0x85) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000000c0)={0x20, 0x0, 0x8000, 0x3997f1c0, 0x0, 0xfffffffffffffffd}, &(0x7f00000001c0)=0x20) getresuid(&(0x7f0000000000), &(0x7f0000000840), &(0x7f0000000880)) sendmsg$nl_netfilter(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)={0x534, 0x10, 0x3, 0x4, 0x70bd28, 0x25dfdbfb, {0xc, 0x0, 0x2}, [@nested={0x4, 0x16}, @typed={0xc, 0x44, @u64=0x6}, @typed={0x4, 0x5e}, @nested={0x120, 0x16, [@typed={0xc, 0x12, @u64=0x1}, @generic="f9b6ae699a4c1d4d9a3af57ccbe95a18eb83a940ddba9665ff597bc205d2c1574eb9e587ed4789911016c393d01feb34ef47cb0e663ebacebf96030b", @typed={0x8, 0x8c, @fd=r0}, @generic="fbdb5daeaad56f73a755ce5cc84670e12193c27e9f890ebfbff352746b153c12917df290ce256f1ef2099b1cbbe3d2b8802ee829229e7b2c43da9ecdd45779825753a6ac5ceca174f49f8e74e19ef1cd6413a1880b1163926d2f59949abc7bacac53d1687febefd236be0d137283f0c05c254d5bf2ec7c6caba73405264bf467c82722ac4a53752478d97ebe72d4edc60231ee3e2d4da6e65cf75fe099e054ff", @generic="c936a1a5df7340dfb645fdd5364a22f322f71e850724cb592d171170496b29fbd02741ee4a986f3ed51ff418"]}, @generic='\x00', @nested={0x104, 0x2, [@generic="50b230a7b0bdff33aa478b58a5067e83200399fdbe9374da82dc5253437f9009a2219d6381dcb8fa419ac77dacf2885a5a4d739573a184e10cc1d242e5b5ca79b5afa08fc1d0c18a204f4da0221869ec0a6e157efe8e1e02e4d1c8379c016e43ac4d487ac69dc7573139c036350226d36cd3dc9f300279be3769c32f887fdb26ad277ed3e1cf219ad096db2e73386b6d176e72322ce9531a9cb50125dff919340d4959616630a4397dbd866901a1f6e72409f24240b1bef20370fa814b500bc8f3eb6d350e53c719189616cd07d99e4c376073c5074e43eecf3885754920ce1c8cc2c1138eb6abcc7ca00998aec12187e7acb133", @typed={0x8, 0x2d, @uid=r1}, @typed={0x4, 0x5f}]}, @nested={0x218, 0x80, [@typed={0x4, 0x24}, @generic="f84b61b17c4af54966a1abaea07b936663dbe6e5ca472d7ed62637cdae5e242e22ea7b68a7e40f463cbb8161e70f8aa6110d96d631332f2d7fda8e00b3eed6e9104b0f83055c98724f5045214a99cfc9ce476c2fee48a1bf7468ae3a4ddad8e832debe928b51c54b07cfba405181592f5a90892ea3df4ea87fa9ec64c2fb0fc3398ebf9c419bdcebec8d77418a89cf1f66c1972536d5f96f6a7c5c98ee9d9d5f67f81089f52ceffc9558fe0ebd19642aac86c57062a1951af9e3b3442e863a32c006f79389bca3bedde8e70f6f81a3283828483e9ed40d16eeafd4d3dfaf22731aeb6ec25fb30d79f8bee32a6cc66fe1", @typed={0xc, 0x44, @u64=0x1}, @typed={0x8, 0x88, @fd=r2}, @typed={0xe4, 0x48, @binary="935b6693d1cba77ec7bc82b0fc4b24baea3c450171283741b8b3692c3932bf4dd6d95ff96d63311fe64334ed9d663cddb0b64f3119d84c9327c858c5629f520296663a93ecb3c7fe0294106496c5192177a2fc0ce7fd22dbd2bce5aa0420a44756cb7bfaa85f7c10130b797ea730ac460dcb58169528ebf3e1fef49402c55c9db0de893835073edf52e1005827f8cc285ca96643461b8c9b675bd4c92a279908d0539d23132be0dddfb435c188b539a8ce0fac886c15e02e81a1d7e8c12cd68ca2f1b107364a4e4013bb20e5bf9149e094bc321fe1f115849da126e4156c"}, @typed={0x14, 0x36, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @generic="9cb910cbaf1710dcb1dc27f90f785478103d"]}, @generic="03e9f400b4c57d001b4213440430767cbe2f16f49d8b5e461cf7f73d9fc1597c0b0bac06a4944aaa005f91481055d11d3236d2e6287c06bdc895825b07179b6118c0a327141b9df8dfcddb3e9b53429168f8ec4b7c8f604ef5792343b5ab810000decf256dc888569d08367c0a468b9ab91d87157d62df763b4b33a595dbd9c9ca0e3fa486cbb935222dd97e5752d8ae1caf48c456e615ca1b1dcef181686773508db388bdb3eace1c5a6cde547d61360e0ec54ab65919f6768f5675", @typed={0x10, 0x7b, @str='/dev/vcs#\x00'}]}, 0x534}, 0x1, 0x0, 0x0, 0x40000}, 0x81) 05:52:09 executing program 1 (fault-call:6 fault-nth:64): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:09 executing program 0 (fault-call:4 fault-nth:3): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/btrfs-control\x00', 0x40080, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000002c0)={0x0, 0x6, 0x20, 0x3f, 0x1f}, &(0x7f0000000300)=0x18) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000340)={r3, 0xd357}, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 540.175764] input: syz1 as /devices/virtual/input/input330 [ 540.201431] FAULT_INJECTION: forcing a failure. [ 540.201431] name failslab, interval 1, probability 0, space 0, times 0 [ 540.242275] FAULT_INJECTION: forcing a failure. [ 540.242275] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 540.246554] CPU: 1 PID: 24883 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 540.261208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 540.270568] Call Trace: [ 540.273162] dump_stack+0x138/0x197 [ 540.276795] should_fail.cold+0x10f/0x159 [ 540.280944] should_failslab+0xdb/0x130 [ 540.284915] __kmalloc+0x2f0/0x7a0 [ 540.288443] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 540.293890] ? kobject_uevent_env+0x378/0xc23 [ 540.298376] ? rcu_read_lock_sched_held+0x110/0x130 [ 540.303391] ? kobject_get_path+0xbb/0x1a0 [ 540.307620] kobject_get_path+0xbb/0x1a0 [ 540.311674] ? devm_device_remove_groups+0x50/0x50 [ 540.316609] kobject_uevent_env+0x39c/0xc23 [ 540.320932] ? wait_for_completion+0x420/0x420 [ 540.325517] kobject_uevent+0x20/0x26 [ 540.329329] device_del+0x65c/0xaa0 [ 540.332952] ? __device_links_no_driver+0x220/0x220 [ 540.337967] cdev_device_del+0x1a/0x70 [ 540.341869] evdev_disconnect+0x42/0xb0 [ 540.345841] __input_unregister_device+0x1eb/0x480 [ 540.350774] input_unregister_device+0xa9/0xf0 [ 540.355354] uinput_destroy_device+0x1ce/0x220 [ 540.359938] ? uinput_destroy_device+0x220/0x220 [ 540.364684] uinput_release+0x3c/0x60 [ 540.368478] __fput+0x275/0x7a0 [ 540.371761] ____fput+0x16/0x20 [ 540.375034] task_work_run+0x114/0x190 [ 540.378918] exit_to_usermode_loop+0x1da/0x220 [ 540.383598] do_syscall_64+0x4bc/0x640 [ 540.387485] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 540.392338] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 540.397540] RIP: 0033:0x459879 [ 540.400729] RSP: 002b:00007ffa129d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 540.408440] RAX: 0000000000000003 RBX: 00007ffa129d8c90 RCX: 0000000000459879 [ 540.415706] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 540.422978] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 540.430244] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa129d96d4 05:52:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0xbe0, 0x20800) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_LOCK(r1, 0x4008642a, &(0x7f00000000c0)={r2, 0x5}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) fadvise64(r3, 0x17, 0x3f, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 540.437513] R13: 00000000004bfefc R14: 00000000004d1e28 R15: 0000000000000005 [ 540.444799] CPU: 0 PID: 24885 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 540.451910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 540.461271] Call Trace: [ 540.463875] dump_stack+0x138/0x197 [ 540.467526] should_fail.cold+0x10f/0x159 [ 540.471673] ? __might_sleep+0x93/0xb0 [ 540.471689] __alloc_pages_nodemask+0x1d6/0x7a0 [ 540.471703] ? __alloc_pages_slowpath+0x2930/0x2930 [ 540.471715] ? mmu_topup_memory_caches+0x86/0x320 [ 540.471729] ? rcu_read_lock_sched_held+0x110/0x130 [ 540.471743] alloc_pages_current+0xec/0x1e0 [ 540.480393] __get_free_pages+0xf/0x40 [ 540.480406] mmu_topup_memory_caches+0x194/0x320 [ 540.480421] kvm_mmu_load+0x21/0xd40 [ 540.480439] vcpu_enter_guest+0x2eb4/0x5210 [ 540.480451] ? perf_trace_lock+0x500/0x500 [ 540.480462] ? __lock_is_held+0x10/0x140 [ 540.490296] ? emulator_read_emulated+0x50/0x50 [ 540.490307] ? lock_acquire+0x16f/0x430 [ 540.490319] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 540.499639] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 540.499649] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 540.499667] kvm_vcpu_ioctl+0x401/0xd10 [ 540.499678] ? kvm_vcpu_block+0xbb0/0xbb0 [ 540.512012] ? trace_hardirqs_on+0x10/0x10 [ 540.512025] ? save_trace+0x290/0x290 [ 540.512032] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 540.512044] ? __f_unlock_pos+0x19/0x20 [ 540.520567] ? __fget+0x210/0x370 [ 540.520579] ? find_held_lock+0x35/0x130 [ 540.520589] ? __fget+0x210/0x370 [ 540.520604] ? kvm_vcpu_block+0xbb0/0xbb0 [ 540.520614] do_vfs_ioctl+0x7ae/0x1060 05:52:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x80000) accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x1f, 0x6, 0x800000000000000, 0x8000000000000000, 0x81, r0, 0xeed4, [], r1, 0xffffffffffffffff, 0x5}, 0x3c) 05:52:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x400, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x7fff, 0x80000) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f00000000c0)={0x61e, 0x8, 0xfff, 'queue0\x00', 0x1}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x7, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000180)={0x3, 0x5, 0x1}) 05:52:09 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x20, 0x240000) connect$rose(r1, &(0x7f0000000100)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x4, [@bcast, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x40) r2 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2) ioctl$CAPI_GET_SERIAL(r2, 0xc0044308, &(0x7f0000000180)=0x20000000007) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 540.520626] ? selinux_file_mprotect+0x5d0/0x5d0 [ 540.520633] ? lock_downgrade+0x6e0/0x6e0 [ 540.520644] ? ioctl_preallocate+0x1c0/0x1c0 [ 540.529453] ? __fget+0x237/0x370 [ 540.529474] ? security_file_ioctl+0x89/0xb0 [ 540.529488] SyS_ioctl+0x8f/0xc0 [ 540.529498] ? do_vfs_ioctl+0x1060/0x1060 [ 540.538458] do_syscall_64+0x1e8/0x640 [ 540.538468] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 540.538487] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 540.538497] RIP: 0033:0x459879 05:52:09 executing program 3: r0 = socket$inet(0xa, 0x0, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:09 executing program 1 (fault-call:6 fault-nth:65): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 540.560646] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 540.560657] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 540.560662] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 540.560667] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 540.560673] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 540.560678] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 540.799841] FAULT_INJECTION: forcing a failure. [ 540.799841] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 540.846273] CPU: 0 PID: 24914 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 540.853420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 540.862782] Call Trace: [ 540.865374] dump_stack+0x138/0x197 [ 540.869717] should_fail.cold+0x10f/0x159 [ 540.873876] ? __might_sleep+0x93/0xb0 [ 540.877780] __alloc_pages_nodemask+0x1d6/0x7a0 [ 540.882465] ? __alloc_pages_slowpath+0x2930/0x2930 [ 540.887498] ? mmu_topup_memory_caches+0x86/0x320 05:52:10 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000080)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r2, 0x8, 0x70bd2a, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2000c0d1}, 0x80) 05:52:10 executing program 0 (fault-call:4 fault-nth:4): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80000, 0x0) ioctl$VIDIOC_ENUMSTD(r1, 0xc0485619, &(0x7f0000000080)={0x2, 0x0, "ee4ec9dc1b838e749d10ec42bbe46975efd5d3b72a6d78ef", {0xffff}, 0x10001}) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) mprotect(&(0x7f000000b000/0x1000)=nil, 0x1000, 0x3000008) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r1, 0x8935, &(0x7f0000000100)={'rose0\x00'}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffffffffffff}, 0x106, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f00000001c0)={0xf, 0x8, 0xfa00, {r3, 0xf}}, 0x10) ioctl$KVM_ASSIGN_PCI_DEVICE(r2, 0x8040ae69, &(0x7f00000000c0)={0x2, 0xa6d, 0x3f, 0x0, 0x1}) openat$random(0xffffffffffffff9c, &(0x7f0000000200)='/dev/urandom\x00', 0x2100, 0x0) [ 540.892366] ? rcu_read_lock_sched_held+0x110/0x130 [ 540.897404] alloc_pages_current+0xec/0x1e0 [ 540.901739] __get_free_pages+0xf/0x40 [ 540.905627] mmu_topup_memory_caches+0x194/0x320 [ 540.910382] kvm_mmu_load+0x21/0xd40 [ 540.910399] vcpu_enter_guest+0x2eb4/0x5210 [ 540.910413] ? perf_trace_lock+0x500/0x500 [ 540.910424] ? __lock_is_held+0x10/0x140 [ 540.910434] ? emulator_read_emulated+0x50/0x50 [ 540.910443] ? lock_acquire+0x16f/0x430 [ 540.935343] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 540.940380] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 540.945234] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 540.950266] kvm_vcpu_ioctl+0x401/0xd10 [ 540.950886] binder: BINDER_SET_CONTEXT_MGR already set [ 540.954244] ? kvm_vcpu_block+0xbb0/0xbb0 [ 540.954256] ? trace_hardirqs_on+0x10/0x10 [ 540.954269] ? save_trace+0x290/0x290 [ 540.959538] binder: 24930:24931 ioctl 40046207 0 returned -16 [ 540.963661] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 540.963671] ? __f_unlock_pos+0x19/0x20 [ 540.963680] ? __fget+0x210/0x370 [ 540.963690] ? find_held_lock+0x35/0x130 05:52:10 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4000, &(0x7f0000000040)=0x889b, 0x1, 0x1) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x80202, 0x0) ioctl$CAPI_NCCI_GETUNIT(r1, 0x80044327, &(0x7f00000000c0)=0x4) r2 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) [ 540.963701] ? __fget+0x210/0x370 [ 540.970963] binder: BINDER_SET_CONTEXT_MGR already set [ 540.972416] ? kvm_vcpu_block+0xbb0/0xbb0 [ 540.972429] do_vfs_ioctl+0x7ae/0x1060 [ 540.978301] binder: 24930:24931 ioctl 40046207 0 returned -16 [ 540.983212] ? selinux_file_mprotect+0x5d0/0x5d0 [ 540.983223] ? lock_downgrade+0x6e0/0x6e0 [ 540.983235] ? ioctl_preallocate+0x1c0/0x1c0 [ 540.983247] ? __fget+0x237/0x370 [ 541.003405] ? security_file_ioctl+0x89/0xb0 [ 541.011413] SyS_ioctl+0x8f/0xc0 [ 541.011422] ? do_vfs_ioctl+0x1060/0x1060 [ 541.011435] do_syscall_64+0x1e8/0x640 [ 541.011446] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 541.051497] binder: BINDER_SET_CONTEXT_MGR already set [ 541.054666] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 541.054677] RIP: 0033:0x459879 [ 541.059948] binder: 24934:24935 ioctl 40046207 0 returned -16 [ 541.065114] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 541.065124] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 541.065129] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x801, 0x7fffffff) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:10 executing program 2: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x1, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e20, 0x1, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x7}}, 0x6, 0x9, 0xdfc3, 0xf9, 0x1}, &(0x7f0000000180)=0x98) sendmsg$nl_netfilter(r0, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, 0xf, 0x3, 0xb04, 0x70bd2d, 0x25dfdbfb, {0x3, 0x0, 0x6}, [@typed={0x14, 0x61, @str='smackfstransmute'}]}, 0x28}, 0x1, 0x0, 0x0, 0x8010}, 0x84) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r1, 0x80, 0x9}, &(0x7f0000000200)=0xc) syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={[{@rodir='rodir'}], [{@pcr={'pcr', 0x3d, 0x32}}, {@smackfstransmute={'smackfstransmute'}}]}) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) write$selinux_user(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="73797374656d5f753a7f626a6563745f723a7573625f6465ea35cf34939247766963655f743a733020756e636f6e66"], 0x2f) [ 541.065134] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 541.065139] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 541.065143] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 541.131152] input: syz1 as /devices/virtual/input/input331 [ 541.139118] FAULT_INJECTION: forcing a failure. 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x50000, 0x0) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000100)={0x2, 0x0, [{0x4000, 0xb, &(0x7f0000000040)=""/11}, {0x1, 0xdf, &(0x7f0000000200)=""/223}]}) [ 541.139118] name failslab, interval 1, probability 0, space 0, times 0 [ 541.151184] CPU: 0 PID: 24941 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 541.158344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 541.167700] Call Trace: [ 541.170301] dump_stack+0x138/0x197 [ 541.173952] should_fail.cold+0x10f/0x159 [ 541.178123] should_failslab+0xdb/0x130 [ 541.182207] __kmalloc_track_caller+0x2ec/0x790 [ 541.186888] ? pointer+0xb10/0xb10 [ 541.190441] ? set_precision+0x150/0x150 [ 541.194516] ? kasprintf+0xa2/0xbe 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x801, 0x83) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x1}, 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 541.198069] kvasprintf+0xa7/0x110 [ 541.201626] ? bust_spinlocks+0xc0/0xc0 [ 541.205628] kasprintf+0xa2/0xbe [ 541.209006] ? kvasprintf_const+0x170/0x170 [ 541.213345] ? add_uevent_var+0x1f8/0x290 [ 541.217505] ? kobj_bcast_filter+0x1c0/0x1c0 [ 541.221923] ? input_default_getkeycode+0x4d0/0x4d0 [ 541.226945] input_devnode+0x4c/0x90 [ 541.230666] device_get_devnode+0x170/0x2e0 [ 541.235018] dev_uevent+0x3ba/0x530 [ 541.238655] ? device_get_devnode+0x2e0/0x2e0 [ 541.243276] ? device_get_devnode+0x2e0/0x2e0 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x1, 0x348e) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffff8}, &(0x7f00000001c0)=0x20) [ 541.247790] kobject_uevent_env+0x4da/0xc23 [ 541.252127] ? wait_for_completion+0x420/0x420 [ 541.256730] kobject_uevent+0x20/0x26 [ 541.260544] device_del+0x65c/0xaa0 [ 541.264182] ? __device_links_no_driver+0x220/0x220 [ 541.269212] cdev_device_del+0x1a/0x70 [ 541.273364] evdev_disconnect+0x42/0xb0 [ 541.277343] __input_unregister_device+0x1eb/0x480 [ 541.282287] input_unregister_device+0xa9/0xf0 [ 541.286876] uinput_destroy_device+0x1ce/0x220 [ 541.291466] ? uinput_destroy_device+0x220/0x220 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x81, 0x2000) ioctl$HDIO_GETGEO(r1, 0x301, &(0x7f0000000100)) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0xc5b22886d36114cc, 0x0) ioctl$BLKIOOPT(r2, 0x1279, &(0x7f0000000040)) 05:52:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xe1, 0x400) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000040)=0x8, &(0x7f0000000080)=0x2) [ 541.296225] uinput_release+0x3c/0x60 [ 541.300033] __fput+0x275/0x7a0 [ 541.303321] ____fput+0x16/0x20 [ 541.306635] task_work_run+0x114/0x190 [ 541.310535] exit_to_usermode_loop+0x1da/0x220 [ 541.315131] do_syscall_64+0x4bc/0x640 [ 541.319108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 541.323967] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 541.329159] RIP: 0033:0x459879 [ 541.332343] RSP: 002b:00007ffa129d8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 541.340081] RAX: 0000000000000003 RBX: 00007ffa129d8c90 RCX: 0000000000459879 [ 541.347447] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 541.354723] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 541.362003] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa129d96d4 [ 541.369366] R13: 00000000004bfefc R14: 00000000004d1e28 R15: 0000000000000005 05:52:10 executing program 1 (fault-call:6 fault-nth:66): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:10 executing program 3: perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x6, 0x30}, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/pfkey\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, 0x0, &(0x7f0000000240)) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) write$P9_RVERSION(r2, &(0x7f0000000640)=ANY=[@ANYBLOB="1500000065ffff0010000008003950323030300900fc9cd866b42938ab01426249b39d9b281a9b3672476a814ac42843aa88e1db60ba47b6bb30407402000000349f062e4624400100000000000000e03a80b9374275d0f7b100237209ffe467ab081296c3c5085a515cf18151210b8615d54f1c7f3e9ef2ec1577c935216a586171a0aca40d531e7d4986fe59ec1406936a1b561565ffefd7652e6c949d9a7f95f42d36d892d4b30cc1fc50434686595553e6f3381cf655df317fe9ca3533e7afb1ced5c006e691b4999cf6c0aae1178e256baacb07e6f80b9f8e6b2dd919e5ec9ec4f3b57d528930399f5c7903c06e4298f2d6774ba4d327c8c4c783340d84b8252dc0961fdc1816a67772058c027c49111761cd867b446e1d09fc35834cb3e8e0ed7bde47964dc091ec1ce2dd7bfa8c430600000000000000ce550d9645db0c58453350fa101f5aae17559fcfd2bd00000000c2621a68a28ccc39235cdf20d22060d3c8f352e341635ee4eeb0aad9d953e0a7dd37de2bfc4fc5d81bfa4264c89a612bf74868309f840cc82f1cb476a4eaa8728c34272f7fe63fe0"], 0x15) write$P9_RAUTH(r2, &(0x7f0000000040)={0x14, 0x67, 0x1}, 0x14) write$P9_RGETATTR(r2, &(0x7f0000000500)={0xa0, 0x19, 0x1}, 0xa0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="747261ee733d66642c7266646e8d34", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) r3 = dup3(0xffffffffffffffff, r2, 0x80000) ioctl$TIOCSCTTY(r3, 0x540e, 0x2) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) r4 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 541.406830] binder: BINDER_SET_CONTEXT_MGR already set [ 541.414750] binder: 24934:24967 ioctl 40046207 0 returned -16 05:52:10 executing program 0 (fault-call:4 fault-nth:5): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0xffffffd7, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x4, 0x20000) ioctl$PPPIOCGIDLE(r0, 0x8010743f, &(0x7f00000000c0)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000000)='rodir', 0xffffffffffffffff}, 0x30) prlimit64(r1, 0xf, &(0x7f0000000240)={0xffffffff, 0x83e3}, &(0x7f0000000200)) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x4) r2 = syz_open_dev$vivid(&(0x7f0000000100)='/dev/video#\x00', 0x0, 0x2) ioctl$VIDIOC_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f0000000140)={0x0, @bt={0xec2, 0x3ff, 0x0, 0x2, 0x40, 0xffffffff, 0x81, 0x3f, 0xac3443, 0x0, 0xfff, 0xfffffffffffffff9, 0x5, 0x8, 0xe50e8d31334245cb, 0x8}}) [ 541.499560] FAULT_INJECTION: forcing a failure. [ 541.499560] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 541.527380] CPU: 0 PID: 24973 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 541.534525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 541.543881] Call Trace: [ 541.543903] dump_stack+0x138/0x197 [ 541.543922] should_fail.cold+0x10f/0x159 [ 541.543937] ? __might_sleep+0x93/0xb0 [ 541.550130] __alloc_pages_nodemask+0x1d6/0x7a0 [ 541.550148] ? __alloc_pages_slowpath+0x2930/0x2930 [ 541.550162] ? mmu_topup_memory_caches+0x86/0x320 [ 541.550177] ? rcu_read_lock_sched_held+0x110/0x130 [ 541.550191] alloc_pages_current+0xec/0x1e0 [ 541.550204] __get_free_pages+0xf/0x40 [ 541.550214] mmu_topup_memory_caches+0x194/0x320 [ 541.558223] kvm_mmu_load+0x21/0xd40 [ 541.558244] vcpu_enter_guest+0x2eb4/0x5210 05:52:10 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r1) r2 = dup2(r0, r0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x802) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) prctl$PR_MCE_KILL_GET(0x22) 05:52:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x20000) 05:52:10 executing program 3: r0 = socket$inet(0xa, 0x6, 0x84) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x8001}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000080)={r1, 0x80000001, 0x10, 0x7, 0x6}, &(0x7f0000000100)=0x18) getsockopt$inet_dccp_buf(r0, 0x21, 0xc, &(0x7f0000000200)=""/197, &(0x7f0000000140)=0xc5) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 541.558258] ? perf_trace_lock+0x500/0x500 [ 541.558270] ? __lock_is_held+0x10/0x140 [ 541.567932] ? emulator_read_emulated+0x50/0x50 [ 541.567945] ? lock_acquire+0x16f/0x430 [ 541.567956] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 541.567972] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 541.567988] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 541.573641] input: syz1 as /devices/virtual/input/input332 [ 541.578515] kvm_vcpu_ioctl+0x401/0xd10 [ 541.578528] ? kvm_vcpu_block+0xbb0/0xbb0 [ 541.578540] ? trace_hardirqs_on+0x10/0x10 [ 541.578553] ? save_trace+0x290/0x290 [ 541.586756] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 541.586767] ? __f_unlock_pos+0x19/0x20 [ 541.586780] ? __fget+0x210/0x370 [ 541.586790] ? find_held_lock+0x35/0x130 [ 541.586800] ? __fget+0x210/0x370 [ 541.586815] ? kvm_vcpu_block+0xbb0/0xbb0 [ 541.595262] do_vfs_ioctl+0x7ae/0x1060 [ 541.595277] ? selinux_file_mprotect+0x5d0/0x5d0 [ 541.595289] ? lock_downgrade+0x6e0/0x6e0 [ 541.595300] ? ioctl_preallocate+0x1c0/0x1c0 [ 541.595312] ? __fget+0x237/0x370 [ 541.603857] ? security_file_ioctl+0x89/0xb0 [ 541.603869] SyS_ioctl+0x8f/0xc0 [ 541.603877] ? do_vfs_ioctl+0x1060/0x1060 [ 541.603890] do_syscall_64+0x1e8/0x640 [ 541.621570] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 541.621593] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 541.621602] RIP: 0033:0x459879 [ 541.621607] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 541.621618] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 541.621623] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = gettid() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x8, &(0x7f0000000200)=""/199) 05:52:11 executing program 2: r0 = accept4$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000100)=0x1c, 0x2d81b131d1e52687) recvmsg(r0, &(0x7f0000000540)={&(0x7f0000000140)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000001840)=[{&(0x7f00000001c0)=""/31, 0x1f}, {&(0x7f0000000200)=""/88, 0x58}, {&(0x7f0000000280)=""/72, 0x48}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/154, 0x9a}, {&(0x7f0000000480)=""/129, 0x81}, {&(0x7f00000015c0)=""/213, 0xd5}, {&(0x7f00000016c0)=""/165, 0xa5}, {&(0x7f0000001780)=""/175, 0xaf}], 0x9, &(0x7f0000000300)=""/57, 0x39}, 0x10060) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockname(r1, &(0x7f0000000000), &(0x7f0000000080)=0x80) [ 541.621627] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 541.621633] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 541.621638] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:11 executing program 1 (fault-call:6 fault-nth:67): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:11 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f0000000040)=0x7) [ 541.928897] input: syz1 as /devices/virtual/input/input333 [ 541.935148] FAULT_INJECTION: forcing a failure. [ 541.935148] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 541.962703] CPU: 0 PID: 25003 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 541.972389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 541.981741] Call Trace: [ 541.981766] dump_stack+0x138/0x197 [ 541.981786] should_fail.cold+0x10f/0x159 [ 541.981797] ? __might_sleep+0x93/0xb0 [ 541.981812] __alloc_pages_nodemask+0x1d6/0x7a0 [ 541.981825] ? __alloc_pages_slowpath+0x2930/0x2930 [ 541.981837] ? mmu_topup_memory_caches+0x86/0x320 [ 542.010600] ? rcu_read_lock_sched_held+0x110/0x130 [ 542.015626] alloc_pages_current+0xec/0x1e0 [ 542.019974] __get_free_pages+0xf/0x40 [ 542.023856] mmu_topup_memory_caches+0x194/0x320 [ 542.028612] kvm_mmu_load+0x21/0xd40 [ 542.032334] vcpu_enter_guest+0x2eb4/0x5210 [ 542.036651] ? perf_trace_lock+0x500/0x500 [ 542.040878] ? __lock_is_held+0x10/0x140 [ 542.044944] ? emulator_read_emulated+0x50/0x50 [ 542.049609] ? lock_acquire+0x16f/0x430 [ 542.053575] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 542.058590] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.063423] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.068440] kvm_vcpu_ioctl+0x401/0xd10 [ 542.072408] ? kvm_vcpu_block+0xbb0/0xbb0 [ 542.076551] ? trace_hardirqs_on+0x10/0x10 [ 542.080779] ? save_trace+0x290/0x290 [ 542.084571] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 542.089490] ? __f_unlock_pos+0x19/0x20 [ 542.093456] ? __fget+0x210/0x370 [ 542.096905] ? find_held_lock+0x35/0x130 [ 542.101831] ? __fget+0x210/0x370 [ 542.105280] ? kvm_vcpu_block+0xbb0/0xbb0 [ 542.109422] do_vfs_ioctl+0x7ae/0x1060 [ 542.113303] ? selinux_file_mprotect+0x5d0/0x5d0 [ 542.118054] ? lock_downgrade+0x6e0/0x6e0 [ 542.122195] ? ioctl_preallocate+0x1c0/0x1c0 [ 542.126614] ? __fget+0x237/0x370 [ 542.130071] ? security_file_ioctl+0x89/0xb0 [ 542.134567] SyS_ioctl+0x8f/0xc0 [ 542.137926] ? do_vfs_ioctl+0x1060/0x1060 [ 542.142106] do_syscall_64+0x1e8/0x640 [ 542.145989] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.150826] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 542.156005] RIP: 0033:0x459879 [ 542.159185] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.166882] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 05:52:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/mls\x00', 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000080)="0f06b9110200000f320f060f8a0070000066b868008ed8460f78fe0fc73c9e0f01c8c4627d0ee947710b", 0x2a}], 0x1, 0x40, &(0x7f0000000100)=[@flags={0x3, 0x8000}], 0x1) dup(r2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000040)={r1, 0x7f, 0x3dc46244, 0x9}, &(0x7f0000000080)=0x10) [ 542.174237] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 542.181498] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 542.188756] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 542.196017] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:11 executing program 1 (fault-call:6 fault-nth:68): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xff, 0x121100) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000100)={0x0, 0x7e, "74824dae154473f6b11b3996b38c56035b8670f3427a48df6aa5f8eb7c6ab165c3afbe7f8bdec88eea24cbcfccc688ee5cd7c99df45e1255250afcdc19df35a7f543970f6d3a6f54dfbb5547a65f4c48a922c4bb8d04e64fe51aea0ad52d59ce88b8f587b34aafc48f03393eaa4b669c96959dcfb500fc73ab25e4c2c915"}, &(0x7f0000000040)=0x86) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000080)={r2, 0x8}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 542.385394] FAULT_INJECTION: forcing a failure. [ 542.385394] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 542.413291] CPU: 1 PID: 25026 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 542.420429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 542.429790] Call Trace: [ 542.432377] dump_stack+0x138/0x197 [ 542.432395] should_fail.cold+0x10f/0x159 [ 542.432413] ? __might_sleep+0x93/0xb0 [ 542.432428] __alloc_pages_nodemask+0x1d6/0x7a0 [ 542.432442] ? __alloc_pages_slowpath+0x2930/0x2930 [ 542.432455] ? mmu_topup_memory_caches+0x86/0x320 [ 542.432470] ? rcu_read_lock_sched_held+0x110/0x130 [ 542.432484] alloc_pages_current+0xec/0x1e0 [ 542.467831] binder: BINDER_SET_CONTEXT_MGR already set [ 542.467892] __get_free_pages+0xf/0x40 [ 542.473905] binder: 25034:25036 ioctl 40046207 0 returned -16 05:52:11 executing program 5: r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/checkreqprot\x00', 0x80000, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) setxattr$security_evm(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.evm\x00', &(0x7f0000000140)=@sha1={0x1, "93fc1c0e959341ebb7e51dcdb2a1e6968ec51836"}, 0x15, 0x3) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000080)=0xb, 0x4) r2 = dup2(r1, r1) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:11 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@rodir='rodir'}]}) 05:52:11 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x1, 0x80080) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x1, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r3, 0x4, 0x70bd27, 0x25dfdbfc, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x4) ioctl$UI_DEV_CREATE(r0, 0x5501) r4 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r5 = dup2(r4, r0) r6 = inotify_add_watch(r1, &(0x7f0000000180)='./file0\x00', 0x8) inotify_rm_watch(r5, r6) 05:52:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f00000000c0)="bcb7a80990b1dc87f65536e57830d8c7c97488c5b72f065e5e545ce3300c2bcfe716b09ffc17cc28f5de31a7df59fb302940a59e7f12922e30c20111a770f518107515a96c415cc58f801a48e040162a1284ee", 0x53, 0xffffffffffffffff) keyctl$get_keyring_id(0x0, r1, 0x9) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) [ 542.477019] mmu_topup_memory_caches+0x194/0x320 [ 542.477034] kvm_mmu_load+0x21/0xd40 [ 542.489717] binder: BINDER_SET_CONTEXT_MGR already set [ 542.491361] vcpu_enter_guest+0x2eb4/0x5210 [ 542.491376] ? perf_trace_lock+0x500/0x500 [ 542.491387] ? __lock_is_held+0x10/0x140 [ 542.491398] ? emulator_read_emulated+0x50/0x50 [ 542.491412] ? lock_acquire+0x16f/0x430 [ 542.491422] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 542.491437] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.497511] binder: 25034:25037 ioctl 40046207 0 returned -16 [ 542.501007] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.501025] kvm_vcpu_ioctl+0x401/0xd10 [ 542.501037] ? kvm_vcpu_block+0xbb0/0xbb0 [ 542.501048] ? trace_hardirqs_on+0x10/0x10 [ 542.501059] ? save_trace+0x290/0x290 [ 542.501068] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 542.501077] ? __f_unlock_pos+0x19/0x20 [ 542.501087] ? __fget+0x210/0x370 [ 542.501098] ? find_held_lock+0x35/0x130 [ 542.501107] ? __fget+0x210/0x370 [ 542.501117] ? kvm_vcpu_block+0xbb0/0xbb0 [ 542.501127] do_vfs_ioctl+0x7ae/0x1060 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @timestamp, @mss={0x2, 0xffffffffffff7fff}, @window={0x3, 0xffffffffffffffff, 0x101}, @timestamp, @timestamp, @sack_perm], 0x7) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'veth1_to_bridge\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="390000000500000001000100ff00feffffff00000800090003000000d3145a833f807e8cec8f6e3832e133ba7a0abdb546bf2455351d5e6a5af1a7cb40ee96e2bc092189bed7fd5269c77bdbb65f7c75db067e1925ef90a31d31e62d936943"]}) prlimit64(r1, 0x1, 0x0, &(0x7f0000000100)) [ 542.501139] ? selinux_file_mprotect+0x5d0/0x5d0 [ 542.501147] ? lock_downgrade+0x6e0/0x6e0 [ 542.501156] ? ioctl_preallocate+0x1c0/0x1c0 [ 542.501167] ? __fget+0x237/0x370 [ 542.551112] ? security_file_ioctl+0x89/0xb0 [ 542.551127] SyS_ioctl+0x8f/0xc0 [ 542.551137] ? do_vfs_ioctl+0x1060/0x1060 [ 542.551152] do_syscall_64+0x1e8/0x640 [ 542.551161] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.551177] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 542.551186] RIP: 0033:0x459879 05:52:11 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000080)={0x0}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000180)={r1, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @multicast2}]}, &(0x7f0000000300)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e20, @rand_addr=0x4d}}, [0x7, 0x8, 0x8c66, 0xa91, 0x5, 0x3, 0x2de, 0x5, 0x8001, 0x8, 0xffffffffffff0001, 0x1ff, 0x0, 0xffffffffffffffd4, 0x1]}, &(0x7f0000000000)=0x100) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={r2}, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 542.551191] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.551202] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 542.551207] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 542.551216] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 542.559918] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 542.559925] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:12 executing program 1 (fault-call:6 fault-nth:69): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x18000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x50002, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:hald_dccm_exec_t:s0\x00', 0x26, 0x7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) ioctl$VIDIOC_S_FBUF(r2, 0x4030560b, &(0x7f0000000080)={0x3, 0x10, &(0x7f0000000540)="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", {0x6, 0xc8b, 0x0, 0x9, 0x29be, 0x2, 0xd, 0x9}}) [ 542.727092] input: syz1 as /devices/virtual/input/input335 05:52:12 executing program 3: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e20, @empty}, @in={0x2, 0x4e21, @local}], 0x20) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) execve(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0)=[&(0x7f0000000040)='posix_acl_accessself/\x11vmnet0\x00', &(0x7f0000000080)='rodir'], &(0x7f0000000140)=[&(0x7f0000000100)='vfat\x00']) [ 542.833282] input: syz1 as /devices/virtual/input/input336 [ 542.833299] FAULT_INJECTION: forcing a failure. [ 542.833299] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 542.876891] CPU: 1 PID: 25063 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 542.884037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 542.893398] Call Trace: [ 542.893414] dump_stack+0x138/0x197 [ 542.893430] should_fail.cold+0x10f/0x159 [ 542.893440] ? __might_sleep+0x93/0xb0 [ 542.893452] __alloc_pages_nodemask+0x1d6/0x7a0 [ 542.893464] ? __alloc_pages_slowpath+0x2930/0x2930 [ 542.893474] ? mmu_topup_memory_caches+0x86/0x320 [ 542.893490] ? rcu_read_lock_sched_held+0x110/0x130 05:52:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='sodir,\x00']) chmod(&(0x7f0000000000)='./file0\x00', 0x1) [ 542.893505] alloc_pages_current+0xec/0x1e0 [ 542.899711] __get_free_pages+0xf/0x40 [ 542.917387] mmu_topup_memory_caches+0x194/0x320 [ 542.927216] kvm_mmu_load+0x21/0xd40 [ 542.935403] vcpu_enter_guest+0x2eb4/0x5210 [ 542.935418] ? perf_trace_lock+0x500/0x500 [ 542.943855] ? __lock_is_held+0x10/0x140 [ 542.956435] ? emulator_read_emulated+0x50/0x50 [ 542.961105] ? lock_acquire+0x16f/0x430 [ 542.965078] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 542.970105] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.974955] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 542.980212] kvm_vcpu_ioctl+0x401/0xd10 [ 542.984197] ? kvm_vcpu_block+0xbb0/0xbb0 [ 542.988351] ? trace_hardirqs_on+0x10/0x10 [ 542.992596] ? save_trace+0x290/0x290 [ 542.996398] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 543.001320] ? __f_unlock_pos+0x19/0x20 [ 543.005284] ? __fget+0x210/0x370 [ 543.008739] ? find_held_lock+0x35/0x130 [ 543.012800] ? __fget+0x210/0x370 [ 543.016261] ? kvm_vcpu_block+0xbb0/0xbb0 [ 543.020423] do_vfs_ioctl+0x7ae/0x1060 [ 543.024312] ? selinux_file_mprotect+0x5d0/0x5d0 [ 543.029078] ? lock_downgrade+0x6e0/0x6e0 [ 543.033231] ? ioctl_preallocate+0x1c0/0x1c0 [ 543.037641] ? __fget+0x237/0x370 [ 543.041101] ? security_file_ioctl+0x89/0xb0 [ 543.045698] SyS_ioctl+0x8f/0xc0 [ 543.048153] binder: BINDER_SET_CONTEXT_MGR already set [ 543.049061] ? do_vfs_ioctl+0x1060/0x1060 [ 543.049075] do_syscall_64+0x1e8/0x640 [ 543.049086] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 543.054429] binder: 25078:25079 ioctl 40046207 0 returned -16 [ 543.058555] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 543.058565] RIP: 0033:0x459879 [ 543.065524] binder: BINDER_SET_CONTEXT_MGR already set [ 543.067365] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 543.067377] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 543.067385] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 543.073428] binder: 25078:25080 ioctl 40046207 0 returned -16 [ 543.078512] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 543.078518] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 543.078523] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:12 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x20040, 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000080)={0x1, 0x3, 0x5, 0x1, 0xfffffffffffff049}) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000180)={{{@in6=@loopback, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@ipv4={[], [], @multicast2}}}, &(0x7f0000000280)=0xe8) recvfrom$packet(r1, &(0x7f00000000c0)=""/192, 0xc0, 0x1, &(0x7f00000002c0)={0x11, 0xf6, r3, 0x1, 0x3, 0x6, @broadcast}, 0x14) r4 = shmget$private(0x0, 0x2000, 0x1000, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_RMID(r4, 0x0) 05:52:12 executing program 2: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000040)={0x6, 0x0, [], {0x0, @bt={0x7ff, 0x80000000, 0x1, 0x3, 0xa8, 0x1, 0x9, 0x80, 0x2f4, 0xb148, 0x7, 0x5, 0x0, 0xf95, 0x1, 0x13}}}) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:52:12 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f00000004c0)='/dev/usbmon#\x00', 0x1, 0x1) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x1, 0x4) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:12 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000)=0x1, 0x4) 05:52:12 executing program 1 (fault-call:6 fault-nth:70): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:12 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8080, 0x100) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e24, 0x0, @mcast2, 0x4}}}, &(0x7f00000000c0)=0x84) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000200)={r2, 0x8, 0x1, [0xeea]}, &(0x7f0000000240)=0xa) r3 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r3, r0) 05:52:12 executing program 3: r0 = socket$inet(0xa, 0x5, 0x84) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000080)=r1) socketpair$tipc(0x1e, 0x7, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) close(r2) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 543.260638] FAULT_INJECTION: forcing a failure. [ 543.260638] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 543.284555] CPU: 0 PID: 25091 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 543.291673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 543.291679] Call Trace: [ 543.291697] dump_stack+0x138/0x197 [ 543.291718] should_fail.cold+0x10f/0x159 [ 543.291728] ? __might_sleep+0x93/0xb0 [ 543.291743] __alloc_pages_nodemask+0x1d6/0x7a0 [ 543.291756] ? __alloc_pages_slowpath+0x2930/0x2930 [ 543.291766] ? mmu_topup_memory_caches+0x86/0x320 [ 543.291782] ? rcu_read_lock_sched_held+0x110/0x130 [ 543.291795] alloc_pages_current+0xec/0x1e0 [ 543.291809] __get_free_pages+0xf/0x40 [ 543.291818] mmu_topup_memory_caches+0x194/0x320 [ 543.291838] kvm_mmu_load+0x21/0xd40 [ 543.291859] vcpu_enter_guest+0x2eb4/0x5210 [ 543.291873] ? perf_trace_lock+0x500/0x500 05:52:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="f26f6469722c00dac2ff2cd33926e987f43e1f7c6cb96323f967e73e3b1a1f26ef546e3bd5e1b553b3d0edd9fc36d823abc7e56f3fecee61b49ffc83d12a4d3f14b26777e0d666f243e6b43dd9d1d74f6101905ba6a80508fe917655a4b72049b4ac52a984db137db5628aa671928c56aee032506b9b0b"]) r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f00000000c0)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80000, 0x1) ioctl$RTC_AIE_ON(r1, 0x7001) [ 543.291887] ? __lock_is_held+0x10/0x140 [ 543.291898] ? emulator_read_emulated+0x50/0x50 [ 543.291907] ? lock_acquire+0x16f/0x430 [ 543.291918] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 543.291935] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 543.291944] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 543.291962] kvm_vcpu_ioctl+0x401/0xd10 [ 543.291976] ? kvm_vcpu_block+0xbb0/0xbb0 [ 543.307528] ? trace_hardirqs_on+0x10/0x10 [ 543.307543] ? save_trace+0x290/0x290 [ 543.307552] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 543.307560] ? __f_unlock_pos+0x19/0x20 [ 543.307571] ? __fget+0x210/0x370 [ 543.320233] ? find_held_lock+0x35/0x130 [ 543.320246] ? __fget+0x210/0x370 [ 543.320260] ? kvm_vcpu_block+0xbb0/0xbb0 [ 543.320272] do_vfs_ioctl+0x7ae/0x1060 [ 543.320285] ? selinux_file_mprotect+0x5d0/0x5d0 [ 543.320293] ? lock_downgrade+0x6e0/0x6e0 [ 543.320304] ? ioctl_preallocate+0x1c0/0x1c0 [ 543.327402] input: syz1 as /devices/virtual/input/input337 [ 543.330135] ? __fget+0x237/0x370 [ 543.330156] ? security_file_ioctl+0x89/0xb0 05:52:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x14000, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="1000653054ecb8fda500de05005c11b5"], 0x10) 05:52:12 executing program 1 (fault-call:6 fault-nth:71): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:12 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = socket(0x4, 0x80000, 0x39) getsockopt$inet6_buf(r1, 0x29, 0x3d, &(0x7f0000000000)=""/98, &(0x7f0000000080)=0x62) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x3) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000300)=""/63) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000180)='/proc/capi/capi20ncci\x00', 0x300, 0x0) r4 = getgid() ioctl$TUNSETGROUP(r3, 0x400454ce, r4) ioctl$SIOCGIFHWADDR(r0, 0x8927, &(0x7f0000000280)) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r3) setsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={r2, 0x4}, 0x8) r5 = gettid() fcntl$setownex(r1, 0xf, &(0x7f0000000240)={0xd75eac471e1bfc11, r5}) [ 543.330168] SyS_ioctl+0x8f/0xc0 [ 543.330177] ? do_vfs_ioctl+0x1060/0x1060 [ 543.330190] do_syscall_64+0x1e8/0x640 [ 543.330200] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 543.339514] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 543.339523] RIP: 0033:0x459879 [ 543.339529] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 543.339540] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 543.339545] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 543.339552] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 543.356163] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 543.356170] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = msgget$private(0x0, 0x20) msgsnd(r2, &(0x7f0000000080)={0x1, "fa756da22712882ee92b251fb18ee37dc17efbfc5a067f689588f0e05e99ef85c9516a5997d1296dc793a170f9216acb9d46f5773b2d9e32a1f9ee66d606e40b95a3853699d1f6398183542e0b55ef4a9144cd54a4c4c23669cf631c299b577ab930e2aaed1f487881d8bc1598446bfe3a09df7a737461840b2c7347b6a720aff2fb3e611f699c61b249a7d8da3b751c70b1068fd1b0af0e392f22785d05a9006b6d537afb678ea0bab0040059e2504f93759f5251d62e9e393f615ee53080a53ea30754c3f9e7b26711d933e4783b048e0177fc73886355f72f21affa75a2274a055d0992b8ca6313f500"}, 0xf3, 0x800) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 543.557142] FAULT_INJECTION: forcing a failure. [ 543.557142] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 543.612732] CPU: 0 PID: 25112 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 543.619874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 543.629330] Call Trace: [ 543.632017] dump_stack+0x138/0x197 [ 543.635661] should_fail.cold+0x10f/0x159 [ 543.639825] ? __might_sleep+0x93/0xb0 [ 543.643722] __alloc_pages_nodemask+0x1d6/0x7a0 [ 543.648404] ? __alloc_pages_slowpath+0x2930/0x2930 [ 543.653429] ? mmu_topup_memory_caches+0x86/0x320 [ 543.658283] ? rcu_read_lock_sched_held+0x110/0x130 [ 543.663400] alloc_pages_current+0xec/0x1e0 [ 543.663872] binder: BINDER_SET_CONTEXT_MGR already set [ 543.667726] __get_free_pages+0xf/0x40 [ 543.667737] mmu_topup_memory_caches+0x194/0x320 [ 543.667750] kvm_mmu_load+0x21/0xd40 [ 543.673183] binder: 25117:25131 ioctl 40046207 0 returned -16 [ 543.676980] vcpu_enter_guest+0x2eb4/0x5210 [ 543.676998] ? emulator_read_emulated+0x50/0x50 [ 543.685158] binder: BINDER_SET_CONTEXT_MGR already set [ 543.685440] ? lock_acquire+0x16f/0x430 [ 543.692499] binder: 25117:25131 ioctl 40046207 0 returned -16 [ 543.695611] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 543.695628] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 543.725296] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 543.730327] kvm_vcpu_ioctl+0x401/0xd10 [ 543.734314] ? kvm_vcpu_block+0xbb0/0xbb0 [ 543.738479] ? trace_hardirqs_on+0x10/0x10 [ 543.742743] ? save_trace+0x290/0x290 [ 543.746558] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 543.751514] ? __f_unlock_pos+0x19/0x20 [ 543.755491] ? __fget+0x210/0x370 [ 543.758951] ? find_held_lock+0x35/0x130 [ 543.763106] ? __fget+0x210/0x370 [ 543.766570] ? kvm_vcpu_block+0xbb0/0xbb0 [ 543.770728] do_vfs_ioctl+0x7ae/0x1060 [ 543.774621] ? selinux_file_mprotect+0x5d0/0x5d0 [ 543.779403] ? lock_downgrade+0x6e0/0x6e0 [ 543.783542] ? ioctl_preallocate+0x1c0/0x1c0 [ 543.783553] ? __fget+0x237/0x370 [ 543.783571] ? security_file_ioctl+0x89/0xb0 [ 543.783583] SyS_ioctl+0x8f/0xc0 [ 543.783592] ? do_vfs_ioctl+0x1060/0x1060 [ 543.803314] do_syscall_64+0x1e8/0x640 [ 543.807198] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 543.812056] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 543.817243] RIP: 0033:0x459879 [ 543.820438] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 543.828152] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 543.835592] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 543.842857] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 543.850131] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 05:52:12 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) r2 = gettid() sched_setscheduler(r2, 0x5, &(0x7f0000000240)=0xfffffffffffffff9) syz_read_part_table(0x1f29ddd6, 0x2, &(0x7f0000000200)=[{&(0x7f0000000040)="2d1edc9e8935b7126a22a22e13b8767ba6f2ca36778a06a69125c0c75f44230593a148317f4b98d726d78cdcd4395116f74168c8315f564141acd37b777fdcd2bd0a924851eaef761a65cb3196fb41c2623f8238f4f3d82c1674110829fdadaa1b3f0800a88699a5d164ec6f285a5d858bcb6247220f4b2b62657ee7ee05ab155fd6d66be42cb3c50590c3009c133998b1cfd4e7e70696162e9e165b0c6b42ec2b9d959f61a254cd5cb867a8f1c0313ec09eaa04ef19200c3e2f29d8660c153fcffaf0d60ab26ed049f16fb09851ff5087def3", 0xd3, 0x7ff}, {&(0x7f0000000140)="dc593cf38b2cf4f0f853c6e2dcdc9cf054c6c1d809e4be0ee1b49ad498bb6eef37d55242ca53dfd5ecc7bf1e115c9e33829ba7ecca8d4866a980c801729c1a9a27853a822aae464d7b5516d56ce9cf8ae32e31204d7888f5a91d6bf97db4c5bf379bff29e235d208061f41896ada870fd8e9bc0aa5ffdb47d0a1fe2fb99ad62650692ab887e61cd32958e21e9dfda32388a33022a10dcb1c35813e3953108b39b98777e178cf195c3beea2", 0xab, 0x800}]) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:12 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f0000000000)={'filter\x00', 0x4}, 0x68) 05:52:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x111000, 0x0) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000000c0)=0xd, 0x4) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1, 0x2000) ioctl$sock_inet_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000040)) 05:52:13 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0xfffffffffffffffc, 0x0, 0x200}, &(0x7f00000001c0)=0x11f) 05:52:13 executing program 3: r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000040)=0xf2f) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) io_setup(0x4, &(0x7f0000000080)=0x0) io_submit(r3, 0x3, &(0x7f0000001300)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0xa3c57059e6e41c40, 0xff, r2, &(0x7f0000000140)="73c0b259b8f996828f84b35bdeb5f4d38b40990217961aca426823a352eb0ce3719ac97953eee3b4fb43f9c9e9aacc2f393228b91e72899dc2bedbe533", 0x3d, 0xfffffffffffffffb, 0x0, 0x0, r1}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x31a87a8327ce99c5, 0x7, r1, &(0x7f0000000200)="541870d4e657ababd7a37f1c3e6737d4471247643ae6e805261ece05ee57d1ab597d40ac14372588a0f086e0fa69749d62a764b92f9e9fd1412658c8866c40464e", 0x41, 0xffffffff, 0x0, 0x0, r2}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x1, 0x6, r2, &(0x7f00000002c0)="934fedb62e9a69fb717a6c28a1c02ce9f73c5079d02c459c686eb2fd80f4fa365e676709134b40b35448f53c312d73994e9b0f2ba718991d716e524bdbd0697bc226b80cdbffeada0d00c199d54bde2c78e0167af4851b14c09b1ec5960860fc38f0ffdd851a01aa3497bcf2c2d93b83d9ebe4365caf5d5eb7aac8379e4638880422999c538b5eaf0b02060c6491d686fe074ce15a6251186fc1abcc8de7de99a1b918235111da1711d4ad30c7e11416c0b4a682745e7ba813060fcd7d9587b2a31d79def4437d1aef896e32e3a91f89ec83de706ce74bf6d33d07afa65b731d652430649c053241c432272f9603c134dab2cf94e7ce01274ce557d1bacbad1d0c2ee6c36947555e700fbae5442c17b7c401904cf65bb134d909bd5aa0f10246606669985f462a7007f82ebef8c2a3970e92a3608d9ed8f8be5c499bfff010bdc5205e47a01002b19a21efef5fb21701c810258f14bf54fe0f1dd0b6874e52075af4cce8b35844c6652c1cc1a97ddaf7d989e865a6ef799f66b945bb78d12802e988e8b91a23657f97c4ad3fae18fc84328d1781a488ab1fb1e762ff6631abf4d1052b5ccb389f4a20ac346b7ee7a0d72f24499dd7acef900be55fedc9caf9ab308bf60ea618b066b5f678aa97f6e976965718bcd7bd2d27e61fc2a15b9dc792128a469d4b511b4b945bea750b775ce9bb43b42e78ac92b5c102a25a1e226c36de18f324ad58a2e87ef8912e753ae7eb8443032ed6b0ab8f455914e1031231060f96ace9ca3607c56cff915e4a26d1fcb0d503cc3fc4ff5a0fa7c970e4518b29044ed8f1c2c91578a2f038506a4b76872a23af34d8dc0459b52b247ad8e77aaa51b5c653297dbac6797c467277b3374a44ab6e9c14f9f5ac34182a9cb5a3b3385e4193fcb0e6a3cee75bf677e9ec6a769df9b490d1b341d6eee910880f1894bfaaea99f2818f62b9207381374b455e24d5e78020e2e74d5fe53e72cb74dee3d8c72f01ceb7d8572328c7d722c6054dd29715c153bd047667107d2d17f0cf7eee982ff46c48366d382aec2b27323223c5995e6ca0009d698a0c4027785ce911fea3d466053f53c3a4896e326a3c33392dea849b68822801b5ef8ec50ec4fcec8b08fe21f87253ca9a19b48cf88a239b1e8aed0618d1152cdb0374ae38babe443720e139a0d17206c48c37d66074a68565dcd4e3c0c0c3f1615dfac2f21b176882b611e6197b2e3b7569701168a6ef9f3fabe102bcaedbb293cf37d7e66379fa98b0ae44cee23f6afca563d7225e593bc2cb02a2209a89df622a31f6f567f9a93097fc4054a1d365dbf8ddd96f3b271a5dcfcf79aeb2d58d72d7f02908859d4db818a1d0347826adb38c01ff1b494fd6bd62b094a8bd3077bddc6e8350f3ee07375b7fcfdb7623830d2cbebddc30ed53b17bb0b098f4f4561e208cec9159de26f4cbc4bb38d99fe78a3741aca55ffcc04122ec713db22ee3ce89e95bfc3435de6ab8e1924180328eb6ab68385d05ae7282e221baf9b69f7bb1b9db55e79651b6ada9d08b526aed60c136ede9b9b016a8007bd50fb14c6427c7c72f91f583e0dc637ed0f8911862ac6f59ee29372c0303edc6b93fbdca27be80ce7e51147bd8f5aed658caccf3b6a01e936195220d3476aa6db47b8392e2997aa36ed4bb73e9834011a3f464eab001825262816140dd81d35347301930a52d1b061d57b156b5d16b139623a32b6c9b07ef1d63a1bcbde89164863de42e6ed3e2cbb69db5befc8835fef5ac458e61ff5f19d2e56d3c5d65a5300f10a08eb7fa71f73c47cdf5c4acfe9b15a3312857ad7792a1c437d6b702fbdc4ce49d2026ffccc9a90d208442d4887024bb291609510c96600b22018208757f7a345045f7999f34d97f282c849c0bb2d68e033023d8a59de403871aba174f0c16718befd3786d015d6545a2c1144bd4e1db4f050f08b135fa99ce28bc0ec7e819387ab919189cfd1ffded34198e0bece8b1b11095c1d7355a77dc3817f77f9bdc719ce11f91a39341994fe0526c978ca6544df599a726b17acf4861f94f5f14f564b428db115f7c14559d78a96037e43a61ac476b1b978b1786fea1f5f57d4c1552d17ede006b3ec604c61ab6559840a8542024986b7846a2d9fc0efabf5338a01647ce6ec3299010c84c67e58efda17163b174f493f24ed0ac82f40f227bcd15c35507b5c98568bcaa49d523701a9cad815dc3cdd98bcec9c456705bff363805cc785a8dc72e7a1ab1fe1009b964f54e55ab74c905c65df1b6af15803518bb626f82f78642f83289755c6640aee314c74e4a2bd65eafafad03c44263023638461f8d7de9de919a91f7ce040727c7a87b5bb8ac48d0c404357c029ca79b712da7e167518c467bb28a420d2deec5a050272fdb8942e1c7917cfa4a668952e76c9b58a1b11d606e55436f52293d5ccd2f0d867d17d44b6b4ea54b82a07b9726f124f72bd305ece916dd2c01d696a3cbd517e246881ffd93cdd3e811fb9061c34cbb2ce703bd120fe71b5e4de6923ad1f72c0400f7d0f0158c1271082ae8b9e144d28a9457a10f9a10a6820237c67b3512f0b9efc1a3bcb8a2cb5d6606bdb4d4a1da91afcb97b0a5426c7f8353f890fe2ce54a5bda59ede0005f87ed5c76aee97306efe4636e3afc02a4bfac74c27ed02d5f9497daa4fdd49af6c04c13683c8b2ff8646e712aa22759bdce870717eb735bf36f3597cff575f2a5b3f8500c7da741ddcba1b046e8049e835ea98638b24d47bbaa128b2932e360b5125cc7453ed1b6c1b21eaf01b0e325f6c29d0b7bd526c947eb5eb1bacf9668ef11970f370445e7688740963070498a4b937f9b2f87830ea3d608c195dd22448db96519ce163fa847b3c4661ac390d46623c9636727ed6aa1082280aae4c489b663bf4635f14fc65be12cdc092f6d2ae2afeab28b209e1ba57fd20073399ab296a523f82d43c74b65c237cdc10ffb7fa691771d5c55f57df6fbb648370ff7471c688d7d124bc89e422c18c99d837df1c8aceed3ea73505ad7b763d8f66189cdae26b3bc973e4be6f1b49c4da32a65904440956f8383d938b156283c4ab671f11d133ee3074e2478276cc9c35efd6f90a3a4c402097072f696883f6ab50d46f555337429bb516eb0b73ea198cd22646cd612789d76285299050cddf40db1609028ba04000eb20d6ce8d56847904b692860bd159f36feadc04221348967f5757f074e2f2637a0b52af00a2795071190ac869ae754de6e6667d7223d0647e2540ccfb18a52b54e9489c242ba3fe1183a07f8098dfda303215c4cd8f80128757d12756450654ab111c213d153d8ed5c4f77de987cba9cf919df2dab4b57cb54dccf67b88c087e1fa2b0a9defe745b46f612a5694f1fb8e342f5a34324e8bab3109062d1d7d78dccb822e56b0f05e790712f4fb15e7937cc503c9fe076400a5ccc30eeab4753245824b4ca6021bfeceff8dd70a1663773057a09c2824623b03ffecf1891013ab0f3e479e57aebaea4b10febb501a836a78c7fce454f184696a2bc5a2d2225e0da02584afe737d0897350a1d5fb0c21cec820d00dc1e6c383c063e0fdb590d221cdd3f8a8be4d17b716b93f8ddb0d468d985e870d4029651c7eb7146bee3622c92b025281af6d23eb72a074acf6dbd0528dc18dc7421f4740f778129189018c402e8ea89e48d6f29727100c9a5f50080edcdc0b4981c92e8b50fa1dc3044b14ad1dca26092f111651a5b2943f2311bf3306b8943b9cb5ea9581fcfad7665b0841107aa9ed6cf202e1827ddf23f4c8462f72be85da2b86c823e824208d473aa8cbdff18b5ffd7ae374f05db73c266c8a3a819d61bb080a958cfe3371546fe1e79823ca4bd36db4be3a62e30c77b0764ecae004ebb304852e20f2e7fbe1268bd3f74f3737082e19cbc70fc33009bc391a964b33a09a126afc7be082628319e93c96a10fa346ca5e1cb35ac96e2b4a05b17938fd3d613cb4e8688b761e82c52d990b94836a0af769b63732b5847583781d855e4492a34f7eae0f018bb2f05d36ecbb7354800b1dd6884c0789fe1e62e2f4fc3b0a92daa1816d61ee7f00717d51c3720a2f8b0bfc0b199fa45bb287717998fb838437983cff859476f68f8f47c84d142c4f44c86730b3fc19226c8b6036354883264f777cfd148a39639535790b2ce1408edfb2ef59059df8ef921a0502e4685d6de45604b2f798c2bd4432b4e6f46c34bca7ff9aff5049fc5f6dd7f951ed65dc53147005ac40696b6be939953def1b966233327404e3a72815dcf7070e2f50bc5301351f921a6183c2c21ace216b6028868056ac2e69cb7b6e597c997d507cfe519bdb6b2c9910a347bae73b6db0b0a7808b950ff79f33898a316ead488811d38167befc7bc31062f8685697e185bdbad2f479eb1008115fa361bdfc7f05a4ec435241e1e15a58afe887b3af4514c2c033a35117c948842b1e0ceb8ec3df6bd0913cdb2551178856b8c7a0cda442b40de605d70550eb0834eb93765b182acad5aa0686d7ae71ab743bc3f59cfc8653d72bc4884e7f843baa360df495711a09cd4bd8617c1de4668806b2a65519bff232737713772b04ad4b56fc77447419fb14d8e834b57584d246e736c432f192fde076308172188dd2d74a9fddf1db5d61ca1c4c5ec94c28dbcb48932431bfd9ff4247a2febff3171acf4b0ee887486bfcfd8a31886141bb580efcc2b95e811584373a24f9902966fbf3bfbf7b5d7a2890c58343901a3e18921b757b57fa813fd7490a9985d8b832c2d39302148fb277c0f15b7d06e4d79be8a3c2267b973915b6a49f8a2ca00e94b5121e03c1b950be5db00d94e0060021c40a39a0c20927df73ef3a9c2434db985a4ddb2e4b28db39910890895555a35fec83f7ebf0bd37d39e1f65b5245d6ffa7935725a36e891e8b15e6a067619abe162aabab77b5658f324294847c46c85bd88c24a9e342fee1533766a1ba402fcbf8b93cae6344f8188464a69915f6569719e04b372a70a684a26242fedbd7e86a2c7367c7008e92ecc9df0a9df3bb7deda21bb6d5298371618276d369db7a1a79bd9d8037dc3df7ba490a99589cc77b18ba7b76cd4bc0b3bf6e1d75baa3aa5e082d267dce954a94c95bef2f8c5c7950de530b7f87c725619e1fc3a4a4fa927f329c695a5bdc045fb12a05781b229354ea31756fd3ecfe8f7a60408407af559491f37fcdcf54f3f6a1165de3b92a4e7a533ab5e3ba85e1a9139a30546e9889ff7fbfb42a631c62cae88e4740d1a64655dc4bf9ff5a5e87fb2ecbfe171b7a705b7c89a61bd35f98c0d54b8e501bb2e3f52300c80b796364f25b4c3b566137d15841e044189fb5bd862a213298c411104fe04f4773741415c6a4c6df040e078fde714f5d9d8a90f9380cc2141e8a82c2cf2b24cfd34710579f32889e9c91b5b49ac3562387e03b7b1e7185aaad44a14d2b644e730c48ac237f966c96991ca3f41fc93d29eee3107adae29d75817dd1c5333b36a1cf7baeb3ff6ae6fdb4f578f03cdd9a0894b2cae3220193433dd48ffac3f0de901a49e3508a1e8102a890a136af0a6b21419b68d410e7bed3e3d4a0b2eb04512f7bc5852b9580ad6f921dbbce2f0475f20c98392df5a7882bd9edcb240d2cacf9e54cab188a47f8a4ff1140f4c01466881c6614d118569815f7b9e67a59a6cdaa8758eef5a4a5b04c689f1c12e51263a4631899f6e1e9993fe518a5858bdde5bdf6fc514270203bab3a2d196c454ea98ec5327fe8930086bd3b5754de8e8605a78240f91918c322a9b586", 0x1000, 0x1ff, 0x0, 0x1}]) [ 543.857400] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:13 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x9, 0x141242) r1 = openat$selinux_create(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/create\x00', 0x2, 0x0) tee(r0, r1, 0x7fffffff, 0x0) r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x40002, 0x0) fsync(r2) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:52:13 executing program 1 (fault-call:6 fault-nth:72): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:13 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) pipe(&(0x7f0000000080)) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:13 executing program 3: r0 = socket$inet(0xa, 0x1, 0xfd) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:13 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:13 executing program 4: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x200201, 0x0) recvfrom$inet6(r0, &(0x7f0000000080)=""/178, 0xb2, 0x40010002, &(0x7f0000000140)={0xa, 0x4e22, 0x3, @ipv4={[], [], @remote}}, 0x1c) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) fcntl$setflags(r1, 0x2, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000180)=@ccm_128={{0x304}, "47bfee0de64bfb96", "3be2213682cafc1a0dd933fe677690e8", "edb3cefd", "c56862370537f54e"}, 0x28) [ 544.024555] input: syz1 as /devices/virtual/input/input339 [ 544.048637] FAULT_INJECTION: forcing a failure. [ 544.048637] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 544.086595] CPU: 0 PID: 25161 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 544.093817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 544.103176] Call Trace: [ 544.105787] dump_stack+0x138/0x197 [ 544.109437] should_fail.cold+0x10f/0x159 [ 544.113595] ? __might_sleep+0x93/0xb0 [ 544.117490] __alloc_pages_nodemask+0x1d6/0x7a0 [ 544.122194] ? __alloc_pages_slowpath+0x2930/0x2930 [ 544.127223] ? mmu_topup_memory_caches+0x86/0x320 [ 544.132077] ? rcu_read_lock_sched_held+0x110/0x130 [ 544.137103] alloc_pages_current+0xec/0x1e0 [ 544.141434] __get_free_pages+0xf/0x40 [ 544.145325] mmu_topup_memory_caches+0x194/0x320 [ 544.150092] kvm_mmu_load+0x21/0xd40 [ 544.153818] vcpu_enter_guest+0x2eb4/0x5210 [ 544.158141] ? perf_trace_lock+0x500/0x500 [ 544.158155] ? __lock_is_held+0x10/0x140 [ 544.158169] ? emulator_read_emulated+0x50/0x50 [ 544.158179] ? lock_acquire+0x16f/0x430 [ 544.158192] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 544.166467] kvm_arch_vcpu_ioctl_run+0x318/0x1000 05:52:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) openat$random(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x200000, 0x0) [ 544.166478] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 544.166498] kvm_vcpu_ioctl+0x401/0xd10 [ 544.166509] ? kvm_vcpu_block+0xbb0/0xbb0 [ 544.166521] ? trace_hardirqs_on+0x10/0x10 [ 544.202268] ? save_trace+0x290/0x290 [ 544.202279] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 544.202287] ? __f_unlock_pos+0x19/0x20 [ 544.202297] ? __fget+0x210/0x370 [ 544.211001] ? find_held_lock+0x35/0x130 [ 544.211011] ? __fget+0x210/0x370 [ 544.211024] ? kvm_vcpu_block+0xbb0/0xbb0 [ 544.211034] do_vfs_ioctl+0x7ae/0x1060 [ 544.211046] ? selinux_file_mprotect+0x5d0/0x5d0 [ 544.211055] ? lock_downgrade+0x6e0/0x6e0 [ 544.230070] ? ioctl_preallocate+0x1c0/0x1c0 [ 544.230085] ? __fget+0x237/0x370 [ 544.230105] ? security_file_ioctl+0x89/0xb0 [ 544.230116] SyS_ioctl+0x8f/0xc0 [ 544.230124] ? do_vfs_ioctl+0x1060/0x1060 [ 544.230136] do_syscall_64+0x1e8/0x640 [ 544.238745] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 544.238770] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 544.238778] RIP: 0033:0x459879 [ 544.238784] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 544.238796] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 544.247314] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 544.255144] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 544.255150] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 544.255156] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 544.285169] binder: BINDER_SET_CONTEXT_MGR already set [ 544.297846] binder: 25174:25178 ioctl 40046207 0 returned -16 [ 544.404625] input: syz1 as /devices/virtual/input/input340 [ 544.431867] binder: BINDER_SET_CONTEXT_MGR already set [ 544.437330] binder: 25174:25178 ioctl 40046207 0 returned -16 05:52:13 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x2226d8a363dd49a4, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:13 executing program 2: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0xe4046, 0x0) fstatfs(r0, &(0x7f0000000000)=""/9) ioctl$DRM_IOCTL_AGP_ENABLE(r0, 0x40086432, &(0x7f0000000040)) 05:52:13 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x2c8000, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000100)={0x5, 0xfdef43f5f0ee852f, 0x4, 0x1, {r1, r2/1000+10000}, {0x3, 0xc, 0x83e3, 0x4, 0x1, 0xe8, "1c947e05"}, 0xfffffffffffffff9, 0x2, @fd, 0x4}) r3 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$VFIO_IOMMU_GET_INFO(r0, 0x3b70, &(0x7f0000000000)={0x10}) 05:52:13 executing program 1 (fault-call:6 fault-nth:73): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:13 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@empty}}, &(0x7f00000002c0)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000300)={{{@in6=@local, @in6=@ipv4={[], [], @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@broadcast}}, &(0x7f0000000400)=0xe8) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000440)={@rand_addr, @rand_addr, 0x0}, &(0x7f0000000480)=0xc) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000005c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x9c, r1, 0x2, 0x70bd29, 0x25dfdbfe, {}, [{{0x8, 0x1, r2}, {0x80, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r3}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x7fffffff}}, {0x8, 0x6, r4}}}]}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) r5 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x0, 0x0) connect$vsock_stream(r6, &(0x7f0000000180)={0x28, 0x0, 0x2710}, 0x10) dup2(r5, r0) [ 544.547786] FAULT_INJECTION: forcing a failure. [ 544.547786] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 544.563992] input: syz1 as /devices/virtual/input/input341 [ 544.569257] CPU: 1 PID: 25199 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 544.576736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 544.586078] Call Trace: [ 544.586098] dump_stack+0x138/0x197 [ 544.586119] should_fail.cold+0x10f/0x159 [ 544.586131] ? __might_sleep+0x93/0xb0 [ 544.586146] __alloc_pages_nodemask+0x1d6/0x7a0 [ 544.586159] ? __alloc_pages_slowpath+0x2930/0x2930 [ 544.586173] ? mmu_topup_memory_caches+0x86/0x320 [ 544.586188] ? rcu_read_lock_sched_held+0x110/0x130 [ 544.586201] alloc_pages_current+0xec/0x1e0 [ 544.586214] __get_free_pages+0xf/0x40 [ 544.586230] mmu_topup_memory_caches+0x194/0x320 [ 544.596556] kvm_mmu_load+0x21/0xd40 [ 544.596578] vcpu_enter_guest+0x2eb4/0x5210 [ 544.596592] ? perf_trace_lock+0x500/0x500 [ 544.596603] ? __lock_is_held+0x10/0x140 [ 544.619963] ? emulator_read_emulated+0x50/0x50 [ 544.619977] ? lock_acquire+0x16f/0x430 [ 544.619988] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 544.620006] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 544.620014] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 544.620031] kvm_vcpu_ioctl+0x401/0xd10 [ 544.620043] ? kvm_vcpu_block+0xbb0/0xbb0 [ 544.620051] ? trace_hardirqs_on+0x10/0x10 [ 544.620065] ? save_trace+0x290/0x290 [ 544.620073] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 544.620082] ? __f_unlock_pos+0x19/0x20 05:52:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) write$rfkill(r1, &(0x7f0000000100)={0x7, 0x5, 0x2, 0x1, 0x1}, 0x8) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x40, 0x8) ioctl$BLKIOMIN(r3, 0x1278, &(0x7f0000000080)) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 544.620092] ? __fget+0x210/0x370 [ 544.628268] ? find_held_lock+0x35/0x130 [ 544.628279] ? __fget+0x210/0x370 [ 544.628293] ? kvm_vcpu_block+0xbb0/0xbb0 [ 544.628304] do_vfs_ioctl+0x7ae/0x1060 [ 544.628318] ? selinux_file_mprotect+0x5d0/0x5d0 [ 544.628328] ? lock_downgrade+0x6e0/0x6e0 [ 544.645280] ? ioctl_preallocate+0x1c0/0x1c0 [ 544.645300] ? __fget+0x237/0x370 [ 544.645325] ? security_file_ioctl+0x89/0xb0 [ 544.645337] SyS_ioctl+0x8f/0xc0 [ 544.658159] ? do_vfs_ioctl+0x1060/0x1060 05:52:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xdfca41824613744f, 0x8) ioctl$VIDIOC_ENCODER_CMD(r0, 0xc028564d, &(0x7f0000000040)={0x3, 0x1, [0x200, 0x7, 0x7, 0x7, 0x1, 0x9, 0x1, 0x80000001]}) [ 544.658175] do_syscall_64+0x1e8/0x640 [ 544.658185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 544.658204] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 544.658214] RIP: 0033:0x459879 [ 544.701540] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 544.709018] ORIG_RAX: 0000000000000010 [ 544.745588] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 544.745594] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 544.745600] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 544.745607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 544.745613] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:14 executing program 3: r0 = socket$inet(0xa, 0xa, 0x84) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4200, 0x80) write$P9_RLOPEN(r1, &(0x7f0000000040)={0x18, 0xd, 0x2, {{0x94, 0x4, 0x2}, 0x7}}, 0x18) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:14 executing program 1 (fault-call:6 fault-nth:74): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x8000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) open_by_handle_at(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x80000) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x40, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, &(0x7f00000000c0)=0x10001, 0x4) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x2, 0x3, [0x6, 0x8, 0x4]}, &(0x7f0000000140)=0xe) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000180)={r3, 0x692}, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000000)={0x3}) 05:52:14 executing program 0: ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x40002, 0x0) r1 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000140)='NET_DM\x00') sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, r1, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) r2 = dup2(r0, 0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r2, 0x81785501, &(0x7f0000000240)=""/113) [ 544.949825] FAULT_INJECTION: forcing a failure. [ 544.949825] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 544.985300] CPU: 1 PID: 25222 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 544.992427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 544.992432] Call Trace: [ 544.992451] dump_stack+0x138/0x197 [ 544.992470] should_fail.cold+0x10f/0x159 [ 544.992480] ? __might_sleep+0x93/0xb0 [ 544.992494] __alloc_pages_nodemask+0x1d6/0x7a0 [ 544.992507] ? __alloc_pages_slowpath+0x2930/0x2930 [ 544.992518] ? mmu_topup_memory_caches+0x86/0x320 [ 544.992533] ? rcu_read_lock_sched_held+0x110/0x130 [ 544.992546] alloc_pages_current+0xec/0x1e0 [ 544.992560] __get_free_pages+0xf/0x40 [ 544.992569] mmu_topup_memory_caches+0x194/0x320 [ 544.992585] kvm_mmu_load+0x21/0xd40 [ 544.992604] vcpu_enter_guest+0x2eb4/0x5210 [ 544.992617] ? perf_trace_lock+0x500/0x500 [ 544.992629] ? __lock_is_held+0x10/0x140 [ 544.992641] ? emulator_read_emulated+0x50/0x50 [ 544.992652] ? lock_acquire+0x16f/0x430 [ 545.012336] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 545.012356] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 545.012365] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 545.012382] kvm_vcpu_ioctl+0x401/0xd10 [ 545.035745] ? kvm_vcpu_block+0xbb0/0xbb0 [ 545.035758] ? trace_hardirqs_on+0x10/0x10 [ 545.035770] ? save_trace+0x290/0x290 [ 545.052407] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 545.052420] ? __f_unlock_pos+0x19/0x20 [ 545.052432] ? __fget+0x210/0x370 [ 545.052441] ? find_held_lock+0x35/0x130 [ 545.052449] ? __fget+0x210/0x370 [ 545.052462] ? kvm_vcpu_block+0xbb0/0xbb0 [ 545.052472] do_vfs_ioctl+0x7ae/0x1060 [ 545.052486] ? selinux_file_mprotect+0x5d0/0x5d0 [ 545.092504] ? lock_downgrade+0x6e0/0x6e0 [ 545.092517] ? ioctl_preallocate+0x1c0/0x1c0 [ 545.092529] ? __fget+0x237/0x370 [ 545.092549] ? security_file_ioctl+0x89/0xb0 [ 545.092562] SyS_ioctl+0x8f/0xc0 [ 545.092570] ? do_vfs_ioctl+0x1060/0x1060 [ 545.092582] do_syscall_64+0x1e8/0x640 [ 545.092591] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 545.092609] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 545.092617] RIP: 0033:0x459879 [ 545.092624] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 [ 545.109690] ORIG_RAX: 0000000000000010 [ 545.141494] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 545.141500] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 545.141505] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 545.141511] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 545.141516] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 [ 545.184423] binder: BINDER_SET_CONTEXT_MGR already set [ 545.211365] binder: 25243:25244 ioctl 40046207 0 returned -16 05:52:14 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x8000, 0x2) inotify_add_watch(r1, &(0x7f0000000080)='./file0\x00', 0x500) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000000c0)={0x2, 0x7f}) r2 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socketpair(0x8, 0x80000, 0x5, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000100)=0x44) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) sched_yield() 05:52:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="6f64bc0f57221369522c0000"]) r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x7, 0x100) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)={{{@in=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@initdev}}, &(0x7f0000000140)=0xe8) sendmsg$sock(r0, &(0x7f0000000480)={&(0x7f0000000180)=@can={0x1d, r1}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000200)="50d12f81b1f7acb14832a942d02caac67f9041ab5a546a18fbd7c9e340d20b7f5cb075c943197cf5b8af5c01d0a056835e63a08a373a9350e44bee895bab3051efc9cc3be388044aaed191af356263acca455b47685a20019d8a4aacf8a632527fdfb1c7", 0x64}, {&(0x7f0000000280)="afa2ed3942d40a411e47b875639796bbb3d8ade4b9bca6c0f46631503df34980e37e4cf5b86af0131de6d8820efb5e6cc277afd0187f3170c61de641dbe8f7d65b833050d73f521642416319163576bfc311276da78fc10968db0c132dfa14a76e442c237aaf5ea343035cb508dd5498a21a5159a9c6ca697505bafbca631a1cd1341a68f00b5b4717870e5c23f2ffd069723402d25ebba7bdd5bee53aa2a19ab858788adbf2e1532a900684cc4a50b04539c30e565a5e5c89f73ac9224541d0", 0xc0}], 0x2, &(0x7f0000000400)=[@timestamping={{0x14, 0x1, 0x25, 0x86}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x48}, 0x40090) 05:52:14 executing program 3: r0 = socket$inet(0xa, 0x8000a, 0x7c) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x4, 0x2}, &(0x7f00000001c0)=0x20) socket$inet_udp(0x2, 0x2, 0x0) 05:52:14 executing program 0: ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000280)='/proc/capi/capi20\x00', 0xa000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000440)=ANY=[@ANYRES16, @ANYBLOB="750000003b9a12deb3872043f64621f4ac32302e3c424e45f71e22d2c1b429833320f06a6c09226c6a010187060aceb3578e7bec72b06f549d3f661667f373dd3c5cb995adeeadbae804d74cb80a2483dcf621de81b4d8d96f1c901fd4e7a04bd8e2bd86a97ea960ca27f75b360a42b8e801005da47c9ea2f5c86494c1ac8d6e6d44b5cf901373eb2446419f65231b91aa5665e892723565bab9a054a69e4c7990c314f7a7fb26d18e"], &(0x7f0000000340)=0x2) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e23, 0x200, @mcast2, 0xffffffffffffffc0}}}, 0x84) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x40000, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) dup2(r1, r0) openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/uinput\x00', 0xfd25ab17e0af8cdf, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r1, 0xc05c5340, &(0x7f0000000140)={0x2, 0x8, 0x1f, {r2, r3+30000000}, 0x2, 0x9}) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f00000001c0)={0x80000001, {{0x2, 0x4e20, @remote}}}, 0x88) r4 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r4, 0xffffffffffffffff) 05:52:14 executing program 1 (fault-call:6 fault-nth:75): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 545.366779] FAULT_INJECTION: forcing a failure. [ 545.366779] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 545.381204] CPU: 1 PID: 25258 Comm: syz-executor.1 Not tainted 4.14.141 #37 [ 545.388333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 545.397694] Call Trace: [ 545.400294] dump_stack+0x138/0x197 [ 545.403932] should_fail.cold+0x10f/0x159 [ 545.408087] ? __might_sleep+0x93/0xb0 [ 545.411984] __alloc_pages_nodemask+0x1d6/0x7a0 [ 545.416664] ? __alloc_pages_slowpath+0x2930/0x2930 [ 545.421685] ? mmu_topup_memory_caches+0x86/0x320 [ 545.426536] ? rcu_read_lock_sched_held+0x110/0x130 [ 545.431562] alloc_pages_current+0xec/0x1e0 [ 545.435896] __get_free_pages+0xf/0x40 [ 545.439786] mmu_topup_memory_caches+0x194/0x320 [ 545.444545] kvm_mmu_load+0x21/0xd40 [ 545.448444] vcpu_enter_guest+0x2eb4/0x5210 [ 545.452774] ? perf_trace_lock+0x500/0x500 [ 545.457013] ? __lock_is_held+0x10/0x140 [ 545.461078] ? emulator_read_emulated+0x50/0x50 [ 545.465770] ? lock_acquire+0x16f/0x430 [ 545.469750] ? kvm_arch_vcpu_ioctl_run+0x151/0x1000 [ 545.474778] kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 545.479613] ? kvm_arch_vcpu_ioctl_run+0x318/0x1000 [ 545.479634] kvm_vcpu_ioctl+0x401/0xd10 [ 545.479647] ? kvm_vcpu_block+0xbb0/0xbb0 [ 545.479658] ? trace_hardirqs_on+0x10/0x10 [ 545.479670] ? save_trace+0x290/0x290 [ 545.500770] ? perf_trace_lock_acquire+0x10d/0x4f0 [ 545.500782] ? __f_unlock_pos+0x19/0x20 [ 545.500794] ? __fget+0x210/0x370 [ 545.500803] ? find_held_lock+0x35/0x130 05:52:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x40) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x600040, 0x0) ioctl$UI_DEV_CREATE(r3, 0x5501) ioctl$sock_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100)) ioctl$sock_ax25_SIOCADDRT(r3, 0x890b, &(0x7f0000000140)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x4, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}) ioctl$UI_SET_MSCBIT(r3, 0x40045568, 0xb) 05:52:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)) r0 = geteuid() mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='overlay\x00', 0x200000, &(0x7f0000000080)={[{@index_on='index=on'}, {@workdir={'workdir', 0x3d, './file0'}}, {@index_on='index=on'}, {@metacopy_on='metacopy=on'}, {@index_off='index=off'}, {@xino_on='xino=on'}, {@nfs_export_off='nfs_export=off'}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file0'}}], [{@euid_lt={'euid<', r0}}, {@subj_role={'subj_role', 0x3d, 'nodevmime_type'}}]}) 05:52:14 executing program 2: syz_mount_image$minix(&(0x7f00000000c0)='minix\x00', &(0x7f0000000100)='./file0\x00', 0x8000, 0x8, &(0x7f0000000740)=[{&(0x7f0000000140)="b645a282bc900899de7884ed41b33ecc3491796c1961479dc5aeaf1db941239e2a546b1a568b3a1874965f03e16cbedfb60301a81401d75aa5271ab5b6d84bd80d81fec7e97ad1aec4afa5203c725e568030795b3c3ac0ddcb514b7d00810bfceb26981ae0dc6262255edf802a3e05cf25622b10e45f25db45372b5d1a9968f784a8451dd02ec7dc7c405330534a36f393fcefc713388583dcf409e822ec7f1df3a94451bbcbb322d94c6db853c1", 0xae, 0x2}, {&(0x7f0000000200)="7b15e8894a9bc34fefd6bc5739cec1755a9c8afa9aabe0bbdfd5a4f17c6067834e0c1be8088a9046342381e4b3fae9cef6191036b64677cac593fb468c1e6600e4a810f552af83826e50d2156e1db037543db2c0f037dd04d11b48496f9e1a0d9882eaec08088a720efd8f7c79ca3d7b70bca6f94fa5e9e7db87646f94719b4d1ed6f59d7c3d06e8", 0x88, 0x8423}, {&(0x7f00000003c0)="8f28969bca83cf30dea19bbad6419de5e2e1c1d7ae11f93e87baa199d2ad55a70c58c8e0474941486c2eb340142644786478ca81fbf07913171e1a2b179eaec998984d7972b7139a1001a33593d4c22691d4b089aa21c71cbe1da67a528da129031499438bc3b7a517834075bb77bebf8279c5e4a502263f35d34a8916597f2ecc2eeed095b0b8cb28c62543cdab16e977f99db82364f2ee156c9ae0811617e33df7a8681405bb0b4e869eac1dbf60a06007c82d1b7fa0d7e4dcc4c23c9657b06a55888924c806c68faf76d0be00456f829497e9b8941c286484cf7278cadc4770209a34d19f5b0e6f13ef1890c13dfee7b71ea11ac806414e", 0xf9, 0x7}, {&(0x7f00000002c0)="1e12a28964bb52c6e3f3d0a10ee558bb", 0x10}, {&(0x7f0000000300)="85768124574adfda7b5e66cf038aecde2ed00127bbfa194a1b55bb7581226be86b9cd8490acb4f3eb90ec47bacedbacf3017", 0x32, 0x4000}, {&(0x7f00000004c0)="4e0352be90201c0fc88cb0658287d637f4edfc0977474d3779e3b5126b6c7a4f9299c597c0a2ccaf9e20511ed9e41d62f9ef22aad14ca161e42fe83c35c465f78c0969fda83d736de3f57194879329cb29f102595786ea0434ad190799f4d847e0cb559422afb593d85978d1e239eccec01befa82a507751a14c3d517fe1fa0519d878fb845dff5e70ec2b5a8b40092e7552c88e390ea4c5ec52c185e5c44ffbb1e068f42040c169fdbd0eaad274b42d2fe967", 0xb3, 0x80}, {&(0x7f0000000580)="12c262cd9624f8b48d673500a407f64b9818ab938a4bff2eba7bf4159b31efcdcac68466f14211887c5aa89a3ea22cb7bf446afba55d5da9d057000e739629a144db364cca63b9aff246cb3748b56fb5e8877c874e188721ef6fc2b7c99fcd4d4b6568970fa2fff647fe02efd04c900bba77c54230d9e306df2cd180efb24795963e5ce8e3f5e09bbee96bbc8cfbcd9706ce5cb270ffc17c98b83e17a377c934ba1967da55d412c97515a4917f873bba309d08718b6c8f0d3a3a33f50894d0369165b3b1b2651d16e75f24c2dab8a6bc804b0fe9d5ae8831c6ac2424a13e97", 0xdf, 0x3}, {&(0x7f0000000680)="b7bb7c4e7a3fa66e68d96823bcf864c6e624006fc760161a7d6f4a327c7c5a4a680785a828922f5dc2a18f7d17eb57baecfe7b1c16acd062083cba1bad437c43e01b571f00c48714fbcc143be71f9bc3e16d96eb6e97b2ce6369b5a7fb899cbf2563eb1f122c73aa98f6b263edd8d52e1e0b76d6399bd9579bc7704435c3b4618ab9a765f0e60f147fa8c9a9cc379b9a8fdd2417002aaacb", 0x98, 0xfff}], 0x810, 0x0) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x8, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYRESHEX]) 05:52:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0xc0000, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x8, 0x802) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f00000003c0)=""/167) openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x40800, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000000c0)={{{@in6=@empty, @in6=@ipv4={[], [], @empty}}}, {{@in6=@remote}, 0x0, @in=@multicast2}}, &(0x7f00000001c0)=0xe8) [ 545.500812] ? __fget+0x210/0x370 [ 545.500825] ? kvm_vcpu_block+0xbb0/0xbb0 [ 545.500835] do_vfs_ioctl+0x7ae/0x1060 [ 545.500848] ? selinux_file_mprotect+0x5d0/0x5d0 [ 545.500856] ? lock_downgrade+0x6e0/0x6e0 [ 545.500867] ? ioctl_preallocate+0x1c0/0x1c0 [ 545.500878] ? __fget+0x237/0x370 [ 545.528683] ? security_file_ioctl+0x89/0xb0 [ 545.528697] SyS_ioctl+0x8f/0xc0 [ 545.528706] ? do_vfs_ioctl+0x1060/0x1060 [ 545.541973] do_syscall_64+0x1e8/0x640 [ 545.541984] ? trace_hardirqs_off_thunk+0x1a/0x1c 05:52:14 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount$fuse(0x20000000, 0x0, 0x0, 0x0, 0x0) openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = memfd_create(&(0x7f0000000100)='/dev/dsp\x00', 0x2) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0xcbc825cc3931030b}, 0xfffffffffffffeb6) sendfile(0xffffffffffffffff, r1, &(0x7f0000000000), 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000480)='/dev/snd/pcmC#D#c\x00', 0x80, 0x0) r4 = syz_open_dev$usb(&(0x7f0000000440)='/dev/bus/usb/00#/00#\x00', 0x2, 0x2000) accept4$packet(r3, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000700)=0x14, 0x80800) ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000000740)={@loopback, @dev={0xfe, 0x80, [], 0x12}, @loopback, 0x1, 0x2, 0x7a0000000000, 0x400, 0x81, 0x1000000, r5}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r6, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r6, 0x5) r7 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_inet_SIOCADDRT(r7, 0x890b, &(0x7f00000004c0)={0x0, {0x2, 0x4e23}, {0x2, 0x4e24, @empty}, {0x2, 0x0, @broadcast}, 0x100, 0x0, 0x0, 0x0, 0x4, &(0x7f00000000c0)='veth1_to_bond\x00', 0xea, 0x0, 0x9}) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) r9 = accept4(r6, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r8, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000280)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x1000000000054}, 0x98) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000380)={'team0\x00', {0x2, 0x4e24, @local}}) shmget$private(0x0, 0x3000, 0x1000, &(0x7f0000ffd000/0x3000)=nil) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000040)={{0x2, 0x0, @loopback}, {0x306, @dev={[], 0x16}}, 0x40, {0x2, 0x4e22, @remote}, 'bond_slave_0\x00'}) r10 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x23, 0x0) write(r10, &(0x7f0000000100)="b63db85e1e8d020000000000003ef0011dcc606aed69d2bc", 0x18) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000180)=@assoc_value={0x0}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r11}, &(0x7f00000001c0)=0x20) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000)={0x100000001, 0x4, 0x2, 0x5}, 0x8) [ 545.542001] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 545.542009] RIP: 0033:0x459879 [ 545.542015] RSP: 002b:00007fbd9756fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 545.542026] RAX: ffffffffffffffda RBX: 00007fbd9756fc90 RCX: 0000000000459879 [ 545.542031] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 545.542036] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 545.542042] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd975706d4 [ 545.542048] R13: 00000000004c2c2f R14: 00000000004d62b0 R15: 0000000000000006 05:52:14 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40240}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="28000000c1676e23cc5d3f16101a839eb32360a9006d5bd86b5bdb129325182f88f6ce019cc73700e2158ce75dae16451dfc69e34fc3edd403aa9a68f8dd8ba519c27ffb103243883bc1cf545b53957e1bb10072af49bf0857ad65ebdf18efcaf8c9844f8d366b4f1cab2cdff8f97881345e739fedcf19129f57b1f81630e09c5f81bc987f238aa727aab7c4eb70267951da21fc59b52b9ad1ae18d86620cda68ac8c772a472d6ac2511f3da357a65598d8adab0c1c2540e41", @ANYRES16=r1, @ANYBLOB="1000fb66b0acfcdbdf2501000000000000000b000000000c001473797a3000000000"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@hci={0x1f, 0x0}, &(0x7f0000000280)=0x80, 0x80800) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000002c0)={r3, 0x1, 0x6}, 0x10) dup2(r2, r0) [ 545.767061] input: syz1 as /devices/virtual/input/input343 [ 545.804164] binder: BINDER_SET_CONTEXT_MGR already set [ 545.809578] binder: 25299:25300 ioctl 40046207 0 returned -16 05:52:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:15 executing program 1 (fault-call:6 fault-nth:76): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:15 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$VT_WAITACTIVE(r1, 0x5607) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:15 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x0, 0x3) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000002740)=0xc) syz_mount_image$hfs(&(0x7f0000000080)='hfs\x00', &(0x7f00000000c0)='./file0\x00', 0x4, 0xa, &(0x7f0000002640)=[{&(0x7f0000000100)="d410ef6289c108f1c3f5dc81e5429cf23fac306e3a1a081a13d21fd56dcd6398eaf20f416653afecbf7502cd406a9cc3b95b08d4b5039fb98eec60a936013c984af29258fcf9cade6daf41828a8230c3cfb6705c7a7b8798fbbd937cc44a229645d11929fbe4ec164999e090643699ff03b701ad58556b54c17836dd6ad42a72046de8b0b98c3459bd8aabb8153083fccee3ab73abd6dda3cfa233e01bd7bf0fb3", 0xa1, 0x9}, {&(0x7f00000001c0)="ffe1496f4e10be79ac220c38ccb23eccd683261f910bd998", 0x18, 0x1188169c}, {&(0x7f00000005c0)="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", 0x1000, 0x3f68}, {&(0x7f0000000200)="f6133d4e725b993f727b1baa8567", 0xe, 0xca6d}, {&(0x7f0000000240)="f0da074d516b66600645684a6a9cab4ae4b9bd004cd25bf1c45f6b779a9944ca58642b51f6ef7608d173afb5de43c3a0af4fee3a8846f39b4451f26e934a2c86af54c337b125c50b202be60f533d2c780ade709fc7ddd47688d3df6b4cea6512a4e2c106537d29172669f1de9b00a3eed6e322387b450466925521705febe7b7684d4191261314259cbd7997f58e0436", 0x90, 0x100000001}, {&(0x7f00000003c0)="4ffa23c5dfd273d5ca5287ee4bffb4495cda5fccd52137f788f14dec32ca0f57afd7d5dac013c04b321208436ea615d0455cb4e1908ea998ea480433666ac5424bfc1ed7c1479fe1626e7e5b83bef2ebd8bb36b7d84b243a04454dea36d952f9bcaf17aad56d17b88dccb075070f3cf244177e640171f8e89902c60586edb6b5d08bf4d848c22fbf103e628d72a36a4532e92f77a30591ca117ac8cfbb929ca03a6c3dd211406742401a73b97e9b77054bc37ff384ce2c03e8068f3244524fa8aa5b11ed3ca3214fa0207842f3", 0xcd, 0x6}, {&(0x7f0000000300)="6461dc26329c3ecc397f3806de1c0998e589fa89b877af26faa44db14d99ed1ca2e1aa8982e6f255e93a2f08a18c25", 0x2f, 0xf4aa}, {&(0x7f00000015c0)="53cc0eb3ff98d40632a35efe5206583281e01e129513369982149f19b2f86360120c1207d585674dbb95f71c22917b3f0be7ca551dfd7498f7cef4f27a2bcdf4928b2f83b3d3264e17c5f4d944408d18f7c49a7bfdd499339da8c54d1aedf8fba3c9fd24723475098a9325c9a3ce6eae885737fcb7109576873af1a87fd95eeb36f04b4b7749133a7ed801d9ab5c428fdb5529aec09fd5c391f20812487ddeb1a5d9efadc8d71284bc83edc5826803ad30892ac205447d14bf060a3657fa98a5599511f4c6ae998787da0ca06c4a9ee473e5cfac7aa6742fb9405183922d434150abb594fb4c5b85394a77f300f51995e89fa4bb2d37492891ff4cb998181af55a5aeeb0e06320c393e4bc9e39c980747726ac7a00e9fee6ab14646452d02f7059ead2fdae96b624706636d895f7fccaf3682e8266c16d1eb509d6894335a5a0dbc960624bab01aa6bdfb9dfcc54191cc1e185524892a59924e1177bc78f3f4162539efa47d2f5d02a259a12394db8085352a0d3fe33473655bda52e0c1175837fceb3ecde489e3f0e7283f6dce543242e81ec69233890b31be04780352f1b357bb411606599ebf9fd963755fc7e5630ab628907579d44293c494f9d3b897840a075a1a82706b676fd5809d13bdee84f5b292105cd0f70c94798196f2edfee0829a5cfff231eab06facbba1a534ebfdfe28a18f3660c8dc3c87964ebac7f90909b346224aeb106752b7906dbecdc6b6a9d04b6009e1d064113340435e02d7806d8ac07b9a9644adb0cdeb0a2308b4f67763806db95931fb1ad29dee6fe8f9c4a7c41021c9f09a218a738efc9de2c6fd5a87c568656973407f66a51a58cc9436ce9d09584eb1d99d83d82e06a8220c2c1228066340d7e6c78e5c93e4c0a9daecb1565597659658003cb4cd9c7bf8851816b4924d1e952e0960e0364fd21a9dad5af5d059f3d4987a77810ba8bc1c24712fa152f0e34ffcc88a1c2e35143f57af9f9a886fc3bcda7cfbc6112f36ca9370097d87158b9bc7c3eb1ee0188aa9aca1e3fa675984ee149eea14872c5cc716fc95e5353909ef9e13df802dd0397310065b9d137e1ca79914946b53fe653b02cc11ac5f667682cc6c57b36af5ed68581c4ffaff97cae38a58e1c1fd4717f7f11ececa858825f1e93041b5e6243d074cca0132ccc0127f11858fb241cdedb172485e920fd2f54e8313417f4f188e2f921ca30972d37e9765ac7ebb3098b6f0d3dba93964a956ee90345eca1e6323ab1901cabf47e14cac4a2dcdf1ca2d3440767a13443e8c037c684360ca2d61dfd64282c4acbac6f7ceafd4c76c7e230523bc59cb735af4e32e3e3ab89908c821b0104a966990f77e12ad0f6ae3bd41d9ffbfdcd4c9a7c842f8303fc8c628f1f05e12db6cf4ac44fa157fb8bb034e4dd6eeebff8a02c1099d1df9465cfe9c9a7f4e7a6ea7d70b3b9298af2ded32f57da81ee61abc842d98f7f0fa3cd9296537a70cbf0cd36bb6e1d6e1fa2c31e8507eb3cbed4dced21b5c78b1e01ec27358e03506e873b92bca77ca00b248dcfd679b5919053af2b2c1f330eb5b4e0d16010c95d6ca8c0b94b45abe05b5e5cad1dd0de644d64bfcfe797cc55f0b86dfbefe8eab8e71416679b4ff4fab8c410239d4417be8a190754b2d014a8ea765005bd02a063e051e3e3366088c9dadf2b6efc6cb5496c3ad1a9a1520207b0f2f4b7c76c6ffa95a8af6d4cb99a6bcbbb202d6afa0ea3dec2272acccd1df54da3b5c0ed88dfbb4dc71333a510d5eab086cf49662a4ea756639800f31cada281ee098e1531068749c36f55a5cc4de258860d768a748a6a3bfaa1ffad7fe8b8f51394a1b7819bd0fce85b544e3e145d26de5f2fa58abf23a7cc87a5a81427daeb5d54b2200eb18607dd148263b904a8d50da3359afa5b74bf37e68ee64c467581481c8fadda11e691f60d81630de9ac9ffefb96104763798a2dc386afb3add8a620da925d7ba663e611636fc8634604fa7fd48dd0606869cad300bfbf1dae128dbde06f85e1158b8a2b2d3320b4f705c0427175229cddb888653a04e065b471fb0ef62060844eae6b376a69d6d93c796178dda7c052db7c38503b45b7e227846f10a8c2149c35c034fa6e1ba8e098e2982a82d162c1cce722eefb561b66489c6ee693721f8327b3d083ae64ac6398989fce64d0714683424de57ba405f3fe31c6030f9d020d908b6fe5603a0f24601389ecc1cf76d42097cdc934f6d0d36e9761236ac2bfc58fa1515e9cd269f7b57fd5760d8897fe7ca046ff7d4093fc8ae33c3bdc8cfe41ef421ba9b556429f75d067601b4ce7885c00483dbe4f5af38cf94f6d9092e98bb72f6957647ff5cd22cd7b6a3f5f9a49b86537c3ff85248fef6506e6a60a1cd4b1d6f10566bc663cbdba361b8cb6e93b72a5df3a56595253c3adbaa114d185ebf94a61481e86498c450fcf58bc14f03ee99c122b065101a22e2c31cf74cd8faa0bc3904eb7d694acdce048803446062b5bc0d93b4e20ebbc898258e83040d40324ac3806d231b7a42f227b9a558fded4cc94eea22c4fb6ae6a498a93852c3de04019eafc52c85ea05fcaede631799811b06e4d960f2d072c1aaeb63eacaf5855906d5ee0fcda06a5be1e1d306cd0ed0e6ce604e95e8fee179a376edf0523ba9e85c664b555220de0dfe3694ab1670188ac2b3dbca963d62a586be4fc02d3ce835858e9a3910d8e6e50b3d7af9c361ca9ae5ffbf1fd0c931ca70e2acf1c5f6d4cd0c0424b46633e2838c572a91b40057749710ed7934c09adb23f0253ab3a91fa21049becbbb9673c0062abb5372519e964837825cfcd3af764ec30a9eb199097a1d0ae769acfb547a728ab065d452ef713d597910d77f443be6a9d28efba271cb7e5eb066e6fd5e3c249c4c95d52dcb1bcac12730bb2966c152b3171bab5142d8338cb590b0328f228ccc1683b457f195d796925420aaa8624cedb96a94616cdd1e568bbb2b80e9f0fb2d838100f70243db35c5a3718404e412c05b1a38c5314c23d6ab24d0bf387b03905d2b077693de0d2abdf5a5b160c12a5e779e7b47491131c109df6b987363de157a6cc78a8ef1b26211d9a62e1fd05b1d642725bfbac4bffbd98c36604489c7d843857b45de9ec16bfc08cd95fc90c74004f361982f4ba641bc42ed6eb7e7e1aa01ea093c2edfb6942593c15acf33550d03c4721b0d018cedbdca4c49b5cc4df576f08856349fcd893aefbbe5fa5acad0e52117919dfcd04dafd4e74b3b1fdf5852adfd9f59ac196204260c1c398907cebd99be33ed5fc1ef530fa543edc7be583ed86aaf3feca9663d1aa0da6571e599c3535caef8adceec720fcd6b786676d4f0fdcb071718eaa20b7dc9e759722679b0979e41395d175b92e8befbc7071bdc75a41826120a9b0df960203ba5ed03acd8affed58aa57cacefea7b8fb76d6ff8c19f380c5250061b320cbfee6a2e4f320045524ce385d7a071df8a0079f1b23e243135f6a689350e91c28b27e9e800a5d8a5b1252e2af50cb15e399ba3ead76bfb2b638a22f1ff721c427040044ea6216a2f16e161a45e40dd367ca83fda70dff6d7263ca5f3014bfd8e837e1426aefaf74cf75d133093f24d9113ae7976a1f572a9216f16250dcdc6e49572166f10049316570d3169f5d83dbfbc7fdc3fb3c3123feb5cca2597443c5fe344ca3c9ac8e6e07174194ce780dfda060544d7fca60f97a63c20360737fd598f11a76f005963fc904cc295779b18f27b28237e0e731f95c5596d042e3e9c5e1225bd29ba22f811055afe5597509eb9a2bf6e22b91a309d07e06b523c0f01009523f2044b295355f094e970a691d65d9d99ef554bd2c3013c6490bebb9d43f3638ef49cc21d486d067732ca5fd0237271b392ed885dd0d01c54f32b45b302571f9a6cce394f0a6672bc9b54b3095187daf3b3e254108e21a995d32406601a73548c788af7e4f71c86d10155eeeac833fec807ec0ef2707282c5fbe49c9ffb1b37004f40c6b6e8e44150babc76ca00b4435d69f80911ee9c4275ecf80e1b7bff0a8bb3313cb787944ae86e5713551e78a99911183201c97f36a603e6d622609bcff0601fb8e1c7173944390083b71cd4a4ba2186b76307518bf9e8dbf77bc1250ea4a13b4ccc0cddc9a2b92ee3813e3191ffed7b71e8fb52b0354797bbc46b4f84082153bc7c7d8d3c009e3a3ebe0ede7c0d9a68d94c272e5d17bdc422a20f9044e70c05cf0c7a615275b1a81a5e85f2ef2a96006937c150831871ddc8593053ae17a0969a610dcfb596fa6fc835ad7de6c6f7dcb70aee3262d50ca16fe5060176351203146455d06e9d2bbac4884f9483de7e3ac92c163d032d5a365480ad435bd8a00891d7a83197a0f0f0e14dfe34b6daeb16acb1e25c6e6442ba3e930c7104579c00196331058db42a3b38eb51e8a73a662401338eadd0e0db6f9300d391f6cdbfc003295eb0dc59d6a7d923b3744a497702053b9af8865f6946ce5a9ba246bb19318b4a795e6ecd53deb4252b7d94eae4650e6efbe82a93d850732fd121766c3c883468c96cd6d9822f289bae7154d8d02df9cc1413c96c3695723c078de0237c9ab23d38c76b2fad356f4ba47ac878651a78ee923fbabf79dfe6a6aca8189c5440335148c6bb816e092e5712e3031c3a59a0cafe15b020f9367ec94642a1d8cb42f61a50ded74c45a3333642a3ab559a6de5e7659234ff4bd758087ba323787b305801891ca445f7ba0687f32f06eec6286662b7c4869adc46b3e3a50dcf13992465a728550909b905c3901ae774b839e010a784eaab60d8309b536ea6652fc55e090850158ed246ca4a6b44d269fea9cec2839bd186d83e6337d43efa74898a3dc8fe1fdc59311be000cf1eeeffb0b3224379e6cbd44bb561fa20243609581c212c85f336d088eaeba581a87aba97846e89fde80012dab0684189276e71b4f8991fc0d35d58026cca4c8f10bc4801aa240db99eb4b1540b94a12060b32f79b3b1d685bc6bd273ee6d5124d84ea80607c6392eb4090bf32929dd99a696eb346ff6c61e583a165e6b37e48da7c2503c41948f1d38bde68510685542d6978aa76b596a5048c817f6a75625ddfb5addb988e46819621c351613b01346eba146a775509974326d5b810a947c61618bd4c6e0502f43e98b2a05ab28fad9a1812c96cb5e547677f377c71b9cb8eaf7e284d36a9e7a2f356342d908ab4af7be90ab1a073b966ab5238277d92fa13608e5c56fa026efbb4a8e30abfb4a731d4013368bb0dc85847f64700e86ee4d4c08db606f8c1d54bb33d427bbf88dfc79239f387a579787d8beb459e982998c04fd61a7f8c6fdc4aac959acc1592b14e83167676143257e8717fd720532bfc9dcae059e03deb210c26dd6ffaac4618d32465eaad48e4c3ef29b8ad28e1241c57c1afb7fcb6259b2ea3211965cf3dd63fc1b87e5ccd703d1c7d493ed83ba7fa3f9cd9f0fffb1d4480c80037781d69e0cc28613f72209bc45b0e01d9da32f42172629febd70f1261b8789f29e54b7796dc2a403649019d66a8022b0d77fa8ee5f4d7d4ce6b6f4a145ba18bcf2c39e6395249e1b6af003b290034bd9a93a931f334e16b58f71427dae4e2f4bbe5ebe8d135633d8096e8415de08004387f9a1beea9e04b4db707bd1741a7f2ad5483f2231abe26dfb35bd9515b4d0b2a67e7632e9314b9d8de2391a1b23ba358c984cca6dcaff71fb22268febe477129ab8b159fa23d721182a83969f6542ec4927772cdffe02a75daa34fb3814094e6fea9669f335bcf0e", 0x1000, 0x10001}, {&(0x7f00000004c0)="2e663caecda9ca06854722a96379a23f317305c74a863898fe0d4cd607c85f7e9286ba014aced08c3a19869f468627765ff37b2d5012e2a0ef832eb09b9ec00b6dcfcdbbdcd05231d77c74463b19040f98cabf70584f43fb63", 0x59, 0x3f}, {&(0x7f00000025c0)="e2135d507e442106ef18e7220a3aa19c441908f6bd4e3e47bdc021f70ffccfaa6561eef5d6d04d1dbe1e0bb8accb8f33aee74e2089ee9beb369c7933a593312ac888c2f214b96cec047ec1de6e1e0e4f80d399e774165c437b45b18239bbf29c13a97c1f6a7952dcf84d0473cbd55b7fdf076b0c4d1ab59163b3662b7ce960", 0x7f, 0xffffffffffffd269}], 0x20000, &(0x7f0000002780)={[{@type={'type', 0x3d, "8c97316d"}}, {@quiet='quiet'}, {@iocharset={'iocharset', 0x3d, 'cp869'}}], [{@pcr={'pcr', 0x3d, 0x26}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'rodir'}}, {@fowner_eq={'fowner', 0x3d, r1}}, {@context={'context', 0x3d, 'root'}}, {@subj_role={'subj_role'}}, {@subj_user={'subj_user', 0x3d, '[nodev[-@bdev'}}, {@hash='hash'}, {@dont_appraise='dont_appraise'}]}) ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000040)={0x2, 0x725}) [ 545.823919] binder: BINDER_SET_CONTEXT_MGR already set [ 545.829438] binder: 25299:25301 ioctl 40046207 0 returned -16 [ 545.911400] input: syz1 as /devices/virtual/input/input344 05:52:15 executing program 1: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f00000001c0)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x101000, 0x0) ioctl$VIDIOC_G_TUNER(r4, 0xc054561d, &(0x7f0000000140)={0x200, "921db6debb5a04d7695b07036661976c8ab4a65e8cdb0762cb331aea8051c551", 0x2, 0x80, 0x8, 0x2, 0x1, 0x1, 0x7fffffff, 0x9}) 05:52:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x220000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:15 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = dup2(r1, r0) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000b40)="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") 05:52:15 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x6) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20ncci\x00', 0x80000, 0x0) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f00000000c0)) chdir(&(0x7f0000000000)='./file0\x00') [ 546.168619] input: syz1 as /devices/virtual/input/input345 05:52:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 546.266373] *** Guest State *** [ 546.269689] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 546.307000] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 546.337004] CR3 = 0x00000000fffbc000 05:52:15 executing program 2: syz_mount_image$minix(&(0x7f0000000000)='minix\x00', &(0x7f00000001c0)='./file0\x00', 0x8, 0x13, &(0x7f0000000180)=[{&(0x7f0000000200)="6c7b4769ddea02a2cbc1fbd241f1f01dc800dacde6e2aed536be349ef8432610d928846a8b8c029438c787aaa021171e9f5c905e84048048a60a900aa80447a2c9b54f9775518644b0024c15e2ede5d0f415d5177ea02cc1db41c059b6be2cb44345eba3365b1371", 0x68, 0x6}, {&(0x7f0000000100)="dc27bff228e389a6b339a499f0b21f247605b56c4b8d46eed4e80400000000000000ea457d1e834fa1f5ebb3e57f4d4b29a3d683a59a4abf7520d94168a9d1cd7186fbfbef43a586354c4aec000000", 0x4f, 0x5}], 0x20, 0x0) r0 = geteuid() syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={[{@rodir='rodir'}], [{@uid_eq={'uid', 0x3d, r0}}]}) [ 546.364638] input: syz1 as /devices/virtual/input/input346 [ 546.378132] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 546.411926] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 546.482836] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 546.513980] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 05:52:15 executing program 3: r0 = socket$inet(0xa, 0xa, 0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:15 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="726fe58c8d8074"]) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001740)={{{@in=@empty, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@empty}}, &(0x7f0000001840)=0xe8) syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000040)='./file0\x00', 0x6, 0xa, &(0x7f0000001640)=[{&(0x7f0000000080)="a56257f51050c24336c20296", 0xc, 0x1000200}, {&(0x7f00000000c0)="e62820042a7cefdbd57f8bf49930c815cbac444961aac0729ed5bc0f4665a81149e58d5347bfeaeba5649b5f4bcc94ed8ce8ea6d140264cfda3f2191afeb175d32dc41cdd79f19d4ac95d08e25741713b8ff011ff80fec2982a8d0c2", 0x5c, 0x7}, {&(0x7f0000000140)="1c5e986355be7f563ecb235e7ebbdacc2a300fe3d0bf50db23288605bd510a0414e52a71d7bbd21718e739e61ac771bc6a051b9ce0c41bcbf9919ce94f093ab2698d1770c5557a1e0c19e0994cce24bd2ff8bedc5f8c10b4e2495b0bd8c266930adb141503af3b011474cd4bbf949adb7a455badfccc52e7b9958283c0155273e1be42f43e886b0ad3711b87302436c9384d17", 0x93, 0xfffffffffffffffc}, {&(0x7f0000000200)="65cf9690a5cc83bf40d47ceb6f3b28c03cd22ceda1df8218cb3f5537e511adb350643d6e2eadb5dcf1294f89d75fda08607a533ad5aa1b4799b8d288137096090032e6d00ffa463c87ce5a6641b6c97773c2fd54f45f6d342f7759b01618", 0x5e, 0xffffffff7fffffff}, {&(0x7f0000000280)="5f839ed32f157236d2808e92c26410746d7ad35fab171a0ce4b8357a07816e75fa86061a644d07df25b0d45659e13ba51d99ba4579ca518bd3d7cd66963270ba87e76d0b0aa0e10486d44612efcdac785d9d3f9bf83df7ccc5189a1a4d60067b6377aa4b85d4bc8ac3b5a98fd81a0ad70358a935704d5e60e8bc20b9116a7ff4b12c4f2a7cc51fd6e738ea4fae1f032de492f1e4755db7f46b28262da2022c854d27b8adde351b0169f97fdee3", 0xad, 0x6}, {&(0x7f00000003c0)="a2e6a8fea22c1e83af1be9d0d5a6cae820eadfecf4e65f588dde663539d881b0a18a9d448a67ba65f982a4b59ba65d34df0981e6cc4468a8d3a5636ea8079d2f827e7fe2d359eb1d591edc5d0f05f7e4a5af49fd45d0cf0006a84da91ffe585be3757a1a481b651ce60a23fb6013de6ebef7e3aefa70a120e71b83d244d5c528ac13391f3d588c152331805579c92f8ad39f3e699e8bd6ce868e", 0x9a, 0x7a0a}, {&(0x7f00000005c0)="2bb1d92f4e660fcd1b1c95dac360564b81f366457e70e94b22c8866fad5bc14815c0aea3bd457baebf2bc04e5787447bb02edc2317851bd576471b230e610925f0729cb83b3773f23a0c10f18e3d5041394de35c9ac009e5d9386c90289027d92b6013e8bef1358dd0eb7fae17b3f4be37c7f9fdf47696cca2f8b1a1b56d63ac0938d33a4b205a73c1448b8413a52475ae9d839d4699311bf80976424f67e6b662d50e745665a34325f20c6aab3ebbb5ff478dfcdb36a79c643ddcf652629961823ffdaebc843fd26f8730babd7edb959c563bc70252bdb3329bf1df5400e4e0e041b01a2e580ba09f3c06df768bace23aad80759065b0cdd37945a308cf438c5a481d726f3ba2e082ddbe534074f8cb3fbe743d3fc2d389a17bc8adf4d0440e81fcfae8b3f46b6f523d2cd4768d81711c6b1a8fde6262156804a58aa0e25a1b4817c50f93d20c02428151bb0413e8de6c03626a65b4941131d6054de85b0369db549a44621624818f25be414cb254dc82bb382df395f58e37065bcd0d789bb1def0d9637ce928c21ccc7576c08b549b9659e6f23d7804ec65a6b9e93b07104d9cdb4085cacce659d3a6e8ab5d50d1e03641b8ea94e18653c1c095f313a9e0e8d382f7a9e5ab0c4d674c5dc7d53e5680c1daccdc14f1bd17541f29ba580208434f014fbd6bb7ed6310677bfa613bcc29498914567e9c01123ecebe855f595e06cd58069f51ed74b5c4b71ff4ed0514145b5b4fc5c0195ba038ddc034ce5bbd14305ba47e613b22e6680f39bf90a2cab5b0a1e3166c853840347be9400d95cadafe328f4b0f34dc2b44f3d744c90a81e6f1179d5451f0b61592804f8fe150c414904632b0d07481b02dc7b0c8ad3ea7855c429918b44b62474916946b9d0efb699d315ef6726e44b4baf754b25451f44bdfbb14f0e998be9f0a37f084d8cab1450e33112229b16b3ff9759748268c484a9b8038db46d3b1c0914036103b8429fd40492976dcca6f573f416eada6086818b0cd80ec207c78af4518ed133438eb60b8951418fc6f657f5bdfa33c5f7d78b7e1d39e96569cd2e66d86a9ca6247f12ffe57fd6abb22df26054a3969c31b0e5e4e5b54e2d6f98ad8f2a1ad71578767965359090b49ffebca2869987db2aaf1596b6c22a6d11fee558259ef8ec07583abf660bb116f7726d87c3b5a5fcbb97805877ea720b1c001afa58997df140d97db2f0f890d8ff4d038f251d49004d91b03d205847273a4fe222bf674a598f24d2881562a4c0c20bbb58476ea0bf91e7f17d5b8c03d58d484acb85f82f595af6d3c62a4caa8c3f59b01205bf2f597c0a81e48709d76d6bec29c15fec37fa32af5239e35c59bf16a5541e64f8183c39061acb879771d0cd158a65d9a0e7c2642b946088931fdd5493e947bbb8fae9f89d481b99f875290015cca2515c8df4470cb1593215968623df5a58c5532071a33282870b642924c4275a1e69a3d4c13a304e2e145043a8ee346f125506883afae07297120351efd061640ea5223f080bbed405aba298e5ebe82ffbcfd5450ca8d9ecc340ab63aae708964a63bc0bab82abf465d8e1ef90e2675c666c47e84e52822f2377ed44a26eb940916b286a2ecc1ee4c5f7783e5ae968b663265b6054863a7fdc9656d96d14560f0306eb7f7a1c4f87e4a6403d0713500c8a090a44c0016955f5400f91c98790b2d8270ebd3455bd438647b216eeb586ef064c6c771be4aaf5166374e79e654b19e577bbb1e91befaffdd166fea8b5085129db24d63cd1a8e99021d7a1a9594e849cb6b3f687851cee2b5cbc1b103fb40553fbd5def6b8cbb6695cbfd9f3c14fe87e5c2666e8b443169729a2d1f5cbb9ab5e35548e4547bbcb4af613125b707928c0a12639cbc9a0ec0be8638328d6286721f8e8e836ef972ce13f851802a30a4f08666c8b798bcbc9c243175725c8e978fafdfa483d5c7880ea1b270f4f298fe68671435d60b4cbf754c408a1d4912b6bd72ae30394cdd1a59b8821e55059ceb0dc022f3767acc0e9e5d8577dc0ef71ddd2b8bcd83b119c980fcf185b59073e4a5523770b85997f2c46ede0e881069b2fd7f5601efad615fa73de8ee9412e97b9ae6d86b5f630b7331a790845b9aa20936154186b53d11d6cfb79e54c8be0ffd3e7220a8e2123b57f13eccc53e0f319609a4be60d629216f17525242986fc5985654033d001a60b05a9b5a66ee0a9155e4d667452afeedf1e9e2e9b739f0b561f84ff2d16e260ec2c53ee05f076ef69c0e479ac10325901cc85f45d8c834e92cac87e86dd2f3390e06f06d61b4bd20d53046b86de3ebc1e42d5367c3c1b5d1307d29ed2cb827d9a96953a6edffd8398a24b9d097e58413763195825f87246052a00f969fb1f4391e7414e2107c13879ca80b1573be03199842a914bf254c975cc418ec4586ad705f270f1bea93db063a4b6ad1bc56e17b89294342283474a573c8b005f8edb19baebe1fc1ce9c2b9e4faeff9cdeb4c20b083c96152755a0fa9239a4cc392779358f2034bb6ec6fdbfd89dcf166ca8f9a89aabf137e95eb71a5e187a9091a632fe5ad39274c02df0deb5fc1c1b74fb4bcab21692ead44d42bb30ad5f9286d7e9f8ecce0052d3438a76c8ffab9c559f88b5a7c4e2b9faf59b563f677986023a54f472d19320f7dbc4753f6c69e4d8d95faf9fa3d1ed0c9dc9bca7bbf3ac27f9271c2a56c88086207c4f8713d372d18133e48e58cb84cba4066ac595361d6d538093d334b7ceb5ece9aad2722e9e190daa6708326c66623bacb878230ed3cc0c7ac0b5bd741f871bb4e4270ba4bc701b4d367f01d9800fdd2cda6fa260a0a8c8a3a0f1d66acd6072472a63e576e13f45cacbf467413d16d33917ac10d0f3135880d1aa66c10df1354dbed7bec5724fea4143b68c12b970ff3ae2652bd540cfc63feb6d098900c0fac86918de6e7b803e0791a698bc8109d3176b789cd5887ad706befb5aa716456eef4bf145efe647c3e9bfc8a46d541b925387b53a1f537f68dadfa6e591a8f70a263160e426da5d2c5bc30bc524d6b967a15ccb936fa7e5f23a10093bfe38db162e1ea07e2339d725e718050d3f80ba76d5de48d605a4e0f88ff6a9cc382b8b3a9ba2780d2ff82093e49d5c327a9096e9d616565a5a9c710d47b96df89fcd1a205b82e9bedc7cb7b8cd5eee082438e03cede56150f8d07598f4f6a0d2a7c77fe816b7fe2872f7862cdb19d28759c95584d299cb727b1693337ee93f094951ba2a5bd5bfb72543b117711913537a81333ecda982efaa0af8fc5ba06ac5a7fd4d4b06742ecffd9296b041c914b04cb23434a03b32c9e4676831dab550c55a8b1d347167197839b33c3de30ffa926fce6ce66981859612280ec0f978e0fd5fdb1a19512c2584518bfc7810758b981c7b07af25854ada74b780902ab6979e39e504a9455759e8afe3a230bcec279b25d3861ed25fcc0010a910c01ed3e7056013c344ed9dddf3735b4468ad37ba8b8533212791da0af29432327487576ff053716c5b5f1682c03f3376d0bce75d3fe5ab6be3dc023ddc6b0375ded4f8b4b689ab585d8c74f835c2c952a87c824f6b57736b8652dc4c3545df4b07c0af4d89550eb63e2fa50bfa1195233e9b871bac6fac8c67e3d3f8ce8bf2502bd827d68772019ce822f4b427ac1b254632daa14445b7da7a2675168e70a55a395133a07e7dac247b5f0421a9ab23ac33fccf1c9103715f564b1d77ea6c4c0cbc0e8d75bca06003b9a4403f4a0861134f04b005f2b7cfdb54fbb758fbc520513b637d7f1598dc75d0193e63b855f5f68821d04e541f42b91b15bef32e702abba9eeb846ceb16b41756ac4a4bbe7586cfa7fe777545a7ba517cca2d8fc47f3c41f48541c4c347d3d4759f1bf30cdf15e8d38931c93c60cd80db82baaf1672425b0e1c5225b78c1c29a027d81611642295cf7da06f43643212e3bd54bfedaa3c2e29f254f8897e3ae0628cbe97c2d657230a41de2c719ecf88d5585ff669682a26bf7097fba7a89cce8e9cc91d54a42aa1d8ac630fbbf533e8acd8445acf721b41a3dd3ad490bc59ff131249d8885f6d2365223baf948d231f7152a779cbf3e572b1d3cd866e3bd9bba2c0bd59d2e1d647ed622e1f03ed39fd1632730ea55005e6fef6e75adef041be1c82986558d5bd09305782ecbc7cd11160b4b08471fbe26d03e7295a8df3d772a822f362ce2ad679fb9e94ab69d1d51aaf7f05ab7e4f51966725fe5d7307494f743f2272988436bd594d3ed39c73b2c63cda3cb34e84e828843cf315679cab61e64111359d50a54e29d0861482fffe095f9cf7e920a27024830dfdf6607fa880fcc19c8bf5a1e0b701959b1d5bbb80b3fe133be7dae5fdafa87130d3538854758a3d7453e990d535f5254496466e56da9ea27a9fcd8c0217e163f7db9a618b0cbfec6b908764aca319d8c3e04bd774bf2cd7e59e368d1fd93e5a0ac1008fe11609c21248832e37cf2b238e9471270247e8e25d9618f7e493ca6acaa53f2dbbcc2c5174edd067b47914991b2bb64ca7e4157dfb7f7fbe79521c7a5f7ab78eb49701a2cf4b36accf2239f5b0399193e93c248fa19a279ee69762c2ea6ea17a1d7f6eb373b6218f8441d1678529ca60cc990ae9bedec49da7fcf5214e885153d0b45a1315c2129ded6a3599224519932e6cbdc5840848390b3439ae4d712b470754b599e8a65ea7721812fa8343ae2ad1154b1a4150fb21e3d54c435a5e552f9006430a0638c6f0ded138da4a7d3421193ff834dc9ad63bfbd342575b0c226288070266c88bf3e011d19581c33b4fdc846eca04ac494ab382c6956ec15d6e76b7e73beb6fa8749db01a2b0c767c6fd018c66e69c87ba0ad54e73fc31f264d1de580e4b20fa24a3399bd402d6a869a7316589460ac446febb968464f7dbbe8004bbb066f4673dedcd1ee745829f407eaae25e9a91c9b4f1c1f70f6078c1e656b5f9c0ce1e9747c0dd6c3f990e1ee4beb6723a1e1c2291637767348b8c2542a1c2ed92ba35f17b471a6e844880dfb05327541791a9787ce04faf1515ef3b038f105d69fa13842231eb2f6c2de49a7430051b6c3bb4556f5b03dd94e1147f64ae77a55547d8ce9e531df3d228b16f6d217f5ccd08fcd44cdbf19631e3bffa219ef930f81196a79eb7b8a15b3d86bedfc106be7a3fa5fe92e641494ef938833bae85d7120569091eb2b6a945c308c2d18ff2aa5fa77d34a9e723d589b5bdfda04b45592f3e2cdb21c75d35a0c84596584a3f884335f41cd2e5c5b8b2137f904e8257fc644f00123b91c9ec3311a3fb9835cbf6882ec0d7d00feb600387f292a83e900a7f7fbe1afc976eb4aa4749bfd4577b3487e5a87f27c50a1912ec436110c07a7837516df9290dab09b1c63e478a0c20044471722dec63dc3c352a3f2c589c9c976e43855de348d3734e701988544222d3a66313b6fd109b625c9bd4cfb11607fb07a477176e679f20f30c34b12670780854f134c41779d2ed46e6113784aa2dc4fefe641efe2ab295efc40711945384c40c50511b2a2f6afb3b3f1499725036511818ca0be80a08c279f72d7265e9c0da88b71b79bb3df00b6d7b69ed14ca8f57db000b09a4b6d536632d5d913fb2df45dc7d07d93ee085925a157908bc81caafafafbeb45bd403df11ce46338d17c9449dae1394bd74bd3342202679e303b33fb53f284720ab108d11cbefb890a9cbf7f11b077924d1e5e2b0dc3aad91b3af897fa8dfcd236061de1be994ad08412503bf4116b3f7e4a32f6da8a1fdc7", 0x1000, 0x2}, {&(0x7f0000000480)="1aba81c481b8ca7fab027ffa31000d3a4ea540e3d3c63200de0a3ce3a1c4fb5b77da7ddbfb6ab9b98d6788411a23c7087be6cfd4ac80317653e85e0bc289e3b00c32e75735c7c6c18aabfe4456a877e0fe4dd9c7abdfff0ba0a5b1edbf20d5734c155ed72920d989c9786ca38dcc6e3966ebe79ca48e769121dd8e16216185b9ccd930c2331fead60f93275d5fd8d557e4964c071923287e2f38e2d7567324a590f681e0cfe1d459c9c33f44ef54ad", 0xaf}, {&(0x7f00000015c0)="5182e213eedc4a07b73247741d02f74be2f709d6ae13e63274d12e44819a43cec88f04d502fb351df62941820686aaf67292f7d03bf2bf74c5b2b2e81913f19b7ae32f603e8953c05451", 0x4a, 0xe2}, {&(0x7f0000000540)="93854fff2a11a9bf061b854c734b72be3c0dfe7aef1a09d1bd5aeb2a1c8606575a3ec4c84943222182f490c73eccca7908e0", 0x32, 0x8}], 0x0, &(0x7f0000001880)={[{@mode={'mode'}}, {@hide='hide'}, {@sbsector={'sbsector', 0x3d, 0x8}}, {@map_acorn='map=acorn'}, {@map_normal='map=normal'}], [{@appraise_type='appraise_type=imasig'}, {@fowner_lt={'fowner<', r0}}]}) getresgid(&(0x7f0000001900), &(0x7f0000001940), &(0x7f0000001980)) 05:52:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = accept4$ax25(0xffffffffffffffff, &(0x7f0000000080)={{0x3, @bcast}, [@remote, @default, @null, @rose, @remote, @default, @remote, @bcast]}, &(0x7f0000000000)=0x48, 0x800) getpeername$ax25(r1, &(0x7f0000000100)={{0x3, @netrom}, [@default, @bcast, @rose, @default, @rose, @bcast, @default]}, &(0x7f0000000180)=0x48) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) ioctl$KVM_GET_DEBUGREGS(r3, 0x8080aea1, &(0x7f0000000300)) stat(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$f2fs(&(0x7f0000000480)='f2fs\x00', &(0x7f00000004c0)='./file0\x00', 0x40, 0x1, &(0x7f0000000740)=[{&(0x7f0000000700)="54f3f168369f7a573f3720561e42c0144bed72d6b8dd38157551e05f5e7e", 0x1e, 0x8}], 0x10000, &(0x7f0000000840)={[{@lfs_mode='mode=lfs'}, {@fsync_mode_strict='fsync_mode=strict'}, {@extent_cache='extent_cache'}, {@usrjquota={'usrjquota', 0x3d, 'veth1_to_bond\x00'}}, {@prjjquota={'prjjquota', 0x3d, '/dev/qat_adf_ctl\x00'}}, {@lazytime='lazytime'}, {@data_flush='data_flush'}, {@norecovery='norecovery'}], [{@subj_user={'subj_user', 0x3d, 'udp:syz1\x00'}}, {@dont_measure='dont_measure'}, {@pcr={'pcr', 0x3d, 0x34}}, {@subj_type={'subj_type', 0x3d, 'vmnet0'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ib\x00'}}, {@uid_gt={'uid>', r4}}, {@audit='audit'}]}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) r6 = fcntl$getown(r2, 0x9) r7 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x2000, 0x0) kcmp$KCMP_EPOLL_TFD(r5, r6, 0x7, r1, &(0x7f0000000280)={r7, r0}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) connect$bt_sco(r3, &(0x7f0000000940)={0x1f, {0x89, 0x0, 0x3f, 0x7, 0x8, 0x10000}}, 0x8) mlockall(0x2) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r7, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000540)={0x1a8, r8, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x58, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x200}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8daa}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}]}, @TIPC_NLA_MEDIA={0x8c, 0x5, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x11f1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xcf}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1a82}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100000001}]}]}, @TIPC_NLA_BEARER={0xb0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}]}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x69}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x43}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc55}]}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x50e}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'ib', 0x3a, 'veth1_to_bond\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'tunl0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}]}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x80}, 0x8000) 05:52:15 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = dup2(r1, r0) ioctl$TIOCLINUX4(r2, 0x541c, &(0x7f0000000080)) [ 546.538399] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 546.576091] input: syz1 as /devices/virtual/input/input347 [ 546.598527] F2FS-fs (loop4): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 546.614239] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 546.617227] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 546.626003] F2FS-fs (loop4): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 546.646809] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 546.647935] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 546.661566] F2FS-fs (loop4): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 546.669735] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 546.670949] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 546.677701] F2FS-fs (loop4): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 546.692783] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 546.700978] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 546.704285] binder: 25337:25364 ioctl 5607 0 returned -22 [ 546.726769] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 546.735963] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 546.759599] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 546.791296] F2FS-fs (loop4): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 546.813647] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 546.816675] binder: BINDER_SET_CONTEXT_MGR already set [ 546.826618] binder: 25337:25370 ioctl 40046207 0 returned -16 [ 546.830348] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 546.842836] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 546.849391] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 546.855743] binder: 25337:25370 ioctl 5607 0 returned -22 [ 546.857847] Interruptibility = 00000000 ActivityState = 00000000 [ 546.868514] binder: BINDER_SET_CONTEXT_MGR already set [ 546.868725] *** Host State *** [ 546.877254] RIP = 0xffffffff81174990 RSP = 0xffff888063fff998 [ 546.879427] binder: 25337:25374 ioctl 40046207 0 returned -16 [ 546.883419] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 546.905710] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 05:52:16 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) fcntl$getflags(r0, 0x401) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) write$USERIO_CMD_REGISTER(r1, &(0x7f0000000040)={0x0, 0x800}, 0x2) 05:52:16 executing program 2: syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000040)='./file0\x00', 0x8000, 0x6, &(0x7f00000005c0)=[{&(0x7f0000000080)="8e4fd4fbf2bd1fe47a46a90014575db95f955ba360984805bdb76ca3ed77936580726f377f8a7e6039f7c2982e8914f23c1988047be4c7a05f0841e31ade783df7350ac714619c24ff2f13c280eaa17d282087b6c82ae138cf08faf8a5dc38675411c602f413f7688b873de6d33a8f27723254d0932c503b2cdb1b8a33fe1982693fdbb79f0bc765ca17b906e3be6ca81766838260107a5cecd50c9e0c9f02aa3b14d4b9565d28", 0xa7, 0xcd}, {&(0x7f0000000140)="e4d18a95adefd54df59f21dc21746e9516540169b594ef69c5465e8aa61a1b4c2e4fad02c373252cb77df228128e960f0c60c371dbb85bda4f938660a5a86deb0632d01af7fc3d7006e21b8080aeced4a4f5215c5ed8", 0x56, 0x7}, {&(0x7f00000001c0)="bd0ffc1bdb6533d31cddf96d44be15a3a123cbf3c681433f0426bf97df94fbb90ed8191f4c4ca0fab3aa6837488beaf58d61e94921afd50b9508ef1f8f4123ba70519de3872b8ca7e442707dc8f252066f3e4ecec4bea508a07433bbb21be8d4efe3ef999c86e305eb5ed960945decf9b96c03f9a177d66ad7fb18cb30b01e85691c10abaac2e13d4a0239f7c2e7f4f9a232315bc94f9c9652abf43f1b364b285f", 0xa1, 0x9}, {&(0x7f0000000280)="986ecc761a23cf994381ee00a3d8a61af96321bfb4db2fda9c64899fe7115b54e0b175701da09d4e6f645f6f4fd1a2938bb2f2f73085d2e9a515b2ff2286b3f175a32396d106730322dc24bb1a1b3e387972318f63085eed098ad32fcdc7e284959d831e7a99dadaf390e7cf9fc2ddee461acd840d143289eba508a995cd8d1ee7dd665c99797adec165feb752ec1317", 0x90, 0x3}, {&(0x7f00000003c0)="10525158bccbb7dc11d6b63eabf1433f12e218e0ecb8831e49c7c8bdb627c806aa63289ee42a671e3e50a531ea275509606854636209d4066e834c97d1232d8c760eaca81c82a5f2bb31785b210c14cafcfda61346b571d742d96e01690b8467df9a205b52e28017c6788a7bfc3914db2760c6b468c282cab88700fa54b401f609296bf32154736cd26a358ffcdb3e0f2ef41ecdc97a9eb0671b457c8d2924845bbb177bc5f2d231b20de79ec703cf9172eb4f50c7d4dbdd101ab18bb2e01b4bcae078c1f646afc82e0ec667d1b1402ad25b9fa02731377c7674ff63c97c0440f4f63f", 0xe3, 0x7}, {&(0x7f00000004c0)="72d14a763626c11ffab2686c06a8457ac22cf9e2", 0x14, 0x3ff}], 0x104040, &(0x7f0000000680)={[{@lockproto_nolock='lockproto=lock_nolock'}, {@loccookie='loccookie'}, {@nobarrier='nobarrier'}, {@acl='acl'}, {@norecovery='norecovery'}], [{@appraise='appraise'}, {@dont_hash='dont_hash'}, {@seclabel='seclabel'}, {@smackfsdef={'smackfsdef', 0x3d, 'rodir'}}, {@audit='audit'}, {@defcontext={'defcontext', 0x3d, 'system_u'}}]}) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000500)='/dev/zero\x00', 0x4040, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000002080)={0x0, @dev, @broadcast}, &(0x7f00000020c0)=0xc) r2 = syz_open_dev$sndpcmp(&(0x7f0000006100)='/dev/snd/pcmC#D#p\x00', 0x5, 0x100) sendmmsg(r0, &(0x7f0000007680)=[{{&(0x7f0000000740)=@pptp={0x18, 0x2, {0x2, @multicast2}}, 0x80, &(0x7f0000000b40)=[{&(0x7f00000007c0)="df5c0d2319d8f7f5c9cc57b088c32197ea6230ce3b4e9b899b714119bb854aecc95b5e8bd71ee9ef1f108888b83bab462d1822e9ca0a506051eea587b61661618eb2a0fbb0762c6595982bdd43cd8300c0acf9c3784a05c9788b5cdcfb69553c3e751e1d278eec7245158e68845e0227b9fd4ef8f1d2424bd09c796b757fe727a6d5af", 0x83}, {&(0x7f0000000880)="cf7864ceecc9c2912f861bade01bc637e43e88398d8b5c28ea6f806a1a53af5855ae0e071f351102066a02d0491fccd6d2f9d4ef20f81ee89d58fe0055fd41fe6f68864bc5a55d8187a361ec", 0x4c}, {&(0x7f0000000540)="1db256c315c0acab51afbf5daee750", 0xf}, {&(0x7f0000000900)="add37e2fda9d54f44543", 0xa}, {&(0x7f0000000940)="574ed6d8b132f28c8e00cb6dd68af901d07d3739c69cc2c173b01ac33c64401d756b30b4c181a868863e01cd892ea143b1532f87411f908be183420013926208ee00bdcd19862ec6d95d6d966d832182511f6db26925f5130b03ad3284bb3e16095c1e49e73a8be60fbb28a40dd477f6c11e5e4b7fea629fb6696abe48c3dcfeb747ea3f55c52c54e00fd9fe61ced87658b786aa0e536731f376793bdba7cbb8defa40f0cdd83abf34f7212b625abc0f10e405aeb927e9f4a7a1a47799a4ee750fc7d41ba1e1", 0xc6}, {&(0x7f0000000a40)="f8a0ce6ed162bc0b1c2799ceb0cc3012cf744f38194b20debac065ae3514f4b323e95854a1172382aebeda87fa913620abb4793c61eedc46184b402b75047fef1026", 0x42}, {&(0x7f0000000ac0)="3d69e651013e45b8da3706502dc550d0a91b4c7de968c03380d11687aefeb6756ad3fc9b627e92e8975c95272116dafe149d668f87ead92d76cab2a2b9447651fe0ad61e1c2232872d512be99a7d15909239bbd3931e6113f4ae2cf7868d8e91de57ef0051e8153fea13a9305213073ea3b3455ca8f9bdc1031d", 0x7a}], 0x7, &(0x7f0000000bc0)=[{0xf0, 0xff, 0x3f, "4de48f8c55071683b7a380a817d899b3da1e4754d708ed7ca37b2e0a5fd588f8b67d8cb7f8e1d85b1d355915ae7e391604e45efddee2ecb8c11504fb3919302f49bd2f45205acbbdc9538e4d68f736471c42b0f9f71b25e8cfda6cad3325349bffd686e2aa050535bddd5b67ed47131586ee5e0a1b35e356b59e359cc75a484aab1582f67a280f05990940b84bd52e65b0f820a3a82cc5a6cdea19bce56fb386d8dd539d2a0fea079c79f0aff22593529543ae45e77ec4c24fed2a703d5a690908131fa7e7fc5a1e175659adf6ce552513bb52f75670080e9163b6f30c"}, {0x108, 0xff, 0xfffffffffffffff8, "cfaf54c320b5126abea87152abfddc42a881540674e4ea184d4de5a168016ac77cae3db4d96e51907ea42642fc22c28b380609c2ee5b81fd8ec7e621f5875cc42b93acd84d54470f14dec638b55c06b65052de54b8612e689cb5ba4ec9bb26a5c9b6795dee3b8fdf5d832acd09438129a433220a15f8764a9d780fb92a34d3c3f0a0add4ac9e00fd6e5a33cea80e0c5fc244cdc26015a76efc092e900382b5d9d2ccc46509b8683b821bee0e23c4e8fa72c1a52667511986fa96c2c895f3e14611c6aca5da2294a4c77b8c013df67fb1022b1e28af897a202589b5ef63bf23e0b39e960576b068d06d88f82346e6a37797"}, {0x70, 0x100, 0x3, "190c80bda740b129dee0a05bcd8d3af5ebee0d4570395ca2acf0259e47fb021b3e9974c1d8db5646e8e48d5ebe178e18ff875aac77bbc687855bd0fca1d8bdd0d010dd7a38531d71c2dc550cbd95f23df4dda88216eda38382ad293669"}, {0x58, 0x6, 0x3, "5903973bfcb11fef6cbadabba5fed5ccf47dd31b94f78b6c2d4213b622115a05e047b3cb22ed922a25bcc06491322150666ccfb8348126f9b4ece7ebc789e6687df79ee371"}, {0x80, 0x100, 0x7f, "9be8d0c09f23e99885404b332e7d90a6c3c54ff28e5e8861a23d46bcc0b018c915eb3259d8ff562fa49e016fab42fcb56edf868615f69c8fa713e8c00a98a27a9651d332cdd0f9b37c830bee9e6ef6a810a1c8b6f3301aa137287dbdb4ac834d0e9c439ac60f0e5466174989191d"}, {0xa0, 0x10b, 0x7fff, "46c98380f3869a2a43715821e8c7c720a238a76e570796d31ce032529f51c6ec7922c7674e8346e48128b5e9afc7e16a599c3b976c74e59df746a2623ca1282f6b7a34f4680b0cc7ae090b1fe6ca6d3c515b43bd0fc5527b3131ad89e6880a11548510d9e59c930be909a126a3ea21f20bddb6ebedf74ce312441d0c7b903bd87a259d48cd4036ba5b4b56459f47eb73"}, {0x40, 0x11f, 0x6, "02461caf0d5577afa734d9e5d064ea05a926dab1f770f09473086ac2bfdef7d9fcc58ad76ca97db8a2befa3ca2e7"}, {0x58, 0x6, 0x9, "c07275465ab6dceb360c7bce6a912eb387686869b5c72f080db61537faf113b096f29413ba421dbd5bb4d6cff219877f99ce32a3f4fe42e45c6c572346352c43a4d339"}, {0x1010, 0x10b, 0x1, "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"}], 0x1488}}, {{&(0x7f0000002100)=@xdp={0x2c, 0x3, r1, 0x1a}, 0x80, &(0x7f0000002480)=[{&(0x7f0000002180)="d1db8f6179150a1aae5a55f13df0f7a13c9e6f0549b1b249852b18057201f6efc8979bda187e1e566f3be4b7b53015b0f77b7f0901656e21393972f5730b3dc8eebc9121c1b0ff6974917f8ed72414fed792e9827063bae812afe01f21b844fc19380effaf3c76bb36caf8d90f90e28dba9588a70c5048866836b511106fefff4785ac4a3f13effd13ae40fd063a657b046b7d0fe94a789453", 0x99}, {&(0x7f0000002240)="c1a46b364ce55d418a7f1a518534c3bff90585024f78e5497240c916678fc86ccb33e5", 0x23}, {&(0x7f0000002280)="8fa0438a9427503ecf118334630cc3100bccd4fc0d7441e2b53ae547cfefba58f0fc39e08102ebed83fdfa6efe28ca6510c0481e39724d6e23d3847a224ae54b3a850637fd9019d304308feacdb53e0d9c4be6c98dc32119f764b2e517432e195a1e2d2bb57c1ec8e0c978bee9be210b3980fce754acfebd0b18dbf715664121f1ad8b", 0x83}, {&(0x7f0000002340)="f362cff1e7785ecb95b5b26701c5e33ccf64ddc94082b676e42776768898ad9a403495e2bfd06b1cc1596e64612dc74b7aacea4791e2791a883be1c314a9607edfad2a231958bbd2984fef1e054caa66d0fb0b563c9d808e249f0be978fedb226509d41b06bb2cd215ff7b55872796bc94cc92b37eefe681953f6004efc74f0ff1ba6693b51a36d18fd1e91bf2be1a7380b16ee728e4c5aab168235f4a4de2df6944084ecf087d47f7888682c488028b1ff1e74308095194e5", 0xb9}, {&(0x7f0000002400)="0fde68b278da27b6c74aedb39568e18e0c27d89bb8f5c602c521950411abbabf687edce264b59801c529ee767c3d0a3a1f51828ab2794d118009c5f217c892cd557037c7314d13e89c75e68f613ccdddf3f75be6effe1fdf5ce41230a725", 0x5e}], 0x5}}, {{&(0x7f0000002500)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-camellia-asm\x00'}, 0x80, &(0x7f0000004780)=[{&(0x7f0000002580)="23f215532dbf273ae132c5583a07e3b6bf34b45d3487e3808337875e63a078a69371960745e22883cb9ab851a29d2f5621aa8e2a70b1cf", 0x37}, {&(0x7f00000025c0)="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", 0x1000}, {&(0x7f00000035c0)="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", 0x1000}, {&(0x7f00000045c0)="8f579157c6bd6c6b6236adaecca93c135432", 0x12}, {&(0x7f0000004600)="e691d898ac704ea69f6da9d151c8fd7bc4282a5ce80331550f610ba5e023cbf51917e01e279c8a0a6385d2c1e58a9933b45165234bcdddf5d8f2e24461da48bef0d0f0bf1390edbee2c6cce5c2af6193f204221942d21b4f14f17a8bc3b3d8e5d5ea722e4d48870e5863253c7a5505f606127095761c4f9c03a5", 0x7a}, {&(0x7f0000004680)="667c276eaed6da12ea2695b8a0430d0a51f4a64006f5b0effd05d2f12ef59503eb34e871af8e0d24f4c88784f3985fcadb61ea089ab7a008eee3293613a194c5dd92c3abf3161d6ac3c57ff5ef6b1d41e51dd6427c36aed20716d49bb78a3b1a12094d35b9c095be3f22749ebc8e234ef215f4624d1d1a2292b98c34d00ad7a90371777719a86148b965fe11f88f87bbbdb2a045826ba2dd73c40eb273eb47168ac0489ce48f8a45f6be3ec7de82bc75daa6359ba16d9444c40cfefc2520a0186af54e4cde90ee235c45cfd45adcec17307e", 0xd2}], 0x6, &(0x7f0000004800)=[{0x1010, 0x0, 0x2, "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"}, {0x50, 0x108, 0x0, "cba08e5988f0572cf3f4c564244d0c1282130a55923aa36a8b0b2e7fa4bd60a36bc2e259bfcf4ab47ab64ab9829b3e136e27aa94017ca8c4f5171735"}], 0x1060}}, {{0x0, 0x0, &(0x7f0000005e80)=[{&(0x7f0000005880)="e3f52d5db4120a39f99b1978bc8eb610f12859ee6ba734104d79357aaad20306a46abf874ab13eb7d9414baa7a0562b4b2b24b2c77f1000206d3ebd8fbe32933cc9999661beb11b4e2d8706cf0bed6fe15664b3374c317ae423aea0376a93a252bb59212135b5be6cea1075cacb7d1117d391f71789485308fe9a8f5857e35369133af750e8129770b32c46e2360ca66e818122c1abaef51c33ebf642e00ccbb56e38e485eef47547d988d7231cc0356586a7b00a1ca355526", 0xb9}, {&(0x7f0000005940)="da398b79dcf22e97d8ec80f8f1e2bb9ca7cd43cdc8f7f9026dc40abfd49f628d573775a93290273f8ba249d72fa768e89265aabf0f2007b7f83436ef96dbc38830b2695bdafc5b00c7a471763a774699077478af89ce9d9b4d1d5240226e80f912b56294cf0a0801f6d06ab68520d0fb1c60a873f1c6ae3b5c9a974cd710014728a9ba9d450d87303edb2442d976c630894342204dff87f783fed0292337a83e3ad27e5f04a20ea5e0b038df7567ffd62b3444d14aecf81d539c5aa114589f03621771c6ef6405942f09a59543292f5e06158c065f11cceae995511ef4bbb3c20cf7e50445143911edcd42544cac5d840d4cc84d3cf506c58d2b6e1e", 0xfc}, {&(0x7f0000005a40)="88b96525e048823e1944a75ca5c30525d2c497f7c35508d105ec775f9f3150ec8be916c44217ed21b3f4bb0fae79e5da3128c2bdd4d02b0dfd1d77f54d3d94ff85f4359d046750cbfd8549b305d1c43e4e0aef00ce8a7297aedb84", 0x5b}, {&(0x7f0000005ac0)="9ecdf8d6d215060812bff4c7411117a546bc8d0c94c96de96244ac6b82dc993529de309f88238bcdb095f9f0d750e1055aac3f5a97d06531468930f434f33b78eea0773300fc26167b5d3c0a8d38c9c53cb065cdf1e270875d907a4d15c08558aae2a9a82e3ae83c097443ce915333e25f031908c4cb23793a917d852f0cab692f012b413049589ff878e7d5fa4933f76527a480e3f6fb6b9148add5047b858f37b0d42e4772f303cf071a21e8123cc0a33a07408a77a21a68f3b6aec9d8eb8f6bfbaa50f9ce88f7057ddf8616ef6ad2f6bf10ebb47dac5b2a1a3b6de30cd2ed394a0932f57d13b75f746cec65cc72e6cb", 0xf1}, {&(0x7f0000005bc0)="f78cf56ee3506dc7bb9fda5a44c119889568ddc1b8096f9a5b7d4733ac3a75c619a0ddfd02142cb9d101e6b607d413c4823dfcfe11a2d04eb5590b409d117096494733abd4688d2d26c6e6bdc8e2dcf2c3", 0x51}, {&(0x7f0000005c40)="8d4751d466aa2db2be88a8ebabb086f5b416ab595cce5a384636c21b2f85b27a905f874bb8cc45a529a5fe0a50a22caeea45d1dd65de2b44e3a62bc3c2621130016bd059a972e622305f8b6f8451965826f0fbe6a6246d6ba0a36276ff42fa9d7a", 0x61}, {&(0x7f0000005cc0)="0de3f1ec8e0ddb087219bcdffbec5ab67b8a27955fa69d1fb151660720fc22c0535f1b14beca01c0ddff2d99c4ef6674d734e42686b9cc08d1b9c2c0943b0709b038597f4abd5755fa42ba08be2402975b8368504154c09677d8d577acfc", 0x5e}, {&(0x7f0000005d40)="6062df7f1785b17f59bee592bdf6e7fafbae982038248b8a5bb8cb1eb508e8c8807acb", 0x23}, {&(0x7f0000005d80)="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", 0xfd}], 0x9, &(0x7f0000005f40)=[{0xb0, 0x114, 0x10001, "6eb3169a6bf253960f6d9d77fc2414b7e963a77174fd3329bc92d4e499a975bb86dd6d159f8334cf53352768d67e5373ea4906f57d771bdeafbbace162afed512b7b750898c595e19b80b68f8b806333919f81f4f08ece61874445d0115b6f1404ab68cc15c5b63f88219f0b06c6af7a97a95d6b933e3cf29f1c2860bc585879a930e1de20a0d90bea5ab7b6403c0b63376541ce4206ac6e09400b"}, {0xd8, 0x0, 0x144, "fc06cc0c68f72cc5b321f9aaa15a9083a08dc5160d926c852b77ccedb0a039f1f9699e8a31a01eef7622559d0b275eb884ce41756a8fc175d02da3b12969469d7321133a8d24febe0923ae99ddea457faca214b3c9e71b41ba8b535e2438f491cbf74b1eec64d4234e1ab8716df065350d9fcd929f0f57a87c082bb76807ebd608a1698f69f9bd09d89b05f4f3c61edcf2b4e6f21e4fd179020b0b812b8108d3d3aace71b5c92b2f681cbcb472de1b1ca30aa79075d8d083fbd3d2c2879b24dc7ee4fe16"}, {0x18, 0x0, 0x68, "57335d815dc2e1"}], 0x1a0}}, {{&(0x7f0000006140)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @local}, 0x1, 0x2, 0x1, 0x4}}, 0x80, &(0x7f0000006280)=[{&(0x7f00000061c0)="5855c1fe6c6d4311b088e4a03d2dc53aebb243281297b1dc6fd693d15d04f9a9bb5198930e70bfb02c12f18e53156ab90d4a22802f579970e157c61c608c541c6814bab1bde0f1fd87543999a50ff47b1ed2b3c0792ba5276e03d97e98d337c1b61f008d2ff8e90aeade49d75d0cb8537a97afa6d88ab8efed8893744cb31505c9460ccc3ac9e7cbf9a676305d7246272db51758362b2536", 0x98}], 0x1, &(0x7f00000062c0)=[{0x40, 0x110, 0x0, "95a0bec69e1c32561f6531b12b10a71e8c9aec876c5e7b433785ce4d9810b9e3afdd1dad0de42c1662"}, {0x10, 0x10b, 0x3}, {0x18, 0x1, 0x6, 's'}, {0x108, 0x10c, 0x6, "4690a79deacbe6d9c9d5392302239b1fac54b0b01424d16a60911e359c3d5d6c5923b088f43e112179f5cd04331cbea95ae54f337b6ab8d908dba4e46aef2b85a0b772f1fedd049316094ed34a7b23e89253c0d059c2d9c34d56479d4f21cf6432858b59d1505122342122a8e9a5a41f81fedaf335939408e4e8c153e5b0d19f3af08a1ed1c4302a55a9312e4de8602c407c55ffbcc43c22bc0c1a3699ff891c9039bdde93508827dc809af13887f0eea840531aa3f2f2c94268e13f526ce0c29b0687749a955636d5d37c8d69c40de0568da046849a3f50f9a2472de443698f9816e34b235bd6ee02a023dd6ce7f54813d91fdd80b5be"}, {0xc0, 0x29, 0x3, "7416788ee706d51d6e23ecff53e5a294b4fb0385b8066ef180594b11f3861f6ef16fdb4bd5f1a2b66976c5c52823441d6c1c7848904c716ea3d6b8ae35b26804c1bba035c86b60422dcde1f10b37bb4523a4dba8f63c26243dae8b0e3bd788f6a452d915413cde2510719715e6b7cf8948a5b4142a69a9a7e4338e90ebfb562c03213c08b9707f464c0dfa5905c120a7320c4e8e187b8081c3e9b8a2edfe14721ececf6b6975d286443d3c71cf0ae1e1"}, {0xf8, 0x10b, 0x7, "8d3d7ae2360f442841e5630e1e10c57d03e10ce47adae49c199e5bac5b4c75366302757773afeb2a2eeaacffd815d700a07ad1e6d330f1220c63976029241cfbcedaecc438e09cbe43369223a8e373a3e992ce5f3c02e013b0bb7c1926908aac98b88dbd1983bec70a1a68b76a327e999ee6e6fd7af37dea35a76019228ab36f4c25a2e2d631284a837e511567f7daf38c0af9e4da1cfd52ce9bd3373b0b117963f5972c832e02d6ca41c574dd15f0f976d28e32d6f7354a5403ee3913a63eb62fa73352442328adf82ea9523c8b239cb137c2aca9a4b0115355b772714a8721f0"}, {0x80, 0x88, 0xd7, "1d0f978a11bc021e10e6a7c5de9f282d423920dd8bda8c929e6e13676e066a9a84d2eebf043527208755904302341bf6a327f4ae3e56c7bdb61915d52638701fdc86a11f6892505dd7a0ef687f2da6713bfbd2e41ad614d070f0c12be0ebf6e8e950019d95c01373b52788dc"}, {0x50, 0x118, 0xa0, "3ffe9ee69b2555126f5c665e29252251cafada4c68519f03f7ba2b21e0ccca2967098b94ce80cabbef118c53932a9289d81e44026960ff07d3f488"}, {0x28, 0x10a, 0x4, "ca5d83d90c587a346562497dcf18e2fdda50fa"}], 0x420}}, {{&(0x7f0000006700)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e21, 0x7f, @loopback, 0x401}}, 0x80, &(0x7f0000006cc0)=[{&(0x7f0000006780)="606d7414ae666cb2891d23d2b3785503e2fd9c05766a653a4ef58993414c461620f8daa7068af99ff4e1650c684a9274a0c1436228b6b91c8231d4432cb6214e94212277b359b27f0bed8b76ea7302a9985b88dd", 0x54}, {&(0x7f0000006800)="23b550eca05e498ad70a7f4e7249bfbe37ea971c44c23f0f208ba61fb251d36ec4", 0x21}, {&(0x7f0000006840)="a187328edb10a24983f94fcac2756df795dbee28be900e5e15239bb784f6d1b05fe592c9619e9c9500b624093714507818cebacc9cb1b39d5a582c98f765e1f4e00c0d5b2d7fefcb6a74dd8838fc83a7eb479772c765254cb8fd9e41cf4776a96a970512edf22063008ee0ed18430764fe6168342f2b864008cf301e4c85b8fb6a8f3a5cda1ed7a688bfac13c3775727ec9e9ebb054e4447911100350886c0582ee42ddb4b", 0xa5}, {&(0x7f0000006900)="cb074c34a700c2d29e833bc318a552cfd1dc51dffc8d2ef40b4b1e793aa8f306678ad5afe8c5d56d5f67c867581040cbc727c5ac07377e5fd5fd0c64f30ee18bcf9ebcf11f71216dfb38e95a47d9299034190f9e5e6018da56649fcbeaad1e458ec5b942742fc3a3778f4736c40231299f143d52fedd6c101f8a892d7f854dc4", 0x80}, {&(0x7f0000006980)="c1eff516ae370004fa5bb1fc7435f01ea437de868c73eab2d5a2b182238e1b830d83ee4eca45e1a9a31b41f2a4f2f351f0e61180991810241c9baca0644a56e33a66255ae605d0f52e370f44ea5ddbda483fb746fe1f2a824801f955ed4a9364fe9f1741a80cf6e3cd866da7afc5cdc11673c27f2a1b75d43581150361d12125cb928b60cdb1a819933d9418de99ae052685a1cca5a234cd804bdeb9a315ba81767ed46d0abf1a009a6e0aff8968f7cffbf1a7ba99188e611dc8c58555792d947836245a51134e530f47f1aae6013903f73f15fab4af477eff7a40b4d097bf13ae923fc52542a0f6136cabf0806e457fd5c5a60407cf2eb1", 0xf8}, {&(0x7f0000006a80)="24a8ddf8c6bd5dec68e2fa928c32c5da0e2b22c34d1c7740e1b70c808bdc05dbff6ebef5af568fcefaca4eb2f9d36048d0347561894836a193f051776f84b3bd8a769e42bd1365530916750739e3adaa0ab688e60e683038d6b9cb989a56cdd4a445a181e4125c902f5ecddaf61ffab497af45772b5b64800c21b41a51114c75381224a355fa12f76a6b72b2e79c9aa661bc5f7063f4130934ca65b7ba06865ef7196c799b1d698c05cb060a69fdabd21ec17345d9cefc37cfd79af976dbb846b18849150a937348cea738b649676b0d0c16667a629cfef67d893540299eaa557176ee4e6e", 0xe5}, {&(0x7f0000006b80)="e7", 0x1}, {&(0x7f0000006bc0)="0b97a4cd0f85ade89f0f3cc034d171601a30bb5fb2570b43f5679a9a13646e979609a60bb0ecd0a3a5cef4db4c3edf07f78040a765ddc9dfb46d8d98aedceff5dbd3b62e6b3488cd930db7a8a8512eee7ee4807e8e5efa2ea4fe78fa450b8098ae3387e5e72a8bdb94bcf0d16428a0fe34b868fb6e82e180a8fe5e47e60dbad093f607c949da36c0261cf0e31ca24880af98d07dd725cbc984ae4ab24a51035ebd6c523f192b0575933b0c9390837c96cf83483b0bac1242aaca196def3a9b5ae6f215ca4855f447c1dbd5af8b24f589536af700bf6955d74478e53edfdccd7dc6fd485ff576560a2b7e", 0xea}], 0x8, &(0x7f0000006d40)=[{0x58, 0x101, 0x693, "f5275ec42f324ed46732c2340b24f474f34bc4a78ace056a57755e7125402f5f1ee4a9caf3eb71fb883bbbe91b4fdb3fe60f55342bf2d0b45ece2b602a19651bdbf34f2c5f8c"}, {0xe0, 0x3a, 0x1, "d6f482884d5d246ef456136aff03f49b7b254d7dcdebf12502ea9071fffca4790369a47c01143a312e7919ac8dc5225199f2a959b35fbb2c30fa93772691462f9d1f3e3ffff28d46ac98d1073807cfe517b5eaebad6b5542530fe1a0b24d875511ba50dda39cc973e3712addb5b86dc288f98f15a9068ab57a7c2d53f2939220abdb02f027bad235b1b3c7ba0fead7d9591e6b040e58ffeca84d1e8eb005e08033a8f8f16094f71e8e137280721a1aab043d75c05ee69d03a88671dd2bce4f9c8059fe5c2929e6ed555ac52adb"}, {0xc0, 0x102, 0x3, "94370216299320e46a19fd5c55b48164ed624cb3ceec4432305a6eb32fddfc6de23c37206bdb42c6a57c011ad271d862a0b6d1c194e3617db58478cef5692186482f05992323efaceb93abb7e5814e3e4c0c55bd4a42c90a4099e19e04b8e16facd03ad484ca985e68c8208dcef5989366b2ac71a2f854f070fa9c2bb8ed1cefe8691962c73d3bc1d462f3ce5d933cdc59d327d48e6fffac7b2c548ab495e9233578a76a5612074094027f78cb"}, {0xb0, 0x113, 0x0, "d5d4143a1e0923e9fde18a662bb97d109545aafdf5490188a757d8ae8579caf5b47cce642e7d5b424363f3b48be1528cac778faee711d10644da7d6c86f1c27c893e10f9669ac7ed97c484ccdf6a250e7fd0e7459be78e0b768537e7a1f917e8fc75bcae91e39b35914ee2b4609513c4639a3d5bd8c5a6a3c81879ce07b390daba7b52eb71297997a00ab1741e0484c8ee86712a78c4929df4ef8c"}, {0x60, 0x107, 0x3, "b18f61b0753ab047949179335d19e67f7ff0f339e4d33f612f0900e4f4b1c384a313dcfa5524c67df11d5d31606bbd47ee1eb3064b415dddbf2dcdc6402f5c5088404b2b7f2e015bbeb746"}], 0x308}}, {{&(0x7f0000007080)=@pppoe={0x18, 0x0, {0x2, @remote, 'lo\x00'}}, 0x80, &(0x7f0000007400)=[{&(0x7f0000007100)="922df528d17e53fa7635ba015a9d2d1b03b1595d4922dc8b2837fefdc0b617652bc2b2e034aef3fc9a2c", 0x2a}, {&(0x7f0000007140)="7d423cd1e01f7f5bfedf0dd7d625b5be08451a3a18a777267b", 0x19}, {&(0x7f0000007180)="f7e8b344b4101b5ebcd5688aefa86afa367fa72535f956a9406307eb9d647572e035bf88c7eeddf5ef5789d4fbca886d71c7d31685de7e4642994d860489651c22547891bba80917d3457086a2c086f706cfe32e5f6872468409f815224a88268ec9af0e1879b349d8a80743e215629cfcfb637dbe658d735533afcef0a6c71077829ae543ab9a2ec59e7684b55df5db", 0x90}, {&(0x7f0000007240)="00bfae16f03515e488d58c93706376e351bd722cc308086ec29969cb3a571908f90f98ac3c071d9ab1e82556f48f38758aae4240f2b3bac31d6a12baad22a75cfaae8e9d169fdd114b6511c4f4429ac53afc77ecc81f901074708b4cd0c1004cd61929be68256bd414442214857e407cc8c549d91db990726b65c5118efeda5f4f1a882456", 0x85}, {&(0x7f0000007300)="5287d133d026f0fdb7ba7ba4549f8a658f92f43d23f75900b53d44bd42246db2cc185fbd3cf9521960c2fc6e2c2d536a54cadf06d1a31317f51bf9b9037d6d0d5e1d674552d771f4f2ae3050b8e26b98048ba88270c888e0980b8e3662dbbb433cd531f716fd920e28e159a3e84b1ad95396092095172b12759fbefe85a0ef170d25bf0e6af99cc24def45204068f9a8817cc51846f7de6e779aed4d777497691e38d31a12cfe8933c57287f2cbcf811d496bc65b7239938597f6006c596c797be738ed9379e40048d5a194be405bd901796a66fa1b370678b7b2cd43c505fdc3cf39f8ca88e7846da43bd503efe1e728abf687678763f57", 0xf8}], 0x5, &(0x7f0000007480)=[{0x50, 0x104, 0x1, "46490034fd7c368bd6afdb0f1b2e13f96ace23b1b3cf1fa6660780be14828f8e6ae15e727df77a159e62a4c8b0ab25369362af1022a5dc3686d4a4"}, {0x18, 0x103, 0xff, "375875d8e6"}, {0x18, 0x117, 0x90a, "da911ce957"}, {0xb8, 0x6, 0x4, "87e88425b964903e075d9e68ddd0a894075f9fe58298a1deddfb2542ea90bccd1da8d6d1cb1075baceabb7143addca22b6618ca44a600fcbcc04eca70fa7ec87f14d37261f7cdb4b339a70160d336651a1e49bd45f6cc6017b5dccdd3abe7e7b05198ecb630c4c4c1b686a71762441c43c710981faea4566a42917d21796c124fea7efdc44be2275a6bed9e3c297725673effa575b99d05ab0155d06b0ebc905a3e0e18fc0d6ffcc"}, {0xa0, 0x88, 0x7, "1a4c2ab3c126742cf2073b05945ead2abce7c5f617f42f9fcf5f506a2e358ca7b6e23b0936b90dd3c0aab5d4de77d56b7ef9ef174710e0aa71286ed819a67153298dd63bd13880ce3a57886ccf3651a49059791b8178ea29a62512bba63c4fec442ba9936b31a89ec49a98bbf7306a90758ccd38ecec6cbee3cdc8550186d7c7d7ac533fd96e922114fd8e"}], 0x1d8}}], 0x7, 0x80) [ 546.913699] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 546.919855] CR0=0000000080050033 CR3=000000008bbc3000 CR4=00000000001426e0 [ 546.926959] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 546.933795] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 546.939855] *** Control State *** [ 546.943413] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 546.950285] EntryControls=0000d1ff ExitControls=002fefff [ 546.955742] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 546.962730] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 546.962737] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 546.976007] reason=80000021 qualification=0000000000000000 [ 546.982439] IDTVectoring: info=00000000 errcode=00000000 [ 546.982445] TSC Offset = 0xfffffed8fa7154b5 [ 546.982449] TPR Threshold = 0x00 [ 546.982456] EPT pointer = 0x000000008426101e [ 546.982463] Virtual processor ID = 0x0001 05:52:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x111800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r2, 0xc040564a, &(0x7f0000000140)={0x1a2, 0x0, 0x301f, 0x1ff, 0x3, 0x8, 0x8}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 05:52:16 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000180)='/dev/null\x00', 0x22e8d457dc3730e8, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0x1a, &(0x7f0000000200)="a1414b67cc909c663a3d6f7dc33e8fc54e6e376233b64d0178e070bce984f97326df0df35a207087c9e5c0a0b4cec1c589ee97321ca6c1e339114f6a03e1547ef83478516d99d31e2671e4a492fdfc60c6f98ea25a2fad54395420b99d6b8a7dd1c24189b5c5e5e88a8d5a7473ca4f12fdb913", 0x73) fcntl$getownex(r0, 0x10, &(0x7f0000000100)={0x0, 0x0}) write$P9_RGETLOCK(r2, &(0x7f0000000140)={0x1e, 0x37, 0x1, {0x1, 0x8000, 0x6, r3}}, 0x1e) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000000)={r1, 0xffffffffffffffff}, &(0x7f0000000040)=0x8) 05:52:16 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) prctl$PR_SET_SECUREBITS(0x1c, 0xc9bda8819f11c7a0) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = dup2(r1, r0) ioctl$sock_bt_cmtp_CMTPCONNDEL(r2, 0x400443c9, &(0x7f0000000080)={{0x10000, 0x80000001, 0x1ff, 0x6, 0x1, 0xffff}, 0x10001}) ioctl$VIDIOC_SUBDEV_S_EDID(r2, 0xc0285629, &(0x7f0000000140)={0x0, 0x7, 0x7, [], &(0x7f00000000c0)=0x3ff}) 05:52:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x10000, 0x2, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) 05:52:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000040)) [ 547.049981] binder: BINDER_SET_CONTEXT_MGR already set [ 547.082209] binder: 25381:25382 ioctl 40046207 0 returned -16 05:52:16 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) socket$inet(0x2, 0x6, 0x3ff) [ 547.103470] input: syz1 as /devices/virtual/input/input349 05:52:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x100000, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x400, 0x4000) getpeername$tipc(r2, &(0x7f0000000080)=@name, &(0x7f00000000c0)=0x10) [ 547.193707] input: syz1 as /devices/virtual/input/input350 05:52:16 executing program 3: r0 = getpgid(0x0) ptrace$poke(0x4, r0, &(0x7f0000000000), 0x9) r1 = socket$inet(0xa, 0x801, 0x84) r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000200)={0x0, 0xd9, "31f9817c71c7a175a96b4351cd6f6d8f16e5ef20b584eb093d85f34a49270bb766b724b54ff9f851c832dd96f36ece12db586ea54bc578061ecc9aeb98b1554f5c04e30663c012deda5fc9c096bce0e26c3854a968e1ed418b47172d3b30c21bbbdcbd8a72e32e080b7562ca66d39459927b89d4887c2d45bac0bf8d0f396450f26566312caf8f5e0b9101509c53bf72e34d9da59d24dcb64e3fca44dd3a85808a9d31b07ce32b9342affa5de5e7d2b4421489ccf4aa6e8a0713e9e2c9c48a743f1c9e89d4ed21b4ab1e38e6d5e39ec10243f976e30ee968d3"}, &(0x7f0000000180)=0xe1) getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={r3, 0x6}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x400000, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x20, 0xffffffffffffffff, 0x4, 0xd9c, 0x0, 0xffffffffffff77ad, 0x400, 0x0, 0xfffffffffffffffb, 0x7, 0x7ff, 0xc42, 0x7fff, 0x5, 0x10000, 0x80, 0x1, 0x6, 0x1, 0x2, 0x0, 0x3, 0x40, 0x1000000000, 0x0, 0x2f0b, 0x2, 0x9, 0x4, 0x8, 0x9, 0xffffffffffffffff, 0x4, 0x2, 0x7, 0x100, 0x0, 0x1, 0x0, @perf_config_ext={0x8, 0x7fff}, 0x2, 0x2, 0x81, 0x0, 0x7ff, 0x7f, 0x7}, 0xffffffffffffffff, 0x2, r4, 0x2) 05:52:16 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80000, 0x0) openat$cgroup_type(r1, &(0x7f00000000c0)='cgroup.type\x00', 0x2, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r2, r0) [ 547.322767] *** Guest State *** [ 547.327044] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 547.337401] input: syz1 as /devices/virtual/input/input351 [ 547.356329] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 547.374179] CR3 = 0x00000000fffbc000 [ 547.378021] RSP = 0x0000000000000000 RIP = 0x0000000000100000 [ 547.396829] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 547.409305] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 547.416400] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 05:52:16 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r2, 0x0, 0x2d, &(0x7f0000000080)={0xb8a0, {{0x2, 0x4e20, @local}}}, 0x88) 05:52:16 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) lookup_dcookie(0x4, &(0x7f0000000000)=""/93, 0x5d) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:16 executing program 2: r0 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x1, 0x2) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e21, 0x40, @mcast1, 0x8001}}, 0x0, 0x1f, 0x0, "5cb1727ba36bc12bbd700fb0860e5b124c1f6474aedd5a49c0d1a8cc55d3c97ff21bb6506d6e671616cd809fe9454966a9a578565894725bddb1ac9ef23455fdd7ff52e844d9bd1b9c94bbab6c20d9d9"}, 0xd8) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="72010069722c00f42b3f17c547840cea14fd172059d3646e0c1723a8df003db24aec6793c7a526ab1d8206704bf660f9d995fb7ab81007702e2434c902e28d4d5b1cddcdd558fd47cb19d547c7fc6072b2d24d062ee2871f"]) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000000)) getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000200)={@mcast1}, &(0x7f0000000240)=0x14) [ 547.418579] binder: BINDER_SET_CONTEXT_MGR already set [ 547.424651] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.441288] binder: 25381:25425 ioctl 40046207 0 returned -16 [ 547.448570] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.456648] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:16 executing program 2: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x10000, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000001c0)={0x82, @time, 0x401, {0x1, 0x6}, 0x3136, 0x1, 0x8001}) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x4, 0x200, 0x0, 0x10000, &(0x7f00000000c0)={[{@rodir='rodir'}], [{@smackfsroot={'smackfsroot', 0x3d, 'vfat\x00'}}, {@smackfshat={'smackfshat', 0x3d, '&lo\\'}}, {@dont_measure='dont_measure'}, {@uid_gt={'uid>', r1}}, {@measure='measure'}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_hash='dont_hash'}, {@obj_user={'obj_user', 0x3d, 'vfat\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x1}}, {@appraise_type='appraise_type=imasig'}]}) [ 547.470210] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.478597] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.487142] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 547.500917] input: syz1 as /devices/virtual/input/input352 [ 547.534558] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 547.546991] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 547.555391] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 547.564574] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 547.572479] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 05:52:16 executing program 3: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000040)={0x9, 0xffffffff, 0x9}) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:16 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) fcntl$getflags(r0, 0x1) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x40, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc0bc5351, &(0x7f0000000080)={0x100000000, 0x2, 'client0\x00', 0x1, "da21007f73ff1d5a", "662fde6b20f1d50fc5451896f16f9063da5d11ec87f94dd58f35faa2f0bf5aea", 0x947, 0x6}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:16 executing program 0: r0 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x9, 0x800) umount2(&(0x7f0000000200)='./file0\x00', 0x1) ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000140)={0x0, @reserved}) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r1, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r3 = syz_open_dev$ndb(&(0x7f00000000c0)='/dev/nbd#\x00', 0x0, 0xa000) close(r3) dup2(r2, r2) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000240)=0x8) [ 547.585363] Interruptibility = 00000000 ActivityState = 00000000 [ 547.592417] *** Host State *** [ 547.595685] RIP = 0xffffffff81174990 RSP = 0xffff888042767998 [ 547.616734] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 547.643637] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 547.671876] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 547.697590] CR0=0000000080050033 CR3=00000000907c8000 CR4=00000000001426f0 [ 547.717209] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 547.724461] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 547.730713] *** Control State *** [ 547.730721] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 547.730726] EntryControls=0000d1ff ExitControls=002fefff [ 547.730737] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 547.730743] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 547.730748] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 547.730754] reason=80000021 qualification=0000000000000000 [ 547.730759] IDTVectoring: info=00000000 errcode=00000000 [ 547.746988] TSC Offset = 0xfffffed86988dd0e [ 547.784087] input: syz1 as /devices/virtual/input/input353 [ 547.807553] TPR Threshold = 0x00 [ 547.811044] EPT pointer = 0x00000000a5fe001e [ 547.815466] Virtual processor ID = 0x0001 [ 547.845701] binder: BINDER_SET_CONTEXT_MGR already set [ 547.856497] *** Guest State *** [ 547.857313] binder: 25455:25456 ioctl 40046207 0 returned -16 [ 547.859806] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 547.859817] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 547.859822] CR3 = 0x00000000fffbc000 [ 547.859829] RSP = 0x0000000000000000 RIP = 0x0000000000100000 [ 547.859836] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 547.859846] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 547.893577] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 547.907198] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.923365] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.931404] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.931418] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.931430] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 547.931444] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 547.931457] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 547.931465] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 547.931477] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 547.931485] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 547.931493] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 547.931499] Interruptibility = 00000000 ActivityState = 00000000 [ 547.931504] *** Host State *** [ 547.947483] RIP = 0xffffffff81174990 RSP = 0xffff88805442f998 [ 547.976877] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 547.989747] FSBase=00007fbd9754f700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 547.989756] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 547.989766] CR0=0000000080050033 CR3=00000000907c8000 CR4=00000000001426f0 [ 547.989776] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 05:52:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x100) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000140)={0x0, r1}) ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000100)=0x100000000) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0xddc7d2318ed15241) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r3, 0xc0605345, &(0x7f0000000040)={0x7fff, 0x0, {0x0, 0x2, 0x0, 0x3, 0xf5d9}}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 05:52:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:17 executing program 3: r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xe58, 0x101000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000100)={0x0, 0x20, 0x7}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x10}}}, 0xc47, 0x8, 0x100, 0xf2, 0xe6}, &(0x7f0000000180)=0x98) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f00000002c0)={r1, 0xc454, 0x4, 0x7fffffff, 0x2, 0x9, 0x4, 0x5, {r2, @in6={{0xa, 0x4e24, 0x1, @empty, 0x9}}, 0x9, 0x9, 0x3, 0x63, 0xff}}, &(0x7f0000000380)=0xb0) accept4(r0, &(0x7f00000003c0)=@hci, &(0x7f0000000080)=0x80, 0x80000) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000040)={r3, 0x2, 0x2, 0x1, 0x5, 0x1}, 0x14) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) 05:52:17 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0xf82f, 0x60f}) [ 548.006918] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 548.019499] *** Control State *** [ 548.019507] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 548.019512] EntryControls=0000d1ff ExitControls=002fefff [ 548.019522] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 548.019527] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 548.019534] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 548.033953] reason=80000021 qualification=0000000000000000 [ 548.033958] IDTVectoring: info=00000000 errcode=00000000 05:52:17 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) fcntl$getown(r0, 0x9) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000000)={0x0, 0xc719, 0x1f, 0x57e4, 0xff}, &(0x7f0000000040)=0x14) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000340)={r1, 0xb0, "ab508c9e98ff699f24a2cf7f782115e2700acc70b9372219034dc9091865e74fd96465c0087bfea566a3353f842a22cff7c340bafe36d10a3aae2c93e7a40bea3c4ec7c24813e85b4c61e6d3388873a550b8d11673cf016ad8fb1ed1ade98ac2e51582b6b1c07424bf3acffd9e5d8d0475b1ef921e5cf27514647e13a0db24257bee47c1c89a4d91f524b3cad7df108d058b05ae3589550d9595ada40de2aa19c220b0de0ee3d600a354f5c850f7b50f"}, &(0x7f0000000400)=0xb8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000100)={r1, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1b}}}, 0x6, 0x3, 0xfffffffffffff800, 0x3f, 0x10}, &(0x7f0000000080)=0x98) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000300)={r2, 0xff, 0x3, [0x10c, 0x9, 0x80000000]}, 0xe) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cachefiles\x00', 0x0, 0x0) ioctl$TCGETX(r3, 0x5432, &(0x7f0000000440)) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r3, 0xc0bc5310, &(0x7f0000000240)) [ 548.033963] TSC Offset = 0xfffffed8208e9b9a [ 548.033967] TPR Threshold = 0x00 [ 548.033974] EPT pointer = 0x000000005869501e [ 548.033981] Virtual processor ID = 0x0001 [ 548.143958] input: syz1 as /devices/virtual/input/input354 05:52:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) tee(r0, r0, 0x8000, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r2, &(0x7f0000000080)="e8c1e9072a877ac981e7353239a418464d9932ea72538350ec6b9b45ce6f33fec5bebc349f1db3539a449a3311d578935053190c4ea2b4b306014fab0da6", &(0x7f00000000c0)=""/50}, 0x18) 05:52:17 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x5, 0x8080) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x7}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000180)={r2, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}}}, 0x84) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000280)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000300)={0x10, 0x30, 0xfa00, {&(0x7f0000000240), 0x2, {0xa, 0x4e22, 0x7, @mcast1, 0x2}, r3}}, 0x38) r4 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r4, r0) [ 548.212322] *** Guest State *** [ 548.215631] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 05:52:17 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x113600, 0x0) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000100)={0x5, 0x9, 0x8, 0x3, 0x40}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x5, 0x0, 0x2, 0x0, 0x80000000000}, &(0x7f0000000000)=0xfffffffffffffea7) [ 548.288237] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 548.301989] input: syz1 as /devices/virtual/input/input355 05:52:17 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$usbmon(&(0x7f0000000240)='/dev/usbmon#\x00', 0x0, 0x111400) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000280)) r2 = fcntl$dupfd(r0, 0x406, r0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') ioctl$sock_inet_SIOCGIFPFLAGS(r2, 0x8935, &(0x7f0000000200)={'team_slave_0\x00'}) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10048000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r3, 0x200, 0x70bd29, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x0, 0x800) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 548.354563] CR3 = 0x00000000fffbc000 05:52:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/qat_adf_ctl\x00', 0x4100, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000280)=""/183) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x100, 0x0) r4 = fcntl$getown(r2, 0x9) r5 = getuid() getgroups(0x5, &(0x7f0000000100)=[0xee01, 0xffffffffffffffff, 0x0, 0x0, 0x0]) setsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000140)={r4, r5, r6}, 0xc) ioctl$SIOCX25SDTEFACILITIES(r3, 0x89eb, &(0x7f0000000080)={0xf301, 0x2, 0x0, 0x400, 0x80024, 0x24, 0xe, "d6c6d4e6f46e8f751b7866652396221b4894d8d5", "d50ca6ab91655ac98dbd39819cabaae3672bf8db"}) syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x2, 0x100) setxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.nlink\x00', &(0x7f0000000200)={'U+', 0x1}, 0x28, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 548.385437] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 548.401168] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 548.413547] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 548.429048] input: syz1 as /devices/virtual/input/input356 05:52:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="726f6469720100"]) [ 548.440234] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 548.466702] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.487285] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.495620] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.504117] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.525186] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.543609] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 548.552641] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 548.571209] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 548.584911] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 548.605164] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 548.612538] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 548.626221] binder: BINDER_SET_CONTEXT_MGR already set [ 548.631285] Interruptibility = 00000000 ActivityState = 00000000 [ 548.636323] binder: 25460:25509 ioctl 40046207 0 returned -16 [ 548.637867] *** Host State *** [ 548.644532] binder: 25460:25509 ioctl 4008ae61 20000040 returned -22 [ 548.647152] RIP = 0xffffffff81174990 RSP = 0xffff8880991ef998 [ 548.659795] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 548.660217] binder: BINDER_SET_CONTEXT_MGR already set [ 548.666549] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 548.676444] binder: 25460:25510 ioctl 4008ae61 20000040 returned -22 [ 548.679633] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 548.686569] binder: 25460:25509 ioctl 40046207 0 returned -16 [ 548.692362] CR0=0000000080050033 CR3=00000000950d9000 CR4=00000000001426e0 [ 548.705230] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 548.712771] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 548.718895] *** Control State *** [ 548.728036] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 548.734841] EntryControls=0000d1ff ExitControls=002fefff [ 548.745218] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 548.752244] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 548.758941] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 548.766483] reason=80000021 qualification=0000000000000000 [ 548.773247] IDTVectoring: info=00000000 errcode=00000000 [ 548.778680] TSC Offset = 0xfffffed7eecb40f7 [ 548.783090] TPR Threshold = 0x00 [ 548.786563] EPT pointer = 0x000000008126301e [ 548.791074] Virtual processor ID = 0x0001 [ 548.891642] *** Guest State *** [ 548.894956] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 548.903842] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 548.912963] CR3 = 0x00000000fffbc000 [ 548.916678] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 548.923358] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 548.930162] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 548.936832] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 548.945026] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.953088] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.961214] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.969184] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.977568] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 548.985597] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 548.993612] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 549.002096] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 549.010113] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 549.018157] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 549.024614] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 549.032365] Interruptibility = 00000000 ActivityState = 00000000 [ 549.038582] *** Host State *** [ 549.041799] RIP = 0xffffffff81174990 RSP = 0xffff8880991ef998 [ 549.047769] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 549.054216] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 549.062028] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 549.067922] CR0=0000000080050033 CR3=00000000950d9000 CR4=00000000001426f0 [ 549.074978] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 549.081663] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 549.087702] *** Control State *** [ 549.092043] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 549.098720] EntryControls=0000d1ff ExitControls=002fefff [ 549.104199] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 549.111270] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 549.117924] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 549.124531] reason=80000021 qualification=0000000000000000 [ 549.131669] IDTVectoring: info=00000000 errcode=00000000 05:52:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0) fcntl$addseals(r2, 0x409, 0x4) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:18 executing program 3: r0 = socket$inet(0xa, 0x0, 0x3) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x65, &(0x7f00000002c0), &(0x7f0000000080)=0x4) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000300)={0x0}, &(0x7f0000000340)=0xc) r3 = syz_open_procfs(r2, &(0x7f0000000280)='net/bnep\x00') r4 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000001c0)={r1, r4}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) r6 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x101000, 0x0) r7 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x100, 0x0) ioctl$VIDIOC_DECODER_CMD(r7, 0xc0485660, &(0x7f0000000200)={0x1, 0x2, @stop_pts=0xc00000000000}) ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000000140)={r6, 0x6, 0x2, r7}) 05:52:18 executing program 0: timerfd_create(0x6, 0x80000) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) r2 = pkey_alloc(0x0, 0x3) pkey_free(r2) 05:52:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:52:18 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x802) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) [ 549.139220] TSC Offset = 0xfffffed791919091 [ 549.143566] TPR Threshold = 0x00 [ 549.146921] EPT pointer = 0x00000000865ed01e [ 549.151369] Virtual processor ID = 0x0001 [ 549.181028] input: syz1 as /devices/virtual/input/input357 [ 549.235135] QAT: Invalid ioctl [ 549.253006] *** Guest State *** [ 549.256701] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 549.271891] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:52:18 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x9, &(0x7f0000000000)='/dev/kvm\x00', 0xffffffffffffffff}, 0x30) syz_open_procfs(r0, &(0x7f00000000c0)='io\x00') r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x44000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:18 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x2, 0x0) getsockopt$inet6_dccp_int(r1, 0x21, 0x6, &(0x7f0000000040), &(0x7f0000000080)=0x4) [ 549.292427] CR3 = 0x00000000fffbc000 [ 549.309732] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 549.320474] input: syz1 as /devices/virtual/input/input358 [ 549.353096] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 549.377230] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 05:52:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:18 executing program 3: r0 = socket$inet(0xa, 0xa, 0x1) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 549.413379] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 549.427245] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.443775] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:18 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000140)=0xc) fcntl$setown(r1, 0x8, r2) r3 = dup2(r1, r0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, &(0x7f0000000080)=0xfffffffffffff000, 0x4) [ 549.468853] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.478659] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.495381] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.516384] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 549.535064] input: syz1 as /devices/virtual/input/input359 [ 549.548462] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 05:52:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x6, 0x400) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={0xffffffffffffffff}}}, 0x20) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_BIND(r2, &(0x7f0000000100)={0x14, 0x88, 0xfa00, {r3, 0x30, 0x0, @in={0x2, 0x4e24, @multicast2}}}, 0x90) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 549.571811] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 549.593275] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 549.630643] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 549.641850] input: syz1 as /devices/virtual/input/input360 [ 549.647721] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 549.682590] Interruptibility = 00000000 ActivityState = 00000000 [ 549.698436] *** Host State *** [ 549.701955] RIP = 0xffffffff81174990 RSP = 0xffff88809c5ff998 [ 549.708048] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 549.714886] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 549.721596] binder: BINDER_SET_CONTEXT_MGR already set [ 549.722930] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 549.728064] binder: 25560:25572 ioctl 40046207 0 returned -16 [ 549.741072] CR0=0000000080050033 CR3=00000000907c8000 CR4=00000000001426e0 [ 549.748260] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 549.749633] binder: BINDER_SET_CONTEXT_MGR already set [ 549.755392] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 549.761215] binder: 25560:25573 ioctl 40046207 0 returned -16 [ 549.766730] *** Control State *** [ 549.776177] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 549.782960] EntryControls=0000d1ff ExitControls=002fefff [ 549.788467] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 549.795482] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 549.795488] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 549.795494] reason=80000021 qualification=0000000000000000 [ 549.795498] IDTVectoring: info=00000000 errcode=00000000 [ 549.795502] TSC Offset = 0xfffffed760709f2e [ 549.795506] TPR Threshold = 0x00 [ 549.795513] EPT pointer = 0x000000008dc9601e [ 549.795520] Virtual processor ID = 0x0001 [ 549.843836] *** Guest State *** [ 549.847243] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 549.847252] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 549.871347] CR3 = 0x00000000fffbc000 [ 549.875391] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 549.887376] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 549.895611] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 549.902705] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 549.910816] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.910829] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.910840] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.910855] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.910917] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 549.910925] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 549.910937] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 549.910945] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 549.910957] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 549.910966] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 549.927256] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 549.999562] Interruptibility = 00000000 ActivityState = 00000000 [ 550.005886] *** Host State *** [ 550.009088] RIP = 0xffffffff81174990 RSP = 0xffff88809db17998 [ 550.015119] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 550.021567] FSBase=00007fbd9754d700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 550.029351] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 550.035292] CR0=0000000080050033 CR3=00000000907c8000 CR4=00000000001426e0 [ 550.042324] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 550.048970] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 550.055086] *** Control State *** [ 550.058525] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 550.065236] EntryControls=0000d1ff ExitControls=002fefff [ 550.070833] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 550.077746] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 05:52:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$SIOCGETNODEID(r3, 0x89e1, &(0x7f0000000140)={0x1}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:19 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0xfffd, 0x80) recvfrom$rxrpc(r0, &(0x7f0000000200)=""/240, 0xf0, 0x0, &(0x7f0000000140)=@in6={0x21, 0x4, 0x2, 0x1c, {0xa, 0x4e21, 0x11, @remote, 0x3f}}, 0x24) r1 = socket$inet(0xa, 0x801, 0x80) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/enforce\x00', 0x4000, 0x0) accept$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000080)=0x1c) syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0xfffffffffffffff7, 0xc000) 05:52:19 executing program 2: r0 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x101a80, 0x0) ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000040)=0xffffffffffffffff) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="726f6469711d00"]) 05:52:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x428000, 0x0) connect$netlink(r1, &(0x7f0000000040)=@unspec, 0xc) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:19 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) setsockopt$X25_QBITINCL(r0, 0x106, 0x1, &(0x7f00000000c0)=0x1, 0x4) 05:52:19 executing program 5: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'bridge0\x00h\x00\x01\xd8\x00H\x00L'}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'bridge0\x00\xff\xff\xfd\xfd\x00', 0xffffffffffffffdb}) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = dup2(r1, r1) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) [ 550.084471] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 550.091082] reason=80000021 qualification=0000000000000000 [ 550.097376] IDTVectoring: info=00000000 errcode=00000000 [ 550.102852] TSC Offset = 0xfffffed70f1ac04d [ 550.107158] TPR Threshold = 0x00 [ 550.110565] EPT pointer = 0x00000000a8da501e [ 550.114968] Virtual processor ID = 0x0001 [ 550.153259] input: syz1 as /devices/virtual/input/input361 05:52:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x7, 0x410000) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000140)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) write$nbd(r1, &(0x7f0000000240)={0x67446698, 0x1, 0x3, 0x0, 0x1, "17bc72accee0f80f7f05489ff6d6816c8284e6eaa7b10927a8a36575f4c642d7f4e309c4ac15191b5b97a3e4bccc4ccbbe3acd2056"}, 0x45) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 05:52:19 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000100)={r1, 0x7a, "e31885bfb99caba734948c1e2f635350bfcb32006ba452d65a62cad1d2018f797820f22bf80a695597fb011704a7e912c747060c5a27b16ad6619e4f4414cbe681b5a69234c30e3fe32441fd74693cf0a769e2e2529f07237aea88e2c6b6e94779c2ebd6dec45a94f20ba32ba0a95b9ee308c435d9baa81199e8"}, &(0x7f0000000040)=0x82) [ 550.250886] input: syz1 as /devices/virtual/input/input362 [ 550.275466] *** Guest State *** [ 550.282157] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 05:52:19 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000100)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000140)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180), &(0x7f00000001c0)=0xc) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f0000000240)=0xc) r1 = getpgrp(r0) r2 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x8, 0x400040) setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000080)={0x9}, 0x4) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) sched_rr_get_interval(r1, &(0x7f0000000000)) 05:52:19 executing program 3: socket$inet(0xa, 0x801, 0x84) [ 550.307799] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 550.338571] CR3 = 0x00000000fffbc000 [ 550.348126] RSP = 0x0000000000000000 RIP = 0x0000000000000000 05:52:19 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x2b}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) [ 550.358690] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 550.393678] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 05:52:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) ioctl$BLKBSZSET(r2, 0x40081271, &(0x7f0000000000)=0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 550.410325] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 550.437664] input: syz1 as /devices/virtual/input/input363 [ 550.448989] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 550.477442] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 550.492364] bridge0: port 2(bridge_slave_1) entered disabled state [ 550.499058] bridge0: port 1(bridge_slave_0) entered disabled state [ 550.505786] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 550.524159] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 550.533302] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 550.540008] bridge0: port 2(bridge_slave_1) entered blocking state [ 550.542082] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 550.547683] bridge0: port 2(bridge_slave_1) entered forwarding state [ 550.558617] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 550.562454] bridge0: port 1(bridge_slave_0) entered blocking state [ 550.572886] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 550.576627] bridge0: port 1(bridge_slave_0) entered forwarding state [ 550.597481] binder: BINDER_SET_CONTEXT_MGR already set [ 550.600887] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 550.613329] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 550.628866] input: syz1 as /devices/virtual/input/input364 [ 550.635628] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 550.657998] Interruptibility = 00000000 ActivityState = 00000000 [ 550.670687] binder: 25605:25625 ioctl 40046207 0 returned -16 [ 550.678542] device bridge0 entered promiscuous mode [ 550.680172] *** Host State *** [ 550.688251] RIP = 0xffffffff81174990 RSP = 0xffff88805e717998 [ 550.700312] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 550.704391] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 550.706858] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 550.721230] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 550.727243] CR0=0000000080050033 CR3=00000000a4851000 CR4=00000000001426f0 [ 550.734413] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 550.742876] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 550.749014] *** Control State *** [ 550.752593] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 550.758347] binder: BINDER_SET_CONTEXT_MGR already set [ 550.759333] EntryControls=0000d1ff ExitControls=002fefff [ 550.768215] bridge0: port 2(bridge_slave_1) entered disabled state [ 550.770154] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 550.776483] bridge0: port 1(bridge_slave_0) entered disabled state [ 550.783442] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 550.795112] binder: 25605:25631 ioctl 40046207 0 returned -16 [ 550.796422] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 550.803925] device bridge0 left promiscuous mode [ 550.808909] reason=80000021 qualification=0000000000000000 [ 550.820065] IDTVectoring: info=00000000 errcode=00000000 [ 550.825511] TSC Offset = 0xfffffed6d9a45f37 05:52:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x200, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000140)={0x0, 0x7ff, 0x100000000, 0xe77}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r4, 0x3, 0xb39}, &(0x7f0000000300)=0xc) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:20 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$CAPI_NCCI_GETUNIT(r1, 0x80044327, &(0x7f0000000200)=0x1088) 05:52:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) capset(&(0x7f0000000080)={0x20080522, r2}, &(0x7f00000000c0)={0x70, 0x72, 0x1f, 0xeb5, 0x36d, 0xbf8}) 05:52:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0xfffffe20, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x1, 0x0) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040), 0x4) 05:52:20 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000080)=0x20, 0x4) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:20 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) bind$netrom(r1, &(0x7f0000000040)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x3}, [@bcast, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) [ 550.829823] TPR Threshold = 0x00 [ 550.833253] EPT pointer = 0x00000000a480001e [ 550.837661] Virtual processor ID = 0x0001 [ 550.918735] input: syz1 as /devices/virtual/input/input365 [ 550.957373] *** Guest State *** 05:52:20 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) socketpair(0x1, 0x800, 0x3, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x5}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x4c, r2, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x38, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xfffffffffffffffe}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xffffffffffffffff}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x40) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x2000, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x100, 0x0) ioctl$SCSI_IOCTL_STOP_UNIT(r2, 0x6) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000140)={0x7, 0x5, 0x1, 0x3f, 0x4}, 0x14) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000080)={[0x3, 0x3, 0x6, 0x6, 0x2, 0x255a, 0xfffffffffffffffd, 0x0, 0x20, 0xfffffffffffffff8, 0x1, 0x0, 0x55a0, 0x7, 0x9, 0x5da8], 0x106000, 0x200}) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) fchdir(r1) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r2, 0x118, 0x1, &(0x7f0000000180)=0xc0000000000000, 0x4) ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="0300000000006ba495a4431a35510000bb000000000000000000000000000000000000000000000066f762da10ff9d210000000c00000000"]) [ 550.976836] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 551.019311] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 551.029500] CR3 = 0x00000000fffbc000 [ 551.034801] input: syz1 as /devices/virtual/input/input366 [ 551.048415] RSP = 0x0000000000000000 RIP = 0x0000000000000000 05:52:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x101) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pread64(r1, &(0x7f0000000080)=""/218, 0xda, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setsockopt$sock_timeval(r1, 0x1, 0x219c233ccbdd87b1, &(0x7f00000001c0)={r3, r4/1000+30000}, 0x10) 05:52:20 executing program 2: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x100, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x2, 0xf}}, 0x20) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer\x00', 0x200, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x8, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x8}, {0xa, 0x4e20, 0x8001, @mcast1, 0xc000}, r2, 0x42}}, 0x48) utime(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x7, 0x200000000000000}) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="7a6f646edf94ce"]) r3 = syz_open_dev$sndpcmc(&(0x7f0000000140)='/dev/snd/pcmC#D#c\x00', 0x8, 0x21a401) setsockopt$inet_sctp6_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000180)=0x9, 0x4) [ 551.081412] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 551.101791] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 551.109609] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 05:52:20 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) ioctl$SIOCX25SCALLUSERDATA(r1, 0x89e5, &(0x7f0000000140)={0x53, "576834a3f0431165b7a365b4fb9bed047e5d54dbf589cca88522b7424a543c2ad9c3b75184961aea9a2eb0a71f5dc919dc1f508470a8c12a0730b00ef03a5f3696976475a68092ce7b198d742d1c33c20d57f30353b237697cd5e0c070557b8f7ab13ee26dc0dd34d64e623add397a4f7aceef26804dacd990ab212bd33cefeb"}) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r2, r0) 05:52:20 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) memfd_create(&(0x7f0000000100)='/dev/cachefiles\x00', 0x1) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x40080, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x40605346, &(0x7f0000000040)={0x5, 0x0, {0x1, 0x2, 0xe6, 0x1, 0xf}}) [ 551.141045] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.149470] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.215690] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.225703] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.234212] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.252342] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 551.268034] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 551.283163] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 551.304107] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 551.307428] input: syz1 as /devices/virtual/input/input367 [ 551.313873] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 551.324600] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 551.332576] Interruptibility = 00000000 ActivityState = 00000000 [ 551.344390] *** Host State *** [ 551.349370] RIP = 0xffffffff81174990 RSP = 0xffff88806238f998 [ 551.360388] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 551.368643] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 551.377054] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 551.383319] CR0=0000000080050033 CR3=00000000a109f000 CR4=00000000001426e0 [ 551.390869] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 551.397626] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 551.404716] *** Control State *** [ 551.407262] binder: BINDER_SET_CONTEXT_MGR already set [ 551.408250] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 551.420686] EntryControls=0000d1ff ExitControls=002fefff [ 551.423314] binder: 25672:25688 ioctl 40046207 0 returned -16 [ 551.426273] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 551.434427] binder: BINDER_SET_CONTEXT_MGR already set [ 551.439425] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 551.451692] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 551.458365] reason=80000021 qualification=0000000000000000 [ 551.465177] IDTVectoring: info=00000000 errcode=00000000 [ 551.476329] TSC Offset = 0xfffffed677589ee1 [ 551.481689] TPR Threshold = 0x00 [ 551.485148] input: syz1 as /devices/virtual/input/input368 [ 551.485151] EPT pointer = 0x00000000a9ec901e [ 551.485159] Virtual processor ID = 0x0001 05:52:20 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4903, 0x0) r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in={0x2, 0x4e21, @loopback}, @in6={0xa, 0x4e23, 0x2, @remote, 0x3}, @in6={0xa, 0x4e20, 0x982, @local, 0x20}], 0x48) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:20 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64}, &(0x7f0000000000)=0x20) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080), &(0x7f0000000100)=0x14) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000040), 0x4) 05:52:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[]) getgroups(0x4, &(0x7f0000000000)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xee01]) r1 = getegid() lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = getgid() lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgroups(0x5, &(0x7f00000001c0)=[r0, r1, r2, r3, r4]) 05:52:20 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0x10001, 0x80) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000240)={0x4, 0x70, 0x21d3, 0x0, 0x7, 0x8, 0x0, 0x200, 0x8, 0x0, 0x10000, 0x4, 0x5, 0x2, 0x7ff, 0x100000001, 0x400, 0x4, 0x81, 0x80000001, 0x6, 0x20, 0xfffffffffffffffc, 0x401, 0x4, 0xffffffffffffffd5, 0x4, 0xc4, 0x401, 0x7, 0x3f, 0x1, 0x8001, 0x8, 0x1, 0x7a, 0x800, 0x2, 0x0, 0xfffffffffffffffa, 0x4, @perf_bp={&(0x7f0000000200), 0x8}, 0x40, 0x6, 0x1cf, 0x9, 0x3f8000000000000, 0x5, 0x6}) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BLKTRACESTOP(r0, 0x1275, 0x0) r2 = dup2(r1, r1) ioctl$sock_netrom_SIOCDELRT(r2, 0x890c, &(0x7f00000002c0)={0xccdb7c0219508d9b, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={'rose', 0x0}, 0x2, 'syz0\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x0, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) syz_mount_image$bfs(&(0x7f0000000040)='bfs\x00', &(0x7f0000000080)='.\x00', 0x100000000, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)="7a9bc475da6240f1d5dda96def537bbff67be18fc09af45c288761f52193b0e5d3162b88b9e43cba53128fae39bcc888291ca814ba487b0ff20c13111e464e6157b6b1a6033f3fe2904d41966437f6cab8a42f564c6176bf4068a4d547a87bd106c72955c37247258237ad4a1b3b406086c323befbdebacb4978bc663b0368852be97984ad056c112dc23168b521908e136542e4473209fb6223410d7379466d8fa3f91d542dbf0a85dc6005", 0xac, 0x6}], 0x1000, 0x0) fcntl$setsig(r1, 0xa, 0x3b) [ 551.516009] binder: 25672:25689 ioctl 40046207 0 returned -16 05:52:20 executing program 3: socket$inet(0xa, 0x801, 0x84) 05:52:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000140)='/dev/swradio#\x00', 0x1, 0x2) ioctl$VIDIOC_DQBUF(r1, 0xc0585611, &(0x7f0000000000)={0x0, 0xc, 0x4, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "9b2afd6c"}, 0x0, 0x0, @offset, 0x4}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$DRM_IOCTL_AGP_RELEASE(r1, 0x6431) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:20 executing program 0: r0 = accept4(0xffffffffffffffff, &(0x7f0000000300)=@x25={0x9, @remote}, &(0x7f0000000380)=0x80, 0x80000) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000400)='TIPC\x00') pipe2(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000000540)=""/29) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000012c}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="04002abd7000fddbdf2501000000000000000b0000007379"], 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x81) r3 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x1, 0x2) ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f0000000100)={&(0x7f0000ffc000/0x2000)=nil, 0x10001, 0x5, 0x10, &(0x7f0000ffc000/0x3000)=nil, 0x4}) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$VIDIOC_G_FREQUENCY(r3, 0xc02c5638, &(0x7f0000000140)={0x7, 0x4, 0x3}) ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000000)={{0x0, 0x0, 0x7}, 'syz1\x00', 0x16}) ioctl$UI_DEV_CREATE(r4, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x14, 0x0) r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_NETID(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r5, 0x400, 0x70bd2a, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4010}, 0x4) bind$bt_rfcomm(r3, &(0x7f00000002c0)={0x1f, {0x6, 0x7, 0xffffffffffffffff, 0x1, 0x7, 0x40}, 0x93}, 0xa) dup2(r0, r4) [ 551.638081] *** Guest State *** [ 551.660590] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 551.697004] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:52:20 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = msgget(0x3, 0x111) msgctl$IPC_RMID(r1, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x1800000000000, 0x2000, 0x0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f00000001c0)=0x20) [ 551.711579] CR3 = 0x00000000fffbc000 [ 551.724978] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 551.733502] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 551.741858] input: syz1 as /devices/virtual/input/input369 05:52:21 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="f2516469722c00"]) r0 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x66f9, 0x20002) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x80045700, &(0x7f0000000040)) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000080)={0x5, 0xed, 0x4, 0x200, 0x5, "7e08c57a7e707d4c0c35ba8648112f07c33ef8", 0x39, 0x6}) 05:52:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x6, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000300)='/dev/vcs#\x00', 0x159, 0x4000) recvfrom$ax25(r1, &(0x7f0000000340)=""/129, 0x81, 0x2, &(0x7f0000000400)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, [@null, @bcast, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @default]}, 0x48) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 551.758366] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 551.771484] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 551.779736] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:21 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x10000, 0x0) ioctl$CAPI_GET_FLAGS(r1, 0x80044323, &(0x7f0000000040)) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 551.812124] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.834216] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.854704] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:21 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x7fff, 0x80000) accept4$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x2711}, 0x10, 0x800) 05:52:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 551.874753] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 551.884152] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 551.896360] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 551.961072] input: syz1 as /devices/virtual/input/input370 [ 551.974802] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 552.013146] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 552.027072] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 552.049724] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 552.061566] binder: 25733:25746 ioctl 890c 200002c0 returned -22 [ 552.067380] Interruptibility = 00000000 ActivityState = 00000000 [ 552.068119] binder: BINDER_SET_CONTEXT_MGR already set [ 552.074054] *** Host State *** [ 552.074066] RIP = 0xffffffff81174990 RSP = 0xffff888054a8f998 [ 552.074080] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 552.074094] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 552.074101] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 552.074111] CR0=0000000080050033 CR3=0000000094d0d000 CR4=00000000001426f0 [ 552.074121] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 552.074129] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 552.074133] *** Control State *** [ 552.074139] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 552.074144] EntryControls=0000d1ff ExitControls=002fefff [ 552.074154] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 552.074160] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 05:52:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) sched_getscheduler(r3) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x3, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x5, 0x3, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) r2 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x200000) fsetxattr$security_capability(r1, &(0x7f0000000100)='security.capability\x00', &(0x7f0000000140)=@v2={0x2000000, [{0x7, 0x1}, {0x100000000, 0x800}]}, 0x14, 0x2) bind$ax25(r2, &(0x7f0000000080)={{0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @default, @null, @bcast, @default]}, 0x48) ioctl$NBD_DISCONNECT(r2, 0xab08) [ 552.074166] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 552.074171] reason=80000021 qualification=0000000000000000 [ 552.074176] IDTVectoring: info=00000000 errcode=00000000 [ 552.074180] TSC Offset = 0xfffffed6197f754e [ 552.074183] TPR Threshold = 0x00 [ 552.074189] EPT pointer = 0x00000000a4dc201e [ 552.074197] Virtual processor ID = 0x0001 [ 552.104219] binder: 25733:25746 ioctl 40046207 0 returned -16 [ 552.289595] *** Guest State *** [ 552.293608] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 552.302974] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 552.312237] CR3 = 0x00000000fffbc000 [ 552.316011] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 552.322439] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 552.329160] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 552.336283] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 552.345050] binder: 25733:25747 ioctl 890c 200002c0 returned -22 [ 552.345613] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.359292] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.366508] binder: BINDER_SET_CONTEXT_MGR already set [ 552.367508] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.377947] binder: 25733:25746 ioctl 40046207 0 returned -16 [ 552.380850] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.394782] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.402857] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 552.402871] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 552.402879] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 552.402891] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 552.402898] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 552.402906] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 552.402913] Interruptibility = 00000000 ActivityState = 00000000 [ 552.402916] *** Host State *** [ 552.402925] RIP = 0xffffffff81174990 RSP = 0xffff88809db17998 [ 552.402938] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 552.402946] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 552.402954] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 552.402964] CR0=0000000080050033 CR3=0000000094d0d000 CR4=00000000001426e0 [ 552.402973] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 552.402982] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 552.402985] *** Control State *** [ 552.402990] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 552.402995] EntryControls=0000d1ff ExitControls=002fefff [ 552.403005] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 552.403013] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 552.533628] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 05:52:21 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, &(0x7f0000000040)=0x6) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:21 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/status\x00', 0x0, 0x0) getsockopt$nfc_llcp(r1, 0x118, 0x1, &(0x7f0000000200)=""/223, 0xdf) 05:52:21 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = gettid() r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000100)={0x0, 0x52, 0x20, 0x100}, &(0x7f0000000140)=0x10) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000180)={r2, 0x5, 0x3f, 0x7f, 0x4, 0x101}, 0x14) sysfs$2(0x2, 0x1a0, &(0x7f0000000000)=""/255) sched_getscheduler(r0) 05:52:21 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r1) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x4) 05:52:21 executing program 4: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x7, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000020000000000000000010000ff01290e00040000952b3c69f6000000070000000000000024a47d89123a715026376b24c5030a7d73937c285bcb7e042e38605719da3736125f177157bcae5ddf518ce3b5d919931d76c8b88695117b9d0c66f06dd616d3d03fd3df024a9fe5efdf125f064b412e6c6477"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0xd5, &(0x7f0000000300)=""/213, 0x41100, 0x1, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000440)={0x5, 0x3, 0x20, 0x3f}, 0x10}, 0x70) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) dup2(r0, r1) r2 = socket(0x0, 0x6, 0x1ff) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={0x0, @in={{0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0xb630, 0xfffffffffffffff7, 0x80000001, 0x6, 0x22}, &(0x7f0000000000)=0x98) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000140)={r3, 0x7fffffff}, 0x8) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r5 = syz_open_dev$audion(&(0x7f00000001c0)='/dev/audio#\x00', 0xffffffff, 0x0) ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f0000000200)) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000b000/0x2000)=nil}) bind$vsock_dgram(r2, &(0x7f0000000180)={0x28, 0x0, 0x0, @my=0x1}, 0xfffffffffffffffb) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000240)={0x10201, 0x1, 0xd000, 0x1000, &(0x7f000000b000/0x1000)=nil}) 05:52:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x40400, 0x0) bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000140)=r3, 0x4) [ 552.540273] reason=80000021 qualification=0000000000000000 [ 552.546581] IDTVectoring: info=00000000 errcode=00000000 [ 552.552207] TSC Offset = 0xfffffed5bfd47329 [ 552.556528] TPR Threshold = 0x00 [ 552.559896] EPT pointer = 0x0000000054b6701e [ 552.564463] Virtual processor ID = 0x0001 05:52:21 executing program 2: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xe9, 0x400800) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x7, 0x80}, 0xc) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:52:21 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$admmidi(&(0x7f0000000200)='/dev/admmidi#\x00', 0x6, 0x101000) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000240)={0x0, 0x7}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000002c0)={r2, 0x9a, 0x2, 0x52de, 0x5, 0x5}, &(0x7f0000000300)=0x14) r3 = syz_open_dev$adsp(&(0x7f0000000340)='/dev/adsp#\x00', 0x6, 0x8401) r4 = syz_open_dev$swradio(&(0x7f0000000140)='/dev/swradio#\x00', 0x0, 0x2) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r5 = add_key(&(0x7f0000000040)='big_key\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000100)="efe230f8f3d9328cf62c16c655ba9b65546eb0fe61f9c7d59a27312cee2f345cafed929ef98989a194b7", 0x2a, 0xfffffffffffffffe) getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000180)=0xc) keyctl$setperm(0x5, r5, 0x2) connect$inet(r3, &(0x7f0000000380)={0x2, 0x4e24, @local}, 0x10) [ 552.661572] input: syz1 as /devices/virtual/input/input371 05:52:22 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x4000, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f00000000c0)=0xd6, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 552.726053] *** Guest State *** [ 552.732442] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 552.743211] input: syz1 as /devices/virtual/input/input372 [ 552.749858] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 552.789193] CR3 = 0x00000000fffbc000 05:52:22 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x800, 0x0) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r1) dup2(r1, r0) 05:52:22 executing program 3: r0 = socket$inet(0xa, 0x807, 0x88002) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0x0, 0x0, 0x2}, &(0x7f0000000000)=0x20) [ 552.819716] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 552.846745] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 05:52:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 552.870686] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 552.887417] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 552.922834] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.934623] input: syz1 as /devices/virtual/input/input373 [ 552.955109] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.974837] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.984447] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 552.992775] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 553.002075] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 553.011219] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 553.019420] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 553.028330] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 553.036644] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 553.047224] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 553.055144] Interruptibility = 00000000 ActivityState = 00000000 [ 553.061912] *** Host State *** [ 553.065323] RIP = 0xffffffff81174990 RSP = 0xffff888058987998 [ 553.075393] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 553.089320] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 553.103395] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 553.111697] CR0=0000000080050033 CR3=00000000974e2000 CR4=00000000001426f0 [ 553.119994] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 553.125488] binder: BINDER_SET_CONTEXT_MGR already set [ 553.134388] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 553.135000] binder: 25814:25815 ioctl 40046207 0 returned -16 [ 553.151555] input: syz1 as /devices/virtual/input/input374 [ 553.158779] *** Control State *** [ 553.165242] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 553.172431] EntryControls=0000d1ff ExitControls=002fefff [ 553.178009] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 553.181412] binder: BINDER_SET_CONTEXT_MGR already set [ 553.185685] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 553.197588] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 553.201095] binder: 25814:25817 ioctl 40046207 0 returned -16 [ 553.210963] reason=80000021 qualification=0000000000000000 [ 553.217406] IDTVectoring: info=00000000 errcode=00000000 05:52:22 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) write$binfmt_aout(r0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="000004ff2f000000a500000002000000f0010000020000000000000000000000a47d7b59fa198c386fcf956a3996ed4c20c2ac0ba0307167d89d11702381ce896733691f17916b35934708587082cb7da602ad4f6816a66aef616c7484c642560000000000000000000000000000000000000000000000000000000000000000bbd5e2ce000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1609568d2673a4f803f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a4ad00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000788500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005b0c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000184f298654f3141400000000000000000000000000000000aa41544400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030fc2a0fc7cf4dcdd137911586ee834f6940935e85f663c6e350079484546aa25d8e74f9ada7e148c3cd30eabdfd728e36a114d80550f7f8f3654095eda91a3e092cfb700000000044c05949ef79d2c33cf5a045925ced134b67d6cc8eaca1aba621d7430028a7fbe354b8bf912e48c57499bfbe45367ed73f3a0389c5066ded1e6a2c51584cdaf179f055059b9b0c2faff4eebae6984a9374c4bfb29d688c2886151dea0fb392a12f4e9b98bd0c263eefe54ef3391c6ef60000"], 0x560) r1 = dup2(r0, r0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x80000, 0x0) ioctl$VIDIOC_S_TUNER(r1, 0x4054561e, &(0x7f0000000600)={0x7fff, "3d2db3a526c3295b372b99c93b58d2d675fd70201654a7a0debe7f17f0cab49b", 0x7, 0x2, 0x4, 0x80000000, 0x14, 0x3, 0xffffffffffffff81, 0x1}) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:22 executing program 3: r0 = socket$inet(0xa, 0x800, 0x2084) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x7f, 0x80000) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f0000000100)={0x3, 'syzkaller1\x00', 0x1}, 0xffffffffffffffa8) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0xce) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685, &(0x7f0000000140)={0x1, 0x3, 0x1000, 0xcb, &(0x7f0000000200)="0f0717af7a0a3664b251485f91402f636dfc04c93d129b4d25f3b21ba8ec0d564f433e5409a63a442745ff72ef8075ee02149a207a50549590f438664513c8525de5ce5481b11df05650b032915bfd0f65339922e9969dfeeba92e71d64c6d5ff180ca5e8f72a25b987ed29f134c1ad5d75d76eec3f2f65bf642184c81f2f44fdba4d58203b5af25ecb94e4b9ea8d98487c7d2cc4d8ef3e4e17d3edf13f3a686c21543e4717758f118e0c76385944ccbe96fa36b501724330462cd60fdd8290357504abd9b2a2766f500b4", 0x13, 0x0, &(0x7f0000000000)="bba2e02af5dca89d00b779ecd39543acd72aa4"}) ioctl$KDSKBLED(r2, 0x4b65, 0x200) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:22 executing program 4: r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/validatetrans\x00', 0x1, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000200)=0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x2800, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000080}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"/269], 0x78}, 0x1, 0x0, 0x0, 0x4}, 0x44001) 05:52:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='nonumtail=0,uni_xlate=1,uni_hlate=0,\x00']) 05:52:22 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x5) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) [ 553.223346] TSC Offset = 0xfffffed584282841 [ 553.227758] TPR Threshold = 0x00 [ 553.231654] EPT pointer = 0x00000000a567901e [ 553.238394] Virtual processor ID = 0x0001 05:52:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$read(0xb, r3, &(0x7f0000000300)=""/214, 0xd6) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000180)='/selinux/policy\x00', 0x0, 0x0) ioctl$TIOCLINUX7(r4, 0x541c, &(0x7f00000001c0)={0x7, 0x80000000}) 05:52:22 executing program 3: prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000040)) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x82, 0x0) ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x1) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = semget(0x1, 0x0, 0x10) semctl$IPC_RMID(r2, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:22 executing program 3: r0 = socket$inet(0xa, 0x3, 0xc5) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x1, 0x0, 0x0, 0x6}, &(0x7f0000000000)=0x20) [ 553.376453] input: syz1 as /devices/virtual/input/input375 05:52:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="726f6e5b93c4646972fd6daad52c0f6f90d44e43bb08e44c64bb0b"]) r0 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x100000001, 0x101) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x16, 0x95a116d77c79eb7}, 0x14) [ 553.420513] *** Guest State *** [ 553.424807] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 553.444731] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 553.454186] CR3 = 0x00000000fffbc000 [ 553.457912] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 553.464058] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 553.482506] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 553.492597] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 553.506038] input: syz1 as /devices/virtual/input/input376 [ 553.521059] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:22 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) ioctl$KVM_GET_XCRS(r0, 0x8188aea6, &(0x7f0000000000)={0xa, 0x7, [{0x1f, 0x0, 0x243}, {0x401, 0x0, 0x800000000}, {0x80000001, 0x0, 0xffffffff}, {0x0, 0x0, 0xc81a}, {0x1f, 0x0, 0x8}, {0x80, 0x0, 0x9}, {0x100, 0x0, 0x100}, {0x7, 0x0, 0x8}, {0x7a5a, 0x0, 0xfc8}, {0x9, 0x0, 0x8}]}) [ 553.551453] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 553.582234] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 553.606976] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 553.619445] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 553.627545] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 553.635814] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 553.650417] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 553.658427] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 553.679644] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 553.688654] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 553.703594] Interruptibility = 00000000 ActivityState = 00000000 [ 553.709959] *** Host State *** [ 553.713270] RIP = 0xffffffff81174990 RSP = 0xffff88805df5f998 [ 553.719257] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 553.734317] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 553.742213] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 553.748110] CR0=0000000080050033 CR3=0000000084d05000 CR4=00000000001426f0 [ 553.755181] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 553.755190] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 553.755193] *** Control State *** [ 553.755199] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 553.755204] EntryControls=0000d1ff ExitControls=002fefff [ 553.755213] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 553.755219] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 553.755225] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 553.755230] reason=80000021 qualification=0000000000000000 [ 553.755235] IDTVectoring: info=00000000 errcode=00000000 [ 553.755239] TSC Offset = 0xfffffed525ba477d [ 553.755244] TPR Threshold = 0x00 [ 553.755252] EPT pointer = 0x000000009c27b01e [ 553.771478] Virtual processor ID = 0x0001 [ 553.817632] binder: 25864:25865 ioctl 4054561e 20000600 returned -22 05:52:23 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'syz_tun\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x27}}}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r1, 0x10f, 0x83, &(0x7f0000000080), &(0x7f0000000100)=0x4) 05:52:23 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = open(&(0x7f00000001c0)='./file0\x00', 0x4669091062afcc55, 0x101) write$binfmt_script(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="2321202e2f66696c6530202f6465762f6b766d00202f6465762f6b766d00200ac4bcf39800e95dcef2b6e2032443effd4849e2fbebeadb7b43850e78814dd04c76a74eb3"], 0x2f) connect$l2tp(r2, &(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, r2, 0x4, 0x3, 0x4, 0x1, {0xa, 0x4e24, 0x2, @remote, 0xffffffff}}}, 0x3a) ioctl$LOOP_SET_FD(r2, 0x4c00, r0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000080)={{{@in=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@loopback}}, &(0x7f0000000000)=0xe8) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000180)=r3) openat$tun(0xffffffffffffff9c, &(0x7f0000000280)='/dev/net/tun\x00', 0x40000, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f00000002c0)={0x0, 0x6d, "4e4278706ce7b352e1eaeab3f08e0fd6adaa9bb123c2e29371b4a16e6f0b9916703c304bb8f7ff1169ca0ce0007ed4e8f4367060f87e5acf309b26bf5d89127ecd01703184a469f11cd03c52428e530c2bdbf45a3bbe43028d400d9808a5dfa6afd1e174d1e9421003ea6afdde"}, &(0x7f0000000340)=0x75) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f00000003c0)={@mcast2, 0xf51f, 0x1, 0x0, 0x4, 0x3, 0x401}, &(0x7f0000000400)=0x20) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000380)={r4, 0xa600}, 0x8) [ 553.855483] binder: 25864:25865 ioctl 4054561e 20000600 returned -22 05:52:23 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x10000, 0x0) openat$cgroup_ro(r0, &(0x7f0000000040)='cpuset.effective_mems\x00', 0x0, 0x0) ioctl$SIOCAX25ADDFWD(r0, 0x89ea, &(0x7f0000000080)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) 05:52:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x2000, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r3, 0x10f, 0x81, &(0x7f0000000140)=0x8, 0x4) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:23 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:23 executing program 3: r0 = socket$inet(0xa, 0x2, 0xb801) r1 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x1, 0x2000) ioctl$VFIO_GET_API_VERSION(r1, 0x3b64) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x400000) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r2, 0xc1105518, &(0x7f0000000200)={{0xca08, 0x0, 0x9, 0x8, 'syz1\x00', 0x5}, 0x2, 0x3, 0x257d70f, r3, 0x5, 0x5, 'syz1\x00', &(0x7f0000000080)=['^vboxnet0keyring{J^\x00', '}\x00', '+\x00', '\x00', '\x00'], 0x1a, [], [0xffffffff, 0x0, 0x5, 0x2]}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 553.927085] *** Guest State *** [ 553.930644] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 553.939845] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 553.950232] input: syz1 as /devices/virtual/input/input377 [ 553.952559] CR3 = 0x00000000fffbc000 [ 553.960356] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 553.970510] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 553.992213] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 554.024278] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 05:52:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:23 executing program 3: openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x100, 0x0) r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 554.040667] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.067260] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:23 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) r1 = add_key$user(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)="fb9cab3b0751edcd84ef73ca25f749bf47bac0b8dbf0a9ea36a451c75613126bef28ad", 0x23, 0x0) r2 = add_key(&(0x7f0000000200)='cifs.spnego\x00', &(0x7f0000000240)={'syz', 0x1}, &(0x7f0000000280)="7d17062045339aa168da9f28a73dcbdb5a2cfc78d26bbfd333680e30997d44895c1dc2f23ad630f123f5dc9659395bd1472dca1abcabc98c160b725cddff70b251f5aec61c451f1312fd98b44855eacec4d3bac2d3c5c8b87181b5f87b15d44422086715a9f9d3bf3e1fbab141d5e305cafccbaea41fc4bce2b7cb08903448d4a5508ab1ca6cf9f14249125e59efa413159676b03381d74ecd0d82ef678f86686f1c09eb989016b5", 0xa8, 0xfffffffffffffff8) keyctl$negate(0xd, r1, 0x2, r2) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/status\x00', 0x0, 0x0) setsockopt$inet6_dccp_int(r3, 0x21, 0x4, &(0x7f00000000c0)=0xffff, 0x4) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r3, r0) [ 554.108436] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.146134] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:23 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x6, 0xc0400) ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0) 05:52:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x4100, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x6080, 0x0) ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000080)={'ip6gretap0\x00', 0x3}) ioctl$DRM_IOCTL_AUTH_MAGIC(r1, 0x40046411, &(0x7f0000000040)=0x1) ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430) getresgid(&(0x7f0000000240), &(0x7f0000000280)=0x0, &(0x7f00000002c0)) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x1000002, &(0x7f0000000540)=ANY=[@ANYBLOB="74cb6190730900642c72e619495b76", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c64666c7467a0003db1d8e99a3aba74178a314f16702642b34a273e2339eda9d9bdcba3c36c51c1cfb83dbea1a32abddc263fa8d26e6446049756e55de8d610b22d0877316f130691b3a582f434589d09fcb7785329baa00f29e3a0034f267608e6256232bc808805ffe25d7ec1a1ecba9b9a0573ee80c3e8d9a7d607d75d88bd20305423611ded10f5887712cbf3c2f5c5ed7c0a3a47d9980095af3564fca67367cdcab580f8bb626a0f14c877948c126a8286e289c78c29d72a8987bc6680c65021a81bd37e254a0d8947ae0000000000000000", @ANYRESHEX=r2, @ANYBLOB=',fsmagic=0x0000000000000000,pcr=00000000000000000027,subj_type=ip6gretap0\x00,\x00']) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000100)={'nr0\x00', 0x7f}) recvmmsg(r1, &(0x7f0000005780)=[{{&(0x7f0000000300)=@can, 0x80, &(0x7f0000001740)=[{&(0x7f0000000380)=""/190, 0xbe}, {&(0x7f0000000440)}, {&(0x7f0000000480)}, {&(0x7f00000004c0)=""/9, 0x9}, {&(0x7f00000006c0)=""/103, 0x67}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x6, &(0x7f00000017c0)=""/4096, 0x1000}, 0x7fff}, {{&(0x7f00000027c0)=@ipx, 0x80, &(0x7f0000002ec0)=[{&(0x7f0000002840)=""/47, 0x2f}, {&(0x7f0000002880)=""/73, 0x49}, {&(0x7f0000002900)=""/33, 0x21}, {&(0x7f0000002940)=""/106, 0x6a}, {&(0x7f00000029c0)=""/36, 0x24}, {&(0x7f0000002a00)=""/184, 0xb8}, {&(0x7f0000002ac0)=""/199, 0xc7}, {&(0x7f0000002bc0)=""/224, 0xe0}, {&(0x7f0000002cc0)=""/241, 0xf1}, {&(0x7f0000002dc0)=""/205, 0xcd}], 0xa, &(0x7f0000002f80)=""/76, 0x4c}, 0xa4d}, {{&(0x7f0000003000)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x80, &(0x7f0000004080)=[{&(0x7f0000003080)=""/4096, 0x1000}], 0x1, &(0x7f00000040c0)=""/43, 0x2b}, 0x1000}, {{&(0x7f0000004100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f00000056c0)=[{&(0x7f0000004180)=""/212, 0xd4}, {&(0x7f0000004280)=""/26, 0x1a}, {&(0x7f00000042c0)=""/54, 0x36}, {&(0x7f0000004300)=""/210, 0xd2}, {&(0x7f0000004400)=""/253, 0xfd}, {&(0x7f0000004500)=""/122, 0x7a}, {&(0x7f0000004580)=""/4096, 0x1000}, {&(0x7f0000005580)=""/190, 0xbe}, {&(0x7f0000005640)=""/70, 0x46}], 0x9}, 0x9}], 0x4, 0x12000, &(0x7f0000005880)={0x0, 0x1c9c380}) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14) [ 554.161782] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.179578] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 554.187995] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 05:52:23 executing program 3: r0 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x101, 0x608302) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000040)) r1 = socket$inet(0xa, 0x4, 0x87) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, &(0x7f0000000200)=0x20) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000080), &(0x7f0000000100)=0x14) connect(r1, &(0x7f0000000140)=@un=@abs={0x1, 0x0, 0x4e24}, 0x80) [ 554.214004] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 554.238691] input: syz1 as /devices/virtual/input/input379 [ 554.240102] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 05:52:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ptype\x00') r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r3, 0x200, 0x70bd26, 0x25dfdbfe, {{}, 0x0, 0xb, 0x0, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x4805) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x10000, 0x0, 0x4, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 554.258633] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 554.285206] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 554.306806] Interruptibility = 00000000 ActivityState = 00000000 [ 554.313467] *** Host State *** [ 554.316719] RIP = 0xffffffff81174990 RSP = 0xffff88808ed8f998 [ 554.325267] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 554.332082] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 554.344555] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 554.352841] CR0=0000000080050033 CR3=0000000064b6c000 CR4=00000000001426f0 [ 554.365201] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 554.371949] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 554.378082] *** Control State *** [ 554.378090] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 554.378095] EntryControls=0000d1ff ExitControls=002fefff [ 554.378106] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 554.378112] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 554.378118] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 554.378124] reason=80000021 qualification=0000000000000000 [ 554.378130] IDTVectoring: info=00000000 errcode=00000000 [ 554.378134] TSC Offset = 0xfffffed4df76fcf6 [ 554.378138] TPR Threshold = 0x00 05:52:23 executing program 2: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') mkdir(&(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) r1 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0) renameat2(r1, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="726f6469852c00929386ffcb9bbb5c423a5e1890f647e83f5c15a948a463a2bc781ebb0b50606db285cb35fdea0d3426b98c4e5349632fb65948884b639e4abf0c4daec923ff8a1af9c7ffadf0f175dbe2fcfda9266bf726347d80f74fb9a3d13b24c64e8510d9158fe4c61368168800f7407a75655971b90be20cc66430aa47000d68563842e5a877c93fb8e81147fb594472c15f5d08606619c2acfafecb9889ca95b0af8a11cfa0fdccbbe1"]) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x4) timer_create(0x0, &(0x7f0000000080)={0x0, 0x3d, 0x1}, &(0x7f00000000c0)=0x0) timer_getoverrun(r2) [ 554.378148] EPT pointer = 0x00000000862b701e [ 554.414122] Virtual processor ID = 0x0001 05:52:23 executing program 3: r0 = socket$inet(0xa, 0x2, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0x2e7c, 0x3e80, 0x2, 0x1, 0x0, 0x0, 0x80000, 0x2, 0xfffffffffffff612, 0x7f, 0x5, 0xbe7, 0x20, 0x8001, 0x0, 0x800, 0x1, 0x9, 0xffffffffffffffff, 0x10001, 0x2, 0x1, 0x1000, 0xffffffff, 0xb6, 0x2, 0x3, 0x400, 0xfaa8, 0xc1, 0x8, 0xffffffffffff4efb, 0x4, 0x50, 0xff, 0x8001, 0x0, 0xf3e, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x20000, 0x9d, 0xfffffffffffffff8, 0x5, 0x9, 0x9, 0xffff000000}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x1) r1 = getpgrp(0xffffffffffffffff) r2 = syz_open_procfs(r1, &(0x7f0000000100)='maps\x00') write$P9_RREAD(r2, &(0x7f0000000200)={0x94, 0x75, 0x1, {0x89, "874c9a184693c84835ebc3d05b8cce641d01d35f8607f81b266d4e14f3aff40a034d51a013b0312b362e3bcdb72308517604f7222ee2ac92dd4a7b0e7bf60232b3a29e5e0e35f0ea8789aeefe9a30601eb517ff2d18adaaf58a5d52e891016b7bf1d8acf1e4c27da67026ab6eab87e519d6f65430b4ee04729a5bdad59336479d216a750b53344a929"}}, 0x94) [ 554.513131] *** Guest State *** [ 554.523440] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 554.550407] input: syz1 as /devices/virtual/input/input380 [ 554.569257] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 554.612704] CR3 = 0x00000000fffbc000 [ 554.631809] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 554.657639] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 554.705297] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 554.722592] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 554.739426] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.751685] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.759693] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.770195] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.778193] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 554.790157] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 554.798249] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 554.810220] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 554.818215] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 554.829085] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 554.835640] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 554.843191] Interruptibility = 00000000 ActivityState = 00000000 [ 554.849425] *** Host State *** [ 554.852721] RIP = 0xffffffff81174990 RSP = 0xffff888060057998 [ 554.858700] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 554.865292] FSBase=00007fbd9754f700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 554.873883] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 554.886066] CR0=0000000080050033 CR3=0000000064b6c000 CR4=00000000001426e0 [ 554.893244] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 554.899922] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 554.906034] *** Control State *** [ 554.909489] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 554.916262] EntryControls=0000d1ff ExitControls=002fefff [ 554.921767] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 554.928690] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 554.935503] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 554.942143] reason=80000021 qualification=0000000000000000 [ 554.948464] IDTVectoring: info=00000000 errcode=00000000 05:52:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) epoll_create1(0x80000) [ 554.954052] TSC Offset = 0xfffffed4900e404b [ 554.958405] TPR Threshold = 0x00 [ 554.962169] EPT pointer = 0x00000000a8b2101e [ 554.966682] Virtual processor ID = 0x0001 [ 555.037510] *** Guest State *** [ 555.045320] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 555.055980] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 555.069377] CR3 = 0x00000000fffbc000 [ 555.075748] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 555.086178] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 555.094306] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 555.105108] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 555.114669] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.126522] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.138796] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.152061] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.168253] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.192900] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 555.214865] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 555.237362] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 555.258222] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 555.278567] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 555.297430] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 555.309660] Interruptibility = 00000000 ActivityState = 00000000 [ 555.316295] *** Host State *** [ 555.319585] RIP = 0xffffffff81174990 RSP = 0xffff88809db17998 [ 555.330681] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 555.337208] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 555.349147] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 555.356127] CR0=0000000080050033 CR3=00000000953cb000 CR4=00000000001426f0 [ 555.367360] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 555.374982] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 555.385531] *** Control State *** [ 555.389115] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 05:52:24 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000040)=[@in={0x2, 0x4e22, @rand_addr=0x100000000}, @in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e21, @empty}], 0x30) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) 05:52:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x40000, 0x0) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:24 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f00000000c0)={0xa, 0x8000, 0x5}) dup2(r1, r0) syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x5, 0x80041) 05:52:24 executing program 3: r0 = socket$inet(0xa, 0x801, 0xff) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, &(0x7f0000000040)) 05:52:24 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) r1 = gettid() syz_open_procfs(r1, &(0x7f0000000080)='net/fib_triestat\x00') r2 = getpgrp(0xffffffffffffffff) syz_open_procfs(r2, &(0x7f00000000c0)='attr/prev\x00') getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000100)=0x4) [ 555.397720] EntryControls=0000d1ff ExitControls=002fefff [ 555.407666] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 555.423428] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 555.435975] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 555.457700] reason=80000021 qualification=0000000000000000 [ 555.472195] IDTVectoring: info=00000000 errcode=00000000 [ 555.478656] input: syz1 as /devices/virtual/input/input381 [ 555.483279] TSC Offset = 0xfffffed4471c87e3 [ 555.496479] TPR Threshold = 0x00 [ 555.503722] EPT pointer = 0x0000000090eb001e 05:52:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$mice(&(0x7f00000001c0)='/dev/input/mice\x00', 0x0, 0x800) syz_open_dev$sndpcmp(&(0x7f0000000240)='/dev/snd/pcmC#D#p\x00', 0x3c, 0xe47f535852f848e0) setsockopt$RDS_CONG_MONITOR(r2, 0x114, 0x6, &(0x7f0000000200)=0x1, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) getresgid(&(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)) lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='trusted.overlay.origin\x00', &(0x7f00000000c0)='y\x00', 0x35b, 0x1) [ 555.509102] Virtual processor ID = 0x0001 05:52:24 executing program 1: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x40000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYBLOB="930000007cf62eb3b9377f83f74d1eb8ba2a883116164ffb92f0baf401d186856d41a7abe54558ae02d45c85e18cb18c1c9f43f17ddaa344e796ce6748edbd8baf84ddf1b0b1290b55031938f4a35016749c5d8de78015e6fda66c69766b4aa817598e030e9c28430ad9ee90ff96a51d2ac3558a0756d49f1154746440d380165572b373db980167e85026e1256b0dd15350e13ce5abc8"], &(0x7f0000000300)=0x9b) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000340)={r1, 0x228, 0x7fe}, 0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xfffffffffffffffd) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) 05:52:24 executing program 2: setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.origin\x00', &(0x7f0000000080)='y\x00', 0x2, 0x1) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="947a8000"]) 05:52:24 executing program 3: r0 = socket$inet(0xa, 0x5, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:24 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x80, 0x0) ioctl$SG_GET_COMMAND_Q(r1, 0x2270, &(0x7f0000000140)) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x7fff, 0x204000) dup2(r2, r0) ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, &(0x7f0000000080)={0x2, 0x1, 0x5}) 05:52:24 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000000)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:25 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{}, {0x0}]}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x101000, 0x0) ioctl$MON_IOCQ_URB_LEN(r1, 0x9201) ioctl$DRM_IOCTL_LOCK(r1, 0x4008642a, &(0x7f0000000140)={r2, 0x100010001}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000180)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000200)=0x20) open_by_handle_at(r1, &(0x7f0000000300)={0x2a6, 0x8, "cf62285874faa2b3c3721be52ea7048f2170503076b8e7b3d9fd7a15107c8116f1f20854686036bb0f3d6733ae9c1e814a0739daf02e0886be997e9994c08833fb380e5081d96765cea1b9543295f994dadb9814766f3e6418a4218905582cddf54bc117599c67cd1fc5002e56d051a9e2988db8628ed0ba509e6f2c09b0d94209381f10c13fd9f38fe269b98d5f4bc69bc30815cfff3bff5a3876f92ad6a0d9bcfa38939bcd3aaa5f1e3607f6b8276449ee267508936e898c3bd12030dec0e10d89dde160577eb2833dfdcf4edd565e57356becb822573b7b23bf94f9fd5b021c0e995b2860290dbbab2ba7"}, 0x400000) [ 555.753036] input: syz1 as /devices/virtual/input/input383 [ 555.825393] *** Guest State *** [ 555.829683] input: syz1 as /devices/virtual/input/input384 [ 555.845415] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 555.882173] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 555.889736] binder: BINDER_SET_CONTEXT_MGR already set [ 555.899125] CR3 = 0x00000000fffbc000 [ 555.904174] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 555.904871] binder: 26002:26003 ioctl 40046207 0 returned -16 [ 555.915793] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 555.926728] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 555.938823] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 555.955390] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 555.964189] binder: BINDER_SET_CONTEXT_MGR already set [ 555.965284] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:25 executing program 5: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x10000, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x3, 0x2) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, r1, 0x0, 0x26, &(0x7f00000000c0)='bdev%.wlan0}++cgroupsecurityproc*\'em0\x00', 0xffffffffffffffff}, 0x30) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r0, 0xc1105518, &(0x7f0000000180)={{0x5, 0x5, 0x3, 0x0, '\x00', 0xff}, 0x2, 0x200, 0x100, r3, 0x4, 0x7fff, 'syz0\x00', &(0x7f0000000140)=['/dev/dsp\x00', '\x00', '\x00', '@,selinuxmd5sum\'^wlan1\x00'], 0x22, [], [0x7fffffff, 0x8001, 0xce, 0x5]}) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) ppoll(&(0x7f00000002c0)=[{r2, 0x8}, {r4, 0x8}, {r4, 0x1}], 0x3, &(0x7f0000000300), &(0x7f0000000340)={0x10}, 0x8) ioctl$VIDIOC_S_AUDIO(r0, 0x40345622, &(0x7f0000000380)={0xffff, "cab9911e719d0af285ebb858bd4ed4980aef1d5e2ac755505abba43c12eeb3e5", 0x3, 0x1}) 05:52:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x5, 0xf000, 0x2000, &(0x7f000000a000/0x2000)=nil}) socket$caif_seqpacket(0x25, 0x5, 0x4) 05:52:25 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x2e, 0x90040) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000040)={0x0, 0x80000}) r3 = dup(r0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000080)={r2, 0x80000, r3}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:25 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = getpid() prctl$PR_SET_PTRACER(0x59616d61, r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000000)={0x0, 0x4}, 0x14) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x10090000000038) fcntl$setstatus(r2, 0x4, 0x80000000002c00) r4 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x4c7f, 0x20200) dup2(r4, r0) 05:52:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = getuid() mq_unlink(&(0x7f0000000800)='/dev/usbmon#\x00') getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000080)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@loopback}}, &(0x7f0000000180)=0xe8) r2 = geteuid() stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) stat(&(0x7f0000000300)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = syz_open_dev$usbmon(&(0x7f00000006c0)='/dev/usbmon#\x00', 0x0, 0x3) ioctl$TIOCGISO7816(r6, 0x80285442, &(0x7f00000007c0)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000440)={0x0, 0x0, 0x0}, &(0x7f0000000480)=0xc) fstat(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000540), &(0x7f00000005c0)=0x0, &(0x7f0000000600)) r10 = getegid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000640)={0x0, 0x0, 0x0}, &(0x7f0000000680)=0xc) getgroups(0x0, &(0x7f00000006c0)) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000700)=ANY=[@ANYBLOB="02000000010004000000000002000400", @ANYRES32=r0, @ANYBLOB="02000500", @ANYRES32=r1, @ANYBLOB="02000100", @ANYRES32=r2, @ANYBLOB="040004000000000008000100", @ANYRES32=r3, @ANYBLOB="08000300", @ANYRES32=r4, @ANYBLOB="08000500", @ANYRES32=r5, @ANYBLOB="08000400", @ANYRES32=r7, @ANYBLOB="08000500", @ANYRES32=r8, @ANYBLOB="08000500", @ANYRES32=r9, @ANYBLOB="08000400", @ANYRES32=r10, @ANYBLOB="08000100", @ANYRES32=r11, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB="10000700000000012000030000000000"], 0x84, 0x1) [ 555.984601] binder: 26002:26005 ioctl 40046207 0 returned -16 [ 555.985350] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.002836] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.011217] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.035940] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 556.051605] input: syz1 as /devices/virtual/input/input385 [ 556.060678] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 05:52:25 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x1}, &(0x7f00000001c0)=0x20) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$TCSETX(r1, 0x5433, &(0x7f0000000040)={0x4, 0x101, [0x7, 0xfe, 0x49, 0x0, 0x8], 0x1}) [ 556.089834] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 556.117824] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 556.126601] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 556.134849] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 556.142928] Interruptibility = 00000000 ActivityState = 00000000 [ 556.149545] *** Host State *** [ 556.158499] RIP = 0xffffffff81174990 RSP = 0xffff8880838f7998 [ 556.176464] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 05:52:25 executing program 4: r0 = syz_open_dev$dmmidi(&(0x7f0000000140)='/dev/dmmidi#\x00', 0xffffffffffffffff, 0x800) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r0, 0xc0305616, &(0x7f0000000180)={0x0, {0x90}}) r1 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x100000001, 0x4000) ioctl$SG_SET_COMMAND_Q(r1, 0x2271, &(0x7f0000000100)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x800, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x10007, 0x5, 0x10000, 0x2000, &(0x7f000000a000/0x2000)=nil}) 05:52:25 executing program 3: r0 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x3, 0x2) ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f00000000c0)) r1 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000000)={0x0, 0x8, 0x0, 0x0, 0x1000009, 0x6, 0x0, 0x4}, &(0x7f00000001c0)=0x20) [ 556.192082] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 556.229309] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 05:52:25 executing program 3: openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/attr/exec\x00', 0x2, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000140)={0x20, 0x3f, 0x0, 0x1ff}, 0x8) r1 = socket$inet(0xa, 0x801, 0x84) ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x1000) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0xae80, &(0x7f0000000000)) syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="72547269722c40dc713de61b9517516c3905955c8bf564e62b7e38e2880fd25e63b4a663222692f7774921d69659e210755b7c70947aa827bf6354c0f0dfc613117b95547344cdf53c5170e7e77dd217b6f9aad1b27f7d6e459dad4e22a65a55d7a9172f53bdaed82b064431fca40f49a16dc75a0dd9ebf412e9bfb0cf4d3afd56edfe8b0c10f68875d2764bf8f6a1c067e78982118caddef854563662f826d6c9b91416e7470dab25a5f277a61e2620dc11016256c78844710b963ecf10495867c9c7e2b89000000000000000"]) [ 556.257252] CR0=0000000080050033 CR3=00000000a8417000 CR4=00000000001426e0 [ 556.277953] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 556.286308] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 556.293484] *** Control State *** [ 556.318943] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 556.335215] EntryControls=0000d1ff ExitControls=002fefff [ 556.344470] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 556.371496] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 556.385656] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 556.396881] reason=80000021 qualification=0000000000000000 [ 556.404613] IDTVectoring: info=00000000 errcode=00000000 [ 556.412358] TSC Offset = 0xfffffed3dbcfe31b [ 556.416882] TPR Threshold = 0x00 05:52:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:25 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x3, 0x400000) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000180)=0x4, 0x4) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x6, 0x1) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_NET_GET(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x300}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440100c58990611d058c5401972c23142331cd09952fb8eed1187ef758e9957a62d600b9a35643286cb6fc0b46df97f2253059e4c594e0e7dbc5559619aae12bcb72d51bc9e022e2e4ef", @ANYRES16=r2, @ANYBLOB="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"], 0x144}, 0x1, 0x0, 0x0, 0x40}, 0x10) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000140)={0x101ff, 0x5, 0x0, 0x1000, &(0x7f000000b000/0x1000)=nil}) [ 556.420700] EPT pointer = 0x00000000838ef01e [ 556.426461] Virtual processor ID = 0x0001 05:52:25 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup(r0) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f0000000180)={r2, 0x3, &(0x7f0000000080)=[0x8, 0x7, 0x6], &(0x7f00000000c0)=[0xb2a7], 0x10, 0x9, 0x9, &(0x7f0000000100)=[0x5, 0x9, 0x1, 0x20, 0x5, 0x3, 0x200, 0x7, 0x7fffffff], &(0x7f0000000140)=[0x401, 0x2]}) r3 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) 05:52:25 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x480002, 0x0) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1}) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x5, 0x0, 0x1000, &(0x7f000000b000/0x1000)=nil}) [ 556.532568] *** Guest State *** [ 556.535890] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 556.556286] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 556.572687] CR3 = 0x00000000fffbc000 [ 556.603457] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 556.609469] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 556.619157] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 556.629607] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 556.638638] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.652671] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.669059] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.677205] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.685323] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 556.693496] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 556.701727] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 556.709762] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 556.717810] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 556.725938] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 556.732407] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 556.739853] Interruptibility = 00000000 ActivityState = 00000000 [ 556.746197] *** Host State *** [ 556.749396] RIP = 0xffffffff81174990 RSP = 0xffff888091ee7998 [ 556.755436] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 556.761929] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 556.769725] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 556.775713] CR0=0000000080050033 CR3=00000000a8417000 CR4=00000000001426e0 [ 556.782777] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 556.789446] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 556.795615] *** Control State *** [ 556.799065] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 556.802407] binder: 26064:26065 ioctl c0086420 20000040 returned -22 [ 556.805797] EntryControls=0000d1ff ExitControls=002fefff [ 556.817791] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 556.818030] binder: 26064:26065 ioctl c0406429 20000180 returned -22 [ 556.824820] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 556.824826] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 556.824831] reason=80000021 qualification=0000000000000000 [ 556.824836] IDTVectoring: info=00000000 errcode=00000000 [ 556.824840] TSC Offset = 0xfffffed37aa7cd98 [ 556.824844] TPR Threshold = 0x00 [ 556.824851] EPT pointer = 0x000000009a71201e [ 556.824859] Virtual processor ID = 0x0001 [ 556.847020] binder: BINDER_SET_CONTEXT_MGR already set [ 556.856718] binder: 26064:26065 ioctl 40046207 0 returned -16 [ 556.877138] binder: 26064:26065 ioctl c0086420 20000040 returned -22 [ 556.885516] binder: 26064:26066 ioctl c0406429 20000180 returned -22 [ 556.898779] binder: BINDER_SET_CONTEXT_MGR already set [ 556.904126] binder: 26064:26066 ioctl 40046207 0 returned -16 05:52:28 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="726f6469721a00e0e1230db7d5235f9f"]) 05:52:28 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0xffffffffffffffbc) 05:52:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x101080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/policy\x00', 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000080)={0xdd4e}, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x1, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x4) 05:52:28 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, 0x0, 0x0) r1 = dup2(r0, r0) r2 = memfd_create(&(0x7f0000000340)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000240)="b156d417452c8f6d46edb3b1077f2abaa85e3489c66107abcc617d9aeb42aa515f23c9150bfdba5fa1be4e0415cb2c2d4a1cdff5ab24d3676cc093ea0ffa364b7e5089e349cd8014e7725dc78598dd7582e9e341524debb553e4901f0c22a4", 0x5f) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) sendfile(r2, r2, &(0x7f0000000200), 0xff8) r3 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='Z\x00') getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000040)={'security\x00'}, &(0x7f00000000c0)=0x54) r4 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) 05:52:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) getsockopt$netrom_NETROM_IDLE(r1, 0x103, 0x7, &(0x7f0000000000)=0x7f, &(0x7f0000000140)=0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:28 executing program 3: openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x101000, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40201, 0x0) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = socket$inet(0xa, 0x801, 0x84) openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 559.131065] input: syz1 as /devices/virtual/input/input387 05:52:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000340)='/dev/midi#\x00', 0x6, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000380)={0x2710, 0x1, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/checkreqprot\x00', 0x40000, 0x0) setsockopt$inet_udp_int(r2, 0x11, 0x66, &(0x7f0000000100)=0x3, 0x4) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x3, 0x20, 0x81, 0x7ff}, &(0x7f0000000180)=0x18) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f00000001c0)={r3, 0x18, "6dd09b046bebbb55044363d24e9529f5ac1e5dd672de5041"}, &(0x7f0000000200)=0x20) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000300)={0x1fd, 0x7, 0x0, 0x2000, &(0x7f000000b000/0x2000)=nil}) r5 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$VIDIOC_ENCODER_CMD(r5, 0xc028564d, &(0x7f0000000080)={0x3, 0x1, [0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x20, 0xffffffffffffffe0]}) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r2, 0xc0a85322, &(0x7f0000000240)) [ 559.179548] *** Guest State *** [ 559.188964] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 559.209898] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:52:28 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80000) syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x800, 0x2000) ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) [ 559.229992] CR3 = 0x00000000fffbc000 [ 559.244666] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 559.263819] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 05:52:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40000, 0x0) write$FUSE_INIT(r0, &(0x7f0000000040)={0xf2, 0x0, 0x2, {0x7, 0x1f, 0x80000000, 0x405002, 0x4, 0x5, 0x1, 0x99a}}, 0x50) 05:52:28 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000040)=0x4, 0x4) [ 559.275543] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 559.288486] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 559.299432] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:28 executing program 4: prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 559.323402] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 559.332709] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 559.363543] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 559.376625] input: syz1 as /devices/virtual/input/input388 [ 559.388879] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 559.429196] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 559.443464] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 559.452653] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 559.463501] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 05:52:28 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x24}) setsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, 0x0, 0x0) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, 0x0, 0x0, 0x0) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f00000000c0)=""/159) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_G_AUDIO(0xffffffffffffffff, 0x80345621, 0x0) ioctl$CAPI_SET_FLAGS(r1, 0x80044324, &(0x7f0000000280)=0x7fffffffffffffe) r2 = syz_open_dev$vbi(&(0x7f0000000580)='/dev/vbi#\x00', 0x1, 0x2) r3 = memfd_create(&(0x7f0000000040)='\x00', 0x4) ftruncate(r3, 0x1000000) sendfile(r2, r3, &(0x7f00000000c0)=0xf18001, 0xeefffdef) ioctl$RTC_VL_READ(0xffffffffffffffff, 0x80047013, &(0x7f0000000400)) ioctl$RTC_AIE_OFF(r1, 0x7002) stat(0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r4) getsockname$netlink(r1, &(0x7f00000001c0), 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f00000002c0)={0x4}, 0x1) ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, 0x0) flistxattr(r1, &(0x7f00000004c0)=""/164, 0xa4) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x8000}) openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000480)='/proc/thread-self/attr/current\x00', 0x2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x800) ioctl$TUNSETLINK(r6, 0x400454cd, 0x30e) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x400000, 0x0) socket(0x15, 0x1, 0x2) 05:52:28 executing program 3: r0 = socket$inet(0xa, 0x5, 0x4800) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, &(0x7f00000001c0)=0x20) [ 559.476282] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 559.489630] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 559.505386] Interruptibility = 00000000 ActivityState = 00000000 [ 559.519563] *** Host State *** 05:52:28 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x401, 0x0, 0x0, 0x4, 0x1000000000000000, 0xffffffffffffffff}, &(0x7f0000000000)=0x20) 05:52:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x1000, 0x201) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000080)=0x0) ioctl$LOOP_GET_STATUS64(r1, 0x4c05, &(0x7f0000000280)) getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000100)={'security\x00', 0x23, "ea1722f3f88bcc62e39b8ec2dacd6793dbefbe8df75123483d43f0bc943f7401fdf73d"}, &(0x7f0000000380)=0x47) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000640)={&(0x7f0000000600)='./file0\x00', 0x0, 0x8}, 0x10) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_GET_CLIENT(r1, 0xc0286405, &(0x7f0000000180)={0x0, 0x100000001, r2, 0x0, r3, 0x0, 0x40, 0x49f85879}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = request_key(&(0x7f00000003c0)='user\x00', &(0x7f0000000400)={'syz', 0x2}, &(0x7f0000000440)='/dev/midi#\x00', 0xfffffffffffffff9) keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000480)={r5, 0x21, 0xc}, &(0x7f0000000540)={'enc=', 'raw', ' hash=', {'rmd320-generic\x00'}}, &(0x7f00000004c0)="a69aa0f8be3842020be9c02b1a508713b4870278f0fc4311ddfd5f6c0c59effdcd", &(0x7f00000005c0)=""/12) socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x7, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x4000, 0x2000, &(0x7f000000a000/0x2000)=nil}) [ 559.529073] RIP = 0xffffffff81174990 RSP = 0xffff8880594b7998 [ 559.586662] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 559.609316] input: syz1 as /devices/virtual/input/input389 [ 559.611623] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 559.656820] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 559.671258] CR0=0000000080050033 CR3=00000000a4801000 CR4=00000000001426f0 [ 559.681497] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 559.703477] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 559.709571] *** Control State *** [ 559.720497] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 559.727203] EntryControls=0000d1ff ExitControls=002fefff [ 559.734232] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 559.741353] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 559.748020] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 559.753988] binder: BINDER_SET_CONTEXT_MGR already set [ 559.755026] reason=80000021 qualification=0000000000000000 [ 559.767010] binder: 26109:26129 ioctl 40046207 0 returned -16 [ 559.767724] IDTVectoring: info=00000000 errcode=00000000 [ 559.778664] TSC Offset = 0xfffffed20ff79f03 [ 559.783280] TPR Threshold = 0x00 [ 559.786734] EPT pointer = 0x000000009a72e01e [ 559.791266] Virtual processor ID = 0x0001 05:52:29 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=0x0) ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r2, 0x10, &(0x7f0000000080)={0x2e5e}) getegid() 05:52:29 executing program 3: openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x40, 0x0) r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0x20) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={r1, 0x6}, &(0x7f0000000040)=0x8) 05:52:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0xc000, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, @in6=@ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x27}}, 0x4e22, 0x800, 0x4e21, 0x0, 0xa, 0x80, 0x20, 0x5c, r1, r2}, {0x80, 0x5, 0x8, 0x8, 0x9, 0x7, 0xe1cc, 0x7fff}, {0x8, 0x4, 0x7, 0xd2eb}, 0xffffffffffffbcc9, 0x6e6bbf, 0xe85e592af0a1b13d, 0x0, 0x3, 0x2}, {{@in6=@local, 0x4d5, 0x7f}, 0xa, @in=@multicast1, 0x0, 0x1, 0x0, 0x6, 0x4, 0x80, 0x3}}, 0xe8) ioctl$KIOCSOUND(r0, 0x4b2f, 0x1) sendmmsg$nfc_llcp(r0, &(0x7f0000003200)=[{&(0x7f0000000200)={0x27, 0x0, 0x2, 0x3, 0x6, 0x5, "6288b77c3a3b9a877dd8a1de436796b23513208ee0948fcf0108225552ea9fa6bb87041a0d4c27321b977f4fe412e2229f05e887dfe0673ad098892720e6b6", 0x16}, 0x60, &(0x7f0000001840)=[{&(0x7f0000000280)="b0dfe987ce7b37bde25bf78179b3aacc731c8ba16440c0cc15b57b0fd9ec9556d8eecc082dc248bcb785099313d2a87c4188ec41574af27284dbb5aac7389b31eaa49b4360407fc1b9b46a146709cbe0054c5be7e102397a8e44dbed92e3ed9c95725154085dc3869d7521b93ec6e2e6ad1fc458b054547e7ac785268940f4472c4cf9697c533aaee1f521ab87fc2ec8e8", 0x91}, {&(0x7f00000003c0)="061904b660a3a45dd8ff2fcafd6fe457060a2b838585099916f384578d52587f088ff9070756fdfdeaff70c53ff13f466df03cb9eb2d7f5db005d598ee889d1fe935ac4b311516b42586a72b8e7a8f34d69b9ce2bbae173950700123de1314266f6e8b364dc662d4907d1549642aabe7105db18c3acadfc019836ff24221fe529b0b056cbb66746b061141867536fcce082a53fb134ecc32951c", 0x9a}, {&(0x7f0000000480)="f5949d374bc352c980364ab9daaa511fb9f9d1b4dc14f4047112fcce2994bd6c99471036ec2636a8f08db1f7d96f0d81b39eb2e8fe48a1bba0c7da845dafcb72152a4226781d52ee6f210cd837f7de25107ebaf4ec76380d4ec504ada44250d5c48793f7c665cff3d580187506", 0x6d}, {&(0x7f00000005c0)="8c5de13d42d83748f6cebe8492dc10effd119b96733da2c04655536be577a1591f21cbb07952eb6ace40c6ad1bb2e725c2622b6c66f0f6d3323231495933c97617a1a7cac1305641a39cf433c44b4d4b8ec440a8ce5b723e015cf0d7919eebc1165174d5fc48b8e4e71177cfd6f07cb894b15a2c72e6690974067a47975c11d086889405d11e26fa9bfb043b071963dbc8209b74c3b25816209bf4", 0x9b}, {&(0x7f0000000680)="77ef510777c0d650abdaa8619e848a7333793f9fb053d3af019cf1b321ed09ba449d5620168b6da909919f720765a2a5e2290c5402f2a9ca5e5736afa1c61ab488ba3f1e57046f35d5d7f80234df81b439661252d504e65ffb13c3f98d3c48d52df47108e8d376871e845eeae82240e6b200f6743ee476bc667b23e361a2722f7282405219f959f9da18e1ff931a4dcc25c11d77d22005f7cdb3eff4c907a263df341f2cdf7ea614d2ebf4deb92e77211cb562b1", 0xb4}, {&(0x7f0000000740)="7891fae50174f4628e49bd2fe5cb4ad452e1f8479b73e45be92c3d19965a04ce044f0ee1e4fb773f9b306df7da1e4b692cd19688d2b77f1d2f4b996ea672c9b21d4f3b1050208ae232a8dd6bfcf73611a56e062d5aeb6465d3928b037776e54b0c9e713d7df11c9ad3d75e2426af0d0560eacc7cb1cda55cfcfd659ba8bc2190da6570050b7818a6281b1826db5c2d46a4deac236944bebfba217d4fdc55a2c8c2fe560d42bc0f8ad2d3f260e306b219db646c25bfc7b6d00541c63b813fd5faac300f110fe2c2914d68659ea85c", 0xce}, {&(0x7f0000000840)="780642fd68bf513ea188ad82799216abe84a39eed8cb122cf2353fd76cbf973d051b79f4a16d49f239a4bcb223a5e47608a86c0d53bfda2bbda81244eee99906c187c9a48607d0737d47cecb7b3e887612274d9b06585bfd424c5fe546d457ba6e1d4ea892162a27c1f2cf2347853c5f0004c9ba1b10b3e6a6623a157134fa085ef3d70583e4d6307e36a2aca4c59284e46f621e327d035194a9dc784d732d03f18582b54cc80c168b6b107f5222f36e695fd3f6f964026dcd83ee30ae8e3fb7d4006b0a467f320904e439c14f20df9ebbff4717cdf57237a97384c69d2cf3739da7b7abc74682bd4c12921037da621b78552046add17115a397e7520dad7e043dd08119748468737774b9a19b06078a6eafb6e4c48373d9f9e0a60587e8c7ec83e14c6dce597f4b93048815dc521e9250c8150630e94377e6aaada4869a2d03fb6692552f93a68d2bb31c512864a6ff81e46b2a46f83643f6be99e7c4d538638ff427e1b5542480bf5fc432054ccc246d5e1117af347a095be01eafa1ee9a0f4bf4e282e89332cf9c0813e2d63fad8c0244f54cf9e5731feeae1b6df77817737c2b0ad6038e66308eae3f377c1c777d11d26a7e2c8c633c8383462fcbbc4fc405f2318b7616944d073b2a61f960ab8ff2e5518c9529b2dae76fe130f861c64da5e95a337b33c904c2adebfbabe83991e5da24a9c862195a1b7038421d3d3a4ce8f407edec0acd6e7b3e40a3749e87e47443dbfa321bac848b9d4f16cee1abe5379218fba2833e955748bdfba74fabc5439124087c582c523ef3e88fc7f62e83ff7688dcbc01ef843d222cec7981465e130c767417c0e10ef2c95c798e557c1e06c4e1d4e99837d8cba341127adb8121adc8e3ffadc88016b6fe3730f19d89d140e652b385f927b3ad179341548664a2b7b7023542c3beef78af4d02cb70466e14cce87b54ca59f067bc7997ac80ef2a9bcac7112e5f8ca87dee94860bd4d6e59b607bfc9456b3252f53a68eb4071b4fc9cead4c9b2afd3aaf42519b96f4680a83c9ead4716b593010891c85f58be5aabd08078cb07f845eae9e26386ed9ec2a16688f7171d578a5c52bf08b6510aba4abbceb0151ee779bf26a6fee31b3555ce5e04e22796425b068c55f9f37ae7f66e57fa9e5f114bae709dc0f5a289bc3486dfa3dec4fff167865d10320692a11a6d81fbd35ae2e17921c24753a9af885842e9426ebf97f345883ac6bf77f96e0ebcdbda8a6575d7230b871a8c8fb41c80402fa36b1592c14141b3f141383102fda9a55ec829cc8700e5e5abc1adb82895f094a0d31c9e951e9a395007666726fc7537ff62f748a0d4fae00a43d6de4e37e1ec2ab7c6553e04b08412099d3d8f84344ad772a310e600e054d02487c4e176644ac5196dfcef99943c32428db44806b4e7816e4bae48b47de2cf713fe0dff61d6c8de0b1b17af130deed6a354e657fefd80e6bcfdd511fc280c5bbb47b4d5b197dd476117e53b7fd61ccc684fdd434741366de34b2c3f0c2049f55700fdfc244f3fb32518ba197c95f5d7bb43612ca92291a4054e685932e99d13215da476fa9ae00ca93f7c9d92d15dc8e9d821dcfac80a8f5806a503bff6d3c33ad92a7b187de5b84b2995f3c979766d5018a6070b952603b20a867f520704cedc0ab1932e502232a9838c4dae308a47369b22e09c6c7fbf24f2aaf744b3000e8fcbe391768c3454e0c8ab63d9f3f0131e19ee05904702c25945e669964a407212375da938299660fd2458c20d25998f57cee1f1cf1e46e193599dbe724890c5f09821b2943737f46baf13d5f20458c4a393ee379a2b9dda0c6aa8c02c01a175e2772acbf35e787d7b12b0fa414fcf9a0fc362049f7f4429e38c1420ebc127b7625cb7e7c6112c0ade4fa55d50963ccfebe3e6a7ba2d57cc63a59d18c81bbb2d46942f8b4312b20315dac70e1f5ed9287832094822b685e15e97b7178ffd404cfa9d2e7ec1da162c08bd2c566c855573fae85991609727cbaa5fe47dfda588d195ebdcee7405d31252b220fee4240b2438061c586c4e0e58e0d79b1f6ad3a6c5e12e20a70f31926bb8a426037bf01ef88e25abce5f3335dbac3e3adc1c4a9bb80f60e1f3078b7db41b8559fa85d65e54f5236637438d1619fdc594672068e1b36bd95841fb192b78ab7cab87610749072b6208e905142e6768f6bd6284f3a9963187776d565dd71a3f5f4af3c86e223b48ba6f6e10a0d6a3af8a72bf008f5218175edac9484bd0da09b186ae63aee65092a6dd23363f2811c4c3daed3c7c8d50cef8e2477e820b62e77a55b025b6f25e822ceb2d89c4f96e00ebecc3372cb994702d08bae0fffee7f944d337eeaccaa99bd7e075c0f848fa7735fc3876b57aad73f7e57ee0a04a4de464796113f27d4314f718851105a9d860bb0b52e882382d82dc7c16f24d5bb7985c742ef1c89c8f9d030b1a7019c0eb725ea8e6f94fb458d1b9a1c34b44ec80054231045592b8ecd1b667ec892e8e30bea105ac0289a53b5ea7b7958866bfbf9d8a134398abb0174e8ebaf5ad7ad9506a5574ef3a6115d8d20ef47e753a680f2f145996557406c8af1f8d08b45820305f26c9e13e09e13572a563a897a601d3c7084d80e49a1fa9e6f84fa9e78e2d6434a76ff8f6f473d6e8b359715b6d3393c0d898cdf1944030e4bc307d731b5c18cd8f3b82b2c72bd4d6adf8de8b02427581b1e62d1306c6c857d331a73a2429e1730e64bef916632d0653bfa787ed0227491c924cceb2856690599f9fab386caef2817d417dcf20c3d844835b98c409bfb227c92bb0c1abb15f8b259ecd782fb94f5074042b3214962ccb81cdf58745c9a89eb4156b4ec2ae402a4a025b731096e0e9bf2eaade634dd8ada5dbf15c40e1e2dea0ead00daedd417aff24e496bea09738a97d163e7091466f36c92640e692f59058f0e0585aa4fe7edd53b2aa15144d69f075e0f12d162890129493320c3cb6b8214fb89d5dd758d9dda735aebfff985c6f6de9c64d8a833f394ac31306d8e1df2ed1ff40fb9f39f09c5f858ad59c897d3a1dc09b2a71b85b2a86db4b369c78188304f0d502748e451c087f61a5f1fff470e7bc651edd27329c79f20bfe3293f9bcc86ddf66f6d3e477f5e6affec7ea2409cec85c03535f72a11e22b69a53294732a3f7702ea2f0c4710c1f913309ab9eeb01576a561bde6746059ecb6028fd238762b0f5dbb06e0d4141c53e81bcffa4d72bcbe6fb35a626a82ba2a6c0f5fb594bd32027217845f033b6e19b34a19ced31886d083b30b9be90f2713f4e57fd0c669a45b2cd0d955289a6e3e72b58f09e76523f94b02b5e9f4128989e2b1b567f6e460799defecc907c9cc32262cbdebc6423d95dd8bb7f106e650df56d5c89ac9f071899dd9c193d34e7c59c64712e56ce68331419ceae2d6f129aee9904b1e2139091c764d9914563dfdffb7c96c341f9c10dd20a741af2edb4af81356cfa4d755481db0e05d676db8408206f33d903f1b3bde0b64faa2d55d2631a43bf9f83f2fb63098ce7108ff015397fce68e364c9e46a23440450e9a3fd0e6106b5ba91ccfe071d32aeee0f0f8029c7acd43762e180791422e2042db5c82ec865cbd991f1a5de504c8c8f46c653630e54b277799ac9a240ebfabcc84ccb7aea5be7c96618e24a18b99abcde5d5e6ba0f89da7711091cd5a48fad916207f2d28b0d3f6a5b3e1a00142f156a9a29d9ca8350b0416ad18246be7b6ac716b6ef8030344a97ea63531873a19367e3452fccc9605953329b545882b240b4f075b27ac2f59018646afc18db9174c8b8121bdaf02e66ea158f481bfdd8c6aa4daf611eb37324ee491b25f6aa9634df79a23626e80cec969ba5f1bcf6692450fc19e970ff8511208d4f1f3b980f03f478cdb5c38b7cc3ddaa1b3978d7a45423a15cb60701c46806668baba6d98d3496cf1225fb45306aa2b79896326fb59e08b89028b28f93fcef42b4e60df0af6c67b229b782d9050efe360ba02e1a4abff3164e80afe627dfaa91c9239d0e3dcbe2dd46b5daef40786b4676f4ca034970202e4fb29cbc9f6c12ed4c187a90ab7081b58e6bdafe5af78cdd07ec89c37e917fed444435c9e316450e9ce3f46e32ca6e0274d0a2da4a032db07143d6cb8f3d7c771a5914a239311fbce6f681396c07695f6eb4253041ff878d9864371b917b78eb419c0e8cb5966dce85f8d5fbdaa1de6409d1973b615efb3086a0f37262873bc5da719d0cb0a7a6871d2f8f96b80d079f7873bfc8026a7e17108050c882e1dae5926c9f63c68af506b337bfb670c8aa61af4c6dc06df887a28758cc4e1b2c53720a0a494204d531f80fa65722cd2d0bc0f9222fb5bd343c0a8e82f162eb4241c4e85b6bbec30d4e2dfc4c38fc8b43bef469d68d86645e2c38e87b67dd434c5612be3cd6363af9852b26f8d7f4e22a711830dc2d6a00159a2af4dd5aa8b0fe4bde387af237abf416973aecf1528c72fde523853970f15aaff198b0f2b409ff4f2aca23766146d064abd522cf70774d23425dd468ae8ca04228d9bc9b00e70d697142413f227fbc5ac5a798886630fc0592b50c2f6f3d07014f40ccb7416691b885539a11cb8609496e93af149515ca7a80f5974afd5613da31db75b231d76d0d7d41e346a5682adee903295bf24d4b99fd016d6ccddaa0a0745edf25988d1b0659d2be0fe0f55c4192c88e035282faa5f5b830f2462e9b70d7e9bcacc0471e2925ba7a21a4d6edc17b19ba2af076efbb1f7aabe6d88290b759576523ed40bef50baa70e841fe6ac4a7e48f54e511ea1b7848a97216a0dda11dc169589d92fae31140f36bc166ef584f1102ddfa1528a07595cb43f736aa2a223769073c028f893c65c36b51509bfc791525cf307fecdc95e09512b6d9b226eba0af2608f0977b6304ea90f81a9f9d9e41544d468168b2f7dd2d3f9a29fc9962a2216c06f7b0e959e6fad6027582059e23452aea1bd4a43d65f6645bcea3c9caa27a7aa3d2923194da0a39742e75c0b1285caf2e3940cc6c31672388a4efa8675d4a44fd7db636eb890fea1254386f267d34daf03a5b8f102b69f9714fe08cd843bbf065e9cec07077553db2edc5228e07794354cd4ead91a96a32341f4504d1fb7a82ade241d55d8c0a0fad5387a76a81071b94a5fb1094581841464a761d5c00a0dd6011656c157281fb86fbe2d5a0c4189c25baaebbdc4360b9290592e9d6d21275c94c66ed88d0f18a170474c8166e7055928fb173f312f359dfbf7cd4d4f47d03027cc60f8ad2c6db4da05eed4de478a4183371bfbc4f3254910da4ca926b9bfd0e34cd36fb62cf64db8e4093c45fa373f879f5960cdf207bc75d2573ae5f25f934e95b0f6e50dc57bb3c335f9eed61eae1e105e48f6942b8b62470aeaa7dc36d963ba2b20ead609993450fa5400fd5a085e97358fbf7a86f27295577afe324863191e2e0d2aa3d258f8a994f208768511620544fb607c24283c6c806fdf3c9bb2ac1cacbff74e01f9a5efe3e180b576ccff98c3ed6bae8d7ea5df3fc0639a69f98bfbc44e352680936929c18d5da0403606ab76b144674d81a226cbacf5d60d8d333d3d4664665158016c71df390fd02ecb907766834b7da0cb7bbce2f7b825d964174cd2e73fb45484a8424c964496214fc883e483444ed7c2b517caeb74d1637131682f0afbaf3bb7065f3eb9549961226e532ccb6b6b69b75b862db2d56df867803220bd04a81cc6349ae98c41e567921b5f0fff37393316d532ef04e137adb896c68e979fa3", 0x1000}, {&(0x7f0000000500)="20eeffebb09eefeee9a8f3bed0ac39fde6257617beca836c2dd4fe6cdaae4a92ef3aaf51e1e9206361046d90e98f4234453f19af20c23a851e929c04136710997893f5aa2f7f46b8e36fd66a878c489f7658b525044da862067c7e6a", 0x5c}], 0x8, &(0x7f00000018c0)={0x100, 0x114, 0x7fff, "c604d5bd949272f746c81da69ed2f2b37e2698437b5ef44fac248a0c5a621d1657dd0889924c51b99196e23aae53e8e54f27244553d846f265f369727038152191536b5419fce57d0257a41b9738a58adb0da2fdbd95ef0f240c74362c0e5cef2d66158d3f95e6a3cc5fe0b02d279146e03ce30ddcb104dcec14b82e96f47fc0634ff2a2a3149482e9315d720d33f2140c3c6ceb143904aa10378e23bae5d4918b81bce8b487810647a7bfbc94ebc35ea0d4e90b8890433a2b1fae574669dccdfbc605285080a2ccd52c0ee52f7ed0594712330b9c53772e3415375e3fd298cd1426c79076ae1a831f6f2c84"}, 0x100}, {&(0x7f00000019c0)={0x27, 0x1, 0x1, 0x3, 0x46b, 0xfffffffffffffc00, "2764ffbc4d2e08a417ed13fa4bc17fe8de642ee9bf3cb8770fdd0ea6df022f8230323a470daf394617d651feb4a2eb33180756ff5d63fd6bfd6457b7d4ffbd", 0x1d}, 0x60, &(0x7f0000002ec0)=[{&(0x7f0000001a40)="5a249fe4619c05fb1902696a4ba35494b76e8eac06c6dddc300f7bbd9ff8ca2bba84d9586ee6d4a4399192ae4051a7a30447264b56e0192ec77ec2d5b7d798518a44ad", 0x43}, {&(0x7f0000001ac0)="958408f294ec4e049c8731f8a0bae6bfbf9b4120df023ef0290b4053c3e41670ed008da6bec69bfd8bff6e22ef851a8c59171275774bdedf597e4b662272866632164de517d5992765b4ca74c5d3cf09820b1fcb7480231acd8c168c3db9c2686a8e14d9b0d012b2f031d1b3a85538525522bbc534c7ecd2bfa654676fea84667dafdc10688ec2aa8a180eb2d11960715ad9183e82715a7fb3782e6b4acef889e75f4b5a579c4d9355bb4f67631605bf9b0749ca024157c4692c756991303a043bf84936ac14f62d7d6786d6829433", 0xcf}, {&(0x7f0000001bc0)="0773658781a3815c1d4abae066985dbf16de6264a3ee1fee710d5d1f4ad3d93e17a9caa8cfd2a512f71d440cc95937bd495eb6676093e43a4e48da9dd975db0aba3400f1db7b6ab215708e875eb31fa04c6e4870481f2d0d181d04c7c00384a52f249a3e87ff4c7ea21136830703bdb7891fa96a60ea1bc66a609f261c979ec13907caeb6725a8229c7ffc47d916b0", 0x8f}, {&(0x7f0000001c80)="b637dfc3efb7989f1c80f3ee8819e55a428d9e0d78f65a21334a220d7f6407eb44052133e4f3b2f1bbe718b97cb50d1ce3015cd7d151a88561ec9c7fe0865daa77f44b29c6937ce9478dc26fdff78caf40358e128a5a1812b07cbdd699771bad55d0936d2e41592ba7b9953ac0892652dac4020a28c92806be60f862f77fccc0ea74648f49605e4ccceb12a0df6a6e5025793bf4ecd3915c407527a0d336a11415c70d278a7912b560027fa4fccf976ba166be", 0xb3}, {&(0x7f0000001d40)="5eee2c3c39de71f40d249f4b952f0f2120a31d954d3c8f4fafc82ce768134be792f17572ad95a8be37c1d2db8f2ea351c5c85d8d63213284354bf56142f83ba60a182af0f6b21ba6b3cef419ef04acda1a3d39e20799b2f262a6b6f52808cf300a5b8333f0e0ee16bfa421de8a290de61949a64ed67c2592da7f3722e57ab2305ad463414e4bcfc99b24f17c28c18b9bc66e5830f51f8a0051d12b9b0f18b6dd1fb9a30af62dfdf4d13c7f52e77f445b0dc067e8cf13f8553d507541a2531482a8c9162c2012ea9d9a8fe19d6e8c22367bfa1f1fd2533c10bd4f3245f4170877cba91bc574faff2bc5c6ec720d90af3c3bf4734535c2a71c00a3566c8c765300e2a4e69b06ba9c4605448098933c965d15e082604bfa6e796872ab20ee168c2d6cdb84832daafba62e122dd0d68801bdf4ef11bf4687d3bf68026aa2ae34419a6e0ad526e79bdf7be2ecb356f4263389eee5b50366d1bdd6dbb3c0cf945ab6c14ba9c49895263aff60ab16ff155516e74d0f23443775861d3a5ae2a9ded7a7aff850cdae529333aeb283ea970d01411c91fafa80d8ec0c09d1661059a2d1e3281bc2b53247a66051b408090a5effcf4f7d3c3996f87e46e34f14c91d6060769f7d410b8af64f780040825597758746c67464b02fe59dc8f8b97d913d743fdecbbcdce6bb9eb3d99abb35447d6fbaaa85611336de3454f28cda05fc7b8597ebc84eeb71311bcf3ac3ca5574eadabab7ad2c8a5d7bd6c744c399e00983a2bb05bf63d4417bc243793b3953e70fb03877ea7a39c697230c146af6538b68c4c35c93193465396019be74d47dca77c938ae5450cf0c54cbe36a77e784527285cb6692781b22efe2d7c6cafb7aff56ffa47cd765683e11d42575eac88d927f12603da9d9c281d0dadf33bddf0c3571d881286d7856dd31d0841868faa8e42c9048a74c34bbebf132f492c0d8c57f005d4eabfe6555a5bdcbf998c3f86afe32132d2fdaaa01702a77e794068771f354476d468fe8238fe2061be1528078a53b1227b7a09ad7a6fe7ab466631cabfabafe00dba539150ddbda29b42b6be6d153962597ca3f041e2c0c3249c3c85a58e4fbcaf3f889b6d44045142578134097163dee3d607642b67d8dc165de537a7e7710c5f281b982f314cefe53378a6c98db27b8b0439395fe3b912337da31e3c699f974ff97888d7a9bfb0836bf182ae956ed1d3890f8366b120f672a70bc671de6ae1c287b73fb7b6de951512f3ca69aed6d8bd1e8b2e9eb6bbcd0cba3fcf55e6808141d3298eb82c758ad9e9bc049aee3a61a1b97774d7dc4ccaffffb55aefed952c3d29631eabe51c2efcb6e739995135a1410f7a72aed3be306f9f96e0f6913882a157de9cd45a79ffd05ce606a1ad12bee1d3fdfb6d2e17639ca93d56a0fb23c5343499a95577fea87bd38c92d059c8be228f668ee4754823b7b693475f1305365741507789b17ab521699d89277b8447169703a9541cb90bd1566fa69d70c9d83b4b1c427719b1b56b91e5ce4b7f2b7ee90ae5e9f3e92c7a8980e6dcee90796d23e1157ca74339084af12df2e5e4c30e43d4e82f9bf966b36cb01158c14c311a5ca651a55b142da542bc350c5eac0a2b4db8b4fb4763db0638c8b8224b64b26e4754b2179810e78d13bc1f7885e222c64a73766fe24e3e1172272198ac1781c546e6c6784a248a83626e67fa82083a4b8564bb154d9a12989bac6e873ef94b7d6eb765fe63cc26059f0c187018f7c73c5d3ef3f6a9e2086d3bbe4da96dbf352535c9695bde7a2658ea2c53cba96a0fbe39f770486868a747d4796fd482d62eb37e18e4b0dab134e1aff73d332a8055d823f1f1677a312fe3f599d0bcbe6bf268a015294c97747e7710f95de9fa5ea3355244e896b25eb4f81b9d5ca569eb6f39394cac36b7b19bc7cd404f53e22802d2e9d7d1675f78065d948786c3812591623ddc604563a04aa90aedf41aca351b24f0541a7d1d33f033f327e3ece3dfa859436940e43c9453c049a16f71affdd03d62709e120b51232b0ab6ca5be2157962bfb2fc5e19920eb17d63b9d03e0af9555e566a2d296b2b0d2a6e24e9d8ece9fcd34c9462cc1c3f27ab8f66d83615c1f89bf9e604a51f8922bfdecb6e56a979091f76cdac232f7ce256f7b2e897a820d6eebd4e41382b3526589f8733a93e964ce7ad161c3d7497a3febbb2f935c8777fc2e88b839488f1947136e823d45302f73ff28ed5c1f4310030eba07259c12ad44cae10866abee81b105e500ed52e13d769ebfe3e1ea10730dba8303cff22a981b89fcb90bc0fd5538e5087ae66e75e5a143a4f6b28ca3d37b73200be4f156cb7f93175c4621cac2bff6a84919b940d56600ca68186cee95bc5e8e62f5c1f4e9164395344cd591eed41307e5e12296b042e87ed455534597e2c28b9b030a523cd4797d2984770556b718ecc8b1c6f1545fba00bb54157106db96f7a7385d30837b59847ebd6a72277f053a1a23ce874195d4e018e159cac9ceedf575150796fb37c85e6affa5130ef1988805ef0197d77bda5258865b2aea784c09a093bd38a2ba1a2b253b6401d23406d42e1f27145e62728e6ef5fba8e909099a7011bab9f502633f938b7ca616cce7e951e319ee650ada609fef09117c2477419f968e4ec5ddeea2456a6b5e8dbaa4b8cc3032de6279aad509651e0e1754abb93a22ebccf825c1591c99c58be32c197eebf2a317e1ccd128e1d38d083cd255d548ee03ec96fab58a368d04bc704f9229e501acb4877ee00600af66920dc2d9084607614fc54dbffef3ccd5b91fdf5a2fc3ad5d20751a9b7ed463892296049759996b0379405aa062d18f9318b0395ad4c5e533e2c4b91067c84702a676c195fd551a01d25d689fb601cdf48b7a743b92b3976c9ec2f6678e40041f912ae52c358be69f97ecbce17d25ef380cfd915a9aa62e625d06d7836057e7ff567c8b2b73588f7c479d1d01d2d8c0ed8ed4e6f6bf7fdaa94a4aed6e3d02c6834acb85471673cb66265c51debf7321a35b77061cea7b3380f21d3fae4f651db3e59e7876d34b28b7a9da9102630e52f438562bc32ef780521b3ff84eaeb63bdcd58ef1e721a48804515cabaeda8f8dc20fba41b855c39bcf416334ba996b209d77ca2ad295f9d72b44d0117a9911c1adbbcaf2ca53efb47c47f108f1b5b0806fa83592ff6614b40429a00931f7c4f62d4ce28cade07352acd9df4125097a3e7e29d50fc7bdca87da1df9084e44b49dd8f07b8ac97ade78b1b11445e7730b54138b6d3dffd696bee9a9723c749013b709764843d1f4e752d8f3f7a7bd9dd13a603fe8948802d3045fe5d95f5b011dc25926d682c645972617bddd72fe19b4318ab75cc1dc6cd58771a482134cd83da7da913b640d4d0675633da137a33745cf4c8ed4c310bd7e396c22ac376ad48bca1f851aa44da4f2733c160c4c1f715809fadd415fc63340b139481da238e23a32e1f3a176db3804bd776a5c370c4dca989e3e34318358ec51e9951e51d70003d67f2b326ee29ec62bb68dbe7ae684fe30cfc51076ab0475db80746cb3620e4e760b52d54e10eb58b8cce5f6723113cb52ff6a1f3762f5ce763e42d495cc5b967ffaee786838adbe763c629bda0e4ff41a30e5b254920f8240c876fed444da40e10d326bc86cc383f4df5fc30dba49f49cd99f7ae09d6a60ebcb194e98098e2d6553117842694ee706e7249fe9c623491f68d0e86b7f1b6098f975257c28ffe7a9bd052c97538f034126349beaa28cdd5d390577689a9934a50c50f982b4c8267edb4a1f2f5db6ebe09772f93097c2bb8b219b114518a5346ebad9330d1ff7324698cfc4381f450ee9fc84358ce03aa8bd7dad78e98c4e046ae3d3bb3bf67f6f6df41645511cff8b6c4306d4cca13d1eb7bc1ea4a8412dc77ed5901ec1ddf4d6f36825f0d3a5a284c8f6c06cbb6118492b4c9a44bc6fb4745d0a2891a44cc0a18d62b9abd78d25909eb7a2778e2e377c34f7c5194bfe3184e9bb0c7316732010a1d5fad87ca882c3fe87ba7ff089f55baf8942c46a2e8177871d7f68f5057f3f22e9bb2c27c010bc0cc5ab5b73a184cdab8e282140ff34d5c224e02cee2d7ac12110e35ab2e65e9411490eba0cf03354fa342b422c6eea4decea9870107ab543e6d38248485d82eb0c9903f7b720850287bdc3dea73230bb4ac670d15531b48415b2f71ed78aafcc4b2c984b3127d429bdfdf590a0a4f4cd808e7e9781651ee2834fb911863693c367a8840a5e723c4ebbfcc9d9550e9b39f88ff03d3fa12d073d3cd7c2f14d34a10394e1dd3e3236fed1d1aa84b607e553be101462a49d9b4b2b1eee101ff47471ebc8665f9df2175940cc96eb2e2f79767a34d5f34f8f320efb5f2933fbeac45d3a7779875a9a7250e066e57083811e5d4473f36de2fed86b67015f91d4568739436d13f29a08d0d23e8c08f38e1d8f87fb4f994127ce3703c89a079159edbeaa1124c0ba3a3e2194f107c338edc2689e5c8748e3ffe73115622d9ff3afeff2de2d4baea62b596e521d854d62e5b3bd6db725e79b01464deb5698360648f61a37a26e665a98787bd4ede69a639df3eb47c6c0511574310f7de6c22a8de430a835f3b42a693a0d427b1b88c621ab206a38d0b8a207be2798ba29051bf8370cfa7bd06a8920d5025db828d94e1cdb9681a35cddc7effd35657c97a095e2a3fc16cf4f4246a043df4659c8d897d79d6df9df55bf83a1551c61844e5611e8082ebbe6ba8108a2958cade9cb1904d27529b14232cb963b644f7166b90557b9152606e65304e0afcefb4704b701451b0189cae4436cffb83e5baa5d34f837df80b3ae2d3e9ec6286f5f4b6cfb8db3538f8b72a8661e97d62e5b4ec36aecdf40e06f8667251607386cf443e09ea4f10a2230677afcadb4a3acaa98913bd9b27522f570c93362815b3c8513f8797eba76067ccbdc5c829b5487123a9ce5d1414d49fc87fc91d47b5e06a7850ab2110456fbcf7e94208c243ae3ef51294e9dd00e7e2d0b77d1d3af592744292078ede4c32a67c74542413cde528a87726a20f725a78a62cdcff428f917d15f227a8c31368798ca965ecedac80661c1c9a881ea1e0e30316087d9c9e214916b1d81172f67f6a367b375aabe4844c294ea26a2dcf51fa9cab5d614a8d46e9b4e4337638a0ec1fb79c4f76867854c6a467322a512641076fbb6adaacb9dab56b4ea2acbe4660ffa2a2961149216b7a26d46cc24c0af3e53e8ad1fe0a5f171a0ac2f2a505d63c1fecccadb1983e9374560aae2fd36c661a96aabe7109f4fac7c7dd71d44cc4093b17c6c19cda3a82a7489db9281101363c427dd001c3dd593a9a72ca4a8092e0fb29ae384dab77a4637bce7375205b346edadabe0ce33509452416fae9cffb6c23c9bc39db96fb19f752f7fb9aff42db9449f69b4a89cd457cd5e75590583951892d2288e21099c2a264f46e4a41916662fcebd4b883714d648dddc526ea3963e7969011829e18809ad4c94239c106673f01f381efecb944ba17bbdc474beb88ca14d27929e03a60ad317e5e3cd462e0ad8cbc9063d09aa6493c30f4cba7dafd209555075304b21ba0cdb03403bb3ed94cae0e4aa6ab727a2658b3960d0f735d9f0951b78b61b0a41e2076534810a7389c7e420cfbbc852e47f4918ac271938502c8ead17e7c8deaa56dab2cf54234df442dfbb0adff5130775e0846846d59f9fd56d8dfc98f26b31e26d111883e8e99d961ac0fa8c13246f89175b8c295d27e4ad67a9589572dffb2ce3", 0x1000}, {&(0x7f0000002d40)="1222ac3206cf261e14ab37b36ea9fe7325fba98521fbec4ffd24e6916a44469a52cd919f8f64fd0a800f44b0310158e9fb15e5e4c4ee4970c31b0327722b7a237d22c44af03bd4c88308cd33cdc582085f3bce3a36627a5add1d1ed313e5ddbb99", 0x61}, {&(0x7f0000002dc0)="6f1d1bbb971b7769f592711503cdc6d46e2998e0060f0c265c6b9137d88be0036add293f1360b325295c1b70a2aa90fc7d568e69b3fbea3750b2db3dc516dfa4a56c2f218b89a58f253ec9bf90cb6e038cdc89364015bd2bf26cbdbe8c29ae4be23b58e38474345f40047eb4bb32471e6b41d09cf5adb675bcaca929f513f288828c6da18a630cdd11986275e7aae86a60f5d97d754a69cf34f959c3efbed14e594fb9f7e41e5b780401c115a1a6d4299e1f9cc9c73f1fc18e002b0e8689bfd1632117292590ce8ebd0eec4fc8627f2c83133eb585c647019868545d9c42029390a5bd7dc0576e449720c879d93f5e", 0xef}], 0x7, &(0x7f0000002f40)={0x98, 0x102, 0x6, "74773518806ea4ea0b162e34eb7d486ceb6051b2f81418fd3e2558c242c7afd9378b2b6afd9492bab2cff4dc58e903afd934cd17044a0583070bc71d0dffba4df82cd6169bb0349b5459fdff9c65f414269af552b82dcb380a33c7955cbd74090c0fed9ba339cd921992e1a5a8813a3e263b6e5f33049b586ca4043e800f62804031a150fd27"}, 0x98, 0x4000000}, {&(0x7f0000003000)={0x27, 0x0, 0x1, 0x6, 0xfffffffffffffeff, 0x0, "a1d05ac9b2e8e02173fb3feb60fc703682d58f74362ad455e46296e8b4e5a9ff91ddcfb40046f74700ae265e2d5e5fb90a9456723ba0d692d53966f899ec7d", 0x38}, 0x60, &(0x7f0000003140)=[{&(0x7f0000003080)="3ce83a2f5cbb8452c2df82da9c8671642f33ac09efb1d5eca6b2f99a72df9ea169903a093a15c555c18e073d2de25187781608be349d7373c908c333a0114fc183dc2a75ebf804ca157dd257579161f585d94b8b149550dac53c555867a551d113aef532771bd2b04bd2", 0x6a}, {&(0x7f0000003100)}], 0x2, &(0x7f0000003180)={0x68, 0x116, 0x4, "4fe61f10ddb4701263657320a2eecb05eccc75ffc64e639de1c5978004b863aa6b7ef1e3dc324c7a7d917f6083aed062f48b5a42b73f72a9f4d31cce12515a6b520d05aa375774fea91466f1b68d85bb1ea5"}, 0x68, 0x57e202a97b952c9a}], 0x3, 0x800) 05:52:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x0, 0x5, 0x0, 0x2000, &(0x7f000000a000/0x2000)=nil}) r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x1, 0x40) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000080)={0x40000002}) 05:52:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x9f6, 0x200000) r2 = dup3(r0, r0, 0x80000) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000140)="b8eb008ee00f009224080f0f2e00008a66b8020000000f23c80f21f86635000050000f23f8660fc770f1f20ff04401360fc75af4baf80c66b8b2bf5a8166efbafc0cec6766c7442400002000006766c74424024e0000006766c744240600000000670f011c240f01c8", 0x69}], 0x1, 0x4, &(0x7f0000000300)=[@cstype0={0x4, 0xb}], 0x1) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 05:52:29 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000)={0x2, 0x5, 0x2, 0x101, 0x81, 0x3f, 0xffff, 0x3, 0x3, 0xac8}, 0xb) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:29 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) r0 = perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) [ 559.932591] *** Guest State *** [ 559.947172] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 559.964508] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:52:29 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x102) r1 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x40) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000100)={{0x4, 0x8}, 'port0\x00', 0x2, 0x400, 0x8001, 0x200000000, 0x4, 0x8, 0x1, 0x0, 0x2, 0xa7}) [ 559.998306] CR3 = 0x00000000fffbc000 [ 560.003324] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 560.017343] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 560.044655] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 560.065120] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 560.084226] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.097992] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.106154] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.115932] binder: BINDER_SET_CONTEXT_MGR already set [ 560.119256] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.121686] binder: 26162:26163 ioctl 40046207 0 returned -16 [ 560.129500] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.136972] binder: 26162:26163 ioctl 8904 20000040 returned -22 [ 560.148332] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 560.154843] binder: BINDER_SET_CONTEXT_MGR already set [ 560.157867] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 560.164075] binder: 26162:26164 ioctl 8904 20000040 returned -22 [ 560.175854] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 560.177540] binder: 26162:26163 ioctl 40046207 0 returned -16 [ 560.185468] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 560.204614] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 560.211203] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 560.218644] Interruptibility = 00000000 ActivityState = 00000000 [ 560.218649] *** Host State *** [ 560.218657] RIP = 0xffffffff81174990 RSP = 0xffff88808e52f998 [ 560.218674] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 560.218683] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 560.218690] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 560.218699] CR0=0000000080050033 CR3=0000000095046000 CR4=00000000001426e0 [ 560.261787] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 560.268455] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 560.274584] *** Control State *** [ 560.278152] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 560.284881] EntryControls=0000d1ff ExitControls=002fefff [ 560.290407] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 560.297332] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 560.304086] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 560.310695] reason=80000021 qualification=0000000000000000 [ 560.317157] IDTVectoring: info=00000000 errcode=00000000 [ 560.322687] TSC Offset = 0xfffffed1a89dcfc9 [ 560.326997] TPR Threshold = 0x00 [ 560.330521] EPT pointer = 0x000000008058f01e [ 560.334925] Virtual processor ID = 0x0001 [ 560.418810] input: syz1 as /devices/virtual/input/input390 05:52:29 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) 05:52:29 executing program 4: listen(0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) connect(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) getpid() tkill(0x0, 0x9) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x5010, 0x0) mount(0x0, 0x0, &(0x7f00000002c0)='ramfs\x00', 0x0, 0x0) umount2(&(0x7f0000000300)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 05:52:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="726f646972a100"]) 05:52:29 executing program 3: r0 = socket$inet(0xa, 0x801, 0x84) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000200)={'filter\x00', 0x7, 0x4, 0x458, 0x230, 0x230, 0x230, 0x370, 0x370, 0x370, 0x4, &(0x7f0000000000), {[{{@arp={@loopback, @broadcast, 0xff, 0x302f219adfcd74f9, @mac=@remote, {[0x0, 0x0, 0x0, 0x0, 0xff, 0xff]}, @empty, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}, 0x3, 0x101, 0x6, 0x9, 0x1, 0x2, 'nr0\x00', 'gretap0\x00', {0xff}, {0xff}, 0x0, 0x80}, 0xf0, 0x118}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x8, 0x80, 0x1}}}, {{@uncond, 0xf0, 0x118}, @unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x9}}}, {{@arp={@loopback, @rand_addr=0x3f, 0xff, 0x0, @mac=@broadcast, {[0xff, 0x0, 0xff, 0xff, 0xff]}, @empty, {[0xff, 0x0, 0x0, 0x0, 0xff, 0xff]}, 0x1, 0xef, 0xb17, 0x0, 0x7ff, 0xfffffffffffffeff, 'teql0\x00', 'ip6erspan0\x00', {0xff}, {}, 0x0, 0x20}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@remote, @mac=@random="aa83b2701f39", @rand_addr=0xda, @local, 0x2}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4a8) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) 05:52:29 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) syz_open_dev$binder(&(0x7f0000000140)='/dev/binder#\x00', 0x0, 0x800) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x800, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r1, 0xc08c5335, &(0x7f0000000080)={0xb4, 0x7f, 0x2, 'queue1\x00', 0x1000}) ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) 05:52:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000500)={0xa2f8ea20cae86cdf, 0x0, @pic={0x80000000, 0x8, 0x6, 0xc0f, 0x7, 0x5, 0x7, 0x8, 0xae, 0xfffffffffffffff8, 0x0, 0xef, 0xfffffffffffffffc, 0x2, 0x7, 0x724a}}) r3 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={0xffffffffffffffff}}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r3, &(0x7f0000000180)={0xb, 0x10, 0xfa00, {&(0x7f0000000040), r4, 0x4}}, 0x18) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:29 executing program 3: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000000280)={'hwsim0\x00', {0x2, 0x4e20, @remote}}) sched_getattr(r0, &(0x7f0000000080)={0x30}, 0x30, 0x0) r2 = socket$tipc(0x1e, 0x5, 0x0) accept(r2, &(0x7f0000000100)=@l2, &(0x7f0000000180)=0xffffffffffffffcb) r3 = socket$inet(0xa, 0x0, 0x83) ioctl$MON_IOCQ_URB_LEN(r3, 0x9201) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhost-vsock\x00', 0x2, 0x0) [ 560.564719] input: syz1 as /devices/virtual/input/input391 [ 560.575166] *** Guest State *** [ 560.583659] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 560.609377] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 560.622542] CR3 = 0x00000000fffbc000 [ 560.626687] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 560.633165] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 560.639979] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 560.648879] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 05:52:29 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @remote}, 0x10) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) 05:52:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/mls\x00', 0x0, 0x0) ioctl$SIOCRSSL2CALL(r0, 0x89e2, &(0x7f0000000040)=@null) [ 560.658461] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.670865] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.682281] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.693142] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.701805] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 560.710421] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 560.715045] input: syz1 as /devices/virtual/input/input392 [ 560.719654] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 05:52:30 executing program 3: r0 = socket$inet(0xa, 0x6, 0x83) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = dup3(r0, r0, 0x80000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000480)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f00000004c0)=0x14) r2 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x8, 0x200) sendmsg$nfc_llcp(r2, &(0x7f0000000400)={&(0x7f0000000140)={0x27, 0x0, 0x2, 0x4, 0xf9f, 0x1, "39c0823ebfd4d1d719f5a9c97c3bff6c693a5f4a29ae65ff7a6289f497772a6c9db1ced3574aa70229a8d628dd1893c822f9de5b5ad8b17b65563078155ed9", 0x39}, 0x60, &(0x7f0000000340)=[{&(0x7f0000000200)="895fa6d36e2ac47bcf6b6476ddf156a034ea141091a81c57eefe813901fc592565a45c778c1ea29b56a4e3ec7b79c7bc0ad1d18a22a4da5f87a32e256d9bd641fb83fc68ad4835711042708aaef790bc669ea9e37c1eb10599f4e789271988aa166a8f8c27470380950aa6", 0x6b}, {&(0x7f0000000280)="f23a050f972fd463d3d9aa9c277320d100dfea928bd3d99a9c69609a15fb52a3fb1d45f930c5f9e7fcb8e9a91db2bade0c9ce380e77e05a78b6a19f244bea1ace2e25ab66d89ab1850ecd163736ba3dcfddda3abc10becbaa387dc65021f2b516ae905ad8a98d2b5c96bccddb089", 0x6e}, {&(0x7f0000000300)="03af088a0bb00aa2ddc4da3836d203854c43b445cf3685f7a3c854dc8eec627a2af5ec3ba6f127886be458a2514212b67ec013a3f25f0cdb66b16b43927d", 0x3e}], 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="50000000000000000b01000003000000b79e0cad373d0701faef028de5abde6837339f26c406f3edaab0c10825643f7c8ec0a31b7095aeddb01874cd746faced4b0000000000"], 0x50, 0x40041}, 0x80) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x400000, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0x800000000, 0x0, 0x0, 0x20000000000000, 0x0, 0x0, 0x0, 0x4}, &(0x7f00000001c0)=0x20) ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000000440)=0x6) 05:52:30 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x2000007, &(0x7f0000000180)={[], [{@smackfsdef={'smackfsdef', 0x3d, 'permit_directio'}}, {@smackfsroot={'smackfsroot', 0x3d, 'user}'}}, {@obj_role={'obj_role', 0x3d, '}['}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}]}) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000a00)='/dev/autofs\x00', 0x40, 0x0) ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f0000000b40)) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000a40)={0xd3, {{0xa, 0x4e24, 0x6, @rand_addr="2b8d85cdf2a01d523aeab56075f81513", 0x200}}}, 0x88) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000b00)='/dev/qat_adf_ctl\x00', 0x2001, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000080)={'security\x00', 0x85, "7b9f0bdc1d656075a2a4df664159ebcd5a3d9bebddf7ab96b6f16e837a1dc6ad929204603ab48a71e813f5bc1ec5246663991b1d36332172f94c5a25890b4d649106af2c87714a7ada4802cc153568fcfbd8cfb4c6014316cb996820e9d05f9d11b81ef763aac8f977e28116d2eb7d602013c4771a255094706c3de2ff06e3646e0fce755e"}, &(0x7f0000000140)=0xa9) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000800)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@loopback}}, &(0x7f0000000900)=0xe8) syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000200)='./file0\x00', 0x2, 0x8, &(0x7f0000000740)=[{&(0x7f0000000240)="17369847fb523b08a682d5dafd306ecfebe1650de1c7a071b6a751acff7a6db89331081b21a12f840d78837e39b65ad426690f897d85f627ff392bb95aa924746104c480c5702d4840ebd805cfb7efba125cca9bccdff78b206000c5ed4c861d58d577c11e426c74e4f4edeb7d5a4dbc126d4a49f5300c04639933d15f9747db2688d697", 0x84, 0x4664}, {&(0x7f00000003c0)="6ef9a8b5eef5a604e349356264fb8c7044a75b706e8fecbd88fd115d2284d0265eb75bae8f4f49ea03c1b85db4c97fe86b48bf7dc01e25f8cc66fe69200685d097a68c5ef19871ef311d59f52015520328c78c4c2953210eab70c09d762908e4ba80016fbe1a4aff789c6e876ebca97e70e510556319da61bffaeeeb901746a571043807f2d6c04d50a4ea475932b417ef3f42b1", 0x94, 0x4}, {&(0x7f0000000480)="dbdaff826f913904e1189fed9ea3cd1debe86b0a77daf7581a104cff3f56c108ddaf1d0987f4140e13991b7d3cbacdbc8ae3e1ed1d4f30b500a9020d39e3597a9d9cb1cb4432b40ec7e544996032227687f14cb70fd72dfa813f0514f5306ac6324eef95ca694e1fd530bd403024", 0x6e, 0x4}, {&(0x7f0000000300)="dfe9d4f1b8bb0bdb6ce0440d3218c28db45b73f4d98e79bd1d250ec97b1ae87aee572e3e2fa5", 0x26, 0x8}, {&(0x7f0000000500)="2be4a43800b82bbba21d2bdc30d50e379565a2c3dd821e9f825b1936c87d68b61b5a", 0x22, 0x1}, {&(0x7f0000000540)="5c1a67a4e8d9eeaca4e20e1c94d22728bd870805ee447bfce639fe7bfc39a740162f0fceaea3635b05b4da5cf727647b162719c009e1f4bdacdefab19bf97e69b6515d6e805d3a37a9ebc74ca22876d2", 0x50, 0xc56b}, {&(0x7f00000005c0)="8179b72971c88b8d0cce4c2108158d9e2aad560eeb5785e23da29787134fbc083096c2e171a37eef8aaa279d161f83d864bc29e886741d6daba6f5c0a8a68b35413c84ffc5fc3cf46a967f8cf813092b6e13a09ba0ea88700fdeecf8cbdba0383bb370bd97b396fccce00afb7e9fe0e689d234131bfbeea21113fa46d667a48d5ca278345fb226980097b32bb972c0cbc0d750e2df79be81fe94956cec2ad39c6b92701346863f626c2be164438c9fdb6ba606c9600ee51778020a5ebfd2029969ca24227012c149c062a20dfbe45282bef9bd58cc39e2960e37ceaae92b9d5b66bbe8bfd56a", 0xe6, 0x2}, {&(0x7f00000006c0)="c0d4a687fec54ca07762c21d0cf786421c636bc8bb6043c0d19ae7e76d3aea4dc310c2f7d7ddd004d388857cf85f6367ae8792d7319f2dcf39a72acd85fbca3c2b3ffb4ae24588", 0x47, 0x10000}], 0x40, &(0x7f0000000940)={[{@session={'session', 0x3d, 0x101}}, {@session={'session', 0x3d, 0x9}}, {@uid={'uid', 0x3d, r2}}, {@barrier='barrier'}, {@creator={'creator', 0x3d, "552d9ac1"}}], [{@subj_role={'subj_role', 0x3d, 'obj_role'}}, {@subj_role={'subj_role', 0x3d, 'smackfsroot'}}]}) [ 560.757454] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 560.778704] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 05:52:30 executing program 4: listen(0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) connect(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() tkill(r0, 0x9) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) umount2(&(0x7f0000000300)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 05:52:30 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x200000, 0x0) dup2(r1, r2) [ 560.824908] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 560.838974] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 560.870554] Interruptibility = 00000000 ActivityState = 00000000 [ 560.876822] *** Host State *** [ 560.901374] RIP = 0xffffffff81174990 RSP = 0xffff888065007998 [ 560.910150] input: syz1 as /devices/virtual/input/input393 [ 560.921632] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 560.941470] FSBase=00007fbd97570700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 560.953519] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 560.959670] CR0=0000000080050033 CR3=00000000a4115000 CR4=00000000001426f0 05:52:30 executing program 3: r0 = socket(0x17, 0x3, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)="e201fc7b268750c1353ded3440b736d2939b81a7c862b2be285036308c54a7512f09fb42ac42d55c0db1d5e1e1445852c3f62a24e2c6a029a2340ab5d97fc2b013071923b6be1573297f49b3b32cca8e8af48ed1e7f24669c2c05dfbe7465e37b37918c3b42c18198bdfe334c267d8af0ac6ce48ab44a5d1a04349fb3ec4546a69a42cee0e1d850625dc4ae5ef956ccc1919f2c76e9857c8056302f8cfeec261b104b769eee2b86e425259f5c7b3a804321c15163f665c073af4b60e029fae299e9107875eafeb5975d2150e5acaabd1539e5453bf660ce08232a1e8e33fc9048d99e63ba484f357e148ffbc0359e840af021915", 0xf4}], 0x1, &(0x7f0000000440)=[{0xf8, 0x108, 0x80000000, "4ff71cf0b71b1a93e32af873d0b34233605dd6eeef19b1dc048333e275b65a06b6bc6d148b11b049ad2f526b6ab12a61b467ef99753d1b605976352225cc4d4746060feb7ff75e831fb393c9ba3843753a5cb5d6476f7e03099361d9a7162360597d18023e99c24fa0f0974cbbc5aa1ac0597ae4e85f0567129df44275056e61cce35f16029ad8a6143fb23fcdb9a6c880b2ccb043800395db31e1469b6ab722ac0880ebf89cfb0b5e0db0157ab40e90604231c55be0d3b7011dda17b0946cc95c162893f466d2a89d0fb0007dce1b550229ba3f8da7d5f332c87619368d85130bf2bb85de8a"}, {0xb0, 0x110, 0x80000000, "1e4351be204b979324a5657093c01764d05a2c718aa7879a6ea25ea1d230df9e2224540e8f231da5ce13b7a2580e1118ca652613c5d5dc88dbb161599708bb236d1ea681846f82549db349241a576cf4f9e998d94ba2f9f9fa484e5ded3c00b540feacad165a30498a44efbd9c393ff160e306987dad6b38494b98ac3bb1a40721e0cbc067eaf97f2d453f9eebcea65c6d9c4f40f510da49f3"}, {0x50, 0x6, 0x8000, "a4cee25cedbe75f0e0c0c0ec3671e2246c004d498e5dacd5255e45f393fbc755bb5c590646530e4c2d2d2754146f49dee7c0b6ebc385b3c7ba5a3a11085bce"}, {0x80, 0x118, 0x9, "e672474311474045b2841fd8215ee3e64fa778db798b124ee4ee3b9469473b077b0e6e6d8701fcc00173a48d5ad74d6aa3b0d52ea437b633ac7f5e969d0e51873f643766fcd10fad8461382bff98bf88f6f66264d830710695f877c46c1b7a66e631eff6c8f112fe63cd6f"}], 0x278}, 0x4880) r1 = socket$inet(0xa, 0x801, 0x84) lsetxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='security.evm\x00', &(0x7f0000000200)=@v2={0x3, 0x0, 0xb, 0x9, 0xfb, "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"}, 0x105, 0x1) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f00000001c0)=0x20) [ 560.967900] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff862018e0 [ 560.979992] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 560.988130] *** Control State *** [ 561.000944] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 561.007665] EntryControls=0000d1ff ExitControls=002fefff 05:52:30 executing program 4: listen(0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) connect(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() tkill(r0, 0x9) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) umount2(&(0x7f0000000300)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) [ 561.021768] input: syz1 as /devices/virtual/input/input394 [ 561.034012] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 561.043795] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 561.056556] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 05:52:30 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x100, &(0x7f0000000000)=ANY=[@ANYBLOB="726f646972ac00"]) [ 561.068698] reason=80000021 qualification=0000000000000000 [ 561.077268] IDTVectoring: info=00000000 errcode=00000000 [ 561.083389] TSC Offset = 0xfffffed15029bb3e [ 561.088476] TPR Threshold = 0x00 [ 561.092970] EPT pointer = 0x000000009450b01e [ 561.097539] Virtual processor ID = 0x0001 05:52:30 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) readlink(&(0x7f0000000280)='./file0\x00', &(0x7f0000000580)=""/212, 0x7d) r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x10000, 0x20) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000080)={{0x7, 0x46b}, 'port1\x00', 0x2, 0x1000, 0xb9, 0x8, 0x1f, 0x51, 0xffffffff7fffffff, 0x0, 0x1, 0xffffffffffff0001}) write$P9_RRENAME(r1, &(0x7f0000000200)={0x7, 0x15, 0x2}, 0x7) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r2 = dup2(r0, r0) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000140)=0x3, 0x4) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000180)={0xb5df63376ef4e296, @time, 0xe9, {0x8}, 0xbd, 0x0, 0x7}) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) 05:52:30 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x4000, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r1, &(0x7f0000000140)="2e5106a9ba3bb499c391715af1eb2d307ebe6e5c72cb82bb88d9f65b811b7ac540948e10ee181598c91376f4e8e952aa5b7ba9d01c4ea5849bcc2c1a41c48d1af847f88b892c4648f5ac1d793cbc897e9a172604b1e010082afbdaa9d908ad4949e1e6fc7e13fdf328525f05e98541d3c71d6c2cd3f7cd75dd29c4f87a791aabff5adea6c4e1a8a71d0add3c1e18fcbf3e64189fdfc22020749c0922b8d2af5a23be7db337e930b8e662d4c5c0bbe4b6ad4b1e2d128a9def56efb944d2f4296dfc322d3ddb56fb3ff74a529fe7c32d66058a9bbf4e6ded63d5109035b9e7c203"}, 0x10) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r2, r0) 05:52:30 executing program 1: lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)=@random={'system.', '/dev/kvm\x00'}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:30 executing program 3: listen(0xffffffffffffffff, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) connect(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() tkill(r0, 0x9) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x5010, 0x0) mount(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) umount2(&(0x7f0000000300)='./file0\x00', 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 05:52:30 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x8, 0xc00) ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000040)={0x400, 0x2, 0x7}) 05:52:30 executing program 4: bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs, 0x6e) connect(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0) mount(0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f00000000c0)='.', 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) r0 = getpid() tkill(r0, 0x9) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) mount(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) mount(0x0, 0x0, &(0x7f00000002c0)='ramfs\x00', 0x0, 0x0) umount2(&(0x7f0000000300)='./file0\x00', 0x0) [ 561.298738] input: syz1 as /devices/virtual/input/input395 [ 561.308307] *** Guest State *** [ 561.321216] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 561.330728] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 561.342097] CR3 = 0x00000000fffbc000 05:52:30 executing program 3: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000003100)={0x0, 0xfffffffffffffffa}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) [ 561.347174] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 561.354638] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 561.372310] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 561.380604] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 561.392184] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 561.404100] input: syz1 as /devices/virtual/input/input396 [ 561.409995] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 561.435602] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:30 executing program 2: syz_mount_image$vfat(&(0x7f0000000340)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@rodir='rodir'}]}) lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="b73e6589000000000000022dd51da3f15b35501f383eeecae9d9b70e59aeed8a1a800e0bdda77a85494d28ddc0deb6cab04a218b31a8f8ab80ada25420735ef74c456fe01ae2dfb51ebf00b275dc9906b7000000000000000000e2285a0d4d98a1f15b510d3ba440b0d2f1573cb1448bd2248ed35709b555b9762ebf944b24be53f9ff929b037739e41b220980867d894b56cacaf08e"], 0x5e, 0x6f2c6b741d8a3a1d) [ 561.452332] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 561.464970] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 561.478362] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 561.495491] binder: 26277:26278 ioctl 4040534e 20000180 returned -22 05:52:30 executing program 4: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x24}) setsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, 0x0, 0x0) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, 0x0, 0x0, 0x0) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f00000000c0)=""/159) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_G_AUDIO(0xffffffffffffffff, 0x80345621, 0x0) ioctl$CAPI_SET_FLAGS(r1, 0x80044324, &(0x7f0000000280)=0x7fffffffffffffe) r2 = syz_open_dev$vbi(&(0x7f0000000580)='/dev/vbi#\x00', 0x1, 0x2) r3 = memfd_create(&(0x7f0000000040)='\x00', 0x4) ftruncate(r3, 0x1000000) sendfile(r2, r3, &(0x7f00000000c0)=0xf18001, 0xeefffdef) ioctl$RTC_VL_READ(0xffffffffffffffff, 0x80047013, &(0x7f0000000400)) ioctl$RTC_AIE_OFF(r1, 0x7002) stat(0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r4) getsockname$netlink(r1, &(0x7f00000001c0), 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f00000002c0)={0x4}, 0x1) ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, 0x0) flistxattr(r1, &(0x7f00000004c0)=""/164, 0xa4) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x8000}) openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000480)='/proc/thread-self/attr/current\x00', 0x2, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x800) ioctl$TUNSETLINK(r6, 0x400454cd, 0x30e) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x400000, 0x0) socket(0x15, 0x1, 0x2) 05:52:30 executing program 0: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80000, 0x0) ppoll(&(0x7f00000000c0)=[{r0, 0x2008}, {r0, 0x4000}, {r0, 0x2001}, {r0, 0x8000}, {r0, 0x3060}, {r0, 0x1}, {r0, 0x2000}], 0x7, &(0x7f0000000900), &(0x7f0000000940)={0x7fff}, 0x8) ioctl$PPPIOCSMRU1(r0, 0x40047452, &(0x7f0000000980)) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000400)={0x53, 0x847ffd817c26cb0e, 0x1, 0xfffffffffffffffc, @scatter={0x2, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)=""/255, 0xff}, {&(0x7f00000000c0)}]}, &(0x7f0000000280)="1b", &(0x7f00000002c0)=""/244, 0xfffffffffffffffd, 0x24, 0x12000000000000, &(0x7f00000003c0)}) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r1, 0x5501) write$uinput_user_dev(r1, &(0x7f0000000480)={'syz0\x00', {0x7, 0xfffffffffffffffd, 0xb5, 0x3}, 0x1a, [0x4, 0x81, 0x13f17176, 0x3, 0x7f, 0xfffffffffffffff7, 0x7, 0xfffffffffffff801, 0x0, 0x7, 0x3, 0x9, 0x100000000, 0x0, 0x4, 0x80000001, 0xbb9c, 0x1000, 0x4, 0x1, 0xf9, 0x3, 0x1, 0x4, 0x8d3b, 0xee, 0xc429, 0x7ff, 0x100, 0x1000, 0x0, 0x0, 0x7, 0x9, 0x8, 0x1, 0x2, 0x4, 0x8, 0x4, 0x5, 0x401, 0x10000000000000, 0x9, 0x1, 0x1c000000000, 0x3f, 0x2, 0xffffffffffffffff, 0x1ff, 0xf9, 0x6, 0x2, 0xff, 0x9, 0xffff, 0x6, 0x5b, 0x9, 0xff, 0x2, 0x5, 0xffffffff, 0xd2], [0x9, 0xfffffffffffffffe, 0x7, 0x77, 0x4, 0x39f, 0x8, 0x3ff, 0x8, 0x100000001, 0x1ff, 0x401, 0x896, 0x9, 0x6, 0x2, 0x9, 0x3aa, 0x9, 0x800, 0x2000000000, 0x100000001, 0x2, 0xffffffff, 0x3f, 0x0, 0x7, 0x1, 0x3, 0x8, 0x8, 0x401, 0x8, 0x9, 0x100, 0x6, 0x4, 0x200, 0x100, 0x7, 0x0, 0x2, 0x72b, 0x9, 0x2, 0x8, 0x1, 0x8001, 0x1, 0x7, 0xffffffffffffffff, 0x4, 0x3f, 0x2, 0xffff, 0x8b0c, 0x1, 0x2c6, 0x9, 0xf800000000000000, 0x6, 0x3, 0xd8, 0x81], [0x2, 0x80, 0x3b6f, 0x9, 0x9, 0x4, 0x3a, 0x0, 0x1ff, 0x1, 0x8, 0x7, 0x8, 0x2b4a481c, 0x100, 0x5, 0x0, 0xfffffffffffffffa, 0x1000, 0x9, 0x200, 0x7, 0x2, 0x4, 0x9, 0x646, 0xff, 0x8, 0x9, 0x6, 0x8, 0xffffffffffff8001, 0x1, 0x20, 0xfe, 0x7, 0xffffffffffffff01, 0x8001, 0x8, 0x6, 0x1, 0x401, 0x4, 0xffffffffe20228b8, 0x1, 0x5, 0x2135ff88, 0x1ff, 0xcb, 0x7, 0x100, 0x2, 0xd3da, 0x0, 0x5, 0x5, 0x3, 0x3f, 0x1ff, 0x1000, 0x3ff, 0x9, 0x1, 0x3], [0x100, 0x2b082d52, 0x1f, 0x4, 0xffffffff, 0x0, 0x3, 0x5, 0x3, 0x1ce0, 0x2, 0xfffffffffffffffb, 0x7, 0x6, 0x9, 0x2114be0c, 0x1, 0x800, 0x6, 0x80, 0x7fff, 0x7, 0x100000001, 0x8, 0x7, 0x7, 0x7, 0x2, 0x2, 0x4, 0x1, 0x2f2c00000, 0x1, 0x8, 0x100000000, 0x2, 0x4, 0x100000001, 0x40, 0xd6, 0x0, 0x48, 0x11f, 0x6, 0x8, 0x7, 0x8ee, 0x5, 0x3, 0xfe, 0xfffffffffffffffb, 0x9, 0x5, 0x3, 0x3ff, 0x8, 0x6, 0x9, 0x8, 0x800, 0x2, 0x8000, 0x8001, 0x8]}, 0x45c) r2 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r2, r2) [ 561.504467] binder: BINDER_SET_CONTEXT_MGR already set [ 561.519723] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 05:52:30 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, 0x0, 0x0) r1 = dup2(r0, r0) r2 = memfd_create(&(0x7f0000000340)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000240)="b156d417452c8f6d46edb3b1077f2abaa85e3489c66107abcc617d9aeb42aa515f23c9150bfdba5fa1be4e0415cb2c2d4a1cdff5ab24d3676cc093ea0ffa364b7e5089e349cd8014e7725dc78598dd7582e9e341524debb553e4901f0c22a4", 0x5f) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) sendfile(r2, r2, &(0x7f0000000200), 0xff8) r3 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='Z\x00') getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000040)={'security\x00'}, &(0x7f00000000c0)=0x54) r4 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) [ 561.553574] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 561.566528] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 561.603432] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 561.619194] input: syz1 as /devices/virtual/input/input398 [ 561.643029] binder: BINDER_SET_CONTEXT_MGR already set [ 561.648529] binder: 26282:26289 ioctl 40046207 0 returned -16 [ 561.648777] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 561.668624] Interruptibility = 00000000 ActivityState = 00000000 [ 561.681861] binder: 26277:26278 ioctl 40046207 0 returned -16 [ 561.694952] *** Host State *** 05:52:31 executing program 3: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, 0x0, 0x0) r1 = dup2(r0, r0) r2 = memfd_create(&(0x7f0000000340)='-B\xd5NI\xc5j\xbappp\xf0\b\x84\xa2m\x00:)\x00\xbb\x8d\xac\xacva}knh#\xcb)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bCc\xad\x89\x9ck\xde\xc5\xe96\xddU\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\xb6\xa5$4\xd6\xfe7\x0f\xe7\xd9$\xce \xabN\xae\xc9\xbd\xd3g@\xe1\'s\x0e\x90\xf2\xcdr\xb8(', 0x0) write(r2, &(0x7f0000000240)="b156d417452c8f6d46edb3b1077f2abaa85e3489c66107abcc617d9aeb42aa515f23c9150bfdba5fa1be4e0415cb2c2d4a1cdff5ab24d3676cc093ea0ffa364b7e5089e349cd8014e7725dc78598dd7582e9e341524debb553e4901f0c22a4", 0x5f) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r2, 0x0) sendfile(r2, r2, &(0x7f0000000200), 0xff8) r3 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000180)='Z\x00') getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f0000000040)={'security\x00'}, &(0x7f00000000c0)=0x54) r4 = dup2(r0, r0) ioctl$BINDER_SET_CONTEXT_MGR(r4, 0x40046207, 0x0) [ 561.699129] RIP = 0xffffffff81174990 RSP = 0xffff88805a7d7998 [ 561.710395] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 561.716832] FSBase=00007fbd97570700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 561.725373] input: syz1 as /devices/virtual/input/input397 [ 561.734453] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 561.741540] CR0=0000000080050033 CR3=000000005f755000 CR4=00000000001426e0 [ 561.758338] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 561.776517] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 561.796761] binder: 26277:26301 ioctl 4040534e 20000180 returned -22 [ 561.804598] input: syz1 as /devices/virtual/input/input399 [ 561.814165] *** Control State *** [ 561.817819] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 561.847995] EntryControls=0000d1ff ExitControls=002fefff 05:52:31 executing program 5: r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x3, 0x1) mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x1) ioctl$VIDIOC_DECODER_CMD(r0, 0xc0485660, &(0x7f00000000c0)={0x7, 0x2, @stop_pts=0x101}) r1 = syz_open_dev$binder(&(0x7f0000000140)='/dev/binder#\x00', 0x0, 0x800) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) shmget(0x3, 0x2000, 0x100, &(0x7f0000ffe000/0x2000)=nil) dup2(r1, r1) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) 05:52:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) epoll_create1(0x80000) [ 561.854705] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 561.861916] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 561.868817] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 561.875922] reason=80000021 qualification=0000000000000000 [ 561.887711] IDTVectoring: info=00000000 errcode=00000000 [ 561.898413] TSC Offset = 0xfffffed0eba23d61 [ 561.904124] TPR Threshold = 0x00 [ 561.915943] EPT pointer = 0x000000008579301e [ 561.942271] *** Guest State *** [ 561.942415] Virtual processor ID = 0x0001 [ 561.955271] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 561.965209] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:52:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x4000) ioctl$KDSKBSENT(r2, 0x4b49, &(0x7f0000000380)="67e4bfbe473735057175d9e335fa2dc3fb50ed873af09b84818044ebc24d71c671d749f1960116be224c815ed062d52e1cffac46d6405b2528fd93dce3ddaef63a46c029d9d89ed1a21cabed905214016dff141358ae499f58c4cdc149090437af2d305197bab4a7a5c492ce383f1b30136fe1160936a189ba816836a1edf481e9363fcbd7dc942297d96e6ec3b7e9855cef5c200fb58ef463551a0a861b26a2aef774db6f7fa4be12a69d957a5830fca23511ff981d5639ce9c4babcde22550d23e24e595d747e0aba26e4be4dff00300799c666b4b8a0e7151820d67c16e447f1899bbd78f9a57a2053c753d2687ae417e") r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x6cc690d2f794af8b}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x24, r4, 0x200, 0x70bd2d, 0x25dfdbfc, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x5}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x810}, 0x4000000) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x1, 0x0, @pic={0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:52:31 executing program 2: msgget(0x2, 0x100) syz_mount_image$vfat(&(0x7f0000002600)='vfat\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0xffffffffffffff7d, 0x0, 0x8, &(0x7f0000000340)={[{@nonumtail='nnonumtail=1'}, {@shortname_lower='shortname=lower'}, {@uni_xlateno='uni_xlate=0'}]}) r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) setsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000040)=0x4, 0x4) r1 = geteuid() syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x18, 0x5, &(0x7f0000000440)=[{&(0x7f0000000100)="fd39b5f6646bbd60d2bac88d68f38e5e005c9f3b3dac39d6e778871e8520c5271a8c08777b25e80e6306b57470476f23cd6f0da8dc5adcdbadcd8346946f7a565ebee8ebccce4749859d01ad476421065c89c43a81cc52e5b375a595297d6d3c9f6a9bad1985fd2016be42d9d624678739cbbd4efcdfbe25af5ffd9baea28079c31cc156733198f0a578f8e23a5084dc6f989f98b75879b7c3e47af987989e668113eca69d31d9cef04f99f99986da9cf33889883d45ef02f816e7bd2888452b843875446a3bddfe446bde350cfd66d8d1", 0xd1, 0x9}, {&(0x7f00000005c0)="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", 0x1000, 0x21}, {&(0x7f0000000200)="dc7ee530f31d5a0757f22daa573f1e5c3b2ee42261842b189e0befbb15dd82f76f379bd1b6f78a21d1d74cb692d6f9874add1c75c54890f485c085c81a97e1ea2a8512096d8d27632b7fb6eda50b781afe766773c4c4225037661985e8a1d7b08099034e256152d8d2e3526be78e2be54ac142337bbf187798122cc0866752f253a9a653cde0ca3a9bf13ad7a6829a26f93e23159739a68f03566f8e31bfd267add310079a592fb9e7b5ba27bce93e3dad1ca468502bd1b1601d0a15b55c647a9e4fa074b8000fcb8a", 0xc9, 0x56}, {&(0x7f00000003c0)="edba9930583c9530773d8117f92c62020b548a4234c29b4456565c93da4d5faa45831147e0c1abd2a29ffecbe4418fe5dbaa632592ad3487876dc27eb5fb48cfb485618e0f918a50747e7e4b2e23d23dd5cf61bde247adb4de15d25654ba9d7581d2eb837b0c784dcce2f0", 0x6b, 0x8}, {&(0x7f00000015c0)="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", 0x1000, 0x3ff}], 0x1929000, &(0x7f00000004c0)={[{@shortname_lower='shortname=lower'}, {@utf8no='utf8=0'}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@numtail='nonumtail=0'}, {@nonumtail='nnonumtail=1'}, {@rodir='rodir'}], [{@uid_lt={'uid<', r1}}, {@appraise='appraise'}, {@subj_type={'subj_type', 0x3d, 'vfat\x00'}}]}) 05:52:31 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000000)={{}, 'syz1\x00', 0x26}) ioctl$UI_DEV_CREATE(r0, 0x5501) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) dup2(r1, r0) [ 561.998226] CR3 = 0x00000000fffbc000 [ 562.006837] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 562.028806] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 562.035915] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 562.056343] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 562.076219] input: syz1 as /devices/virtual/input/input400 [ 562.087050] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 05:52:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)) r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000100)={0xffffffffffffffff}, 0xeea2bdb48ff5cf9a, 0x8}}, 0x20) umount2(&(0x7f0000000200)='./file0\x00', 0x6a2adde526218cb2) r2 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x1ff, 0x1) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f00000001c0)={0x12, 0x10, 0xfa00, {&(0x7f00000000c0), r1, r2}}, 0x18) [ 562.107478] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.119560] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.133370] *** Guest State *** [ 562.134088] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.136917] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 562.136928] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 562.136934] CR3 = 0x00000000fffbc000 [ 562.136940] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 562.136948] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 562.136958] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 562.147203] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.169816] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 562.186519] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 562.196716] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 562.205720] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 562.218240] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 562.229826] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 562.238496] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.249762] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 562.263177] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.266056] Interruptibility = 00000000 ActivityState = 00000000 [ 562.277999] *** Host State *** [ 562.283452] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.288751] RIP = 0xffffffff81174990 RSP = 0xffff88805f51f998 [ 562.293690] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.297654] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 562.306931] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 562.316920] FSBase=00007fc2c2e6f700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 562.324351] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 562.328559] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 562.341825] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 562.347746] CR0=0000000080050033 CR3=000000009b444000 CR4=00000000001426e0 05:52:31 executing program 2: lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.redirect\x00', &(0x7f0000000080)='./file0\x00', 0x8, 0x2) [ 562.353255] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 562.357898] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff862018e0 [ 562.372967] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 562.373685] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 562.379178] *** Control State *** [ 562.394416] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 562.404261] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000e3 [ 562.411312] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 562.419051] EntryControls=0000d1ff ExitControls=002fefff [ 562.429979] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 562.437351] Interruptibility = 00000000 ActivityState = 00000000 [ 562.448428] input: syz1 as /devices/virtual/input/input401 [ 562.455534] *** Host State *** [ 562.456837] VMEntry: intr_info=80000000 errcode=00000000 ilen=00000000 [ 562.458976] refcount_t: increment on 0; use-after-free. [ 562.471973] ------------[ cut here ]------------ [ 562.476758] WARNING: CPU: 0 PID: 26327 at lib/refcount.c:153 refcount_inc.cold+0x18/0x1f [ 562.485137] Kernel panic - not syncing: panic_on_warn set ... [ 562.485137] [ 562.492497] CPU: 0 PID: 26327 Comm: syz-executor.0 Not tainted 4.14.141 #37 [ 562.499839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 562.509195] Call Trace: [ 562.511854] dump_stack+0x138/0x197 [ 562.515477] panic+0x1f2/0x426 [ 562.518724] ? add_taint.cold+0x16/0x16 [ 562.522741] ? refcount_inc.cold+0x18/0x1f [ 562.526971] ? __warn.cold+0x14/0x36 [ 562.530679] ? refcount_inc.cold+0x18/0x1f [ 562.534905] __warn.cold+0x2f/0x36 [ 562.538553] ? ist_end_non_atomic+0x10/0x10 [ 562.542872] ? refcount_inc.cold+0x18/0x1f [ 562.547229] report_bug+0x216/0x254 [ 562.550902] do_error_trap+0x1bb/0x310 [ 562.554782] ? math_error+0x360/0x360 [ 562.558577] ? vprintk_emit+0x171/0x600 [ 562.562548] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 562.567389] do_invalid_op+0x1b/0x20 [ 562.571100] invalid_op+0x1b/0x40 [ 562.574566] RIP: 0010:refcount_inc.cold+0x18/0x1f [ 562.579397] RSP: 0018:ffff88805a7d7980 EFLAGS: 00010286 [ 562.584805] RAX: 000000000000002b RBX: 1ffff1100b4faf3d RCX: 0000000000000000 [ 562.592075] RDX: 000000000002086e RSI: ffffffff814b2d45 RDI: ffffed100b4faf26 [ 562.599336] RBP: ffff88805a7d7988 R08: 000000000000002b R09: ffff88808fa18f60 [ 562.606600] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888064989820 [ 562.613915] R13: 0000000000000000 R14: ffff88808b51a340 R15: ffff88808b5ddee8 [ 562.621193] ? vprintk_func+0x65/0x159 [ 562.625084] kobject_get+0x5b/0x70 [ 562.628645] cdev_get+0x54/0xa0 [ 562.631918] chrdev_open+0x9b/0x590 [ 562.635539] ? cdev_put.part.0+0x50/0x50 [ 562.639591] ? security_file_open+0x89/0x190 [ 562.643998] do_dentry_open+0x73b/0xeb0 [ 562.648023] ? cdev_put.part.0+0x50/0x50 [ 562.652084] vfs_open+0x105/0x220 [ 562.655595] path_openat+0x8bd/0x3f70 [ 562.659391] ? trace_hardirqs_on+0x10/0x10 [ 562.663628] ? path_lookupat.isra.0+0x7b0/0x7b0 [ 562.668295] ? __alloc_fd+0x1d4/0x4a0 [ 562.672214] do_filp_open+0x18e/0x250 [ 562.676008] ? may_open_dev+0xe0/0xe0 [ 562.679871] ? _raw_spin_unlock+0x2d/0x50 [ 562.684016] ? __alloc_fd+0x1d4/0x4a0 [ 562.687823] do_sys_open+0x2c5/0x430 [ 562.691533] ? filp_open+0x70/0x70 [ 562.695299] ? SyS_clock_gettime+0xf8/0x180 [ 562.699616] SyS_open+0x2d/0x40 [ 562.702891] ? do_sys_open+0x430/0x430 [ 562.706778] do_syscall_64+0x1e8/0x640 [ 562.712831] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 562.717680] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 562.722872] RIP: 0033:0x413761 [ 562.726058] RSP: 002b:00007ffa129967a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 562.733759] RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000413761 [ 562.741042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffa12996850 [ 562.748305] RBP: 000000000075c070 R08: 000000000000000f R09: 0000000000000000 [ 562.755701] R10: 00007ffa129979d0 R11: 0000000000000293 R12: 00007ffa129976d4 [ 562.762974] R13: 00000000004c8c4b R14: 00000000004dfbc8 R15: 00000000ffffffff [ 562.771912] Kernel Offset: disabled [ 562.775674] Rebooting in 86400 seconds..