816][ T9619] mmu_topup_memory_caches+0x97/0x490 [ 262.546836][ T9619] kvm_mmu_load+0x21/0x1200 [ 262.546850][ T9619] ? mark_held_locks+0xf0/0xf0 [ 262.546870][ T9619] ? vmx_handle_exit+0x1640/0x1640 [ 262.591475][ T9619] vcpu_enter_guest+0x3c8d/0x60b0 [ 262.591494][ T9619] ? __mutex_lock+0x3cd/0x1310 [ 262.591515][ T9619] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 262.591545][ T9619] ? emulator_read_emulated+0x50/0x50 [ 262.600797][ T9619] ? lock_acquire+0x16f/0x3f0 [ 262.600815][ T9619] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 262.600837][ T9619] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 262.600851][ T9619] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 262.600876][ T9619] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 262.600906][ T9619] ? kvm_vcpu_block+0xcd0/0xcd0 [ 262.600921][ T9619] ? mark_held_locks+0xf0/0xf0 [ 262.600936][ T9619] ? proc_fail_nth_write+0x9d/0x1e0 [ 262.600955][ T9619] ? proc_cwd_link+0x1d0/0x1d0 [ 262.671812][ T9619] ? __f_unlock_pos+0x19/0x20 [ 262.676499][ T9619] ? find_held_lock+0x35/0x130 [ 262.681265][ T9619] ? __fget+0x340/0x540 [ 262.681282][ T9619] ? find_held_lock+0x35/0x130 [ 262.681297][ T9619] ? __fget+0x340/0x540 [ 262.681321][ T9619] ? kvm_vcpu_block+0xcd0/0xcd0 [ 262.681340][ T9619] do_vfs_ioctl+0xd6e/0x1390 [ 262.681358][ T9619] ? ioctl_preallocate+0x210/0x210 [ 262.681373][ T9619] ? __fget+0x367/0x540 [ 262.681390][ T9619] ? ksys_dup3+0x3e0/0x3e0 11:46:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 262.681412][ T9619] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 262.713366][ T9619] ? fput+0x128/0x1a0 [ 262.713392][ T9619] ? security_file_ioctl+0x93/0xc0 [ 262.713413][ T9619] ksys_ioctl+0xab/0xd0 [ 262.713431][ T9619] __x64_sys_ioctl+0x73/0xb0 [ 262.713451][ T9619] do_syscall_64+0x103/0x610 [ 262.713480][ T9619] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 262.724117][ T9619] RIP: 0033:0x458089 11:46:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x4080) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r2, 0x12, 0x2, &(0x7f0000000180)=""/231, &(0x7f0000000000)=0xe7) [ 262.724135][ T9619] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 262.724144][ T9619] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 262.724174][ T9619] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 262.724183][ T9619] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 262.724192][ T9619] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 262.724201][ T9619] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 262.724209][ T9619] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:12 executing program 3 (fault-call:7 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 262.900859][ T9627] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 262.969399][ T9643] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 263.004697][ T9649] FAULT_INJECTION: forcing a failure. [ 263.004697][ T9649] name failslab, interval 1, probability 0, space 0, times 0 [ 263.018023][ T9649] CPU: 1 PID: 9649 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 263.026958][ T9649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.026965][ T9649] Call Trace: [ 263.026991][ T9649] dump_stack+0x172/0x1f0 [ 263.027025][ T9649] should_fail.cold+0xa/0x15 [ 263.049191][ T9649] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 263.054984][ T9649] ? lock_downgrade+0x880/0x880 [ 263.059831][ T9649] ? ___might_sleep+0x163/0x280 [ 263.064685][ T9649] __should_failslab+0x121/0x190 [ 263.069610][ T9649] should_failslab+0x9/0x14 [ 263.074094][ T9649] kmem_cache_alloc+0x2be/0x710 [ 263.078935][ T9649] mmu_topup_memory_caches+0x97/0x490 [ 263.084288][ T9649] kvm_mmu_load+0x21/0x1200 [ 263.088775][ T9649] ? vcpu_enter_guest+0x2a33/0x60b0 [ 263.093956][ T9649] ? lockdep_hardirqs_on+0x418/0x5d0 [ 263.099225][ T9649] vcpu_enter_guest+0x3c8d/0x60b0 [ 263.104238][ T9649] ? emulator_read_emulated+0x50/0x50 [ 263.109593][ T9649] ? lock_acquire+0x16f/0x3f0 [ 263.114267][ T9649] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 263.119998][ T9649] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 263.125535][ T9649] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 263.131274][ T9649] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 263.135946][ T9649] ? kvm_vcpu_block+0xcd0/0xcd0 [ 263.140779][ T9649] ? mark_held_locks+0xf0/0xf0 [ 263.145521][ T9649] ? proc_fail_nth_write+0x9d/0x1e0 [ 263.150699][ T9649] ? proc_cwd_link+0x1d0/0x1d0 [ 263.155442][ T9649] ? __f_unlock_pos+0x19/0x20 [ 263.160098][ T9649] ? find_held_lock+0x35/0x130 [ 263.164875][ T9649] ? __fget+0x340/0x540 [ 263.169036][ T9649] ? find_held_lock+0x35/0x130 [ 263.173778][ T9649] ? __fget+0x340/0x540 [ 263.177928][ T9649] ? kvm_vcpu_block+0xcd0/0xcd0 [ 263.182761][ T9649] do_vfs_ioctl+0xd6e/0x1390 [ 263.187380][ T9649] ? ioctl_preallocate+0x210/0x210 [ 263.192472][ T9649] ? __fget+0x367/0x540 [ 263.196623][ T9649] ? ksys_dup3+0x3e0/0x3e0 [ 263.201089][ T9649] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 263.207313][ T9649] ? fput+0x128/0x1a0 [ 263.211281][ T9649] ? security_file_ioctl+0x93/0xc0 [ 263.216381][ T9649] ksys_ioctl+0xab/0xd0 [ 263.220527][ T9649] __x64_sys_ioctl+0x73/0xb0 [ 263.225101][ T9649] do_syscall_64+0x103/0x610 [ 263.229681][ T9649] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 263.235549][ T9649] RIP: 0033:0x458089 [ 263.239422][ T9649] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 263.259012][ T9649] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 263.267406][ T9649] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 263.275356][ T9649] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 263.283306][ T9649] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 263.291257][ T9649] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 263.299209][ T9649] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:14 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:14 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000180)="808f28cb8c4a055de610c0deef4b614400342939547885ff538928ea8cebecd1a7cb5fb5980588a7e3ca0835c2275e548f246fc4309ba11181468b54ff690f40ac85c0995f0684904b7e41410907829e879665477447932470c509d7d7882fd28277e62bde24aeec61e7297160b47124bf42474270555c18fac034ad9e223c5d968e8eee6d4280a0154e5f6089d4485abff33f19269a3c0f02e921df2aade32c1fad70521c040e81f46d1bb65f50373331015f033c526204595df5e337e52ee1ecd170f41ffa744fa3c8c9daf983beb2abb034a6417cc27b02a5d87654fb7c4639f058c78bb50d2b9f5bb2e28a6f03f300") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0xfffffffffffffffc, 0x0) dup2(r0, r1) 11:46:14 executing program 3 (fault-call:7 fault-nth:3): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:14 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='\ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:14 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='n\xd0fs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:14 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='\ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 265.446391][ T9664] FAULT_INJECTION: forcing a failure. [ 265.446391][ T9664] name failslab, interval 1, probability 0, space 0, times 0 11:46:15 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000040)=0xa) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = syz_open_dev$sndpcmp(&(0x7f0000000300)='/dev/snd/pcmC#D#p\x00', 0x800, 0x400000) setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000000340)=0x8428, 0x4) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r5 = accept4$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, &(0x7f0000000400)=0x275, 0x4f5f8664bafdc74a) ioctl$TCGETS(r5, 0x5401, &(0x7f0000000380)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f00000000c0)=ANY=[@ANYBLOB="060000b3", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000100)=0x1c) dup2(r0, r0) getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000240)={'nat\x00', 0x0, 0x3, 0x49, [], 0x1, &(0x7f0000000180)=[{}], &(0x7f00000001c0)=""/73}, &(0x7f00000002c0)=0x78) 11:46:15 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 265.515201][ T9664] CPU: 0 PID: 9664 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 265.524182][ T9664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 265.534241][ T9664] Call Trace: [ 265.537549][ T9664] dump_stack+0x172/0x1f0 [ 265.541893][ T9664] should_fail.cold+0xa/0x15 [ 265.546504][ T9664] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 265.552314][ T9664] ? lock_downgrade+0x880/0x880 [ 265.557181][ T9664] ? ___might_sleep+0x163/0x280 [ 265.562036][ T9664] __should_failslab+0x121/0x190 [ 265.566969][ T9664] should_failslab+0x9/0x14 [ 265.571463][ T9664] kmem_cache_alloc+0x2be/0x710 [ 265.576317][ T9664] ? __lock_acquire+0x54b/0x4790 [ 265.581260][ T9664] mmu_topup_memory_caches+0x97/0x490 [ 265.586627][ T9664] kvm_mmu_load+0x21/0x1200 [ 265.591167][ T9664] ? mark_held_locks+0xf0/0xf0 [ 265.595929][ T9664] ? vmx_handle_exit+0x1640/0x1640 [ 265.601046][ T9664] vcpu_enter_guest+0x3c8d/0x60b0 [ 265.606103][ T9664] ? __mutex_lock+0x3cd/0x1310 [ 265.610867][ T9664] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 265.615750][ T9664] ? emulator_read_emulated+0x50/0x50 [ 265.621130][ T9664] ? lock_acquire+0x16f/0x3f0 [ 265.625807][ T9664] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 265.631524][ T9664] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 265.637076][ T9664] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 265.642800][ T9664] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 265.647477][ T9664] ? kvm_vcpu_block+0xcd0/0xcd0 [ 265.652323][ T9664] ? mark_held_locks+0xf0/0xf0 [ 265.657079][ T9664] ? proc_fail_nth_write+0x9d/0x1e0 [ 265.662266][ T9664] ? proc_cwd_link+0x1d0/0x1d0 [ 265.667022][ T9664] ? __f_unlock_pos+0x19/0x20 [ 265.671693][ T9664] ? find_held_lock+0x35/0x130 [ 265.676447][ T9664] ? __fget+0x340/0x540 [ 265.680596][ T9664] ? find_held_lock+0x35/0x130 [ 265.685352][ T9664] ? __fget+0x340/0x540 [ 265.689491][ T9664] ? kvm_vcpu_block+0xcd0/0xcd0 [ 265.694325][ T9664] do_vfs_ioctl+0xd6e/0x1390 [ 265.698907][ T9664] ? ioctl_preallocate+0x210/0x210 [ 265.704000][ T9664] ? __fget+0x367/0x540 [ 265.708141][ T9664] ? ksys_dup3+0x3e0/0x3e0 [ 265.712564][ T9664] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 265.718822][ T9664] ? fput+0x128/0x1a0 [ 265.722802][ T9664] ? security_file_ioctl+0x93/0xc0 [ 265.727969][ T9664] ksys_ioctl+0xab/0xd0 [ 265.732134][ T9664] __x64_sys_ioctl+0x73/0xb0 [ 265.736725][ T9664] do_syscall_64+0x103/0x610 [ 265.741312][ T9664] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 265.747202][ T9664] RIP: 0033:0x458089 [ 265.751104][ T9664] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 265.770705][ T9664] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 265.779123][ T9664] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 265.787074][ T9664] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 265.795024][ T9664] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 265.802984][ T9664] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 265.810954][ T9664] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:15 executing program 3 (fault-call:7 fault-nth:4): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='nt\ns\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 266.057003][ T9704] FAULT_INJECTION: forcing a failure. [ 266.057003][ T9704] name failslab, interval 1, probability 0, space 0, times 0 [ 266.080295][ C1] net_ratelimit: 18 callbacks suppressed [ 266.080302][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 266.080339][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 266.086020][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 266.106303][ T9704] CPU: 0 PID: 9704 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 266.115238][ T9704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.115246][ T9704] Call Trace: [ 266.115272][ T9704] dump_stack+0x172/0x1f0 [ 266.115300][ T9704] should_fail.cold+0xa/0x15 [ 266.115323][ T9704] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 266.115340][ T9704] ? lock_downgrade+0x880/0x880 [ 266.115362][ T9704] ? ___might_sleep+0x163/0x280 11:46:15 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='%tfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 266.115384][ T9704] __should_failslab+0x121/0x190 [ 266.115413][ T9704] should_failslab+0x9/0x14 [ 266.128732][ T9704] kmem_cache_alloc+0x2be/0x710 [ 266.128758][ T9704] ? __lock_acquire+0x54b/0x4790 [ 266.172284][ T9704] mmu_topup_memory_caches+0x97/0x490 [ 266.177653][ T9704] kvm_mmu_load+0x21/0x1200 [ 266.182165][ T9704] ? mark_held_locks+0xf0/0xf0 [ 266.186918][ T9704] ? vmx_handle_exit+0x1640/0x1640 [ 266.192053][ T9704] vcpu_enter_guest+0x3c8d/0x60b0 [ 266.197061][ T9704] ? __mutex_lock+0x3cd/0x1310 [ 266.201809][ T9704] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 266.206643][ T9704] ? emulator_read_emulated+0x50/0x50 [ 266.212007][ T9704] ? lock_acquire+0x16f/0x3f0 [ 266.216663][ T9704] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 266.222372][ T9704] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 266.227908][ T9704] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 266.233613][ T9704] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 266.238269][ T9704] ? kvm_vcpu_block+0xcd0/0xcd0 [ 266.243102][ T9704] ? mark_held_locks+0xf0/0xf0 [ 266.247857][ T9704] ? proc_fail_nth_write+0x9d/0x1e0 [ 266.253050][ T9704] ? proc_cwd_link+0x1d0/0x1d0 [ 266.257795][ T9704] ? __f_unlock_pos+0x19/0x20 [ 266.262464][ T9704] ? find_held_lock+0x35/0x130 [ 266.267208][ T9704] ? __fget+0x340/0x540 [ 266.271350][ T9704] ? find_held_lock+0x35/0x130 [ 266.276095][ T9704] ? __fget+0x340/0x540 [ 266.280251][ T9704] ? kvm_vcpu_block+0xcd0/0xcd0 [ 266.285092][ T9704] do_vfs_ioctl+0xd6e/0x1390 [ 266.289664][ T9704] ? ioctl_preallocate+0x210/0x210 [ 266.294756][ T9704] ? __fget+0x367/0x540 [ 266.298901][ T9704] ? ksys_dup3+0x3e0/0x3e0 [ 266.303310][ T9704] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 266.309572][ T9704] ? fput+0x128/0x1a0 [ 266.313555][ T9704] ? security_file_ioctl+0x93/0xc0 [ 266.318664][ T9704] ksys_ioctl+0xab/0xd0 [ 266.322802][ T9704] __x64_sys_ioctl+0x73/0xb0 [ 266.327391][ T9704] do_syscall_64+0x103/0x610 [ 266.331996][ T9704] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 266.337884][ T9704] RIP: 0033:0x458089 [ 266.341795][ T9704] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 266.361384][ T9704] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 266.369787][ T9704] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 266.377737][ T9704] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 266.385685][ T9704] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 266.393646][ T9704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 266.400405][ C1] protocol 88fb is buggy, dev hsr_slave_0 11:46:15 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000)='trusted.overlay.nlink\x00', &(0x7f0000000080)={'L+', 0x3}, 0x28, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1000005, 0x31, 0xffffffffffffffff, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_MMAP_OFFSETS(r1, 0x11b, 0x1, &(0x7f0000000200), &(0x7f00000001c0)=0x4d) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000480)='/dev/radio#\x00', 0x0, 0x2) getsockopt$packet_int(r3, 0x107, 0x1d, &(0x7f00000004c0), &(0x7f0000000500)=0x4) dup2(r0, r2) 11:46:16 executing program 3 (fault-call:7 fault-nth:5): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 266.401626][ T9704] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 266.407401][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:16 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='%tfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 266.480377][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 266.486254][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0xfffffffffffffffe, 0x0) r2 = dup2(r0, r1) ioctl$IMCLEAR_L2(r2, 0x80044946, &(0x7f0000000000)=0x8) [ 266.769804][ T9721] FAULT_INJECTION: forcing a failure. [ 266.769804][ T9721] name failslab, interval 1, probability 0, space 0, times 0 [ 266.797963][ T9721] CPU: 1 PID: 9721 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 266.806920][ T9721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 266.816974][ T9721] Call Trace: [ 266.817002][ T9721] dump_stack+0x172/0x1f0 [ 266.817030][ T9721] should_fail.cold+0xa/0x15 [ 266.817053][ T9721] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 266.817077][ T9721] ? lock_downgrade+0x880/0x880 [ 266.839914][ T9721] ? ___might_sleep+0x163/0x280 [ 266.844772][ T9721] __should_failslab+0x121/0x190 [ 266.849735][ T9721] should_failslab+0x9/0x14 [ 266.854262][ T9721] kmem_cache_alloc+0x2be/0x710 [ 266.859143][ T9721] ? __lock_acquire+0x54b/0x4790 [ 266.864081][ T9721] mmu_topup_memory_caches+0x97/0x490 [ 266.869450][ T9721] kvm_mmu_load+0x21/0x1200 [ 266.873933][ T9721] ? mark_held_locks+0xf0/0xf0 [ 266.878712][ T9721] ? vmx_handle_exit+0x1640/0x1640 [ 266.883853][ T9721] vcpu_enter_guest+0x3c8d/0x60b0 [ 266.888873][ T9721] ? __mutex_lock+0x3cd/0x1310 [ 266.893673][ T9721] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 266.898519][ T9721] ? emulator_read_emulated+0x50/0x50 [ 266.903885][ T9721] ? lock_acquire+0x16f/0x3f0 [ 266.908548][ T9721] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 266.914270][ T9721] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 266.919797][ T9721] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 266.925501][ T9721] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 266.930162][ T9721] ? kvm_vcpu_block+0xcd0/0xcd0 [ 266.935000][ T9721] ? mark_held_locks+0xf0/0xf0 [ 266.939753][ T9721] ? proc_fail_nth_write+0x9d/0x1e0 [ 266.944946][ T9721] ? proc_cwd_link+0x1d0/0x1d0 [ 266.949695][ T9721] ? __f_unlock_pos+0x19/0x20 [ 266.954353][ T9721] ? find_held_lock+0x35/0x130 [ 266.959106][ T9721] ? __fget+0x340/0x540 [ 266.963248][ T9721] ? find_held_lock+0x35/0x130 [ 266.968003][ T9721] ? __fget+0x340/0x540 [ 266.972158][ T9721] ? kvm_vcpu_block+0xcd0/0xcd0 [ 266.977013][ T9721] do_vfs_ioctl+0xd6e/0x1390 [ 266.981640][ T9721] ? ioctl_preallocate+0x210/0x210 [ 266.986745][ T9721] ? __fget+0x367/0x540 [ 266.990939][ T9721] ? ksys_dup3+0x3e0/0x3e0 [ 266.995353][ T9721] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 267.001584][ T9721] ? fput+0x128/0x1a0 [ 267.005549][ T9721] ? security_file_ioctl+0x93/0xc0 [ 267.010645][ T9721] ksys_ioctl+0xab/0xd0 [ 267.014806][ T9721] __x64_sys_ioctl+0x73/0xb0 [ 267.019380][ T9721] do_syscall_64+0x103/0x610 [ 267.023960][ T9721] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 267.029838][ T9721] RIP: 0033:0x458089 [ 267.033726][ T9721] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 267.053308][ T9721] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 267.061704][ T9721] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 11:46:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x40000) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r2) [ 267.069786][ T9721] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 267.077741][ T9721] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 267.085689][ T9721] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 267.093639][ T9721] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:16 executing program 3 (fault-call:7 fault-nth:6): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 267.121118][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 267.126958][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:16 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='n\nfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 267.257411][ T9748] FAULT_INJECTION: forcing a failure. [ 267.257411][ T9748] name failslab, interval 1, probability 0, space 0, times 0 [ 267.270196][ T9748] CPU: 0 PID: 9748 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 267.279128][ T9748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 267.291183][ T9748] Call Trace: [ 267.294481][ T9748] dump_stack+0x172/0x1f0 [ 267.298827][ T9748] should_fail.cold+0xa/0x15 [ 267.303422][ T9748] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 267.309275][ T9748] ? lock_downgrade+0x880/0x880 [ 267.314122][ T9748] ? ___might_sleep+0x163/0x280 [ 267.318951][ T9748] __should_failslab+0x121/0x190 [ 267.323884][ T9748] should_failslab+0x9/0x14 [ 267.328418][ T9748] kmem_cache_alloc+0x2be/0x710 [ 267.333300][ T9748] mmu_topup_memory_caches+0x97/0x490 [ 267.338654][ T9748] kvm_mmu_load+0x21/0x1200 [ 267.343191][ T9748] ? vcpu_enter_guest+0x2a33/0x60b0 [ 267.348387][ T9748] ? lockdep_hardirqs_on+0x418/0x5d0 [ 267.353669][ T9748] vcpu_enter_guest+0x3c8d/0x60b0 [ 267.358689][ T9748] ? emulator_read_emulated+0x50/0x50 [ 267.364070][ T9748] ? lock_acquire+0x16f/0x3f0 [ 267.368750][ T9748] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 267.374478][ T9748] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 267.380011][ T9748] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 267.385733][ T9748] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 267.390406][ T9748] ? kvm_vcpu_block+0xcd0/0xcd0 [ 267.395247][ T9748] ? mark_held_locks+0xf0/0xf0 [ 267.399998][ T9748] ? proc_fail_nth_write+0x9d/0x1e0 [ 267.405188][ T9748] ? proc_cwd_link+0x1d0/0x1d0 [ 267.409957][ T9748] ? __f_unlock_pos+0x19/0x20 [ 267.414625][ T9748] ? find_held_lock+0x35/0x130 [ 267.419368][ T9748] ? __fget+0x340/0x540 [ 267.423540][ T9748] ? find_held_lock+0x35/0x130 [ 267.428316][ T9748] ? __fget+0x340/0x540 [ 267.432498][ T9748] ? kvm_vcpu_block+0xcd0/0xcd0 [ 267.437360][ T9748] do_vfs_ioctl+0xd6e/0x1390 [ 267.441948][ T9748] ? ioctl_preallocate+0x210/0x210 [ 267.447060][ T9748] ? __fget+0x367/0x540 [ 267.451206][ T9748] ? ksys_dup3+0x3e0/0x3e0 [ 267.455607][ T9748] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 267.461839][ T9748] ? fput+0x128/0x1a0 [ 267.465828][ T9748] ? security_file_ioctl+0x93/0xc0 [ 267.470933][ T9748] ksys_ioctl+0xab/0xd0 [ 267.475080][ T9748] __x64_sys_ioctl+0x73/0xb0 [ 267.479650][ T9748] do_syscall_64+0x103/0x610 [ 267.484242][ T9748] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 267.490141][ T9748] RIP: 0033:0x458089 [ 267.494038][ T9748] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 267.513619][ T9748] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 267.522029][ T9748] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 267.529993][ T9748] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 267.537959][ T9748] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 267.545947][ T9748] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 267.553932][ T9748] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:17 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000280), &(0x7f00000002c0)=0x18) fgetxattr(r0, &(0x7f0000000080)=@random={'os2.', '/dev/ashmem\x00'}, &(0x7f0000000180)=""/211, 0xd3) r2 = dup2(r0, r1) ioctl$int_out(r1, 0x2, &(0x7f0000000000)) ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f0000000100)={0x55, 0x33, 0x7, {0x965, 0x8000}, {0x6, 0x800}, @period={0x0, 0x800, 0xc65, 0x7f, 0x1, {0x80000000, 0x5, 0x2, 0x1}, 0x7, &(0x7f00000000c0)=[0x7ff, 0x1ff, 0x0, 0x4c, 0x20, 0x2, 0x0]}}) [ 267.850371][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:46:18 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='nt%s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:18 executing program 3 (fault-call:7 fault-nth:7): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:18 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='n%fs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:18 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='n\nfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:18 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$midi(&(0x7f00000003c0)='/dev/midi#\x00', 0x6, 0x2) bind$bt_l2cap(r2, &(0x7f0000000400)={0x1f, 0x0, {0x591, 0x4, 0x7, 0x1, 0x8001, 0x7ff}, 0x8f9, 0x1}, 0xe) r3 = dup(r1) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000000100)=0x200000000000000) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000), 0x10) r4 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x3f, 0xa0000) ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, &(0x7f0000000440)={0x9e, "32ebc7fb1ca627f24952cf03bbf0ba43b55ddef41d8caef2a5dfb090e9cef21e57085f604d227c3613b6aade09c805503c9281116fe9e39d5d5f5f3469c5263b74f0ffb7a491187c24dc6e1483a54202167e9a318dc2596fb7aa8a314ef2c8ce93f8d1e4cd50042b1d15894a6351a05f3edfbe1b76110e6bdfd565ba7e2045ab4e4ef5e78302991e806029b7f14fae9ff5c50fd30913a9525b32c5e271f6"}) getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f00000001c0)={{{@in6=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@remote}}, &(0x7f00000002c0)=0xe8) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r4, &(0x7f0000000180)='./file0\x00', r5, r6, 0x1000) setsockopt$netlink_NETLINK_PKTINFO(r4, 0x10e, 0x3, &(0x7f00000000c0)=0x10001, 0x4) dup2(r0, r1) [ 269.023725][ T9785] FAULT_INJECTION: forcing a failure. [ 269.023725][ T9785] name failslab, interval 1, probability 0, space 0, times 0 [ 269.036683][ T9785] CPU: 0 PID: 9785 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 269.045626][ T9785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.055681][ T9785] Call Trace: [ 269.058980][ T9785] dump_stack+0x172/0x1f0 [ 269.063315][ T9785] should_fail.cold+0xa/0x15 [ 269.067893][ T9785] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 269.073706][ T9785] ? lock_downgrade+0x880/0x880 [ 269.078549][ T9785] ? ___might_sleep+0x163/0x280 [ 269.083398][ T9785] __should_failslab+0x121/0x190 [ 269.088320][ T9785] should_failslab+0x9/0x14 [ 269.092805][ T9785] kmem_cache_alloc+0x2be/0x710 [ 269.097638][ T9785] ? __lock_acquire+0x54b/0x4790 [ 269.102598][ T9785] mmu_topup_memory_caches+0x97/0x490 [ 269.107972][ T9785] kvm_mmu_load+0x21/0x1200 [ 269.112473][ T9785] ? mark_held_locks+0xf0/0xf0 [ 269.117224][ T9785] ? vmx_handle_exit+0x1640/0x1640 [ 269.122337][ T9785] vcpu_enter_guest+0x3c8d/0x60b0 [ 269.127342][ T9785] ? __mutex_lock+0x3cd/0x1310 [ 269.132099][ T9785] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 269.136968][ T9785] ? emulator_read_emulated+0x50/0x50 [ 269.142335][ T9785] ? lock_acquire+0x16f/0x3f0 [ 269.147009][ T9785] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 269.152710][ T9785] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 269.158261][ T9785] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 269.164013][ T9785] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 269.168689][ T9785] ? kvm_vcpu_block+0xcd0/0xcd0 [ 269.173522][ T9785] ? mark_held_locks+0xf0/0xf0 [ 269.178265][ T9785] ? proc_fail_nth_write+0x9d/0x1e0 [ 269.183441][ T9785] ? proc_cwd_link+0x1d0/0x1d0 [ 269.188187][ T9785] ? __f_unlock_pos+0x19/0x20 [ 269.192848][ T9785] ? find_held_lock+0x35/0x130 [ 269.197617][ T9785] ? __fget+0x340/0x540 [ 269.201758][ T9785] ? find_held_lock+0x35/0x130 [ 269.206526][ T9785] ? __fget+0x340/0x540 [ 269.210692][ T9785] ? kvm_vcpu_block+0xcd0/0xcd0 [ 269.215539][ T9785] do_vfs_ioctl+0xd6e/0x1390 [ 269.220113][ T9785] ? ioctl_preallocate+0x210/0x210 [ 269.225200][ T9785] ? __fget+0x367/0x540 [ 269.229335][ T9785] ? ksys_dup3+0x3e0/0x3e0 [ 269.233735][ T9785] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 269.239957][ T9785] ? fput+0x128/0x1a0 [ 269.243928][ T9785] ? security_file_ioctl+0x93/0xc0 [ 269.249035][ T9785] ksys_ioctl+0xab/0xd0 [ 269.253182][ T9785] __x64_sys_ioctl+0x73/0xb0 [ 269.257764][ T9785] do_syscall_64+0x103/0x610 [ 269.262339][ T9785] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 269.268207][ T9785] RIP: 0033:0x458089 [ 269.272091][ T9785] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 269.291721][ T9785] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 269.300117][ T9785] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 269.308095][ T9785] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 269.316072][ T9785] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 11:46:18 executing program 2: r0 = request_key(&(0x7f0000000080)='user\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000180)='+\\\x00', 0xfffffffffffffffa) keyctl$instantiate(0xc, r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="6c6f616420656372797074667320747275737465643a73797374656d2d3a2030303030303030303030303030303030b9d07a36207f7b6300"], 0x38, 0xfffffffffffffffa) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) pipe2(&(0x7f0000989000)={0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r4 = userfaultfd(0x0) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)) fcntl$setstatus(r1, 0x4, 0x2400) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$sndseq(r5, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) fallocate(r5, 0x10, 0x0, 0x5) creat(&(0x7f0000000000)='./file0\x00', 0x0) dup2(r3, r4) dup2(r1, r2) [ 269.324050][ T9785] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 269.332024][ T9785] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:18 executing program 3 (fault-call:7 fault-nth:8): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='nTfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='nt.s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='n%fs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 269.571785][ T9816] FAULT_INJECTION: forcing a failure. [ 269.571785][ T9816] name failslab, interval 1, probability 0, space 0, times 0 [ 269.586364][ T9816] CPU: 0 PID: 9816 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 269.595307][ T9816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 269.605370][ T9816] Call Trace: [ 269.608699][ T9816] dump_stack+0x172/0x1f0 [ 269.613049][ T9816] should_fail.cold+0xa/0x15 11:46:19 executing program 2: r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x693b85c4, 0x40) ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f0000000080)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, r2) [ 269.617654][ T9816] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 269.623469][ T9816] ? lock_downgrade+0x880/0x880 [ 269.628321][ T9816] ? ___might_sleep+0x163/0x280 [ 269.633185][ T9816] __should_failslab+0x121/0x190 [ 269.638129][ T9816] should_failslab+0x9/0x14 [ 269.642638][ T9816] kmem_cache_alloc+0x2be/0x710 [ 269.647484][ T9816] ? __lock_acquire+0x54b/0x4790 [ 269.652432][ T9816] mmu_topup_memory_caches+0x97/0x490 [ 269.657839][ T9816] kvm_mmu_load+0x21/0x1200 [ 269.662428][ T9816] ? mark_held_locks+0xf0/0xf0 [ 269.667177][ T9816] ? vmx_handle_exit+0x1640/0x1640 [ 269.672296][ T9816] vcpu_enter_guest+0x3c8d/0x60b0 [ 269.677305][ T9816] ? __mutex_lock+0x3cd/0x1310 [ 269.682052][ T9816] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 269.686912][ T9816] ? emulator_read_emulated+0x50/0x50 [ 269.692292][ T9816] ? lock_acquire+0x16f/0x3f0 [ 269.696977][ T9816] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 269.702707][ T9816] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 269.708258][ T9816] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 269.713988][ T9816] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 269.718661][ T9816] ? kvm_vcpu_block+0xcd0/0xcd0 [ 269.723495][ T9816] ? mark_held_locks+0xf0/0xf0 [ 269.728239][ T9816] ? proc_fail_nth_write+0x9d/0x1e0 [ 269.733414][ T9816] ? proc_cwd_link+0x1d0/0x1d0 [ 269.738165][ T9816] ? __f_unlock_pos+0x19/0x20 [ 269.742822][ T9816] ? find_held_lock+0x35/0x130 [ 269.747575][ T9816] ? __fget+0x340/0x540 [ 269.751736][ T9816] ? find_held_lock+0x35/0x130 [ 269.756488][ T9816] ? __fget+0x340/0x540 [ 269.760633][ T9816] ? kvm_vcpu_block+0xcd0/0xcd0 [ 269.765469][ T9816] do_vfs_ioctl+0xd6e/0x1390 [ 269.770052][ T9816] ? ioctl_preallocate+0x210/0x210 [ 269.775164][ T9816] ? __fget+0x367/0x540 [ 269.779322][ T9816] ? ksys_dup3+0x3e0/0x3e0 [ 269.783731][ T9816] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 269.789955][ T9816] ? fput+0x128/0x1a0 [ 269.793933][ T9816] ? security_file_ioctl+0x93/0xc0 [ 269.799028][ T9816] ksys_ioctl+0xab/0xd0 [ 269.803187][ T9816] __x64_sys_ioctl+0x73/0xb0 [ 269.807778][ T9816] do_syscall_64+0x103/0x610 [ 269.812383][ T9816] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 269.818258][ T9816] RIP: 0033:0x458089 [ 269.822134][ T9816] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 269.842163][ T9816] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 269.850552][ T9816] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 269.858517][ T9816] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 269.866467][ T9816] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 269.874420][ T9816] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 269.882390][ T9816] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:19 executing program 3 (fault-call:7 fault-nth:9): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:19 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(0xffffffffffffffff, r0) [ 270.205221][ T9856] FAULT_INJECTION: forcing a failure. [ 270.205221][ T9856] name failslab, interval 1, probability 0, space 0, times 0 [ 270.218067][ T9856] CPU: 1 PID: 9856 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 270.226987][ T9856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 270.237026][ T9856] Call Trace: [ 270.240317][ T9856] dump_stack+0x172/0x1f0 [ 270.244722][ T9856] should_fail.cold+0xa/0x15 [ 270.249311][ T9856] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 270.255101][ T9856] ? lock_downgrade+0x880/0x880 [ 270.259938][ T9856] ? ___might_sleep+0x163/0x280 [ 270.264798][ T9856] __should_failslab+0x121/0x190 [ 270.269743][ T9856] should_failslab+0x9/0x14 [ 270.274239][ T9856] kmem_cache_alloc+0x2be/0x710 [ 270.279085][ T9856] ? __lock_acquire+0x54b/0x4790 [ 270.284029][ T9856] mmu_topup_memory_caches+0x97/0x490 [ 270.289418][ T9856] kvm_mmu_load+0x21/0x1200 [ 270.293912][ T9856] ? mark_held_locks+0xf0/0xf0 [ 270.298664][ T9856] ? vmx_handle_exit+0x1640/0x1640 [ 270.303778][ T9856] vcpu_enter_guest+0x3c8d/0x60b0 [ 270.308797][ T9856] ? __mutex_lock+0x3cd/0x1310 [ 270.313571][ T9856] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 270.318432][ T9856] ? emulator_read_emulated+0x50/0x50 [ 270.323811][ T9856] ? lock_acquire+0x16f/0x3f0 [ 270.328474][ T9856] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 270.334197][ T9856] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 270.339763][ T9856] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 270.345496][ T9856] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 270.350168][ T9856] ? kvm_vcpu_block+0xcd0/0xcd0 [ 270.355011][ T9856] ? mark_held_locks+0xf0/0xf0 [ 270.359763][ T9856] ? proc_fail_nth_write+0x9d/0x1e0 [ 270.364963][ T9856] ? proc_cwd_link+0x1d0/0x1d0 [ 270.369733][ T9856] ? __f_unlock_pos+0x19/0x20 [ 270.374390][ T9856] ? find_held_lock+0x35/0x130 [ 270.379159][ T9856] ? __fget+0x340/0x540 [ 270.383314][ T9856] ? find_held_lock+0x35/0x130 [ 270.388075][ T9856] ? __fget+0x340/0x540 [ 270.392214][ T9856] ? kvm_vcpu_block+0xcd0/0xcd0 [ 270.397048][ T9856] do_vfs_ioctl+0xd6e/0x1390 [ 270.401648][ T9856] ? ioctl_preallocate+0x210/0x210 [ 270.406834][ T9856] ? __fget+0x367/0x540 [ 270.410986][ T9856] ? ksys_dup3+0x3e0/0x3e0 [ 270.415396][ T9856] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 270.421628][ T9856] ? fput+0x128/0x1a0 [ 270.425620][ T9856] ? security_file_ioctl+0x93/0xc0 [ 270.430742][ T9856] ksys_ioctl+0xab/0xd0 [ 270.434889][ T9856] __x64_sys_ioctl+0x73/0xb0 [ 270.439487][ T9856] do_syscall_64+0x103/0x610 [ 270.444081][ T9856] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 270.449973][ T9856] RIP: 0033:0x458089 [ 270.453856][ T9856] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 270.473442][ T9856] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 270.481869][ T9856] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 270.489842][ T9856] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 270.497811][ T9856] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 270.505788][ T9856] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 270.513760][ T9856] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 271.360318][ C1] net_ratelimit: 21 callbacks suppressed [ 271.366007][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 271.371788][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:21 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='nt/s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r1, r1) remap_file_pages(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x6, 0xc4020) dup2(r0, r1) ioctl$sock_inet_sctp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x982240}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x10c, r3, 0xa00, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, [], 0x1, 0x0}}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'rose0\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xa}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x1d}}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x6, 0x12}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xe518}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x1c}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x24000}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}]}, 0x10c}}, 0x0) 11:46:21 executing program 3 (fault-call:7 fault-nth:10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:21 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='n\xccfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:21 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='n0fs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 272.010323][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 272.013958][ T9872] mmap: syz-executor2 (9872) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 272.016154][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:21 executing program 2: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x4, 0x0) ioctl$PPPIOCATTCHAN(r0, 0x40047438, &(0x7f0000000080)=0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, r2) [ 272.111363][ T9874] FAULT_INJECTION: forcing a failure. [ 272.111363][ T9874] name failslab, interval 1, probability 0, space 0, times 0 [ 272.126504][ T9874] CPU: 1 PID: 9874 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 272.135453][ T9874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.145503][ T9874] Call Trace: [ 272.148806][ T9874] dump_stack+0x172/0x1f0 [ 272.153146][ T9874] should_fail.cold+0xa/0x15 [ 272.157738][ T9874] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 272.163543][ T9874] ? lock_downgrade+0x880/0x880 [ 272.168374][ T9874] ? ___might_sleep+0x163/0x280 [ 272.173208][ T9874] __should_failslab+0x121/0x190 [ 272.178129][ T9874] should_failslab+0x9/0x14 [ 272.182615][ T9874] kmem_cache_alloc+0x2be/0x710 [ 272.187449][ T9874] ? __lock_acquire+0x54b/0x4790 [ 272.192372][ T9874] mmu_topup_memory_caches+0x97/0x490 [ 272.197728][ T9874] kvm_mmu_load+0x21/0x1200 [ 272.202274][ T9874] ? mark_held_locks+0xf0/0xf0 [ 272.207020][ T9874] ? vmx_handle_exit+0x1640/0x1640 [ 272.212122][ T9874] vcpu_enter_guest+0x3c8d/0x60b0 [ 272.217138][ T9874] ? __mutex_lock+0x3cd/0x1310 [ 272.221933][ T9874] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 272.226782][ T9874] ? emulator_read_emulated+0x50/0x50 [ 272.232147][ T9874] ? lock_acquire+0x16f/0x3f0 [ 272.236819][ T9874] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 272.242519][ T9874] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 272.248044][ T9874] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 272.253749][ T9874] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 272.258407][ T9874] ? kvm_vcpu_block+0xcd0/0xcd0 [ 272.263240][ T9874] ? mark_held_locks+0xf0/0xf0 [ 272.267986][ T9874] ? proc_fail_nth_write+0x9d/0x1e0 [ 272.273168][ T9874] ? proc_cwd_link+0x1d0/0x1d0 [ 272.277921][ T9874] ? __f_unlock_pos+0x19/0x20 [ 272.282582][ T9874] ? find_held_lock+0x35/0x130 [ 272.287326][ T9874] ? __fget+0x340/0x540 [ 272.291460][ T9874] ? find_held_lock+0x35/0x130 [ 272.296204][ T9874] ? __fget+0x340/0x540 [ 272.300440][ T9874] ? kvm_vcpu_block+0xcd0/0xcd0 [ 272.305272][ T9874] do_vfs_ioctl+0xd6e/0x1390 [ 272.309847][ T9874] ? ioctl_preallocate+0x210/0x210 [ 272.314937][ T9874] ? __fget+0x367/0x540 [ 272.319073][ T9874] ? ksys_dup3+0x3e0/0x3e0 [ 272.323470][ T9874] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 272.329692][ T9874] ? fput+0x128/0x1a0 [ 272.333666][ T9874] ? security_file_ioctl+0x93/0xc0 [ 272.338776][ T9874] ksys_ioctl+0xab/0xd0 [ 272.342934][ T9874] __x64_sys_ioctl+0x73/0xb0 [ 272.347508][ T9874] do_syscall_64+0x103/0x610 [ 272.352082][ T9874] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 272.357956][ T9874] RIP: 0033:0x458089 [ 272.361832][ T9874] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 272.381412][ T9874] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 272.389810][ T9874] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 272.397778][ T9874] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 11:46:22 executing program 3 (fault-call:7 fault-nth:11): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 272.405744][ T9874] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 272.413694][ T9874] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 272.421668][ T9874] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 272.430369][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 272.436239][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 272.560307][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 272.566222][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf\n\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$VIDIOC_QUERYSTD(r1, 0x8008563f, &(0x7f0000000000)) r2 = semget(0x0, 0x1, 0x0) semctl$IPC_RMID(r2, 0x0, 0x0) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r3) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000080)) [ 272.640298][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 272.646102][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 272.659571][ T9907] FAULT_INJECTION: forcing a failure. [ 272.659571][ T9907] name failslab, interval 1, probability 0, space 0, times 0 [ 272.673038][ T9907] CPU: 1 PID: 9907 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 272.681980][ T9907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 272.692038][ T9907] Call Trace: [ 272.695315][ T9907] dump_stack+0x172/0x1f0 [ 272.699636][ T9907] should_fail.cold+0xa/0x15 [ 272.704214][ T9907] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 272.710005][ T9907] ? lock_downgrade+0x880/0x880 [ 272.714839][ T9907] ? ___might_sleep+0x163/0x280 [ 272.719697][ T9907] __should_failslab+0x121/0x190 [ 272.724639][ T9907] should_failslab+0x9/0x14 [ 272.729143][ T9907] kmem_cache_alloc+0x2be/0x710 [ 272.734000][ T9907] ? __lock_acquire+0x54b/0x4790 [ 272.738939][ T9907] mmu_topup_memory_caches+0x97/0x490 [ 272.744294][ T9907] kvm_mmu_load+0x21/0x1200 [ 272.748812][ T9907] ? mark_held_locks+0xf0/0xf0 [ 272.753566][ T9907] ? vmx_handle_exit+0x1640/0x1640 [ 272.758678][ T9907] vcpu_enter_guest+0x3c8d/0x60b0 [ 272.763689][ T9907] ? __mutex_lock+0x3cd/0x1310 [ 272.768438][ T9907] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 272.773276][ T9907] ? emulator_read_emulated+0x50/0x50 [ 272.778644][ T9907] ? lock_acquire+0x16f/0x3f0 [ 272.783306][ T9907] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 272.789013][ T9907] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 272.794541][ T9907] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 272.800263][ T9907] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 272.804942][ T9907] ? kvm_vcpu_block+0xcd0/0xcd0 [ 272.809788][ T9907] ? mark_held_locks+0xf0/0xf0 [ 272.814549][ T9907] ? proc_fail_nth_write+0x9d/0x1e0 [ 272.819725][ T9907] ? proc_cwd_link+0x1d0/0x1d0 [ 272.824498][ T9907] ? __f_unlock_pos+0x19/0x20 [ 272.829178][ T9907] ? find_held_lock+0x35/0x130 [ 272.833967][ T9907] ? __fget+0x340/0x540 [ 272.838107][ T9907] ? find_held_lock+0x35/0x130 [ 272.842860][ T9907] ? __fget+0x340/0x540 [ 272.847022][ T9907] ? kvm_vcpu_block+0xcd0/0xcd0 [ 272.851868][ T9907] do_vfs_ioctl+0xd6e/0x1390 [ 272.856464][ T9907] ? ioctl_preallocate+0x210/0x210 [ 272.861560][ T9907] ? __fget+0x367/0x540 [ 272.865701][ T9907] ? ksys_dup3+0x3e0/0x3e0 [ 272.870098][ T9907] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 272.876318][ T9907] ? fput+0x128/0x1a0 [ 272.880300][ T9907] ? security_file_ioctl+0x93/0xc0 [ 272.885395][ T9907] ksys_ioctl+0xab/0xd0 [ 272.889533][ T9907] __x64_sys_ioctl+0x73/0xb0 [ 272.894106][ T9907] do_syscall_64+0x103/0x610 [ 272.898686][ T9907] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 272.904556][ T9907] RIP: 0033:0x458089 [ 272.908448][ T9907] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 272.928038][ T9907] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 11:46:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='n\xb0fs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:22 executing program 3 (fault-call:7 fault-nth:12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 272.936432][ T9907] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 272.944408][ T9907] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 272.952377][ T9907] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 272.960331][ T9907] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 272.968284][ T9907] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 273.224208][ T9916] FAULT_INJECTION: forcing a failure. [ 273.224208][ T9916] name failslab, interval 1, probability 0, space 0, times 0 [ 273.236982][ T9916] CPU: 1 PID: 9916 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 273.245928][ T9916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 273.255987][ T9916] Call Trace: [ 273.259286][ T9916] dump_stack+0x172/0x1f0 [ 273.263611][ T9916] should_fail.cold+0xa/0x15 [ 273.268188][ T9916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 273.273975][ T9916] ? lock_downgrade+0x880/0x880 [ 273.278811][ T9916] ? ___might_sleep+0x163/0x280 [ 273.283655][ T9916] __should_failslab+0x121/0x190 [ 273.288612][ T9916] should_failslab+0x9/0x14 [ 273.293100][ T9916] kmem_cache_alloc+0x2be/0x710 [ 273.297978][ T9916] ? __lock_acquire+0x54b/0x4790 [ 273.302916][ T9916] mmu_topup_memory_caches+0x97/0x490 [ 273.308274][ T9916] kvm_mmu_load+0x21/0x1200 [ 273.312759][ T9916] ? mark_held_locks+0xf0/0xf0 [ 273.317506][ T9916] ? vmx_handle_exit+0x1640/0x1640 [ 273.322644][ T9916] vcpu_enter_guest+0x3c8d/0x60b0 [ 273.327665][ T9916] ? __mutex_lock+0x3cd/0x1310 [ 273.332414][ T9916] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 273.337251][ T9916] ? emulator_read_emulated+0x50/0x50 [ 273.342605][ T9916] ? lock_acquire+0x16f/0x3f0 [ 273.347265][ T9916] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 273.352967][ T9916] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 273.358495][ T9916] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 273.364203][ T9916] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 273.368863][ T9916] ? kvm_vcpu_block+0xcd0/0xcd0 [ 273.373700][ T9916] ? mark_held_locks+0xf0/0xf0 [ 273.378444][ T9916] ? proc_fail_nth_write+0x9d/0x1e0 [ 273.383625][ T9916] ? proc_cwd_link+0x1d0/0x1d0 [ 273.388388][ T9916] ? __f_unlock_pos+0x19/0x20 [ 273.393047][ T9916] ? find_held_lock+0x35/0x130 [ 273.397818][ T9916] ? __fget+0x340/0x540 [ 273.401958][ T9916] ? find_held_lock+0x35/0x130 [ 273.406702][ T9916] ? __fget+0x340/0x540 [ 273.410846][ T9916] ? kvm_vcpu_block+0xcd0/0xcd0 [ 273.415683][ T9916] do_vfs_ioctl+0xd6e/0x1390 [ 273.420260][ T9916] ? ioctl_preallocate+0x210/0x210 [ 273.425349][ T9916] ? __fget+0x367/0x540 [ 273.429486][ T9916] ? ksys_dup3+0x3e0/0x3e0 [ 273.433887][ T9916] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 273.440465][ T9916] ? fput+0x128/0x1a0 [ 273.444430][ T9916] ? security_file_ioctl+0x93/0xc0 [ 273.449522][ T9916] ksys_ioctl+0xab/0xd0 [ 273.453665][ T9916] __x64_sys_ioctl+0x73/0xb0 [ 273.458256][ T9916] do_syscall_64+0x103/0x610 [ 273.462831][ T9916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 273.468734][ T9916] RIP: 0033:0x458089 [ 273.472611][ T9916] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 273.492196][ T9916] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 273.500589][ T9916] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 273.508542][ T9916] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 273.516491][ T9916] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 273.524441][ T9916] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 273.532391][ T9916] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:24 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:24 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='nt\ns\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x1, 0x0) r2 = dup2(r0, r1) ioctl$VIDIOC_TRY_ENCODER_CMD(r2, 0xc028564e, &(0x7f0000000000)={0x2, 0x1, [0x2, 0x40, 0x4, 0x7, 0x1, 0x8, 0x9, 0xf04e]}) 11:46:24 executing program 3 (fault-call:7 fault-nth:13): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:24 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='nt\ns\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:24 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf#\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 275.068279][ T9946] FAULT_INJECTION: forcing a failure. [ 275.068279][ T9946] name failslab, interval 1, probability 0, space 0, times 0 [ 275.103825][ T9946] CPU: 1 PID: 9946 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 11:46:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) dup2(r2, r0) [ 275.112788][ T9946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.122846][ T9946] Call Trace: [ 275.126153][ T9946] dump_stack+0x172/0x1f0 [ 275.130514][ T9946] should_fail.cold+0xa/0x15 [ 275.135120][ T9946] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 275.140945][ T9946] ? lock_downgrade+0x880/0x880 [ 275.145806][ T9946] ? ___might_sleep+0x163/0x280 [ 275.150697][ T9946] __should_failslab+0x121/0x190 [ 275.155639][ T9946] should_failslab+0x9/0x14 [ 275.160151][ T9946] kmem_cache_alloc+0x2be/0x710 [ 275.165006][ T9946] ? __lock_acquire+0x54b/0x4790 [ 275.169941][ T9946] mmu_topup_memory_caches+0x97/0x490 [ 275.175297][ T9946] kvm_mmu_load+0x21/0x1200 [ 275.179782][ T9946] ? mark_held_locks+0xf0/0xf0 [ 275.184526][ T9946] ? vmx_handle_exit+0x1640/0x1640 [ 275.189658][ T9946] vcpu_enter_guest+0x3c8d/0x60b0 [ 275.194696][ T9946] ? __mutex_lock+0x3cd/0x1310 [ 275.199455][ T9946] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 275.204304][ T9946] ? emulator_read_emulated+0x50/0x50 [ 275.209669][ T9946] ? lock_acquire+0x16f/0x3f0 [ 275.214328][ T9946] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 275.220032][ T9946] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 275.225558][ T9946] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 275.231264][ T9946] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 275.235946][ T9946] ? kvm_vcpu_block+0xcd0/0xcd0 [ 275.240788][ T9946] ? mark_held_locks+0xf0/0xf0 [ 275.245556][ T9946] ? proc_fail_nth_write+0x9d/0x1e0 [ 275.250755][ T9946] ? proc_cwd_link+0x1d0/0x1d0 [ 275.255517][ T9946] ? __f_unlock_pos+0x19/0x20 [ 275.260182][ T9946] ? find_held_lock+0x35/0x130 [ 275.264964][ T9946] ? __fget+0x340/0x540 [ 275.269114][ T9946] ? find_held_lock+0x35/0x130 [ 275.273870][ T9946] ? __fget+0x340/0x540 [ 275.278024][ T9946] ? kvm_vcpu_block+0xcd0/0xcd0 [ 275.282870][ T9946] do_vfs_ioctl+0xd6e/0x1390 [ 275.287442][ T9946] ? ioctl_preallocate+0x210/0x210 [ 275.292533][ T9946] ? __fget+0x367/0x540 [ 275.296681][ T9946] ? ksys_dup3+0x3e0/0x3e0 [ 275.301094][ T9946] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 275.307329][ T9946] ? fput+0x128/0x1a0 [ 275.311305][ T9946] ? security_file_ioctl+0x93/0xc0 [ 275.316405][ T9946] ksys_ioctl+0xab/0xd0 [ 275.320541][ T9946] __x64_sys_ioctl+0x73/0xb0 [ 275.325112][ T9946] do_syscall_64+0x103/0x610 [ 275.329691][ T9946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.335560][ T9946] RIP: 0033:0x458089 [ 275.339441][ T9946] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 275.359025][ T9946] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.367415][ T9946] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 275.375383][ T9946] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 275.383356][ T9946] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 275.391331][ T9946] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 275.399293][ T9946] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:25 executing program 3 (fault-call:7 fault-nth:14): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x400000, 0x0) r2 = shmget(0x2, 0x4000, 0x100, &(0x7f0000ffa000/0x4000)=nil) r3 = getuid() r4 = getegid() r5 = getuid() getgroups(0x9, &(0x7f0000000000)=[0xee01, 0xffffffffffffffff, 0xee00, 0xee01, 0x0, 0xee00, 0xffffffffffffffff, 0x0, 0xffffffffffffffff]) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) sched_setaffinity(r8, 0x8, &(0x7f0000000180)=0xfffffffffffffbff) r9 = gettid() r10 = getpgid(r9) shmctl$IPC_SET(r2, 0x1, &(0x7f0000000100)={{0x0, r3, r4, r5, r7, 0x11, 0x2}, 0x80000000, 0xff, 0x0, 0x0, r9, r10, 0x8}) r11 = dup2(r0, r1) fchownat(r11, &(0x7f00000001c0)='./file0\x00', r5, r6, 0x800) 11:46:25 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.effective_cpus\x00', 0x0, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000140)={0x1, 0x8}) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x80003, 0x0) r2 = dup2(0xffffffffffffffff, r1) ioctl$SNDRV_CTL_IOCTL_PVERSION(r2, 0x80045500, &(0x7f0000000080)) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x3e) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000000)={0x4, 0x70, 0x6640000000000000}) 11:46:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='nt%s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='nt%s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 275.655070][ T9988] FAULT_INJECTION: forcing a failure. [ 275.655070][ T9988] name failslab, interval 1, probability 0, space 0, times 0 [ 275.672051][ T9988] CPU: 1 PID: 9988 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 275.680984][ T9988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 275.691017][ T9988] Call Trace: [ 275.694294][ T9988] dump_stack+0x172/0x1f0 [ 275.698613][ T9988] should_fail.cold+0xa/0x15 [ 275.703185][ T9988] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 275.709107][ T9988] ? lock_downgrade+0x880/0x880 [ 275.713956][ T9988] ? ___might_sleep+0x163/0x280 [ 275.718808][ T9988] __should_failslab+0x121/0x190 [ 275.723747][ T9988] should_failslab+0x9/0x14 [ 275.728231][ T9988] kmem_cache_alloc+0x2be/0x710 [ 275.733077][ T9988] ? __lock_acquire+0x54b/0x4790 [ 275.738033][ T9988] mmu_topup_memory_caches+0x97/0x490 [ 275.743392][ T9988] kvm_mmu_load+0x21/0x1200 [ 275.747874][ T9988] ? mark_held_locks+0xf0/0xf0 [ 275.752624][ T9988] ? vmx_handle_exit+0x1640/0x1640 [ 275.757735][ T9988] vcpu_enter_guest+0x3c8d/0x60b0 [ 275.762770][ T9988] ? __mutex_lock+0x3cd/0x1310 [ 275.767519][ T9988] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 275.772368][ T9988] ? emulator_read_emulated+0x50/0x50 [ 275.777736][ T9988] ? lock_acquire+0x16f/0x3f0 [ 275.782437][ T9988] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 275.788170][ T9988] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 275.793710][ T9988] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 275.799418][ T9988] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 275.804101][ T9988] ? kvm_vcpu_block+0xcd0/0xcd0 [ 275.808940][ T9988] ? mark_held_locks+0xf0/0xf0 [ 275.813690][ T9988] ? proc_fail_nth_write+0x9d/0x1e0 [ 275.818864][ T9988] ? proc_cwd_link+0x1d0/0x1d0 [ 275.823609][ T9988] ? __f_unlock_pos+0x19/0x20 [ 275.828266][ T9988] ? find_held_lock+0x35/0x130 [ 275.833007][ T9988] ? __fget+0x340/0x540 [ 275.837141][ T9988] ? find_held_lock+0x35/0x130 [ 275.841889][ T9988] ? __fget+0x340/0x540 [ 275.846053][ T9988] ? kvm_vcpu_block+0xcd0/0xcd0 [ 275.850893][ T9988] do_vfs_ioctl+0xd6e/0x1390 [ 275.855477][ T9988] ? ioctl_preallocate+0x210/0x210 [ 275.860568][ T9988] ? __fget+0x367/0x540 [ 275.864711][ T9988] ? ksys_dup3+0x3e0/0x3e0 [ 275.869126][ T9988] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 275.875349][ T9988] ? fput+0x128/0x1a0 [ 275.879317][ T9988] ? security_file_ioctl+0x93/0xc0 [ 275.884412][ T9988] ksys_ioctl+0xab/0xd0 [ 275.888553][ T9988] __x64_sys_ioctl+0x73/0xb0 [ 275.893127][ T9988] do_syscall_64+0x103/0x610 [ 275.897700][ T9988] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 275.903573][ T9988] RIP: 0033:0x458089 [ 275.907450][ T9988] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 275.927068][ T9988] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 275.935466][ T9988] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 275.943437][ T9988] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 275.951408][ T9988] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 275.959370][ T9988] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 275.967324][ T9988] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 276.560337][ C0] net_ratelimit: 18 callbacks suppressed [ 276.560346][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 276.571841][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 276.720280][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 276.726081][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 276.810320][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 276.816132][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 277.120317][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 277.126095][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 277.680462][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 277.686262][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:27 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:27 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf%\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:27 executing program 3 (fault-call:7 fault-nth:15): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:27 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/pfkey\x00', 0x800, 0x0) ioctl$PPPIOCDISCONN(r2, 0x7439) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000080)=r1) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x800, 0x0) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000180)='nbd\x00') sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xfffffffffffffd56, &(0x7f0000000200)={&(0x7f00000001c0)={0x20, r4, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x100}]}, 0x20}}, 0x1) r5 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000480)=0x4, 0x4) r6 = dup2(r0, r5) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000340)={{{@in6=@ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6=@ipv4={[], [], @local}, 0x4e23, 0x0, 0x4e23, 0x2, 0xa, 0xa0, 0xa0, 0x73, 0x0, r7}, {0x9cc, 0x3, 0x0, 0x10001, 0x3, 0xc16, 0x0, 0xa11}, {0x41b, 0xfffffffffffffffd, 0x9}, 0x101, 0x6e6bb4, 0x1, 0x1, 0x2, 0x3}, {{@in=@dev={0xac, 0x14, 0x14, 0x19}, 0x4d3, 0xff}, 0x2, @in6=@rand_addr="570e4d442b6e41a1048d1549c3c81be1", 0x34ff, 0x7, 0x3, 0x7ff, 0x5, 0x6, 0x8}}, 0xe8) socket$inet6(0xa, 0x7, 0x8) 11:46:27 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='nt.s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:27 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='nt.s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 278.205805][T10026] FAULT_INJECTION: forcing a failure. [ 278.205805][T10026] name failslab, interval 1, probability 0, space 0, times 0 [ 278.242969][T10026] CPU: 1 PID: 10026 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 278.252030][T10026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.262068][T10026] Call Trace: [ 278.265344][T10026] dump_stack+0x172/0x1f0 [ 278.269699][T10026] should_fail.cold+0xa/0x15 [ 278.274315][T10026] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 278.280123][T10026] ? lock_downgrade+0x880/0x880 [ 278.284965][T10026] ? ___might_sleep+0x163/0x280 [ 278.289816][T10026] __should_failslab+0x121/0x190 [ 278.294738][T10026] should_failslab+0x9/0x14 [ 278.299222][T10026] kmem_cache_alloc+0x2be/0x710 [ 278.304068][T10026] ? __lock_acquire+0x54b/0x4790 [ 278.309009][T10026] mmu_topup_memory_caches+0x97/0x490 [ 278.314371][T10026] kvm_mmu_load+0x21/0x1200 [ 278.318866][T10026] ? mark_held_locks+0xf0/0xf0 [ 278.323646][T10026] ? vmx_handle_exit+0x1640/0x1640 [ 278.328784][T10026] vcpu_enter_guest+0x3c8d/0x60b0 [ 278.333821][T10026] ? __mutex_lock+0x3cd/0x1310 [ 278.338614][T10026] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 278.343474][T10026] ? emulator_read_emulated+0x50/0x50 [ 278.348853][T10026] ? lock_acquire+0x16f/0x3f0 [ 278.353537][T10026] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 278.359269][T10026] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 278.364817][T10026] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 278.370555][T10026] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 278.375238][T10026] ? kvm_vcpu_block+0xcd0/0xcd0 [ 278.380100][T10026] ? mark_held_locks+0xf0/0xf0 [ 278.384873][T10026] ? proc_fail_nth_write+0x9d/0x1e0 [ 278.390081][T10026] ? proc_cwd_link+0x1d0/0x1d0 [ 278.394853][T10026] ? __f_unlock_pos+0x19/0x20 [ 278.399514][T10026] ? find_held_lock+0x35/0x130 [ 278.404256][T10026] ? __fget+0x340/0x540 [ 278.408422][T10026] ? find_held_lock+0x35/0x130 [ 278.413165][T10026] ? __fget+0x340/0x540 [ 278.417321][T10026] ? kvm_vcpu_block+0xcd0/0xcd0 [ 278.422171][T10026] do_vfs_ioctl+0xd6e/0x1390 [ 278.426787][T10026] ? ioctl_preallocate+0x210/0x210 [ 278.431876][T10026] ? __fget+0x367/0x540 [ 278.436072][T10026] ? ksys_dup3+0x3e0/0x3e0 [ 278.440488][T10026] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 278.446711][T10026] ? fput+0x128/0x1a0 [ 278.450684][T10026] ? security_file_ioctl+0x93/0xc0 [ 278.455787][T10026] ksys_ioctl+0xab/0xd0 [ 278.459941][T10026] __x64_sys_ioctl+0x73/0xb0 [ 278.464538][T10026] do_syscall_64+0x103/0x610 [ 278.469128][T10026] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 278.475037][T10026] RIP: 0033:0x458089 [ 278.478919][T10026] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 278.498515][T10026] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 278.506910][T10026] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 278.514862][T10026] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 278.522817][T10026] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 278.530802][T10026] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 278.538753][T10026] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='nt/s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") arch_prctl$ARCH_GET_CPUID(0x1011) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:28 executing program 3 (fault-call:7 fault-nth:16): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, r1) 11:46:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='nt/s\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 278.810981][T10066] FAULT_INJECTION: forcing a failure. [ 278.810981][T10066] name failslab, interval 1, probability 0, space 0, times 0 [ 278.823742][T10066] CPU: 0 PID: 10066 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 278.832758][T10066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 278.842818][T10066] Call Trace: [ 278.846118][T10066] dump_stack+0x172/0x1f0 [ 278.850443][T10066] should_fail.cold+0xa/0x15 [ 278.855016][T10066] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 278.860803][T10066] ? lock_downgrade+0x880/0x880 [ 278.865641][T10066] ? ___might_sleep+0x163/0x280 [ 278.870497][T10066] __should_failslab+0x121/0x190 [ 278.875418][T10066] should_failslab+0x9/0x14 [ 278.879915][T10066] kmem_cache_alloc+0x2be/0x710 [ 278.884769][T10066] mmu_topup_memory_caches+0x97/0x490 [ 278.890143][T10066] kvm_mmu_load+0x21/0x1200 [ 278.894634][T10066] ? vcpu_enter_guest+0x2a33/0x60b0 [ 278.899827][T10066] ? lockdep_hardirqs_on+0x418/0x5d0 [ 278.905127][T10066] vcpu_enter_guest+0x3c8d/0x60b0 [ 278.910178][T10066] ? emulator_read_emulated+0x50/0x50 [ 278.915592][T10066] ? lock_acquire+0x16f/0x3f0 [ 278.920265][T10066] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 278.925971][T10066] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 278.931508][T10066] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 278.937215][T10066] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 278.941884][T10066] ? kvm_vcpu_block+0xcd0/0xcd0 [ 278.946740][T10066] ? mark_held_locks+0xf0/0xf0 [ 278.951495][T10066] ? proc_fail_nth_write+0x9d/0x1e0 [ 278.956698][T10066] ? proc_cwd_link+0x1d0/0x1d0 11:46:28 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 278.961447][T10066] ? __f_unlock_pos+0x19/0x20 [ 278.966119][T10066] ? find_held_lock+0x35/0x130 [ 278.970892][T10066] ? __fget+0x340/0x540 [ 278.975055][T10066] ? find_held_lock+0x35/0x130 [ 278.979824][T10066] ? __fget+0x340/0x540 [ 278.983981][T10066] ? kvm_vcpu_block+0xcd0/0xcd0 [ 278.988814][T10066] do_vfs_ioctl+0xd6e/0x1390 [ 278.993403][T10066] ? ioctl_preallocate+0x210/0x210 [ 278.998510][T10066] ? __fget+0x367/0x540 [ 279.002669][T10066] ? ksys_dup3+0x3e0/0x3e0 [ 279.007092][T10066] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 279.013339][T10066] ? fput+0x128/0x1a0 [ 279.017320][T10066] ? security_file_ioctl+0x93/0xc0 [ 279.022426][T10066] ksys_ioctl+0xab/0xd0 [ 279.026570][T10066] __x64_sys_ioctl+0x73/0xb0 [ 279.031145][T10066] do_syscall_64+0x103/0x610 [ 279.035724][T10066] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.041603][T10066] RIP: 0033:0x458089 [ 279.045491][T10066] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.065070][T10066] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 279.073459][T10066] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 279.081426][T10066] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 279.089377][T10066] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 279.097326][T10066] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf*\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 279.105284][T10066] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f3106b5ee88b070c9bcdb9b6a0ec4e694ff856783d23992753e9dbef3b95283cde9164273ac34") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:28 executing program 3 (fault-call:7 fault-nth:17): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:28 executing program 2: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000340)=0xe36d) ioctl$EVIOCSABS0(r0, 0x401845c0, &(0x7f0000000080)={0x400, 0x0, 0x80, 0x0, 0x8001, 0x9}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000180)=""/198) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r1, r1) ioctl$int_out(r0, 0x2, &(0x7f0000000380)) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000300)={&(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x3, 0x1, 0x4, 0x5}) 11:46:29 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf\n\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 279.484263][T10092] FAULT_INJECTION: forcing a failure. [ 279.484263][T10092] name failslab, interval 1, probability 0, space 0, times 0 [ 279.516752][T10092] CPU: 0 PID: 10092 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 279.525786][T10092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 279.535840][T10092] Call Trace: [ 279.539113][T10092] dump_stack+0x172/0x1f0 [ 279.543431][T10092] should_fail.cold+0xa/0x15 [ 279.548005][T10092] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 279.553795][T10092] ? lock_downgrade+0x880/0x880 [ 279.558627][T10092] ? ___might_sleep+0x163/0x280 [ 279.563463][T10092] __should_failslab+0x121/0x190 [ 279.568387][T10092] should_failslab+0x9/0x14 [ 279.572870][T10092] kmem_cache_alloc+0x2be/0x710 [ 279.577702][T10092] ? __lock_acquire+0x54b/0x4790 [ 279.582628][T10092] mmu_topup_memory_caches+0x97/0x490 [ 279.587992][T10092] kvm_mmu_load+0x21/0x1200 [ 279.592496][T10092] ? mark_held_locks+0xf0/0xf0 [ 279.597252][T10092] ? vmx_handle_exit+0x1640/0x1640 [ 279.602351][T10092] vcpu_enter_guest+0x3c8d/0x60b0 [ 279.607359][T10092] ? __mutex_lock+0x3cd/0x1310 [ 279.612106][T10092] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 279.616940][T10092] ? emulator_read_emulated+0x50/0x50 [ 279.622301][T10092] ? lock_acquire+0x16f/0x3f0 [ 279.626957][T10092] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 279.632660][T10092] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 279.638186][T10092] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 279.643892][T10092] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 279.648566][T10092] ? kvm_vcpu_block+0xcd0/0xcd0 [ 279.653452][T10092] ? mark_held_locks+0xf0/0xf0 [ 279.658199][T10092] ? proc_fail_nth_write+0x9d/0x1e0 [ 279.663374][T10092] ? proc_cwd_link+0x1d0/0x1d0 [ 279.668122][T10092] ? __f_unlock_pos+0x19/0x20 [ 279.672780][T10092] ? find_held_lock+0x35/0x130 [ 279.677523][T10092] ? __fget+0x340/0x540 [ 279.681656][T10092] ? find_held_lock+0x35/0x130 [ 279.686412][T10092] ? __fget+0x340/0x540 [ 279.690552][T10092] ? kvm_vcpu_block+0xcd0/0xcd0 [ 279.695384][T10092] do_vfs_ioctl+0xd6e/0x1390 [ 279.699957][T10092] ? ioctl_preallocate+0x210/0x210 [ 279.705046][T10092] ? __fget+0x367/0x540 [ 279.709192][T10092] ? ksys_dup3+0x3e0/0x3e0 [ 279.713600][T10092] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 279.719835][T10092] ? fput+0x128/0x1a0 [ 279.723861][T10092] ? security_file_ioctl+0x93/0xc0 [ 279.728970][T10092] ksys_ioctl+0xab/0xd0 [ 279.733107][T10092] __x64_sys_ioctl+0x73/0xb0 [ 279.737682][T10092] do_syscall_64+0x103/0x610 [ 279.742256][T10092] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 279.748127][T10092] RIP: 0033:0x458089 [ 279.751998][T10092] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 279.771579][T10092] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 11:46:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x105000, 0x0) dup2(r0, r1) [ 279.779965][T10092] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 279.788113][T10092] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 279.796063][T10092] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 279.804014][T10092] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 279.811964][T10092] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:29 executing program 3 (fault-call:7 fault-nth:18): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x218000, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="08010000", @ANYRES16=r2, @ANYBLOB="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"], 0x108}, 0x1, 0x0, 0x0, 0x20000000}, 0x50) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r3) 11:46:29 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf+\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:29 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf\n\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 280.103177][T10122] FAULT_INJECTION: forcing a failure. [ 280.103177][T10122] name failslab, interval 1, probability 0, space 0, times 0 [ 280.116510][T10122] CPU: 0 PID: 10122 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 280.125526][T10122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.135567][T10122] Call Trace: [ 280.138874][T10122] dump_stack+0x172/0x1f0 [ 280.143223][T10122] should_fail.cold+0xa/0x15 [ 280.147820][T10122] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 280.153630][T10122] ? lock_downgrade+0x880/0x880 [ 280.158493][T10122] ? ___might_sleep+0x163/0x280 [ 280.163343][T10122] __should_failslab+0x121/0x190 [ 280.168268][T10122] should_failslab+0x9/0x14 [ 280.172806][T10122] kmem_cache_alloc+0x2be/0x710 [ 280.177641][T10122] ? __lock_acquire+0x54b/0x4790 [ 280.182575][T10122] mmu_topup_memory_caches+0x97/0x490 [ 280.187951][T10122] kvm_mmu_load+0x21/0x1200 [ 280.192454][T10122] ? mark_held_locks+0xf0/0xf0 [ 280.197215][T10122] ? vmx_handle_exit+0x1640/0x1640 [ 280.202329][T10122] vcpu_enter_guest+0x3c8d/0x60b0 [ 280.207347][T10122] ? __mutex_lock+0x3cd/0x1310 [ 280.212106][T10122] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 280.216956][T10122] ? emulator_read_emulated+0x50/0x50 [ 280.222322][T10122] ? lock_acquire+0x16f/0x3f0 [ 280.226992][T10122] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 280.232697][T10122] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 280.238222][T10122] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 280.243930][T10122] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 280.248599][T10122] ? kvm_vcpu_block+0xcd0/0xcd0 11:46:29 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 280.253443][T10122] ? mark_held_locks+0xf0/0xf0 [ 280.258203][T10122] ? proc_fail_nth_write+0x9d/0x1e0 [ 280.263398][T10122] ? proc_cwd_link+0x1d0/0x1d0 [ 280.268172][T10122] ? __f_unlock_pos+0x19/0x20 [ 280.272856][T10122] ? find_held_lock+0x35/0x130 [ 280.277599][T10122] ? __fget+0x340/0x540 [ 280.281746][T10122] ? find_held_lock+0x35/0x130 [ 280.286503][T10122] ? __fget+0x340/0x540 [ 280.290654][T10122] ? kvm_vcpu_block+0xcd0/0xcd0 [ 280.295503][T10122] do_vfs_ioctl+0xd6e/0x1390 [ 280.300077][T10122] ? ioctl_preallocate+0x210/0x210 [ 280.305182][T10122] ? __fget+0x367/0x540 [ 280.309336][T10122] ? ksys_dup3+0x3e0/0x3e0 [ 280.313749][T10122] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 280.319980][T10122] ? fput+0x128/0x1a0 [ 280.323974][T10122] ? security_file_ioctl+0x93/0xc0 [ 280.329084][T10122] ksys_ioctl+0xab/0xd0 [ 280.333227][T10122] __x64_sys_ioctl+0x73/0xb0 [ 280.337802][T10122] do_syscall_64+0x103/0x610 [ 280.342377][T10122] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.348249][T10122] RIP: 0033:0x458089 [ 280.352137][T10122] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.371725][T10122] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 280.380116][T10122] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 280.388067][T10122] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 280.396032][T10122] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 280.403991][T10122] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 280.413088][T10122] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:30 executing program 3 (fault-call:7 fault-nth:19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000180)=@nat={'nat\x00', 0x1b, 0x5, 0x510, 0x0, 0x0, 0x338, 0x268, 0x268, 0x478, 0x478, 0x478, 0x478, 0x478, 0x5, &(0x7f0000000080), {[{{@uncond, 0x0, 0xe8, 0x120, 0x0, {}, [@common=@osf={0x50, 'osf\x00', 0x0, {'syz0\x00', 0x1, 0xc}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x14, @dev={0xac, 0x14, 0x14, 0x24}, @broadcast, @port=0x4e22, @icmp_id=0x66}}}}, {{@ip={@rand_addr, @broadcast, 0xff, 0xff000000, 'syzkaller0\x00', 'veth1_to_bond\x00', {}, {0xff}, 0x0, 0x2, 0x43}, 0x0, 0x110, 0x148, 0x0, {}, [@common=@osf={0x50, 'osf\x00', 0x0, {'syz0\x00', 0x4ec, 0x2, 0x2, 0x1}}, @common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x400, 0xfffffffffffffc01, 0x1}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x8, @multicast1, @loopback, @port=0x4e21, @gre_key=0x1}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x1, @local, @local, @port=0x4e21, @gre_key=0xfffffffffffffff8}}}}, {{@uncond, 0x0, 0x108, 0x140, 0x0, {}, [@common=@inet=@l2tp={0x30, 'l2tp\x00', 0x0, {0x0, 0x4, 0x3, 0x1, 0xb}}, @common=@set={0x40, 'set\x00', 0x0, {{0x101, [0x8, 0x3a3c, 0x9, 0x8a25, 0x24db, 0x10000], 0x401, 0x6}}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x2, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @gre_key=0x9fc, @icmp_id=0x68}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x570) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:30 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf#\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) prctl$PR_GET_CHILD_SUBREAPER(0x25) ioctl(r0, 0x1000008914, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x20000, 0x0) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_G_SELECTION(r2, 0xc040565e, &(0x7f0000000200)={0x0, 0x2, 0x7, {0x8af, 0xea9, 0x5, 0x1}}) r3 = dup2(r0, r1) ioctl$EVIOCSABS20(r3, 0x401845e0, &(0x7f0000000180)={0x6, 0xfffffffffffffff7, 0x4, 0x3, 0x3, 0x1}) ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r3, 0xc0905664, &(0x7f0000000080)={0x0, 0x0, [], @bt={0x55a, 0xffffffffffff8000, 0x1, 0x4d, 0x1ae, 0x9, 0x11, 0x1}}) [ 280.734794][T10143] FAULT_INJECTION: forcing a failure. [ 280.734794][T10143] name failslab, interval 1, probability 0, space 0, times 0 [ 280.765339][T10143] CPU: 0 PID: 10143 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 280.774373][T10143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.784408][T10143] Call Trace: [ 280.787684][T10143] dump_stack+0x172/0x1f0 [ 280.792003][T10143] should_fail.cold+0xa/0x15 [ 280.796576][T10143] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 280.802363][T10143] ? lock_downgrade+0x880/0x880 [ 280.807196][T10143] ? ___might_sleep+0x163/0x280 [ 280.812042][T10143] __should_failslab+0x121/0x190 [ 280.816974][T10143] should_failslab+0x9/0x14 [ 280.821458][T10143] kmem_cache_alloc+0x2be/0x710 [ 280.826289][T10143] ? __lock_acquire+0x54b/0x4790 [ 280.831223][T10143] mmu_topup_memory_caches+0x97/0x490 [ 280.836580][T10143] kvm_mmu_load+0x21/0x1200 [ 280.841064][T10143] ? mark_held_locks+0xf0/0xf0 [ 280.845819][T10143] ? vmx_handle_exit+0x1640/0x1640 [ 280.850929][T10143] vcpu_enter_guest+0x3c8d/0x60b0 [ 280.855980][T10143] ? __mutex_lock+0x3cd/0x1310 [ 280.860742][T10143] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 280.865607][T10143] ? emulator_read_emulated+0x50/0x50 [ 280.870961][T10143] ? lock_acquire+0x16f/0x3f0 [ 280.875616][T10143] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 280.881316][T10143] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 280.886861][T10143] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 280.892568][T10143] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 280.897240][T10143] ? kvm_vcpu_block+0xcd0/0xcd0 [ 280.902075][T10143] ? mark_held_locks+0xf0/0xf0 [ 280.906840][T10143] ? proc_fail_nth_write+0x9d/0x1e0 [ 280.912028][T10143] ? proc_cwd_link+0x1d0/0x1d0 [ 280.916773][T10143] ? __f_unlock_pos+0x19/0x20 [ 280.921447][T10143] ? find_held_lock+0x35/0x130 [ 280.926193][T10143] ? __fget+0x340/0x540 [ 280.930330][T10143] ? find_held_lock+0x35/0x130 [ 280.935072][T10143] ? __fget+0x340/0x540 [ 280.939211][T10143] ? kvm_vcpu_block+0xcd0/0xcd0 [ 280.944044][T10143] do_vfs_ioctl+0xd6e/0x1390 [ 280.948617][T10143] ? ioctl_preallocate+0x210/0x210 [ 280.953707][T10143] ? __fget+0x367/0x540 [ 280.957844][T10143] ? ksys_dup3+0x3e0/0x3e0 [ 280.962245][T10143] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 280.968468][T10143] ? fput+0x128/0x1a0 [ 280.972435][T10143] ? security_file_ioctl+0x93/0xc0 [ 280.977527][T10143] ksys_ioctl+0xab/0xd0 [ 280.981668][T10143] __x64_sys_ioctl+0x73/0xb0 [ 280.986265][T10143] do_syscall_64+0x103/0x610 [ 280.990872][T10143] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.996757][T10143] RIP: 0033:0x458089 [ 281.000633][T10143] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 281.020219][T10143] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 11:46:30 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf#\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 281.028622][T10143] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 281.036588][T10143] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 281.044539][T10143] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.052537][T10143] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 281.060502][T10143] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:30 executing program 3 (fault-call:7 fault-nth:20): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:30 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf-\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 281.416456][T10186] FAULT_INJECTION: forcing a failure. [ 281.416456][T10186] name failslab, interval 1, probability 0, space 0, times 0 11:46:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x44000, 0x0) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={0x0, 0xff, 0x6, 0x99, 0x675, 0x3}, &(0x7f0000000180)=0x14) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f00000001c0)={r2, 0x2, 0x7fffffff}, 0x8) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r4 = dup2(r0, r3) accept4$bt_l2cap(r4, &(0x7f0000000000), &(0x7f0000000080)=0xe, 0x80800) [ 281.457558][T10186] CPU: 0 PID: 10186 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 281.466600][T10186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.476654][T10186] Call Trace: [ 281.479972][T10186] dump_stack+0x172/0x1f0 [ 281.484326][T10186] should_fail.cold+0xa/0x15 [ 281.488944][T10186] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 281.494769][T10186] ? lock_downgrade+0x880/0x880 [ 281.499617][T10186] ? ___might_sleep+0x163/0x280 [ 281.504454][T10186] __should_failslab+0x121/0x190 [ 281.509379][T10186] should_failslab+0x9/0x14 [ 281.513863][T10186] kmem_cache_alloc+0x2be/0x710 [ 281.518714][T10186] mmu_topup_memory_caches+0x97/0x490 [ 281.524121][T10186] kvm_mmu_load+0x21/0x1200 [ 281.528628][T10186] ? vcpu_enter_guest+0x2a33/0x60b0 [ 281.533811][T10186] ? lockdep_hardirqs_on+0x418/0x5d0 [ 281.539084][T10186] vcpu_enter_guest+0x3c8d/0x60b0 [ 281.544098][T10186] ? emulator_read_emulated+0x50/0x50 [ 281.549460][T10186] ? lock_acquire+0x16f/0x3f0 [ 281.554118][T10186] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 281.559831][T10186] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 281.565358][T10186] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 281.571064][T10186] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 281.575719][T10186] ? kvm_vcpu_block+0xcd0/0xcd0 [ 281.580575][T10186] ? mark_held_locks+0xf0/0xf0 [ 281.585331][T10186] ? proc_fail_nth_write+0x9d/0x1e0 [ 281.590515][T10186] ? proc_cwd_link+0x1d0/0x1d0 [ 281.595286][T10186] ? __f_unlock_pos+0x19/0x20 [ 281.599969][T10186] ? find_held_lock+0x35/0x130 [ 281.604716][T10186] ? __fget+0x340/0x540 [ 281.608850][T10186] ? find_held_lock+0x35/0x130 [ 281.613607][T10186] ? __fget+0x340/0x540 [ 281.617744][T10186] ? kvm_vcpu_block+0xcd0/0xcd0 [ 281.622574][T10186] do_vfs_ioctl+0xd6e/0x1390 [ 281.627145][T10186] ? ioctl_preallocate+0x210/0x210 [ 281.632263][T10186] ? __fget+0x367/0x540 [ 281.636401][T10186] ? ksys_dup3+0x3e0/0x3e0 [ 281.640831][T10186] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 281.647088][T10186] ? fput+0x128/0x1a0 [ 281.651054][T10186] ? security_file_ioctl+0x93/0xc0 [ 281.656157][T10186] ksys_ioctl+0xab/0xd0 [ 281.660316][T10186] __x64_sys_ioctl+0x73/0xb0 [ 281.664889][T10186] do_syscall_64+0x103/0x610 [ 281.669486][T10186] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.675362][T10186] RIP: 0033:0x458089 [ 281.679245][T10186] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 281.698833][T10186] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.707232][T10186] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 281.715204][T10186] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 281.723171][T10186] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.731120][T10186] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 281.739073][T10186] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 281.840309][ C1] net_ratelimit: 22 callbacks suppressed [ 281.840318][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 281.851879][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf%\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") flock(r0, 0x8) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:31 executing program 3 (fault-call:7 fault-nth:21): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 282.134200][T10213] FAULT_INJECTION: forcing a failure. [ 282.134200][T10213] name failslab, interval 1, probability 0, space 0, times 0 [ 282.147324][T10213] CPU: 0 PID: 10213 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 282.156357][T10213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.166405][T10213] Call Trace: [ 282.166455][T10213] dump_stack+0x172/0x1f0 [ 282.166479][T10213] should_fail.cold+0xa/0x15 [ 282.166501][T10213] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 282.174106][T10213] ? lock_downgrade+0x880/0x880 [ 282.174126][T10213] ? ___might_sleep+0x163/0x280 [ 282.174145][T10213] __should_failslab+0x121/0x190 [ 282.174177][T10213] should_failslab+0x9/0x14 [ 282.203622][T10213] kmem_cache_alloc+0x2be/0x710 [ 282.208532][T10213] mmu_topup_memory_caches+0x97/0x490 [ 282.213961][T10213] kvm_mmu_load+0x21/0x1200 [ 282.218474][T10213] ? vcpu_enter_guest+0x2a33/0x60b0 [ 282.223668][T10213] ? lockdep_hardirqs_on+0x418/0x5d0 [ 282.228951][T10213] vcpu_enter_guest+0x3c8d/0x60b0 [ 282.233963][T10213] ? emulator_read_emulated+0x50/0x50 [ 282.239331][T10213] ? lock_acquire+0x16f/0x3f0 [ 282.243996][T10213] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 282.249717][T10213] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 282.255256][T10213] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 282.260969][T10213] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 282.265660][T10213] ? kvm_vcpu_block+0xcd0/0xcd0 [ 282.270504][T10213] ? mark_held_locks+0xf0/0xf0 [ 282.275260][T10213] ? proc_fail_nth_write+0x9d/0x1e0 [ 282.280455][T10213] ? proc_cwd_link+0x1d0/0x1d0 [ 282.285203][T10213] ? __f_unlock_pos+0x19/0x20 [ 282.289872][T10213] ? find_held_lock+0x35/0x130 [ 282.294612][T10213] ? __fget+0x340/0x540 [ 282.298746][T10213] ? find_held_lock+0x35/0x130 [ 282.303488][T10213] ? __fget+0x340/0x540 [ 282.307629][T10213] ? kvm_vcpu_block+0xcd0/0xcd0 [ 282.312474][T10213] do_vfs_ioctl+0xd6e/0x1390 [ 282.317044][T10213] ? ioctl_preallocate+0x210/0x210 [ 282.322137][T10213] ? __fget+0x367/0x540 [ 282.326300][T10213] ? ksys_dup3+0x3e0/0x3e0 [ 282.330733][T10213] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.336987][T10213] ? fput+0x128/0x1a0 [ 282.340968][T10213] ? security_file_ioctl+0x93/0xc0 [ 282.346078][T10213] ksys_ioctl+0xab/0xd0 [ 282.350229][T10213] __x64_sys_ioctl+0x73/0xb0 [ 282.354831][T10213] do_syscall_64+0x103/0x610 [ 282.359417][T10213] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.365288][T10213] RIP: 0033:0x458089 [ 282.369167][T10213] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.388748][T10213] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 282.397198][T10213] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 282.405182][T10213] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 282.413129][T10213] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 282.421078][T10213] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 282.429026][T10213] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 282.440076][T10213] *** Guest State *** [ 282.444138][T10213] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 282.453745][T10213] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 282.463318][T10213] CR3 = 0x0000000000000000 [ 282.463328][T10213] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 282.463338][T10213] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 282.463369][T10213] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 282.463383][T10213] CS: sel=0x0000, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 282.463403][T10213] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 282.463422][T10213] SS: sel=0x0000, attr=0x00081, limit=0x0000ffff, base=0x0000000000000000 [ 282.463440][T10213] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 282.481388][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 282.481476][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 282.535264][T10213] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 282.544022][T10213] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 282.552897][T10213] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 282.562766][T10213] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 282.571528][T10213] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 282.580262][T10213] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 282.588935][T10213] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 282.588948][T10213] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 282.588959][T10213] Interruptibility = 00000000 ActivityState = 00000000 [ 282.588964][T10213] *** Host State *** [ 282.588977][T10213] RIP = 0xffffffff811b37d0 RSP = 0xffff88805343f8b8 [ 282.588999][T10213] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 282.604336][T10213] FSBase=00007efd96171700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 282.604352][T10213] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 282.648704][T10213] CR0=0000000080050033 CR3=000000008e391000 CR4=00000000001426f0 [ 282.656523][T10213] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 282.664013][T10213] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 282.676009][T10213] *** Control State *** [ 282.691595][T10213] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 282.699186][T10213] EntryControls=0000d1ff ExitControls=002fefff [ 282.708732][T10213] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 282.716948][T10213] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 282.728736][T10213] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 282.736585][T10213] reason=80000021 qualification=0000000000000000 [ 282.744213][T10213] IDTVectoring: info=00000000 errcode=00000000 [ 282.751203][T10213] TSC Offset = 0xffffff667c273895 [ 282.756515][T10213] EPT pointer = 0x00000000a78fa01e [ 282.800861][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 282.806690][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 283.120361][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 283.126268][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 283.280315][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 283.286114][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:33 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf%\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:33 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf.\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) fsetxattr(r1, &(0x7f0000000000)=@random={'user.', '/dev/ashmem\x00'}, &(0x7f0000000080)='\x00', 0x1, 0x2) 11:46:33 executing program 3 (fault-call:7 fault-nth:22): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:33 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf*\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f0000000000), &(0x7f0000000080)=0x4) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f0000000180)={0x3, 0x1, @stop_pts=0x10001}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x406, r1) bind$bt_sco(r3, &(0x7f0000000100)={0x1f, {0x1f, 0x3ff, 0x7, 0x6, 0x7, 0x1}}, 0x8) dup2(r0, r2) [ 283.674398][T10248] FAULT_INJECTION: forcing a failure. [ 283.674398][T10248] name failslab, interval 1, probability 0, space 0, times 0 [ 283.687300][T10248] CPU: 0 PID: 10248 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 283.696312][T10248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.706361][T10248] Call Trace: [ 283.706386][T10248] dump_stack+0x172/0x1f0 [ 283.706410][T10248] should_fail.cold+0xa/0x15 [ 283.714179][T10248] ? fault_create_debugfs_attr+0x1e0/0x1e0 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 283.714197][T10248] ? lock_downgrade+0x880/0x880 [ 283.714216][T10248] ? ___might_sleep+0x163/0x280 [ 283.714237][T10248] __should_failslab+0x121/0x190 [ 283.714258][T10248] should_failslab+0x9/0x14 [ 283.714274][T10248] kmem_cache_alloc+0x2be/0x710 [ 283.714295][T10248] ? __lock_acquire+0x54b/0x4790 [ 283.753514][T10248] mmu_topup_memory_caches+0x97/0x490 [ 283.753536][T10248] kvm_mmu_load+0x21/0x1200 [ 283.753554][T10248] ? mark_held_locks+0xf0/0xf0 [ 283.753569][T10248] ? vmx_handle_exit+0x1640/0x1640 [ 283.753596][T10248] vcpu_enter_guest+0x3c8d/0x60b0 [ 283.753618][T10248] ? __mutex_lock+0x3cd/0x1310 [ 283.763476][T10248] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 283.763501][T10248] ? emulator_read_emulated+0x50/0x50 [ 283.763521][T10248] ? lock_acquire+0x16f/0x3f0 [ 283.763535][T10248] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 283.763558][T10248] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 283.763572][T10248] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 283.763597][T10248] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 283.814976][T10248] ? kvm_vcpu_block+0xcd0/0xcd0 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 283.815003][T10248] ? mark_held_locks+0xf0/0xf0 [ 283.829258][T10248] ? proc_fail_nth_write+0x9d/0x1e0 [ 283.834462][T10248] ? proc_cwd_link+0x1d0/0x1d0 [ 283.839340][T10248] ? __f_unlock_pos+0x19/0x20 [ 283.844024][T10248] ? find_held_lock+0x35/0x130 [ 283.844055][T10248] ? __fget+0x340/0x540 [ 283.844071][T10248] ? find_held_lock+0x35/0x130 [ 283.844086][T10248] ? __fget+0x340/0x540 [ 283.844154][T10248] ? kvm_vcpu_block+0xcd0/0xcd0 [ 283.844179][T10248] do_vfs_ioctl+0xd6e/0x1390 11:46:33 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf+\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 283.871431][T10248] ? ioctl_preallocate+0x210/0x210 [ 283.876546][T10248] ? __fget+0x367/0x540 [ 283.880750][T10248] ? ksys_dup3+0x3e0/0x3e0 [ 283.885183][T10248] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 283.891429][T10248] ? fput+0x128/0x1a0 [ 283.895427][T10248] ? security_file_ioctl+0x93/0xc0 [ 283.900550][T10248] ksys_ioctl+0xab/0xd0 [ 283.904719][T10248] __x64_sys_ioctl+0x73/0xb0 [ 283.909323][T10248] do_syscall_64+0x103/0x610 [ 283.913935][T10248] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.919821][T10248] RIP: 0033:0x458089 11:46:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) socket$alg(0x26, 0x5, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000208}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, r3, 0x0, 0x70bd29, 0x25dfdbfb, {{}, 0x0, 0xb, 0x0, {0xfffffffffffffd23, 0x14, 'syz0\x00'}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x40005) setsockopt$inet6_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000000)={0x7fffffff}, 0x4) [ 283.923718][T10248] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.943320][T10248] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 283.951715][T10248] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 283.959714][T10248] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 283.967665][T10248] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 11:46:33 executing program 3 (fault-call:7 fault-nth:23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 283.975629][T10248] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 283.983593][T10248] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:33 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf*\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 284.245214][T10288] FAULT_INJECTION: forcing a failure. [ 284.245214][T10288] name failslab, interval 1, probability 0, space 0, times 0 [ 284.258048][T10288] CPU: 1 PID: 10288 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 284.267068][T10288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.277120][T10288] Call Trace: [ 284.280421][T10288] dump_stack+0x172/0x1f0 [ 284.284764][T10288] should_fail.cold+0xa/0x15 [ 284.289373][T10288] ? fault_create_debugfs_attr+0x1e0/0x1e0 11:46:33 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntf0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:33 executing program 2: r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000100)='/dev/md0\x00', 0x501800, 0x0) ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000180)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20ncci\x00', 0x4000, 0x0) setsockopt$TIPC_GROUP_LEAVE(r3, 0x10f, 0x88) ioctl$IMCLEAR_L2(r3, 0x80044946, &(0x7f0000000080)=0x5) fcntl$setpipe(r3, 0x407, 0xff) dup2(r1, r2) ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000000)={0x6d8, 0x8, 0x1, 0x0, 0x0, [{r1, 0x0, 0x9}]}) [ 284.295176][T10288] ? lock_downgrade+0x880/0x880 [ 284.295195][T10288] ? ___might_sleep+0x163/0x280 [ 284.295215][T10288] __should_failslab+0x121/0x190 [ 284.295234][T10288] should_failslab+0x9/0x14 [ 284.295251][T10288] kmem_cache_alloc+0x2be/0x710 [ 284.295265][T10288] ? __lock_acquire+0x54b/0x4790 [ 284.295295][T10288] mmu_topup_memory_caches+0x97/0x490 [ 284.329502][T10288] kvm_mmu_load+0x21/0x1200 [ 284.334016][T10288] ? mark_held_locks+0xf0/0xf0 [ 284.338787][T10288] ? vmx_handle_exit+0x1640/0x1640 11:46:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 284.343941][T10288] vcpu_enter_guest+0x3c8d/0x60b0 [ 284.348971][T10288] ? __mutex_lock+0x3cd/0x1310 [ 284.353752][T10288] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 284.358609][T10288] ? emulator_read_emulated+0x50/0x50 [ 284.363992][T10288] ? lock_acquire+0x16f/0x3f0 [ 284.368683][T10288] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 284.374419][T10288] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 284.379967][T10288] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 284.385713][T10288] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 284.390400][T10288] ? kvm_vcpu_block+0xcd0/0xcd0 11:46:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0xffffffffffffffff, 0x0) ioctl$TUNGETFILTER(r2, 0x801054db, &(0x7f0000000180)=""/4096) r3 = dup2(r0, r1) setsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000000000)={0x8, 0x9, 0xd, 0x100}, 0x6) [ 284.395254][T10288] ? mark_held_locks+0xf0/0xf0 [ 284.400023][T10288] ? proc_fail_nth_write+0x9d/0x1e0 [ 284.405223][T10288] ? proc_cwd_link+0x1d0/0x1d0 [ 284.409988][T10288] ? __f_unlock_pos+0x19/0x20 [ 284.414669][T10288] ? find_held_lock+0x35/0x130 [ 284.419427][T10288] ? __fget+0x340/0x540 [ 284.423562][T10288] ? find_held_lock+0x35/0x130 [ 284.428305][T10288] ? __fget+0x340/0x540 [ 284.432463][T10288] ? kvm_vcpu_block+0xcd0/0xcd0 [ 284.437316][T10288] do_vfs_ioctl+0xd6e/0x1390 [ 284.441891][T10288] ? ioctl_preallocate+0x210/0x210 [ 284.446993][T10288] ? __fget+0x367/0x540 [ 284.451147][T10288] ? ksys_dup3+0x3e0/0x3e0 [ 284.455556][T10288] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 284.461777][T10288] ? fput+0x128/0x1a0 [ 284.465743][T10288] ? security_file_ioctl+0x93/0xc0 [ 284.471022][T10288] ksys_ioctl+0xab/0xd0 [ 284.475176][T10288] __x64_sys_ioctl+0x73/0xb0 [ 284.479751][T10288] do_syscall_64+0x103/0x610 [ 284.484330][T10288] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 284.490210][T10288] RIP: 0033:0x458089 [ 284.494110][T10288] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 284.513715][T10288] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 284.522120][T10288] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 284.530089][T10288] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 284.538043][T10288] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 284.546018][T10288] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 284.553994][T10288] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:34 executing program 3 (fault-call:7 fault-nth:24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) read(r0, &(0x7f0000000080)=""/118, 0x76) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = syz_open_dev$midi(&(0x7f0000000380)='/dev/midi#\x00', 0x9, 0x40000) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x1, 0x4) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vfio/vfio\x00', 0x103000, 0x0) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000240)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r2, 0xc010641d, &(0x7f0000000340)={r3, &(0x7f0000000280)=""/171}) r4 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3, 0x280200) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f0000000180)=[@in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e23, @multicast1}, @in6={0xa, 0x4e22, 0x7, @empty, 0x1ff}, @in6={0xa, 0x4e23, 0xffff, @local, 0xf}], 0x58) ioctl$GIO_CMAP(r4, 0x4b70, &(0x7f0000000100)) r5 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r5) 11:46:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf-\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:34 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) [ 284.939024][T10318] FAULT_INJECTION: forcing a failure. [ 284.939024][T10318] name failslab, interval 1, probability 0, space 0, times 0 [ 284.963995][T10318] CPU: 0 PID: 10318 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 284.973039][T10318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 284.973047][T10318] Call Trace: [ 284.973075][T10318] dump_stack+0x172/0x1f0 [ 284.973103][T10318] should_fail.cold+0xa/0x15 [ 284.973138][T10318] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 284.986464][T10318] ? lock_downgrade+0x880/0x880 [ 284.986486][T10318] ? ___might_sleep+0x163/0x280 [ 284.986506][T10318] __should_failslab+0x121/0x190 [ 284.986530][T10318] should_failslab+0x9/0x14 [ 285.020287][T10318] kmem_cache_alloc+0x2be/0x710 [ 285.025126][T10318] ? __lock_acquire+0x54b/0x4790 [ 285.030066][T10318] mmu_topup_memory_caches+0x97/0x490 [ 285.035434][T10318] kvm_mmu_load+0x21/0x1200 [ 285.039935][T10318] ? mark_held_locks+0xf0/0xf0 [ 285.044703][T10318] ? vmx_handle_exit+0x1640/0x1640 [ 285.049829][T10318] vcpu_enter_guest+0x3c8d/0x60b0 [ 285.054837][T10318] ? __mutex_lock+0x3cd/0x1310 [ 285.059594][T10318] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 285.064443][T10318] ? emulator_read_emulated+0x50/0x50 [ 285.069800][T10318] ? lock_acquire+0x16f/0x3f0 [ 285.074459][T10318] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 285.080160][T10318] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 285.085714][T10318] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 285.091430][T10318] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 285.096093][T10318] ? kvm_vcpu_block+0xcd0/0xcd0 [ 285.100948][T10318] ? mark_held_locks+0xf0/0xf0 [ 285.105695][T10318] ? proc_fail_nth_write+0x9d/0x1e0 [ 285.110918][T10318] ? proc_cwd_link+0x1d0/0x1d0 [ 285.115683][T10318] ? __f_unlock_pos+0x19/0x20 [ 285.120344][T10318] ? find_held_lock+0x35/0x130 [ 285.125097][T10318] ? __fget+0x340/0x540 [ 285.129261][T10318] ? find_held_lock+0x35/0x130 [ 285.134066][T10318] ? __fget+0x340/0x540 [ 285.138234][T10318] ? kvm_vcpu_block+0xcd0/0xcd0 [ 285.143095][T10318] do_vfs_ioctl+0xd6e/0x1390 [ 285.147699][T10318] ? ioctl_preallocate+0x210/0x210 [ 285.152805][T10318] ? __fget+0x367/0x540 [ 285.156979][T10318] ? ksys_dup3+0x3e0/0x3e0 [ 285.161401][T10318] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 285.167635][T10318] ? fput+0x128/0x1a0 [ 285.171602][T10318] ? security_file_ioctl+0x93/0xc0 [ 285.176695][T10318] ksys_ioctl+0xab/0xd0 [ 285.180834][T10318] __x64_sys_ioctl+0x73/0xb0 [ 285.185409][T10318] do_syscall_64+0x103/0x610 [ 285.189984][T10318] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.195853][T10318] RIP: 0033:0x458089 [ 285.199729][T10318] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.219317][T10318] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 285.227726][T10318] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 285.235684][T10318] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 285.243649][T10318] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 285.251628][T10318] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 285.259624][T10318] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:34 executing program 3 (fault-call:7 fault-nth:25): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:35 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf+\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:35 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfX\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:35 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf.\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 285.605088][T10351] FAULT_INJECTION: forcing a failure. [ 285.605088][T10351] name failslab, interval 1, probability 0, space 0, times 0 [ 285.664447][T10351] CPU: 1 PID: 10351 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 285.673525][T10351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 285.683593][T10351] Call Trace: [ 285.686912][T10351] dump_stack+0x172/0x1f0 [ 285.691268][T10351] should_fail.cold+0xa/0x15 [ 285.695873][T10351] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 285.701693][T10351] ? lock_downgrade+0x880/0x880 [ 285.706534][T10351] ? ___might_sleep+0x163/0x280 [ 285.711592][T10351] __should_failslab+0x121/0x190 [ 285.716529][T10351] should_failslab+0x9/0x14 [ 285.721023][T10351] kmem_cache_alloc+0x2be/0x710 [ 285.725880][T10351] ? __lock_acquire+0x54b/0x4790 [ 285.730873][T10351] mmu_topup_memory_caches+0x97/0x490 [ 285.736254][T10351] kvm_mmu_load+0x21/0x1200 [ 285.740770][T10351] ? mark_held_locks+0xf0/0xf0 [ 285.745529][T10351] ? vmx_handle_exit+0x1640/0x1640 [ 285.750655][T10351] vcpu_enter_guest+0x3c8d/0x60b0 [ 285.755697][T10351] ? __mutex_lock+0x3cd/0x1310 11:46:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000180)={0x6, {{0xa, 0x4e24, 0x9, @empty, 0x8}}, {{0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, [], 0xb}, 0x2000000000000}}}, 0x108) [ 285.760444][T10351] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 285.765303][T10351] ? emulator_read_emulated+0x50/0x50 [ 285.770681][T10351] ? lock_acquire+0x16f/0x3f0 [ 285.775354][T10351] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 285.781071][T10351] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 285.786610][T10351] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 285.792337][T10351] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 285.797033][T10351] ? kvm_vcpu_block+0xcd0/0xcd0 [ 285.801883][T10351] ? mark_held_locks+0xf0/0xf0 [ 285.806656][T10351] ? proc_fail_nth_write+0x9d/0x1e0 [ 285.811872][T10351] ? proc_cwd_link+0x1d0/0x1d0 [ 285.816635][T10351] ? __f_unlock_pos+0x19/0x20 [ 285.821376][T10351] ? find_held_lock+0x35/0x130 [ 285.826137][T10351] ? __fget+0x340/0x540 [ 285.830285][T10351] ? find_held_lock+0x35/0x130 [ 285.835887][T10351] ? __fget+0x340/0x540 [ 285.840050][T10351] ? kvm_vcpu_block+0xcd0/0xcd0 [ 285.844899][T10351] do_vfs_ioctl+0xd6e/0x1390 [ 285.849498][T10351] ? ioctl_preallocate+0x210/0x210 [ 285.854609][T10351] ? __fget+0x367/0x540 [ 285.858749][T10351] ? ksys_dup3+0x3e0/0x3e0 [ 285.863148][T10351] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 285.869379][T10351] ? fput+0x128/0x1a0 [ 285.873373][T10351] ? security_file_ioctl+0x93/0xc0 [ 285.878464][T10351] ksys_ioctl+0xab/0xd0 [ 285.882612][T10351] __x64_sys_ioctl+0x73/0xb0 [ 285.887195][T10351] do_syscall_64+0x103/0x610 [ 285.891787][T10351] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 285.897687][T10351] RIP: 0033:0x458089 [ 285.901568][T10351] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 285.921170][T10351] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 285.929573][T10351] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 285.937541][T10351] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 285.945504][T10351] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 285.953455][T10351] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 285.961408][T10351] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:35 executing program 3 (fault-call:7 fault-nth:26): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 286.145778][T10375] FAULT_INJECTION: forcing a failure. [ 286.145778][T10375] name failslab, interval 1, probability 0, space 0, times 0 11:46:35 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 11:46:35 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntf0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:35 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf-\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 286.190893][T10375] CPU: 0 PID: 10375 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 286.199961][T10375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.210015][T10375] Call Trace: [ 286.210045][T10375] dump_stack+0x172/0x1f0 [ 286.210073][T10375] should_fail.cold+0xa/0x15 [ 286.210099][T10375] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 286.228061][T10375] ? lock_downgrade+0x880/0x880 [ 286.232934][T10375] ? ___might_sleep+0x163/0x280 [ 286.237796][T10375] __should_failslab+0x121/0x190 [ 286.242738][T10375] should_failslab+0x9/0x14 [ 286.247251][T10375] kmem_cache_alloc+0x2be/0x710 [ 286.252104][T10375] ? __lock_acquire+0x54b/0x4790 [ 286.257034][T10375] mmu_topup_memory_caches+0x97/0x490 [ 286.262389][T10375] kvm_mmu_load+0x21/0x1200 [ 286.266874][T10375] ? mark_held_locks+0xf0/0xf0 [ 286.271619][T10375] ? vmx_handle_exit+0x1640/0x1640 [ 286.276716][T10375] vcpu_enter_guest+0x3c8d/0x60b0 [ 286.281733][T10375] ? __mutex_lock+0x3cd/0x1310 [ 286.286488][T10375] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 286.291339][T10375] ? emulator_read_emulated+0x50/0x50 [ 286.296707][T10375] ? lock_acquire+0x16f/0x3f0 [ 286.301368][T10375] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 286.307073][T10375] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 286.312601][T10375] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 286.318305][T10375] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 286.322963][T10375] ? kvm_vcpu_block+0xcd0/0xcd0 [ 286.327805][T10375] ? mark_held_locks+0xf0/0xf0 [ 286.332560][T10375] ? proc_fail_nth_write+0x9d/0x1e0 [ 286.337739][T10375] ? proc_cwd_link+0x1d0/0x1d0 [ 286.342497][T10375] ? __f_unlock_pos+0x19/0x20 [ 286.347195][T10375] ? find_held_lock+0x35/0x130 [ 286.351957][T10375] ? __fget+0x340/0x540 [ 286.356094][T10375] ? find_held_lock+0x35/0x130 [ 286.360835][T10375] ? __fget+0x340/0x540 [ 286.364978][T10375] ? kvm_vcpu_block+0xcd0/0xcd0 [ 286.369810][T10375] do_vfs_ioctl+0xd6e/0x1390 [ 286.374386][T10375] ? ioctl_preallocate+0x210/0x210 [ 286.379477][T10375] ? __fget+0x367/0x540 [ 286.383626][T10375] ? ksys_dup3+0x3e0/0x3e0 [ 286.388048][T10375] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 286.394286][T10375] ? fput+0x128/0x1a0 [ 286.398263][T10375] ? security_file_ioctl+0x93/0xc0 [ 286.403379][T10375] ksys_ioctl+0xab/0xd0 [ 286.407539][T10375] __x64_sys_ioctl+0x73/0xb0 [ 286.412112][T10375] do_syscall_64+0x103/0x610 [ 286.416704][T10375] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 286.422579][T10375] RIP: 0033:0x458089 [ 286.426460][T10375] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 286.446042][T10375] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.454429][T10375] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 286.462381][T10375] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 286.470335][T10375] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 286.478299][T10375] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) [ 286.486248][T10375] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:36 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 11:46:36 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfc\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20000, 0x122) ioctl$KDADDIO(r1, 0x4b34, 0x4689) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r2) prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000000)) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0}, &(0x7f00000000c0)=0xfed2) fcntl$setown(r0, 0x8, r3) 11:46:36 executing program 3 (fault-call:7 fault-nth:27): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:36 executing program 1: r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:36 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf.\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200000, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000040)=0x3, 0x0) dup2(r0, r1) [ 286.788329][T10414] FAULT_INJECTION: forcing a failure. [ 286.788329][T10414] name failslab, interval 1, probability 0, space 0, times 0 [ 286.811826][T10414] CPU: 1 PID: 10414 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 286.820873][T10414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 286.830967][T10414] Call Trace: [ 286.834263][T10414] dump_stack+0x172/0x1f0 11:46:36 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfX\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 286.838611][T10414] should_fail.cold+0xa/0x15 [ 286.843218][T10414] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 286.849027][T10414] ? lock_downgrade+0x880/0x880 [ 286.853883][T10414] ? ___might_sleep+0x163/0x280 [ 286.858781][T10414] __should_failslab+0x121/0x190 [ 286.863758][T10414] should_failslab+0x9/0x14 [ 286.868268][T10414] kmem_cache_alloc+0x2be/0x710 [ 286.873125][T10414] ? __lock_acquire+0x54b/0x4790 [ 286.878091][T10414] mmu_topup_memory_caches+0x97/0x490 [ 286.883479][T10414] kvm_mmu_load+0x21/0x1200 [ 286.887979][T10414] ? mark_held_locks+0xf0/0xf0 [ 286.892737][T10414] ? vmx_handle_exit+0x1640/0x1640 [ 286.897853][T10414] vcpu_enter_guest+0x3c8d/0x60b0 [ 286.902894][T10414] ? __mutex_lock+0x3cd/0x1310 [ 286.907685][T10414] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 286.912542][T10414] ? emulator_read_emulated+0x50/0x50 [ 286.917919][T10414] ? lock_acquire+0x16f/0x3f0 [ 286.922589][T10414] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 286.928311][T10414] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 286.933851][T10414] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 286.939576][T10414] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 286.944262][T10414] ? kvm_vcpu_block+0xcd0/0xcd0 [ 286.949115][T10414] ? mark_held_locks+0xf0/0xf0 [ 286.953928][T10414] ? proc_fail_nth_write+0x9d/0x1e0 [ 286.959123][T10414] ? proc_cwd_link+0x1d0/0x1d0 [ 286.960335][ C0] net_ratelimit: 18 callbacks suppressed [ 286.960343][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 286.963891][T10414] ? __f_unlock_pos+0x19/0x20 [ 286.969579][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 286.975220][T10414] ? find_held_lock+0x35/0x130 [ 286.975234][T10414] ? __fget+0x340/0x540 [ 286.975246][T10414] ? find_held_lock+0x35/0x130 [ 286.975261][T10414] ? __fget+0x340/0x540 [ 286.975283][T10414] ? kvm_vcpu_block+0xcd0/0xcd0 [ 286.975303][T10414] do_vfs_ioctl+0xd6e/0x1390 [ 287.012845][T10414] ? ioctl_preallocate+0x210/0x210 [ 287.017955][T10414] ? __fget+0x367/0x540 [ 287.022112][T10414] ? ksys_dup3+0x3e0/0x3e0 [ 287.026547][T10414] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.032782][T10414] ? fput+0x128/0x1a0 [ 287.036780][T10414] ? security_file_ioctl+0x93/0xc0 [ 287.041914][T10414] ksys_ioctl+0xab/0xd0 [ 287.046072][T10414] __x64_sys_ioctl+0x73/0xb0 [ 287.050696][T10414] do_syscall_64+0x103/0x610 [ 287.055303][T10414] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.061192][T10414] RIP: 0033:0x458089 [ 287.065083][T10414] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:46:36 executing program 1: r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 287.084694][T10414] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.093097][T10414] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 287.101062][T10414] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 287.109025][T10414] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 287.116989][T10414] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 287.124987][T10414] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:36 executing program 3 (fault-call:7 fault-nth:28): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 287.280632][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 287.286423][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:36 executing program 1: r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:36 executing program 2: r0 = getpid() ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x10, &(0x7f0000000000)={0x9c2}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = dup2(r1, r2) write$nbd(r3, &(0x7f0000000180)={0x67446698, 0x0, 0x0, 0x3, 0x4, "baf74bf2f2100269f5fd38d66729780c8dd573a821734940a2d3835b2afd4f628013e0adca5e07e9efb362944ccfd9941c6b59e47583f8c4c1a45d4b0b10b8e3c1d4046e3cdc1e1e41732418b939e5321f8bd3fe7a7917ea007f8f31af8fb5ff58773a90cbb5d5eef1abd02e2e6815a3482e7cd6c95460801c6c9b1bb736c57276fa30aa518a019cf409ed10f7de45c094c42aac736efa426e68dcfb0c219702cf64d733d38fb632a715f6e67f8d08a57758265b2710f7b4f259da873e51947bacccc3a86bbd46a9ff37e22077de4b25408b2bd3847ef25fdf2c186a2b071897d1"}, 0xf1) [ 287.440333][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 287.446191][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 287.468487][T10443] FAULT_INJECTION: forcing a failure. [ 287.468487][T10443] name failslab, interval 1, probability 0, space 0, times 0 [ 287.484262][T10443] CPU: 1 PID: 10443 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 287.493314][T10443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 287.503383][T10443] Call Trace: [ 287.506684][T10443] dump_stack+0x172/0x1f0 [ 287.511028][T10443] should_fail.cold+0xa/0x15 [ 287.515610][T10443] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 287.520372][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 287.521408][T10443] ? lock_downgrade+0x880/0x880 [ 287.521428][T10443] ? ___might_sleep+0x163/0x280 [ 287.521449][T10443] __should_failslab+0x121/0x190 [ 287.527219][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 287.531993][T10443] should_failslab+0x9/0x14 [ 287.532010][T10443] kmem_cache_alloc+0x2be/0x710 [ 287.532024][T10443] ? __lock_acquire+0x54b/0x4790 [ 287.532051][T10443] mmu_topup_memory_caches+0x97/0x490 [ 287.567077][T10443] kvm_mmu_load+0x21/0x1200 [ 287.571578][T10443] ? mark_held_locks+0xf0/0xf0 [ 287.576359][T10443] ? vmx_handle_exit+0x1640/0x1640 [ 287.581490][T10443] vcpu_enter_guest+0x3c8d/0x60b0 [ 287.586515][T10443] ? __mutex_lock+0x3cd/0x1310 [ 287.591283][T10443] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 287.596132][T10443] ? emulator_read_emulated+0x50/0x50 [ 287.601496][T10443] ? lock_acquire+0x16f/0x3f0 [ 287.606183][T10443] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 287.611900][T10443] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 287.617446][T10443] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 287.623152][T10443] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 287.627815][T10443] ? kvm_vcpu_block+0xcd0/0xcd0 [ 287.632692][T10443] ? mark_held_locks+0xf0/0xf0 [ 287.637439][T10443] ? proc_fail_nth_write+0x9d/0x1e0 [ 287.642614][T10443] ? proc_cwd_link+0x1d0/0x1d0 [ 287.647368][T10443] ? __f_unlock_pos+0x19/0x20 [ 287.652046][T10443] ? find_held_lock+0x35/0x130 [ 287.656803][T10443] ? __fget+0x340/0x540 [ 287.660972][T10443] ? find_held_lock+0x35/0x130 [ 287.665733][T10443] ? __fget+0x340/0x540 [ 287.669910][T10443] ? kvm_vcpu_block+0xcd0/0xcd0 [ 287.674780][T10443] do_vfs_ioctl+0xd6e/0x1390 [ 287.679377][T10443] ? ioctl_preallocate+0x210/0x210 [ 287.684475][T10443] ? __fget+0x367/0x540 [ 287.688615][T10443] ? ksys_dup3+0x3e0/0x3e0 [ 287.693017][T10443] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 287.699240][T10443] ? fput+0x128/0x1a0 [ 287.703209][T10443] ? security_file_ioctl+0x93/0xc0 [ 287.708424][T10443] ksys_ioctl+0xab/0xd0 [ 287.712562][T10443] __x64_sys_ioctl+0x73/0xb0 [ 287.717137][T10443] do_syscall_64+0x103/0x610 [ 287.721730][T10443] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 287.727611][T10443] RIP: 0033:0x458089 [ 287.731495][T10443] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 287.751097][T10443] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.759497][T10443] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 287.767446][T10443] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 287.775407][T10443] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 287.783359][T10443] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfd\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 287.791314][T10443] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:37 executing program 3 (fault-call:7 fault-nth:29): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:37 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) getsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000100)=0xffffffff, &(0x7f0000000340)=0x4) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e23, @multicast1}}, [0x100000000, 0x0, 0xffffffff, 0x6, 0x189, 0x3, 0x78b0, 0x6, 0x9, 0x6e, 0x0, 0x4, 0x2, 0x5, 0xfff]}, &(0x7f0000000080)=0x100) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000280)={r2, @in={{0x2, 0x4e20, @broadcast}}}, &(0x7f00000000c0)=0x84) r3 = dup2(r1, r1) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000b80)=0x0) getresuid(&(0x7f0000000bc0)=0x0, &(0x7f0000000c00), &(0x7f0000000c40)) stat(&(0x7f0000000c80)='./file0\x00', &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000d40)=0x0) r8 = getuid() getgroups(0x9, &(0x7f0000000d80)=[0x0, 0xee00, 0xee00, 0xee00, 0x0, 0xee01, 0xee00, 0x0, 0xffffffffffffffff]) r10 = getpgid(0xffffffffffffffff) fstat(r0, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000e40)='./file0\x00', &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r13 = gettid() r14 = geteuid() stat(&(0x7f0000000f00)='./file0\x00', &(0x7f0000000f40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r0, 0x10, &(0x7f0000000fc0)={0x0, 0x0}) lstat(&(0x7f0000001000)='./file0\x00', &(0x7f0000001040)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000010c0)='./file0\x00', &(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$unix(r1, &(0x7f0000001280)={&(0x7f00000003c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000ac0)=[{&(0x7f0000000440)="8a7e6afd6fb9b891fb12bfb5c915562357c5be6b80e69f0914a1bf02bdf56020e75c8bac74ab06792a3077779529781bb24c0be3d8763cf7cc8abac78d44f9b80289010a58d2d28f36470c21c8efb984b692d7fb360b5e5dfd79582753b77bf0e89e7926e195ac1217ff457fe3d01e0fd3142ea3915f32bc6e3aae279de128c8d6d5e345fa053486b1d501c842fef2510fdf3fa3cd1749986c225fc9a44f201b00f9980856827340169c8d40feea813038ef8c5d87f4c87fd344014db1fea00c5b99a4098ca8c356786582b05c79693dc11ff7e98e88dc903e75a625006cc1fca4e429bb", 0xe4}, {&(0x7f0000000540)="5af30533a20d84c494426b38931d44a583951753a0673b3ba9466b7e57a284185621779cb4d94df6161f1b4a20d35dab6461294127cb6d5e84a02e8e12cc01030ca43058f5c82f6b5a5191ad15ad119f10663a2756bc56be3d465fc07ade1be4a4d4c896db5e8f135d90365d91c08a7ae8851cc79a2a6d6711aa12b9e7f2eafdb83885b8aabcce6348b49009366d8a95e4f5387723ca0911aa3aa699ad96f03e5ed5d865b54034b23313d6df0678c94d69dc4f488c6a9c0583372b82968427730ebfa8a324c09fd1e96e2336", 0xcc}, {&(0x7f0000000640)="b967972bfb9999d1f19f9c5ec0646beb65e4f283c750399e4e11fda03b81b97fa953c8e316a7819981b68f284852cb62148eb581382ddb54009fa37ba7d53cf6f55c8760dc3c694671c22e8fefc3669fdf141db85045b39e232d2cdbaee678257922aed483b49d032f6842a9a1e90db1398bbdb85018cd5bb85e39d9df721e8197bd343684f9f9886d68560891d479be829eaaccbb3072dac82c4124ea5a92b5ac2b92f8ece479fd74", 0xa9}, {&(0x7f0000000700)="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", 0xfa}, {&(0x7f0000000800)="0e97bf7c8cdfab0bcda32facc6316f1393b9271b082af5dd7d9f3b6c9dfe0d0532ed647b4a3bd19d9841b2ed50a50b7740dd5255eb9082846afb3cc36c630c7f6b22b7c0678c0977bbd47f6afe820e977dec1aa6a2c15333dea078829a7ee435cbced0f618a39e9bbdf740c18dc54083444b921eb7a24985b108df0175e87b621b6b4d", 0x83}, {&(0x7f00000008c0)="02fb7dad8456ea9ae4957bfbc7e75effd456e1a9715716f5acf821bc1864513dde22ba2954390c7c4ee5de24cf5878a71017ce38f4ad3aac178a1408731f58611e13", 0x42}, {&(0x7f0000000940)="703fa09266a81f02519db9389045d59ed90679b0bdd019d08d5e938678f7f938", 0x20}, {&(0x7f0000000980)="862efbd8eb38d17e114762eb9fa542d9ef804b3fc252024ef93360d0074320c18fdbafea46a6f4b158cebaa127e349c960d7563c5b1028b964819b35f0543af9b66b3e0cccd799cbd28fd2cec6abe7d81373ce486e26cfa912212e36b66c36462c39c1900c12531d393409b4c063e4fbf6ac737820e7f01bddc92e237208311b10a30b344d0bc4aa97b0f5b57eb560aab48c28848811002ba6099a1eb8ec4fb70d3e5961f5", 0xa5}, {&(0x7f0000000a40)="2a0de40d4d77502387995290dcfec1aa585707ca1a82d33a16680e2fe3d00634c250aad1fa4b16470d096dc66fe70c1964e17eace2d317f38cdc3edf0ac5e3f509f232b0e186a1a108b74e890538d88bbf92b90f81f67f7a6341529fe6e6f7728e07290c44150eb41587c7", 0x6b}], 0x9, &(0x7f0000001180)=[@rights={0x18, 0x1, 0x1, [r1, r1]}, @rights={0x18, 0x1, 0x1, [r1, r0]}, @rights={0x28, 0x1, 0x1, [r3, r0, r1, r1, r1]}, @cred={0x20, 0x1, 0x2, r4, r5, r6}, @cred={0x20, 0x1, 0x2, r7, r8, r9}, @cred={0x20, 0x1, 0x2, r10, r11, r12}, @cred={0x20, 0x1, 0x2, r13, r14, r15}, @cred={0x20, 0x1, 0x2, r16, r17, r18}], 0xf8, 0x4000004}, 0x10) r19 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r19) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r1, 0x28, 0x0, &(0x7f0000000380)=0x2, 0x8) 11:46:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntf0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 288.055740][T10479] FAULT_INJECTION: forcing a failure. [ 288.055740][T10479] name failslab, interval 1, probability 0, space 0, times 0 [ 288.069367][T10479] CPU: 0 PID: 10479 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 288.078396][T10479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.088437][T10479] Call Trace: [ 288.091711][T10479] dump_stack+0x172/0x1f0 [ 288.096033][T10479] should_fail.cold+0xa/0x15 [ 288.100608][T10479] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 288.106395][T10479] ? lock_downgrade+0x880/0x880 [ 288.111239][T10479] ? ___might_sleep+0x163/0x280 [ 288.116076][T10479] __should_failslab+0x121/0x190 [ 288.120997][T10479] should_failslab+0x9/0x14 [ 288.125482][T10479] kmem_cache_alloc+0x2be/0x710 [ 288.130322][T10479] mmu_topup_memory_caches+0x97/0x490 [ 288.135691][T10479] kvm_mmu_load+0x21/0x1200 [ 288.140211][T10479] ? vcpu_enter_guest+0x2a33/0x60b0 [ 288.145405][T10479] ? lockdep_hardirqs_on+0x418/0x5d0 [ 288.150677][T10479] vcpu_enter_guest+0x3c8d/0x60b0 [ 288.155699][T10479] ? emulator_read_emulated+0x50/0x50 [ 288.161054][T10479] ? lock_acquire+0x16f/0x3f0 [ 288.165709][T10479] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 288.171425][T10479] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 288.176960][T10479] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 288.182679][T10479] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 288.187460][T10479] ? kvm_vcpu_block+0xcd0/0xcd0 [ 288.192293][T10479] ? mark_held_locks+0xf0/0xf0 [ 288.197045][T10479] ? proc_fail_nth_write+0x9d/0x1e0 [ 288.202223][T10479] ? proc_cwd_link+0x1d0/0x1d0 [ 288.206969][T10479] ? __f_unlock_pos+0x19/0x20 [ 288.211625][T10479] ? find_held_lock+0x35/0x130 [ 288.216370][T10479] ? __fget+0x340/0x540 [ 288.220519][T10479] ? find_held_lock+0x35/0x130 [ 288.225273][T10479] ? __fget+0x340/0x540 [ 288.229428][T10479] ? kvm_vcpu_block+0xcd0/0xcd0 [ 288.234275][T10479] do_vfs_ioctl+0xd6e/0x1390 [ 288.238847][T10479] ? ioctl_preallocate+0x210/0x210 [ 288.243951][T10479] ? __fget+0x367/0x540 [ 288.248116][T10479] ? ksys_dup3+0x3e0/0x3e0 [ 288.252512][T10479] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.258749][T10479] ? fput+0x128/0x1a0 [ 288.262731][T10479] ? security_file_ioctl+0x93/0xc0 [ 288.267827][T10479] ksys_ioctl+0xab/0xd0 [ 288.271965][T10479] __x64_sys_ioctl+0x73/0xb0 [ 288.276547][T10479] do_syscall_64+0x103/0x610 [ 288.281153][T10479] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.287050][T10479] RIP: 0033:0x458089 [ 288.290931][T10479] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 288.310516][T10479] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 288.318915][T10479] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 288.326864][T10479] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 288.334811][T10479] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 288.342764][T10479] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfc\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 288.350714][T10479] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 288.360394][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 288.366268][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:38 executing program 3 (fault-call:7 fault-nth:30): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000180)={0x5, {{0x2, 0x4e24, @local}}, {{0x2, 0x4e20, @rand_addr=0xfff}}}, 0x108) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) 11:46:38 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 288.612244][T10499] FAULT_INJECTION: forcing a failure. [ 288.612244][T10499] name failslab, interval 1, probability 0, space 0, times 0 11:46:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) [ 288.666413][T10499] CPU: 1 PID: 10499 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 288.675483][T10499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.685539][T10499] Call Trace: [ 288.688839][T10499] dump_stack+0x172/0x1f0 [ 288.693199][T10499] should_fail.cold+0xa/0x15 [ 288.697807][T10499] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 288.703620][T10499] ? lock_downgrade+0x880/0x880 [ 288.708501][T10499] ? ___might_sleep+0x163/0x280 [ 288.713376][T10499] __should_failslab+0x121/0x190 [ 288.718337][T10499] should_failslab+0x9/0x14 [ 288.722859][T10499] kmem_cache_alloc+0x2be/0x710 [ 288.727736][T10499] ? __lock_acquire+0x54b/0x4790 [ 288.732691][T10499] mmu_topup_memory_caches+0x97/0x490 [ 288.738110][T10499] kvm_mmu_load+0x21/0x1200 [ 288.742614][T10499] ? mark_held_locks+0xf0/0xf0 [ 288.747414][T10499] ? vmx_handle_exit+0x1640/0x1640 [ 288.752544][T10499] vcpu_enter_guest+0x3c8d/0x60b0 [ 288.757575][T10499] ? __mutex_lock+0x3cd/0x1310 [ 288.762343][T10499] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 288.767204][T10499] ? emulator_read_emulated+0x50/0x50 [ 288.772582][T10499] ? lock_acquire+0x16f/0x3f0 [ 288.777259][T10499] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 288.782992][T10499] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 288.788533][T10499] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 288.794245][T10499] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 288.798923][T10499] ? kvm_vcpu_block+0xcd0/0xcd0 [ 288.803778][T10499] ? mark_held_locks+0xf0/0xf0 [ 288.808536][T10499] ? proc_fail_nth_write+0x9d/0x1e0 [ 288.813722][T10499] ? proc_cwd_link+0x1d0/0x1d0 [ 288.818496][T10499] ? __f_unlock_pos+0x19/0x20 [ 288.823161][T10499] ? find_held_lock+0x35/0x130 [ 288.827952][T10499] ? __fget+0x340/0x540 [ 288.832112][T10499] ? find_held_lock+0x35/0x130 [ 288.836881][T10499] ? __fget+0x340/0x540 [ 288.841045][T10499] ? kvm_vcpu_block+0xcd0/0xcd0 [ 288.845890][T10499] do_vfs_ioctl+0xd6e/0x1390 [ 288.850499][T10499] ? ioctl_preallocate+0x210/0x210 [ 288.855646][T10499] ? __fget+0x367/0x540 [ 288.859854][T10499] ? ksys_dup3+0x3e0/0x3e0 [ 288.864253][T10499] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.870488][T10499] ? fput+0x128/0x1a0 [ 288.874465][T10499] ? security_file_ioctl+0x93/0xc0 [ 288.879556][T10499] ksys_ioctl+0xab/0xd0 [ 288.883708][T10499] __x64_sys_ioctl+0x73/0xb0 [ 288.888293][T10499] do_syscall_64+0x103/0x610 [ 288.892901][T10499] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.898806][T10499] RIP: 0033:0x458089 [ 288.902694][T10499] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 288.922296][T10499] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 288.930711][T10499] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 288.938680][T10499] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 288.946680][T10499] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 288.954631][T10499] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 288.962589][T10499] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:38 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfi\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:38 executing program 3 (fault-call:7 fault-nth:31): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:38 executing program 2: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x40040, 0x0) ioctl$SIOCAX25CTLCON(r0, 0x89e8, &(0x7f0000000080)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4, 0x0, 0x4, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000180)="ff1cab50f52a65c6c2abbce37567949059bfca08bdaa5e4f5d47496319251bfeb8538aa86ddfef3cd7a1a91db4a4de47bb43196c7c94f8096e24767a84daec9aa2c65c47f00b2f7ea654269a9ede0b5a6b887ed0115b7b1584eaeaa60b54c535c69ff432c6e3f4d5dd10e651305e3834a24afc0fc8d0af093c4bf40e31f3d594ee2e57f0a81f8a149014330e9104e96b56ac3ad3029482b5e13b096be5263f1b2bc95c989f6606bb") ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x1, 0x0) dup2(r1, r2) 11:46:38 executing program 1: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 289.226056][T10527] FAULT_INJECTION: forcing a failure. [ 289.226056][T10527] name failslab, interval 1, probability 0, space 0, times 0 [ 289.271358][T10527] CPU: 0 PID: 10527 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 289.280405][T10527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.290464][T10527] Call Trace: [ 289.293764][T10527] dump_stack+0x172/0x1f0 [ 289.298121][T10527] should_fail.cold+0xa/0x15 [ 289.302729][T10527] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.308541][T10527] ? lock_downgrade+0x880/0x880 [ 289.313406][T10527] ? ___might_sleep+0x163/0x280 [ 289.318276][T10527] __should_failslab+0x121/0x190 [ 289.323240][T10527] should_failslab+0x9/0x14 [ 289.327751][T10527] kmem_cache_alloc+0x2be/0x710 [ 289.332624][T10527] mmu_topup_memory_caches+0x97/0x490 [ 289.338008][T10527] kvm_mmu_load+0x21/0x1200 [ 289.342524][T10527] ? vcpu_enter_guest+0x2a33/0x60b0 [ 289.347736][T10527] ? lockdep_hardirqs_on+0x418/0x5d0 [ 289.353019][T10527] vcpu_enter_guest+0x3c8d/0x60b0 [ 289.358030][T10527] ? emulator_read_emulated+0x50/0x50 [ 289.363395][T10527] ? lock_acquire+0x16f/0x3f0 [ 289.368070][T10527] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 289.373787][T10527] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 289.379327][T10527] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 289.385060][T10527] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 289.389744][T10527] ? kvm_vcpu_block+0xcd0/0xcd0 [ 289.394597][T10527] ? mark_held_locks+0xf0/0xf0 [ 289.399391][T10527] ? proc_fail_nth_write+0x9d/0x1e0 [ 289.404589][T10527] ? proc_cwd_link+0x1d0/0x1d0 [ 289.409354][T10527] ? __f_unlock_pos+0x19/0x20 [ 289.414011][T10527] ? find_held_lock+0x35/0x130 [ 289.418756][T10527] ? __fget+0x340/0x540 [ 289.422891][T10527] ? find_held_lock+0x35/0x130 [ 289.427672][T10527] ? __fget+0x340/0x540 [ 289.431834][T10527] ? kvm_vcpu_block+0xcd0/0xcd0 [ 289.436666][T10527] do_vfs_ioctl+0xd6e/0x1390 [ 289.441240][T10527] ? ioctl_preallocate+0x210/0x210 [ 289.446330][T10527] ? __fget+0x367/0x540 [ 289.450467][T10527] ? ksys_dup3+0x3e0/0x3e0 [ 289.454865][T10527] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 289.461111][T10527] ? fput+0x128/0x1a0 [ 289.465083][T10527] ? security_file_ioctl+0x93/0xc0 11:46:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(0x0, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 289.470216][T10527] ksys_ioctl+0xab/0xd0 [ 289.474411][T10527] __x64_sys_ioctl+0x73/0xb0 [ 289.479004][T10527] do_syscall_64+0x103/0x610 [ 289.483589][T10527] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.489468][T10527] RIP: 0033:0x458089 [ 289.493345][T10527] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 289.512927][T10527] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 11:46:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c2a9e32dd78f2bab3c0f744aa6b097a3f318883b0") syz_emit_ethernet(0x14, &(0x7f0000000040)={@dev={[], 0x50000}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [], {@generic={0x9bff, "7663faf4985c"}}}, &(0x7f0000000080)={0x0, 0x1, [0xf10, 0xee, 0x94b, 0xe67]}) r1 = syz_open_dev$cec(&(0x7f00000000c0)='/dev/cec#\x00', 0x1, 0x2) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000480)={&(0x7f0000000100), 0xc, &(0x7f0000000440)={&(0x7f00000001c0)={0x278, r2, 0x300, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0xd0, 0x1, [@TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9b2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xea2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff00000001}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'tunl0\x00'}}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xd6f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6595}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe65}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x10000, @mcast2, 0x5d95}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x800, @remote, 0x80000001}}}}]}, @TIPC_NLA_LINK={0xe8, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}]}]}, @TIPC_NLA_NODE={0x18, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_BEARER={0x50, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x6, @local, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x5, @mcast2, 0x9}}}}]}, @TIPC_NLA_LINK={0x44, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffffc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100000000}]}]}]}, 0x278}, 0x1, 0x0, 0x0, 0x10}, 0x804) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r4 = dup2(r0, r3) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r4, 0x84, 0x1b, &(0x7f00000004c0)={0x0, 0xe2, "3eb9d6e67659cdcb6d705902daa36bf46aae05ce29641a440cd34073c2ee7be24a2c0378445a1060a69697d7e5a4c947af246371b41f38026924ab4171e536fa23abd215fd48ccf6675503b96fa2d39964b2d582a39c932d5cbb2c3bce4ade1dc24f94fc6ddc8bc21f61dd123f93db99658f1819f3f1794588eb73b36d2f6bd053b960a7fb17b6a72802ada15a18d99233a43d1bb27e3d6b6f6c0ee381f3cb1238a9be6d7c4673f54a6f73cac403385be3c877e8c8ef957ab4d356d65c33e8cdd1818fde652c4ebdb87acde584402caadc719624288b906f562cbe9dfe1652bdd2fe"}, &(0x7f00000005c0)=0xea) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000600)=@assoc_value={r5, 0x200}, &(0x7f0000000640)=0x8) [ 289.521315][T10527] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 289.529278][T10527] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 289.537230][T10527] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 289.545226][T10527] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 289.553181][T10527] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:39 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfX\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfd\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:39 executing program 3 (fault-call:7 fault-nth:32): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:39 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(0x0, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:39 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x480, 0x0) ioctl$VIDIOC_DECODER_CMD(r1, 0xc0485660, &(0x7f0000000240)={0x2, 0x0, @start={0x8}}) r2 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) syz_mount_image$nfs4(&(0x7f00000002c0)='nfs4\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x7, &(0x7f0000001640)=[{&(0x7f0000000340)="b9cd938b1f7a0eacd01fe26520e3f1ef1caed05a76fa5b5b3cdcda44541aabf296d2671a0bcf8ef265f510a1c467ce5b1ab682ddcdedc7ed7d2e4a31d6082c437c5308d9d0572ffc7503d325870b74212918716631f281a12c6f307936689c0207d527bd07ce9bb28792be1ef479bc6310b62449bf457239331eb567630376edc1bbb33cd18613f45b5407dcf7e3994f27059e175ba78549dc71635d40a3e09f09c87cd20c12a426f76f9a627fa4b2515bf3da3db48426280d23ef39bbafd81f27152772f12a97dd8e5c8a321f8db0c838df951c0847d2924f0e5c5532331964380c7413ee8db493a9", 0xe9, 0x2}, {&(0x7f0000000440)="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", 0x1000, 0xb08}, {&(0x7f0000001440)="26a868ba7672fbeeffd9a70550db1c4b57011f31916c2896c338cca5f7311f63d61aed093b56c4854db4c8d5a83e333f288dd14e7d012f4abc", 0x39, 0x3}, {&(0x7f0000001480)="5bf2db7c4aafce29884a5601099ba8667d0ae0ceb556e4c533e189c304cfd0c69e7789164889b8139fe61dd370de89e1bd4afba9486719bfa0aa3b5bdd99f3418b0eef3fe6587d8fea451bbfa85ea7ac8a79b3642ba9d900cc", 0x59, 0x8}, {&(0x7f0000001500)="b460c2beab7ea6a713c4625c64db57fe6d4147fdfc781230156d1a87f3e0", 0x1e, 0x3}, {&(0x7f0000001540)="9393c53006bc655009256d8d62958a6d7524b07129d6987a72c276346d83d57749d32d4a4d9bf291da1227bdb8642ac43c321b44", 0x34, 0x3ff}, {&(0x7f0000001580)="a7f66e902010094d86902fcf4ca8094038c0574c50b7b269a908a52cfd8b9360ec5076a65aeae6418075cf392ddd7b0ab7baff97849b2e123818c6710d9ba8517d15751abed939babae91ef55092211f3deffc2ed39b98b49c6431054e1771964520c0ae211ccfc4a12f2e3d263b3798861f9d23bdc9cf3fdbde41e102e529bb1d0a2ec31d75bd62f6d9c2915fdc1968fec038f96618403e165e59821f9addf6da8adcfeca145e9b3d311fc1fb7568f1049bc1dcfb6c5a174413d3dd", 0xbc, 0x81}], 0x800010, &(0x7f0000001700)='\x00') r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400100}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x34, r3, 0x600, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x4}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x81}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7ee}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) dup2(0xffffffffffffffff, r0) ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) [ 289.816664][T10563] FAULT_INJECTION: forcing a failure. [ 289.816664][T10563] name failslab, interval 1, probability 0, space 0, times 0 [ 289.881112][T10563] CPU: 0 PID: 10563 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 289.890196][T10563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.900255][T10563] Call Trace: [ 289.903561][T10563] dump_stack+0x172/0x1f0 [ 289.907924][T10563] should_fail.cold+0xa/0x15 [ 289.912533][T10563] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.918361][T10563] ? lock_downgrade+0x880/0x880 [ 289.923220][T10563] ? ___might_sleep+0x163/0x280 [ 289.928083][T10563] __should_failslab+0x121/0x190 [ 289.933034][T10563] should_failslab+0x9/0x14 [ 289.937560][T10563] kmem_cache_alloc+0x2be/0x710 [ 289.942415][T10563] ? __lock_acquire+0x54b/0x4790 [ 289.947370][T10563] mmu_topup_memory_caches+0x97/0x490 [ 289.952762][T10563] kvm_mmu_load+0x21/0x1200 [ 289.957266][T10563] ? mark_held_locks+0xf0/0xf0 [ 289.957283][T10563] ? vmx_handle_exit+0x1640/0x1640 [ 289.957311][T10563] vcpu_enter_guest+0x3c8d/0x60b0 [ 289.957329][T10563] ? __mutex_lock+0x3cd/0x1310 11:46:39 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfl\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:39 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(0x0, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:39 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140), 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 289.957353][T10563] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 289.967228][T10563] ? emulator_read_emulated+0x50/0x50 [ 289.967248][T10563] ? lock_acquire+0x16f/0x3f0 [ 289.967264][T10563] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 289.967285][T10563] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 289.967304][T10563] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 290.008928][T10563] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 290.013617][T10563] ? kvm_vcpu_block+0xcd0/0xcd0 [ 290.018475][T10563] ? mark_held_locks+0xf0/0xf0 [ 290.023240][T10563] ? proc_fail_nth_write+0x9d/0x1e0 [ 290.028445][T10563] ? proc_cwd_link+0x1d0/0x1d0 [ 290.033222][T10563] ? __f_unlock_pos+0x19/0x20 [ 290.037916][T10563] ? find_held_lock+0x35/0x130 [ 290.042700][T10563] ? __fget+0x340/0x540 [ 290.046871][T10563] ? find_held_lock+0x35/0x130 [ 290.051670][T10563] ? __fget+0x340/0x540 [ 290.055840][T10563] ? kvm_vcpu_block+0xcd0/0xcd0 [ 290.060686][T10563] do_vfs_ioctl+0xd6e/0x1390 [ 290.065256][T10563] ? ioctl_preallocate+0x210/0x210 [ 290.070360][T10563] ? __fget+0x367/0x540 [ 290.074512][T10563] ? ksys_dup3+0x3e0/0x3e0 [ 290.078919][T10563] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.085143][T10563] ? fput+0x128/0x1a0 [ 290.089138][T10563] ? security_file_ioctl+0x93/0xc0 [ 290.094248][T10563] ksys_ioctl+0xab/0xd0 [ 290.098399][T10563] __x64_sys_ioctl+0x73/0xb0 [ 290.102978][T10563] do_syscall_64+0x103/0x610 [ 290.107578][T10563] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.113472][T10563] RIP: 0033:0x458089 [ 290.117347][T10563] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.136945][T10563] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.145339][T10563] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 290.153287][T10563] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 290.161239][T10563] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 290.169189][T10563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 290.177153][T10563] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:39 executing program 3 (fault-call:7 fault-nth:33): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfi\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:40 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140), 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x807, &(0x7f0000000080)="0af70b2551e884e022da559e57375850132489ab28baac6a06b070ff35d109e5c5801fa90f11da870da1bc48ea69173dd6362e06eb6a2eddaaebdc3c08ca04bb8ae98b0b86fcf1810dd0678f01867e6f0241daa52eaa8644ef9bf906a2fb54f40eb2635b88bd62c096e092d13c3df25fea773a89d9b361f81cd37440b9ec3f4d50a61991c8d78ce844e5549b") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0xa, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}) dup2(r0, r1) 11:46:40 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfc\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 290.468104][T10597] FAULT_INJECTION: forcing a failure. [ 290.468104][T10597] name failslab, interval 1, probability 0, space 0, times 0 [ 290.491919][T10597] CPU: 0 PID: 10597 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 290.500955][T10597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.511010][T10597] Call Trace: [ 290.514302][T10597] dump_stack+0x172/0x1f0 [ 290.518633][T10597] should_fail.cold+0xa/0x15 [ 290.523223][T10597] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 290.529012][T10597] ? lock_downgrade+0x880/0x880 [ 290.533846][T10597] ? ___might_sleep+0x163/0x280 [ 290.538691][T10597] __should_failslab+0x121/0x190 [ 290.543638][T10597] should_failslab+0x9/0x14 [ 290.548141][T10597] kmem_cache_alloc+0x2be/0x710 [ 290.552979][T10597] ? __lock_acquire+0x54b/0x4790 [ 290.557928][T10597] mmu_topup_memory_caches+0x97/0x490 [ 290.563297][T10597] kvm_mmu_load+0x21/0x1200 [ 290.567782][T10597] ? mark_held_locks+0xf0/0xf0 [ 290.572537][T10597] ? vmx_handle_exit+0x1640/0x1640 [ 290.577665][T10597] vcpu_enter_guest+0x3c8d/0x60b0 [ 290.582689][T10597] ? __mutex_lock+0x3cd/0x1310 [ 290.587447][T10597] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 290.592281][T10597] ? emulator_read_emulated+0x50/0x50 [ 290.597638][T10597] ? lock_acquire+0x16f/0x3f0 [ 290.602296][T10597] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 290.607999][T10597] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 290.613522][T10597] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 290.619277][T10597] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 290.623951][T10597] ? kvm_vcpu_block+0xcd0/0xcd0 [ 290.628783][T10597] ? mark_held_locks+0xf0/0xf0 [ 290.633525][T10597] ? proc_fail_nth_write+0x9d/0x1e0 [ 290.638708][T10597] ? proc_cwd_link+0x1d0/0x1d0 [ 290.643466][T10597] ? __f_unlock_pos+0x19/0x20 [ 290.648127][T10597] ? find_held_lock+0x35/0x130 [ 290.652872][T10597] ? __fget+0x340/0x540 [ 290.657006][T10597] ? find_held_lock+0x35/0x130 [ 290.661761][T10597] ? __fget+0x340/0x540 [ 290.665901][T10597] ? kvm_vcpu_block+0xcd0/0xcd0 [ 290.670759][T10597] do_vfs_ioctl+0xd6e/0x1390 [ 290.675330][T10597] ? ioctl_preallocate+0x210/0x210 [ 290.680423][T10597] ? __fget+0x367/0x540 [ 290.684560][T10597] ? ksys_dup3+0x3e0/0x3e0 [ 290.688958][T10597] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.695183][T10597] ? fput+0x128/0x1a0 [ 290.699159][T10597] ? security_file_ioctl+0x93/0xc0 [ 290.704284][T10597] ksys_ioctl+0xab/0xd0 [ 290.708437][T10597] __x64_sys_ioctl+0x73/0xb0 [ 290.713008][T10597] do_syscall_64+0x103/0x610 [ 290.717581][T10597] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.723452][T10597] RIP: 0033:0x458089 [ 290.727330][T10597] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.746919][T10597] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.755314][T10597] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 290.763270][T10597] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 290.771234][T10597] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 290.779200][T10597] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 290.787152][T10597] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:40 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140), 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = dup3(r0, r0, 0x80000) write$P9_RSTATFS(r1, &(0x7f0000000080)={0x43, 0x9, 0x2, {0x4a84abdb, 0xffffffffffffffe1, 0x9, 0xfffffffffffffff9, 0x1, 0x3, 0x9, 0x21e4ea20, 0x8000}}, 0x43) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = dup2(r2, r0) r4 = fcntl$getown(r0, 0x9) fcntl$setownex(r3, 0xf, &(0x7f0000000000)={0x0, r4}) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="18010000", @ANYRES16=r5, @ANYBLOB="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"], 0x118}}, 0x50) mq_timedsend(r1, &(0x7f0000000500)="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", 0x350, 0xd665, 0x0) 11:46:40 executing program 3 (fault-call:7 fault-nth:34): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x420000, 0x0) ioctl$VIDIOC_STREAMOFF(r1, 0x40045613, &(0x7f0000000080)=0xffffffffffffff80) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x417ffe, 0x0) dup2(r0, r2) 11:46:40 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfo\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:40 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:40 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfl\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 291.142689][T10645] FAULT_INJECTION: forcing a failure. [ 291.142689][T10645] name failslab, interval 1, probability 0, space 0, times 0 [ 291.168691][T10645] CPU: 1 PID: 10645 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 291.177728][T10645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.187775][T10645] Call Trace: [ 291.191075][T10645] dump_stack+0x172/0x1f0 [ 291.195406][T10645] should_fail.cold+0xa/0x15 [ 291.199981][T10645] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 291.205784][T10645] ? lock_downgrade+0x880/0x880 [ 291.210629][T10645] ? ___might_sleep+0x163/0x280 [ 291.215462][T10645] __should_failslab+0x121/0x190 [ 291.220394][T10645] should_failslab+0x9/0x14 [ 291.224915][T10645] kmem_cache_alloc+0x2be/0x710 [ 291.229762][T10645] ? __lock_acquire+0x54b/0x4790 [ 291.234694][T10645] mmu_topup_memory_caches+0x97/0x490 [ 291.240069][T10645] kvm_mmu_load+0x21/0x1200 [ 291.244556][T10645] ? mark_held_locks+0xf0/0xf0 [ 291.249300][T10645] ? vmx_handle_exit+0x1640/0x1640 [ 291.254399][T10645] vcpu_enter_guest+0x3c8d/0x60b0 [ 291.259405][T10645] ? __mutex_lock+0x3cd/0x1310 [ 291.264155][T10645] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 291.269002][T10645] ? emulator_read_emulated+0x50/0x50 [ 291.274357][T10645] ? lock_acquire+0x16f/0x3f0 [ 291.279027][T10645] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 291.284755][T10645] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 291.290308][T10645] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 291.296028][T10645] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 291.300717][T10645] ? kvm_vcpu_block+0xcd0/0xcd0 [ 291.305556][T10645] ? mark_held_locks+0xf0/0xf0 [ 291.310299][T10645] ? proc_fail_nth_write+0x9d/0x1e0 [ 291.315476][T10645] ? proc_cwd_link+0x1d0/0x1d0 [ 291.320232][T10645] ? __f_unlock_pos+0x19/0x20 [ 291.324898][T10645] ? find_held_lock+0x35/0x130 [ 291.329673][T10645] ? __fget+0x340/0x540 [ 291.333825][T10645] ? find_held_lock+0x35/0x130 [ 291.338589][T10645] ? __fget+0x340/0x540 [ 291.342733][T10645] ? kvm_vcpu_block+0xcd0/0xcd0 [ 291.347565][T10645] do_vfs_ioctl+0xd6e/0x1390 [ 291.352140][T10645] ? ioctl_preallocate+0x210/0x210 [ 291.357232][T10645] ? __fget+0x367/0x540 [ 291.361370][T10645] ? ksys_dup3+0x3e0/0x3e0 [ 291.365768][T10645] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 291.371990][T10645] ? fput+0x128/0x1a0 [ 291.375959][T10645] ? security_file_ioctl+0x93/0xc0 [ 291.381050][T10645] ksys_ioctl+0xab/0xd0 [ 291.385204][T10645] __x64_sys_ioctl+0x73/0xb0 [ 291.389801][T10645] do_syscall_64+0x103/0x610 [ 291.394383][T10645] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 291.400258][T10645] RIP: 0033:0x458089 [ 291.404137][T10645] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 291.423731][T10645] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 291.432127][T10645] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 11:46:41 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x8, 0x121201) dup2(r0, r0) 11:46:41 executing program 3 (fault-call:7 fault-nth:35): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 291.440077][T10645] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 291.448033][T10645] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 291.455987][T10645] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 291.463941][T10645] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0x7fffffff, 0x7, 0x1, 0x1, 0x8, 0xffffffffffffffe1}) ioctl(r0, 0x0, &(0x7f0000000080)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x10000, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x3, 0x100) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000100)={0x100000000, 0x7, 0x8000}) dup2(r0, r1) 11:46:41 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfd\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:41 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:41 executing program 2: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x1, 0x4000) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000080)={'security\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000100)=0x4, 0x2) dup2(r2, r1) [ 291.849176][T10673] FAULT_INJECTION: forcing a failure. [ 291.849176][T10673] name failslab, interval 1, probability 0, space 0, times 0 [ 291.868072][T10673] CPU: 1 PID: 10673 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 291.877117][T10673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.887174][T10673] Call Trace: [ 291.890474][T10673] dump_stack+0x172/0x1f0 [ 291.894807][T10673] should_fail.cold+0xa/0x15 [ 291.899382][T10673] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 291.905184][T10673] ? lock_downgrade+0x880/0x880 [ 291.910036][T10673] ? ___might_sleep+0x163/0x280 [ 291.914871][T10673] __should_failslab+0x121/0x190 [ 291.919804][T10673] should_failslab+0x9/0x14 [ 291.924291][T10673] kmem_cache_alloc+0x2be/0x710 [ 291.929129][T10673] mmu_topup_memory_caches+0x97/0x490 [ 291.934483][T10673] kvm_mmu_load+0x21/0x1200 [ 291.938969][T10673] ? vcpu_enter_guest+0x2a33/0x60b0 [ 291.944156][T10673] ? lockdep_hardirqs_on+0x418/0x5d0 [ 291.949429][T10673] vcpu_enter_guest+0x3c8d/0x60b0 [ 291.954439][T10673] ? emulator_read_emulated+0x50/0x50 [ 291.959792][T10673] ? lock_acquire+0x16f/0x3f0 [ 291.964449][T10673] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 291.970152][T10673] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 291.975686][T10673] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 291.981413][T10673] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 291.986128][T10673] ? kvm_vcpu_block+0xcd0/0xcd0 [ 291.990972][T10673] ? mark_held_locks+0xf0/0xf0 [ 291.995730][T10673] ? proc_fail_nth_write+0x9d/0x1e0 [ 292.000932][T10673] ? proc_cwd_link+0x1d0/0x1d0 [ 292.005710][T10673] ? __f_unlock_pos+0x19/0x20 [ 292.010397][T10673] ? find_held_lock+0x35/0x130 [ 292.015153][T10673] ? __fget+0x340/0x540 [ 292.019297][T10673] ? find_held_lock+0x35/0x130 [ 292.024058][T10673] ? __fget+0x340/0x540 [ 292.028337][T10673] ? kvm_vcpu_block+0xcd0/0xcd0 [ 292.033172][T10673] do_vfs_ioctl+0xd6e/0x1390 [ 292.037747][T10673] ? ioctl_preallocate+0x210/0x210 [ 292.042860][T10673] ? __fget+0x367/0x540 [ 292.047015][T10673] ? ksys_dup3+0x3e0/0x3e0 [ 292.051428][T10673] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.057663][T10673] ? fput+0x128/0x1a0 [ 292.061659][T10673] ? security_file_ioctl+0x93/0xc0 [ 292.066771][T10673] ksys_ioctl+0xab/0xd0 [ 292.070933][T10673] __x64_sys_ioctl+0x73/0xb0 [ 292.075521][T10673] do_syscall_64+0x103/0x610 [ 292.080097][T10673] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.085968][T10673] RIP: 0033:0x458089 [ 292.089841][T10673] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.109426][T10673] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.117819][T10673] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 292.125771][T10673] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 292.133723][T10673] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 292.141721][T10673] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:41 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:41 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfp\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 292.149686][T10673] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x200, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) perf_event_open(&(0x7f00000000c0)={0x7, 0x70, 0x100, 0x0, 0x7, 0x7, 0x0, 0x2, 0x3, 0x6, 0x8000, 0x4, 0xffffffff80000001, 0x7, 0x10000, 0x1a8, 0x40, 0x7709, 0x100, 0x1, 0x9, 0xffff, 0x1, 0x6, 0x81, 0x80, 0x0, 0x6, 0x0, 0x5, 0x7, 0x9, 0xbe, 0x5, 0x80, 0x3f, 0x8, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x80000000, 0x2}, 0x28001, 0x8, 0x2, 0x7, 0x40, 0x9, 0x100000001}, r2, 0x6, 0xffffffffffffffff, 0x1) r3 = dup2(r0, r1) ioctl$RTC_IRQP_READ(r3, 0x8008700b, &(0x7f0000000140)) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r3, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r4, 0x300, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) 11:46:41 executing program 3 (fault-call:7 fault-nth:36): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:42 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfo\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) setsockopt$inet_sctp6_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000000)=0x877, 0xfffffffffffffe63) setsockopt$packet_int(r2, 0x107, 0x1f, &(0x7f0000000080)=0x8, 0x4) [ 292.480323][ C1] net_ratelimit: 22 callbacks suppressed [ 292.480332][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 292.491772][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 292.533013][T10719] FAULT_INJECTION: forcing a failure. [ 292.533013][T10719] name failslab, interval 1, probability 0, space 0, times 0 [ 292.549884][T10719] CPU: 0 PID: 10719 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 292.558941][T10719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.569005][T10719] Call Trace: [ 292.572315][T10719] dump_stack+0x172/0x1f0 [ 292.572344][T10719] should_fail.cold+0xa/0x15 [ 292.572369][T10719] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 292.581265][T10719] ? lock_downgrade+0x880/0x880 [ 292.581284][T10719] ? ___might_sleep+0x163/0x280 [ 292.581304][T10719] __should_failslab+0x121/0x190 [ 292.581324][T10719] should_failslab+0x9/0x14 [ 292.581345][T10719] kmem_cache_alloc+0x2be/0x710 [ 292.611056][T10719] mmu_topup_memory_caches+0x97/0x490 [ 292.616449][T10719] kvm_mmu_load+0x21/0x1200 [ 292.620955][T10719] ? mark_held_locks+0xf0/0xf0 [ 292.625723][T10719] ? vmx_handle_exit+0x1640/0x1640 [ 292.630854][T10719] vcpu_enter_guest+0x3c8d/0x60b0 [ 292.635890][T10719] ? __mutex_lock+0x3cd/0x1310 [ 292.640677][T10719] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 292.645544][T10719] ? emulator_read_emulated+0x50/0x50 [ 292.650939][T10719] ? lock_acquire+0x16f/0x3f0 [ 292.655620][T10719] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 292.661347][T10719] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 292.666896][T10719] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 292.672642][T10719] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 292.677331][T10719] ? kvm_vcpu_block+0xcd0/0xcd0 [ 292.682192][T10719] ? mark_held_locks+0xf0/0xf0 [ 292.686962][T10719] ? proc_fail_nth_write+0x9d/0x1e0 [ 292.692174][T10719] ? proc_cwd_link+0x1d0/0x1d0 [ 292.696954][T10719] ? __f_unlock_pos+0x19/0x20 [ 292.701655][T10719] ? find_held_lock+0x35/0x130 [ 292.706449][T10719] ? __fget+0x340/0x540 [ 292.710800][T10719] ? find_held_lock+0x35/0x130 [ 292.715575][T10719] ? __fget+0x340/0x540 [ 292.719746][T10719] ? kvm_vcpu_block+0xcd0/0xcd0 [ 292.724603][T10719] do_vfs_ioctl+0xd6e/0x1390 [ 292.729204][T10719] ? ioctl_preallocate+0x210/0x210 [ 292.734316][T10719] ? __fget+0x367/0x540 [ 292.738477][T10719] ? ksys_dup3+0x3e0/0x3e0 [ 292.742898][T10719] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.749157][T10719] ? fput+0x128/0x1a0 [ 292.753171][T10719] ? security_file_ioctl+0x93/0xc0 [ 292.758293][T10719] ksys_ioctl+0xab/0xd0 [ 292.762456][T10719] __x64_sys_ioctl+0x73/0xb0 [ 292.767060][T10719] do_syscall_64+0x103/0x610 [ 292.771662][T10719] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.777560][T10719] RIP: 0033:0x458089 11:46:42 executing program 2: r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x401, 0x100) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x200, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000180)={r1}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x40001, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000200)=0xc) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000240)={[], 0x7fffffff, 0x8, 0x0, 0x7ff, 0x80000000, r5}) ioctl$TIOCMGET(r4, 0x5415, &(0x7f0000000080)) dup2(r3, r3) syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) getsockopt$EBT_SO_GET_INFO(r4, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00'}, &(0x7f0000000340)=0x78) socket$inet(0x2, 0x80005, 0x7) 11:46:42 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfi\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 292.781461][T10719] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.781470][T10719] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.781486][T10719] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 292.781495][T10719] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 292.781504][T10719] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 11:46:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:42 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfu\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 292.781514][T10719] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 292.781523][T10719] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 292.880329][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 292.886195][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:42 executing program 3 (fault-call:7 fault-nth:37): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") write(r0, &(0x7f0000000000)="acd9", 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000640)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f00000010c0)=ANY=[@ANYBLOB="4d820900006bdf2ef93b040000", @ANYRES16=r2, @ANYBLOB="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"], 0x67c}, 0x1, 0x0, 0x0, 0x48000}, 0x4040080) r3 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x9, 0x62840) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r3, 0x800448d3, &(0x7f0000000180)={{0x9, 0x10001, 0x1, 0x2, 0x9, 0x89}, 0x1ff, 0x80000001, 0x2, 0x4, 0x101, "8d30001f828198d1d959464736ff9cb53a40b617c80f43d105c4864ca32f0dde92d8d8564f843157f4bf8723ec7d13bf7b97f4ba2ad741e2eb60cfd3176ed1fa272ed8fc5eef89725b7f0e9de86887ee2af1630378f282f601786d165896764aefaf129bcc8195ae15cb6297d66f2e87ce286382784bee3cbd26c22455c1b2ea"}) r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r4) 11:46:42 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfl\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 293.078929][T10765] FAULT_INJECTION: forcing a failure. [ 293.078929][T10765] name failslab, interval 1, probability 0, space 0, times 0 [ 293.140601][T10765] CPU: 1 PID: 10765 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 293.149673][T10765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.159745][T10765] Call Trace: [ 293.163051][T10765] dump_stack+0x172/0x1f0 [ 293.167395][T10765] should_fail.cold+0xa/0x15 [ 293.172028][T10765] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 293.177852][T10765] ? lock_downgrade+0x880/0x880 [ 293.182711][T10765] ? ___might_sleep+0x163/0x280 [ 293.187563][T10765] __should_failslab+0x121/0x190 [ 293.192496][T10765] should_failslab+0x9/0x14 [ 293.197004][T10765] kmem_cache_alloc+0x2be/0x710 [ 293.200322][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 293.201859][T10765] ? __lock_acquire+0x54b/0x4790 [ 293.201888][T10765] mmu_topup_memory_caches+0x97/0x490 [ 293.201918][T10765] kvm_mmu_load+0x21/0x1200 [ 293.201937][T10765] ? mark_held_locks+0xf0/0xf0 [ 293.207708][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 293.212572][T10765] ? vmx_handle_exit+0x1640/0x1640 [ 293.212598][T10765] vcpu_enter_guest+0x3c8d/0x60b0 [ 293.212615][T10765] ? __mutex_lock+0x3cd/0x1310 [ 293.212638][T10765] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 293.252619][T10765] ? emulator_read_emulated+0x50/0x50 [ 293.257974][T10765] ? lock_acquire+0x16f/0x3f0 [ 293.262635][T10765] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 293.268339][T10765] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 293.273878][T10765] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 293.279624][T10765] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 293.284305][T10765] ? kvm_vcpu_block+0xcd0/0xcd0 [ 293.289138][T10765] ? mark_held_locks+0xf0/0xf0 [ 293.293892][T10765] ? proc_fail_nth_write+0x9d/0x1e0 [ 293.299093][T10765] ? proc_cwd_link+0x1d0/0x1d0 [ 293.303838][T10765] ? __f_unlock_pos+0x19/0x20 [ 293.308495][T10765] ? find_held_lock+0x35/0x130 [ 293.313238][T10765] ? __fget+0x340/0x540 [ 293.317374][T10765] ? find_held_lock+0x35/0x130 [ 293.322116][T10765] ? __fget+0x340/0x540 [ 293.326260][T10765] ? kvm_vcpu_block+0xcd0/0xcd0 [ 293.331095][T10765] do_vfs_ioctl+0xd6e/0x1390 [ 293.335676][T10765] ? ioctl_preallocate+0x210/0x210 [ 293.340781][T10765] ? __fget+0x367/0x540 [ 293.344958][T10765] ? ksys_dup3+0x3e0/0x3e0 [ 293.349382][T10765] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 293.355619][T10765] ? fput+0x128/0x1a0 [ 293.359597][T10765] ? security_file_ioctl+0x93/0xc0 [ 293.364695][T10765] ksys_ioctl+0xab/0xd0 [ 293.368837][T10765] __x64_sys_ioctl+0x73/0xb0 [ 293.373411][T10765] do_syscall_64+0x103/0x610 [ 293.377987][T10765] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 293.383857][T10765] RIP: 0033:0x458089 [ 293.387735][T10765] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 293.407322][T10765] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.415724][T10765] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 293.423694][T10765] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 293.431674][T10765] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 293.439630][T10765] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 293.447584][T10765] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 293.680474][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 293.686338][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 293.692181][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 293.697929][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfp\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:43 executing program 3 (fault-call:7 fault-nth:38): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfx\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfo\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) creat(&(0x7f0000000000)='./file0\x00', 0xa0) [ 293.927276][T10803] FAULT_INJECTION: forcing a failure. [ 293.927276][T10803] name failslab, interval 1, probability 0, space 0, times 0 [ 293.951816][T10803] CPU: 1 PID: 10803 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 293.960885][T10803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.970958][T10803] Call Trace: [ 293.974253][T10803] dump_stack+0x172/0x1f0 [ 293.978606][T10803] should_fail.cold+0xa/0x15 [ 293.983185][T10803] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 293.989000][T10803] ? lock_downgrade+0x880/0x880 [ 293.993861][T10803] ? ___might_sleep+0x163/0x280 [ 293.998738][T10803] __should_failslab+0x121/0x190 [ 294.003692][T10803] should_failslab+0x9/0x14 [ 294.008201][T10803] kmem_cache_alloc+0x2be/0x710 [ 294.013075][T10803] mmu_topup_memory_caches+0x97/0x490 [ 294.018462][T10803] kvm_mmu_load+0x21/0x1200 [ 294.022972][T10803] ? mark_held_locks+0xf0/0xf0 [ 294.027739][T10803] ? vmx_handle_exit+0x1640/0x1640 [ 294.027768][T10803] vcpu_enter_guest+0x3c8d/0x60b0 [ 294.027785][T10803] ? __mutex_lock+0x3cd/0x1310 [ 294.027810][T10803] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 294.037971][T10803] ? emulator_read_emulated+0x50/0x50 [ 294.037991][T10803] ? lock_acquire+0x16f/0x3f0 [ 294.038006][T10803] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 294.038026][T10803] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 294.057635][T10803] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 294.057671][T10803] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 294.057693][T10803] ? kvm_vcpu_block+0xcd0/0xcd0 [ 294.079327][T10803] ? mark_held_locks+0xf0/0xf0 [ 294.079344][T10803] ? proc_fail_nth_write+0x9d/0x1e0 [ 294.079359][T10803] ? proc_cwd_link+0x1d0/0x1d0 [ 294.079377][T10803] ? __f_unlock_pos+0x19/0x20 [ 294.079396][T10803] ? find_held_lock+0x35/0x130 [ 294.108355][T10803] ? __fget+0x340/0x540 [ 294.112523][T10803] ? find_held_lock+0x35/0x130 [ 294.117298][T10803] ? __fget+0x340/0x540 [ 294.121471][T10803] ? kvm_vcpu_block+0xcd0/0xcd0 11:46:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) getpeername$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0}, &(0x7f00000000c0)=0x14) sendmsg$nl_route_sched(r2, &(0x7f00000006c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200002}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=@deltclass={0x538, 0x29, 0x500, 0x70bd27, 0x25dfdbfd, {0x0, r3, {0x2, 0xb}, {0x10, 0xfff1}, {0xd, 0x7}}, [@TCA_RATE={0x8, 0x5, {0xf2, 0x1}}, @tclass_kind_options=@c_atm={{0x8, 0x1, 'atm\x00'}, {0x68, 0x2, [@TCA_ATM_HDR={0x30, 0x3, "b0b3f5ed8d0d35f375dc7c84840deb48b496ec5c2c5c96759ed3e6fdcd3382dd9a9552f29bfb57d17864"}, @TCA_ATM_EXCESS={0x8, 0x4, {0xf, 0xffe8}}, @TCA_ATM_HDR={0x24, 0x3, "9649969e47ca169dcb1ed3e3ff312536ed30472fb777fccf41a9882d33"}, @TCA_ATM_HDR={0x8, 0x3, "28dcc0"}]}}, @tclass_kind_options=@c_dsmark={{0xc, 0x1, 'dsmark\x00'}, {0xc, 0x2, @TCA_DSMARK_VALUE={0x8, 0x5, 0xe372}}}, @tclass_kind_options=@c_htb={{0x8, 0x1, 'htb\x00'}, {0x444, 0x2, [@TCA_HTB_RATE64={0xc, 0x6, 0x240000}, @TCA_HTB_RTAB={0x404, 0x4, [0x1, 0x6, 0x100000001, 0x5, 0x3, 0x100000001, 0x101, 0x0, 0x4, 0x3ff, 0x0, 0xe98, 0x2, 0x345d, 0x0, 0x10000000000, 0x539, 0xffff, 0x2, 0x5, 0x0, 0x8, 0x7f, 0x1f, 0xe3bd, 0xfffffffffffffff8, 0xfffffffffffffffb, 0x5, 0x5, 0x8, 0x3a6, 0x3, 0x3, 0x7ff, 0x101, 0x1, 0x3ff, 0x3f, 0x0, 0x0, 0x0, 0xfffffffffffff264, 0x6, 0xb517, 0x5, 0x101, 0x9, 0xffffffffffffff01, 0x7, 0x7ff, 0x8000, 0x6, 0x80, 0x0, 0x6, 0x3, 0x5, 0xfffffffffffffffc, 0x6, 0x401, 0x9, 0x3f, 0x1, 0x1, 0x8, 0x80000000, 0x7, 0x8, 0x7, 0x3, 0x6, 0x1, 0x7, 0x401, 0x9, 0x1, 0x1ff, 0x0, 0x40, 0x2000000000, 0x849, 0x7, 0xfffffffffffffc01, 0x1, 0x10001, 0x0, 0x7, 0x400000000, 0x0, 0x3, 0x7, 0x2, 0x5, 0x7f, 0x8, 0xfff, 0xb114, 0x7ff, 0x2, 0x7ff, 0x504f, 0xfffffffffffffffd, 0x9, 0x4, 0x5cd, 0x1c7b, 0x100000000, 0x26, 0xffffffff, 0x3, 0x30, 0x994, 0x7, 0x1f, 0x2a, 0xfffffffffdca63fb, 0x8, 0x0, 0xe, 0x40, 0x187, 0x3f, 0x2, 0x8, 0x0, 0x1, 0x0, 0x100000000, 0xfff, 0x100000001, 0x100000001, 0x3, 0x101, 0x7fffffff, 0x81, 0x4c4, 0x1000, 0x7, 0x3f, 0xfffffffffffffff9, 0xfffffffffffffe01, 0x0, 0xcf9, 0x80, 0xff, 0xfcc6, 0x7, 0x0, 0x9, 0x1, 0x5, 0x0, 0x9, 0x7, 0x5, 0x1ff, 0x7, 0x0, 0x6, 0x8, 0x6, 0x5c, 0x3, 0x7, 0x1ff, 0xba13, 0xbdb, 0xffffffffffffb14f, 0x7, 0xffffffffffffff00, 0x1, 0x7c, 0x20, 0x0, 0x4, 0xfffffffffffffffb, 0xfff, 0x5fb, 0x100000000, 0x2, 0x1b, 0x1f, 0x5, 0x0, 0x9, 0x0, 0x6, 0x9, 0x200, 0x0, 0x7a31, 0x4, 0x1, 0xffff, 0x0, 0x0, 0x5, 0xffffffffffffff7f, 0x7, 0x4, 0x6, 0x6, 0x2, 0x4, 0x8, 0x80000001, 0x20, 0x8, 0x2, 0x5a8, 0x10001, 0x0, 0x6, 0x1000, 0x3c, 0x1, 0x7, 0x7, 0x4, 0x2, 0x800, 0x3, 0x7ff, 0x8, 0x8, 0x8, 0xffffffffffffff56, 0x9, 0xffff, 0x17e6e71a, 0x659, 0xc2, 0x7, 0x27d, 0x3f, 0x4, 0x101, 0x81, 0x1, 0x726, 0x7, 0x1c0000000000000, 0x100000001, 0x8000, 0x80000001, 0x1, 0x80, 0x1806, 0x2, 0x1, 0x8, 0xf3c, 0x1, 0x1, 0x3, 0x7e0]}, @TCA_HTB_PARMS={0x30, 0x1, {{0xb9, 0x2, 0x8, 0x7, 0x800}, {0x3, 0x1, 0x4, 0x100000001, 0xc4ca}, 0x8000, 0x2e, 0x2, 0x8, 0x200}}]}}, @tclass_kind_options=@c_hfsc={{0xc, 0x1, 'hfsc\x00'}, {0x14, 0x2, [@TCA_HFSC_RSC={0x10, 0x1, {0x7f, 0x7fffffff, 0x2}}]}}, @TCA_RATE={0x8, 0x5, {0x81, 0x7}}, @TCA_RATE={0x8, 0x5, {0xfffffffffffffff8, 0x9}}, @TCA_RATE={0x8, 0x5, {0x3c, 0xf447}}]}, 0x538}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) [ 294.126334][T10803] do_vfs_ioctl+0xd6e/0x1390 [ 294.130942][T10803] ? ioctl_preallocate+0x210/0x210 [ 294.136066][T10803] ? __fget+0x367/0x540 [ 294.140238][T10803] ? ksys_dup3+0x3e0/0x3e0 [ 294.144664][T10803] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 294.150926][T10803] ? fput+0x128/0x1a0 [ 294.154933][T10803] ? security_file_ioctl+0x93/0xc0 [ 294.160050][T10803] ksys_ioctl+0xab/0xd0 [ 294.164225][T10803] __x64_sys_ioctl+0x73/0xb0 [ 294.168811][T10803] do_syscall_64+0x103/0x610 [ 294.173390][T10803] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.179262][T10803] RIP: 0033:0x458089 [ 294.183149][T10803] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.202757][T10803] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 294.211154][T10803] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 294.219110][T10803] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 294.227076][T10803] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 294.235027][T10803] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 294.242977][T10803] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:43 executing program 3 (fault-call:7 fault-nth:39): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:44 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) fgetxattr(r0, &(0x7f0000000400)=@known='system.posix_acl_access\x00', &(0x7f0000000440)=""/101, 0x65) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x240, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='t\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000428bd7000fedbdf250500000008000400050000000800060004000000080005000100000048000200080008004700000014000100000000000000000000000000000000010800040005000000080002004e2300000800070001000000080002004e240000080002004e220000"], 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x20004000) setsockopt$netlink_NETLINK_CAP_ACK(r2, 0x10e, 0xa, &(0x7f00000003c0)=0x2, 0x4) dup2(r0, r1) r4 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb) setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f00000004c0)=0x8e4e, 0x4) r5 = add_key$keyring(&(0x7f0000000340)='keyring\x00', &(0x7f0000000380)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$search(0xa, r4, &(0x7f00000002c0)='big_key\x00', &(0x7f0000000300)={'syz', 0x3}, r5) 11:46:44 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x02', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:44 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfu\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 294.514632][T10842] FAULT_INJECTION: forcing a failure. [ 294.514632][T10842] name failslab, interval 1, probability 0, space 0, times 0 [ 294.527449][T10842] CPU: 0 PID: 10842 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 294.536465][T10842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.546525][T10842] Call Trace: [ 294.549823][T10842] dump_stack+0x172/0x1f0 [ 294.554178][T10842] should_fail.cold+0xa/0x15 [ 294.558788][T10842] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 294.564594][T10842] ? lock_downgrade+0x880/0x880 [ 294.569453][T10842] ? ___might_sleep+0x163/0x280 [ 294.574292][T10842] __should_failslab+0x121/0x190 [ 294.579216][T10842] should_failslab+0x9/0x14 [ 294.583727][T10842] kmem_cache_alloc+0x2be/0x710 [ 294.588576][T10842] mmu_topup_memory_caches+0x97/0x490 [ 294.593941][T10842] kvm_mmu_load+0x21/0x1200 [ 294.598430][T10842] ? vcpu_enter_guest+0x2a33/0x60b0 [ 294.603609][T10842] ? lockdep_hardirqs_on+0x418/0x5d0 [ 294.608883][T10842] vcpu_enter_guest+0x3c8d/0x60b0 [ 294.613927][T10842] ? emulator_read_emulated+0x50/0x50 [ 294.619298][T10842] ? lock_acquire+0x16f/0x3f0 [ 294.623963][T10842] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 294.629669][T10842] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 294.635206][T10842] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 294.640923][T10842] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 294.645585][T10842] ? kvm_vcpu_block+0xcd0/0xcd0 [ 294.650430][T10842] ? mark_held_locks+0xf0/0xf0 [ 294.655196][T10842] ? proc_fail_nth_write+0x9d/0x1e0 [ 294.660403][T10842] ? proc_cwd_link+0x1d0/0x1d0 [ 294.665177][T10842] ? __f_unlock_pos+0x19/0x20 [ 294.669850][T10842] ? find_held_lock+0x35/0x130 [ 294.674598][T10842] ? __fget+0x340/0x540 [ 294.678734][T10842] ? find_held_lock+0x35/0x130 [ 294.683478][T10842] ? __fget+0x340/0x540 [ 294.687636][T10842] ? kvm_vcpu_block+0xcd0/0xcd0 [ 294.692626][T10842] do_vfs_ioctl+0xd6e/0x1390 [ 294.697217][T10842] ? ioctl_preallocate+0x210/0x210 [ 294.702319][T10842] ? __fget+0x367/0x540 [ 294.706830][T10842] ? ksys_dup3+0x3e0/0x3e0 [ 294.711265][T10842] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 294.717510][T10842] ? fput+0x128/0x1a0 [ 294.721483][T10842] ? security_file_ioctl+0x93/0xc0 [ 294.726596][T10842] ksys_ioctl+0xab/0xd0 [ 294.730738][T10842] __x64_sys_ioctl+0x73/0xb0 [ 294.735313][T10842] do_syscall_64+0x103/0x610 [ 294.739892][T10842] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.745773][T10842] RIP: 0033:0x458089 [ 294.749646][T10842] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.769233][T10842] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 294.777628][T10842] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 294.785584][T10842] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 294.793741][T10842] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 294.801694][T10842] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 294.809655][T10842] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:44 executing program 3 (fault-call:7 fault-nth:40): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:44 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x2, 0x0) r2 = dup2(r0, r1) r3 = request_key(&(0x7f0000000080)='dns_resolver\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)='/dev/ashmem\x00', 0xfffffffffffffffd) ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000140)={0x4, 0x1f, 0x800, 0x3974}) keyctl$invalidate(0x15, r3) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000340)={{0x20, 0x0, 0x0, 0xdf}, 'syz0\x00', 0x39}) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000180)={{{@in=@initdev, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}}}, &(0x7f0000000280)=0xe8) ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f00000002c0)={@dev={0xfe, 0x80, [], 0x22}, @remote, @empty, 0x3, 0x40, 0x7, 0x500, 0x3, 0x40002, r4}) 11:46:44 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfp\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 295.075890][T10864] FAULT_INJECTION: forcing a failure. [ 295.075890][T10864] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 295.092293][T10864] CPU: 1 PID: 10864 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 295.101334][T10864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.111391][T10864] Call Trace: [ 295.114704][T10864] dump_stack+0x172/0x1f0 [ 295.119059][T10864] should_fail.cold+0xa/0x15 11:46:44 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/139, 0x8b}, {&(0x7f0000000180)=""/86, 0x56}, {&(0x7f0000000200)=""/4096, 0x1000}], 0x3, 0x1a) [ 295.123659][T10864] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 295.129475][T10864] ? ___might_sleep+0x163/0x280 [ 295.134338][T10864] should_fail_alloc_page+0x50/0x60 [ 295.139543][T10864] __alloc_pages_nodemask+0x1a1/0x7e0 [ 295.144938][T10864] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 295.150677][T10864] ? check_preemption_disabled+0x48/0x290 [ 295.156401][T10864] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 295.162557][T10864] ? mmu_topup_memory_caches+0x97/0x490 [ 295.168110][T10864] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 295.174336][T10864] alloc_pages_current+0x107/0x210 [ 295.179454][T10864] __get_free_pages+0xc/0x40 [ 295.184040][T10864] mmu_topup_memory_caches+0x1e1/0x490 [ 295.189496][T10864] kvm_mmu_load+0x21/0x1200 [ 295.193983][T10864] ? mark_held_locks+0xf0/0xf0 [ 295.198731][T10864] ? vmx_handle_exit+0x1640/0x1640 [ 295.203851][T10864] vcpu_enter_guest+0x3c8d/0x60b0 [ 295.208883][T10864] ? __mutex_lock+0x3cd/0x1310 [ 295.213655][T10864] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 295.218496][T10864] ? emulator_read_emulated+0x50/0x50 [ 295.223863][T10864] ? lock_acquire+0x16f/0x3f0 [ 295.228536][T10864] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 295.234240][T10864] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 295.239769][T10864] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 295.245479][T10864] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 295.250149][T10864] ? kvm_vcpu_block+0xcd0/0xcd0 [ 295.254990][T10864] ? mark_held_locks+0xf0/0xf0 [ 295.259738][T10864] ? proc_fail_nth_write+0x9d/0x1e0 [ 295.264933][T10864] ? proc_cwd_link+0x1d0/0x1d0 [ 295.269708][T10864] ? __f_unlock_pos+0x19/0x20 [ 295.274377][T10864] ? find_held_lock+0x35/0x130 [ 295.279126][T10864] ? __fget+0x340/0x540 [ 295.283271][T10864] ? find_held_lock+0x35/0x130 [ 295.288025][T10864] ? __fget+0x340/0x540 [ 295.292179][T10864] ? kvm_vcpu_block+0xcd0/0xcd0 [ 295.297015][T10864] do_vfs_ioctl+0xd6e/0x1390 [ 295.301603][T10864] ? ioctl_preallocate+0x210/0x210 [ 295.306719][T10864] ? __fget+0x367/0x540 [ 295.310890][T10864] ? ksys_dup3+0x3e0/0x3e0 [ 295.315308][T10864] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 295.321544][T10864] ? fput+0x128/0x1a0 [ 295.325521][T10864] ? security_file_ioctl+0x93/0xc0 [ 295.330627][T10864] ksys_ioctl+0xab/0xd0 [ 295.334786][T10864] __x64_sys_ioctl+0x73/0xb0 [ 295.339360][T10864] do_syscall_64+0x103/0x610 [ 295.343960][T10864] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.349843][T10864] RIP: 0033:0x458089 [ 295.353722][T10864] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 295.373307][T10864] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 295.381706][T10864] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 295.389673][T10864] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 295.397628][T10864] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 295.405578][T10864] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 295.413528][T10864] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:46 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:46 executing program 3 (fault-call:7 fault-nth:41): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfx\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) ioctl$SIOCAX25DELFWD(r2, 0x89eb, &(0x7f0000000000)={@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}) 11:46:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x03', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:46 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfu\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") getresuid(&(0x7f00000000c0)=0x0, &(0x7f0000000180), &(0x7f00000001c0)) setuid(r1) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x200, 0x0) fcntl$addseals(r3, 0x409, 0xf) ioctl$RTC_EPOCH_READ(r3, 0x8008700d, &(0x7f0000000080)) dup2(r0, r2) ioctl$DRM_IOCTL_GET_MAGIC(r3, 0x80046402, &(0x7f0000000100)=0x2) [ 297.077352][T10912] FAULT_INJECTION: forcing a failure. [ 297.077352][T10912] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.091757][T10912] CPU: 0 PID: 10912 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 297.100797][T10912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.110855][T10912] Call Trace: [ 297.114183][T10912] dump_stack+0x172/0x1f0 [ 297.118537][T10912] should_fail.cold+0xa/0x15 [ 297.123144][T10912] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 297.128982][T10912] ? ___might_sleep+0x163/0x280 [ 297.133902][T10912] should_fail_alloc_page+0x50/0x60 [ 297.139140][T10912] __alloc_pages_nodemask+0x1a1/0x7e0 [ 297.144501][T10912] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 297.150212][T10912] ? check_preemption_disabled+0x48/0x290 [ 297.155977][T10912] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 297.162143][T10912] ? mmu_topup_memory_caches+0x97/0x490 [ 297.167686][T10912] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 297.173970][T10912] alloc_pages_current+0x107/0x210 [ 297.179081][T10912] __get_free_pages+0xc/0x40 [ 297.183678][T10912] mmu_topup_memory_caches+0x1e1/0x490 [ 297.189156][T10912] kvm_mmu_load+0x21/0x1200 [ 297.193673][T10912] ? vcpu_enter_guest+0x2a33/0x60b0 [ 297.198863][T10912] ? lockdep_hardirqs_on+0x418/0x5d0 [ 297.204131][T10912] vcpu_enter_guest+0x3c8d/0x60b0 [ 297.209156][T10912] ? emulator_read_emulated+0x50/0x50 [ 297.214587][T10912] ? lock_acquire+0x16f/0x3f0 [ 297.219244][T10912] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 297.224964][T10912] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 297.230509][T10912] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 297.236223][T10912] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 297.240946][T10912] ? kvm_vcpu_block+0xcd0/0xcd0 [ 297.245790][T10912] ? mark_held_locks+0xf0/0xf0 [ 297.250563][T10912] ? proc_fail_nth_write+0x9d/0x1e0 [ 297.255768][T10912] ? proc_cwd_link+0x1d0/0x1d0 [ 297.260560][T10912] ? __f_unlock_pos+0x19/0x20 [ 297.265233][T10912] ? find_held_lock+0x35/0x130 [ 297.269978][T10912] ? __fget+0x340/0x540 [ 297.274122][T10912] ? find_held_lock+0x35/0x130 [ 297.278870][T10912] ? __fget+0x340/0x540 [ 297.283037][T10912] ? kvm_vcpu_block+0xcd0/0xcd0 [ 297.287912][T10912] do_vfs_ioctl+0xd6e/0x1390 [ 297.292492][T10912] ? ioctl_preallocate+0x210/0x210 [ 297.297599][T10912] ? __fget+0x367/0x540 [ 297.301746][T10912] ? ksys_dup3+0x3e0/0x3e0 [ 297.306148][T10912] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 297.312377][T10912] ? fput+0x128/0x1a0 [ 297.316343][T10912] ? security_file_ioctl+0x93/0xc0 [ 297.321449][T10912] ksys_ioctl+0xab/0xd0 [ 297.325601][T10912] __x64_sys_ioctl+0x73/0xb0 [ 297.330235][T10912] do_syscall_64+0x103/0x610 [ 297.334824][T10912] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.340702][T10912] RIP: 0033:0x458089 [ 297.344594][T10912] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 297.364197][T10912] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 11:46:47 executing program 3 (fault-call:7 fault-nth:42): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 297.372604][T10912] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 297.380554][T10912] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 297.388521][T10912] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 297.396469][T10912] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 297.404422][T10912] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x02', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfx\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 297.559332][T10938] FAULT_INJECTION: forcing a failure. [ 297.559332][T10938] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.588442][T10938] CPU: 0 PID: 10938 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 297.597498][T10938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 11:46:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008915, &(0x7f0000000080)="0adc1f123c123f3188b070081ba23e42eefb9ee7c6c8b82b7d52198c492a317f57f8e254d24705a70a02a96ee702507253a5a25125a82ce1c0a73d56d8631a490b05d0809448b6b690bdd34bfa7c1ad0883957c33db5402f41d9eb4019e2e22ec8bcb86949d1cd797d64fe814034e9006603bd1da500097a0ac0a68a76f06c1bd7f49829") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) [ 297.607559][T10938] Call Trace: [ 297.610866][T10938] dump_stack+0x172/0x1f0 [ 297.615215][T10938] should_fail.cold+0xa/0x15 [ 297.619795][T10938] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 297.625593][T10938] ? ___might_sleep+0x163/0x280 [ 297.630446][T10938] should_fail_alloc_page+0x50/0x60 [ 297.635624][T10938] __alloc_pages_nodemask+0x1a1/0x7e0 [ 297.640982][T10938] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 297.646684][T10938] ? check_preemption_disabled+0x48/0x290 [ 297.652389][T10938] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 297.658525][T10938] ? mmu_topup_memory_caches+0x97/0x490 [ 297.664052][T10938] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 297.670308][T10938] alloc_pages_current+0x107/0x210 [ 297.675416][T10938] __get_free_pages+0xc/0x40 [ 297.680007][T10938] mmu_topup_memory_caches+0x1e1/0x490 [ 297.685479][T10938] kvm_mmu_load+0x21/0x1200 [ 297.689974][T10938] ? mark_held_locks+0xf0/0xf0 [ 297.694717][T10938] ? vmx_handle_exit+0x1640/0x1640 [ 297.699816][T10938] vcpu_enter_guest+0x3c8d/0x60b0 [ 297.704826][T10938] ? __mutex_lock+0x3cd/0x1310 [ 297.709590][T10938] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 297.714431][T10938] ? emulator_read_emulated+0x50/0x50 [ 297.719818][T10938] ? lock_acquire+0x16f/0x3f0 [ 297.724474][T10938] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 297.730198][T10938] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 297.735775][T10938] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 297.741487][T10938] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 297.746149][T10938] ? kvm_vcpu_block+0xcd0/0xcd0 [ 297.750990][T10938] ? mark_held_locks+0xf0/0xf0 [ 297.755736][T10938] ? proc_fail_nth_write+0x9d/0x1e0 [ 297.760931][T10938] ? proc_cwd_link+0x1d0/0x1d0 [ 297.765697][T10938] ? __f_unlock_pos+0x19/0x20 [ 297.770357][T10938] ? find_held_lock+0x35/0x130 [ 297.775111][T10938] ? __fget+0x340/0x540 [ 297.779247][T10938] ? find_held_lock+0x35/0x130 [ 297.784021][T10938] ? __fget+0x340/0x540 [ 297.788160][T10938] ? kvm_vcpu_block+0xcd0/0xcd0 [ 297.793009][T10938] do_vfs_ioctl+0xd6e/0x1390 [ 297.797581][T10938] ? ioctl_preallocate+0x210/0x210 [ 297.802691][T10938] ? __fget+0x367/0x540 [ 297.806845][T10938] ? ksys_dup3+0x3e0/0x3e0 [ 297.811244][T10938] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 297.817467][T10938] ? fput+0x128/0x1a0 [ 297.821435][T10938] ? security_file_ioctl+0x93/0xc0 [ 297.826528][T10938] ksys_ioctl+0xab/0xd0 [ 297.830671][T10938] __x64_sys_ioctl+0x73/0xb0 [ 297.835247][T10938] do_syscall_64+0x103/0x610 [ 297.840009][T10938] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.840319][ C1] net_ratelimit: 20 callbacks suppressed [ 297.840327][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 297.845942][T10938] RIP: 0033:0x458089 [ 297.845975][T10938] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 297.845984][T10938] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.851745][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 297.857342][T10938] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 297.861326][ C1] protocol 88fb is buggy, dev hsr_slave_0 11:46:47 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(0x0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 297.880797][T10938] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 297.880807][T10938] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 297.880815][T10938] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 297.880824][T10938] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 297.889382][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 297.925263][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 297.952535][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:47 executing program 3 (fault-call:7 fault-nth:43): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:47 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x04', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) r3 = getpgid(0x0) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000080)={[], 0x1, 0x4, 0x1, 0xc31, 0x0, r3}) [ 298.181485][T10969] FAULT_INJECTION: forcing a failure. [ 298.181485][T10969] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 298.209899][T10969] CPU: 0 PID: 10969 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 298.218976][T10969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.229051][T10969] Call Trace: [ 298.232353][T10969] dump_stack+0x172/0x1f0 [ 298.236711][T10969] should_fail.cold+0xa/0x15 [ 298.241311][T10969] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.247127][T10969] ? ___might_sleep+0x163/0x280 [ 298.251980][T10969] should_fail_alloc_page+0x50/0x60 [ 298.257183][T10969] __alloc_pages_nodemask+0x1a1/0x7e0 [ 298.262537][T10969] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 298.268252][T10969] ? check_preemption_disabled+0x48/0x290 [ 298.273994][T10969] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 298.280141][T10969] ? mmu_topup_memory_caches+0x97/0x490 [ 298.285699][T10969] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 298.291944][T10969] alloc_pages_current+0x107/0x210 [ 298.297068][T10969] __get_free_pages+0xc/0x40 [ 298.301672][T10969] mmu_topup_memory_caches+0x1e1/0x490 [ 298.307125][T10969] kvm_mmu_load+0x21/0x1200 [ 298.311624][T10969] ? mark_held_locks+0xf0/0xf0 [ 298.316371][T10969] ? vmx_handle_exit+0x1640/0x1640 [ 298.321468][T10969] vcpu_enter_guest+0x3c8d/0x60b0 [ 298.326473][T10969] ? __mutex_lock+0x3cd/0x1310 [ 298.331234][T10969] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 298.336090][T10969] ? emulator_read_emulated+0x50/0x50 [ 298.341456][T10969] ? lock_acquire+0x16f/0x3f0 [ 298.346125][T10969] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 298.351828][T10969] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 298.357362][T10969] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 298.363098][T10969] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 298.367762][T10969] ? kvm_vcpu_block+0xcd0/0xcd0 [ 298.372604][T10969] ? mark_held_locks+0xf0/0xf0 [ 298.377352][T10969] ? proc_fail_nth_write+0x9d/0x1e0 [ 298.382532][T10969] ? proc_cwd_link+0x1d0/0x1d0 [ 298.387280][T10969] ? __f_unlock_pos+0x19/0x20 [ 298.391978][T10969] ? find_held_lock+0x35/0x130 [ 298.396721][T10969] ? __fget+0x340/0x540 [ 298.400860][T10969] ? find_held_lock+0x35/0x130 [ 298.405869][T10969] ? __fget+0x340/0x540 [ 298.410011][T10969] ? kvm_vcpu_block+0xcd0/0xcd0 [ 298.414846][T10969] do_vfs_ioctl+0xd6e/0x1390 [ 298.419418][T10969] ? ioctl_preallocate+0x210/0x210 [ 298.424508][T10969] ? __fget+0x367/0x540 [ 298.428650][T10969] ? ksys_dup3+0x3e0/0x3e0 [ 298.433087][T10969] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 298.439313][T10969] ? fput+0x128/0x1a0 [ 298.443295][T10969] ? security_file_ioctl+0x93/0xc0 [ 298.448402][T10969] ksys_ioctl+0xab/0xd0 [ 298.452541][T10969] __x64_sys_ioctl+0x73/0xb0 [ 298.457112][T10969] do_syscall_64+0x103/0x610 [ 298.461690][T10969] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 298.467572][T10969] RIP: 0033:0x458089 [ 298.471449][T10969] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 298.491042][T10969] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 298.499444][T10969] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 298.507393][T10969] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 298.515344][T10969] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 298.523304][T10969] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x02', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 298.531269][T10969] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:48 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x444001, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in=@empty, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@empty}}, &(0x7f00000002c0)=0xff42) r3 = getegid() r4 = getuid() write$P9_RSTATu(r1, &(0x7f00000000c0)={0x76, 0x7d, 0x1, {{0x0, 0x55, 0xffffffffffff567d, 0x5, {0x0, 0x3, 0x8}, 0x0, 0x1, 0x7abc, 0x1f, 0x0, '', 0xa, 'trustedGPL', 0xc, '/dev/ashmem\x00', 0xc, '/dev/ashmem\x00'}, 0xc, '/dev/ashmem\x00', r2, r3, r4}}, 0x76) r5 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r5) 11:46:48 executing program 3 (fault-call:7 fault-nth:44): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:48 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x03', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:48 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) 11:46:48 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:48 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x05', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:48 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) [ 298.936616][T11012] FAULT_INJECTION: forcing a failure. [ 298.936616][T11012] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 298.960280][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 298.962972][T11012] CPU: 0 PID: 11012 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 298.966121][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 298.975029][T11012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.975036][T11012] Call Trace: [ 298.975060][T11012] dump_stack+0x172/0x1f0 [ 298.975084][T11012] should_fail.cold+0xa/0x15 [ 298.975105][T11012] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.008752][T11012] ? ___might_sleep+0x163/0x280 [ 299.013620][T11012] should_fail_alloc_page+0x50/0x60 [ 299.018811][T11012] __alloc_pages_nodemask+0x1a1/0x7e0 [ 299.024171][T11012] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 299.029873][T11012] ? check_preemption_disabled+0x48/0x290 [ 299.035596][T11012] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 299.041743][T11012] ? mmu_topup_memory_caches+0x97/0x490 [ 299.047282][T11012] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 299.053525][T11012] alloc_pages_current+0x107/0x210 [ 299.058632][T11012] __get_free_pages+0xc/0x40 [ 299.063210][T11012] mmu_topup_memory_caches+0x1e1/0x490 [ 299.068651][T11012] kvm_mmu_load+0x21/0x1200 [ 299.073152][T11012] ? vcpu_enter_guest+0x2a33/0x60b0 [ 299.078359][T11012] ? lockdep_hardirqs_on+0x418/0x5d0 [ 299.083681][T11012] vcpu_enter_guest+0x3c8d/0x60b0 [ 299.088728][T11012] ? emulator_read_emulated+0x50/0x50 [ 299.094112][T11012] ? lock_acquire+0x16f/0x3f0 [ 299.098792][T11012] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 299.104505][T11012] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 299.110036][T11012] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 299.115742][T11012] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 299.120415][T11012] ? kvm_vcpu_block+0xcd0/0xcd0 [ 299.125284][T11012] ? mark_held_locks+0xf0/0xf0 [ 299.130035][T11012] ? proc_fail_nth_write+0x9d/0x1e0 [ 299.135213][T11012] ? proc_cwd_link+0x1d0/0x1d0 [ 299.139971][T11012] ? __f_unlock_pos+0x19/0x20 [ 299.144632][T11012] ? find_held_lock+0x35/0x130 [ 299.149384][T11012] ? __fget+0x340/0x540 [ 299.153547][T11012] ? find_held_lock+0x35/0x130 [ 299.158312][T11012] ? __fget+0x340/0x540 [ 299.162465][T11012] ? kvm_vcpu_block+0xcd0/0xcd0 [ 299.167310][T11012] do_vfs_ioctl+0xd6e/0x1390 [ 299.171922][T11012] ? ioctl_preallocate+0x210/0x210 [ 299.177053][T11012] ? __fget+0x367/0x540 [ 299.181214][T11012] ? ksys_dup3+0x3e0/0x3e0 [ 299.185623][T11012] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 299.191881][T11012] ? fput+0x128/0x1a0 [ 299.195935][T11012] ? security_file_ioctl+0x93/0xc0 [ 299.201060][T11012] ksys_ioctl+0xab/0xd0 [ 299.205211][T11012] __x64_sys_ioctl+0x73/0xb0 [ 299.209785][T11012] do_syscall_64+0x103/0x610 [ 299.214402][T11012] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.220307][T11012] RIP: 0033:0x458089 [ 299.224229][T11012] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 299.243810][T11012] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.252208][T11012] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 299.260178][T11012] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 299.268145][T11012] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.276102][T11012] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x03', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 299.284051][T11012] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 299.292421][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 299.298201][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:48 executing program 3 (fault-call:7 fault-nth:45): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x100000890e, &(0x7f0000000000)="0adc1f123c123f3188b070") r1 = dup3(r0, r0, 0x80000) ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000100)={0x3, r0}) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000080)={0x2, 0x0, [0x6, 0x8, 0x100000000, 0x6390, 0x6, 0x1409, 0x6]}) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r2) ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000040)={0x0, r1}) socket$bt_hidp(0x1f, 0x3, 0x6) [ 299.572427][T11042] FAULT_INJECTION: forcing a failure. [ 299.572427][T11042] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 299.590410][T11042] CPU: 1 PID: 11042 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 299.599451][T11042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.609504][T11042] Call Trace: [ 299.612797][T11042] dump_stack+0x172/0x1f0 [ 299.617125][T11042] should_fail.cold+0xa/0x15 [ 299.621701][T11042] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.627491][T11042] ? ___might_sleep+0x163/0x280 [ 299.632357][T11042] should_fail_alloc_page+0x50/0x60 [ 299.637537][T11042] __alloc_pages_nodemask+0x1a1/0x7e0 [ 299.642888][T11042] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 299.648592][T11042] ? check_preemption_disabled+0x48/0x290 [ 299.654311][T11042] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 299.660449][T11042] ? mmu_topup_memory_caches+0x97/0x490 [ 299.665975][T11042] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 299.672215][T11042] alloc_pages_current+0x107/0x210 [ 299.677339][T11042] __get_free_pages+0xc/0x40 [ 299.681928][T11042] mmu_topup_memory_caches+0x1e1/0x490 [ 299.687373][T11042] kvm_mmu_load+0x21/0x1200 [ 299.691858][T11042] ? mark_held_locks+0xf0/0xf0 [ 299.696630][T11042] ? vmx_handle_exit+0x1640/0x1640 [ 299.701746][T11042] vcpu_enter_guest+0x3c8d/0x60b0 [ 299.706876][T11042] ? __mutex_lock+0x3cd/0x1310 [ 299.711628][T11042] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 299.716465][T11042] ? emulator_read_emulated+0x50/0x50 [ 299.721820][T11042] ? lock_acquire+0x16f/0x3f0 [ 299.726478][T11042] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 299.732184][T11042] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 299.737712][T11042] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 299.743417][T11042] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 299.748079][T11042] ? kvm_vcpu_block+0xcd0/0xcd0 [ 299.752927][T11042] ? mark_held_locks+0xf0/0xf0 [ 299.757691][T11042] ? proc_fail_nth_write+0x9d/0x1e0 [ 299.762869][T11042] ? proc_cwd_link+0x1d0/0x1d0 [ 299.767634][T11042] ? __f_unlock_pos+0x19/0x20 [ 299.772290][T11042] ? find_held_lock+0x35/0x130 [ 299.777030][T11042] ? __fget+0x340/0x540 [ 299.781165][T11042] ? find_held_lock+0x35/0x130 [ 299.785920][T11042] ? __fget+0x340/0x540 [ 299.790811][T11042] ? kvm_vcpu_block+0xcd0/0xcd0 [ 299.795646][T11042] do_vfs_ioctl+0xd6e/0x1390 [ 299.800233][T11042] ? ioctl_preallocate+0x210/0x210 [ 299.805354][T11042] ? __fget+0x367/0x540 [ 299.809492][T11042] ? ksys_dup3+0x3e0/0x3e0 [ 299.813891][T11042] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 299.820123][T11042] ? fput+0x128/0x1a0 [ 299.824106][T11042] ? security_file_ioctl+0x93/0xc0 [ 299.829211][T11042] ksys_ioctl+0xab/0xd0 [ 299.833364][T11042] __x64_sys_ioctl+0x73/0xb0 [ 299.837960][T11042] do_syscall_64+0x103/0x610 [ 299.842562][T11042] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.848542][T11042] RIP: 0033:0x458089 [ 299.852434][T11042] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:46:49 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x04', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 299.872016][T11042] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.880405][T11042] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 299.888388][T11042] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 299.896337][T11042] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.904298][T11042] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 299.912250][T11042] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:49 executing program 3 (fault-call:7 fault-nth:46): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000540)='/dev/null\x00', 0x0, 0x0) r2 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x3}, &(0x7f0000000280)="23c0bfe0f714e9a94cf557cbcb26896b6f02e73634b1a402bc7914de562c8f0c73f0df330b2ab5ce7d5e3f7311bd42656839144356dc80beffca213c2f918faca6b29dd6b128d703c8100a61dfbfccea3d204392dcaf545a3cb40b1a8cf2299adc9d398bad663b9ae5a3cb4f987323033b8c61e1dcf0a830ec45c2785bfe7dc50a10c75d58195a5c6327c076f582c8a7acd3f05752751167541da0709ed86e66e66ae77554d1210fa5a252a62356b2e8ae659e3359fd91912930d394f1594ce767bf184b32f6a2f30b60", 0xca, 0x0) r3 = add_key$keyring(&(0x7f0000000380)='keyring\x00', &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$reject(0x13, r2, 0x8d0, 0xffffffffffffffff, r3) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/icmp\x00') getsockopt$IPT_SO_GET_ENTRIES(r4, 0x0, 0x41, &(0x7f0000000400)={'raw\x00', 0xc2, "b4ba2fc5c46ec026d1db2dc473fc064340647b12deb7fb0fd533cad00df2d8c1be3e232414c35934b4818ba4aa23d1308a24f6ea2e3f43ff701de809313c70826cb2ea87bde300e8222edc26750591b4eb80e7ef92b0c535475a6bd8298502b08ea454820aaceded8b6d709e5c4d75cc00af338b87df0d2684691225896f7c7abc11ed231c61c861e7b0e34a13840ea7ac49ac3a8cd477612a4577d3fe66c8eb848b734f17f80fb3b4cc13682c1da83e8f547b02c5f29ab4ce5f89595e5bd612b11a"}, &(0x7f0000000500)=0xe6) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) ioctl$VIDIOC_QUERYBUF(r1, 0xc0585609, &(0x7f00000000c0)={0x6, 0xb, 0xffffffffffffff52, 0x6000, {0x0, 0x2710}, {0x7, 0x2, 0x9645, 0x6, 0x8, 0x3, "088f05e6"}, 0x2, 0x2, @fd=0xffffffffffffffff, 0x4}) ioctl$VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f0000000180)={0x5, 0x8, 0x4, 0x20008, {r5, r6/1000+30000}, {0x1, 0x8, 0x9, 0x3, 0xffffffff, 0x6, "fed1b21d"}, 0x1, 0x2, @fd=r7, 0x4}) dup2(r4, r0) [ 300.093223][T11053] FAULT_INJECTION: forcing a failure. [ 300.093223][T11053] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 300.113349][T11053] CPU: 0 PID: 11053 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 300.122408][T11053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.122415][T11053] Call Trace: [ 300.122442][T11053] dump_stack+0x172/0x1f0 [ 300.122469][T11053] should_fail.cold+0xa/0x15 [ 300.122493][T11053] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 300.122513][T11053] ? ___might_sleep+0x163/0x280 [ 300.122546][T11053] should_fail_alloc_page+0x50/0x60 [ 300.160551][T11053] __alloc_pages_nodemask+0x1a1/0x7e0 [ 300.160574][T11053] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 300.160592][T11053] ? check_preemption_disabled+0x48/0x290 [ 300.160617][T11053] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 300.160636][T11053] ? mmu_topup_memory_caches+0x97/0x490 [ 300.160653][T11053] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 300.160676][T11053] alloc_pages_current+0x107/0x210 [ 300.160694][T11053] __get_free_pages+0xc/0x40 [ 300.160711][T11053] mmu_topup_memory_caches+0x1e1/0x490 [ 300.160731][T11053] kvm_mmu_load+0x21/0x1200 [ 300.177497][T11053] ? mark_held_locks+0xf0/0xf0 [ 300.210491][T11053] ? vmx_handle_exit+0x1640/0x1640 [ 300.210519][T11053] vcpu_enter_guest+0x3c8d/0x60b0 [ 300.210537][T11053] ? __mutex_lock+0x3cd/0x1310 [ 300.210561][T11053] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 300.224918][T11053] ? emulator_read_emulated+0x50/0x50 [ 300.224961][T11053] ? lock_acquire+0x16f/0x3f0 [ 300.249619][T11053] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 300.249652][T11053] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 300.260918][T11053] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 300.266661][T11053] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 300.271359][T11053] ? kvm_vcpu_block+0xcd0/0xcd0 [ 300.276253][T11053] ? mark_held_locks+0xf0/0xf0 [ 300.281017][T11053] ? proc_fail_nth_write+0x9d/0x1e0 [ 300.281033][T11053] ? proc_cwd_link+0x1d0/0x1d0 [ 300.281051][T11053] ? __f_unlock_pos+0x19/0x20 [ 300.281066][T11053] ? find_held_lock+0x35/0x130 [ 300.281081][T11053] ? __fget+0x340/0x540 [ 300.281095][T11053] ? find_held_lock+0x35/0x130 [ 300.281110][T11053] ? __fget+0x340/0x540 [ 300.281132][T11053] ? kvm_vcpu_block+0xcd0/0xcd0 [ 300.281151][T11053] do_vfs_ioctl+0xd6e/0x1390 [ 300.281199][T11053] ? ioctl_preallocate+0x210/0x210 [ 300.328084][T11053] ? __fget+0x367/0x540 [ 300.332300][T11053] ? ksys_dup3+0x3e0/0x3e0 [ 300.336737][T11053] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 300.342983][T11053] ? fput+0x128/0x1a0 [ 300.346974][T11053] ? security_file_ioctl+0x93/0xc0 [ 300.352104][T11053] ksys_ioctl+0xab/0xd0 [ 300.356272][T11053] __x64_sys_ioctl+0x73/0xb0 [ 300.360866][T11053] do_syscall_64+0x103/0x610 [ 300.365460][T11053] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.371353][T11053] RIP: 0033:0x458089 11:46:49 executing program 2: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) flistxattr(r0, &(0x7f0000000080)=""/44, 0x2c) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(0xffffffffffffffff, r1) 11:46:50 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x06', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 300.375264][T11053] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.394938][T11053] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.403350][T11053] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 300.411360][T11053] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 300.419344][T11053] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.427307][T11053] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 300.435262][T11053] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:50 executing program 3 (fault-call:7 fault-nth:47): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:50 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x04', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x05', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 300.773302][T11075] FAULT_INJECTION: forcing a failure. [ 300.773302][T11075] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 300.792066][T11075] CPU: 1 PID: 11075 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 300.801088][T11075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.801095][T11075] Call Trace: [ 300.801126][T11075] dump_stack+0x172/0x1f0 [ 300.801155][T11075] should_fail.cold+0xa/0x15 11:46:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) fcntl$dupfd(r0, 0x406, r0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) [ 300.801192][T11075] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 300.801228][T11075] ? ___might_sleep+0x163/0x280 [ 300.801254][T11075] should_fail_alloc_page+0x50/0x60 [ 300.801272][T11075] __alloc_pages_nodemask+0x1a1/0x7e0 [ 300.801293][T11075] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 300.801320][T11075] ? check_preemption_disabled+0x48/0x290 [ 300.818961][T11075] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 300.818981][T11075] ? mmu_topup_memory_caches+0x97/0x490 [ 300.819004][T11075] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 300.834205][T11075] alloc_pages_current+0x107/0x210 [ 300.834225][T11075] __get_free_pages+0xc/0x40 [ 300.834247][T11075] mmu_topup_memory_caches+0x1e1/0x490 [ 300.844791][T11075] kvm_mmu_load+0x21/0x1200 [ 300.844805][T11075] ? mark_held_locks+0xf0/0xf0 [ 300.844821][T11075] ? vmx_handle_exit+0x1640/0x1640 [ 300.844849][T11075] vcpu_enter_guest+0x3c8d/0x60b0 [ 300.844871][T11075] ? __mutex_lock+0x3cd/0x1310 [ 300.867984][T11075] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 300.893810][T11075] ? emulator_read_emulated+0x50/0x50 [ 300.893831][T11075] ? lock_acquire+0x16f/0x3f0 [ 300.893846][T11075] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 300.893867][T11075] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 300.939574][T11075] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 300.945312][T11075] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 300.950001][T11075] ? kvm_vcpu_block+0xcd0/0xcd0 [ 300.954863][T11075] ? mark_held_locks+0xf0/0xf0 [ 300.959646][T11075] ? proc_fail_nth_write+0x9d/0x1e0 [ 300.964857][T11075] ? proc_cwd_link+0x1d0/0x1d0 [ 300.969627][T11075] ? __f_unlock_pos+0x19/0x20 11:46:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup2(r0, r1) setsockopt$IP_VS_SO_SET_EDITDEST(r2, 0x0, 0x489, &(0x7f0000000080)={{0x7f, @local, 0x4e23, 0x3, 'dh\x00', 0x21, 0x7ff, 0x64}, {@rand_addr=0x8001, 0x4e22, 0x0, 0x0, 0x0, 0x2}}, 0x44) dup2(r2, r1) [ 300.974315][T11075] ? find_held_lock+0x35/0x130 [ 300.979083][T11075] ? __fget+0x340/0x540 [ 300.983241][T11075] ? find_held_lock+0x35/0x130 [ 300.988010][T11075] ? __fget+0x340/0x540 [ 300.992178][T11075] ? kvm_vcpu_block+0xcd0/0xcd0 [ 300.997025][T11075] do_vfs_ioctl+0xd6e/0x1390 [ 301.001601][T11075] ? ioctl_preallocate+0x210/0x210 [ 301.006696][T11075] ? __fget+0x367/0x540 [ 301.010845][T11075] ? ksys_dup3+0x3e0/0x3e0 [ 301.015262][T11075] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 301.021495][T11075] ? fput+0x128/0x1a0 [ 301.025478][T11075] ? security_file_ioctl+0x93/0xc0 [ 301.030574][T11075] ksys_ioctl+0xab/0xd0 [ 301.034715][T11075] __x64_sys_ioctl+0x73/0xb0 [ 301.039290][T11075] do_syscall_64+0x103/0x610 [ 301.043867][T11075] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.049742][T11075] RIP: 0033:0x458089 [ 301.053626][T11075] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.073209][T11075] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.081597][T11075] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 301.089548][T11075] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 301.097559][T11075] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 301.105509][T11075] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 301.113459][T11075] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:50 executing program 3 (fault-call:7 fault-nth:48): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:50 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\a', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 301.307506][T11117] IPVS: set_ctl: invalid protocol: 127 172.20.20.170:20003 [ 301.339002][T11118] IPVS: set_ctl: invalid protocol: 127 172.20.20.170:20003 11:46:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x05', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 301.358601][T11113] FAULT_INJECTION: forcing a failure. [ 301.358601][T11113] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 301.389094][T11113] CPU: 0 PID: 11113 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 301.398122][T11113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 301.408181][T11113] Call Trace: [ 301.411472][T11113] dump_stack+0x172/0x1f0 [ 301.415807][T11113] should_fail.cold+0xa/0x15 [ 301.420403][T11113] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 301.426218][T11113] ? ___might_sleep+0x163/0x280 [ 301.431069][T11113] should_fail_alloc_page+0x50/0x60 [ 301.436257][T11113] __alloc_pages_nodemask+0x1a1/0x7e0 [ 301.441625][T11113] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 301.447356][T11113] ? check_preemption_disabled+0x48/0x290 [ 301.453062][T11113] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 301.459199][T11113] ? mmu_topup_memory_caches+0x97/0x490 [ 301.464729][T11113] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 301.470969][T11113] alloc_pages_current+0x107/0x210 [ 301.476071][T11113] __get_free_pages+0xc/0x40 [ 301.480674][T11113] mmu_topup_memory_caches+0x1e1/0x490 [ 301.486115][T11113] kvm_mmu_load+0x21/0x1200 [ 301.490601][T11113] ? mark_held_locks+0xf0/0xf0 [ 301.495352][T11113] ? vmx_handle_exit+0x1640/0x1640 [ 301.500450][T11113] vcpu_enter_guest+0x3c8d/0x60b0 [ 301.505460][T11113] ? __mutex_lock+0x3cd/0x1310 [ 301.510217][T11113] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 301.515077][T11113] ? emulator_read_emulated+0x50/0x50 [ 301.520466][T11113] ? lock_acquire+0x16f/0x3f0 [ 301.525135][T11113] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 301.530865][T11113] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 301.536431][T11113] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 301.542139][T11113] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 301.546809][T11113] ? kvm_vcpu_block+0xcd0/0xcd0 [ 301.551657][T11113] ? mark_held_locks+0xf0/0xf0 [ 301.556404][T11113] ? proc_fail_nth_write+0x9d/0x1e0 [ 301.561578][T11113] ? proc_cwd_link+0x1d0/0x1d0 [ 301.566324][T11113] ? __f_unlock_pos+0x19/0x20 [ 301.570981][T11113] ? find_held_lock+0x35/0x130 [ 301.575726][T11113] ? __fget+0x340/0x540 [ 301.579889][T11113] ? find_held_lock+0x35/0x130 [ 301.584667][T11113] ? __fget+0x340/0x540 [ 301.588808][T11113] ? kvm_vcpu_block+0xcd0/0xcd0 [ 301.593654][T11113] do_vfs_ioctl+0xd6e/0x1390 [ 301.598242][T11113] ? ioctl_preallocate+0x210/0x210 [ 301.603344][T11113] ? __fget+0x367/0x540 [ 301.607493][T11113] ? ksys_dup3+0x3e0/0x3e0 [ 301.611890][T11113] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 301.618147][T11113] ? fput+0x128/0x1a0 [ 301.622130][T11113] ? security_file_ioctl+0x93/0xc0 [ 301.627237][T11113] ksys_ioctl+0xab/0xd0 [ 301.631389][T11113] __x64_sys_ioctl+0x73/0xb0 [ 301.635963][T11113] do_syscall_64+0x103/0x610 [ 301.640535][T11113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.646408][T11113] RIP: 0033:0x458089 [ 301.650281][T11113] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.669861][T11113] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 301.678248][T11113] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 301.686200][T11113] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 301.694178][T11113] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 301.702152][T11113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 11:46:51 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:51 executing program 2: ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f0000000000)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_UNLOCK(r0, 0x4008642b, &(0x7f00000000c0)={r1, 0x18}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r3, r3) 11:46:51 executing program 3 (fault-call:7 fault-nth:49): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 301.710146][T11113] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:51 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000000)='trusted.overlay.origin\x00', &(0x7f0000000080)='y\x00', 0x2, 0x0) 11:46:51 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x06', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 301.963097][T11126] FAULT_INJECTION: forcing a failure. [ 301.963097][T11126] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 301.985421][T11126] CPU: 0 PID: 11126 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 301.994456][T11126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.004514][T11126] Call Trace: [ 302.007831][T11126] dump_stack+0x172/0x1f0 [ 302.012199][T11126] should_fail.cold+0xa/0x15 [ 302.016781][T11126] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 302.022607][T11126] ? ___might_sleep+0x163/0x280 [ 302.027475][T11126] should_fail_alloc_page+0x50/0x60 [ 302.032679][T11126] __alloc_pages_nodemask+0x1a1/0x7e0 [ 302.038037][T11126] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 302.043749][T11126] ? check_preemption_disabled+0x48/0x290 [ 302.049574][T11126] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 302.055736][T11126] ? mmu_topup_memory_caches+0x97/0x490 [ 302.061282][T11126] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 302.067520][T11126] alloc_pages_current+0x107/0x210 [ 302.072622][T11126] __get_free_pages+0xc/0x40 [ 302.077264][T11126] mmu_topup_memory_caches+0x1e1/0x490 [ 302.082726][T11126] kvm_mmu_load+0x21/0x1200 [ 302.087229][T11126] ? mark_held_locks+0xf0/0xf0 [ 302.091991][T11126] ? vmx_handle_exit+0x1640/0x1640 [ 302.097094][T11126] vcpu_enter_guest+0x3c8d/0x60b0 [ 302.102123][T11126] ? __mutex_lock+0x3cd/0x1310 [ 302.106954][T11126] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 302.111794][T11126] ? emulator_read_emulated+0x50/0x50 [ 302.117183][T11126] ? lock_acquire+0x16f/0x3f0 [ 302.121860][T11126] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 302.127575][T11126] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 302.133106][T11126] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 302.138812][T11126] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 302.143471][T11126] ? kvm_vcpu_block+0xcd0/0xcd0 [ 302.148306][T11126] ? mark_held_locks+0xf0/0xf0 [ 302.153057][T11126] ? proc_fail_nth_write+0x9d/0x1e0 [ 302.158247][T11126] ? proc_cwd_link+0x1d0/0x1d0 [ 302.162993][T11126] ? __f_unlock_pos+0x19/0x20 [ 302.167668][T11126] ? find_held_lock+0x35/0x130 [ 302.172412][T11126] ? __fget+0x340/0x540 [ 302.176553][T11126] ? find_held_lock+0x35/0x130 [ 302.181295][T11126] ? __fget+0x340/0x540 [ 302.185454][T11126] ? kvm_vcpu_block+0xcd0/0xcd0 [ 302.190289][T11126] do_vfs_ioctl+0xd6e/0x1390 [ 302.194861][T11126] ? ioctl_preallocate+0x210/0x210 [ 302.199961][T11126] ? __fget+0x367/0x540 [ 302.204116][T11126] ? ksys_dup3+0x3e0/0x3e0 [ 302.208517][T11126] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 302.214746][T11126] ? fput+0x128/0x1a0 [ 302.218728][T11126] ? security_file_ioctl+0x93/0xc0 [ 302.223869][T11126] ksys_ioctl+0xab/0xd0 [ 302.228017][T11126] __x64_sys_ioctl+0x73/0xb0 [ 302.232646][T11126] do_syscall_64+0x103/0x610 [ 302.237229][T11126] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.243107][T11126] RIP: 0033:0x458089 [ 302.247011][T11126] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 302.266591][T11126] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 302.274989][T11126] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 302.282957][T11126] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 302.290936][T11126] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 302.298915][T11126] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 302.306914][T11126] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:51 executing program 3 (fault-call:7 fault-nth:50): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:52 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\b', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:52 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup3(r0, r1, 0x80000) ioctl$RTC_AIE_ON(r2, 0x7001) dup2(r0, r1) [ 302.582177][T11162] FAULT_INJECTION: forcing a failure. [ 302.582177][T11162] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 302.615528][T11162] CPU: 1 PID: 11162 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 302.624570][T11162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.634639][T11162] Call Trace: [ 302.637960][T11162] dump_stack+0x172/0x1f0 [ 302.642321][T11162] should_fail.cold+0xa/0x15 [ 302.646943][T11162] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 302.652772][T11162] ? ___might_sleep+0x163/0x280 [ 302.657631][T11162] should_fail_alloc_page+0x50/0x60 [ 302.662828][T11162] __alloc_pages_nodemask+0x1a1/0x7e0 [ 302.668197][T11162] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 302.673934][T11162] ? check_preemption_disabled+0x48/0x290 11:46:52 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 302.679643][T11162] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 302.685786][T11162] ? mmu_topup_memory_caches+0x97/0x490 [ 302.691336][T11162] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 302.697592][T11162] alloc_pages_current+0x107/0x210 [ 302.702713][T11162] __get_free_pages+0xc/0x40 [ 302.707310][T11162] mmu_topup_memory_caches+0x1e1/0x490 [ 302.712779][T11162] kvm_mmu_load+0x21/0x1200 [ 302.717279][T11162] ? mark_held_locks+0xf0/0xf0 [ 302.722023][T11162] ? vmx_handle_exit+0x1640/0x1640 [ 302.727120][T11162] vcpu_enter_guest+0x3c8d/0x60b0 [ 302.732129][T11162] ? __mutex_lock+0x3cd/0x1310 [ 302.736890][T11162] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 302.741730][T11162] ? emulator_read_emulated+0x50/0x50 [ 302.747082][T11162] ? lock_acquire+0x16f/0x3f0 [ 302.751865][T11162] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 302.757583][T11162] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 302.763107][T11162] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 302.768826][T11162] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 302.773487][T11162] ? kvm_vcpu_block+0xcd0/0xcd0 [ 302.778328][T11162] ? mark_held_locks+0xf0/0xf0 [ 302.783110][T11162] ? proc_fail_nth_write+0x9d/0x1e0 [ 302.788287][T11162] ? proc_cwd_link+0x1d0/0x1d0 [ 302.793046][T11162] ? __f_unlock_pos+0x19/0x20 [ 302.797799][T11162] ? find_held_lock+0x35/0x130 [ 302.802557][T11162] ? __fget+0x340/0x540 [ 302.806709][T11162] ? find_held_lock+0x35/0x130 [ 302.811458][T11162] ? __fget+0x340/0x540 [ 302.815610][T11162] ? kvm_vcpu_block+0xcd0/0xcd0 [ 302.820485][T11162] do_vfs_ioctl+0xd6e/0x1390 [ 302.825094][T11162] ? ioctl_preallocate+0x210/0x210 [ 302.830193][T11162] ? __fget+0x367/0x540 [ 302.834345][T11162] ? ksys_dup3+0x3e0/0x3e0 [ 302.838764][T11162] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 302.844984][T11162] ? fput+0x128/0x1a0 [ 302.848980][T11162] ? security_file_ioctl+0x93/0xc0 [ 302.854110][T11162] ksys_ioctl+0xab/0xd0 [ 302.858264][T11162] __x64_sys_ioctl+0x73/0xb0 [ 302.862840][T11162] do_syscall_64+0x103/0x610 [ 302.867413][T11162] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 302.873282][T11162] RIP: 0033:0x458089 [ 302.877178][T11162] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 302.896759][T11162] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 302.905149][T11162] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 302.913102][T11162] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 302.921050][T11162] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 11:46:52 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x06', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 302.929003][T11162] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 302.936949][T11162] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:52 executing program 3 (fault-call:7 fault-nth:51): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:52 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket(0xf, 0x1, 0x81) io_setup(0x6, &(0x7f0000000300)=0x0) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000400)=""/152, &(0x7f00000002c0)=0x98) io_submit(r2, 0x343, &(0x7f0000000080)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000080), 0x121}]) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r4 = request_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)='/dev/ashmem\x00', 0xfffffffffffffffb) r5 = add_key(&(0x7f0000000240)='blacklist\x00', &(0x7f0000000280)={'syz', 0x2}, &(0x7f0000000340)="8334e46455d60330d876acf31edf2e1dd8a5bd656865c43a9655a5a80a036a934bc69b7c14c9c367e513f2f97c17367be751562d6f42df5dc4ecbe19d72ffaf70da7796a706b9fd5006cf4c40a872308fb0249b43e0049c422d8283fa8fe2cea20a710e2a664eadae832ffcaa53d7c9c7f64f25225b2df37817e7a81a23692fde2a20e4535c3c65ca6", 0x89, 0xfffffffffffffff9) keyctl$search(0xa, r4, &(0x7f0000000180)='.dead\x00', &(0x7f0000000200)={'syz', 0x1}, r5) dup2(r0, r3) 11:46:52 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\a', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 303.200334][ C1] net_ratelimit: 20 callbacks suppressed [ 303.200342][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 303.206134][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 303.224816][T11188] FAULT_INJECTION: forcing a failure. [ 303.224816][T11188] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 303.247786][T11188] CPU: 1 PID: 11188 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 303.256815][T11188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.266882][T11188] Call Trace: [ 303.270166][T11188] dump_stack+0x172/0x1f0 [ 303.274496][T11188] should_fail.cold+0xa/0x15 [ 303.279084][T11188] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 303.284871][T11188] ? ___might_sleep+0x163/0x280 [ 303.289708][T11188] should_fail_alloc_page+0x50/0x60 [ 303.294900][T11188] __alloc_pages_nodemask+0x1a1/0x7e0 [ 303.300280][T11188] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 303.305988][T11188] ? check_preemption_disabled+0x48/0x290 [ 303.311696][T11188] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 303.317841][T11188] ? mmu_topup_memory_caches+0x97/0x490 [ 303.323383][T11188] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 303.329612][T11188] alloc_pages_current+0x107/0x210 [ 303.334707][T11188] __get_free_pages+0xc/0x40 [ 303.339308][T11188] mmu_topup_memory_caches+0x1e1/0x490 [ 303.344760][T11188] kvm_mmu_load+0x21/0x1200 [ 303.349245][T11188] ? mark_held_locks+0xf0/0xf0 [ 303.354001][T11188] ? vmx_handle_exit+0x1640/0x1640 [ 303.359145][T11188] vcpu_enter_guest+0x3c8d/0x60b0 [ 303.364157][T11188] ? __mutex_lock+0x3cd/0x1310 [ 303.368922][T11188] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 303.373771][T11188] ? emulator_read_emulated+0x50/0x50 [ 303.379134][T11188] ? lock_acquire+0x16f/0x3f0 [ 303.383811][T11188] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 303.389530][T11188] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 303.395086][T11188] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 303.400822][T11188] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 303.405492][T11188] ? kvm_vcpu_block+0xcd0/0xcd0 [ 303.410320][T11188] ? mark_held_locks+0xf0/0xf0 [ 303.415068][T11188] ? proc_fail_nth_write+0x9d/0x1e0 [ 303.420252][T11188] ? proc_cwd_link+0x1d0/0x1d0 [ 303.425000][T11188] ? __f_unlock_pos+0x19/0x20 [ 303.429651][T11188] ? find_held_lock+0x35/0x130 [ 303.434411][T11188] ? __fget+0x340/0x540 [ 303.438567][T11188] ? find_held_lock+0x35/0x130 [ 303.443307][T11188] ? __fget+0x340/0x540 [ 303.447457][T11188] ? kvm_vcpu_block+0xcd0/0xcd0 [ 303.452289][T11188] do_vfs_ioctl+0xd6e/0x1390 [ 303.456861][T11188] ? ioctl_preallocate+0x210/0x210 [ 303.461949][T11188] ? __fget+0x367/0x540 [ 303.466086][T11188] ? ksys_dup3+0x3e0/0x3e0 [ 303.470499][T11188] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 303.476717][T11188] ? fput+0x128/0x1a0 [ 303.480687][T11188] ? security_file_ioctl+0x93/0xc0 [ 303.485783][T11188] ksys_ioctl+0xab/0xd0 [ 303.489937][T11188] __x64_sys_ioctl+0x73/0xb0 [ 303.494507][T11188] do_syscall_64+0x103/0x610 [ 303.499082][T11188] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 303.504974][T11188] RIP: 0033:0x458089 [ 303.508854][T11188] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 303.528433][T11188] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.536836][T11188] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 303.544786][T11188] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 303.552737][T11188] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 303.560727][T11188] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 303.568684][T11188] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 303.580378][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 303.586166][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:46:53 executing program 3 (fault-call:7 fault-nth:52): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r1) open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x20) [ 303.760330][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 303.766176][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 303.863711][T11214] FAULT_INJECTION: forcing a failure. [ 303.863711][T11214] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 303.890858][T11214] CPU: 1 PID: 11214 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 303.899926][T11214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 303.909988][T11214] Call Trace: 11:46:53 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\n', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000080)={r0}) ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f00000000c0)={{0x7fffffff, 0xfffffffffffff000, 0x3, 0x7ff, 0x3}}) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = dup2(r0, r2) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r3, 0x4008af23, &(0x7f0000000100)={0x3}) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000180)={{{@in=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@remote}}, &(0x7f0000000000)=0xe8) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000280)={{{@in=@remote, @in6=@mcast1, 0x4e21, 0x2, 0x4e21, 0x7, 0xa, 0xa0, 0xa0, 0x3b, 0x0, r4}, {0x5, 0xffffffffffffff81, 0xffffffffffffffff, 0x9, 0x1, 0x8424579, 0x732, 0x7}, {0x0, 0x401, 0x2, 0x4}, 0x87c2, 0x6e6bbd, 0x2, 0x0, 0x1, 0x1}, {{@in6=@loopback, 0x4d6, 0xff}, 0x2, @in=@loopback, 0x3505, 0x2, 0x3, 0x4, 0x1000, 0x7fff, 0x8001}}, 0xe8) [ 303.913298][T11214] dump_stack+0x172/0x1f0 [ 303.917660][T11214] should_fail.cold+0xa/0x15 [ 303.922291][T11214] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 303.928120][T11214] ? ___might_sleep+0x163/0x280 [ 303.932962][T11214] should_fail_alloc_page+0x50/0x60 [ 303.938142][T11214] __alloc_pages_nodemask+0x1a1/0x7e0 [ 303.943509][T11214] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 303.949210][T11214] ? check_preemption_disabled+0x48/0x290 [ 303.954922][T11214] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 303.961063][T11214] ? mmu_topup_memory_caches+0x97/0x490 [ 303.966588][T11214] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 303.972816][T11214] alloc_pages_current+0x107/0x210 [ 303.977919][T11214] __get_free_pages+0xc/0x40 [ 303.982493][T11214] mmu_topup_memory_caches+0x1e1/0x490 [ 303.987939][T11214] kvm_mmu_load+0x21/0x1200 [ 303.992422][T11214] ? mark_held_locks+0xf0/0xf0 [ 303.997167][T11214] ? vmx_handle_exit+0x1640/0x1640 [ 304.002269][T11214] vcpu_enter_guest+0x3c8d/0x60b0 [ 304.007280][T11214] ? __mutex_lock+0x3cd/0x1310 [ 304.012031][T11214] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 304.016866][T11214] ? emulator_read_emulated+0x50/0x50 [ 304.022229][T11214] ? lock_acquire+0x16f/0x3f0 [ 304.026900][T11214] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 304.032611][T11214] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 304.038149][T11214] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 304.043862][T11214] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 304.048520][T11214] ? kvm_vcpu_block+0xcd0/0xcd0 [ 304.053351][T11214] ? mark_held_locks+0xf0/0xf0 [ 304.058098][T11214] ? proc_fail_nth_write+0x9d/0x1e0 [ 304.063360][T11214] ? proc_cwd_link+0x1d0/0x1d0 [ 304.068106][T11214] ? __f_unlock_pos+0x19/0x20 [ 304.072762][T11214] ? find_held_lock+0x35/0x130 [ 304.077525][T11214] ? __fget+0x340/0x540 [ 304.081688][T11214] ? find_held_lock+0x35/0x130 [ 304.086431][T11214] ? __fget+0x340/0x540 [ 304.090573][T11214] ? kvm_vcpu_block+0xcd0/0xcd0 [ 304.095405][T11214] do_vfs_ioctl+0xd6e/0x1390 [ 304.100022][T11214] ? ioctl_preallocate+0x210/0x210 [ 304.105126][T11214] ? __fget+0x367/0x540 [ 304.109266][T11214] ? ksys_dup3+0x3e0/0x3e0 [ 304.113672][T11214] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 304.119920][T11214] ? fput+0x128/0x1a0 [ 304.123902][T11214] ? security_file_ioctl+0x93/0xc0 [ 304.129007][T11214] ksys_ioctl+0xab/0xd0 [ 304.133148][T11214] __x64_sys_ioctl+0x73/0xb0 [ 304.137726][T11214] do_syscall_64+0x103/0x610 [ 304.142304][T11214] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 304.148177][T11214] RIP: 0033:0x458089 [ 304.152055][T11214] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 304.171637][T11214] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 304.180050][T11214] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 304.188006][T11214] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 304.195957][T11214] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 304.203906][T11214] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 304.211867][T11214] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:53 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\a', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:53 executing program 3 (fault-call:7 fault-nth:53): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 304.320347][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 304.326223][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 304.400403][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 304.406242][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 304.436560][T11225] FAULT_INJECTION: forcing a failure. [ 304.436560][T11225] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 304.451626][T11225] CPU: 1 PID: 11225 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 304.460675][T11225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 304.470710][T11225] Call Trace: [ 304.473983][T11225] dump_stack+0x172/0x1f0 [ 304.478294][T11225] should_fail.cold+0xa/0x15 [ 304.482867][T11225] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 304.488654][T11225] ? ___might_sleep+0x163/0x280 [ 304.493504][T11225] should_fail_alloc_page+0x50/0x60 [ 304.498697][T11225] __alloc_pages_nodemask+0x1a1/0x7e0 [ 304.504068][T11225] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 304.509781][T11225] ? check_preemption_disabled+0x48/0x290 [ 304.515501][T11225] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 304.521638][T11225] ? mmu_topup_memory_caches+0x97/0x490 [ 304.527167][T11225] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 304.533396][T11225] alloc_pages_current+0x107/0x210 [ 304.538490][T11225] __get_free_pages+0xc/0x40 [ 304.543078][T11225] mmu_topup_memory_caches+0x1e1/0x490 [ 304.548531][T11225] kvm_mmu_load+0x21/0x1200 [ 304.553022][T11225] ? mark_held_locks+0xf0/0xf0 [ 304.557779][T11225] ? vmx_handle_exit+0x1640/0x1640 [ 304.562876][T11225] vcpu_enter_guest+0x3c8d/0x60b0 [ 304.567882][T11225] ? __mutex_lock+0x3cd/0x1310 [ 304.572638][T11225] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 304.577479][T11225] ? emulator_read_emulated+0x50/0x50 [ 304.582834][T11225] ? lock_acquire+0x16f/0x3f0 [ 304.587490][T11225] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 304.593195][T11225] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 304.598720][T11225] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 304.604423][T11225] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 304.609083][T11225] ? kvm_vcpu_block+0xcd0/0xcd0 [ 304.613936][T11225] ? mark_held_locks+0xf0/0xf0 [ 304.618687][T11225] ? proc_fail_nth_write+0x9d/0x1e0 [ 304.623875][T11225] ? proc_cwd_link+0x1d0/0x1d0 [ 304.628637][T11225] ? __f_unlock_pos+0x19/0x20 [ 304.633316][T11225] ? find_held_lock+0x35/0x130 [ 304.638061][T11225] ? __fget+0x340/0x540 [ 304.642265][T11225] ? find_held_lock+0x35/0x130 [ 304.647013][T11225] ? __fget+0x340/0x540 [ 304.651156][T11225] ? kvm_vcpu_block+0xcd0/0xcd0 [ 304.656011][T11225] do_vfs_ioctl+0xd6e/0x1390 [ 304.660602][T11225] ? ioctl_preallocate+0x210/0x210 [ 304.665698][T11225] ? __fget+0x367/0x540 [ 304.669840][T11225] ? ksys_dup3+0x3e0/0x3e0 [ 304.674242][T11225] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 304.680470][T11225] ? fput+0x128/0x1a0 [ 304.684437][T11225] ? security_file_ioctl+0x93/0xc0 [ 304.689531][T11225] ksys_ioctl+0xab/0xd0 [ 304.693675][T11225] __x64_sys_ioctl+0x73/0xb0 [ 304.698251][T11225] do_syscall_64+0x103/0x610 [ 304.702861][T11225] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 304.708734][T11225] RIP: 0033:0x458089 [ 304.712609][T11225] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 304.732194][T11225] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 304.740602][T11225] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 304.748569][T11225] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 304.756519][T11225] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 304.764469][T11225] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 304.772417][T11225] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 11:46:54 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\n', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:55 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:55 executing program 3 (fault-call:7 fault-nth:54): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:55 executing program 2: r0 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000)={0x2, 0x0, @dev}, &(0x7f0000000080)=0x10) setsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000000c0)=0xeedd, 0x4) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r1, r2) 11:46:55 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x0e', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:55 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\n', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:55 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x0e', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 306.149718][T11276] FAULT_INJECTION: forcing a failure. [ 306.149718][T11276] name fail_page_alloc, interval 1, probability 0, space 0, times 0 11:46:55 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0xfffffffffffffffd, 0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000100)='team_slave_1\x00') dup2(r1, r1) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/nfsfs\x00') ioctl$TIOCLINUX5(r2, 0x541c, &(0x7f00000000c0)={0x5, 0xed, 0x8, 0x8, 0x400}) [ 306.215652][T11276] CPU: 0 PID: 11276 Comm: syz-executor3 Not tainted 5.0.0-rc4-next-20190131 #23 [ 306.224737][T11276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 306.234800][T11276] Call Trace: [ 306.238094][T11276] dump_stack+0x172/0x1f0 [ 306.242426][T11276] should_fail.cold+0xa/0x15 [ 306.247006][T11276] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 306.252797][T11276] ? ___might_sleep+0x163/0x280 [ 306.257631][T11276] should_fail_alloc_page+0x50/0x60 [ 306.262824][T11276] __alloc_pages_nodemask+0x1a1/0x7e0 [ 306.268190][T11276] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 306.273894][T11276] ? check_preemption_disabled+0x48/0x290 [ 306.279607][T11276] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 306.285746][T11276] ? mmu_topup_memory_caches+0x97/0x490 [ 306.291272][T11276] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 306.297499][T11276] alloc_pages_current+0x107/0x210 [ 306.302597][T11276] __get_free_pages+0xc/0x40 [ 306.307176][T11276] mmu_topup_memory_caches+0x1e1/0x490 [ 306.312618][T11276] kvm_mmu_load+0x21/0x1200 [ 306.317102][T11276] ? mark_held_locks+0xf0/0xf0 [ 306.321851][T11276] ? vmx_handle_exit+0x1640/0x1640 [ 306.326970][T11276] vcpu_enter_guest+0x3c8d/0x60b0 [ 306.331993][T11276] ? __mutex_lock+0x3cd/0x1310 [ 306.336743][T11276] ? kvm_vcpu_ioctl+0x181/0xfa0 [ 306.341592][T11276] ? emulator_read_emulated+0x50/0x50 [ 306.346963][T11276] ? lock_acquire+0x16f/0x3f0 [ 306.351622][T11276] ? kvm_arch_vcpu_ioctl_run+0x240/0x1750 [ 306.357324][T11276] kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 306.362864][T11276] ? kvm_arch_vcpu_ioctl_run+0x425/0x1750 [ 306.368583][T11276] kvm_vcpu_ioctl+0x4dc/0xfa0 [ 306.373271][T11276] ? kvm_vcpu_block+0xcd0/0xcd0 [ 306.378111][T11276] ? mark_held_locks+0xf0/0xf0 [ 306.382854][T11276] ? proc_fail_nth_write+0x9d/0x1e0 [ 306.388032][T11276] ? proc_cwd_link+0x1d0/0x1d0 [ 306.392779][T11276] ? __f_unlock_pos+0x19/0x20 [ 306.397435][T11276] ? find_held_lock+0x35/0x130 [ 306.402186][T11276] ? __fget+0x340/0x540 [ 306.406322][T11276] ? find_held_lock+0x35/0x130 [ 306.411066][T11276] ? __fget+0x340/0x540 [ 306.415210][T11276] ? kvm_vcpu_block+0xcd0/0xcd0 [ 306.420054][T11276] do_vfs_ioctl+0xd6e/0x1390 [ 306.424641][T11276] ? ioctl_preallocate+0x210/0x210 [ 306.429741][T11276] ? __fget+0x367/0x540 [ 306.433898][T11276] ? ksys_dup3+0x3e0/0x3e0 [ 306.438316][T11276] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 306.444546][T11276] ? fput+0x128/0x1a0 [ 306.448521][T11276] ? security_file_ioctl+0x93/0xc0 [ 306.453615][T11276] ksys_ioctl+0xab/0xd0 [ 306.457767][T11276] __x64_sys_ioctl+0x73/0xb0 [ 306.462352][T11276] do_syscall_64+0x103/0x610 [ 306.466946][T11276] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 306.472852][T11276] RIP: 0033:0x458089 [ 306.476732][T11276] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 306.496335][T11276] RSP: 002b:00007efd96170c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 306.504735][T11276] RAX: ffffffffffffffda RBX: 00007efd96170c90 RCX: 0000000000458089 [ 306.512690][T11276] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 306.520645][T11276] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 306.528598][T11276] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efd961716d4 [ 306.536548][T11276] R13: 00000000004c0ff6 R14: 00000000004d2cf8 R15: 0000000000000006 [ 306.548177][T11276] *** Guest State *** [ 306.552468][T11276] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 306.563495][T11276] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 306.574161][T11276] CR3 = 0x0000000000000000 [ 306.578975][T11276] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 306.603818][T11276] RFLAGS=0x00000002 DR7 = 0x0000000000000400 11:46:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000000)) r2 = dup2(r0, r1) fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000080)='trusted.overlay.redirect\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x0) [ 306.620182][T11276] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 306.636224][T11276] CS: sel=0x0000, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 306.645412][T11276] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 306.654373][T11276] SS: sel=0x0000, attr=0x00081, limit=0x0000ffff, base=0x0000000000000000 [ 306.663365][T11276] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 306.679203][T11276] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 306.688998][T11276] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 306.698263][T11276] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 306.707190][T11276] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 11:46:56 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x10', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:56 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x10', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 306.717502][T11276] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 306.726565][T11276] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 306.749931][T11276] EFER = 0x0000000000000000 PAT = 0x0007040600070406 11:46:56 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x0e', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 306.808208][T11276] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 306.831282][T11276] Interruptibility = 00000000 ActivityState = 00000000 [ 306.847936][T11276] *** Host State *** [ 306.856200][T11276] RIP = 0xffffffff811b37d0 RSP = 0xffff888097bdf8b8 11:46:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x1, 0x400) accept4$x25(r2, &(0x7f0000000080)={0x9, @remote}, &(0x7f00000000c0)=0x12, 0x80000) r3 = dup2(r1, r1) ioctl$KVM_ASSIGN_DEV_IRQ(r3, 0x4040ae70, &(0x7f0000000100)={0x0, 0x12, 0x4, 0x2}) [ 306.880483][T11276] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 306.913808][T11276] FSBase=00007efd96171700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 306.959010][T11276] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 306.967496][T11276] CR0=0000000080050033 CR3=000000009fe2e000 CR4=00000000001426f0 [ 306.976653][T11276] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 306.985066][T11276] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 306.992350][T11276] *** Control State *** [ 306.996731][T11276] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 307.004688][T11276] EntryControls=0000d1ff ExitControls=002fefff [ 307.011523][T11276] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 307.023127][T11276] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 307.051788][T11276] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 307.070996][T11276] reason=80000021 qualification=0000000000000000 [ 307.102800][T11276] IDTVectoring: info=00000000 errcode=00000000 [ 307.109767][T11276] TSC Offset = 0xffffff59a075a998 [ 307.118146][T11276] EPT pointer = 0x000000009527c01e [ 308.560312][ C1] net_ratelimit: 20 callbacks suppressed [ 308.560321][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 308.560341][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 308.566057][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 308.571807][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 308.577572][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 308.594677][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:58 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, 0x0, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:46:58 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000000c0)={0x0, @speck128}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000240)={@rand_addr, 0x0}, &(0x7f0000000280)=0x14) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000014}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=@ipv6_getaddr={0x3c, 0x16, 0x8, 0x70bd25, 0x25dfdbfd, {0xa, 0x88, 0x200, 0xfe, r3}, [@IFA_FLAGS={0x8, 0x8, 0x202}, @IFA_LOCAL={0x14, 0x2, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IFA_FLAGS={0x8, 0x8, 0x200}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x0) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000180)=""/175) r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(r0, r4) 11:46:58 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsH', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:58 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsH', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:46:58 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsH', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:58 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket$inet6(0xa, 0x3, 0x6) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r1, 0x84, 0x74, &(0x7f0000000080)=""/112, &(0x7f0000000000)=0x70) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") dup2(r0, 0xffffffffffffffff) 11:46:58 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsL', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:46:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x2, 0x0) 11:46:58 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x7fff, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = dup(r0) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r1, 0x40045730, &(0x7f00000000c0)=0x3) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x5d2a, 0x30500) mknodat(r3, &(0x7f0000000080)='./file0\x00', 0x0, 0x2) dup2(r0, r2) 11:46:59 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsL', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 309.440341][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 309.446203][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:46:59 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsL', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 309.760299][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 309.766166][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:47:01 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x5421, 0x0) 11:47:01 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) dup2(0xffffffffffffffff, r0) ioctl$ASHMEM_GET_PIN_STATUS(r0, 0x7709, 0x0) 11:47:01 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs`', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:01 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs`', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:01 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs`', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:01 executing program 2: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cpu.stat\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000000280)={0x9, 0xffffffffffff8001, 0x5}) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x3, 0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x0, 0xffffffffffffff59, 0x3, 0x7, 0x3, 0x8001, 0x0, 0x4, 0x800, 0x4, 0x338c6102, 0x0, 0x4, 0x3, 0x10001, 0x3, 0x0, 0x2, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8711, 0x7fff, 0x0, 0xfffffffffffeffff, 0x1, 0x0, 0x10000, 0xff, 0x0, 0xd88, 0x6, 0x920, 0x0, 0x2, 0x6, @perf_config_ext={0x1, 0x6}, 0x601, 0x0, 0xfffffffffffffffe, 0x0, 0x5, 0x8000, 0x3}, 0x0, 0xfffffffffffffffc, r0, 0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x4082) syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) r4 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0) pwritev(r4, &(0x7f0000000480)=[{&(0x7f00000004c0)="2bd83b0010947db9", 0x8}], 0x1, 0x81806) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) sendfile(r2, r3, 0x0, 0x2000006) 11:47:01 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x5450, 0x0) 11:47:02 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsh', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 312.565123][ T2480] print_req_error: I/O error, dev loop0, sector 0 flags 0 11:47:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x5451, 0x0) 11:47:02 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsh', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:02 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsh', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:02 executing program 2: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_cpus\x00', 0x26e1, 0x0) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="f5"], 0x1) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x61bf, 0x1c2dc0000}) write$cgroup_int(r0, &(0x7f0000000300), 0xfffffe8c) 11:47:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x5452, 0x0) 11:47:02 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsl', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x5460, 0x0) 11:47:02 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsl', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:02 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsl', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 313.600308][ C1] net_ratelimit: 19 callbacks suppressed [ 313.600314][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 313.611952][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 313.920374][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 313.926233][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 314.160410][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 314.166239][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 314.800336][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 314.800358][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 314.806173][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 314.811967][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:47:05 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:05 executing program 2: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vcs\x00', 0x0, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ppoll(&(0x7f0000000140)=[{r1}, {r0}], 0x2, 0x0, 0x0, 0x0) 11:47:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x40049409, 0x0) 11:47:05 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfst', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfst', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfst', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 11:47:05 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsz', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsz', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:05 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfsz', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 11:47:05 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") socketpair$unix(0x1, 0x1000000005, 0x0, &(0x7f000087fff8)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x100005452, &(0x7f0000000000)=0x3f) recvmsg(r2, &(0x7f0000172fc8)={0x0, 0x0, 0x0}, 0x0) r3 = dup2(r1, r2) sendmsg$FOU_CMD_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) 11:47:05 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) [ 316.501238][T11641] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:06 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) [ 316.584559][T11641] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 316.611008][T11649] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:06 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:06 executing program 2: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cpu.stat\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000280)={0x9, 0xffffffffffff8001, 0x5}) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x3, 0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x0, 0xffffffffffffff59, 0x3, 0x7, 0x3, 0x8001, 0x0, 0x4, 0x800, 0x4, 0x338c6102, 0x0, 0x4, 0x0, 0x10001, 0x3, 0x0, 0x2, 0x0, 0x5, 0x0, 0x7fff, 0x0, 0x1, 0x0, 0x0, 0x8711, 0x7fff, 0x0, 0x0, 0x1, 0x0, 0x10000, 0xff, 0x0, 0xd88, 0x6, 0x920, 0x0, 0x2, 0x6, @perf_config_ext={0x1, 0x6}, 0x601, 0x0, 0xfffffffffffffffe, 0x0, 0x5, 0x8000, 0x3}, 0x0, 0xfffffffffffffffc, r0, 0x8) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x4082) syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) r4 = memfd_create(&(0x7f00000001c0)='/delo\xff\a\x00\x00\x00\x00', 0x0) ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4) sendfile(r2, r3, 0x0, 0x2000006) 11:47:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) [ 316.834873][T11649] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 316.863216][T11656] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 317.106564][T11656] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 318.960322][ C1] net_ratelimit: 19 callbacks suppressed [ 318.960332][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 318.960377][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 318.966062][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 318.983289][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 318.989017][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:08 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:08 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 11:47:08 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x60f1, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='/group.stat\x00<#\xfbW*\x1f\x02\x94\xe6\xf3x\xb4\x1a\xd5KM\x9d\x9a\x1fc\xf8xZ\xd1\x88\xa7\xe1\xc8\x88u\xe0[\x18\xa4\xcb:\x9c\xd1-\xce\xa4@\xd8\x99\xc2,e+:G\x1bJ\x7f\xa2\xf3\xfd\xf6\xe04\xd8\x04\xe5\xf0\xdfK\x1d\xeeH;\x15v$\xc5\x9c\x01\x00\xe8\x9ej5|\x00\x00\x00', 0x2761, 0x0) write$cgroup_int(r0, &(0x7f0000000080), 0x297ef) 11:47:08 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:08 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 319.105643][T11700] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:08 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536c"], 0x1d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) [ 319.177909][T11697] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 319.180716][T11707] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 319.206692][T11700] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:08 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:08 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) sendmmsg(r2, &(0x7f0000000640)=[{{&(0x7f0000000480)=@pppol2tp, 0x80, 0x0}, 0x1}], 0x1, 0x40c4) close(r2) close(r1) 11:47:09 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536c"], 0x1d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:09 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 11:47:09 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:09 executing program 2: 11:47:09 executing program 2: [ 319.840304][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 319.846132][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 11:47:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:09 executing program 2: 11:47:09 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:09 executing program 2: epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f000000dff4)) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x5002}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) syz_genetlink_get_family_id$tipc2(0x0) r3 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r3, 0x2007fff) sendfile(r0, r3, 0x0, 0x800000000024) [ 320.160324][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 320.166185][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 320.400353][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 320.504602][T11792] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 320.518819][T11792] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 320.655090][T11797] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 320.823629][T11792] syz-executor2 (11792) used greatest stack depth: 23328 bytes left 11:47:12 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536c"], 0x1d) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 11:47:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:12 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:12 executing program 2: epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f000000dff4)) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x5002}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) syz_genetlink_get_family_id$tipc2(0x0) r3 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r3, 0x2007fff) sendfile(r0, r3, 0x0, 0x800000000024) [ 322.693616][T11818] __ntfs_error: 11 callbacks suppressed [ 322.693627][T11818] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 322.708606][T11815] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 322.734692][T11822] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 11:47:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x18', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 322.932221][T11832] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 323.028630][T11815] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 323.038019][T11818] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:12 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 11:47:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:12 executing program 2: epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f000000dff4)) sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x40000000000009) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x5002}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) syz_genetlink_get_family_id$tipc2(0x0) r3 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) ftruncate(r3, 0x2007fff) sendfile(r0, r3, 0x0, 0x800000000024) [ 323.417711][T11866] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 323.516889][T11873] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 323.597907][T11872] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 323.621391][T11866] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 324.000326][ C1] net_ratelimit: 23 callbacks suppressed [ 324.000338][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 324.011831][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 324.320351][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 324.326166][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 324.560362][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 324.566198][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 325.200313][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 325.200338][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 325.206127][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 325.211864][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:47:15 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f"], 0x2b) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 11:47:15 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs ', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:15 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xf7c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x0, 0x0) 11:47:15 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs ', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x18', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 325.848826][T11893] __loop_clr_fd: partition scan of loop2 failed (rc=-22) 11:47:15 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f"], 0x2b) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 11:47:15 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x400000000000000, &(0x7f00008feff0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d0000100000000000000000000000030006000200000002000000e00000010000000000000000080012000200020000e1fc007d220000180000010103000000000300000000000000001f03000000160000000301000000000000000000000000000000000000030005000000000002000000e00000010000000000000000"], 0x80}}, 0x0) 11:47:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs ', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:15 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x0f', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:15 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 11:47:15 executing program 2: 11:47:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x0f', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 326.354825][T11947] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:16 executing program 2: 11:47:16 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x10', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 11:47:18 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f"], 0x2b) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:18 executing program 2: 11:47:18 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x2) 11:47:18 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:18 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 329.064574][T12002] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 329.088442][T12007] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:18 executing program 2: [ 329.113854][T12009] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3) 11:47:18 executing program 2: 11:47:18 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9f"], 0x32) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 329.294012][T12002] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 329.338703][T12009] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 329.360299][ C0] net_ratelimit: 20 callbacks suppressed [ 329.360307][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 329.360341][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 329.366010][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 329.383459][ C1] protocol 88fb is buggy, dev hsr_slave_0 11:47:18 executing program 2: [ 329.389238][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4) 11:47:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:19 executing program 2: 11:47:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5) 11:47:19 executing program 2: [ 329.873072][T12059] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 329.883781][T12061] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 329.903188][T12068] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:19 executing program 2: 11:47:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6) 11:47:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x10', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 330.154232][T12059] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 330.169856][T12061] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 330.240326][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 330.246231][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 330.560366][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 330.566238][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 330.800339][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:47:21 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9f"], 0x32) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:21 executing program 2: 11:47:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7) 11:47:21 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x10', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:21 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:22 executing program 2: 11:47:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9f"], 0x32) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8) 11:47:22 executing program 2: 11:47:22 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:22 executing program 2: 11:47:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x9) 11:47:22 executing program 2: 11:47:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:22 executing program 2: 11:47:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xa) 11:47:22 executing program 2: [ 334.400383][ C1] net_ratelimit: 19 callbacks suppressed [ 334.400390][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 334.411863][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 334.720318][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 334.726122][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 334.960384][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 334.966276][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 335.600316][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 335.600321][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 335.600390][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 335.606146][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:25 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8"], 0x36) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:25 executing program 2: 11:47:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xb) [ 335.722352][T12195] __ntfs_error: 8 callbacks suppressed [ 335.722363][T12195] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 335.743847][T12198] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:25 executing program 2: [ 335.773122][T12194] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xc) 11:47:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 335.912377][T12198] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 335.931241][T12194] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:25 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@getqdisc={0x24, 0x26, 0x30b}, 0x24}}, 0x0) recvmmsg(r0, &(0x7f0000009e80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002280)=[{&(0x7f0000000d80)=""/69, 0x45}, {&(0x7f0000000e00)=""/242, 0xf2}, {&(0x7f0000000f00)=""/37, 0x25}, {&(0x7f0000000f40)=""/4096, 0x1000}, {&(0x7f0000001fc0)=""/216, 0xd8}, {&(0x7f0000002140)=""/249, 0xf9}], 0x6}}], 0x2, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="030000000000000000000000"], 0x1}}, 0x0) 11:47:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xd) [ 336.182910][T12223] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 336.312928][T12238] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 336.394354][T12238] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:28 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8"], 0x36) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xe) 11:47:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 338.839743][T12259] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 338.848437][T12262] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xf) 11:47:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 339.760345][ C1] net_ratelimit: 20 callbacks suppressed [ 339.760354][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 339.760411][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 339.766079][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 339.783290][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 339.789015][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 340.640340][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 340.646139][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 340.960372][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 340.966187][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 341.200356][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:47:31 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8"], 0x36) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x10) 11:47:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 341.913777][T12320] __ntfs_error: 8 callbacks suppressed [ 341.913788][T12320] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 341.973520][T12328] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 342.053396][T12330] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 342.084998][T12328] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x11) 11:47:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xc0', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 342.415612][T12365] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 342.425653][T12362] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 342.597911][T12365] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 342.616293][T12362] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 344.800312][ C1] net_ratelimit: 19 callbacks suppressed [ 344.800322][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 344.811781][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:34 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c87255"], 0x38) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x12) 11:47:34 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 345.005069][T12388] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 345.039705][T12392] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x13) [ 345.120346][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 345.126287][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:47:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:34 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 345.360325][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 345.366164][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 346.000328][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 346.000333][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 346.000400][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 346.006156][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:37 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c87255"], 0x38) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x14) 11:47:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xc0', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xc0', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 348.084080][T12459] __ntfs_error: 8 callbacks suppressed [ 348.084090][T12459] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) 11:47:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x15) 11:47:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) 11:47:38 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 348.444573][T12459] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x16) [ 348.550013][T12500] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 348.626459][T12509] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 348.729163][T12500] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 350.160311][ C1] net_ratelimit: 20 callbacks suppressed [ 350.160321][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 350.160367][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 350.166048][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 350.183271][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 350.189008][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 351.040341][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 351.046140][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:40 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c87255"], 0x38) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) 11:47:40 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x17) 11:47:40 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:40 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 351.185976][T12533] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 351.229508][T12532] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 351.239344][T12535] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x18) 11:47:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 351.360327][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 351.366124][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 351.418656][T12535] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 351.434847][T12533] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:41 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:41 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:41 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 351.600352][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:47:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x19) 11:47:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:43 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:47:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 354.223875][T12596] __ntfs_error: 4 callbacks suppressed [ 354.223886][T12596] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 354.261078][T12591] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:43 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) [ 354.263138][T12601] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1a) 11:47:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 354.463645][T12591] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 354.485252][T12601] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:44 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:47:44 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:44 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1b) 11:47:44 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 354.637500][T12622] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 354.858392][T12622] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 354.865864][T12636] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 354.877256][T12637] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 355.101102][T12637] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 355.200340][ C1] net_ratelimit: 18 callbacks suppressed [ 355.200348][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 355.211805][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 355.520324][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 355.526155][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 355.760384][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 355.766251][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 356.400360][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 356.400366][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 356.400432][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 356.406170][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:47:46 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:46 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1c) 11:47:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1d) 11:47:47 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x0, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1e) 11:47:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:47 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x26) 11:47:50 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, 0x0) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x2e) 11:47:50 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 360.560328][ C1] net_ratelimit: 20 callbacks suppressed [ 360.560337][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 360.560379][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 360.566084][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 360.583265][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 360.589029][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 360.655547][T12793] __ntfs_error: 18 callbacks suppressed [ 360.655557][T12793] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 360.670868][T12791] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x34) 11:47:50 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 360.802847][T12800] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 360.866295][T12791] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:50 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x36) [ 361.101718][T12832] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 361.126238][T12835] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 361.181612][T12837] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 361.296312][T12832] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 361.354956][T12837] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x38) 11:47:51 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 361.440322][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 361.446157][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 361.505694][T12861] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 361.770318][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 361.776147][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 362.000377][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:47:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:53 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, 0x0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3a) 11:47:53 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3c) 11:47:53 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:53 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:53 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3e) 11:47:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:54 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:54 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:54 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:54 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b0") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x42) [ 365.600278][ C1] net_ratelimit: 18 callbacks suppressed [ 365.600285][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 365.611702][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 365.920377][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 365.926195][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 366.160340][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 366.166179][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 366.800312][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 366.800333][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 366.806125][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 366.811881][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:47:56 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b0") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:56 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:56 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:56 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x44) [ 367.307946][T12998] __ntfs_error: 17 callbacks suppressed [ 367.307957][T12998] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b0") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:56 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xffffffffffffffff, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:57 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x46) [ 367.382162][T13008] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 367.385130][T13002] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 367.476708][T12998] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 367.537037][T13008] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 367.540021][T13002] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:57 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:57 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:47:57 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:57 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:57 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:47:57 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x48) 11:47:57 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 367.884285][T13047] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:47:57 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 367.953256][T13064] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:47:57 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4a) [ 368.051375][T13067] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:57 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:57 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:47:57 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 368.166580][T13067] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:47:57 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4c) 11:48:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:00 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4e) 11:48:00 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 370.960314][ C1] net_ratelimit: 19 callbacks suppressed [ 370.960322][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 370.960371][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 370.966088][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 370.983335][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 370.989100][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 371.850346][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 371.856141][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 372.160418][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 372.166225][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 372.410347][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:48:03 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4f) 11:48:03 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:03 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:03 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 373.946432][T13186] __ntfs_error: 17 callbacks suppressed [ 373.946442][T13186] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 373.965888][T13190] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x50) 11:48:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 374.137478][T13186] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 374.153054][T13190] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:03 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x52) [ 374.502821][T13237] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 374.601655][T13237] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 376.000291][ C1] net_ratelimit: 19 callbacks suppressed [ 376.000298][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 376.011749][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 376.320405][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 376.326233][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 376.560342][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 376.566190][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:06 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:06 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:06 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x54) 11:48:06 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 376.986617][T13253] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x56) [ 377.094822][T13253] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 377.109978][T13259] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 377.200295][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 377.200301][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 377.200356][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 377.206117][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:06 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:06 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:06 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 377.408349][T13286] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:09 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x58) 11:48:09 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:09 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf9', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:09 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 380.049477][T13319] __ntfs_error: 3 callbacks suppressed [ 380.049612][T13319] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:09 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, r1, 0x0) [ 380.114596][T13329] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:09 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, 0x0) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5a) 11:48:09 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:09 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:10 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x7f', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, r1, 0x0) 11:48:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5c) 11:48:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, r1, 0x0) [ 380.660849][T13371] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5e) 11:48:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x10, r1, 0x0) [ 380.791909][T13371] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:10 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x10, r1, 0x0) [ 381.360308][ C1] net_ratelimit: 20 callbacks suppressed [ 381.360316][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 381.360544][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 381.366043][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 381.371799][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 381.377541][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 381.394756][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 382.240331][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 382.246149][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 382.560292][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 382.566093][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:12 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) 11:48:12 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x8c', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x60) 11:48:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x10, r1, 0x0) 11:48:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:13 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) [ 383.408579][T13436] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 383.421894][T13432] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x62) 11:48:13 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) 11:48:13 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, 0xffffffffffffffff, 0x0) [ 383.651156][T13432] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x64) [ 383.703970][T13436] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:13 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf6', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:15 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) 11:48:15 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:15 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:15 executing program 2: 11:48:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x65) 11:48:15 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 386.400348][ C1] net_ratelimit: 19 callbacks suppressed [ 386.400357][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 386.406078][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:16 executing program 2: 11:48:16 executing program 2: [ 386.566458][T13507] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x66) 11:48:16 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000040)={&(0x7f0000000280)={0x10, 0xf000}, 0x59, &(0x7f0000000200)={&(0x7f0000000240)=@bridge_delneigh={0x28, 0x1c, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r2, 0x2}, [@NDA_LLADDR={0xa, 0x2, @local}]}, 0x42e}}, 0x0) 11:48:16 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:16 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 386.720327][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 386.726182][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 386.916127][T13541] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 386.960366][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 386.966202][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 387.041543][T13541] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 387.600319][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 387.600325][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 387.600417][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 387.606127][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:19 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0) 11:48:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x67) 11:48:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="ba4300b00bee0f017edaf02114650f1ea7f07f0f20e06635040000000f22e03e0fc72dbaf80c66b80fb2578d66efbafc0cb001ee0fc75ba2f40f3805800060", 0x3f}], 0x1, 0x0, 0x0, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, 0x0) ioctl$DRM_IOCTL_GET_CTX(r3, 0xc0086423, &(0x7f0000000140)={0x0, 0x3}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0xa082, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:48:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 389.514289][T13558] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 389.628580][T13565] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 389.681573][T13558] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x68) 11:48:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6a) 11:48:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 390.188682][T13609] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 390.470384][T13609] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 391.760304][ C1] net_ratelimit: 19 callbacks suppressed [ 391.760314][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 391.760334][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 391.766067][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 391.771792][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 391.777529][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 391.794628][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 11:48:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="ba4300b00bee0f017edaf02114650f1ea7f07f0f20e06635040000000f22e03e0fc72dbaf80c66b80fb2578d66efbafc0cb001ee0fc75ba2f40f3805800060", 0x3f}], 0x1, 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0xa082, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 11:48:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6c) 11:48:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:22 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 392.573195][T13649] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6e) 11:48:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) [ 392.640311][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 392.646192][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 392.771146][T13649] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:22 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, 0x0, 0x0, 0x0) [ 392.960320][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 392.966155][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x70) [ 393.296888][T13705] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:23 executing program 2: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x34d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffc, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x12d, 0x9}, 0x0, 0x0, 0x0, 0x800000000}, r0, 0x0, 0xffffffffffffffff, 0x0) socket$inet(0x2, 0x80007, 0x4) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000100)='cpu&3\n\x00\n\xc0\xf9*`\x00') 11:48:23 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf9', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:23 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x72) 11:48:23 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 393.618500][T13730] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x74) 11:48:23 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 393.827695][T13758] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:23 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) unshare(0x400) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000140)='configfs\x00', 0x0, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000340)=ANY=[@ANYBLOB="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"]) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) open(&(0x7f0000006900)='./file0\x00', 0x0, 0x0) lseek(r1, 0xc, 0x0) 11:48:23 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf9', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:23 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfc', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 394.107530][T13758] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfc', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.cpu\x00', 0x200002, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000080), 0x12) unshare(0x40000000) r2 = openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.mems\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2c}]}, 0xe) 11:48:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x76) 11:48:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfd', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:25 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000180)={0x5, {{0x2, 0x4e24, @local}}, {{0x2, 0x4e20, @rand_addr=0xfff}}}, 0x108) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) [ 396.112266][T13803] IPVS: ftp: loaded support on port[0] = 21 [ 396.155174][T13808] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:25 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x800000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f00000007c0)={&(0x7f0000105000/0x4000)=nil, &(0x7f0000105000/0x4000)=nil, 0x4000}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x00\x0f\x1c\xe3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') fcntl$setstatus(r3, 0x4, 0x14400) mprotect(&(0x7f0000104000/0x3000)=nil, 0x3000, 0x0) poll(&(0x7f0000000400)=[{r1, 0x1}, {}], 0x2, 0x8) pread64(r3, &(0x7f0000003c00)=""/4096, 0xffffff72, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105518, &(0x7f0000001000)) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000000)={0x0, 0x7f}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='\x00'}, 0x10) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000440)=0x40, 0x4) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000008c0)={0x0, 0x0, 0x72feb984}, &(0x7f0000000900)=0x10) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, &(0x7f0000000740)={'TPROXY\x00'}, &(0x7f0000000780)=0x1e) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r3, 0x0, 0x35, 0x0, &(0x7f0000000800)="f3be99bdb7ecb99c4ee54e5185b363e88a2d556cdefea52ec72b638f250994e2a31a1ee2cecea38f4402bf069433ba37cee87b08e6", 0x0}, 0x28) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000500)={0x4000}) getegid() r5 = semget(0x0, 0x0, 0x100) semctl$SETVAL(r5, 0x1, 0x10, &(0x7f0000000540)=0x6) r6 = dup2(r0, r4) syz_emit_ethernet(0x1, &(0x7f0000000940)=ANY=[@ANYBLOB="0180c2000006aa9980da4689ff5873867110c22f81a95a544d15c962a6faf92bb1cc000000000076c0222d20b73263a4b3580f121f50a66f5f0a17b652abb07860d717479acb947d83f8c9cd6b5fed8b6393bb302a6b477fc2202548dc49fe15dd3299935a339fcc45c907ed01a9b14c8df56ab3d2e94d9106b0e2405ae14f7b116e791dc66f09dbab2495b28355bd8aefb331fdbaf395ce0035935dfafa00d179702ea78fd2d2c80d888a2a05d5fe28ecac8a5c6534fc97f4c465fb954904d1b7c7c785fdc304500b2033263a42e56a759e45b01d35faabcb3a7b8e7dada13ab42e1eac7c81b140c91366379338df83d4d753e2fe64ffc6218f66e27d01c6538da930b9f13003cfa2a1847c57f6fc40a87d8574023d1a9a451273937be6c43712a1c2a8dea623c626b5cb88c9a9d021d1175bffae74ec20409318b536f2103891bc92d50bf12857ac77a2c4"], 0x0) ioctl$TIOCNOTTY(r6, 0x5422) r7 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r7, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) 11:48:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x78) 11:48:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfd', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x7f', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 396.361035][T13823] IPVS: ftp: loaded support on port[0] = 21 11:48:26 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x800000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f00000007c0)={&(0x7f0000105000/0x4000)=nil, &(0x7f0000105000/0x4000)=nil, 0x4000}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x00\x0f\x1c\xe3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') fcntl$setstatus(r3, 0x4, 0x14400) mprotect(&(0x7f0000104000/0x3000)=nil, 0x3000, 0x0) poll(&(0x7f0000000400)=[{r1, 0x1}, {}], 0x2, 0x8) pread64(r3, &(0x7f0000003c00)=""/4096, 0xffffff72, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105518, &(0x7f0000001000)) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000000)={0x0, 0x7f}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='\x00'}, 0x10) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000440)=0x40, 0x4) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000008c0)={0x0, 0x0, 0x72feb984}, &(0x7f0000000900)=0x10) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, &(0x7f0000000740)={'TPROXY\x00'}, &(0x7f0000000780)=0x1e) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r3, 0x0, 0x35, 0x0, &(0x7f0000000800)="f3be99bdb7ecb99c4ee54e5185b363e88a2d556cdefea52ec72b638f250994e2a31a1ee2cecea38f4402bf069433ba37cee87b08e6", 0x0}, 0x28) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000500)={0x4000}) getegid() r5 = semget(0x0, 0x0, 0x100) semctl$SETVAL(r5, 0x1, 0x10, &(0x7f0000000540)=0x6) r6 = dup2(r0, r4) syz_emit_ethernet(0x1, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0) ioctl$TIOCNOTTY(r6, 0x5422) r7 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r7, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) 11:48:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7a) 11:48:26 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x7f', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:26 executing program 1 (fault-call:8 fault-nth:0): clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 396.733928][T13850] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 396.800330][ C1] net_ratelimit: 20 callbacks suppressed [ 396.800337][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 396.806124][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:26 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x8c', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:26 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:26 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7c) [ 397.120335][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 397.126212][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x800000000001, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f00000007c0)={&(0x7f0000105000/0x4000)=nil, &(0x7f0000105000/0x4000)=nil, 0x4000}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x00\x0f\x1c\xe3\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') fcntl$setstatus(r3, 0x4, 0x14400) mprotect(&(0x7f0000104000/0x3000)=nil, 0x3000, 0x0) poll(&(0x7f0000000400)=[{r1, 0x1}, {}], 0x2, 0x8) pread64(r3, &(0x7f0000003c00)=""/4096, 0xffffff72, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105518, &(0x7f0000001000)) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000000)={0x0, 0x7f}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='\x00'}, 0x10) setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000440)=0x40, 0x4) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000008c0)={0x0, 0x0, 0x72feb984}, &(0x7f0000000900)=0x10) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, &(0x7f0000000740)={'TPROXY\x00'}, &(0x7f0000000780)=0x1e) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r3, 0x0, 0x35, 0x0, &(0x7f0000000800)="f3be99bdb7ecb99c4ee54e5185b363e88a2d556cdefea52ec72b638f250994e2a31a1ee2cecea38f4402bf069433ba37cee87b08e6", 0x0}, 0x28) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000500)={0x4000}) getegid() r5 = semget(0x0, 0x0, 0x100) semctl$SETVAL(r5, 0x1, 0x10, &(0x7f0000000540)=0x6) r6 = dup2(r0, r4) syz_emit_ethernet(0x1, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x0) ioctl$TIOCNOTTY(r6, 0x5422) r7 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r7, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) 11:48:26 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x0, 0x0) ioctl$KVM_SET_XCRS(r1, 0x4188aea7, &(0x7f0000000340)=ANY=[@ANYBLOB="04000000070000000200000000800000000000000000030000000000ff0700000000000800000200000000000000fcffffffffffffff050000000000000000000000000000000000440428a63abcdc707ee7c1cb16ef24849ce3378f1b5fc59bc29957ffdbc700f3a91acd8ae4024d82c5a3bf6113e1504c26269b992fb0ccb160dbb0"]) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec089c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x9, 0x0, @thr={&(0x7f0000000180)="1e803a7f0aba5172b46409df3c89be81752147387be2256e9a39b1cf6776975c50059be69630a12dde16610fa3814182e81131cc015d13bd7fa06e98ceb134dbd4430cbbc344e4a2c8c01f43b5c92da8d301daf6e475f807cd6c0f4737f9fab2d451480c87439ba65dccb35ce8f5d8d10a292c5e7f572508313b40a39dd8dbb99d3695a7fd4962d6dbd0b5fb5e6eda6f997e1a327ffa785c4649faaa985eef08bc0ac925314ace92e53c2f5544bdee0363794d63252815fa101a3f65117086", &(0x7f0000000240)="74bf7717e1a6aca938393d04c3754228daba7cac8627fc8c1a70a8c4f91101a6cb865a6742e231d37cf3c2c61b4f5b04aca4c6cdae1b8b8fd214a8045d656044ef4a5a24196374730d0a68d9966519e414caafd8ce900c71795a424ff795fefd8324573c7ea5ed4d2c75e90ac89baf8a1c27974f506b4e4c5f75ee7f3955b560012e852c429700d18fd4aa89f923da100cdd75ab1ebcba9fdd9ad73b062ea2a80b44bd8520926fe40e712120c15cb302b74f2b5a24ac3cde4157"}}, &(0x7f0000000300)) [ 397.360323][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 397.366179][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:27 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x8c', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 397.578156][T13908] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7e) 11:48:27 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c00180000258a000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c5b2a42c21e9ffbfa49c872559523eb5c932f167686826de77b62d778eb60698928f0929069f2762d8ce6d3b29efce1bc4a60f05e94cfbce6d9d77aa76884dee1981a802cc1f1d0164315158079388f64"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 397.731216][T13908] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:27 executing program 2 (fault-call:5 fault-nth:0): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:27 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:27 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x97', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x82) [ 397.931314][T13939] cgroup: fork rejected by pids controller in /syz1 [ 398.000331][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 398.000360][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 398.006181][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 398.011853][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:27 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000040)={0x0, 0x3b42, 0xffff, 0x2}, &(0x7f0000000080)=0x10) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000000c0)={r1, 0x5, 0x0, 0x6, 0x40}, 0x14) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0}, &(0x7f00000001c0)=0xc) ptrace$cont(0x1f, r2, 0x2, 0x200) r3 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c003f00000000000000bdb3e61f0000add852536cd82e000074365da4058c37adc82f5c592842c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r3, 0x0, 0x0) ptrace$setregs(0x10200d, r3, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r3, 0x0, 0x0) [ 398.139228][T13950] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 398.167364][T13968] FAULT_INJECTION: forcing a failure. [ 398.167364][T13968] name failslab, interval 1, probability 0, space 0, times 0 11:48:27 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x97', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 398.237625][T13968] CPU: 0 PID: 13968 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 398.246672][T13968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.256725][T13968] Call Trace: [ 398.260027][T13968] dump_stack+0x172/0x1f0 [ 398.264371][T13968] should_fail.cold+0xa/0x15 [ 398.269002][T13968] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 398.274817][T13968] ? lock_downgrade+0x880/0x880 [ 398.279669][T13968] ? ___might_sleep+0x163/0x280 [ 398.284546][T13968] __should_failslab+0x121/0x190 [ 398.284567][T13968] should_failslab+0x9/0x14 [ 398.284588][T13968] kmem_cache_alloc+0x2be/0x710 [ 398.294002][T13968] ? mpx_unmapped_area_check+0xd6/0x106 [ 398.304391][T13968] vm_area_alloc+0x20/0x110 [ 398.304408][T13968] mmap_region+0x964/0x1770 [ 398.304433][T13968] ? __x64_sys_brk+0x760/0x760 [ 398.304451][T13968] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 398.304469][T13968] ? get_unmapped_area+0x295/0x3b0 [ 398.304487][T13968] do_mmap+0x8e2/0x1080 [ 398.333739][T13968] vm_mmap_pgoff+0x1c5/0x230 [ 398.338343][T13968] ? vma_is_stack_for_current+0xd0/0xd0 [ 398.343896][T13968] ? ksys_dup3+0x3e0/0x3e0 [ 398.348325][T13968] ksys_mmap_pgoff+0x4aa/0x630 [ 398.353095][T13968] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 398.358729][T13968] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 398.364184][T13968] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 398.369645][T13968] ? do_syscall_64+0x26/0x610 [ 398.374323][T13968] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 398.380405][T13968] __x64_sys_mmap+0xe9/0x1b0 [ 398.385026][T13968] do_syscall_64+0x103/0x610 [ 398.389614][T13968] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 398.395500][T13968] RIP: 0033:0x458089 [ 398.399388][T13968] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 398.418981][T13968] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 398.427387][T13968] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 398.435351][T13968] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 398.443328][T13968] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 398.451293][T13968] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 398.459257][T13968] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 11:48:28 executing program 2 (fault-call:5 fault-nth:1): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:28 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = syz_open_procfs(r0, &(0x7f00000003c0)='n\xfat\b\x00f\xfe\x01\x1a\xb9t6\x00') setsockopt$inet6_MRT6_DEL_MFC_PROXY(r1, 0x29, 0xd3, &(0x7f0000000340)={{0xa, 0x4e24, 0x7fffffff, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x1}, {0xa, 0x4e22, 0x20, @remote, 0x8}, 0x401, [0x5, 0x7, 0x2d, 0x6, 0x1ff, 0x1, 0x2, 0x6]}, 0x5c) r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_NET_GET(r1, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40120}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x15c, r3, 0x108, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x3c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x71}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10001}]}, @TIPC_NLA_MEDIA={0x78, 0x5, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe03}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc4a2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}]}, @TIPC_NLA_NET={0x54, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1d024ff3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xe599}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xff}, @TIPC_NLA_NET_NODEID_W1={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1ff}]}, @TIPC_NLA_BEARER={0x40, 0x1, [@TIPC_NLA_BEARER_PROP={0x34, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x100000000}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x80}, 0x800) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="30010000", @ANYRES16=r3, @ANYBLOB="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"], 0x130}, 0x1, 0x0, 0x0, 0x8010}, 0x20008000) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x84) [ 398.594840][T13950] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf6', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 398.704072][T13989] FAULT_INJECTION: forcing a failure. [ 398.704072][T13989] name failslab, interval 1, probability 0, space 0, times 0 [ 398.798180][T13989] CPU: 0 PID: 13989 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 398.807262][T13989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 398.817313][T13989] Call Trace: [ 398.817387][T13989] dump_stack+0x172/0x1f0 [ 398.817415][T13989] should_fail.cold+0xa/0x15 [ 398.829585][T13989] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 398.835396][T13989] ? lock_downgrade+0x880/0x880 [ 398.840256][T13989] ? ___might_sleep+0x163/0x280 [ 398.840277][T13989] __should_failslab+0x121/0x190 [ 398.840298][T13989] should_failslab+0x9/0x14 [ 398.840315][T13989] kmem_cache_alloc+0x2be/0x710 [ 398.840332][T13989] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 398.840349][T13989] ? check_preemption_disabled+0x48/0x290 [ 398.840364][T13989] ? __mutex_lock+0x3cd/0x1310 [ 398.840385][T13989] ? shmem_destroy_callback+0xc0/0xc0 [ 398.840405][T13989] shmem_alloc_inode+0x1c/0x50 [ 398.886258][T13989] alloc_inode+0x66/0x190 [ 398.890584][T13989] new_inode_pseudo+0x19/0xf0 [ 398.895256][T13989] new_inode+0x1f/0x40 [ 398.899324][T13989] shmem_get_inode+0x84/0x780 [ 398.904020][T13989] __shmem_file_setup.part.0+0x1e2/0x2b0 [ 398.909655][T13989] shmem_file_setup+0x66/0x90 [ 398.914362][T13989] ashmem_mmap+0x35f/0x520 [ 398.918823][T13989] mmap_region+0xc3a/0x1770 [ 398.923330][T13989] ? __x64_sys_brk+0x760/0x760 [ 398.928096][T13989] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 398.934335][T13989] ? get_unmapped_area+0x295/0x3b0 [ 398.939444][T13989] do_mmap+0x8e2/0x1080 [ 398.943620][T13989] vm_mmap_pgoff+0x1c5/0x230 [ 398.948218][T13989] ? vma_is_stack_for_current+0xd0/0xd0 [ 398.953755][T13989] ? ksys_dup3+0x3e0/0x3e0 [ 398.958180][T13989] ksys_mmap_pgoff+0x4aa/0x630 [ 398.962960][T13989] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 398.968589][T13989] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 398.974046][T13989] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 398.979497][T13989] ? do_syscall_64+0x26/0x610 [ 398.984172][T13989] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 398.990243][T13989] __x64_sys_mmap+0xe9/0x1b0 [ 398.994833][T13989] do_syscall_64+0x103/0x610 [ 398.999427][T13989] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 399.005311][T13989] RIP: 0033:0x458089 [ 399.009205][T13989] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 399.028813][T13989] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 399.037218][T13989] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 399.045184][T13989] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 399.053150][T13989] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 399.061117][T13989] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 399.069079][T13989] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 [ 399.153127][T14006] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x86) 11:48:28 executing program 2 (fault-call:5 fault-nth:2): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xf6', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:29 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:29 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfd', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 399.506026][T14027] FAULT_INJECTION: forcing a failure. [ 399.506026][T14027] name failslab, interval 1, probability 0, space 0, times 0 [ 399.555573][T14027] CPU: 0 PID: 14027 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 399.564647][T14027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.574708][T14027] Call Trace: [ 399.578010][T14027] dump_stack+0x172/0x1f0 [ 399.582350][T14027] should_fail.cold+0xa/0x15 [ 399.586962][T14027] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 399.592782][T14027] ? lock_downgrade+0x880/0x880 [ 399.597644][T14027] ? ___might_sleep+0x163/0x280 11:48:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x88) [ 399.602505][T14027] __should_failslab+0x121/0x190 [ 399.607454][T14027] should_failslab+0x9/0x14 [ 399.611968][T14027] kmem_cache_alloc+0x2be/0x710 [ 399.616829][T14027] ? __do_munmap+0x8a0/0xef0 [ 399.621462][T14027] vm_area_alloc+0x20/0x110 [ 399.625978][T14027] mmap_region+0x964/0x1770 [ 399.630494][T14027] ? __x64_sys_brk+0x760/0x760 [ 399.635261][T14027] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 399.641502][T14027] ? get_unmapped_area+0x295/0x3b0 [ 399.646620][T14027] do_mmap+0x8e2/0x1080 [ 399.650834][T14027] vm_mmap_pgoff+0x1c5/0x230 [ 399.655440][T14027] ? vma_is_stack_for_current+0xd0/0xd0 [ 399.660982][T14027] ? ksys_dup3+0x3e0/0x3e0 [ 399.665412][T14027] ksys_mmap_pgoff+0x4aa/0x630 [ 399.670181][T14027] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 399.675854][T14027] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 399.681314][T14027] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 399.686773][T14027] ? do_syscall_64+0x26/0x610 [ 399.691451][T14027] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 399.697524][T14027] __x64_sys_mmap+0xe9/0x1b0 [ 399.702131][T14027] do_syscall_64+0x103/0x610 [ 399.706972][T14027] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 399.712875][T14027] RIP: 0033:0x458089 [ 399.716772][T14027] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 399.736374][T14027] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 399.744786][T14027] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 399.752772][T14027] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 399.760741][T14027] RBP: 000000000073bf00 R08: 0000000000000003 R09: 0000000000000000 [ 399.768707][T14027] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 399.776676][T14027] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 [ 399.822259][T14033] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:29 executing program 2 (fault-call:5 fault-nth:3): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 399.960015][T14033] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 400.035686][T14056] FAULT_INJECTION: forcing a failure. [ 400.035686][T14056] name failslab, interval 1, probability 0, space 0, times 0 11:48:29 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 400.105428][T14056] CPU: 0 PID: 14056 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 400.114591][T14056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 400.124647][T14056] Call Trace: [ 400.127972][T14056] dump_stack+0x172/0x1f0 [ 400.132364][T14056] should_fail.cold+0xa/0x15 [ 400.136997][T14056] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 400.142804][T14056] ? lock_downgrade+0x880/0x880 [ 400.147662][T14056] ? ___might_sleep+0x163/0x280 [ 400.152524][T14056] __should_failslab+0x121/0x190 [ 400.157465][T14056] should_failslab+0x9/0x14 [ 400.161979][T14056] kmem_cache_alloc+0x2be/0x710 [ 400.166836][T14056] __alloc_file+0x27/0x300 [ 400.171265][T14056] alloc_empty_file+0x72/0x170 [ 400.176073][T14056] alloc_file+0x5e/0x4d0 [ 400.180324][T14056] alloc_file_pseudo+0x189/0x280 [ 400.185364][T14056] ? alloc_file+0x4d0/0x4d0 [ 400.189871][T14056] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 400.196124][T14056] __shmem_file_setup.part.0+0x108/0x2b0 [ 400.201777][T14056] shmem_file_setup+0x66/0x90 [ 400.206461][T14056] ashmem_mmap+0x35f/0x520 [ 400.210878][T14056] mmap_region+0xc3a/0x1770 [ 400.215390][T14056] ? __x64_sys_brk+0x760/0x760 [ 400.220163][T14056] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 400.226436][T14056] ? get_unmapped_area+0x295/0x3b0 [ 400.231551][T14056] do_mmap+0x8e2/0x1080 [ 400.235714][T14056] vm_mmap_pgoff+0x1c5/0x230 [ 400.240313][T14056] ? vma_is_stack_for_current+0xd0/0xd0 [ 400.245854][T14056] ? ksys_dup3+0x3e0/0x3e0 [ 400.250286][T14056] ksys_mmap_pgoff+0x4aa/0x630 [ 400.255058][T14056] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 400.260690][T14056] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 400.266146][T14056] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 400.271608][T14056] ? do_syscall_64+0x26/0x610 [ 400.276288][T14056] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 400.282364][T14056] __x64_sys_mmap+0xe9/0x1b0 [ 400.287003][T14056] do_syscall_64+0x103/0x610 [ 400.291594][T14056] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 400.297482][T14056] RIP: 0033:0x458089 [ 400.301376][T14056] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 400.320978][T14056] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 400.329386][T14056] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 400.337354][T14056] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 400.345321][T14056] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 400.353292][T14056] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 400.361265][T14056] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 [ 400.709080][T14069] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 400.907195][T14069] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:31 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x9, r0, 0x0, 0x0) 11:48:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8a) 11:48:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xfd', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:31 executing program 2 (fault-call:5 fault-nth:4): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 401.741109][T14089] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 401.766627][T14096] FAULT_INJECTION: forcing a failure. [ 401.766627][T14096] name failslab, interval 1, probability 0, space 0, times 0 [ 401.843171][T14085] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 401.857173][T14096] CPU: 0 PID: 14096 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 401.866248][T14096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 401.876309][T14096] Call Trace: [ 401.879613][T14096] dump_stack+0x172/0x1f0 [ 401.883966][T14096] should_fail.cold+0xa/0x15 11:48:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 401.888572][T14096] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 401.894384][T14096] ? lock_downgrade+0x880/0x880 [ 401.899244][T14096] ? ___might_sleep+0x163/0x280 [ 401.904102][T14096] __should_failslab+0x121/0x190 [ 401.909047][T14096] should_failslab+0x9/0x14 [ 401.913550][T14096] kmem_cache_alloc+0x2be/0x710 [ 401.918401][T14096] ? __alloc_file+0x27/0x300 [ 401.922998][T14096] ? rcu_read_lock_sched_held+0x110/0x130 [ 401.928722][T14096] ? kmem_cache_alloc+0x341/0x710 [ 401.933755][T14096] security_file_alloc+0x39/0x170 [ 401.938785][T14096] __alloc_file+0xac/0x300 [ 401.943215][T14096] alloc_empty_file+0x72/0x170 [ 401.947991][T14096] alloc_file+0x5e/0x4d0 [ 401.952271][T14096] alloc_file_pseudo+0x189/0x280 [ 401.957245][T14096] ? alloc_file+0x4d0/0x4d0 [ 401.961749][T14096] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 401.968007][T14096] __shmem_file_setup.part.0+0x108/0x2b0 [ 401.973645][T14096] shmem_file_setup+0x66/0x90 [ 401.978327][T14096] ashmem_mmap+0x35f/0x520 [ 401.982771][T14096] mmap_region+0xc3a/0x1770 [ 401.987287][T14096] ? __x64_sys_brk+0x760/0x760 [ 401.992055][T14096] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 401.998299][T14096] ? get_unmapped_area+0x295/0x3b0 [ 402.003414][T14096] do_mmap+0x8e2/0x1080 [ 402.007577][T14096] vm_mmap_pgoff+0x1c5/0x230 [ 402.012183][T14096] ? vma_is_stack_for_current+0xd0/0xd0 [ 402.017762][T14096] ? ksys_dup3+0x3e0/0x3e0 [ 402.022194][T14096] ksys_mmap_pgoff+0x4aa/0x630 [ 402.026981][T14096] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 402.032616][T14096] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 402.038287][T14096] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 402.043785][T14096] ? do_syscall_64+0x26/0x610 [ 402.048462][T14096] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.054529][T14096] __x64_sys_mmap+0xe9/0x1b0 [ 402.059123][T14096] do_syscall_64+0x103/0x610 [ 402.063723][T14096] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.069611][T14096] RIP: 0033:0x458089 [ 402.073505][T14096] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:48:31 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x3, 0x40000) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000040)=0xf001) [ 402.093109][T14096] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 402.101524][T14096] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 402.109490][T14096] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 402.117457][T14096] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 402.125423][T14096] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 402.133393][T14096] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 11:48:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8c) [ 402.160295][ C1] net_ratelimit: 19 callbacks suppressed [ 402.160303][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 402.160339][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 402.166047][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 402.183306][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 402.189070][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:31 executing program 2 (fault-call:5 fault-nth:5): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:32 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1, 0x40001) ioctl$SIOCAX25ADDFWD(r1, 0x89ea, &(0x7f0000000040)={@bcast, @default}) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) getpgrp(r0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:32 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x300) [ 402.495571][T14134] FAULT_INJECTION: forcing a failure. [ 402.495571][T14134] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 402.569102][T14134] CPU: 0 PID: 14134 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 402.578174][T14134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 402.588230][T14134] Call Trace: [ 402.588259][T14134] dump_stack+0x172/0x1f0 [ 402.588285][T14134] should_fail.cold+0xa/0x15 [ 402.600454][T14134] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 402.606263][T14134] ? ___might_sleep+0x163/0x280 [ 402.611129][T14134] should_fail_alloc_page+0x50/0x60 [ 402.616341][T14134] __alloc_pages_nodemask+0x1a1/0x7e0 [ 402.621727][T14134] ? fs_reclaim_acquire.part.0+0x30/0x30 [ 402.627363][T14134] ? __alloc_pages_slowpath+0x28b0/0x28b0 [ 402.633090][T14134] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 402.638804][T14134] ? do_huge_pmd_anonymous_page+0x420/0x17e0 [ 402.644835][T14134] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 402.651076][T14134] alloc_pages_current+0x107/0x210 [ 402.656189][T14134] pte_alloc_one+0x1b/0x1a0 [ 402.660712][T14134] __pte_alloc+0x20/0x310 [ 402.665056][T14134] __handle_mm_fault+0x3391/0x3ec0 [ 402.670170][T14134] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 402.675718][T14134] ? find_held_lock+0x35/0x130 [ 402.680479][T14134] ? handle_mm_fault+0x322/0xb30 [ 402.685457][T14134] ? kasan_check_read+0x11/0x20 [ 402.690309][T14134] handle_mm_fault+0x43f/0xb30 [ 402.695075][T14134] __get_user_pages+0x7b6/0x1a40 [ 402.700022][T14134] ? follow_page_mask+0x19a0/0x19a0 [ 402.705219][T14134] ? vma_set_page_prot+0x18c/0x240 [ 402.710574][T14134] ? memset+0x32/0x40 [ 402.714560][T14134] populate_vma_page_range+0x20d/0x2a0 [ 402.720022][T14134] __mm_populate+0x204/0x380 [ 402.724613][T14134] ? populate_vma_page_range+0x2a0/0x2a0 [ 402.730255][T14134] vm_mmap_pgoff+0x213/0x230 [ 402.734892][T14134] ? vma_is_stack_for_current+0xd0/0xd0 [ 402.740434][T14134] ? ksys_dup3+0x3e0/0x3e0 [ 402.744872][T14134] ksys_mmap_pgoff+0x4aa/0x630 [ 402.749643][T14134] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 402.755274][T14134] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 402.760730][T14134] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 402.766185][T14134] ? do_syscall_64+0x26/0x610 [ 402.770879][T14134] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.776957][T14134] __x64_sys_mmap+0xe9/0x1b0 [ 402.781554][T14134] do_syscall_64+0x103/0x610 [ 402.786149][T14134] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 402.792039][T14134] RIP: 0033:0x458089 [ 402.795930][T14134] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 402.815532][T14134] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 402.823945][T14134] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 402.831914][T14134] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 402.839888][T14134] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 402.847853][T14134] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 402.855829][T14134] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 [ 402.897847][T14147] __ntfs_error: 2 callbacks suppressed [ 402.897856][T14147] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:32 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:32 executing program 2 (fault-call:5 fault-nth:6): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:32 executing program 1: r0 = getpid() wait4(r0, &(0x7f0000000000), 0x20000000, &(0x7f0000000040)) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r2 = syz_open_dev$cec(&(0x7f0000000300)='/dev/cec#\x00', 0x2, 0x2) ioctl$sock_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000340)) r3 = socket(0x4, 0xa, 0x9) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1000, 0x8, 0x3, 0x8, 0x20}, &(0x7f0000000240)=0x98) getsockopt$inet_sctp6_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={r4, 0x9}, &(0x7f00000002c0)=0x8) ptrace$setopts(0x4206, r1, 0x0, 0x0) socket$pppoe(0x18, 0x1, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb30000a9d85f536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c87255950000"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x200, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) [ 403.040287][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 403.046103][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 403.065529][T14152] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 403.088233][T14147] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:32 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 403.225811][T14168] FAULT_INJECTION: forcing a failure. [ 403.225811][T14168] name failslab, interval 1, probability 0, space 0, times 0 [ 403.276697][T14168] CPU: 0 PID: 14168 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 403.285765][T14168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 403.295820][T14168] Call Trace: [ 403.299122][T14168] dump_stack+0x172/0x1f0 [ 403.303468][T14168] should_fail.cold+0xa/0x15 [ 403.308069][T14168] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 403.313877][T14168] ? lock_downgrade+0x880/0x880 [ 403.318728][T14168] ? ___might_sleep+0x163/0x280 [ 403.323635][T14168] __should_failslab+0x121/0x190 [ 403.328579][T14168] should_failslab+0x9/0x14 [ 403.333085][T14168] kmem_cache_alloc+0x2be/0x710 [ 403.337948][T14168] ? do_huge_pmd_anonymous_page+0x420/0x17e0 [ 403.343931][T14168] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 403.350192][T14168] ptlock_alloc+0x20/0x70 [ 403.354532][T14168] pte_alloc_one+0x6d/0x1a0 [ 403.359067][T14168] __pte_alloc+0x20/0x310 [ 403.363418][T14168] __handle_mm_fault+0x3391/0x3ec0 [ 403.368535][T14168] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 403.374083][T14168] ? find_held_lock+0x35/0x130 [ 403.378861][T14168] ? handle_mm_fault+0x322/0xb30 [ 403.383824][T14168] ? kasan_check_read+0x11/0x20 [ 403.388677][T14168] handle_mm_fault+0x43f/0xb30 [ 403.393450][T14168] __get_user_pages+0x7b6/0x1a40 [ 403.398401][T14168] ? follow_page_mask+0x19a0/0x19a0 [ 403.403596][T14168] ? vma_set_page_prot+0x18c/0x240 [ 403.408706][T14168] ? memset+0x32/0x40 [ 403.412691][T14168] populate_vma_page_range+0x20d/0x2a0 [ 403.418154][T14168] __mm_populate+0x204/0x380 [ 403.422747][T14168] ? populate_vma_page_range+0x2a0/0x2a0 [ 403.428388][T14168] vm_mmap_pgoff+0x213/0x230 [ 403.432986][T14168] ? vma_is_stack_for_current+0xd0/0xd0 [ 403.438529][T14168] ? ksys_dup3+0x3e0/0x3e0 [ 403.442970][T14168] ksys_mmap_pgoff+0x4aa/0x630 [ 403.447740][T14168] ? find_mergeable_anon_vma+0x2e0/0x2e0 [ 403.453377][T14168] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 403.458832][T14168] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 403.464289][T14168] ? do_syscall_64+0x26/0x610 [ 403.468974][T14168] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 403.475053][T14168] __x64_sys_mmap+0xe9/0x1b0 [ 403.479652][T14168] do_syscall_64+0x103/0x610 [ 403.484251][T14168] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 403.490142][T14168] RIP: 0033:0x458089 [ 403.494034][T14168] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 403.513638][T14168] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 11:48:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3e8) [ 403.522052][T14168] RAX: ffffffffffffffda RBX: 00007f89f543ec90 RCX: 0000000000458089 [ 403.530018][T14168] RDX: 0000000000000004 RSI: 0000000000001000 RDI: 0000000020fff000 [ 403.537985][T14168] RBP: 000000000073bf00 R08: 0000000000000004 R09: 0000000000000000 [ 403.545959][T14168] R10: 0440000000002011 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 403.553928][T14168] R13: 00000000004c3d9c R14: 00000000004d6df0 R15: 0000000000000005 [ 403.562295][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 403.568095][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 403.600325][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:48:33 executing program 2 (fault-call:5 fault-nth:7): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 403.657483][T14174] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:33 executing program 1: pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000180)={0x0, @reserved}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000)=0x0) tkill(r1, 0x27) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r2, 0x0, 0x0) ptrace$setregs(0xd, r2, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r2, 0x0, 0x0) 11:48:33 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x500) 11:48:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="bc020000", @ANYRES16=r2, @ANYBLOB="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"], 0x2bc}, 0x1, 0x0, 0x0, 0x40000}, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 403.848426][T14183] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 403.871512][T14174] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:33 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:33 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r1 = syz_open_dev$usbmon(0xffffffffffffffff, 0x80000001, 0x8800) sendmsg$nl_route(r1, &(0x7f0000000200)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=@getaddr={0x14, 0x16, 0x400, 0x70bd2a, 0x25dfdbfb, {}, ["", "", ""]}, 0xffffffffffffff23}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000d1) ptrace$setopts(0x4206, r0, 0x0, 0x0) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x100, 0x1) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f3869ad42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000000)="d7e0652bd0e6c285b2f580a70904dd6a12a47b1252a196576efccb3431824cbbf6b995f943170619fa40f4303cfde21dadfb5e416255f2da10b64a583a27eb") ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1002, 0x4, 0x440000000002011, r1, 0x0) 11:48:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x600) [ 404.175743][T14207] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 404.236134][T14227] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:33 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e609000000d852536cd82e000074365da4058c37adc8525c592a42c21e9f281b3cc9333f2b"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioctl$VIDIOC_STREAMOFF(r1, 0x40045613, &(0x7f0000000040)=0x8) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x100a, 0x4, 0x440000000002011, r1, 0x0) [ 404.339264][T14239] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:33 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:34 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x700) [ 404.529789][T14258] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x20fff000, 0x4, 0x440000000002011, r1, 0x0) 11:48:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x7ffffffff000, 0x4, 0x440000000002011, r1, 0x0) 11:48:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x900) 11:48:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x2) [ 407.200305][ C1] net_ratelimit: 19 callbacks suppressed [ 407.200315][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 407.211768][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:36 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffff9c, 0x84, 0x6, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e24, @multicast1}}}, &(0x7f0000000180)=0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000001c0)={r2, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xe}}}, 0x100000000, 0x2000000000000000, 0x2, 0x7fff, 0x41}, 0x98) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdae4c1f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:36 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xa00) 11:48:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xa) 11:48:36 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:36 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x30) 11:48:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xb00) 11:48:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xa00) 11:48:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 407.680314][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 407.686171][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 407.760328][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 407.766142][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 407.954234][T14360] __ntfs_error: 14 callbacks suppressed [ 407.954245][T14360] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 407.978274][T14377] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 408.000882][T14380] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 408.188979][T14380] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 408.238368][T14377] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 408.400348][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 408.400360][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 408.400428][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 408.406165][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xc00) 11:48:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x3000) 11:48:39 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:39 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x3) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x4040, 0x0) write$P9_RRENAME(r1, &(0x7f0000000040)={0x7, 0x15, 0x1}, 0x7) 11:48:39 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x4000) [ 410.464918][T14406] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:40 executing program 1: modify_ldt$write2(0x11, &(0x7f0000000000)={0x4, 0x101000, 0x6000, 0x8a4, 0xb8c7, 0x4, 0xec81, 0x8b9, 0x1, 0x2630c11e}, 0xffffffffffffff5b) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$TCSBRKP(r1, 0x5425, 0x7fffffff) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 410.557757][T14405] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 410.581011][T14406] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 410.590453][T14404] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xd00) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x300000) 11:48:40 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x400000) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x1000000) 11:48:40 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 410.842384][T14404] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xe00) 11:48:40 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x2000000) 11:48:40 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xa000000) 11:48:40 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 412.560317][ C1] net_ratelimit: 20 callbacks suppressed [ 412.560326][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 412.560369][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 412.566039][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 412.583279][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 412.589059][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 413.440358][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 413.446187][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000540)='/dev/dsp\x00', 0x101000, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}}}, &(0x7f0000000380)=0xe8) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RGETATTR(r1, &(0x7f0000000480)={0xa0, 0x19, 0x2, {0x4, {0x2, 0x2, 0x3}, 0x122, r2, r3, 0xfffffffffffffff7, 0x7f, 0x6, 0x2, 0x2, 0xffff, 0x3f, 0x62b17655, 0x6, 0xffff, 0x200, 0xffffffffffffffe0, 0x80000000, 0x6, 0x2}}, 0xa0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da46c8c31e25853599446171b058c37adc82f5c592a42fa49c8c4ed21b448770a9c5f725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r4 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x80000000, 0x42000) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@ipv4={[], [], @initdev}, @in6=@ipv4={[], [], @remote}}}, {{@in=@remote}, 0x0, @in6=@remote}}, &(0x7f00000000c0)=0xe8) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xf00) 11:48:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xfeffffff) 11:48:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2, 0x0, 0x0, 0x0, 0x0) [ 413.753422][T14517] __ntfs_error: 6 callbacks suppressed [ 413.753432][T14517] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 413.792150][T14513] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xfffffffe) [ 413.815401][T14523] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x39) r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x80300) setsockopt$inet_mreqsrc(r1, 0x0, 0x28, &(0x7f0000000180)={@loopback, @broadcast, @multicast2}, 0xc) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 413.920319][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 413.926144][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1100) 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x400000000000) [ 414.010339][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 414.068251][T14517] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 414.087816][T14523] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xffffffffffffe) 11:48:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3, 0x0, 0x0, 0x0, 0x0) [ 414.198396][T14553] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x30000000000000) 11:48:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1200) [ 414.353008][T14553] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x100000000000000) 11:48:44 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1300) [ 414.582664][T14570] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 414.735409][T14570] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 414.745678][T14593] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:48:46 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4051e00adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x200000000000000) 11:48:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1400) 11:48:46 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4, 0x0, 0x0, 0x0, 0x0) 11:48:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xa00000000000000) 11:48:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1500) 11:48:46 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x8000000000000000) 11:48:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5, 0x0, 0x0, 0x0, 0x0) 11:48:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 417.600318][ C1] net_ratelimit: 18 callbacks suppressed [ 417.600327][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 417.611852][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 418.080342][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 418.086185][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 418.160366][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 418.166249][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 418.800324][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 418.800330][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 418.800404][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 418.806157][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:49 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400000, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x200000, 0x0) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000180)={0x0, r2}) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x82000, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000040)=0x653ee3c4, 0x4) 11:48:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1600) 11:48:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xfeffffff00000000) 11:48:49 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6, 0x0, 0x0, 0x0, 0x0) 11:48:49 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xfeffffffffff0f00) [ 420.305850][T14699] __ntfs_error: 14 callbacks suppressed [ 420.305861][T14699] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 420.323545][T14702] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 420.336551][T14703] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:49 executing program 1: futex(&(0x7f0000000080)=0x2, 0x0, 0x1, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100)=0x2, 0x1) clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x1, 0x0) write$P9_RREAD(r1, &(0x7f0000000080)=ANY=[], 0x422) r2 = epoll_create1(0x0) r3 = epoll_create1(0x0) inotify_init() epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r2, &(0x7f0000000080)={0xfffffffffffffffd}) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x80, 0x0) ptrace$cont(0x3f, r0, 0x800000000, 0x0) 11:48:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0xffffffff00000000) 11:48:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1700) [ 420.520385][T14699] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 420.529681][T14703] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:50 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) connect$pppoe(r0, &(0x7f00000012c0)={0x18, 0x0, {0x3}}, 0x1e) pwritev(r1, &(0x7f0000001240)=[{&(0x7f0000000000)="e180ae37fe3ad4ed5f62beb2924c54887279bf03fad590fb70affdc725726655176dc31a258128896d1b43529ab01c3eb11fa74b765c7e57c6d85e8f4d62", 0x3e}, {&(0x7f0000000080)="39b5b7dd7a8377fdeb8df075b18f1164f75f3c331c13ff0f069c159052c12ca50f3cdc0b25945e437ba5875b646ab05eead0add490a9a93a782fd7a5a2ae4b85b90a59689f221d0e231261aaddaf95814265547b1f198c9f2f5e5ff38f30d940f70568141b24a75546721f1ff2fcbccde3bdcadbe41178521160f61b42cbab442af15217ce2c1de3702aae93edc334163da4c0cfff", 0x95}, {&(0x7f0000000180)="57f6628a473323c8f7cbe91b61d729c118c5101db8db49ce0dc977b968bcb68a8aeb9494288967d4d908400c8c8a0645365bbbea604e789c6d08b5109bde399f99dfa9eb25d41a17c8aea6b5dfbb23c38b889a311ff548222d62d8885d", 0x5d}, {&(0x7f0000000200)="66ef4a0599f9a6823ccfd64210052e01102cc377c7e65ea3720eff32ed263f18e6f36a1ff1ea983b1c6dc3a6592c91d11fdf5c808ff1187aef", 0x39}, {&(0x7f0000000240)="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", 0x1000}], 0x5, 0x0) r2 = accept4$inet6(0xffffffffffffffff, 0x0, &(0x7f0000001300), 0x80000) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f0000001340)={0x0, 0xba4}, &(0x7f0000001380)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000013c0)={r3, 0x7f}, 0x8) 11:48:50 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 420.661075][T14741] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:50 executing program 2: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x20000, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000001180)={0x40000000, 0x5, 0x1000, &(0x7f0000000180)="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"}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r1, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x20080, 0x1) getsockopt$inet6_int(r3, 0x29, 0xff, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:48:50 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x0, 0x0, 0x0, 0x0) 11:48:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1800) [ 420.827412][T14741] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 420.875107][T14754] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. 11:48:50 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:50 executing program 2: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x88081, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000280)=0x0) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000002c0)=r3) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={0x0, 0x80000000}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000001c0)={r4, @in6={{0xa, 0x4e24, 0xffffffff, @loopback, 0xffff}}, 0x1, 0x10000, 0x5, 0x2f, 0x2}, 0x98) r5 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r1, 0x0) ioctl$ASHMEM_SET_SIZE(r5, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r5, 0x0) 11:48:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1900) [ 421.042559][T14763] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 421.068415][T14754] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 422.960314][ C1] net_ratelimit: 20 callbacks suppressed [ 422.960324][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 422.960329][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 422.960396][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 422.966060][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 422.988996][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 422.994749][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:53 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x401, 0x400000) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='vxcan1\x00', 0x10) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000100)={0x27fe, 0x0, &(0x7f0000ffe000/0x1000)=nil}) utimensat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={{}, {0x0, 0x7530}}, 0xffffffffffffc) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:48:53 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa, 0x0, 0x0, 0x0, 0x0) 11:48:53 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1a00) 11:48:53 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x110, r1, 0x0) 11:48:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1b00) 11:48:53 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:53 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x20005, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:53 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 423.840300][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 423.846127][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1c00) [ 424.320303][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 424.326099][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:48:56 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0x8000000d, r0, 0x0, &(0x7f0000000000)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:48:56 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:48:56 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe, 0x0, 0x0, 0x0, 0x0) 11:48:56 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1d00) 11:48:56 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x40000, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000001a80)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="ad2f64849d09f713ffd6d9f6f08806", 0xf}, {&(0x7f0000000100)="174f62dec5c82c70c356ea18e00b96035cd56f21df5a85a83c83eab2c8afa07592717f2f50fa6ca1ba5cdf60dc58a94748a0036eb860180eb30d96d2a2e3fb3b844cd8f6d5fb628bf1d7d75a82075e2df70de12815b7c95405bc851fba8e7545dfd497ec8509a4e062595ec6d6f637bc09fc6eddaf7dce39620f0afe4a2c141e5061455b50594de65a745f08a5", 0x8d}], 0x2, &(0x7f0000000200)=[@op={0x18}, @iv={0xc0, 0x117, 0x2, 0xaa, "64a6aa58d0bfd0ac5941522dc1942baab5575a16311c3a2e2b7d6659d3d918fe70ec511e4503aa70abb1735d9463d42f76b458a14ccd2fc4f25e9799b7c73ef712c934d1aa2949e232d6c83d6d35a9354c9622005ccb7c749f5842246fd85ba181e4ffa57879402720c9d7846175ce8cb27ad82d17831a8a3ca9d6b71f832e1e85f9fc05e137aeb898ba56867cb69bdf3db9f6f6f099dafede03555d2aff529bd52e7d11b1c16a13b164"}, @assoc={0x18, 0x117, 0x4, 0x3}, @iv={0x60, 0x117, 0x2, 0x48, "cacdd0d723204725d6dd82efba04317c6478ec9be7ae5fedd6465e1c61deda6a54c54013ba7afdb8525d00a4b21155a15723ef440de3f73091572a078fb9ad0d0af221f17ce61774"}, @assoc={0x18, 0x117, 0x4, 0x1}], 0x168, 0x40040}, {0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000380)="d3b99e70562a80843478ceaf6bb00878936fbed19451a37b3fa3827ddb26bacb36234bce39ffcaae151ff27ba4d56f25639a51a6f4b82fc6c32bc6d6d40f3704e4", 0x41}, {&(0x7f0000000400)="9bc8f20c57add4a9b4a0dfa5bce9c722e34f280f4c42a91c62fd28a8559a3401f4b9cd0a3ac3a5db795ffe02c2aad17dbc1f2dc38d569c9d4d8ea0a4b7a93253", 0x40}], 0x2, &(0x7f0000000480)=[@op={0x18}, @op={0x18}], 0x30, 0x90}, {0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000004c0)="4531836fc6126f", 0x7}, {&(0x7f0000000500)="1da1efc16f9a7835012e9949e8f1b4213953d33517b0389788b4a34b1c2a", 0x1e}, {&(0x7f0000000540)="7d58f832ea0b355df825b9a2091b5d54078defb3300d6e3781adfa1154cbb180b7ff48ed552c9734ff108b209e6dbaa3dc9404ecb86a644c879efda027d9157ddb6c8d163f444fb4e2b328207e8641ba97883ee0f6e74d2b5c44da393105d59e6a587413e3c3c7", 0x67}], 0x3, 0x0, 0x0, 0x8800}, {0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000600)="a7b8f3c086a9f5a100419e893b22346bc77ea54ae226441542452d98b7b07e937961f920f8eaab5b4e8e04806a6373c6579028a50faf6d0d19f329ba5c", 0x3d}, {&(0x7f0000000640)="85ea0baf761f3e3452eb96e11b2fa26acd1181ff3c5060fa9253b674c0c9e6209b62fe3f36eec97530ecf5527221e2fa65bf73608756f24822b3f0c7c1c4961a30e88f6350ba62a367d59b6b8d4e50d7eebf53590e4fa738d169a224c48e48b507b1caa562bcd9afc098dfc3115344a167ee913362cc6281ff96e68248c33279695c9fb9513869e92b664be6388774b4b72534dd4042cf775802d2a33d8e6a76543c752c1b9513ff15", 0xa9}, {&(0x7f0000000700)="db06faaa43b9ddaf39aa2c00f7eb8ed25cf88eae66570a13541fcf088b05b54536b0420fba8ed068514fab343ce87f440a25a9eb7d15c0790480979b40c3ca6111865fe94481da8d90b7bb40adf1094424ece14eec115c5ec95b7da60ce3a13fd94fd4ad7ff40f6e49c7c633ec81b2590ce10676790515657b6c90fbc384600e2294739bc07b08bb28fd11acc459fb41941b3e45f78e68c9fabb57e601efbe2b8b669f107a2eea510d21371ec2949928c129ec9e668e640a0241a203dc7df59b60bce0c8816f1e7b01a24390587de80049403c8f756f33c3b6d29275f0e35805a0e9b2f3e803d4d5", 0xe8}], 0x3, &(0x7f0000000840)=[@op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18}, @assoc={0x18, 0x117, 0x4, 0x80000001}, @iv={0xd0, 0x117, 0x2, 0xbb, "cca11f21583de294ea5d73c64ce7bb5727114bb73f5314f7d69bbb84a148542f5b28297270e9134547fc72f834b4d8eea9d464c195c1e5923702bc59102de634bfbbbe490b1ca90f9ec93b6827b9ecfc9679dff6dee38e455561cfd42404c956c9af450f5f60f68c7c6572b495183f69c6758b0aed7c414dcdf51e4ff88cc082d340f11d17bea128ecfcba9b01a5d4595f3bc9d966a507e295d52033787968c971da2baa1b84941024fa85dd60714b568a0a5975b4586393b9afe7"}, @iv={0x70, 0x117, 0x2, 0x5a, "633b345693f2b56447dd7c2b7faf5469ca17737c4ecf5a222c3ba14fe9cfbb19a91bb528e1aa19c93603e3db7867258f1d2239886d88a8bb706349691ec16b1b0e2eb78435a78fe85370ee1374e4aa6763c27c6581e233ac8283"}], 0x1a0, 0x400c040}, {0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000a00)="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", 0x1000}], 0x1, &(0x7f0000001a40)=[@assoc={0x18, 0x117, 0x4, 0x100000000}, @op={0x18}], 0x30, 0x4000}], 0x5, 0x4000) sendto$isdn(r2, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], 0xd1, 0x4000804, &(0x7f0000001cc0)={0x22, 0x2, 0x100000000, 0x4, 0x10000}, 0x6) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 426.677697][T14880] __ntfs_error: 11 callbacks suppressed [ 426.677718][T14880] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 426.681554][T14877] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 426.701373][T14883] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1e00) 11:48:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) getpeername(r0, &(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000000)=0x80) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 426.870101][T14880] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 426.887478][T14883] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:56 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x48, 0x0, 0x0, 0x0, 0x0) 11:48:56 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) setsockopt$inet_buf(r0, 0x0, 0x20, &(0x7f0000000080)="0e2cb5baab62485a48eb2f6b348979f5146798c4c0d4395a7428c86c4ab4da43c2078a7eebfb965c1d1ffcbf207d0ee8c3042a608e3b4592cf9a49c6e8def256432edaba2c886c4135d7137937cfaeab2fd01f053faa8ea2a5439f04cb368ae123b6bc36ff6164", 0x67) 11:48:56 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 427.151922][T14919] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 427.177566][T14924] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 427.341760][T14919] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 427.361876][T14924] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 428.000302][ C1] net_ratelimit: 20 callbacks suppressed [ 428.000309][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 428.011753][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 428.480311][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 428.486215][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 428.560342][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 428.566177][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 429.200314][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 429.200320][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 429.200389][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 429.206117][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:48:59 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x180, 0x0) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffff9c, 0x84, 0x6, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e24, 0x5, @empty, 0x7}}}, &(0x7f0000000180)=0x84) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f00000001c0)={0x0, 0x8001}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000240)={r2, 0x10000, 0x7, 0x5, 0x800, 0x7, 0x6ceb, 0x2, {r3, @in6={{0xa, 0x4e24, 0x8000, @loopback, 0xffff}}, 0x10000, 0xc8, 0x8, 0x2d4c, 0x10001}}, &(0x7f0000000300)=0xb0) 11:48:59 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x2600) 11:48:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x5, 0x800) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e21, 0x2, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x2d7}}, 0x0, 0x1}, &(0x7f0000000180)=0x90) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000300)={r2, @in6={{0xa, 0x4e22, 0x5, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x2}}, 0x4, 0x7}, &(0x7f00000003c0)=0x90) ioctl(r0, 0x2000, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r3, 0x0) sysfs$3(0x3) 11:48:59 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c, 0x0, 0x0, 0x0, 0x0) 11:48:59 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 429.679301][T14941] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:48:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x80000, 0x0) ioctl$VIDIOC_G_PRIORITY(r2, 0x80045643, 0x3) 11:48:59 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x80000) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000040)={0x0, 0x200, 0x1f}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={r2, 0x5}, 0xc) futex(&(0x7f0000000180)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) getsockopt$sock_buf(r1, 0x1, 0x3b, &(0x7f00000001c0)=""/242, &(0x7f0000000140)=0xf2) tkill(r0, 0x2d) ioctl$UI_SET_SNDBIT(r1, 0x4004556a, 0x7) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000400000bdb3e61f0000a9d852bb84536cd82e000074365da4058c37adc82f49592a42c21e9ffbfa49c8cf"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 429.895735][T14969] QAT: Invalid ioctl 11:48:59 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x2e00) 11:48:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xffffffffffffffff, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:59 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x60, 0x0, 0x0, 0x0, 0x0) 11:48:59 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:48:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3400) 11:48:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000080)=""/154) ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000180)) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x40200, 0x0) ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000000280)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:48:59 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) ptrace$pokeuser(0x6, r0, 0xffffffffffff6909, 0x9) 11:48:59 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x5, 0x80201) rseq(&(0x7f00000000c0)={0x0, 0x0, 0x0, 0xebc510d5c476005a}, 0x20, 0x0, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r2) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x68, 0x0, 0x0, 0x0, 0x0) 11:49:00 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3600) 11:49:00 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x101, 0x0) ioctl$RTC_PLL_SET(r2, 0x40207012, &(0x7f0000000080)={0x2, 0x1, 0x5, 0x8, 0x5, 0x57f3, 0x5}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:00 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:00 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c, 0x0, 0x0, 0x0, 0x0) 11:49:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3800) 11:49:00 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x6c8c0, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]}, 0x10) r3 = getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x4000, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000280)) getpid() ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0xffffffffffffffe9, 'queue1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00)\xd4\x96\xdcRyH\xb9\x00'}) r6 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000140)={0x2000}) close(r5) r7 = syz_open_procfs(r3, &(0x7f0000000480)='/exe?\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xdei\xfc\xf1\v3\xf7i\x9a\xb3\xeb\x9b?&K\x96\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed') syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) getpgid(r3) timerfd_create(0x0, 0x800) socket(0x40000000015, 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000007000)}, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r7, 0x4010ae67, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r9 = openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x400000, 0x0) getsockopt$inet_opts(r9, 0x0, 0x4, &(0x7f00000001c0)=""/4096, &(0x7f00000011c0)=0x1000) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) 11:49:00 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:02 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x7, 0x400) ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000040)=']\x00') clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) 11:49:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3a00) 11:49:02 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:02 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x74, 0x0, 0x0, 0x0, 0x0) 11:49:02 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:02 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) preadv(r0, &(0x7f0000003580)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/49, 0x31}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)=""/74, 0x4a}, {&(0x7f00000022c0)=""/249, 0xf9}, {&(0x7f00000023c0)=""/183, 0xb7}, {&(0x7f0000002480)=""/4096, 0x1000}, {&(0x7f0000003480)=""/243, 0xf3}], 0x8, 0x0) fcntl$setflags(r0, 0x2, 0x1) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000003600)='/dev/vga_arbiter\x00', 0x0, 0x0) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000003680)=r2, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000003640)={@mcast2, 0x8, 0x2, 0x3, 0x2, 0x4, 0x4}, 0x20) getpeername$unix(r2, &(0x7f00000036c0), &(0x7f0000003740)=0x6e) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x400000, 0x0) setsockopt$RDS_GET_MR(r3, 0x114, 0x2, &(0x7f0000000180)={{&(0x7f0000000080)=""/87, 0x57}, &(0x7f0000000100), 0x22}, 0x20) syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x2, 0x2) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000000, 0x440000000002014, r1, 0x1000000000) [ 433.327274][T15102] __ntfs_error: 20 callbacks suppressed [ 433.327284][T15102] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 433.360296][ C1] net_ratelimit: 20 callbacks suppressed [ 433.360305][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 433.360354][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 433.366002][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 433.371756][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 433.377553][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 433.394829][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 433.411149][T15109] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 433.414422][T15113] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xc) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3c00) 11:49:03 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a, 0x0, 0x0, 0x0, 0x0) [ 433.561650][T15109] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 433.587583][T15113] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:03 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40, 0x0) ioctl$BLKIOOPT(r1, 0x1279, &(0x7f0000000080)) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x4, 0x13, r0, 0x0) 11:49:03 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 433.725413][T15142] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 433.851718][T15142] ntfs: (device loop5): ntfs_fill_super(): Unable to determine device size. [ 433.863078][T15150] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 433.889433][T15159] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 434.119562][T15150] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 434.240354][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 434.246270][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 434.720363][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 434.726190][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:05 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x10000, 0x0) getsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000080)=0xffff, &(0x7f00000000c0)=0x4) write$P9_RLCREATE(r1, &(0x7f0000000040)={0x18, 0xf, 0x1, {{0x40, 0x1, 0x6}, 0x4fa9}}, 0x18) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3e00) 11:49:05 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x800, 0x0) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x79) r1 = msgget$private(0x0, 0x101) msgctl$MSG_INFO(r1, 0xc, &(0x7f00000003c0)=""/77) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000180)) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x20012, r2, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x4) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000200)='/proc/capi/capi20\x00', 0x400, 0x0) r4 = getpid() getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000240), &(0x7f00000005c0)=0x8) prlimit64(r4, 0xf, &(0x7f0000000000)={0x7, 0x2}, &(0x7f0000000080)) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000480)='TIPC\x00') sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x24, r5, 0xc596ae8dd28ed697, 0x70bd29, 0x25dfdbfd, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x7f}}, ["", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x10) io_setup(0x9, &(0x7f0000000580)=0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000380)='/proc/capi/capi20\x00', 0x80000, 0x0) io_submit(r6, 0x1, &(0x7f0000000340)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x3, 0xcf3, r3, &(0x7f0000000280)="8a14cbe215598f39dec24c26667333b451cfe30d90ca840dab2ddb5e08f9aa8cc60e4b207c1eff13ada9193b135854767f459f25444ed5b32dba32f32654822f6db13a11a472ee574f69bc73c509d1ae4420bf899e52575c9d2e494939011aae", 0x60, 0xffffffff80000000, 0x0, 0x1, r0}]) r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x80100, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) ioctl$PERF_EVENT_IOC_RESET(r7, 0x2403, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r3, 0x0) ioctl$TCXONC(r7, 0x540a, 0x7) 11:49:05 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x300, 0x0, 0x0, 0x0, 0x0) 11:49:05 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:05 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c0018000000762b3b00000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82fa8b6bea6c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84000) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f00000000c0)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000001002011, r0, 0x0) 11:49:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3f00) 11:49:06 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x10000, 0x0) write$FUSE_LSEEK(r1, &(0x7f00000001c0)={0x18, 0x0, 0x5, {0x70f}}, 0x18) getsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f00000000c0), &(0x7f0000000180)=0x4) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2000, 0x0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000040)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:06 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x500, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x2000000000000c, &(0x7f0000000180)="0adc1f123c123f3188b0706d6950d74347a780c79a5cf5f0329b2876dc3edcd583e9a318f41cc92acbc4dc4bf4b246707f770d1ccc5f1e044dcf7b7f8c6a994e01bab19605441940acaaa37ffb1d2bab4918a02e2cddb2bb780255f6d09b9dcc83002dbf5bc143aaf27ec8717d36caa8359391ca3e712e44b925535837ad461d204b281206e6f75c0cb0a79c726f6d81d8ea6b581ca8007415cefb52fbf40764162212e12997afb303ff17749f0e45122b786ec95bd16e5d1b7b14b7df38b9af11918f3a110801cf9293e9782eee9484e9797bdc94f4ddebdb33cf6601f3164d07b1b785ea0408") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x200, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x3, 0x10900) setsockopt$bt_rfcomm_RFCOMM_LM(r2, 0x12, 0x3, &(0x7f0000000080)=0x8, 0x4) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) write$binfmt_misc(r2, &(0x7f0000000280)={'syz1', "3d4d4774b084172735a94b33cf4a133817092abd997da3d8c58f5876c8740ebb35c9020defd4170bbc9e7b2317a78428b380517599ab3d9423df0c1768d0cac3d3a66a0e1c0d823b07617c8223d259b887b942fdfea281eaa5bc53e0aa5a774e8381dee6924adc3afb7930f58dfd9cb154536c11218878f0e90d17c7f2dcb7b5ce7bda4ed2f72093ff7f1051f7a513722bbf6c38d74124d4e4769c336ad7ecc3b3279f89630f4668895a0d0f318e2543a55f7c609802672a968662c2c5418ee7a6a8e32891e5b0804b91950b864d39de10645a893bd28f"}, 0xdb) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x4c0000800002011, r1, 0x800000000000000) 11:49:06 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4000) 11:49:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) uselib(&(0x7f0000000000)='./file0\x00') mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:06 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x600, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:06 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x101000, 0x0) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000100)={r1, &(0x7f0000000180)="63ea9cb45e8ad86a0d289cd39f1d493ba8172ab934a9174bf34a9873ff0dbabf79447cab1c3975f731466a508b8e75ec9623f1abb7dd978c0ea5a0af7e3dd4695ffca1faeea7a2227c08d0689df84b88a42b363d57e8e741acd59845b3f5bbbdf77397fe5f90e9faf527b4b64d5a83a7f627fdbf937325505840459c309c1fb71958231c78e97edd964451f8751dd630096bb39cb5575e61425d90be2431446f4eda55127f5fb0760739dc998d3b330aeab81506ffa3a69c8fb80440a69d15884be61233ec1c254a", &(0x7f0000000080)=""/124}, 0x18) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000280)={0x0, 0x8, 0x1ff, 0x5}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000300)={r2, @in={{0x2, 0x4e22, @local}}, 0x8000, 0x6}, &(0x7f00000003c0)=0x90) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x4) sendfile(r3, r0, 0x0, 0x401) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r3, 0x0) 11:49:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4200) 11:49:06 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x700, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x8040, 0x0) r2 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000100)=r2) ptrace$setopts(0x41fc, r0, 0x0, 0x0) tkill(r0, 0x1400000032) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) write$P9_RREAD(r3, &(0x7f0000000240)=ANY=[@ANYPTR64=&(0x7f0000000000)=ANY=[@ANYRES16=r3], @ANYPTR=&(0x7f0000000180)=ANY=[@ANYRES16=0x0, @ANYRES16=r0, @ANYPTR64=&(0x7f0000000080)=ANY=[@ANYRESOCT=r3, @ANYPTR64, @ANYRESDEC=r3], @ANYBLOB="18b5f226f8c2a7c33d55679c6544e3a335edc13faa97a1691f17c46e067e4eaafd6da351313e79a1833fef1734bc473e2d95f8c6f388268c304c1af2ae690443110d836833bd78db2ce888cd71737f1fafdce71c1152c43b7996418d77d5bcfdbacac826c5d6126aeaf43b7c6352f6a2e27d50b6cda7869bcc128ac03752e809a697850426028f90ea7d8a306bb6fd37125efa59121644f909e2aec88087cf09d5f1fed00b3a"], @ANYPTR, @ANYRES64=r3], 0xffffffffffffff6d) ptrace$cont(0x18, r0, 0x12, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:07 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:07 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4400) 11:49:07 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa00, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:07 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x1000000000000000) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = request_key(&(0x7f0000000100)='encrypted\x00', &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)='/dev/rfkill\x00', 0xfffffffffffffffa) r3 = request_key(&(0x7f0000000280)='rxrpc_s\x00', &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000300)='/dev/ashmem\x00', 0xfffffffffffffff8) r4 = add_key(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x0}, &(0x7f00000003c0)="1028f59982f3347490ad63723ade7f27bb5b65ecd2afb84202768446a01c6bb23f3f6aec393ea92468f1f62a1a0b6d1f2b4f6e045ee607018b349595ef1e73b04bbbc9b35e6a0a3834a38abadb73956bce21e05f7724715c8623cecb59677a", 0x5f, 0xfffffffffffffff9) keyctl$dh_compute(0x17, &(0x7f0000000440)={r2, r3, r4}, &(0x7f0000000480)=""/97, 0x61, &(0x7f0000001540)={&(0x7f0000000500)={'sha3-384-ce\x00'}, &(0x7f0000000540)="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", 0x1000}) r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x40000, 0x0) ioctl$SNDRV_TIMER_IOCTL_PAUSE(r5, 0x54a3) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x200, 0x4) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r5, 0xc0505405, &(0x7f0000000180)={{0xffffffffffffffff, 0x0, 0xbe7, 0x3}, 0x100000001, 0xfffffffffffffb16, 0x3}) read$eventfd(r5, &(0x7f0000000080), 0x8) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:07 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4600) 11:49:07 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe00, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x5, 0x8240) ioctl$VIDIOC_S_OUTPUT(r1, 0xc004562f, &(0x7f00000000c0)=0x7) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852533092ba24ee470b4575386d466cd82e000074365da4058c37adc82f5c592a42c21e9fdbfa49c8725595"], 0x45) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:07 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x8241, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, &(0x7f0000000080)={0x8, 0x9, 0x8, 'queue1\x00', 0x100000001}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:07 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = dup3(r0, r1, 0x80000) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000003c0)={0x0}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f00000000c0)={r3, 0x10001, 0x7ff}, 0x8) fsetxattr$security_selinux(r2, &(0x7f0000000000)='security.selinux\x00', &(0x7f0000000400)='system_u:object_r:dpkg_var_lib_t:s0\x00', 0x24, 0x2) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/video0\x00', 0x2, 0x0) ioctl$VIDIOC_QUERY_DV_TIMINGS(r4, 0x80845663, &(0x7f0000000300)) ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000100)={0x0}) ioctl$DRM_IOCTL_DMA(r2, 0xc0406429, &(0x7f0000000280)={r5, 0x4, &(0x7f0000000180)=[0x4, 0xa6f9, 0xfffffffffffffff8, 0x3], &(0x7f00000001c0)=[0x8001], 0x1, 0x3, 0x800, &(0x7f0000000200)=[0x400000, 0x5, 0x10001], &(0x7f0000000240)=[0xb]}) 11:49:07 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4800) 11:49:07 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1020, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) close(r1) 11:49:07 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:07 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000, 0x0, 0x0, 0x0, 0x0) 11:49:08 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r1, 0xc05c5340, &(0x7f00000000c0)={0x7, 0x7, 0x4, {r2, r3+30000000}, 0xdeff}) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r4 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x15, {{0x2, 0x4e23, @local}}}, 0x88) signalfd(r4, &(0x7f0000000280)={0x4bdb}, 0x8) ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000240)={0x6, 0x2, 0x2, {0x1, 0x51f3, 0xffffffff, 0x7fff}}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_GET(r1, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000002}, 0xc, &(0x7f0000000540)={&(0x7f0000000340)={0x200, r5, 0xb327921b5867a6c, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x44, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000000}]}]}, @TIPC_NLA_BEARER={0x54, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'ib', 0x3a, 'lo\x00'}}, @TIPC_NLA_BEARER_NAME={0xc, 0x1, @l2={'ib', 0x3a, 'bpq0\x00'}}, @TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'eth', 0x3a, 'veth0_to_hsr\x00'}}]}, @TIPC_NLA_MEDIA={0xc, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_NET={0x30, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xbc5}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9a}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}, @TIPC_NLA_NODE={0x28, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3ff}]}, @TIPC_NLA_LINK={0xf0, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_PROP={0x54, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffffffffffe1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}]}]}, 0x200}, 0x1, 0x0, 0x0, 0x4}, 0x10) socket$inet_udplite(0x2, 0x2, 0x88) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r4, 0x0) [ 438.400355][ C1] net_ratelimit: 20 callbacks suppressed [ 438.400362][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 438.411910][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 438.525452][T15405] __ntfs_error: 51 callbacks suppressed [ 438.525461][T15405] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 438.548046][T15410] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 438.636559][T15405] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 438.640829][T15413] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 438.662371][T15413] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 438.677568][T15413] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 438.880334][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 438.886122][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 438.960365][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 438.966150][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 439.600327][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 439.602741][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 439.606142][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 439.611893][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:10 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$xdp(0x2c, 0x3, 0x0) r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r4 = socket$isdn_base(0x22, 0x3, 0x0) r5 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @local}}, &(0x7f0000000040)=0x1c) r6 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0) ppoll(&(0x7f00000000c0)=[{r1}, {r2, 0x8080}, {r3, 0x400}, {r4, 0x2060}, {r5, 0x1000}, {r6, 0x20}], 0x6, &(0x7f0000000180), &(0x7f00000001c0)={0x8}, 0x8) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4a00) 11:49:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ashmem\x00', 0x12003, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x80200, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@remote}}, &(0x7f0000000080)=0xe8) getresgid(&(0x7f00000000c0), &(0x7f0000000100)=0x0, &(0x7f0000000280)) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r2, 0x28, 0x6, &(0x7f0000000140)={0x0, 0x2710}, 0x10) write$FUSE_CREATE_OPEN(r2, &(0x7f00000002c0)={0xa0, 0x0, 0x5, {{0x1, 0x3, 0x7, 0x1000000, 0x5, 0x3, {0x4, 0x7ff, 0x9, 0x9, 0x0, 0x2d9b, 0x2, 0xfffffffffffffffa, 0x4, 0xffffffff, 0x6, r3, r4, 0x10000, 0x8}}, {0x0, 0x4}}}, 0xa0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:10 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:10 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:10 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2010, 0x0, 0x0, 0x0, 0x0) [ 440.935206][T15439] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x10103, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000080)={0x0, 0x100000001, 0x7, [0x10001, 0x80000001, 0x8, 0x5, 0x2, 0x1, 0x80]}, &(0x7f00000000c0)=0x16) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={r3, 0x401}, &(0x7f0000000180)=0x8) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) syz_open_dev$swradio(&(0x7f00000001c0)='/dev/swradio#\x00', 0x0, 0x2) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x1e, r1, 0x0) [ 440.978364][T15439] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 441.014811][T15442] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 441.031220][T15444] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:49:10 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84000) ioctl$RTC_AIE_OFF(r1, 0x7002) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4c00) 11:49:11 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f00, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4e00) 11:49:11 executing program 2: r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x8001, 0xbeaf6e1ea6063c16) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000080)=0x20) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r3 = signalfd4(r2, &(0x7f0000000100)={0x7fff}, 0x8, 0x0) fcntl$notify(r3, 0x402, 0x80000002) openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/current\x00', 0x2, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r1, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x6) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:11 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) 11:49:11 executing program 1: clone(0x4000001, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f00000001c0)={0xfffffffffffffff4, {{0xa, 0x4e23, 0xffffffff, @mcast2, 0xfc9e}}}, 0x88) r2 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x5, 0x40) ioctl$SG_GET_ACCESS_COUNT(r2, 0x2289, &(0x7f00000000c0)) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="05004033ea339708b966bf00000000000000bdb1c34c163bb1252b536cd82e000074365da40d8c37adba2f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000280)={0x0, {0x2, 0x4e24, @multicast1}, {0x2, 0x4e20, @loopback}, {0x2, 0x4e23, @loopback}, 0x10, 0x0, 0x0, 0x0, 0x3f, 0x0, 0xffffffff, 0x6, 0x1}) r3 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000040)=0x164, 0x4) 11:49:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4f00) 11:49:12 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4800, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5000) 11:49:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\xff', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x40010, r1, 0x0) 11:49:12 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c00, 0x0, 0x0, 0x0, 0x0) 11:49:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5200) 11:49:12 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4, 0x0, 0x0, 0x0, 0x0) [ 443.601485][T15589] IPVS: ftp: loaded support on port[0] = 21 [ 443.760293][ C1] net_ratelimit: 20 callbacks suppressed [ 443.760301][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 443.760333][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 443.766026][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 443.783251][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 443.789063][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 443.987172][T15589] chnl_net:caif_netlink_parms(): no params data found [ 444.017727][T15589] bridge0: port 1(bridge_slave_0) entered blocking state [ 444.024906][T15589] bridge0: port 1(bridge_slave_0) entered disabled state [ 444.033160][T15589] device bridge_slave_0 entered promiscuous mode [ 444.154489][T15589] bridge0: port 2(bridge_slave_1) entered blocking state [ 444.162655][T15589] bridge0: port 2(bridge_slave_1) entered disabled state [ 444.170494][T15589] device bridge_slave_1 entered promiscuous mode [ 444.303054][T15589] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 444.315926][T15589] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 444.333866][T15589] team0: Port device team_slave_0 added [ 444.456014][T15589] team0: Port device team_slave_1 added [ 444.512207][T15589] device hsr_slave_0 entered promiscuous mode [ 444.560669][T15589] device hsr_slave_1 entered promiscuous mode [ 444.640339][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 444.646134][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 444.745124][T15589] bridge0: port 2(bridge_slave_1) entered blocking state [ 444.752202][T15589] bridge0: port 2(bridge_slave_1) entered forwarding state [ 444.759492][T15589] bridge0: port 1(bridge_slave_0) entered blocking state [ 444.766594][T15589] bridge0: port 1(bridge_slave_0) entered forwarding state [ 444.912827][ T7862] bridge0: port 1(bridge_slave_0) entered disabled state [ 444.920692][ T7862] bridge0: port 2(bridge_slave_1) entered disabled state [ 444.939735][T15589] 8021q: adding VLAN 0 to HW filter on device bond0 [ 444.952987][ T7847] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 444.961498][ T7847] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 444.972322][ T7] device bridge_slave_1 left promiscuous mode [ 444.978708][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 445.046982][ T7] device bridge_slave_0 left promiscuous mode [ 445.053261][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 445.120336][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 445.126167][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 445.200358][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 448.302102][ T7] device hsr_slave_1 left promiscuous mode [ 448.344620][ T7] device hsr_slave_0 left promiscuous mode [ 448.404593][ T7] team0 (unregistering): Port device team_slave_1 removed [ 448.419131][ T7] team0 (unregistering): Port device team_slave_0 removed [ 448.431778][ T7] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 448.504612][ T7] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 448.597486][ T7] bond0 (unregistering): Released all slaves [ 448.706651][T15589] 8021q: adding VLAN 0 to HW filter on device team0 [ 448.718188][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 448.726948][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 448.735430][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 448.742522][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 448.753843][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 448.762536][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 448.771645][ T2979] bridge0: port 2(bridge_slave_1) entered blocking state [ 448.778862][ T2979] bridge0: port 2(bridge_slave_1) entered forwarding state [ 448.798818][T15589] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 448.800335][ C1] net_ratelimit: 15 callbacks suppressed [ 448.800343][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 448.809619][T15589] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 448.814888][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 448.838622][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 448.847176][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 448.855847][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 448.864236][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 448.872736][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 448.881247][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 448.889572][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 448.898289][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 448.906562][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 448.915074][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 448.923400][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 448.931300][ T2979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 448.956038][T15589] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 449.010332][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 449.016158][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5400) 11:49:18 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2, 0x0, 0x0, 0x0, 0x0) 11:49:18 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5, 0x0, 0x0, 0x0, 0x0) 11:49:18 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xfffffffffffffff8, 0x20015, r0, 0x0) r2 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x2, 0x400) ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f0000000100)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000080)=@req3={0x8000, 0x1b, 0x8, 0x81, 0x8001, 0x5, 0xfffffffffffffffe}, 0x1c) 11:49:18 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000180)={0x54, r2, 0x0, 0x70bd27, 0x25dfdbff, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_NET={0x34, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2c00000000000000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x401}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40010}, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:18 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000, 0x0, 0x0, 0x0, 0x0) [ 449.130317][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 449.136267][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 449.188102][T15626] __ntfs_error: 33 callbacks suppressed [ 449.188114][T15626] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 449.221259][T15630] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:18 executing program 2: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000080)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r1, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) shutdown(r1, 0x1) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) [ 449.242837][T15632] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 449.260346][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 449.266196][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 449.280291][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 449.286133][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5600) 11:49:18 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x28801, 0x0) ioctl$VT_WAITACTIVE(r1, 0x5607) r2 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x96, 0x400) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000080)=0xffff, 0x4) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d614824d80dd9f86bec7e9c00180000000000deffbcb3e61f0000a9d853536cd82e00007b165da4058c37ad1d2f5c592a42c21e9f"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 449.349013][T15626] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 449.374743][T15626] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 449.461846][T15632] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. [ 449.487812][T15630] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6800, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000080)={0x7, 0x2, 0x0, 0x2}) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x8, 0x440000000002011, r0, 0x0) [ 449.752695][T15676] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 449.763457][T15676] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 449.777262][T15676] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. 11:49:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5800) 11:49:19 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:19 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x3, 0x0) connect$bt_sco(r1, &(0x7f0000000080)={0x1f, {0x8fe1, 0x4, 0x401, 0x1, 0x5, 0x4}}, 0x8) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:49:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c00, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5a00) 11:49:19 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592aac42c21e9ffbfa49c87255"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:19 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x0, 0x0, 0x0, 0x0) 11:49:19 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000100)='./file0\x00', 0x538afb0b, 0x3, &(0x7f00000021c0)=[{&(0x7f0000000180)="f6b9b0b82820e4c6821d1a97c24e235ad522480b26cf87fa9348eafaca6ecf4015e192c99588c3d8bc945e90ee3e5f3403271471dfc2c378f0", 0x39, 0x9}, {&(0x7f00000001c0)="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", 0x1000, 0xd36d}, {&(0x7f00000011c0)="876a0d26684794962f3d3a39977e9217d32b96747f5260491e90cff564adfacc0dc1ce588cbd2a80893abfd655f4706c2b169076c0e72b1141a24492c734123b5e2950fc90751add3f38e240fbe5c5d7d2a943ec0bb45a8803741e49164ac6eb1a2f37eedc81495ab988efcbb41bb8e9eccf6b9dc3bf126278465899981eef7cc1355e3f53100aa920b30f6ad9245480a81bee87b2b6cce36bedf48f930ffee1c03429b42db6c6d30f76561f118467ea609fd3f9375f55e17ab11d0cd4d1f59b027a402e130b1364ae1c45471e0d7f40168480d86f3e598715bf214fb47b57a10f87a126b73d7b6649756d48561d537468c54ccac7350f2911598354ca215484b1562f690cd525c68dee5e6520e194c61755261df661dc2f64484a88da46310a5dce35054a469e82ade8b4f31bbf604e89929db4f206475a230b8c3e91b6319a716609a63661f27038829f5086ec33d6c54bdf8332da1870ba90c6f7e59a5f36d7a1efe0172e42600ac0c80341d1f5d731718bfa1e304b196aaeba3b9c03008226deae2f2585e1afe305ac202cedd2a0bcb8265533296e7e75e8fc7a1019131a593a9cb554bb78f891eedfe2a426404b21af3dd296be53d7f5c73ea51f5c218f7a1c83f446b9d7c955eb83838673bd347f38a7303211b0f8f166a347741966ebb641087468e7133feb73a217732893133be955e24d7a4367dd5b8ce89580441ccb767c03dd499539e0c353ca73679a71c5ab1408fed027f28f289a8bfa3ce855a30d79dbdee215c4aa86280ff097f23831e0c3f77b94e5deaec7692dc33c4b2adf94ee39ca7abcc9fbed8239730f4009c66ab1b8a8eb844920bb218f924181bb40d37247cbc67148aef5ca5d7578b233626e166f33787861f1dab62db03c9d0298ffc917b749b1d4532a850f300c702c98b7556f1651972352279873543f2830c90cb4b6ca4e07adb75728f85fd5f1e6c49c27a86aaf447b6db038f62c6a125a7b589d1954e0190c5fe493f3c1d8450e5ee5b946b4591b500fae851ca275f07e69de78fb413dbbd0ac01d17d6bc89a0f06a4c8ba2a35cb7f2de0033627720a5447659d8398134e52de337b9d6cfd6aa4bb9e70b462322b0feafed0289b68029dec05d927141135d60fd46fb8997a7dffda24e5e91a38692a83ccd6dd8a483902c0d3077a35f6fb2f531b10c04a17b1b3f02b5fb66fdaa3ce237f414d5bc793f25ff6d3bd8dcdb212387f2142712607991067f069a9a8f5d690f87da4a4a6830f01977361b5d1fb2549a5ced2ec118b269536b4bc1effa3d5e0e06916c562a7e192a15d8bd009c2cfa6f1781f608815ed7ca990e691e2bfc23e7d4e0d92bf0bc987b47d3ed7ac104f3c35b37ac7224243cc0652bc4a9ff984bb1a202ff6c15b6cec0d14dfcb9608ff56bcceb1097516ac369033ac25b0bb31b8a87be1977ee3f349a3591d75a22d5c6e0cc3a85d67bd2c0385383441ebeb431a1dd99af98e8de5c03f93b76d3afc80fb6e82579c599d82d594360b38c409263cb21be4d200653341e2984dd12d78559e26e34a051e5b74eb16b554f5795ed88ae004a6408e337c2a6c2e3cff04148491774ab4b4f639589d74fed18eb4c0413ad20b1c7e5a7baba68942cf4bbe6ca05db9086d3c96dfb4f0c58feff59bb0a9edb2d2910e373c6abb84707f36dbc99fc2621adc26066b6d4b445a05765453e28bc7810a61e14456c1eef15cac032a6db708dbc38644f26e389e23b0b74f0e0129f26264b66425db42961e0a05fb744cae4129513c66eef423427c2b3062b95b27ee2f23f132a5e0b9eb46fefa2d5d7389e1a1dbb68964a78f704bc4cdba1e9a0ca602ef136fc23985a19f8c145bf84b28ad109a733e9debca79854710888a0c2e808a24cd8cd806604e907848f494b6270e3087ac6c0f6cd70a9cc2829cada536a15c0abc1072a3d989994e6844cb3c0c057d71a4aa32ef1b9b20916f2a14ff82619fe61db793265e769b13e3c38acf15aa8aa596fb5956cf8c725c08b5e8f06c339692b575999f88f840c5e6f0ca04c4fe721ca9bfeb2c961b3adf59daa9ec1f04af75a4b9f8cb641f01e7d229678b61ac09f231687b54bdb1579a04a2d9bb6634ad7f6a0954f405abffd982b27557a6f7c54f76418bba12f7523c0aa9d1542d1858efb3e348819681cd4d35f232604d9f0e90ac062022894ad1d8e0baef9cf0d7ee339ac252ec5c0daf2371dd095acfc020c91256b28f3fd85dea2b0ddfb46549dd075ccfab89f9df5951de1987e0c8fd319499e3390e9693fab52804254d5fa3efc7058f60581031281264aff91bb2f94ab9727a3c762911bedb3a5388e55ae5a076003190f32eae528dcc6bab0f6d04b93b3fba3969ba9482d4d7eceac782318e5da5fc2f9b3867d9438a800b8616507d9cb111ea85b53d4c363e44c955e4c8a5b2aadc3c1698c55739e36e5f3a6369b8646cde12953f62f1909c936ba15d6cc9884cad1421dd0081a358704236746ea2ea1649be44ba959bf475325b62097889d387b2ac463f82768817d34893b747f47ef51e5193c5f08644a288d5bd27ceaa6f72f05de1107aa67edb0b28a7a5cc9b74788d308a8b80bd67727fdf324d3224d72e3731f5255ee362e6a05a8df58f9a196d4ac3cfcc760b89b49874aecff82123c73fc3f2fadd92f5e38577ae2e007ea6506a37f0c95cf6f5cc824a05c2b5e95d2935b3c218c99ed236329fb0936a7f13b59d1c5a6db3f663165778da8ff82986c817c099b74a0ccbc86ca212d5b2b83ac9b46906a5d52a5cdf37264128725b3aac23b5c40f4f8bb47a0a81d55a6139495dddcb57b1b957c664f76de19c034fd51bff04700cda76d4542662804ce8125f83a603e3ad505c89584160af6a0b015860b0e9463cfa5a81e5403620617c95329372de42617961d063c1c0679766bd9937ede9b5b3c7d7596e0913376a31c1dbd8ed441a936814aa20b5c78edb524b067ecc8136368a594019e7d6852a12819a19b9f244ed779bed0bb7f488a64d7f4efdb5cb595099c3407ce6f8c24edd88cd2ae7614c3dcbb673afd22268861d331869a25793fd797f67d3d6dd1ac5e37ffbb3dcc4f39a75b3cae015e705fa7072dbe36127163ac605d47c9e3840d7c18dc2690126572db10034cfeeb901b5c47abeca2a0d7938cde78e0cd853d83a732ccdb4e99aded6cd2ac50802f0dbbafad8397aedd1f905044623321006dbe6553e8f8f5569be058eae4dc13eeee5b2da45b75bb2413c4b8793e70a63c876ffe8a8b26a4b359e83893099c5af951ae8062f400fcf887708b9b3453ec2fb24d150cb29774a832918a45773ecd9ab71a433b90e89ec0f221b140b6d1a63ec3cfd7e3d624f3c113bcbd17fcf72754ae0feb4e5084dc50031c66300b3c1544babcf9bcb746d4e499049d6de65c952a31f90f94dfabd87c972c7e349927ed87ac7342292aba5992de213bbe0f2e6b2092a4ceabaad32e5d1e9527dd8996a3ba3dd94958adf26a630f38c4550b96df04d0739f9e454022cf42035bfa7e3ba479de802336bca29011ad7d52ec2b41156de158d23d1550268abb2a874a061f8a8b383463a0e8dd697483eadfc675d7aabea96d30fdb07a650ef2008125977b96450c3986a150f6cc4b9e61175e3731f30a4f0e95a2255d61f0f44ed0f3eaaa34784ef7c214f8c1edb263a305f80183caba498272026e6297cbb8f038e79ac9a4f5af759b6923cb48cd0bc73789d64ae7b125647ffd79e1238824e352652650fa995ab5c93e7797b2b0862ab2833647481bce2128d3403625704fc5721304c6fdd890d5052d525e802a25cdbdc8d6a474566561a8028107827d0636d6dfbfad9bd38333dce85d3672429bf60ed6ae4515ec34a2a13e38795f100808d4f86cc9f65b39be5c1c60e3b647931ecec3256b6ddb02405354cd46d819518505595958aef70a4f90d1e8431c75c46285b3e8077e0adadf4b816f1eefdad8304b3d0e3fbb2ecc25760d24408cda81dd209472965736606881229df397a3ef1b4f804f04c7208df641628d73f71fee51218d447ac94223fea545bc97aefd52b3e7782b32843868bed66b0b53c923ac01db1dc3bea88340cd19f6deeeff5c91b44075fa7c776f2123eefb141e948d706d766bf1814a5c37db28bd4f64804a3101b5e6e71266fa58d33ddb6ac4de5801da1af951c261a4e2d400a605e11f725bd70e649a8cd338164d457e3784c89629c35ed3d6d6f249e36e723d7d2996755f02261a02c389c0a93e5f68851d6de814a576bb54f1f4385439432bc849604d64014367eb12e30a4e54797e1f26e9a64a8d330477c48931abd8eb3ba516a03b0aec301f5a9bc1bbd41427e983c971ff039c8546c3dd448ba25bb3cb4d571fceededc79ec0271035b6839f3dc53e05451142076ac16472b889602356b2b40ea23a65ab279cdef6017697af8e23160c22d8227a5d5fd5e13d9599bc96d57062bb343d37729959f3b4ccd77e6aedab3a9dcda91287b7ed76c67dc6c61458761f88dc4151611635f99953f9f0118f2d16e3ed4709c77aa1dcb08cdae59c4df28087583ac1b5b2f6b8011a7e3d34714ebe2b498350d4af824e08ac963abf5f5b1cfd798c288524d1604d0fbcacf9c52fea2ca001855c514aef47f1c201afaeba8dadbd96b87b8252ca850d6956958a4863860b11da2a1c5f79586be666fa859193efed116ce2a213a80c6578b1387227593c2119c2ee546087f65e85526062d2e989f7e894f210ba387e4a0e6824af039ea2edbca0fd0a2df2128619e86c84ad4756ca169b60c3605b7cf81a421ba9df29c314c029933f0ad9c0d0c2190ead12f0d453135f889d0b04ad631ba6d0e7524af48864d1aa08e090641d5dfa1c6e854f19b90d39518c7f1e04bccf2943984f85fde9fddea5dbef782d87f93fbcb92e1a69a7d4cf34f9feea356f6335e0f007263c99235885646b8a08ce34751c2360ab4fef89f94b5126f16f2c9b915edde3e88d5aeff81a067f2da8282869ec5e457a1b3e65f86c7ec845382b2fad6c647d128f87c8901a4de3f7bd691e0f5c86a9cacf5d198664b6ef978fa5b1549e8f4e27bda33bf533c9a45d8b6ae7b63e62189cb83e5723c5a1ee212124adfde77dc0cb0e2f7ea3f9f404e28cb79d3a306e0f50f2b421148c1ffd383076ff97f7836e4381e3fd2b03255ca20755e355f7224a1a24bf44df743ef0b6bde508bbacd82f020470e86a2365d196b6f916e6f427f72138d25ff391d1192646e7bc9bcf4a73ca505bb077fac5ff379774e015ebf796f1c06395156b74d1e0feb5278762c2c550f29c22321f0aeb3c8fdf2bfa0b5162c26a79d0a5e1ef581056d04c9f52b75e0e68f8f211a138c7ed6f35f2bfe9c4ed7cb4deac410e50000871a22849f91975395762382d631e4b78c20300bbeb6ef5046aca497e431105f5123b965270ab34c50452bdee35e6f4f84425e070b3f99c3b9149dbb12a0539f15d3817d17b6e4c354cb9c3a37510812612f3365d9c91fb7e7894d7fa264cce99ffe61e32b488d1956c048e5b20eb89459426ddea1d89175e20a340efdd16dd591770172bc81e7b763b4e723333d4b6e7153347791e7fb1a909ed05ea7aed9e5fe0b5613b95f7b6aa0ee5835d0dcfc33bac60c029106c81da9476e7113b6b117c3fb1b6fbbfbb215a06908d3854765e92b1b0de363475b399b405fbbacf2a1f889fab85fcd16dac575acf4b8aaed27fcc3da4da590de7f667b76622539e2046dc9a2e5f4648395aeb66b2ad422cedc83d907ad1d4f32723eed13c2", 0x1000, 0x6}], 0x100000, &(0x7f0000002240)={[{@utf8='utf8'}, {@show_sys_files_no='show_sys_files=no'}, {@umask={'umask', 0x3d, 0x8}}, {@utf8='utf8'}], [{@appraise='appraise'}, {@fsname={'fsname', 0x3d, '/dev/ashmem\x00'}}]}) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000080)={0x5, 0x2, 0x6, 0x10000, 0x1, [{0x100, 0x9c, 0x101}]}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:19 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x100, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x8, 0x10100) openat$mixer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2000, 0x0) r1 = open(&(0x7f00000001c0)='./file0\x00', 0x4000, 0x120) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mixer\x00', 0x400000, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@dev, @in=@dev}}, {{@in6=@mcast1}, 0x0, @in6=@remote}}, &(0x7f0000000080)=0xe8) write$P9_RREAD(r2, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r0, @ANYRESHEX=r0], 0xfffffffffffffda8) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:19 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7400, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5c00) 11:49:20 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000000)=0x0) ptrace$getenv(0x4201, r0, 0x25c0, &(0x7f0000000040)) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000001a4b3e61f5cc455485297cfe39b540074365da4058c37adc82f5c592a42c21e9ffbfa49c872559507ade625e63ad7"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) 11:49:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) pipe(&(0x7f0000000000)={0xffffffffffffffff}) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x80000, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000000c0)={r0, r3}) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5e00) 11:49:20 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a00, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c121c3188b070d55c951329092b219a48af64124f2381a447bf31df57ac95e4390f2759af302108318fb458b7c695bb0d4f16c9884a9717458c3ff36459dd0b") r1 = syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x6c5b6b5b, 0x2000) connect$netlink(r1, &(0x7f0000000200)=@unspec, 0xc) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl(r0, 0x9, &(0x7f0000000240)="17a443b3ddf2b2b4f0bd808c6feceb6f2c80234a7b878268af36e307802ae8850042f44531eb4ffbb8e3404ae4acef1eeffd5f379c3efbf7da6a00d32073a579a179fa0f43c2496e832d23035d7a1b47441df9b1db4fa3fc9bbc0255e7db627dc61fe8c01b72e0f453fcf78033e0f56a799606615fe2357e3a063c0e9f718d73edbc64f660597521ecd2db299d362d190dbd0a1a3da15f7fd8835e758664818db4210cdc0e24dc364a062b75c9d19c01115b0a42a7b3ab4cdec8b2b0ae6308c3a80860640c3cce0b70f717f1113e12498d94ecfcc997000949b8ea3d61e3c424fdf337b0ad") ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x8e) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000000)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000040)=0x1c) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000100)={r3, 0x10000, 0x3, [0x1, 0x7ff, 0x3]}, &(0x7f0000000180)=0xe) 11:49:20 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x180, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000040)=""/159, &(0x7f0000000180)=0x9f) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x2) 11:49:20 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/schedule_icmp\x00', 0x2, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2000, 0x0) ioctl$TIOCLINUX7(r2, 0x541c, &(0x7f0000000240)={0x7, 0x7f}) getsockname$tipc(r2, &(0x7f0000000180)=@name, &(0x7f00000001c0)=0x10) socket$nl_crypto(0x10, 0x3, 0x15) r3 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0xa84, 0x200) ioctl$VIDIOC_S_FBUF(r3, 0x4030560b, &(0x7f00000000c0)={0x8, 0x46, &(0x7f0000000080)="66f3921cbcc342c8f25918077c10e36ba6b522c2c76ae3d5a878b3e33e600f0a1ff661fcef708e2d71e070ca6b948d3eb703ba725900a4e3d88e3d475e95dd", {0xb936, 0x2, 0x30313953, 0x5, 0x0, 0x5, 0x0, 0x10000}}) 11:49:20 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xedc0, 0x0, 0x0, 0x0, 0x0) 11:49:20 executing program 1: r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x7, 0x20000) bind$netlink(r1, &(0x7f0000000040)={0x10, 0x0, 0x9, 0x80004000}, 0xc) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6000) 11:49:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008910, &(0x7f0000000000)="ca513cf2a3ca077dd24844c1c8a222306d363b5cbf6580570fe2a5a459fc4b4ea2620556accea082f6b849bbdc9e4e0ddb4dc74bb9534afca81d452a641103bcfdfb6290ae86fa4dfb") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x40f, 0x1fff) ioctl$VT_GETSTATE(r2, 0x5603, &(0x7f00000000c0)={0x100000001, 0xd8, 0x7}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:21 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7, 0x2) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000006c0)='TIPC\x00') r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/zero\x00', 0x12000, 0x0) sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10100000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000325bd7000fbdbdf25010000000000000500000000000c001473797a3000000e00"], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4840) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000340)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r3, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000380)={0xd8, r4, 0x200, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x692a3abc}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1f}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x4}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x5}]}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x100000000}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x20}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_DAEMON={0x38, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xffffffffffffff7f}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xe7d}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfffffffffffffffb}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x100000000}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x8000}, 0x80) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x7, 0x3, 0xa, 0xd, "90c51185b42a0388ae804969461e2ed2580d433e62f323a89b11890ee53304d9129d242915e50135ed9d20ded74a986b8b630d29102a16781ba4d2127b9bcde4", "a90ebbf3d5ab6dac65e12e41e8fec79bc6b0ef594722cb7b2e95627af4ed4439", [0x68, 0x8]}) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) 11:49:21 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x10, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe0000, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6200) 11:49:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f00000005c0)='./file0\x00', 0x119000, 0x104) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000440)='TIPCv2\x00') sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x404080}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x70, r3, 0x806, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xc2}]}, @TIPC_NLA_SOCK={0x14, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x200000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_SOCK={0x14, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x40}, 0x14) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r4 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x200, 0x8000) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ashmem\x00', 0x80000, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000300)={&(0x7f0000000100)=[0x7, 0x100, 0x6, 0x20, 0x4, 0x80, 0x7], 0x7, 0x7fffffff, 0x6, 0x8, 0x6, 0x3f, {0xfffffffffffffffb, 0x20, 0x7, 0x794, 0x7f, 0x3, 0x3, 0x1, 0x0, 0x5, 0x9, 0x13, 0x5, 0x7, "ef52d074dd4be1afae0274622cb3e1d718f7d3cc908684539ed6694957cf7862"}}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x10000, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000580)='/proc/capi/capi20\x00', 0x101000, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f0000000080)={0xc, 0x8, 0xfa00, {&(0x7f0000000180)}}, 0x10) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:21 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x8, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da40506ffc98c37adc82f5c592a42c21e9ffbfa49c8"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:21 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x48, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1000000, 0x0, 0x0, 0x0, 0x0) 11:49:21 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x8) r2 = dup2(r0, r0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) ioctl$TIOCCONS(r2, 0x541d) syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x401, 0x8000) 11:49:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6400) 11:49:21 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b) r1 = syz_open_dev$amidi(&(0x7f0000000180)='/dev/amidi#\x00', 0xb28c, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000001c0)=0x1, 0x4) ptrace$setregs(0xd, r0, 0x3, &(0x7f0000000000)="0f67be191e5dddb1deeeb2315b70efc3f81fee597df1ec7d43fabff66bab433189f075009e7fb9f2acab018ec1f6e0db51294bc7702601fae9f1269fef0d012e2d8fbd7946a53528b7b72de7476fe8845a942b757ffb5551a74f74855f86d06f27c5e7dd3ebb224712306818b702efa279f53fc760628a227bbc8558b728e4ceed1a829ede3ab35d26722f7a2f7268b3ccc349b58a71d15ddf42f385bc427d6b8550d9cf4e52c280a9b64277b938b7a52b3e1bc1fd4245b70401dc0250b129288627b48782") 11:49:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x200, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0xf) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x2, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000080)={0x8, 0x9}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa, 0x0, 0x0, 0x0, 0x0) 11:49:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x5, 0xfffffffffffffffd) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x5, 0x200000) ioctl$SIOCX25GSUBSCRIP(r1, 0x89e0, &(0x7f0000000180)={'bcsh0\x00', 0x3ff, 0x2}) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6500) 11:49:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x1f, 0x41) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x3, 0x20, 0x9, 0x10000, 0xbe, 0x8}) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000080)={0x40000000000, 0x2, 0x6, 0x3ff, 0x54f, 0x6, 0x80000001, 0x8}, &(0x7f00000000c0)={0x200, 0xfffffffffffffffc, 0x6, 0x40, 0x100000001, 0x4, 0x3, 0x7}, &(0x7f0000000180)={0x8, 0x80000000, 0xab, 0xffff, 0x0, 0x7f, 0x400, 0x80000000}, &(0x7f0000000200)={r2, r3+30000000}, &(0x7f0000000280)={&(0x7f0000000240)={0xc000}, 0x8}) ptrace$cont(0x7, r1, 0x0, 0x0) 11:49:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c, 0x0, 0x0, 0x0, 0x0) 11:49:22 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000100)="3b02863d76911138000000") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x3, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x100000001) inotify_init() mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000000)={r0, 0x0, 0x6, 0xffffffffffffffff, 0x3d1}) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x420000, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') r2 = syz_open_dev$midi(&(0x7f0000000580)='/dev/midi#\x00', 0x1, 0x40001) r3 = creat(&(0x7f0000000400)='./file0\x00', 0x0) write$P9_RREMOVE(0xffffffffffffffff, &(0x7f0000000280)={0xff60}, 0xe3c7) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, 0x0, 0x0) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$USERIO_CMD_SEND_INTERRUPT(r2, 0x0, 0xfffffffffffffd60) syz_genetlink_get_family_id$tipc2(&(0x7f0000000380)='TIPCv2\x00') getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) ioprio_get$uid(0x3, 0x0) pivot_root(0x0, 0x0) ioctl$int_out(r3, 0x0, 0x0) getegid() ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000180)={0x0, 0x1}) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$9p_rdma(&(0x7f00000003c0)='127.0.0.1\x00', &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='9p\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000000)={0x6}) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='9p\x00', 0x8000, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB="2c6d6d61702c76657273696f6eef3970323030302c7365636c6162656c2c7375626a5f726f6c653d862c00"]) mount(0x0, 0x0, &(0x7f0000000100)='ceph\x00', 0x0, &(0x7f0000000140)='P\xf0selinuxcgroup\x00') r5 = fcntl$getown(0xffffffffffffffff, 0x9) ptrace$poke(0x5, r5, 0x0, 0x3) 11:49:22 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0) 11:49:22 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe, 0x0, 0x0, 0x0, 0x0) 11:49:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = accept4$x25(0xffffffffffffff9c, &(0x7f0000000000)={0x9, @remote}, &(0x7f0000000040)=0x12, 0x800) fadvise64(r1, 0x0, 0x3ff, 0x4) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r2 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x80000000, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r2, 0x111, 0x5, 0x8, 0x4) ptrace$getregset(0x4204, r0, 0x202, &(0x7f00000000c0)={&(0x7f0000000180)=""/223, 0xdf}) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6600) 11:49:22 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x60, 0x0, 0x0, 0x0, 0x0) 11:49:22 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = inotify_init() write$binfmt_script(r1, &(0x7f0000000000)={'#! ', './file0', [{0x20, ').'}, {0x20, '}-%proc\''}, {0x20, 'vboxnet1:{mime_type'}], 0xa, "f469e6b1a1d19ce3dc1aa4002726ef6460135fda20e40f8e3184af817ba7fd7004469918eb4f91ca7e13a5e7e51d5bd05c80936dec4711480e44d2118b480d73750b2e34be28486f7ed1d00f287a01c1365e44b970030c3684b59e60c58d3b4f3489856545245cbccca1328d416bc6a6e4d25635bb6c1ebda5c1ccadbba7e024f16aaee75503ccea503c137ee4b9842bf166a92d22cabeedc5af15696814aba73257a41cf1a8ec763094a62c713016599398158bd621ea214b2eb040"}, 0xe7) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:22 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3000000, 0x0, 0x0, 0x0, 0x0) 11:49:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6700) 11:49:23 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x10, 0x0, 0x0, 0x0, 0x0) 11:49:23 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x2140, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r1, 0xc058534b, &(0x7f00000001c0)={0x6, 0x3, 0x0, 0x5, 0x27ee, 0x548e000000}) ptrace$cont(0x7, r0, 0x0, 0x0) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f0000000040)={0x0, @bt={0xffff, 0x2, 0x1, 0x1, 0x0, 0xc74, 0x7fffffff, 0x3f, 0x40, 0x5, 0x100000001, 0x2, 0x6d8, 0x80, 0x2, 0x4}}) 11:49:23 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x68, 0x0, 0x0, 0x0, 0x0) 11:49:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008911, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6800) 11:49:23 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rtc0\x00', 0x0, 0x0) pipe(&(0x7f0000000900)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCADDDLCI(0xffffffffffffffff, 0x8980, 0x0) write(r1, &(0x7f0000000340), 0x10000014c) syz_genetlink_get_family_id$tipc(0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000380)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7, 0x0, 0x0, 0x1000000000000}, &(0x7f0000000200)={0x0, r2+30000000}, 0x0) setsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000040)={0x9c9, 0x7}, 0x6) lstat(&(0x7f0000000840)='./file0\x00', 0x0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) r3 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x1f, r3, 0x0, 0x0) ptrace$setregs(0xd, r3, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r3, 0x0, 0x0) 11:49:23 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000000, 0x0, 0x0, 0x0, 0x0) 11:49:23 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x48, 0x0, 0x0, 0x0, 0x0) 11:49:23 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c, 0x0, 0x0, 0x0, 0x0) [ 454.160283][ C1] net_ratelimit: 28 callbacks suppressed [ 454.160291][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 454.171818][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 454.177613][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 454.183439][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 454.257537][T16076] __ntfs_error: 78 callbacks suppressed [ 454.257547][T16076] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 454.282070][T16079] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f00000000c0)={0x0, 0x872, 0x30, 0x76, 0x3}, &(0x7f0000000100)=0x18) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000180)={r2, 0x2f, "84744c3266740acaaa5b4d73b4f95fc124b369f53cb659a0f7a5a55abc28fabb9827b69c72e7290abe24ac20fd6d3c"}, &(0x7f00000001c0)=0x37) getsockopt$inet_udp_int(r0, 0x11, 0x6f, &(0x7f0000000000), &(0x7f0000000080)=0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6a00) [ 454.310882][T16076] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 454.324631][T16076] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 454.362500][T16089] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:49:24 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c, 0x0, 0x0, 0x0, 0x0) 11:49:24 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0xc000, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)) tkill(r0, 0x2d) ptrace$cont(0xf, r0, 0x8, 0x6) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d8a49ffbfa49c872559500000000000000000000000000000000000000000000"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) openat$vim2m(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video35\x00', 0x2, 0x0) 11:49:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x212000, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000180)={0x0, 0x2, 0x3, 0x0, 0x7f, 0x0, 0x8, 0x9, {0x0, @in={{0x2, 0x4e21, @empty}}, 0x7ff, 0x1, 0x3, 0x3, 0x2}}, &(0x7f0000000100)=0xb0) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000240)={r3, 0x0, 0xa}, 0x14) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r4 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x9, 0x20000) ioctl$CAPI_NCCI_OPENCOUNT(r4, 0x80044326, &(0x7f0000000080)=0x401) [ 454.521968][T16089] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size. 11:49:24 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5000000, 0x0, 0x0, 0x0, 0x0) 11:49:24 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x74, 0x0, 0x0, 0x0, 0x0) [ 454.712073][T16112] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. 11:49:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6c00) 11:49:24 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x40000, 0x0) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) getresuid(&(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100)) ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000180)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2}) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e6c21fb375ff551f0000a9d852536cd82e200074365da4058c27adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x2000000, 0x3) ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f00000001c0)=""/206) 11:49:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) setsockopt$inet_buf(r0, 0x0, 0x2b, &(0x7f0000000380)="bcb00e5958b9d3b331500a59c98d18000a883aa7f20403fc728acff34a49623938b5d849e96c31b4e6f1ff0a058089f23cf8ded8a6dc5bf707431e64f060c201000000000000f0541f97264b81063ecdd65eb0a89bee1efec56a8e94ec93419cec59fd5c4af396a1851afe0000ffffffffff573e0dfbb11d974b016eb1a3bc9efaa191c62a5d9226004ce1c0b005b13462e928d790148b3326dfc05b89d5ecd87b3e8d2f2466025fa7c8c37a9d478b5c280a3df35e681a8475866395cf5f3051e20e7ebbb63601486f5d41cb05f523afa3c082bf86cad5c33966eb7a804a30c2167d7a6e50c227", 0x9d) r2 = dup3(r1, r1, 0x80000) r3 = getpgrp(0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000580)={0x0, 0x0}, &(0x7f00000005c0)=0xc) stat(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r1, 0x10, &(0x7f00000006c0)={0x0, 0x0}) r7 = geteuid() stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$unix(r2, &(0x7f00000008c0)={&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000180)="0d3bb0f22948d81472763f4057f6d12e38b516705cdfd0a2eff661650c1e51939ea6bb2583874706bf96ce45418a", 0x2e}, {&(0x7f00000001c0)="e7960fe3b659e65802eb20b2f21e2ae8da89b13f1333a021bd9a55f82519a9d569647ff8bac83af2609bb5d5d1e487fec383ba08e38ad3106cd622a8b26ddbae1e2d6db3ddb9a37b4acf0c7392e3a169940fa297cf1859a672ec8d84daf71b73caf70f83c7dab6bc3069e766520b5bb1428ee7ac0777844318399d725ffd5d6b72c7b388824452d7816a17edd14cf840b5d85219c7577ef75bbaee6b5cc15298766bd1a117cbb45e18ea7f272e95e1d61bc4966918a637f039d63286a252a5840d2edef29917630c3ed555474785a1c33329", 0xd2}, {&(0x7f0000000480)="f41fb5f5b252fcf86289e02ad2fcf498fa7bd11170e1d21d202fc15fb563521c90d65323584a8ee3ae651fd1cc9be6de111df398120cd370ae0670328f5ed25d54a072b52bf55da65087c1265a721d303770d172a0a8d3b3dc4fab1ed9c1c0c4bfbe5da2035c389557ae5cc1fceaa58363d503d383539c1603300310ef4b40266945e2d6f4ee9ea1842348d1df840ab2c3a2893bb2fd84dc427bdf922d16f02ef42faad89dde31d2e063a996d27409e9afafcb0ae71fd359cedaf23ad7bee2c3c6f8c42903a73e61f4fd99", 0xcb}, {&(0x7f00000002c0)="4b01a764f8b662a80d69222be02c63ff123d0324b2bb631d9eac960de7d132369babfde7b4dd9ddcd62a3a123ce78c5759b75797c39cf0ffae3c853f068b7dfd2c156115a0ee87c42ae25f250ec1ccdf94296d2028585ac6d1d79844ec14aa69182919f635a54e60da10776775669d1a3143ab821cea2fb1f6809d40aa", 0x7d}], 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000010000000000", @ANYRES32=r0, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r6, @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0xc8, 0x4040800}, 0x4c840) r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x101000, 0x0) ioctl$IOC_PR_CLEAR(r9, 0x401070cd, &(0x7f0000000080)={0x3000}) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000900)=r6) [ 454.803507][T16112] ntfs: (device loop4): ntfs_fill_super(): Unable to determine device size. [ 454.805780][T16129] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 454.849505][T16129] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. 11:49:24 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x60, 0x0, 0x0, 0x0, 0x0) [ 455.040318][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 455.046122][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:24 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000000, 0x0, 0x0, 0x0, 0x0) 11:49:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000080)={0x0, 0x8e8, 0x3, [0xf552, 0x2, 0x2]}, &(0x7f00000000c0)=0xe) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000180)={r2, @in6={{0xa, 0x4e23, 0x800, @empty, 0x3}}, 0x4, 0xe00, 0x101, 0xfaa, 0x8}, 0x98) r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x4) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) write$evdev(r1, &(0x7f0000000240)=[{{r4, r5/1000+10000}, 0x5, 0xb, 0x8001}, {{0x0, 0x7530}, 0x17, 0x1, 0x7}, {{}, 0x17, 0x6, 0x6}], 0x48) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r3, 0x0) 11:49:24 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6(0xa, 0x6, 0x236e) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f00000017c0)={'mangle\x00', 0x1000, "027952f28bc8becd326ab72e2fe15503fcb8a6b222e10fff24980c1698da5a30bf473919be46d7efdd078794d47987918d2d4b3f6d4ac878baad08d47db96ea5f4c98ced67d3a09c555a11dcc29ef6dc60d699fa2d9c17b858ee2c9b99067c2a27a73fb8eadab82abe5a6cddffd958bb3306e8efc9106d54003ca848a0d11419636b46b267d11ef886fcba1784aa02d7011b7f741e854362ef1a0b4a120d71b588d00cc4f7a815f3aa53af8cdda13baf6a95b6c7ea4c3ed6ade4a3e9314c935ba0857e67dd05890533a16b13e09b2399e520d6d5d5673e95aa2b35544e7a2d67c593fd6b0ea0108d975ab04c596134f7c597050ca388477ab65e969cbd125e9b8315c8bba1a3d72a4dff73a20bece3a08074f03a156b729181d0bb2f2b4f368224330ab579cffab3f6045f550e8ef0c4036c44fc8017185a7c66116261fbbf9e980e7661f5802a0a1765335142685ddb59e9537abb9f7891ae2046b68b464675dbe609be15c4dafe239de9231aae20c33b1a76212fc659e5916d1e56330cb7048bcb75c2b3fa320370842997383221f6c0327748f583920b1d1bad10ff1b38c8e6b33ba817cbaffcd0626aa2486a6509cbc5b92647c322b6ef84455360e336e1d2cc237800b5c6163ad128b831aa7d715fe726a9a104355004de075870f7d0915db15e3826cca8714af2715975c7ee7e90d006798f9ba1361a597a64c259b7604678d6a91722910f2cf8a36dff840cb8a8bbdd74b10dc0edbf3ff5ec797620c3b8894e2e3989d3ec72665620a47880664fd64909e55a21ce3dc5cb9bba7e94c59c0bd0283979f71cf7b33bb5785e97f80dab8dfe7229fba56f3011b01117996054abdbdf427a6cabfb654e7598e04a432e81982c9f24c3fe962fb382fd74dee00a7434356807b537ed1801f3d0ba9e4432d60ae30d7c73ecb07858a751a7d816bf4d20df1c951fe8662ff770aef5f8989f7fad68442e8408eafcfe03a8c5948db00a7da40000eee0105b61442db99e6ae8babcec896d09c653e31ac88a46c4e0dda5998d7abffcbc4cbff68c0272ced1acdd267cbd692f978c553c8366e77d774e9d95fe21a48f4b89cae55805fe0822f5fd3fc0f556f93ff3cfe1d5ba93e0ad3e2622ba7a3b12f38f2a52d6889c1005e48f5e2396781e7e17a8baa59bd1e045f94c4257a9f5e8b829ee1224fdee755a5da21773b080f4ae7b8e4ff8c7d7fa1b0ed5672ea24a5348a4e3d31c9cf4b819d545e5f14bb40bee7cb7947ac4cf636e76393612fc9ad7ba03f684c111ee38e14c4f71b44c8062329dfe7a63ef8f593652a838ff6438878a52e4ca9b10af8231ff12c7dc7e9426cd09ace683b6f56bd47ea83ec22c1e2da7a5d42018b1c989d0a7272cad6a5ae67f4e2fb29451e4be29355d7d70e7bb707a4b7d7b52faab3c841355ee8f100cca1ad7fad0f5a83b3ab584e8853d476d66fffaf6f884eeccf0493c08c3dcc2445b7fcfcf1e463b3ce0dbee18753f75bc6c34101c88137f3705409464cfc4beaf8b17d29782c3cd582d6eb742c784f03eea697088012f6c8a50701600c6d1f34a2b0211a352d57db44fbbd2334b2f95419020a61ffb4f7dd48fa2d6eb49183c633812889ad04c93bdb870a224731f7b1ea17e54d2d739f24535b244bf421b6c1d681580ce913f3fa5b4d5ed1d77aa2e449d59e5d9b3f2c2868866e2e0a7aa285fddf7bb6394dcb2a90fd7dcdbf20a56eb40223257217e6300389a5517d5dee7f01dc4d758571e8d90a99444db5c94b42091d3985022824fef29f00040408bed5ba821f3a424ccfad3c1fbd234350b242ff5314acf6a7eeba0d4d9353150ca6ccb7551fcf8faa04a8259a154baacc4ddb1246bda31144b00d9a7c896ab05ffad7e83c0172be412594318e2e52ef14983bb6bd8d7c82385359c2ada4cdebf85ee20d576bfac0c6816e9019f0dabffe8768396b5cdf7fc58d386d644b811f341858f8184f088f4b5e25d81cdc8f9a6c4544f57c73ddb7158e9a4c39d0000470997999cb8260e78730bd28a2ffe8717ec1155d5920392f28f2eb50011770590282b22f218e735d17bcabca2973b490f49f57ca881da8e8030d06bc2e51cc2cd3dbf61d9bcd9c7d2e64dc66fafd38c2ad178beab21ba5c1a680cc571f6e3b590a91516532ed112b41112a9267c98383fa5c374e5fa05bd3f357b7c04c10e9a10b3a04bfdfedd305221735774538273f47de999731b251d11ac6ad35301c88067171ec331739a8dc56530be03dc26131cedba1ef8ce3d927ddfbd95c82c37d4bd01564ed643d3a7becbc07051aec2d21b06f2541fd06db731fa3407333ea7d188c12cd1026584eb3e3894b461c55d2e5169fdf2c391a0789b74ede79d153198bd6573df66295ec09e3fb117137be0c785384881030d41283ee4fd5b43a12fc5590a373d57e636566770437d70d244c3342669bb439937e3844f4f595f788285614bac2d8e311caadb13ee88db65098fe1485c60df2e8fb101c42b8379b36f16a896eee1d42bef4c9b5a0ec19b5f145b60beedb2703807850576989a0f085c40e36804a06ba15d9a99f2de8b54e19c01a4669fe06d2f56feaeb622acf1ca6b5751db6e075e4a747c3b9e3c136797dd24141b37af96c9c3bd10155559af031d679e0948633feb72625f77b37f919b606ce0e2314c7f20123e26aa6b944987e0139c87d168a51cc868587b7d8ea887f854956572513ddd9699363e113c7cf771632dffe781b2dabd858af5b806ca834423e24021dfb83ef28145d4dbdbf25f599f4d73581ef8c2ba4d9055cefefb504c2eadcf8dcdf225de32ae3bf61ac129e43805bab6eb4033212c9867acd02627712949b59b03f5cb0c8d02c5b8b126dc65519978e1f919063d07240c97b6b2783b8603b9ecc373d8bee2dbc90f0ed21365a4838be1dfcb586ed901cf333a314b516c89d9e4ad224530decb6a5da17070a3693e64c7799c47f728e5fc7d915cc5579529ca9a1a2818a68ee54864ae0a4b4d6dcd29328bde68dc77ce22be7bd6483c5c0c617e2e5d45a9b297daf4b7419f357120802d2e4a5c51645f9a01e0e8ccfad49186214483cb39d914c24fd0907107606bb328a3c4d76a5cff66fd1519a20b8e50e81de04fef6d3a65488b803201580124398ff8228ce5b14c06442d8ab43174a53fc878ee667aec48c55c013ca222d5f0daa1903377101c6a43ef58e01f5736a103ac797de0abbda0854e4ae658c02f8fbd95012d538babccb4ddcb2c06a3eb89e2fae5065b2e7bec2168da57e23d94913af743aaaa2e25521f467fe117d699cbed472479033bf228502992b3b4d0b3b8360672de3eef0cf1b9f33907790084b19bc5a7a72bf8f8ed107ff645cbdbff2c17ab6e45186542e8f309ff0d1ea6ae2cbadca2c4e6eee2ee67bdce8432881fc41102e9cfbbdf43a476664898dda0dad7bf609b5ea05b001a8246f2ab53234cb0ff8d7f8ff748757850d6b6686d951b7ca363bf6d87957a7254c0ac19360aa997984b5cccc252ccb218c81d1c936e38e456850e1934ca0c5bb89b8eb46bc7cefc77a86d95b7ced267c553058935f6b73a632bde6dca11475a7c7f6b4f5282853589845f543a6636b3598b19cd2b7ca370b09c4e401fd5d17fa88fcf2a85a5f05ee200f2a7c0a9bed0ba20632ba411eb631e08ea6988dddd61493a08a9c550dc5481d888589b2fd35ad52150ba25de1a69533afc3eebcbf2d2aa6a19156dca9afd9394dfade5321c0584c7326e8151dfb918db1f4603fa400bf702dc1272c3293a0e9aa8fa32bfefb221a1ee19d59f11f8a9be242e0099aaad0218d6b93c47df3e9f39fce255c940fc9714a2b702e84c164a1ab69835862dbddcfee001b5db6345ae2e422749ff639c31d096f45592160b15c7a9a17675eaa7a7cf09bc51058fb81284d06a6a992aa65c99835aaf4059541dbb2c39cf90e295b796e4769095626b6306efb6d72710ae5792980e5ae0d36e526ad44fc274cb7f3fdabe1a262ca0dcffa9beda26d022d7c4d51a835cfa4a30265bee5821acf1832dbc5d064d7901c505af3b6179a4482050a11b2801fbf2df01fb55680459d059a91f08a87b546dd7ff556750ca9697a6af75961fb958547cf7789a3adb611e3e6e5f1f14ac15e319b05c85c975294d605277e3f3e90c8e16813313ab3525e840dbb455a3ea885748ff1c9d621e0d8b63a13b1f50b9c0f97a0347e128db4eb6517c8e5a6e93011464c2b85fcefd786e21c6dc0cffa763081e2250f228152bedcb59ff55c97c7557270dff976581b91a600df068e75d2bdd4e19ade271c66ab4aced4f44d67efcf059e19c4b23814409326b6dfe510cac1205ce2273774b5299656e03abce1804786cbaae3696a18e27e3475cf652895e11f7620dc2f3a4322cda72528a854b2af6c1d994f0a527f414b7d7334592fd05b464f1e41c0673c1ffc5a0bcf16dab86317b63604f8fcf3a0c29e4c2ed33241ec41e744d9587259b163f367ea01cc4aab6377dea205be49a31d95ed28ac325977902229ac50ea7528a979a5b21a944c66110ef098baedb087fbd622b6e7a8104f1aa82fc5a882d11df35cdba518c1b54bd8d0fe2f5c65af7543a18affcdbc072bb2c3fe1ff63c93d836624a3ef7fc2d19d16b9ca4b24e805de0e6d48192a688e6e00e6312e97fe2b671c78e4a9a52e3d6a7c881590383a06674bc1900746becb133a73973480a9af02e5314c6fb32d70f1c033104abd76afefcb3605f801612f108d336350ac0c8b36ceb3501947571817237b32782d8ccfd88873f5ac3ac6a47e137d05cec0360989cb4dbba9d6285f70186be09af32d836f565738cb4b4d7ef583e537af11049ab94c03a3dd1360c5fbc4c73328bb584873da155002fc160fdbdd926c434208d61d5f96bbd8d83d265d7eb15efc3fb2ef73db38b58322a536a5620b44728f08ab6128dd6ad4e9ceefdcf1ffea4c251fc5b78eaa64d90ae46fd0b506a91dd0277936c39937c3a9f0a38c6b88c5ab758d169dd6dd0797d98c51e81f49cd75804ad045b9c2c2ec03b3c0d66e1c83934ca48a8f08589834636628b86dc4693d6b87f057e4da1bfe9a48d22fd5f3d36632f918d1c8c13e4b1717358e1411263960e9637a49ca8bcf7477b9561d8dcac8d26626ec43be1c387773356730d15da43e97417cc5d7b8cb2a37b6fd60b0c8285004403cf5394b0db6823a653f3bdf58e646c7e8de5a0307e450c6eaaf321cce51a02b7e01a8f9f6667271bc5dd28a27cdee8422e62ca0d64e260cd1b47283126a361c8df592dc4ed6ddf28b4e62cd647000b1b4139729222ea9d6b108c35bd442ca14d546eaca9ef907930d513e957272c13604ed0d4b819eb59ba64e9f2705016b5952949524fbe84069a5ae064dd352c817ad3831feb0db9fed61d729d57b5089c98ea7e5313c6d08a56a596a770cc15d83bf5dc3a9244fb723b6c750b92f9863db2b7093d7f7be0d03fe6eb7f3362f707c7ef56cb1be0ee9b54c48de5c4a2165c772e791e3b53703e5b93d4fbb61c7fece42642768c267b4ddb2ef466196de45ff8c3d55defe8af54af171f8e549d20006256e41a9ff3a2674fb9850859ccf9535931fe35205681360531e1283c9dadcd6fa3252c1414e7e8a9538904ab7b39cc60d96dbd8db9cf2a5204eb940434873c0e8dbb13cb277354e0af62ffdc192f36f080c4b627570ad9e59973f726dd8dc8460d9eac8deffbf0257d5846751cbba34101a3e0f4797ad907939bae2690dd888b8e9506efc390f9ee8560c038c86413bf2e6edb4215511"}, &(0x7f0000001780)=0x1024) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f00000016c0)='/proc/capi/capi20ncci\x00', 0x404000, 0x0) ioctl$UI_END_FF_UPLOAD(r2, 0x406855c9, &(0x7f0000001700)={0xb, 0xe7, {0x53, 0x2, 0xfc2, {0x101, 0x3}, {0xd6f, 0x800}, @const={0x5, {0x4, 0x1, 0x1000, 0x3}}}, {0x56, 0x1ff, 0x983, {0x401, 0xfbdc}, {0xe5a, 0x300000000000000}, @const={0x5, {0x4, 0x80000000, 0x5, 0x7}}}}) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000180)={{{@in=@remote, @in6=@ipv4={[], [], @initdev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f0000000040)=0xe8) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000280)={@mcast2, r3}, 0x14) r4 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r4, 0xc4c85513, &(0x7f00000011c0)={{0x0, 0x6, 0x5, 0x8, '\x00', 0x3}, 0x0, [0x1, 0x4, 0x101, 0xfffffffffffffe01, 0x9, 0x6, 0x7, 0xd172, 0x200, 0xf8, 0x1, 0x100000001, 0x5, 0x101, 0x3, 0x1ff, 0x9, 0x3, 0x8, 0x0, 0x7, 0x7, 0x9, 0x6, 0x800, 0x0, 0x2, 0x7fff, 0x8001, 0x7, 0x946, 0x7, 0x4, 0x1, 0x0, 0xaca, 0x3, 0x15d8000000000, 0x100000001, 0x4d, 0x10000, 0x7, 0x100000001, 0x1, 0x7, 0xa029, 0x20, 0x8, 0x401, 0x1, 0x6b44, 0x3, 0x2, 0x2, 0x3, 0x8, 0x4, 0x8, 0x164f, 0x572, 0x3, 0x2, 0x5, 0x10001, 0x3f, 0xfffffffffffffffe, 0x4, 0x9, 0x60000000000000, 0x5, 0xe0, 0x3f, 0x3, 0x0, 0xffffffff, 0x5, 0xc92, 0xffffffff, 0x5, 0x5, 0x6, 0x80000001, 0x8, 0x9, 0x6, 0x100dbf10, 0x8, 0xed, 0x100000000, 0x20, 0x8000, 0x4, 0x100, 0x9, 0x9, 0xc35e, 0x6a, 0xffffffffffff1020, 0xfff, 0x401, 0x3, 0x5, 0x5f, 0x9, 0x200, 0xa54, 0x8, 0x9, 0x9, 0x1, 0xfffffffffffffffe, 0x5, 0x0, 0x6, 0x8a4, 0xfff, 0x8, 0x29c, 0x200, 0x9, 0x1, 0xe3, 0x7, 0x20d, 0x80000000, 0x3, 0x1f, 0x7fffffff], {r5, r6+10000000}}) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r1, 0xffff, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) syz_open_procfs(r1, &(0x7f0000000080)='\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x16') ptrace$cont(0x8, r1, 0xfffffffffffffffc, 0x100000001) 11:49:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6e00) 11:49:24 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a, 0x0, 0x0, 0x0, 0x0) 11:49:24 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x201, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0xff) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r3 = dup(r0) ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0x1) 11:49:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x68, 0x0, 0x0, 0x0, 0x0) 11:49:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7000000, 0x0, 0x0, 0x0, 0x0) [ 455.520361][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 455.526305][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 455.600323][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 455.606150][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 455.652097][T16201] Unknown ioctl 19465 [ 455.659265][T16203] Unknown ioctl 19465 11:49:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6eff) 11:49:25 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x300, 0x0, 0x0, 0x0, 0x0) 11:49:25 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) read(r0, &(0x7f0000000000)=""/55, 0x37) write(r0, &(0x7f0000000080)="05e38989e2c8c3c580642723ef2c15bb1d", 0x11) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ashmem\x00', 0x1ffffe, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:25 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa000000, 0x0, 0x0, 0x0, 0x0) 11:49:25 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c, 0x0, 0x0, 0x0, 0x0) 11:49:27 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x500, 0x0, 0x0, 0x0, 0x0) 11:49:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7000) 11:49:27 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x74, 0x0, 0x0, 0x0, 0x0) 11:49:27 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0) 11:49:27 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x40000, 0x0) getsockopt$inet6_tcp_int(r1, 0x6, 0x0, &(0x7f0000000180), &(0x7f00000001c0)=0x4) write$binfmt_aout(r0, &(0x7f0000000480)={{0x1cf, 0x2, 0x100000001, 0x154, 0x6f, 0x9, 0x352, 0x10000}, "1e94156eface88e2b605c964f221002ce88dfe33385e4d5b855b6d78b16e65e6a4dcaadebec8a0a0b65df75aabf023a3845c2692e8f6ae51514a0603903bfc0d2217780c9515a80db71f3291c056890113ec7cb8e167778d3c4f6e1271ef848ba21b4b0aecedba2e9f9ba6ce55b3b100696e34a874cf02d6a4292a7766670c1415cd858344036b2c368b8fcf6fabe9ad6b9a14f8e7a24c24e072697b63e8770d281b595d3e88d418446dda17536e87908accbee6a23ea2adc67b5afd830a43dc95d7ece367464a638ca8c34b74f4572a259c", [[], [], [], [], [], [], []]}, 0x7f2) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x28000, 0x0) perf_event_open(&(0x7f00000000c0)={0x6, 0x224, 0x88f0, 0x3, 0x6, 0x2, 0x0, 0x54, 0x9000, 0x0, 0x6, 0x2, 0x723, 0x3f, 0x6, 0x7, 0x7fffffff, 0x3f, 0x8, 0x7f, 0x53, 0x1, 0x6, 0x4d3a, 0x97b2, 0xffffffffffffff19, 0x1, 0x2, 0x9, 0x1, 0x2, 0x6, 0x7, 0x1, 0xfffffffffffffffd, 0x1, 0x80, 0x4, 0x0, 0x1000, 0x4, @perf_bp={&(0x7f0000000080)}, 0x20000, 0x7, 0x43, 0x7, 0x3f, 0x5, 0x1007f}, 0x0, 0xf, 0xffffffffffffff9c, 0x1) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000002c0)=0x0, &(0x7f0000000300), &(0x7f0000000340)) connect$inet(r1, &(0x7f0000000c80)={0x2, 0x2000000000004e23, @multicast2}, 0xfffffffffffffd15) write$P9_RGETATTR(r1, &(0x7f0000000380)={0xa0, 0x19, 0x2, {0x10, {0x40, 0x3, 0x6}, 0x9, r3, r4, 0x1, 0x2, 0x200000, 0x80000000, 0x4, 0x97, 0xff, 0x0, 0x6000, 0x7fff, 0x200, 0x8000, 0xfff, 0x9, 0x8}}, 0xa0) 11:49:27 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001f40)='/dev/hwrng\x00', 0x2, 0x0) r2 = socket$pppoe(0x18, 0x1, 0x0) r3 = socket$xdp(0x2c, 0x3, 0x0) r4 = inotify_init1(0x80800) r5 = socket$packet(0x11, 0x3, 0x300) r6 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000001f80)='/dev/video37\x00', 0x2, 0x0) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000001fc0)='/dev/full\x00', 0x20c0, 0x0) r8 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) r9 = getpgid(0x0) r10 = geteuid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000022c0)={0x0, 0x0, 0x0}, &(0x7f0000002300)=0xc) r12 = inotify_init() r13 = socket$vsock_stream(0x28, 0x1, 0x0) r14 = getpid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000002340)={{{@in6=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@empty}}, &(0x7f0000002440)=0xe8) getresgid(&(0x7f0000002480), &(0x7f00000024c0), &(0x7f0000002500)=0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000002540)=0x0) fstat(0xffffffffffffffff, &(0x7f0000002580)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000002600)='./file0\x00', &(0x7f0000002640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r20 = socket$bt_rfcomm(0x1f, 0x3, 0x3) r21 = accept4$vsock_stream(0xffffffffffffff9c, &(0x7f00000026c0)={0x28, 0x0, 0x0, @hyper}, 0x10, 0x80000) r22 = accept4$rose(0xffffffffffffff9c, &(0x7f0000002700)=@short={0xb, @remote, @default}, &(0x7f0000002740)=0x1c, 0x80000) r23 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000002780)='/dev/dlm-control\x00', 0x280, 0x0) r24 = getpid() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000002980)={{{@in6=@dev, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@remote}}, &(0x7f0000002a80)=0xe8) r26 = getegid() ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000002dc0)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000002e00)={{{@in=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@remote}}, &(0x7f0000002f00)=0xe8) getgroups(0x1, &(0x7f0000002f40)=[0xffffffffffffffff]) r30 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002f80)='pids.current\x00', 0x0, 0x0) r31 = syz_open_dev$vbi(&(0x7f0000002fc0)='/dev/vbi#\x00', 0x2, 0x2) r32 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) r33 = bpf$PROG_LOAD(0x5, &(0x7f0000003100)={0xd, 0x9, &(0x7f0000003000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x80000000}, [@jmp={0x5, 0xc2a9, 0x5, 0x1, 0x2, 0xfffffffffffffffe, 0xffffffffffffffff}, @ldst={0x2, 0x1, 0x6, 0x6, 0x2, 0x0, 0xc}, @generic={0x7, 0x8001, 0x5e, 0x100, 0x9}, @call={0x85, 0x0, 0x0, 0x17}, @generic={0xfffffffffffffff9, 0x40, 0x4c, 0x1, 0x1}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000003080)='syzkaller\x00', 0x80000001, 0x19, &(0x7f00000030c0)=""/25, 0x41100, 0x1, [], 0x0, 0xb}, 0x48) r34 = socket$rxrpc(0x21, 0x2, 0x2) r35 = eventfd(0x9) r36 = syz_open_dev$vcsa(&(0x7f0000003180)='/dev/vcsa#\x00', 0x100000000, 0x18ef9418e0897c75) r37 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f00000031c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0) r38 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000003200)='/dev/ubi_ctrl\x00', 0x204080, 0x0) r39 = gettid() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000003240)={{{@in6=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000003340)=0xe8) getresgid(&(0x7f0000003380), &(0x7f00000033c0), &(0x7f0000003400)=0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000003440)={0x3, 0xffffffffffffffff, 0x1}) r43 = syz_open_dev$ndb(&(0x7f0000003480)='/dev/nbd#\x00', 0x0, 0x4040) r44 = socket$isdn_base(0x22, 0x3, 0x0) r45 = accept4$ax25(0xffffffffffffff9c, &(0x7f00000034c0)={{0x3, @rose}, [@bcast, @netrom, @remote, @remote, @default, @netrom, @default, @bcast]}, &(0x7f0000003540)=0x48, 0x800) r46 = accept4$unix(0xffffffffffffff9c, &(0x7f0000003580), &(0x7f0000003600)=0x6e, 0x800) r47 = epoll_create1(0x80000) r48 = syz_open_dev$sndctrl(&(0x7f0000003640)='/dev/snd/controlC#\x00', 0xa4b8, 0x105001) r49 = openat(0xffffffffffffffff, &(0x7f0000003680)='./file0\x00', 0x40000, 0x0) r50 = socket$inet_udplite(0x2, 0x2, 0x88) r51 = dup(0xffffffffffffff9c) r52 = syz_open_dev$sndpcmc(&(0x7f00000036c0)='/dev/snd/pcmC#D#c\x00', 0x48, 0x4000) r53 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000003700)='/dev/dlm_plock\x00', 0x0, 0x0) r54 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000003740)='/dev/ptmx\x00', 0x1, 0x0) r55 = socket$packet(0x11, 0x0, 0x300) r56 = openat$cgroup_procs(0xffffffffffffff9c, &(0x7f0000003780)='cgroup.procs\x00', 0x2, 0x0) r57 = syz_open_dev$sg(&(0x7f0000004f00)='/dev/sg#\x00', 0x5, 0x0) r58 = fcntl$getown(0xffffffffffffff9c, 0x9) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004f40)={0x0, 0x0}, &(0x7f0000004f80)=0xc) fstat(0xffffffffffffffff, &(0x7f0000004fc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r61 = getpid() r62 = geteuid() r63 = getegid() r64 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000005040)='/dev/snapshot\x00', 0x456200, 0x0) r65 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000057c0)='/dev/video2\x00', 0x2, 0x0) r66 = openat$rtc(0xffffffffffffff9c, &(0x7f00000050c0)='/dev/rtc0\x00', 0x0, 0x0) r67 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000005100), 0x800) r68 = mq_open(&(0x7f0000005140)='systemkeyring{lo(mime_typemime_type3em1(-em1lo&\x00', 0x80, 0x100, &(0x7f0000005180)={0x800, 0x4, 0x8b, 0x0, 0x2, 0x4, 0x6, 0x4}) r69 = socket$nl_xfrm(0x10, 0x3, 0x6) r70 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) r71 = getpgid(0xffffffffffffffff) r72 = getuid() getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000051c0)={0x0, 0x0, 0x0}, &(0x7f0000005200)=0xc) r74 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000005240)='cgroup.subtree_control\x00', 0x2, 0x0) r75 = gettid() getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000005280)={{{@in6=@ipv4={[], [], @multicast1}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@mcast1}}, &(0x7f0000005380)=0xe8) stat(&(0x7f00000053c0)='./file0\x00', &(0x7f0000005400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r78 = syz_open_dev$mice(&(0x7f0000005480)='/dev/input/mice\x00', 0x0, 0x40) r79 = syz_open_dev$vcsa(&(0x7f00000054c0)='/dev/vcsa#\x00', 0x70c, 0x105042) sendmmsg$unix(r0, &(0x7f0000005600)=[{&(0x7f0000000380)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001500)=[{&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="66a096eb58958ee927c8ce9e70d34e9862a3afdfd5d9a6751c9c7d280cd652ec79a061be8bc051ffcbef0ab86d0ad6d04eb47d48d82ccfdaa98024734421fa72a7daeffcdf74d7c763799d3dbd0b0fdcae28c9638d16f22b1821a36d868a27b3524513df2c262c1cd4c94d8c4083fa815084b076fd44d713727618378d6dbbe22eabc35c151133578a3f3c914a3997fee0c38726cfc51dcfdcbfe66e0979b7983e56cd5046d2a8647d7bfd1a70cb395d9ba3aff81b1c98108ef08c269fbf51a46f5fc2658dd8880dd3", 0xc9}], 0x2, 0x0, 0x0, 0x94}, {&(0x7f0000001540)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001d40)=[{&(0x7f00000015c0)="c3f8878c6d108f43f8480f90fcf7573fbfa092087dc5d6202c4e11d8ff47fb189afa442d492bd75a43076fe67d8dc8fa01fde2eee9460369cd73c186b04a11b27dd171e5dacfb924c57e91597394e0627a26810bfe1e1f8313a6edc73f414b53d5bdfef29483c77a1590c94d381aa30ac12d2631317ec9b0b503fabed4ab2901aa1122a25a6d0eb94af4fbefe26ec1a0e69941d101523cf26e2174bc27d15eca986949ddc612edf2f4064ba5cdc9297b221f190390aadc7da22bacf2e49ed53b61d4945f71927569cb90b4549edd20bdfa8499", 0xd3}, {&(0x7f00000016c0)="7c6de57da75a41fc10312cb948ee20bbc07f84c190225a9d7cc8cc16b5c9eaf3c36aa614d90df6b5b7dea05ec371d87087162471e8bb0d8cdb45208f3708fa81374178dd5a64a7f63331ffc1a95b240afe769fbbbe6c310f9592ae3128a95ea6c8e5d42ca955bbd5eb0e92094197a93724461e477bccba9f3f43fb886120d0c21ef6e0408c05940ba244a87b3edf01846019ebfbf77c805146589f", 0x9b}, {&(0x7f0000001780)="a113854912e55930edcf05fba04f164df9001c3983049b5c61848afeda51873f3ed8961b8f9de07490442c4c6137990dc10b0baafd44f2c371a51936f76843f25dea853213ef78f37fbcc508f0fae77c7c2de89989b1085b1bae0162515400ac8114fffbf4f3440799b1bc4ce427a16eda2627bdf1dffff7dff2730d7504ccbb6539f24eec3fa3bfce1ef991d9006d400926850ea43e13b9d17edb86a3be2e9f31bede9090db0a2612dadc2118c8f4b584f89ca80db23af60756ef4f4e97d1374bb1309d36f05f2eccf474236a373efbf2801c4eeb7cb4c0384582ee519b4323964ff5267319d7e015ba72023c8215ce306005173ef0", 0xf6}, {&(0x7f0000001880)="ec4b61e53b83bba4d8a58d67fdd3f6c37b69e053e373aa21796dc85081ccd7beb6c906f8833e0094fc69e9ac448a4ba6733608d04b36610ef8fd5b9921f7540971a6a773e342972be18e1e50ea0b3205bcf8eef3f55bd77625649bc3dd3cb10d22c78735162b18fa46de9d9c8370dc0645afac7473f65a1a90ce4af0efe326755b52a2e526f8a2c0161896de669c27c83dbd0c76bee192ce522be75537e47088f79a1cb1f304fdeae5a428395030f857a6b93d5b381e9f32a628aa21442fa8043398d7a6b1d9cd5000668125b40d7cf317871b089785f2f30c30b45ec713bacb48bc4139200028efb6ebc362c58aab75ef23224d140c1b931e6619985b", 0xfd}, {&(0x7f0000001980)="f0009391748b105068a17ef49954787f311e4a238e97a8c5a34f454826690506590e18117b8cd250ea5e42f5fad787aca9c45c103a1ae738b9438831281144ebe5b73290316b06232defdd9c26268b60abb54f22b1c3441c8cfa791a48678c834b15983454ebfcebfb6e76801d", 0x6d}, {&(0x7f0000001a00)="121e67d64c642518177f62a237dfd260914389fdfbb23533b0ab5de7d164746aa2a8b4da7e33baadcbc116dad1290dcce274b474bab13f7d54853ed6cd2b642d4d008a16986f812bd27e2dd941ac4ca659090b915be49fb431a21c9e654bc95ac07f7cfe471fb3f478bd586125acec6f6625fc1fd553ea2be55b1df40286e1d8", 0x80}, {&(0x7f0000001a80)="42a760094f75c48f01767f5b295176c7e07bb43dda72aef6f4a282e8bf4912195b85290f08ec10ae312f8f5ccf6f806ce2f4c6e259f5408536a85436f97b7c794f50777f536d384abea9ba10cd2f9816f8535db1372de0b6a1080926ff5ee8f3b4a6009c6628442ece6db02478ac0d9b8ba56d681cc2196277ee3e2b08ed2c687ba8ff0d7558c4bff84df4cbe04a1917ea154df92181", 0x96}, {&(0x7f0000001b40)="2d838545979914d5345cc12e300c457edf256de511491c981c165f9b3cea1101e6032ecac5d168a9cf922764e1f0481b137e3887f4d536a141b06ac70a701bb04a1eb39155057d7f88b6ff2f827c920c818bc125ac6365a2f7eae0ca0c0e9cbefd4c752a2c729cbb0068213d56cdb055d9730ed973e08b8946a54beef39dfee0326ed701e28fd100fe1be6e4031cd03b244b861b5721b8cb35537a0f6f6e36633eab8374568a88", 0xa7}, {&(0x7f0000001c00)="b9ef89aa9f4c4962207eb6bdb69a507967363f319b1048552ffff151e52a046ff1cf9d46781277ed761700f17a683fb6500508a739c722e6305596f7302a224d330b6b076289e0f3458417063ee4087a50f8d49bb9b9d0d5a175a5a72a5105fd85b2650a3354b8726f6bfdc92a45413a7fef1d0da86ba56a86199b606bce5b6033eb96b604596872867adf5d06bd95cc7d23d3587065293eff4ba55cab830666c882476c1353901c7f45d5df037831bde9afdae0646370f5f663ce613ee4d6b298ac8b23e96de70a18589fe0e7566c3fe576c395a47e803da05cdafdf723f9c7d01e6d2077408d", 0xe7}, {&(0x7f0000001d00)="0bee202de59ecf188620ba3587eea5479ad32000ebe847f3cdc7cf5b0f2b1ae99953aa5d5652129f4aa79ea2d32b3ae5", 0x30}], 0xa, 0x0, 0x0, 0x40004}, {&(0x7f0000001e00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001f00)=[{&(0x7f0000001e80)="49647e943b1b955facc0291a4d00914fbf3d16b6d868577fb59fd603d925f005a7294cf13e0ade17edc00190558f5b88cebe311f596373e0a2d00ebb9f7dafb634b3", 0x42}], 0x1, &(0x7f0000002000)=[@rights={0x30, 0x1, 0x1, [r1, r2, r3, r4, r5, r6, r7, r8]}], 0x30, 0x8000}, {&(0x7f0000002040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002280)=[{&(0x7f00000020c0)="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", 0xfa}, {&(0x7f00000021c0)="2ff57254e30927648b", 0x9}, {&(0x7f0000002200)="f7766818b854bb2d21e48b9bf78c42f8", 0x10}, {&(0x7f0000002240)="2fc4208266b7771fd771daf6fc0469f1dd93a4a09ce6d647a2dc61ddde86e64839019f66cd93a732f87c9c32b7ace2b3e9e44cca82783f77ebd86d", 0x3b}], 0x4, &(0x7f00000027c0)=[@cred={0x20, 0x1, 0x2, r9, r10, r11}, @rights={0x18, 0x1, 0x1, [r12, r13]}, @cred={0x20, 0x1, 0x2, r14, r15, r16}, @cred={0x20, 0x1, 0x2, r17, r18, r19}, @rights={0x20, 0x1, 0x1, [r20, r21, r22, r23]}], 0x98, 0x4008840}, {&(0x7f0000002880)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000002940)=[{&(0x7f0000002900)="d5505fda75d313fc1755037aa6ce91431fad542a", 0x14}], 0x1, &(0x7f0000002ac0)=[@cred={0x20, 0x1, 0x2, r24, r25, r26}], 0x20, 0x4000}, {&(0x7f0000002b00)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002d80)=[{&(0x7f0000002b80)="d0fd71d69252e74fc7923c057a0dbf59cdac44df8218570fdc9bbb4984ad9f07fcb2f974108f72555fafc97635794a70f04af6dc329caef53faeb2997ef6fecd39bcda59829d9e71c6997745a0645e0f154d19cc9c1eef01967b4950af977620c26f7f82d5", 0x65}, {&(0x7f0000002c00)="3ad4eaa3f2b955a9d3c6c2176d488d1ab28c895f24eb99369e0787d18a0e83855237968ddffdd97502728f22f76c748047793eeb4471be155483458bfc08376c0617c4df5fbb771cd14e767d4a2805ba9a646cbe63e1caee6d6733f95f88c4025138241cfaa297d4a3a91d610cb7bc4c85680276f2ee0b6d770e638963e721208e61c7746e3950e61f27f6078e5fdbae42569028c63ad936f935845dba56173b22132694faf99fd66f00f2e32a765b0fb45297ea157284", 0xb7}, {&(0x7f0000002cc0)="01ff0da3fde3aad428fd411561db37c1d27cdac806912cd089bf723ae33c4d84ee96791972f5971c10907704dd47073b5c41261645d06a4236aafd4d4611f9fa9ae34f145d66ed6ee821118c8d9e634dec6a2ec47886c8b3509f5831990066db94d0ead3ff6a0becc96ff3bb9ce96713a6561d67bbf0c1d68fe5994312b077e442fbbdf699", 0x85}], 0x3, &(0x7f00000037c0)=[@cred={0x20, 0x1, 0x2, r27, r28, r29}, @rights={0x18, 0x1, 0x1, [r30]}, @rights={0x20, 0x1, 0x1, [r31, r32, r33, r34]}, @rights={0x18, 0x1, 0x1, [r35]}, @rights={0x20, 0x1, 0x1, [r36, r37, r38]}, @cred={0x20, 0x1, 0x2, r39, r40, r41}, @rights={0x28, 0x1, 0x1, [r42, r43, r44, r45, r46, r47]}, @rights={0x20, 0x1, 0x1, [r48, r49, r50]}, @rights={0x28, 0x1, 0x1, [r51, r52, r53, r54, r55, r56]}], 0x120, 0xc040}, {&(0x7f0000003900)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004e80)=[{&(0x7f0000003980)="fff37712e59ece6852dfa6308c0e7bd3c27b78bac6363469914ccbdb5258c22ce8b6be45108136d7cc03397927e9c621b11fe4a3abb5f2b4a01eb77c7ba8d86b528131855fe939346120f106db49ed912ba2c8d6479e3c9866655227c20b36a45fe46ae6f2409998fc02aa40c4e3ee152eb69c40", 0x74}, {&(0x7f0000003a00)="0725c43674c3e52d7f52632ed0e96eea96ceca391038fea056b4d90355ad59ff51f5dfd67f4b0133471c2a222e40f27d2447f64807b5a332809a6685f7d8bb0b48c8d75061792223fd5363f29e2f4959600eb7b6", 0x54}, {&(0x7f0000003a80)="13da76168bd42507727362a6d18d7be08eba1bb52f11340745182554640654dcf5ccb192639ddfda2ab21f6ab5f17d0823f116a0a746efea0d729ad524a4c789fbb670a617b2148e563b3703733081e9d078cc629550f05860ba8234ee5426ae108999817ffd5fce077e3ebe8c0f1f6955ef156cf9672de4d023fe9871e07b0c59b785fe7a616ba52a8c4df249b29544dda4905fa04bba10d657ca4250cf551e0919633beafe535a19e1368cc17f5f8f77a63de1", 0xb4}, {&(0x7f0000003b40)="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", 0x1000}, {&(0x7f0000004b40)="38aef2658e12217a3f6b72757d463fe0897d08d50d1b1b9a10953f74c86f346e2c563f2895e134c060e71111dfe48e2f4a8981e5270f869dc2e169362657fa8d48d293fe992bd5b64490ab63d4beb99f6caf12e96e290f74e7f089a936e854625e063e199be4dbaaa6a982dad3b9b4d46f19bd9f7daa3968ea9516bfbf2be32dc6c86e307ce211d8a9388945631238dcb180", 0x92}, {&(0x7f0000004c00)="618d838335adbe73c7214499967c91c470a1e3d65e62f519e6bdc3f468d869c98db1023badea987e63a947a46aaa9858f06b680f26cf88294c6fdc00c5ad6db597d5430a36ab2fe430ce4eb87d53523fed171ae081f0f5a76897bc2741dcf764a44027665fcd7b03459c25942b00e135d2228f8f9d799b80959168df4ade353c71d40ab9ce8714b1aa737cc5ca9d393f2fb0489b2e45e2a32648814e3005b31b945f14c3b807e50bda7fd458a9cff511fb730a8f563d2e6810b15591930235a081c488bd119c75371609614be8877165a7c0bce4b1", 0xd5}, {&(0x7f0000004d00)="3e1f620b136dba662cff7888d481bbe799de265e28b2f7a4a6e516ec199c01a3ae82c8348a8a360fbc2e61587ae506930bd66ebba167604570c866ead6f08b3c199d4d352052c11809ee4074deecfbdc1eb57bfbb2f93bada4d5daba55099fd8b1587d41", 0x64}, {&(0x7f0000004d80)="5a0a9bb82be3e056524cfa8c66a771a09d9e04c9a1c3061893a190a4eb8719be8a7515be8473b0a3f4e91ae97b1681a97f723d1951d9e371c287da9e790539a53f62f69fad2e1c64d3524d48a2520c6090a210a2e934f6dd8cd3faf7b19d608053ff529c37713fdd290a94b86d880550fa09204cb4de31c8fadc7eb934adc9bd599bec6d40741b8dc8f3a3e90483f89047c2fb03f32f871abc76f793df54bd958c8142d151242688ee99ac4cb94a3b039b9bec605f99e6619f75c828afdf0dda062a44a8f8564fc2599d3bca9bc8892462e47273f104deb9c54cab431dce8bd68a55e5af56737f2773917bfc54", 0xed}], 0x8, &(0x7f0000005500)=[@rights={0x18, 0x1, 0x1, [r57]}, @cred={0x20, 0x1, 0x2, r58, r59, r60}, @cred={0x20, 0x1, 0x2, r61, r62, r63}, @rights={0x30, 0x1, 0x1, [r64, r65, r66, r67, r68, r69, r70]}, @cred={0x20, 0x1, 0x2, r71, r72, r73}, @rights={0x18, 0x1, 0x1, [r74]}, @cred={0x20, 0x1, 0x2, r75, r76, r77}, @rights={0x18, 0x1, 0x1, [r78, r79]}], 0xf8, 0x11}], 0x7, 0x4000000) r80 = gettid() r81 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000280)={0x0, 0x82, "9694d293db9c2c79e537bde79acd798f4060bfeb75d1ee9a52eb19b1ac79dc546d9bb1f1110b245ab5d0b1eca96cd522ab3bd298820bc2e1c825d54c3694961dcbc21c37e7bfeeaa44a65f2f837049771ae936b1b8e359908ecd515f8b313cfcf8d1852fe696e65ed7b7885315ae7f5184396c5527857f75d35bde14d496f09d931d"}, &(0x7f0000000100)=0x8a) openat$full(0xffffffffffffff9c, &(0x7f0000000340)='/dev/full\x00', 0x20000, 0x0) setsockopt$inet_sctp_SCTP_RTOINFO(r81, 0x84, 0x0, &(0x7f0000000180)={r82, 0x5, 0x2, 0x1000}, 0x10) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r80, 0x0, 0x0) tkill(r80, 0x2d) sched_getaffinity(r80, 0x8, &(0x7f0000000000)) write$P9_RREAD(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595a4c6f808dc7f43363f365d72674dc2ef2c3b8b3560e93e7d68cd68cb55ea06ef55466fc6adafb40f47212b7d35b5a71fa1d337c747ca86f2c5b51eb283dccf5dc1e92ecb5e5fef7374f8339fc22df7e0796e8f355ec7c4dac2ab185ce7dce9a110cf9f750db976"], 0x39) prctl$PR_GET_NAME(0x10, &(0x7f0000000040)=""/149) ptrace$cont(0x18, r80, 0x0, 0x0) ptrace$setregs(0xd, r80, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r80, 0x0, 0x0) 11:49:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r1, 0xfffffffffffffffd) syncfs(r1) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0xa00, 0x0) epoll_wait(r2, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0xa, 0x3) 11:49:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20100000, 0x0, 0x0, 0x0, 0x0) 11:49:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7200) 11:49:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x10020014, r1, 0x4) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a, 0x0, 0x0, 0x0, 0x0) 11:49:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x600, 0x0, 0x0, 0x0, 0x0) 11:49:28 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0xf0c, &(0x7f0000000000)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={0x0, 0x3ff}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000100)={r3, 0x6, 0x400, 0xfff, 0x6, 0xfffffffffffffff8}, 0x14) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:28 executing program 1: r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) 11:49:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7400) 11:49:28 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x300, 0x0, 0x0, 0x0, 0x0) 11:49:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x78, 0x503900) ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000080)={0x7ff, 0x1, 0x1517}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:28 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f000000, 0x0, 0x0, 0x0, 0x0) [ 459.200315][ C1] net_ratelimit: 18 callbacks suppressed [ 459.200323][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 459.211840][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:28 executing program 1: clone(0x400000b102041ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000040)=0x2, 0x88, 0x1, 0x0, 0x0, 0x0) r1 = gettid() ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d010000800018000000000045eca12a605da3058c3700000000000000000000000000"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x8) r2 = syz_open_dev$swradio(&(0x7f0000000340)='/dev/swradio#\x00', 0x0, 0x2) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0xb0, r3, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffffffff9ae}]}, @TIPC_NLA_SOCK={0x28, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8000}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NODE={0x38, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x67}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1f}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x30, 0x5, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff00000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}]}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4010}, 0x800) r4 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x6107, 0x1) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000180)={0x0, 0x7}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f0000000200)={r5, @in={{0x2, 0xb2, @rand_addr=0x5}}, [0x30, 0x1, 0x2, 0x3, 0x7, 0x4, 0x5, 0x3f, 0x9, 0x7, 0x8001, 0x6, 0x5, 0x3, 0x6df3]}, &(0x7f0000000300)=0x100) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000080)={0xfffffffffffff1b7, 0x0, 0x10001, 0x1}) ioctl$DRM_IOCTL_AGP_UNBIND(r4, 0x40106437, &(0x7f00000000c0)={r6}) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000640)={r5, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x16}}}, 0x4, 0x5, 0x6, 0xfff, 0x10}, &(0x7f0000000700)=0x98) getsockopt$inet_sctp_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000000740)={r7, 0xfffffffffffffffe, 0x5, 0x7f, 0x20002000000000, 0x3, 0x5, 0x4, {r5, @in={{0x2, 0x4e22, @multicast2}}, 0x1f, 0x100, 0x2, 0x8, 0x400}}, &(0x7f0000000800)=0xb0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$setregs(0xd, r1, 0x3, &(0x7f0000000540)="1caf1eea0ab17e11c99d84510e133c394e67578195392830492482b8383d837aec9b1c05f7749a633bb0b14ca3dc217586276d017ef4b2b23041f46437dd450b74f7471f032c3aac296bc572ed75b5f3c5f511f7199bdbd366c603ca3489169f82db053d23484be7de8c2dfa53c6beea1a503ca3554908d1681d5263421e6d41c53374512c8c25de7d06bbe318e23dec5b6e25239407208fde7bc804140a50436c61cf0ec34bdd1129233634ba19cc7d8bef218d1a2a40cecdec1f493b99702c04f5ee4128b3443c97f9be3d882ea35662a0533e8cc0f266d4dd86629d7c5fab6a91c7") bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={0x0, r4, 0x8, 0x2}, 0x14) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:28 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x700, 0x0, 0x0, 0x0, 0x0) 11:49:28 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x3ff, &(0x7f0000000180)="023f0ba0e2ba") truncate(&(0x7f0000000080)='./file0\x00', 0x2) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 459.406999][T16353] __ntfs_error: 44 callbacks suppressed [ 459.407012][T16353] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 459.414844][T16358] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:29 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x402000, 0x0) ioctl$TCSBRK(r1, 0x5409, 0x4) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x5, 0x9) 11:49:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7600) [ 459.506369][T16353] ntfs: (device loop4): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 459.507708][T16367] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) socketpair(0x5, 0x3, 0x8000, &(0x7f00000000c0)={0xffffffffffffffff}) getsockopt$inet_dccp_int(r2, 0x21, 0x1f, &(0x7f0000000100), &(0x7f0000000280)=0x4) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x101000, 0x0) write$UHID_SET_REPORT_REPLY(r3, &(0x7f0000000180)=ANY=[], 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$sock_inet_sctp_SIOCINQ(r3, 0x541b, &(0x7f0000000080)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 459.580827][T16353] ntfs: (device loop4): ntfs_fill_super(): Not an NTFS volume. [ 459.595983][T16358] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 459.610665][T16367] ntfs: (device loop0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 459.626819][T16358] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 459.635034][T16367] ntfs: (device loop0): ntfs_fill_super(): Not an NTFS volume. [ 459.680315][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 459.686154][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:29 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x440, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r1, 0x40087705, &(0x7f0000000040)={0x10001, 0x2b}) ioctl$VIDIOC_G_FBUF(r1, 0x8030560a, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000080)="b1f9363a40856bbd878c5f18ff4c3fb28c1c3c9024ad64464b6386", {0x400, 0x100000001, 0x3231564e, 0x3, 0x2, 0x0, 0xb, 0x7f}}) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) open_by_handle_at(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="a600000000000000160a349c6e19ecce2021e96e043325641e5a1fffbad70c2d94422473dc4a95eadd2690d5f3ed4f638d0ffcc4c3c3864de6fb415c556e3ed7b980657d35c262573f6c6411a7c8db8e881bf6165562417db1862c7817704ffc68599d702a0c04feed63ddbd5cde94f1e4f306907718f19188003cb7c0faff6bdede51a0761a3431a55fb09b0d0c2047fb7405ecc0661d0d975c6a53a19782d474631dc8b6d0da619687da"], 0x10000) r2 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x5, 0x80) write$UHID_CREATE(r2, &(0x7f0000000300)={0x0, 'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000180)=""/126, 0x7e, 0x6, 0x6, 0x4, 0x1f, 0x8}, 0x120) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x4000, 0x0) setsockopt$TIPC_CONN_TIMEOUT(r3, 0x10f, 0x82, &(0x7f0000000080), 0x4) [ 459.760367][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 459.766273][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 459.772130][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 459.777901][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 459.819700][T16353] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:29 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x40000000, 0x0, 0x0, 0x0, 0x0) 11:49:29 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x500, 0x0, 0x0, 0x0, 0x0) 11:49:29 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa00, 0x0, 0x0, 0x0, 0x0) 11:49:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7800) 11:49:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x40) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0xe}) ioctl$EVIOCGSND(r2, 0x8040451a, &(0x7f00000000c0)=""/71) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cachefiles\x00', 0x420200, 0x0) 11:49:29 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x200000, 0x0) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) fcntl$setpipe(r1, 0x407, 0x51ee) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7a00) 11:49:29 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000100)={0x7, 0x7f, 0xffffffff, 0x11d0, 0x3}) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r2 = dup3(r1, r0, 0x80000) write$vnet(r2, &(0x7f0000000080)={0x1, {&(0x7f0000000180)=""/241, 0xf1, &(0x7f0000000000)=""/13, 0x3, 0x7}}, 0x68) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:29 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x48000000, 0x0, 0x0, 0x0, 0x0) 11:49:29 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000000)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 460.400331][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 460.406169][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7c00) 11:49:30 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe00, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000300)="0adc1fa66733718333baf0") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$TIOCLINUX7(r0, 0x541c, &(0x7f0000000080)={0x7, 0x8868}) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x0, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ashmem\x00', 0x1, 0x0) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x440000000002011, r1, 0x1000000) write(r0, &(0x7f0000000400)="54f42b2df35cb64ad8bcc5cb2d2050f457a747bdb2298df5b1b56a1318bda871ae9441642afc694569c661276ccf9fbb2063436c060e981f91f615c966d7d4835b4a99798da35c23cf5ba5f778d32b6bb73f5436b3afe85cb4509082b3741c6d3c90bb31394c4732f3615fd6a2729ab836068869b8c70376ed671352c492781bb99e7d20303a7eddea8e5af422d8e019e19e4840", 0x94) sendto$unix(r2, &(0x7f0000000180)="ccd06bff72a2f04c19bcf5451be6467efc3d2ab3ca447efb1412086b8f170e79b27c4fa300598e77d9d31649a1175595dd50ff9a38dc124fa72338b4c42ab25f265dc266993ffa2046c96246ed7d2221e31947d07a0cfd118294210c0b31f2d5a095372000b86abdda3ec55c6a6127e57e2471634927f61074c243e331d83156a735ef8bffd9276dc6075057ce012c6865e8585c8c947fb72671272237a9c4800ab2c663339338f70e8d6bef3ceaf8ab437a141f6d6a51cea1bedaa667f74a4c075f4a0b95f35448", 0xc8, 0x8000, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e) 11:49:30 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x600, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c000000, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7e00) 11:49:30 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x84000, 0x1) ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0x6cd) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) timer_create(0x7, &(0x7f0000000180)={0x0, 0x34, 0x2, @tid=r0}, &(0x7f00000001c0)) ptrace$cont(0x7, r0, 0x0, 0x0) socket$kcm(0x29, 0x7, 0x0) r2 = syz_open_procfs(r0, &(0x7f00000000c0)='net/tcp\x00') perf_event_open(&(0x7f0000000040)={0x4, 0x70, 0xffffffffffffffff, 0x100000001, 0x653, 0x4, 0x0, 0x8, 0x0, 0x1, 0x2, 0x5, 0x4, 0xc0, 0x1, 0x3f, 0x8000000000, 0x1ff, 0x7, 0x8, 0x100000000, 0x5, 0x0, 0x1, 0x81, 0x2, 0xbdb8, 0x5, 0x6, 0xff, 0xef, 0x5, 0x400, 0x14000000, 0x0, 0x3, 0x6, 0x7ff, 0x0, 0x80000000, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x100, 0x20, 0x9, 0x7, 0x5, 0x8000, 0x2}, r0, 0xb, r2, 0x8) 11:49:30 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xf18, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) getsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0xfffe, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:30 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x700, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x60000000, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0adc1f123c123f3188b070dc7ebd5806559e8b6932865223227520f74cc58045d46d40dc09b9ccc26b77494cd275b00edfd7cd6e7a3540dfa13379dbf4fe08c552685955f3e60b62971e8aa2a992d655402f0c5b013bfec2e577024f422e9de031e48631ee9f2fb2078178b42d1f500224a4c1352a32") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ashmem\x00', 0x200000, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e21, @local}}, [0x675, 0x3, 0x1, 0x8, 0x8, 0x4, 0x44c1, 0xa60, 0x100000000, 0xf3, 0x5, 0xffff, 0x7, 0xe1a, 0x5]}, &(0x7f00000000c0)=0x100) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000100)={r3, 0x31}, 0x8) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000300)=0x0) prctl$PR_GET_SECCOMP(0x15) sched_getattr(r4, &(0x7f0000000340), 0x30, 0x0) poll(&(0x7f0000000000), 0x0, 0x2) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000380)=0x3) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000140)={0x81}, 0x1) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x40000004, 0x440000000002011, r1, 0x0) 11:49:30 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) lsetxattr$trusted_overlay_nlink(&(0x7f00000001c0)='.\x00', &(0x7f0000000200)='trusted.overlay.nlink\x00', &(0x7f0000000240)={'U+'}, 0x28, 0x3) ptrace$getregs(0xe, r0, 0x3ff, &(0x7f00000000c0)=""/34) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37ad080000002a42c21e9ffbfa49c872559517781b42e32450ed30af7075a63d0cf85027912cdfd0522763c418e61b2f6ef15876b801898e543e5867f6a92c07b5b6cac6d95ac89dee2251966b157c77821eb4273588941963eabcc7"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000100)='/dev/midi#\x00', 0x2a, 0x0) write$P9_RREMOVE(r1, &(0x7f0000000180)={0x7, 0x7b, 0x1}, 0x7) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8200) 11:49:30 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1020, 0x0, 0x0, 0x0, 0x0) 11:49:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snapshot\x00', 0x501080, 0x0) epoll_pwait(r2, &(0x7f00000002c0)=[{}, {}], 0x2, 0xaa2, &(0x7f0000000300)={0x10000}, 0x8) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000000)={'IDLETIMER\x00'}, &(0x7f0000000080)=0xfffffffffffffe90) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) r3 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x9, 0x20000) write$P9_RRENAMEAT(r3, &(0x7f0000000240)={0x7, 0x4b, 0x2}, 0x7) remap_file_pages(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000000, 0x49, 0x100000) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f00000000c0)={0x90, 0x2a, &(0x7f0000000180)="5106bd534f6049f02e1a8eccab38d01c99ef19879c68bca5e1da2de927789bfd3e9331335ece972c35e4b15d2ff409e90d19761c46fe8a4c1f9ed44662ac2f9848c2731bafa8d8f8c4a7b79272412be253c5a1e12c4b84fe990343b6f1351aa2d9c8cd87f61e2d9f1c477e9d37911fa7c88d3a45e509060ad12e808d3331cb1d7fa8204baf2501355484e43023f6777a", {0x9, 0x200, 0x0, 0x7, 0xb6, 0x51, 0xb, 0x1}}) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:30 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa00, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84800) ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000180)=""/240) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x0, 0x0) 11:49:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x68000000, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20000, 0x0) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000240)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 'veth0_to_team\x00'}}) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r2 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c00007949246b75b924", @ANYRES16=r3, @ANYBLOB="00022dbd7000fedbdf2516000000180002000800020003000000040004000400040004000400"], 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) ptrace$cont(0x7, r1, 0x0, 0x0) 11:49:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) socketpair(0x0, 0x3, 0xec, &(0x7f0000000100)={0xffffffffffffffff}) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x30010, r1, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f00000001c0)={0x4, [0x7, 0x401, 0x3, 0x9]}, &(0x7f0000000200)=0xc) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x5, 0x80) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x100, 0x0) getsockopt$inet_tcp_int(r3, 0x6, 0x13, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 11:49:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x180f, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8400) 11:49:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe00, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c000000, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") socket$isdn(0x22, 0x3, 0x35) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x0, {0x2, 0x4e23, @remote}, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}, {0x2, 0x4e22, @broadcast}, 0x2, 0x0, 0x0, 0x0, 0x564, &(0x7f0000000080)='bridge_slave_1\x00', 0x400, 0xd16, 0x5}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(r1, 0x4008af23, &(0x7f0000000000)={0x3, 0x5}) socket$inet(0x2, 0x3, 0xfffffffffffffa18) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000005, 0x12031, r1, 0x0) 11:49:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8600) 11:49:31 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1f00, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xf18, 0x0, 0x0, 0x0, 0x0) 11:49:31 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x2, 0x8000) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r3, 0x800, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x50) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:31 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x74000000, 0x0, 0x0, 0x0, 0x0) [ 464.560334][ C1] net_ratelimit: 22 callbacks suppressed [ 464.560342][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 464.571798][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 464.577579][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 464.583397][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000, 0x0, 0x0, 0x0, 0x0) 11:49:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8800) 11:49:34 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1020, 0x0, 0x0, 0x0, 0x0) 11:49:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r2 = dup2(r1, r1) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) lookup_dcookie(0x6, &(0x7f0000000100), 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000080)="3e0f013d67070f01cfb802018ed0ba2000b83747ef360f0da80c000f07670f01df66b9360a00000f3266b8cd5400000f23c00f21f8663500000e000f23f8", 0x3e}], 0x1, 0x44, &(0x7f0000000100), 0x0) 11:49:34 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a000000, 0x0, 0x0, 0x0, 0x0) [ 464.789915][T16668] __ntfs_error: 95 callbacks suppressed [ 464.789926][T16668] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 464.805596][T16666] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 464.814860][T16668] ntfs: (device loop0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 464.828091][T16672] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="6334d9361a035a8c72700f991080fff6f4d718f14365564ae3f440ade7d805c9e63492836c8eb6f57b0a3f00256289f17d18682c0fa9710593d3c1a1fcaf34c034000000000000000000") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x20000, 0x0) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000080)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) ioctl$ASHMEM_PURGE_ALL_CACHES(r0, 0x770a, 0x0) [ 464.877510][T16672] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 464.892937][T16666] ntfs: (device loop4): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 464.923575][T16668] ntfs: (device loop0): ntfs_fill_super(): Not an NTFS volume. 11:49:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8a00) 11:49:34 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) fstatfs(r1, &(0x7f0000000180)=""/4096) [ 464.950437][T16672] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 464.967406][T16666] ntfs: (device loop4): ntfs_fill_super(): Not an NTFS volume. 11:49:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x408041, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=0x0) fcntl$setownex(r0, 0xf, &(0x7f00000000c0)={0x1, r2}) 11:49:34 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2010, 0x0, 0x0, 0x0, 0x0) [ 465.175554][T16666] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:34 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x8cffffff, 0x0, 0x0, 0x0, 0x0) 11:49:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = accept4(r0, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @empty}}}}, &(0x7f0000000000)=0x80, 0x800) setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f0000000100), 0x1) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:49:34 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x180f, 0x0, 0x0, 0x0, 0x0) 11:49:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8c00) 11:49:34 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c0018000000000000909eb3f61f0000a9d852536cd82e00ff73365d3f00000000000000592a42c21e9ffbfa4908005595"], 0x39) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x9, 0x41) write$P9_RWRITE(r1, &(0x7f0000000040)={0xb, 0x77, 0x2, 0x1}, 0xb) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000000)={'ip6gretap0\x00', 0x80000001}) r2 = socket(0x4, 0x5, 0x0) connect$bt_rfcomm(r2, &(0x7f0000000080)={0x1f, {0x7ff, 0x9, 0x6, 0x3, 0x638a, 0x3a7}, 0x8}, 0xa) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000000c0)) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) [ 465.440318][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 465.446180][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:35 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f00, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xc0ed0000, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'ip6erspan0\x00', 0x3}, 0x18) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x1) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:35 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1f00, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0xffffffffffffffff, r0, 0x400000000000000, 0x3) 11:49:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xe0fe) [ 465.920363][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 465.926183][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 466.000410][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 466.006281][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:35 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = syz_open_dev$ndb(&(0x7f0000004880)='/dev/nbd#\x00', 0x0, 0x600000) r2 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000004900), &(0x7f0000004980)=0x60, 0x80000) splice(r1, &(0x7f00000048c0), r2, &(0x7f00000049c0), 0x7fff, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup3(r0, r0, 0x80000) ioctl$SIOCAX25CTLCON(r1, 0x89e8, &(0x7f00000000c0)={@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0xe, 0x1, 0x7, [@default, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}) ioctl(r0, 0x9, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$int_out(r0, 0x5, &(0x7f0000000180)) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xe803) 11:49:35 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xf6ffffff, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000, 0x0, 0x0, 0x0, 0x0) 11:49:35 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) ioctl$SG_NEXT_CMD_LEN(r2, 0x2283, &(0x7f0000000080)=0x20) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0x2, 0x3, 0x7) getsockopt$sock_buf(r4, 0x1, 0x1e, &(0x7f0000e530e9)=""/16, &(0x7f00000001c0)=0x10) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:35 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x28) r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x3, 0x0) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000180)='fou\x00') sendmsg$FOU_CMD_DEL(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8012}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r2, 0x700, 0x70bd25, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}, @FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_TYPE={0x8, 0x4, 0x1}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e24}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cachefiles\x00', 0x101000, 0x0) write$P9_RREAD(r3, &(0x7f0000000180)=ANY=[], 0xfffffffffffffe22) ptrace$cont(0x18, r0, 0x0, 0x2418) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ioctl$KDSKBSENT(r3, 0x4b49, &(0x7f0000000040)="05c9040e03613facb49c80cee5244d373366b8e00f04a2356bd2d474c7") ptrace$cont(0x7, r0, 0x0, 0x0) sched_setparam(r0, &(0x7f00000000c0)=0x5) 11:49:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xff6e) 11:49:36 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4800, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2010, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xf9fdffff, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000000)={0x7, 0x103, 0x2, {0x9e48, 0x0, 0x53, 0x3}}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:36 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) ptrace$cont(0x18, r1, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f0000000040)) syz_extract_tcp_res$synack(&(0x7f0000000080), 0x1, 0x0) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r1, 0x2, 0x0) ptrace$getregs(0xc, r1, 0x80000001, &(0x7f0000000000)=""/53) 11:49:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = creat(&(0x7f0000000180)='./file0\x00', 0x80) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) getgroups(0x2, &(0x7f0000000240)=[0xffffffffffffffff, 0xee01]) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in=@broadcast, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@empty}}, &(0x7f0000000380)=0xe8) r5 = getuid() mount$fuseblk(&(0x7f00000000c0)='/dev/loop0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuseblk\x00', 0x1000000, &(0x7f00000003c0)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x200}}], [{@obj_user={'obj_user', 0x3d, 'cgroup'}}, {@subj_type={'subj_type', 0x3d, '/dev/ashmem\x00'}}, {@uid_lt={'uid<', r4}}, {@smackfsroot={'smackfsroot', 0x3d, '/dev/ashmem\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/ashmem\x00'}}, {@euid_lt={'euid<', r5}}]}}) r6 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r6, 0x40087703, 0x4) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r6, 0x0) 11:49:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xc0000) 11:49:36 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x163, 0x9}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f00000000c0)={r2, 0x1}, &(0x7f0000000180)=0x8) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:36 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f00, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x100000) 11:49:36 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c00, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x1000, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000100)=0x6001) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000004, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000001c0)={&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)="c4cdf15ed2931d486f77", 0xa, r2}, 0x68) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x2, 0x0) ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000080)={0xfffffffffffff76d, 0x3, 0x9, 0x7ff, 0x450, 0xff00}) r4 = shmget(0x2, 0x2000, 0x54000000, &(0x7f0000ffc000/0x2000)=nil) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x7, &(0x7f0000000300)=[0x0, 0x0, 0xee01, 0x0, 0xee01, 0xffffffffffffffff, 0xee00]) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000340)={{{@in6=@ipv4={[], [], @local}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000000440)=0xe8) sendto(r0, &(0x7f0000000580)="1b296dc031f88ef4048d3a7c0aa2ec62a35c2386c8f37baf0f9b8842190bf44045", 0x21, 0x800, 0x0, 0x0) getgroups(0x5, &(0x7f0000000480)=[0xffffffffffffffff, 0xee01, 0xee00, 0xee01, 0xee00]) r9 = getpgid(0xffffffffffffffff) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000004c0)=0x0) shmctl$IPC_SET(r4, 0x1, &(0x7f0000000500)={{0x1a3, r5, r6, r7, r8, 0x1f8, 0x40}, 0x5, 0x8, 0x7fffffff, 0x1000, r9, r10, 0x4}) 11:49:36 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xfffffdf9, 0x0, 0x0, 0x0, 0x0) 11:49:36 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e800074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 11:49:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000000000000, 0x40000000020012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) fcntl$setsig(r1, 0xa, 0x5) 11:49:37 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) prctl$PR_SET_TIMERSLACK(0x1d, 0x233) ptrace$cont(0x18, r0, 0x0, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x400000, 0x0) getsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000040), &(0x7f0000000080)=0x4) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000000c0)={0x0, 0x6, 0x5}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f00000001c0)={r2, 0x2, "e980"}, &(0x7f0000000200)=0xa) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r3 = getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x4000, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000005500)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000280)) r6 = getpid() ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x100000000, 'queue1\x00'}) r7 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r5, &(0x7f0000000140)={0x2000}) close(r5) syz_open_procfs(r3, &(0x7f0000000480)='/exe?\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xdei\xfc\xf1\v3\xf7i\x9a\xb3\xeb\x9b?&K\x96\x91\xbe\x10\xee\xaf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xdau\xaf\x1f\x02\xac\x06\xed') syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000300), 0x0, 0x0, &(0x7f0000003280)={0x0, 0x1c9c380}) getpgid(r6) timerfd_create(0x0, 0x800) socket$nl_generic(0x10, 0x3, 0x10) 11:49:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xffffff7f, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 11:49:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = accept4(r0, &(0x7f0000000080)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000000)=0x80, 0x800) ioctl$sock_inet_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000100)) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x410004, 0x440000000002011, r1, 0x2000) socket$inet_sctp(0x2, 0x5, 0x84) 11:49:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xffffff8c, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6800, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 2: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r1, 0x0, 0x70bd28, 0x25dfdbfc, {{}, 0x0, 0x4102, 0x0, {0x10, 0x13, @l2={'ib', 0x3a, 'vlan0\x00'}}}, ["", "", "", ""]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040040}, 0x80) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r2, 0x0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r3, 0x0) 11:49:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4800, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 1: clone(0x80080000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x400, 0x400) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000080)=0x100, 0x2) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:37 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xfffffff6, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 11:49:37 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") read(r0, &(0x7f0000000180)=""/77, 0x4d) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7, 0x10000) write$FUSE_OPEN(r2, &(0x7f00000000c0)={0x20, 0xfffffffffffffffe, 0x6, {0x0, 0x1}}, 0x20) ioctl$VIDIOC_S_CROP(r2, 0x4014563c, &(0x7f0000000080)={0xb, {0x100000, 0x401, 0x10000, 0x9}}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:37 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c00, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c00, 0x0, 0x0, 0x0, 0x0) 11:49:37 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4209, r0, 0x0, 0x4) tkill(r0, 0x8000000000038) r1 = syz_open_dev$radio(&(0x7f0000000400)='/dev/radio#\x00', 0x3, 0x2) write$P9_RREAD(r1, &(0x7f0000000100)=ANY=[@ANYRESHEX=r0], 0x12) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm-control\x00', 0x1, 0x0) write$P9_RREAD(r2, &(0x7f0000000300)={0xf6, 0x75, 0x1, {0xeb, "f2f7bb1c64941dbcd580e25adfa583d639cd2b323dc30e4bbd385dbcd512a86097a05861a6c9bbf7e2925ea0cf6ae44e130533803202500bc9191cda11facc3f4ecb6454d78591cc7706d0dd6965169e929edb7b4bf72a7dd59554c0caad0bae4a43e4648b2ead4919d59a8efde96193adbba60f9814b2defa05fd4f934e2f773c2828da0583d0de0c51ba97d19a19d98524929961de229151c69d4a8f9f0b28fa6c490b799c24addff07ae60082b4b36d39a1998fdaa1a137f5c255b37698abdcb08163894b165fede916636ee82a1368a2fe1f405d3e34cc4e851f795574bc3a79e1f184aabc1c5783df"}}, 0xf6) r3 = syz_open_dev$vcsa(&(0x7f0000000280)='/dev/vcsa#\x00', 0x8, 0x4642) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r3, 0x111, 0x3, 0x1, 0x4) ptrace$cont(0x18, r0, 0xfffffffffffffffd, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r4 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8, 0x800) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB], &(0x7f0000000080)=0xe) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r4, 0x84, 0x70, &(0x7f0000000180)={r5, @in={{0x2, 0x4e20, @multicast2}}, [0x5, 0x8, 0x6, 0xd4, 0xfffffffffffffffa, 0x1, 0x8, 0x20, 0x401, 0x100000000, 0x7, 0x5, 0x1ff, 0x1, 0x8]}, &(0x7f00000000c0)=0x100) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:38 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xedc000000000, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x62) readahead(r1, 0x84, 0x9) futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={0xffffffffffffff9c}) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000040), &(0x7f0000000080)=0x4) tkill(r0, 0x1e) write$P9_RREAD(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYBLOB="050040ef3d6bec7ea3001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a1516ac9aca194e613be1420f26bdeb3183dda663f9e8cabb0e97fd02eab46f689ecafc8c8517695d0010787223d52aa0abe25987850468a1d9c4a0e5098d36768bd003f544f6096dfa321114bfe087d5c5f0549342c1f2b63b1e1947b4f0fee427a06f16"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 11:49:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = syz_open_dev$sndpcmp(&(0x7f0000000180)='/dev/snd/pcmC#D#p\x00', 0x3, 0x100) write$capi20_data(r1, &(0x7f0000000080)={{0x10, 0x2, 0x82, 0x82, 0x9, 0x8}, 0x61, "8ce8ba4d4bdfbaf0383cdd220c2bb541b63e624f124a323d9bcf377dddb5398708868c77ad1c6eb6ad11d542d77d663fedf2816ff3edfb6cb6d2e375e1fb78ad205eb9ca6c741e22218e4a546ed09e1f154c5ed9ca6c7ee4449314ec7504cab8b8"}, 0x73) ptrace$cont(0x7, r0, 0x0, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000040)=0x401, 0x4) sendmsg$nfc_llcp(r1, &(0x7f0000000000)={&(0x7f00000001c0)={0x27, 0x1, 0x2, 0x3, 0x4, 0x7, "9699784708952018925964fac6320ef1eaa7788783e48a360c3d4bd13c52e196826144415b77f1fd12c636078c692a9e2b78e71eccd8fbaa2e6e5eb9eb9eda", 0x32}, 0x60, &(0x7f0000001480)=[{&(0x7f0000000240)="94cad9be2f585dbe0213f58cf4e4157be946a2d1dcf4ee9bf6d4ba092f2b2da0f088e8c4a1f1cefa7b694a1b81d048c8defb4bc41633d0ac39c8d153a724073574ceb460f69ca183df98b85d1424ab39182f1a788c314894059f4d1bfc7a05698dbaac467df8c06987e5f657bcc18f7d718367c9cbeb5b89658e1449868f4846", 0x80}, {&(0x7f00000002c0)="274078ef9331534aa6eb5fa178f1b4b58bfd2a996e73050d06a4a376bf2199a67ab1c47fbf0b893453c411ecf020a8a9c1eb1fb1fb1522e81bca755e49683707c252a80f450b80d487fbf82ff753b8255a47a888fff5075f61ace92e2bc4d7e5fe", 0x61}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="70187ce1ec311ec16e04bae00b303eaa0a962add78d47ff90a19b2240f7344731bb7753d80c35275224726793689b14579e15af247a7adda797b99d5ec704f74e851275879f3306495d44314747bf4ecceea0191e845ab4779ea53c2377112072074079ae78d939af8021ba19b1cf26089c37e3e46e265f3c49a1cd11003b2bc097596bbd0f360967b5e80e223d1f2f657253aa4", 0x94}, {&(0x7f0000001400)="e44c52c19d390c366c07cb266790669d9ce6e8d1219f81d5214f42c5e1eb972981d6d950c01010039c4c55977515e5115b342289eea87723e18431994b59be07baab14d9e763376686f32f9c53", 0x4d}], 0x5, &(0x7f0000001500)={0x80, 0x1ff, 0xffffffffffff8000, "84787341d4777df4f6af45655328dfcf06b2e3cd012ef8d4d9d9419d4d1fe55ec78ee304506b02aee3f40e01bb28e78d91b6f22c228210a856b9b5269559ba987549d38651311845131b99fded1acacfbd3ced197ee02a7598b76cf06316403fe050148a05d34795b215db"}, 0x80, 0x800}, 0x4) 11:49:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 11:49:38 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7400, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec7e9c73ac000000fcffffffbcb3ca1f0000a9d852536cff005dd82e000074365da4b6ab37adc82f5c592a42c21e9ffbfa00c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f00000000c0)) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) socket$unix(0x1, 0x0, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x101000, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:38 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x5000000) 11:49:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x8) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:38 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a00, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x6000000) 11:49:38 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6800, 0x0, 0x0, 0x0, 0x0) 11:49:38 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x5, 0x189000) write$P9_RREADLINK(r2, &(0x7f0000000080)={0x9, 0x17, 0x2}, 0x9) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) ioctl$EVIOCGREP(r2, 0x80084503, &(0x7f0000000180)=""/188) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:38 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) prlimit64(r0, 0xf, &(0x7f0000000800)={0x6, 0x7}, &(0x7f0000000840)) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000880)='/dev/rfkill\x00', 0x400, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000008c0)={0x0, @in6={{0xa, 0x4e21, 0x0, @remote, 0x7c1}}, [0xffffffff, 0x8, 0x5, 0x3, 0x2, 0x33b, 0x2, 0x7, 0x4, 0x1, 0x7, 0x9, 0x1, 0x96c000000000, 0x8]}, &(0x7f00000009c0)=0x100) getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000a00)={r2, 0xffffffffffff8001}, &(0x7f0000000a40)=0x8) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) process_vm_writev(r0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/83, 0x53}, {&(0x7f0000000180)=""/181, 0xb5}], 0x2, &(0x7f0000000780)=[{&(0x7f0000000240)=""/238, 0xee}, {&(0x7f00000000c0)=""/8, 0x8}, {&(0x7f0000000340)=""/25, 0x19}, {&(0x7f0000000380)=""/149, 0x95}, {&(0x7f0000000440)=""/198, 0xc6}, {&(0x7f0000000540)=""/161, 0xa1}, {&(0x7f0000000600)=""/223, 0xdf}, {&(0x7f0000000700)=""/68, 0x44}], 0x8, 0x0) 11:49:39 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x100000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x2, 0x0) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xfffffffffffffffa, 0x30, r1, 0xfffffffffffffffd) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) [ 469.600337][ C1] net_ratelimit: 18 callbacks suppressed [ 469.600345][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 469.611899][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:39 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x400, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000001c0)={{{@in=@multicast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@broadcast}}, &(0x7f00000002c0)=0xe8) ioctl$SIOCAX25DELUID(r0, 0x89e2, &(0x7f0000000300)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r1}) r2 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x3c) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x0) ptrace$cont(0x18, r2, 0x0, 0x0) ptrace$setregs(0xd, r2, 0x0, &(0x7f00000000c0)) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x21, 0x400000) getsockopt$IP6T_SO_GET_REVISION_TARGET(r3, 0x29, 0x45, &(0x7f0000000080)={'IDLETIMER\x00'}, &(0x7f00000000c0)=0x1e) setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000100)=0x2, 0x4) syz_emit_ethernet(0x975ca50adcdbae52, &(0x7f0000000840)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @broadcast, [], {@x25={0x805, {0x3, 0x0, 0xfb, "8e9da6c6d96292365256780823f69b360765a54eee45ac3c0cd348a5771db4264dd3d48e87ba216c57a742e5097d5b426ef78af6a6a3d8158122155692934c1709b31af84a5d3b96050443939c6e81306bfd14d00d04d9a3197cee304af5da43523b1616a4ebd7400eb617336b7677823abe180a54c6ccc151d887a223d13b1cd76fd3703ff53cefa065829c3a5fba9d534f6e54b6"}}}}, &(0x7f0000000800)={0x1, 0x2, [0xe26, 0x929, 0xd33, 0x438]}) ioctl$SG_GET_SG_TABLESIZE(r3, 0x227f, &(0x7f0000000040)) ptrace$cont(0x7, r2, 0x0, 0x0) 11:49:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xedc0, 0x0, 0x0, 0x0, 0x0) 11:49:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 11:49:39 executing program 2: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x100, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS(r1, 0x80605414, &(0x7f0000000080)=""/51) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4000000000080010, r1, 0x4) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r0, 0x0) 11:49:39 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x200000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:39 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c00, 0x0, 0x0, 0x0, 0x0) [ 469.879691][T17137] __ntfs_error: 143 callbacks suppressed [ 469.879702][T17137] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 469.899565][T17137] ntfs: (device loop0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 469.927089][T17142] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 469.965825][T17145] QAT: Invalid ioctl [ 469.971424][T17137] ntfs: (device loop0): ntfs_fill_super(): Not an NTFS volume. [ 469.980404][T17142] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 470.010768][T17145] QAT: Invalid ioctl [ 470.014795][T17142] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 470.028668][T17151] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") flistxattr(r0, &(0x7f0000000180)=""/225, 0xe1) r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x0, 0x20016, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x8000000) [ 470.080324][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 470.086240][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 470.116552][T17151] ntfs: (device loop4): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 470.131504][T17151] ntfs: (device loop4): ntfs_fill_super(): Not an NTFS volume. [ 470.160370][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 470.166196][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 470.172056][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 470.177878][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:39 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe0000, 0x0, 0x0, 0x0, 0x0) [ 470.237735][T17142] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:39 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x100, 0x0) ioctl$PPPOEIOCSFWD(r2, 0x4008b100, &(0x7f0000000180)={0x18, 0x0, {0x2, @random='HB!5Li', 'bridge_slave_1\x00'}}) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x7ff) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000080)) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x600000, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) signalfd4(r0, &(0x7f00000000c0)={0x3}, 0x8, 0x0) 11:49:39 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x300000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:40 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7400, 0x0, 0x0, 0x0, 0x0) [ 470.800321][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 470.806148][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:42 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1000000, 0x0, 0x0, 0x0, 0x0) 11:49:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x9000000) 11:49:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200, 0x0) ioctl$EVIOCGABS3F(r1, 0x8018457f, &(0x7f0000000180)=""/216) r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) get_robust_list(r0, &(0x7f0000000180)=&(0x7f00000000c0)={&(0x7f0000000000), 0x0, &(0x7f0000000080)={&(0x7f0000000040)}}, &(0x7f00000001c0)=0x18) 11:49:42 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a00, 0x0, 0x0, 0x0, 0x0) 11:49:42 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x400000000000000, 0x0, 0x0, 0x0, 0x0) [ 472.856077][T17221] Unknown ioctl -2145892993 [ 472.922487][T17221] Unknown ioctl -2145892993 11:49:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xa000000) 11:49:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) ioctl$TIOCCONS(r0, 0x541d) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) userfaultfd(0x80000) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x101400, 0x0) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000040)=0x5) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) fcntl$setownex(r1, 0xf, &(0x7f0000000080)={0x2, r0}) 11:49:42 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x500000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x107100, 0x0) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000100)=0xfff) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r2 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x200, 0x0) fcntl$dupfd(r2, 0x406, r0) fallocate(r2, 0x4, 0x101, 0x1) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r2, 0x0) 11:49:42 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xedc0, 0x0, 0x0, 0x0, 0x0) 11:49:42 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0) 11:49:42 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x1) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) r1 = syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/pid\x00') r2 = fcntl$dupfd(r1, 0x406, r1) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f0000000040)=0x120000) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xb000000) 11:49:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f3188b070202946499bf31b7cc61ed22c580ecc2737e8469d86f9958372c37ab61b07bf3891642b4c6f4c75e2b2f2375eb07f25cda5d7c61181b3ffc554b1843ccb13ff000000000000b3ce6e827f9453cd0e0fd8986f8d821734bafbabec") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x600000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x20001000008912, &(0x7f0000000080)='\x00\x00\x00\x00') r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ashmem\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x20012, r0, 0x0) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x2000, 0x0) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000040)) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4, 0x440000000002011, r1, 0x0) 11:49:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) write$P9_RREAD(r1, &(0x7f0000000040)={0xb, 0x75, 0x2}, 0xb) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 11:49:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xe0000, 0x0, 0x0, 0x0, 0x0) 11:49:43 executing program 2: syz_genetlink_get_family_id$ipvs(0x0) clone(0x210007fb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) sched_setscheduler(0x0, 0x5, &(0x7f0000000600)) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000000000000000000000000000000000000800000009500000000000000"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) 11:49:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3000000, 0x0, 0x0, 0x0, 0x0) 11:49:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c872559587d44c5a48fb30420a4de49f999fe5ecfa9af4132bd4df734d67e2c4fc94cbe93b0c9148b3e994d5954a2bd820931b8c537212ec39da734ec855917369f5e7927a76b0"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x1, 0x5b, 0x0, 0x800000000000, 0x0, 0x1, 0x80, 0x1, 0x7, 0x81, 0x4, 0x8, 0x3ff, 0x7, 0x3, 0xffff, 0x3, 0x8, 0x7f, 0x2, 0x4, 0x8, 0xf7, 0x3, 0xfffffffffffffe00, 0x6, 0x1, 0x5, 0x8, 0x7, 0x8, 0x2, 0x5, 0xffff, 0x3, 0x6, 0x0, 0xfffffffffffffff9, 0x4, @perf_config_ext={0x0, 0x3}, 0x33000, 0x7fff, 0x4, 0x0, 0x5, 0x2, 0x8}, r0, 0xe, 0xffffffffffffffff, 0x9) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:43 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x700000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xd000000) 11:49:43 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x2, 0x0) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x4) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x440000000002011, r1, 0x0) 11:49:43 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1000000, 0x0, 0x0, 0x0, 0x0) 11:49:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xe000000) 11:49:43 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40a100, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000040)={0x0, 0x7, 0x1000}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000000c0)=@assoc_id=r2, &(0x7f0000000180)=0x4) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:43 executing program 2: recvmmsg(0xffffffffffffff9c, &(0x7f0000001f00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000000240)=""/212, 0xd4}], 0x2}}], 0x1, 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="020a040007000000ebbd0fdf333f380005001a000500005a0005414e01403c84000000e340900ea300000000e56ed9621383dfff00000000"], 0x38}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x20, 0x0) 11:49:43 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000000, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="050040ef3d6bec7fd500a73f416331cf3236e424c1ad457e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da405a1ac61566160fd199242700e91adee72f900a5f804401ece3197f77b8419a4a55db3aa55f7ca5dc598817aeba859dc8920858e335a5f28b1fd404995b8a83eaf2c284240b40d4891d33919d7dfe4c9677e5a"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) socketpair(0x3, 0x2, 0xe9a, &(0x7f0000000100)={0xffffffffffffffff}) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r1, 0x800443d2, &(0x7f00000003c0)={0x1, &(0x7f0000000380)=[{}]}) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x9, 0x80000) ioctl$TIOCGETD(r2, 0x5424, &(0x7f00000000c0)) r3 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x4a, 0x80000) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r3, 0xc1105518, &(0x7f0000000180)={{0x0, 0x5, 0x6c, 0xffff, '\x00', 0x7}, 0x5, 0x10000000, 0x80000000, r0, 0x3, 0x3, 'syz0\x00', &(0x7f0000000040)=['\x00', '-\x00', 'cpuset@$^\xf4\x00'], 0xe, [], [0xa2, 0x0, 0x2, 0x3]}) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:44 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa00000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 11:49:44 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 2: syz_mount_image$msdos(&(0x7f0000001180)='msdos\x00', &(0x7f00000011c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:44 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2000000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5000000, 0x0, 0x0, 0x0, 0x0) 11:49:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x10000000) 11:49:44 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3000000, 0x0, 0x0, 0x0, 0x0) [ 474.914434][T17420] FAT-fs (loop2): bogus number of reserved sectors [ 474.970298][ C1] net_ratelimit: 22 callbacks suppressed [ 474.970307][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 474.981914][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 474.987778][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 474.993607][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 475.003459][T17420] FAT-fs (loop2): Can't find a valid FAT filesystem [ 475.033857][T17433] __ntfs_error: 92 callbacks suppressed [ 475.033868][T17433] ntfs: (device loop5): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 475.041917][T17438] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 475.079603][T17438] ntfs: (device loop0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 475.115338][T17438] ntfs: (device loop0): ntfs_fill_super(): Not an NTFS volume. 11:49:44 executing program 1: clone(0x4000013102041ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000240), 0x0, 0x1, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000340)={'broute\x00'}, &(0x7f00000001c0)=0x78) r2 = inotify_init() fcntl$F_SET_FILE_RW_HINT(r2, 0x40e, &(0x7f00000000c0)=0x4) tkill(r0, 0x2d) sysfs$2(0x2, 0x20, &(0x7f0000000000)=""/113) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) mq_timedsend(r3, &(0x7f0000000280)="f8f1c4da206e69def468483fd0f4ae8260531b576e0922c983019e727932044a89e4a321b7f73085578a86209d73f0dee71b1fa0292cf7f4fc3ff29d72c9d8824c32891d8848d8f2d73c9126fc88c0029ac6cf915b63aaf57b0f55731175a0149578d79f08ff6c3d02a9c4054cd5a015fcbc1c5b55e88b85e75b1e127fa66f78740e711f086927bed21f25d75178491e3e7e15cd7b384a4510dea215935e", 0x9e, 0x80000001, &(0x7f0000000200)={0x77359400}) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x7, 0xc042) ptrace$cont(0x1, r0, 0x0, 0x0) [ 475.129545][T17433] ntfs: (device loop5): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 475.148243][T17433] ntfs: (device loop5): ntfs_fill_super(): Not an NTFS volume. [ 475.198833][T17449] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 475.236571][T17449] ntfs: (device loop4): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. 11:49:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x11000000) 11:49:44 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="050040ef3d6bec4fc1866700000000000000bdb3e61f0000a9e2ce8a4a3e9c6e5f74365da4058c07adc82e5c592a42c21e959c52e90a5666b4ce3a60609bc4b31220f75d9e7475dd7fc6cb1d894960129d968c2ffc4bfb3cdcfc3d7d28acb39bb2c2c8bdf3c793d04af9437d11e981192ccc44dd761a5cd3ad72bdca2d1617d281"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x0, 0x2) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000002c0)) [ 475.256409][T17449] ntfs: (device loop4): ntfs_fill_super(): Not an NTFS volume. 11:49:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x12000000) 11:49:45 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec509c001840000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8865595"], 0x39) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x101000, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000080)=0xa04, 0x4) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) r2 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000000)={0x3b, @dev={0xac, 0x14, 0x14, 0x10}, 0x4e22, 0x0, 'none\x00', 0x20, 0x9, 0xa}, 0x2c) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:45 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x2010000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000000, 0x0, 0x0, 0x0, 0x0) [ 475.635753][T17489] IPVS: set_ctl: invalid protocol: 59 172.20.20.16:20002 11:49:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff}) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000100)={0x286, {{0x2, 0x4e21, @multicast1}}}, 0x88) r1 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x4, 0x0) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000080)={[], 0x0, 0x400, 0x2779}) perf_event_open(&(0x7f0000000080)={0x3, 0x70, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x8, 0x2000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x9e6d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x8, 0x200, 0x0, 0x80000000, 0x0, @perf_bp={0x0, 0x8}, 0x100, 0x8, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) [ 475.728616][T17495] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. 11:49:45 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f00000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 1: clone(0x4000003102041ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x2, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) r1 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm_plock\x00', 0x10000, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={0xffffffffffffff9c, 0x50, &(0x7f0000000200)={0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r1, r2, 0x0, 0x16, &(0x7f00000001c0)='cpuset.effective_cpus\x00', r3}, 0x30) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x39) ptrace$cont(0x18, r1, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x0, 0x0) getsockopt$inet_tcp_int(r4, 0x6, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ptrace$setregs(0xd, r1, 0x0, &(0x7f00000000c0)) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000300)) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000340)={'team_slave_1\x00', {0x2, 0x4e20, @empty}}) ptrace$cont(0x7, r1, 0x0, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r5, 0x6, 0x15, &(0x7f0000000000)=0x4, 0x4) 11:49:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x13000000) [ 475.840306][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 475.846207][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:49:45 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x5000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4000000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:45 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3e61f0000a9d852536cd82e000074365da4058c37adc82f5c592a42c21e9ffbfa49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x3fc00000, 0x200000) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000000040)=0x6000) 11:49:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x14000000) 11:49:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={[], 0x0, 0x400, 0x2779}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) [ 476.320331][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 476.326179][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:45 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0500401c3d6bec7e9c001800000000000000bdb3e61f0000a9da52536cd82e000074365da4058c37adc82f5c592a42c21e9fc516e5932ad4fbfa41c87255955dab2a73eb495f9ef42db6169de6dc031887d5d3815003a0352a96aa9231"], 0x39) ptrace$cont(0x18, r0, 0x0, 0xfffffffffffffffa) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x20, r0, 0x0, 0x0) 11:49:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000000, 0x0, 0x0, 0x0, 0x0) [ 476.400359][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 476.406178][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:49:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x10000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4800000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x15000000) 11:49:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 1: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2d) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="050040ef3d6bec7e9c001800000000000000bdb3ee1f0000a9d852536cd82e000074735da4058c37adc82f49c8725595"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) 11:49:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, 0x0) 11:49:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x180f0000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x16000000) 11:49:46 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c00000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 1: pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) bind$packet(r3, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @local}, 0x14) write$binfmt_misc(r1, &(0x7f0000000080)=ANY=[], 0x4240a3c3) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 11:49:46 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x8000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 2: openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x64000, 0x0) 11:49:46 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1f000000, 0x0, 0x0, 0x0, 0x0) 11:49:46 executing program 2: socket$nl_route(0x10, 0x3, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x1012, r0, 0x0) write$tun(r0, &(0x7f0000000280)=ANY=[@ANYRESHEX], 0x1) mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, r0, 0x0) mlockall(0x3) mount(&(0x7f0000000400)=ANY=[], &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000240)={0x0, @aes256, 0x1, "9efefc9d63d2058c"}) r1 = socket$inet6(0xa, 0x400000000001, 0x0) syz_genetlink_get_family_id$team(0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0) sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, 0x0, 0x0) mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil) open(0x0, 0x0, 0x0) r2 = dup(r1) bind$inet6(r1, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet_tcp_int(r2, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) setsockopt$inet_tcp_int(r2, 0x6, 0x18, &(0x7f00000001c0), 0x4) r3 = open(&(0x7f0000000000)='./bus\x00', 0x100000141042, 0x0) ftruncate(r3, 0x10099b7) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000200)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x5}]}, 0x10) sendfile(r1, r3, 0x0, 0x8000fffffffe) connect$unix(r2, &(0x7f00000002c0)=@file={0x0, './bus\x00'}, 0x6e) 11:49:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x17000000) 11:49:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6000000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:47 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xa000000, 0x0, 0x0, 0x0, 0x0) 11:49:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0) 11:49:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x18000000) 11:49:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6800000000000000, 0x0, 0x0, 0x0, 0x0) [ 477.808828][T17651] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 11:49:47 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20100000, 0x0, 0x0, 0x0, 0x0) 11:49:47 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast2}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0xfff, 0x4) sendto$inet(r0, 0x0, 0x0, 0x20000806, &(0x7f0000001180)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='sit0\x00', 0x10) sendto$inet(r0, &(0x7f0000000100), 0xed5f0dd4, 0x0, 0x0, 0x100000399) shutdown(r0, 0x400000000000001) 11:49:47 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x10000000, 0x0, 0x0, 0x0, 0x0) 11:49:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x19000000) 11:49:47 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x6c00000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lremovexattr(0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_open_dev$amidi(0x0, 0x2, 0x800) mount$bpf(0x20000000, &(0x7f0000002600)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000002640)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000200)='./file0\x00', 0x700, 0x0, 0x0, 0x100032, &(0x7f00000000c0)=ANY=[]) getsockopt$inet_dccp_int(0xffffffffffffffff, 0x21, 0xf, &(0x7f0000000240), 0x0) fstat(0xffffffffffffffff, &(0x7f00000006c0)) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000440), 0x0) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) mkdir(0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x100020, 0x0) r0 = socket$inet_dccp(0x2, 0x6, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) write(0xffffffffffffffff, 0x0, 0x0) shmat(0x0, &(0x7f0000ffb000/0x3000)=nil, 0x0) shmctl$IPC_INFO(0x0, 0x3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) sched_setattr(0x0, &(0x7f00000001c0)={0x30, 0x6, 0x1, 0x9, 0x7, 0xffffffffffff0001, 0x0, 0x8}, 0x0) fcntl$setstatus(r0, 0x4, 0x40000) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x1, &(0x7f0000000280)) vmsplice(r1, 0x0, 0x0, 0x0) 11:49:48 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1a000000) 11:49:48 executing program 1: openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x261, 0x0) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, 0x0) r0 = msgget$private(0x0, 0x0) msgsnd(r0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x1, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000180)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}) msgsnd(r0, &(0x7f0000c40ff8)={0x1}, 0x8, 0x0) msgrcv(r0, &(0x7f0000000040)={0x0, ""/4}, 0xc, 0x0, 0x0) pause() setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, 0x0, 0x0) mprotect(&(0x7f0000953000/0x3000)=nil, 0x3000, 0x0) dup(0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0x40085400, 0x0) 11:49:48 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x180f0000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7400000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x1f000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1b000000) 11:49:48 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7a00000000000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x40000000, 0x0, 0x0, 0x0, 0x0) 11:49:48 executing program 1: openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x261, 0x0) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, 0x0) r0 = msgget$private(0x0, 0x0) msgsnd(r0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x1, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000180)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}) msgsnd(r0, &(0x7f0000c40ff8)={0x1}, 0x8, 0x0) msgrcv(r0, &(0x7f0000000040)={0x0, ""/4}, 0xc, 0x0, 0x0) pause() setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, 0x0, 0x0) mprotect(&(0x7f0000953000/0x3000)=nil, 0x3000, 0x0) dup(0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0x40085400, 0x0) 11:49:48 executing program 1: openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x261, 0x0) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, 0x0) r0 = msgget$private(0x0, 0x0) msgsnd(r0, &(0x7f0000000100)=ANY=[@ANYRESOCT], 0x1, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000180)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}) msgsnd(r0, &(0x7f0000c40ff8)={0x1}, 0x8, 0x0) msgrcv(r0, &(0x7f0000000040)={0x0, ""/4}, 0xc, 0x0, 0x0) pause() setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, 0x0, 0x0) mprotect(&(0x7f0000953000/0x3000)=nil, 0x3000, 0x0) dup(0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0x40085400, 0x0) [ 479.235588][T17768] EXT4-fs (sda1): re-mounted. Opts: ,errors=continue 11:49:49 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000200)) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000300)='/dev/loop#\x00', 0x4, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000040)) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={[], 0x0, 0x400, 0x2779}) 11:49:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x8cffffff00000000, 0x0, 0x0, 0x0, 0x0) 11:49:49 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0) 11:49:49 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x48000000, 0x0, 0x0, 0x0, 0x0) 11:49:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1c000000) 11:49:49 executing program 0: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x4c000000, 0x0, 0x0, 0x0, 0x0) [ 479.713791][T17831] kasan: CONFIG_KASAN_INLINE enabled [ 479.733758][T17831] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 479.745009][T17831] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 479.751957][T17831] CPU: 1 PID: 17831 Comm: syz-executor2 Not tainted 5.0.0-rc4-next-20190131 #23 [ 479.760983][T17831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 479.771052][T17831] RIP: 0010:relay_open_buf.part.0+0x7cb/0xb40 [ 479.777110][T17831] Code: c1 ea 03 80 3c 02 00 0f 85 4c 03 00 00 49 8d 7d 58 4d 89 ac 24 90 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1b 03 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b [ 479.796708][T17831] RSP: 0018:ffff8880550ef8b0 EFLAGS: 00010203 [ 479.802772][T17831] RAX: dffffc0000000000 RBX: ffff88805de37d40 RCX: ffffc9000a22d000 [ 479.810738][T17831] RDX: 0000000000000008 RSI: ffffffff8170edb0 RDI: 0000000000000047 [ 479.818704][T17831] RBP: ffff8880550ef928 R08: ffff88804fd3a680 R09: ffff88804fd3af48 [ 479.826671][T17831] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88808d8f1780 [ 479.834640][T17831] R13: ffffffffffffffef R14: 0000000000000000 R15: 00000000000009de [ 479.843137][T17831] FS: 00007f89f543f700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 479.852059][T17831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 479.858635][T17831] CR2: 0000000000d309b8 CR3: 0000000056fdf000 CR4: 00000000001426e0 [ 479.866599][T17831] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 479.874565][T17831] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 479.882541][T17831] Call Trace: [ 479.885841][T17831] ? kmem_cache_alloc_trace+0x354/0x760 [ 479.891389][T17831] relay_open+0x523/0x980 [ 479.895721][T17831] do_blk_trace_setup+0x414/0xb90 [ 479.900768][T17831] __blk_trace_setup+0xe3/0x190 [ 479.905612][T17831] ? do_blk_trace_setup+0xb90/0xb90 [ 479.910807][T17831] ? disk_name+0xae/0x110 [ 479.915159][T17831] blk_trace_ioctl+0x170/0x300 [ 479.919917][T17831] ? blk_add_trace_rq_remap+0x4d0/0x4d0 [ 479.925467][T17831] blkdev_ioctl+0x12c/0x1c40 [ 479.930051][T17831] ? blkpg_ioctl+0xa90/0xa90 [ 479.934639][T17831] ? __might_fault+0x12b/0x1e0 [ 479.939393][T17831] ? __fget+0x340/0x540 [ 479.943543][T17831] ? find_held_lock+0x35/0x130 [ 479.948296][T17831] ? __fget+0x340/0x540 [ 479.952451][T17831] block_ioctl+0xee/0x130 [ 479.956776][T17831] ? blkdev_fallocate+0x410/0x410 [ 479.961798][T17831] do_vfs_ioctl+0xd6e/0x1390 [ 479.966385][T17831] ? ioctl_preallocate+0x210/0x210 [ 479.971489][T17831] ? __fget+0x367/0x540 [ 479.975641][T17831] ? ksys_dup3+0x3e0/0x3e0 [ 479.980056][T17831] ? nsecs_to_jiffies+0x30/0x30 [ 479.984903][T17831] ? security_file_ioctl+0x93/0xc0 [ 479.990010][T17831] ksys_ioctl+0xab/0xd0 [ 479.994167][T17831] __x64_sys_ioctl+0x73/0xb0 [ 479.998758][T17831] do_syscall_64+0x103/0x610 [ 480.003347][T17831] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 480.009228][T17831] RIP: 0033:0x458089 [ 480.013144][T17831] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 480.032739][T17831] RSP: 002b:00007f89f543ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 480.041144][T17831] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458089 [ 480.049104][T17831] RDX: 0000000020000080 RSI: 00000000c0481273 RDI: 0000000000000005 [ 480.057065][T17831] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 480.065028][T17831] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f89f543f6d4 [ 480.072989][T17831] R13: 00000000004bf54d R14: 00000000004d0e38 R15: 00000000ffffffff [ 480.080958][T17831] Modules linked in: [ 480.085697][ C1] net_ratelimit: 18 callbacks suppressed [ 480.085704][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 480.097139][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 480.105690][T17816] kobject: 'kvm' (000000004336f85c): kobject_uevent_env 11:49:49 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x20100000, 0x0, 0x0, 0x0, 0x0) [ 480.107314][T17821] kobject: 'loop5' (0000000039227a86): kobject_uevent_env [ 480.114329][T17816] kobject: 'kvm' (000000004336f85c): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 480.121206][T17821] kobject: 'loop5' (0000000039227a86): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 480.140854][T17831] ---[ end trace a86278ccb485d218 ]--- [ 480.147996][T17831] RIP: 0010:relay_open_buf.part.0+0x7cb/0xb40 11:49:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x40100000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xe8}) ioctl$KVM_RUN(r2, 0xae80, 0x1d000000) [ 480.159540][T17831] Code: c1 ea 03 80 3c 02 00 0f 85 4c 03 00 00 49 8d 7d 58 4d 89 ac 24 90 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 1b 03 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b [ 480.159864][ T3865] kobject: 'loop5' (0000000039227a86): kobject_uevent_env [ 480.185506][T17831] RSP: 0018:ffff8880550ef8b0 EFLAGS: 00010203 [ 480.193136][T17831] RAX: dffffc0000000000 RBX: ffff88805de37d40 RCX: ffffc9000a22d000 [ 480.202685][T17831] RDX: 0000000000000008 RSI: ffffffff8170edb0 RDI: 0000000000000047 11:49:49 executing program 1: r0 = socket$inet6(0xa, 0x22000000002, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @ipv4={[], [], @remote}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x6beae7b, 0x0) socket$bt_bnep(0x1f, 0x3, 0x4) [ 480.213643][T17831] RBP: ffff8880550ef928 R08: ffff88804fd3a680 R09: ffff88804fd3af48 [ 480.222244][T17831] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88808d8f1780 [ 480.222912][ T3865] kobject: 'loop5' (0000000039227a86): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 480.231536][T17831] R13: ffffffffffffffef R14: 0000000000000000 R15: 00000000000009de [ 480.244458][T17825] kobject: 'loop0' (000000008dabb6b3): kobject_uevent_env [ 480.249251][T17831] FS: 00007f89f543f700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 480.256443][T17825] kobject: 'loop0' (000000008dabb6b3): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 480.271204][T17831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 480.300217][ T3865] kobject: 'loop3' (000000007d562d77): kobject_uevent_env [ 480.305776][T17831] CR2: 0000000000625208 CR3: 0000000056fdf000 CR4: 00000000001406e0 [ 480.307395][ T3865] kobject: 'loop3' (000000007d562d77): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 480.315588][T17831] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 11:49:49 executing program 5: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0xf6ffffff00000000, 0x0, 0x0, 0x0, 0x0) 11:49:49 executing program 4: syz_mount_image$ntfs(&(0x7f0000000240)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x3f000000, 0x0, 0x0, 0x0, 0x0) [ 480.361624][T17843] kobject: 'loop0' (000000008dabb6b3): kobject_uevent_env [ 480.376330][T17845] kobject: 'kvm' (000000004336f85c): kobject_uevent_env [ 480.379033][T17831] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 480.384361][T17845] kobject: 'kvm' (000000004336f85c): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 480.394659][T17843] kobject: 'loop0' (000000008dabb6b3): fill_kobj_path: path = '/devices/virtual/block/loop0' [ 480.429068][T17831] Kernel panic - not syncing: Fatal exception [ 480.431870][ T3865] kobject: 'loop1' (00000000453401b1): kobject_uevent_env [ 480.436123][T17831] Kernel Offset: disabled [ 480.447528][T17831] Rebooting in 86400 seconds..