\x00', 0x0, 0x0)
read(r0, &(0x7f00000005c0)=""/11, 0xfd0d)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140))
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, &(0x7f0000000280), 0xffffffffffffffff)
r1 = fcntl$dupfd(r0, 0x0, r0)
prctl$intptr(0x10000040000001d, 0xfffffffffffffe58)
open$dir(&(0x7f0000000080)='./file0\x00', 0x68806, 0x0)
ioctl$EVIOCGBITKEY(r1, 0x80404521, &(0x7f0000000300)=""/159)
prctl$intptr(0x1e, 0x0)
ioctl$BLKSECTGET(r1, 0x1267, &(0x7f00000000c0))

03:33:42 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8910, &(0x7f0000000040)=@req)

03:33:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000489004bddd9de91be10eebf000ee91e18f0c76fbb232a07424ae1e901d2da75af1f0200f5ab26d7e071fb35331ce39c5a0000")
ioctl$FS_IOC_SETVERSION(r0, 0x40047602, &(0x7f00000000c0))

03:33:42 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)="2f65786500000000000489004bddd9de91be10eebf000ee91e18f0c76fbb232a07424ae1e901d2da75af1f0200f5ab26d7e071fb35331ce39c5a0000")
fcntl$setown(r0, 0x8, 0x0)

03:33:42 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0xfffffffffffffe14)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x9c3, 0x0, 0x6}, 0x14)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000080)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0xec03, @loopback}, 0x1c)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000140))
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000001380)='/dev/mixer\x00', 0x400002, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f00000013c0)={0xb4b, 0x5e5})

03:33:42 executing program 2:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000400)="f68293eb98e367ae037fe65d62a50d661937b5ba81c2")
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000))
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140)=ANY=[])
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000003c0)=0x1)

03:33:42 executing program 2:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x1012, r0, 0x0)
write$tun(r0, &(0x7f0000000340)=ANY=[@ANYBLOB='>'], 0x1)
perf_event_open(&(0x7f0000000180)={0x6, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

03:33:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000080))
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f00000000c0)=0x8000, 0x4)
read(r0, &(0x7f00000001c0)=""/1, 0xfffffffffffffdac)
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:33:42 executing program 4:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc-cast6-avx)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000028c0)="b7da122b891bfc4e2f00000000000000", 0x10)

03:33:43 executing program 4:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af300200f5abfb9845f9e19859c9693206f2c60b0000000719e1d66e970123d893d974e5b9c3285677b2139823e5500c92ab5b94da3a7de19f063bb765b02bd5b660fb7fa898c6f5c6369c3f363068d10af833f6475bbe8b7967255b177607ba100f6c4654718232dbda64aa1f69cf9ab5b3ea3ed63452b7ebd37c9dae664e322e08ad8f6029fe8fd0b34c7117480471aeca0a3fc9eceb28509ca8a83e4f8b85131808bc5cfb4cc24e1901769c084c082712b470666b6dddf74ced693973ba1ded8b")
read(r0, &(0x7f0000000000)=""/192, 0xc0)

03:33:43 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000080)={r1, r0, 0xc54})
ioctl$TCXONC(r3, 0x540a, 0x0)

03:33:43 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af300200f5abfb9845f9e19859c9693206f2c60b0000000719e1d66e970123d893d974e5b9c3285677b2139823e5500c92ab5b94da3a7de19f063bb765b02bd5b660fb7fa898c6f5c6369c3f363068d10af833f6475bbe8b7967255b177607ba100f6c4654718232dbda64aa1f69cf9ab5b3ea3ed63452b7ebd37c9dae664e322e08ad8f6029fe8fd0b34c7117480471aeca0a3fc9eceb28509ca8a83e4f8b85131808bc5cfb4cc24e1901769c084c082712b470666b6dddf74ced693973ba1ded8b")
preadv(r0, &(0x7f0000000800)=[{&(0x7f0000003200)=""/4096, 0x1000}], 0x1, 0x0)

03:33:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0xfffffffffffffe14)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x9c3, 0x0, 0x6}, 0x14)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000080)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0xec03, @loopback}, 0x1c)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000140))
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000001380)='/dev/mixer\x00', 0x400002, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f00000013c0)={0xb4b, 0x5e5})

03:33:43 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000200)="2f6578650000c10000000000e9ff0700000000000054fa07424adee916d2da75afe70b35a0fd6a1f0200f5ab26d7a071fb35331ce39c5a6568641006d7c0206a74e33326530000000000000000000000")
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
sendfile(r1, r0, &(0x7f0000000180), 0x100000133)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)="2e2f6367726f75702e6e65742f73797a312775ca1e56b82a6b2c9610345bf0841f9c0102ea8317e1c2fd7ad819a4e039", 0x1ff)

03:33:43 executing program 4:
perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x6, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000140), 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000000))
mq_unlink(&(0x7f0000000080)='/dev/loop#\x00')

03:33:43 executing program 0:
pause()

03:33:43 executing program 4:

03:33:43 executing program 4:

[  281.904190] IPVS: ftp: loaded support on port[0] = 21
03:33:44 executing program 2:

03:33:44 executing program 4:

03:33:44 executing program 3:
socketpair(0x1, 0x0, 0x20, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000240)={<r1=>0xffffffffffffffff}, 0x2, 0x1009}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000380)={0x6, 0x118, 0xfa00, {{0x1, 0x5, "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", 0x17, 0x0, 0x80000001, 0xa8ee0dc40, 0xc462, 0x3, 0x9, 0x1}, r1}}, 0x120)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc))
read(r2, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000140))
r4 = gettid()
read(r3, &(0x7f0000000080)=""/114, 0x72)
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r2})
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
sendmmsg$nfc_llcp(r0, &(0x7f0000002e40)=[{&(0x7f00000004c0)={0x27, 0x1, 0x2, 0x7, 0x6, 0x7, "abade235232ca039b4968d1258a90194a07ba757f4234e1ce178d8b6f2b799c7dab7b1999e3e4442b556a81a684d7c6e42da1ffa6046dea9d6b5627836aceb", 0x33}, 0x60, &(0x7f0000000180)=[{&(0x7f0000000540)="c2a8aad149a9986a2aafef20592fe4c66e0cc2fee7a994cec3287ad800e658b72be35970fd51e4c30a6d9474d5fc29799162467cf75785dc1901cf85b47371ad23634438d91cec440b29658515db747a1a449be819034d6bbf6a2858431a243df58de72faa665840e7d49dd12acf1f05790b9312ee939682e9f65b4d0aa2b7766b0580c42862f00b8a7338d30adbe7cc46e3d0b2595b940b945717ff01aee1654253b372730a303fd91f66601645ba310269b25a310fa06e24b3d2bed5fb", 0xbe}], 0x1, 0x0, 0x0, 0x40}, {&(0x7f0000000600)={0x27, 0x1, 0x2, 0x1, 0x1f, 0x400000000000000, "3d1f8fa1627e3d24f48a7ef6018730ce9246cf3e7c80913f6c404a459b7c9ef3fc1636b7fe1ec33b318c5bdd693e9f0a41b668b19ef27a51b5661ed62d5912", 0x5}, 0x60, &(0x7f0000000700)=[{&(0x7f0000000680)="67ec82e63ed66ace29f1484aa029b6e02008a30f65422897b26f0ac44fd5295ddaca1b10800625839469bdf68db1e12d8426a2eb5e0cfb25fff9480d35e19d9e60f6f5e5bd2b9c3f5a967c175df547", 0x4f}], 0x1, &(0x7f0000000740)={0x48, 0x112, 0x1, "d8c4a7fc7dcde8cf3e2cab4d0c770211596786d3fba8185f2c1180720dc97e07726f450efc55825ceb3df3dbf02c80e6243cc6025270844d"}, 0x48, 0x20000000}, {&(0x7f00000007c0)={0x27, 0x1, 0x2, 0x7, 0x4, 0x9, "32eb157d7a396aea18d2aa0e30aef7c3bdc113797f0f5e2060f87bc950cb138e2746a0fb0c394f2c40339fa9f96cdb2abefdefc81a6e35133f33abbd5ebfa6", 0x8}, 0x60, &(0x7f0000000a40)=[{&(0x7f0000000840)="b5645fe188873759bc56f169d03afe5480b089c88a3826f476de195856b48f05c05778b850d0ca3e3093eb05849c65ba18705033838a162671784f3a47248994f2dabf4d79d249f48d98c981ba67f236a2efa6adef0b5214876ed9f4e703f3f2d49c079136a515ab4972cb60c206c1ec2a71b67771fc18eccee2a018979131637a7d3fdc3622c12297ad3a9be4852dc2447edab08dfeabb544423f0de68273e0b158abfe82395d5202aa6161dcef82c81b3d98244b0f2d8da743072dc8611a195ffc4b989716c0e0cd7bbfceecdd5d2302eae8501557d9027b", 0xd9}, {&(0x7f0000000940)="c1b8517098eaed039dd26322015774d145d0b2f694a3c144dfacacb074f8c20e34c6b8fe78c61cc4d525c50fe09505722b1d4131f94405c15fc5ac2be43a4df3f00008919b50ee06491b779334c124b5d4f4a78b1bf70f77d6140cfbca8c71554424a6a7718122ef25fddbcc8c8f4f7c9359ff36423bc3073f90d8493edd00b504a0a5c8a0701898f539ab7bcb688ee197f669361a6c4e779bfaf5ebd5a64c967bd386c812ae0520346889cacdfb67c6ba83f03d5f9f7c39254457a2c0350e3090c942595f83d9702da55ca0fdd6e3c60981d232ce41becb5fba1122faff282e49ac2dae7368490f", 0xe8}], 0x2, &(0x7f0000000a80)={0xb0, 0x103, 0x6, "d10a15169f893025db78155148c99b17deda15d0fc7c16c97e98ec6c0fd32832a010d9564e1d96185db39f2aabfae40345b6fd66916c2372bef071cff290aab6b94634820710db8c5bce705c43efec4029f3fd841c86bfa4634aab1451f8845aeb1b02947062178e41fa73e1142846351563eaa29411fbc4e5fba76883585264cf40c8b066940efbcb6418618733b59aa11c4b8e76e9949f3046"}, 0xb0, 0x4}, {&(0x7f0000000b40)={0x27, 0x0, 0x1, 0x2, 0x6, 0x6, "d132e18d9f3862e188aa4b8efb431d35aeeb4417e3181eecf50b6e38e53b89b7c8978200e5480630c87b7fb9e40fd6cbcacafd73a7ced6d2f57174665b95c6", 0x31}, 0x60, &(0x7f0000000e40)=[{&(0x7f0000000bc0)="3777b493d641778b08a8daad4038d7c220dd60775c9a7f0b0d19f28f68147cb2c059088b7e6fe0f08580de9e9213b4a11f4179be8f8eac7415229c69020d931e146679ecb9d2e90cf0", 0x49}, {&(0x7f0000000c40)="de4b42e7de564c29ba4dba67f2d6287909545e1f0204204c0c6465c1916e48efb9d4f793646f03134043930abceaf75943964e4586f486f32f6d2182d118809315ee767574a3003d8f36a3b82df9a0637b11", 0x52}, {&(0x7f0000000cc0)="cfec2437d0f8949077673082be47af62e47e9a95d93cb218219c0afbb4546103b2f016f0f6d988ff215b52068686171b8b939ac908ea7a5a1edc262c85e4b777c33c3fbb683d4aa055609e260227fb844c9eb763c133338e141d4d6def675f3b01e15cdbbdbbd3aa06254a1423960a1732de7a4d5932b5eaa82414d284907a8256eb910826ddd86a91f263bc0d701caf973ccf95ff4113bfc63faafe4d25d79c1f69a8083bbc5be87d6bab905f76283290a52a32e16115a7c2b118687ed4720dbace617a0317557ed1b03e4a05d0", 0xce}, {&(0x7f0000000dc0)="9c0db91b388df4317f224508f18eacc123a23eec3e780e02a0f4c0d40372b745e5f7c222fecb388b5fb5161dff5101cf71719ad3258ff856ed9de89897fa473219983889c97def7b9369c4f3215f3da4dff17ba90283e82d8586ac8fc65025e9ad987f744e2beccf6124026c1a9412e7efabfb503c9f14fc3a27b4a26f7857a7", 0x80}], 0x4, &(0x7f0000000e80)={0x20, 0x117, 0x7, "834c8abd5dc12239bd95d3288d"}, 0x20, 0x4000}, {&(0x7f0000000ec0)={0x27, 0x0, 0x2, 0x7, 0x7, 0x1ff, "298b26c22070c2bbdf3cc6552c866206999273e9e19699341b72b3806c627e54dd14d4147b125d26b8d0a8ad9fe6237b6ca96d6abd8270f1503f40f5506e32"}, 0x60, &(0x7f0000001500)=[{&(0x7f0000000f40)="cdf10c1b7c990cbd0ed2d01236faa911d02580b330eb61539baa6ba30254f317d831329ecaab2eef723bdd3d005905dda74df92cbf553a186621d0f6f246b89afe687e25fc9d4a5aeb376a4d3ebc8685cf40b71f350fb4be6ddf87c81dfbd44c44abdcdd05a0f620446d63771278e18f3713257fe19f096999b45fb639ef453e4743cb41dd2852eddc2afa11c1b5f1932e", 0x91}, {&(0x7f0000001000)="5c893cd57f5d2c3471ea342c40cf139ea967444b7c685fed357b77cd1ce0ce3195500ccb33a92fc1a003f83439f24ac91c67d6c718810fe9bd06374ba1ca3ec6c7cdc602feffe3062483d2ef824dbe591299e77f1aa15d714a4edac0e07d6171d49e5f5712e2964375e0bac24c3cff3a52d8d279b662d41d26c3e366280ac1a21abeaccb844d7cce5f5cd1453039ce89efec4649d10656fb02787d26a87e5b64802b", 0xa2}, {&(0x7f00000010c0)="235345bcd5cb139776ae742fd6aab9e917601bfbc3bba01a9b753841342b3e8c6a5ab055304b3246f2e2f60c7388c3c10ed4489d206d8c9229a39eff046c2faba322799511c9e35fa985bf52072f02bf8652474fd1e98c7061dc03caa6a542696f94bf05e2152f370dc57f4b5e0d250204e4d9c4373a5915ed679312f893311ade8c625a500f8ab50c8cca81d1ef20c76ed1e464107c4fdb42fe7a887acc9991a7857d2bee518db5ae4d8b50842b872437", 0xb1}, {&(0x7f0000001180)="4c10b1eb30014d155ef5f48c015052d0fce028f5480bc70345b42d60a7fdb684335670ce5af029c6789bf3ea791db359ed1810ed8b105b358ea78e611d82984113dc3da8af8eac9dc301c25b2e2d0eccab261d0dcbf9c70eed967e582115a385fcca1c81c9a1aa6e3dfb1a2b4a30b3e2b354899227b6f1d14df239115d7c90aaff421b58c7a613e16ec7236d2cb1d69c913846bdc4c86e4a2ef4df6b88e123d29aee713058d544148d1f9524907c448e076be8f4ef86d8a11501917ad4bcd27c8c68e46fef2dfb8f001d7b0489cc01d599847f05f1cb6d3409", 0xd9}, {&(0x7f0000001280)="7d569edb3cdf479dda8c6d6a8a3b88d526250bd3a94ec493a784dca3db68a8c48cb947331d818061b950aa148d5aaae5516b2e630e795080ffceaab55aa9725cecef85cd48cafc09c479a0180f10e8d78f699eb97d678f6219240d909c3fb375f962dbba9139bada2b51d828fb90a58e4524a71b13025f8a6708a04685421b64b9a0785ca66b069b6f3cce666d44a861ef648b833fbf17588104f48341b6b2", 0x9f}, {&(0x7f0000001340)="5676c61a7d9353c9d1af7e1976878d2cdbec7b4572552750950028b7982ac428b44e1ab7e0c41828489a0b04a502bece9df89ead85e8dfcd041abf4709ac84ab780849a886836927c70dcc548efbd4841202c7bfaed752e63a6f17c3de8ad8d16a22432516a9a9", 0x67}, {&(0x7f00000013c0)="a039c47bc1f7ebafa51f3ff02299de75998dfa0f276e75dcbd35be2570ab4e83481dd217584cbe29484cb98d27399c0922b25cafc92a30669e678f3ee892e1a3488bc350e84e49d5dcd27f09958efa720730d856a973cdae36cc43d26093ac885c36d15afa768dc90b1eef6927b6a25d5483", 0x72}, {&(0x7f0000001440)="bffef42bc4ee8f8cb41eff3b79cf1cb40b70743ccf604ea6373f131a9ba5505fa5e8bedaaf8e7149aaca6c1e35a12b99b2c0438fd60708a4aefe5f570d7b9409266defc9b8ed22e4d3ed59", 0x4b}, {&(0x7f00000014c0)="c658d3f45f7437c5abbde03636308a5dc61862", 0x13}], 0x9, &(0x7f00000015c0)={0xf0, 0x113, 0x6, "378e2b5cd33bad3a5bf815000665eb78652e1144e317757d65c7a8363a310b3caf6efb5a89e2db7117dbf8667fa44d5ce5ca869e175098c667ae6c952fb18b8c6cfc7d47a62aadac484c6484d997a6d42ac84a912dbba9bb22c89c269eb7e67cca00c9ea1d6d800955c6eabc202a41a7872a86b52470599503f985ad9005fe7cb44776fcfa60ea563d3787f105fb5e1441a9ab4a8b80a8bad2cb2fb7ff68064879230c6d7c45ed5e366978a8add5bc0c39d8b83e39d824c7474f4f24027234b9fd5f65256912a795563b67acd2ab9a8e756c517d49b0325a7cd7faf0fc"}, 0xf0, 0x20040041}, {&(0x7f00000016c0)={0x27, 0x1, 0x0, 0x6, 0x7, 0x2, "0d7df9c85671bb33ad5445da668e770b0b772e778df3185452aa56b7383fc61266ef60ce64f533f0fe88b33b4dfb03bab1e7fd0b82621cfadd693324ff2f65", 0x16}, 0x60, &(0x7f0000001940)=[{&(0x7f0000001740)="2a94d4735619b813d56c2be62d900a40040e8ff692df60052990b8e6ec43ee01c61611d4c76724819bec389236cfa5f41593f374799212a89f2d6cf29005acbb20d096a5c07fa5c31d53aad26bf2f70319a7e256dbeee114ae313178dfc174fcbb2e803fdab2046cfebe0b560fb58bbd436db3c2ba567ffc591ba887ab9532693c723b42de989e7d2da5111c3e78706cb3d8e9fcd92b7da5dae680b7a56d46dfb9cf09498355eb6b3903d7d7446c6a2bc9796b289f613f202a4bf11461c043e84b5c5b1eea2cb39af4f0247b773d", 0xce}, {&(0x7f0000001840)="0a3d756b6284aa0c971985431b6343d91c13b36b67da7395bcc8284f72c078e60bdc3af1e2715ad29bc47095a024637389b9a10d984827f2b96dc530d119617b64f0cd89571f1dff4dd15af7717321b68174569ec8199110653f27e247ccd0dc382dedcc2ee7c8cff8d10219d5e6f68ddbfaa2e10ec1c4342b9a696fd8acd769cc19e20a44593d6af17e731dfd1fb3add5c9aaf3018c99fa2afc3141cadfe17dc483462a96d22fada54535dcc4dafb16d971ac4867e785fbd6d0f0fda890935493af72cacf9d99dc41e7bac78804f0156daab42b902ae5ab2260a4c412ea8bcd170672", 0xe3}], 0x2, 0x0, 0x0, 0x8011}, {&(0x7f0000001980)={0x27, 0x1, 0x1, 0x4, 0x3f22, 0x1000, "7f3d8715705c5f206bc5485b063445a79804a12d2607842a40fc8cf8c31aee93accf9723df6cbb5ea7fd3eaa04ef7a3813c707c71f06609f99aded1a1976ab", 0x37}, 0x60, &(0x7f0000001d80)=[{&(0x7f0000001a00)="a123044e29ac617c94da46ff977e8744553db095821acc", 0x17}, {&(0x7f0000001a40)="d4ca39692bebf2ae6b4cf9e525f3a67c1096ad9df96b300faf95a6d66b3e4070fcc2582fa995d8ac03273e23c13ccb5b895407b529b211e97430cba6f78f984bae4e176e1be6387c0582b9ef8e0a4eea3f5b1086b368c861f6aa64b164ea3970f26f93baed861453adbe8c1d97f7c485a20da5d916dd9b4065380fa5b94d57e024c6980180329b4d661b40eab003537a11f7c0bdcdfe6af4e7acf066c8cb24922f23152c04469ea3093e613ab3693a6040ed013907ec7cedc94c14fe77a14e25821173be2e18d4d0652d45b70c18f837841e8ce5a99912a06b48d8c6946fe5", 0xdf}, {&(0x7f0000001b40)="a05590bd29655843c48e8a2d68db5eca62da432b9ce43f689202c97430004221722d3a506ca4b0700d6926a81be4c146240c04f05c884f90b06c6edf94b41459bda057673061e0c8f6223a5b0bc9c71be0577c7befd01d7749f5a535936a24a3e6181a68daf3304101a8de257c65799517e666ede95151ec7847cb88ac30f8011f44b24dd1373aa282cd7d7dcd43b44cadfdac6cfa3251cc7139f261a1b8872fa69f03130edd0b45198c6a3d948277f7f646a7c5687812401757c421b09be2f87dbc939eee689d774044f9783eee61ccbdf1", 0xd2}, {&(0x7f0000001c40)}, {&(0x7f0000001c80)="2e76a75e1d66f16bd2ad5c6890", 0xd}, {&(0x7f0000001cc0)="d8e1157e14105185d39b046cc965530c709548cdd270fbe8d0e2c9f2ea8c27959d68a748066a88f330d5d7f64ef75adf1f44cc1142d837beeacd9f8c87a319840f2a076ba15608c64bb32ac74930bf9e03ba39becbfa507da4cc0a439b6077c9c8c43375a7b4ba75f9564e44814ad88c48e615aa57518295c8f16e1e9ff41e4624aa713a10da69bc216d5c70a68a89b35ccd89d104512fb3fe43d2599c559e4ad19e3a7204bdc6a69f19b0e35c81cde078ed0bbe", 0xb4}], 0x6, &(0x7f0000001e00)={0x1010, 0x112, 0x9, "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"}, 0x1010, 0x24000000}], 0x7, 0x8000)
r5 = syz_open_pts(r2, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:33:44 executing program 5:

03:33:44 executing program 5:

03:33:44 executing program 4:

03:33:44 executing program 5:

[  282.417991] IPVS: ftp: loaded support on port[0] = 21
[  283.907042] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.914162] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.921638] device bridge_slave_0 entered promiscuous mode
[  283.980892] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.987705] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.994602] device bridge_slave_0 entered promiscuous mode
[  284.002304] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.009152] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.016323] device bridge_slave_1 entered promiscuous mode
[  284.092964] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  284.101565] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.108013] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.115119] device bridge_slave_1 entered promiscuous mode
[  284.127258] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  284.169361] device bridge_slave_1 left promiscuous mode
[  284.175482] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.238659] device bridge_slave_0 left promiscuous mode
[  284.244181] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.026037] team0 (unregistering): Port device team_slave_1 removed
[  286.035840] team0 (unregistering): Port device team_slave_0 removed
[  286.046791] bond0 (unregistering): Releasing backup interface bond_slave_1
[  286.101512] bond0 (unregistering): Releasing backup interface bond_slave_0
[  286.176137] bond0 (unregistering): Released all slaves
[  286.221064] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  286.260743] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  286.312675] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  286.353438] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  286.378893] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  286.419452] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  286.644544] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  286.666393] team0: Port device team_slave_0 added
[  286.674178] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  286.683790] team0: Port device team_slave_0 added
[  286.744893] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  286.752232] team0: Port device team_slave_1 added
[  286.760258] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  286.774786] team0: Port device team_slave_1 added
[  286.898681] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  286.916720] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  286.949020] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  286.988870] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  286.996083] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  287.011468] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  287.038646] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  287.077098] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  287.090662] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  287.105954] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  287.115873] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  287.128695] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  287.143862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  287.203605] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  287.210947] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  287.238530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  287.612933] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.619470] bridge0: port 2(bridge_slave_1) entered forwarding state
[  287.626052] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.632460] bridge0: port 1(bridge_slave_0) entered forwarding state
[  287.639815] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  287.804705] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.811216] bridge0: port 2(bridge_slave_1) entered forwarding state
[  287.817830] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.824206] bridge0: port 1(bridge_slave_0) entered forwarding state
[  287.831516] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  288.285896] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  288.293127] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  289.578438] device bridge_slave_1 left promiscuous mode
[  289.583971] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.619046] device bridge_slave_0 left promiscuous mode
[  289.624511] bridge0: port 1(bridge_slave_0) entered disabled state
[  291.460073] team0 (unregistering): Port device team_slave_1 removed
[  291.471043] team0 (unregistering): Port device team_slave_0 removed
[  291.480839] bond0 (unregistering): Releasing backup interface bond_slave_1
[  291.522167] bond0 (unregistering): Releasing backup interface bond_slave_0
[  291.595384] bond0 (unregistering): Released all slaves
[  292.452754] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.619141] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.749400] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  292.919401] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  292.959423] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  292.965673] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  292.980640] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  293.125796] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  293.132060] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  293.146596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  293.233130] 8021q: adding VLAN 0 to HW filter on device team0
[  293.305797] 8021q: adding VLAN 0 to HW filter on device team0
03:33:56 executing program 5:

03:33:56 executing program 4:

03:33:56 executing program 0:

03:33:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x80000000})
epoll_create1(0x80000)
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x400000, 0x0)
ioctl$BLKRAGET(r3, 0x1263, &(0x7f0000000240))
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:33:56 executing program 1:
r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
getitimer(0x0, &(0x7f00000005c0))
gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETAW(r3, 0x5407, &(0x7f0000000380)={0x0, 0x6, 0x4, 0x7ff, 0x0, 0x9, 0xf1, 0xfffffffffffffffa, 0x9, 0x5})
ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000a7050000090000000000000001000000000000000300000000000000ffffff7f000000000600000000000000010001000000000000020000000000000100007fffffffed05000000000000000200000000000000f7ffffff00000000ffffffff0000000009000000000000000100000000000000"])
poll(&(0x7f0000000100)=[{r3}], 0x1, 0xfffffffffffffffa)
ioctl$TCSETS(r3, 0x40045431, &(0x7f00003b9fdc))
syz_open_pts(r3, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
getresgid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000200)=<r4=>0x0)
getgroups(0x8, &(0x7f0000000240)=[<r5=>0xffffffffffffffff, 0xee01, 0xee00, 0xee01, 0xee00, 0xee00, 0xee01, 0xee01])
lstat(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0, <r8=>0x0}, &(0x7f00000004c0)=0xc)
lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getgroups(0x3, &(0x7f0000000600)=[0xee00, 0xee00, <r10=>0xffffffffffffffff])
lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setgroups(0x8, &(0x7f0000000700)=[r4, r5, r6, r7, r8, r9, r10, r11])
fstat(r2, &(0x7f0000000140))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r12=>0x0})
futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, &(0x7f000000b000)={r12}, &(0x7f0000048000), 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f000000d000)={0x0, 0x7f}, &(0x7f0000048000), 0x0)

03:33:56 executing program 2:

03:33:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000001c0), 0xffffffffffffffff)
sched_setscheduler(0x0, 0x5, &(0x7f0000000200))
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000007c0)=0x80)
getpeername$netlink(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000140)=0xc)

03:33:56 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca944f64009400050028925aa8000000000000008000f0fffeffff09000000fff5dd00000010000100000c0900fcff0000040e05a5", 0x58}], 0x1)

03:33:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140)=0x100, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x521, 0x0, 0x0, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8}]}, 0x1c}}, 0x0)

03:33:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c)
sendto$inet6(r1, &(0x7f0000000100), 0xfe98, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca944f64009400050028925aa8000000000000008000f0fffeffff09000000fff5dd00000010000100000c0900fcff0000040e05a5", 0x58}], 0x1)

03:33:56 executing program 4:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
rt_sigprocmask(0x3, &(0x7f0000000040)={0x7}, &(0x7f00000000c0), 0x8)
perf_event_open(&(0x7f0000348f88)={0x2, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)

03:33:56 executing program 2:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-vsock\x00', 0x2, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x800, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r1, 0x11, 0x1, &(0x7f00000000c0)=""/78, &(0x7f0000000140)=0x4e)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000000))
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, &(0x7f0000000080))

03:33:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140)=0x100, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x521, 0x0, 0x0, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8}]}, 0x1c}}, 0x0)

03:33:56 executing program 0:
r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x80000)
dup(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001c80)={&(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000680), 0x0, &(0x7f0000000340)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000780)=""/4096, 0x1000}, &(0x7f0000001b80)=[{&(0x7f0000001940)=""/105, 0x69}], 0x1}}], 0x48}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
r4 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r4, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x0, @multicast2}, 0x4}}, 0x26)
sendmmsg(r4, &(0x7f0000005fc0), 0x800000000000059, 0x0)
accept4$nfc_llcp(r0, 0x0, &(0x7f00000001c0), 0x80000)

03:33:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140)=0x100, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x521, 0x0, 0x0, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8}]}, 0x1c}}, 0x0)

[  294.535429] rdma_op 000000006d5c2bba conn xmit_rdma           (null)
03:33:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x10000000})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  294.864135] rdma_op 000000001915cf07 conn xmit_rdma           (null)
03:33:57 executing program 1:
r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
getitimer(0x0, &(0x7f00000005c0))
gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETAW(r3, 0x5407, &(0x7f0000000380)={0x0, 0x6, 0x4, 0x7ff, 0x0, 0x9, 0xf1, 0xfffffffffffffffa, 0x9, 0x5})
ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000a7050000090000000000000001000000000000000300000000000000ffffff7f000000000600000000000000010001000000000000020000000000000100007fffffffed05000000000000000200000000000000f7ffffff00000000ffffffff0000000009000000000000000100000000000000"])
poll(&(0x7f0000000100)=[{r3}], 0x1, 0xfffffffffffffffa)
ioctl$TCSETS(r3, 0x40045431, &(0x7f00003b9fdc))
syz_open_pts(r3, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
getresgid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000200)=<r4=>0x0)
getgroups(0x8, &(0x7f0000000240)=[<r5=>0xffffffffffffffff, 0xee01, 0xee00, 0xee01, 0xee00, 0xee00, 0xee01, 0xee01])
lstat(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0, <r8=>0x0}, &(0x7f00000004c0)=0xc)
lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getgroups(0x3, &(0x7f0000000600)=[0xee00, 0xee00, <r10=>0xffffffffffffffff])
lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setgroups(0x8, &(0x7f0000000700)=[r4, r5, r6, r7, r8, r9, r10, r11])
fstat(r2, &(0x7f0000000140))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r12=>0x0})
futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, &(0x7f000000b000)={r12}, &(0x7f0000048000), 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f000000d000)={0x0, 0x7f}, &(0x7f0000048000), 0x0)

03:33:57 executing program 2:
r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
r1 = dup(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0x40046208, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000), 0x0, 0xfffffdfd, &(0x7f0000000540)})
ioctl$UI_DEV_CREATE(r1, 0x5501)
r4 = mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000006, 0x4010, r1, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000000)={<r5=>0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000002c0)={0x50, 0x0, &(0x7f0000000180)=[@free_buffer={0x40086303, r4}, @transaction={0x40406300, {0x2, 0x0, 0x1, 0x0, 0x10, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000080)=[@flat={0x776a2a85, 0x101, r5, 0x1}, @fd={0x66642a85, 0x0, r0, 0x0, 0x2}, @flat={0x736a2a85, 0x100, 0x0, 0x4}], &(0x7f0000000140)=[0x38, 0x20, 0x30]}}], 0x8f, 0x0, &(0x7f0000000200)="807849b519206bc26fea29b3e23362954a251d46c95456457539bd90522c84d98ef7eb50b6f3307dcbe312bcdebd77a229b33eab4470d1137c1998d3c6432c6fa632cbe4d8fe8b4f65a11e0421dccefe810af82be7031f361062caff6df6e68397761dc94a40ac96afcc39b3a9098a4df53695a8cdef73aa4f11854b0132266bed78efdc80d4a29f0bdbd458f6ece7"})
flock(r2, 0x2)

03:33:57 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000cab5b3)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000000)={{}, 0x0, 0x0, 0xfffffffffffffffe, {}, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbf00]})
accept4$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @host}, 0x10, 0x80800)

03:33:57 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x0, 0x0)
setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000140)=0x100, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x521, 0x0, 0x0, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8}]}, 0x1c}}, 0x0)

03:33:57 executing program 0:
r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x60, 0x80000)
dup(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001c80)={&(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000680), 0x0, &(0x7f0000000340)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000780)=""/4096, 0x1000}, &(0x7f0000001b80)=[{&(0x7f0000001940)=""/105, 0x69}], 0x1}}], 0x48}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
r4 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r4, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x0, @multicast2}, 0x4}}, 0x26)
sendmmsg(r4, &(0x7f0000005fc0), 0x800000000000059, 0x0)
accept4$nfc_llcp(r0, 0x0, &(0x7f00000001c0), 0x80000)

03:33:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
r3 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
ioctl$DRM_IOCTL_SET_MASTER(r3, 0x641e)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

[  295.460656] binder: 13214:13215 BC_FREE_BUFFER u0000000000000000 no match
[  295.468431] binder: 13214:13215 got transaction to invalid handle
[  295.489849] binder: 13214:13215 transaction failed 29201/-22, size 72-24 line 2834
03:33:57 executing program 4:
r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/nullb0\x00', 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r1, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
getitimer(0x0, &(0x7f00000005c0))
gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETAW(r3, 0x5407, &(0x7f0000000380)={0x0, 0x6, 0x4, 0x7ff, 0x0, 0x9, 0xf1, 0xfffffffffffffffa, 0x9, 0x5})
ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f0000000740)=ANY=[@ANYBLOB="07000000a7050000090000000000000001000000000000000300000000000000ffffff7f000000000600000000000000010001000000000000020000000000000100007fffffffed05000000000000000200000000000000f7ffffff00000000ffffffff0000000009000000000000000100000000000000"])
poll(&(0x7f0000000100)=[{r3}], 0x1, 0xfffffffffffffffa)
ioctl$TCSETS(r3, 0x40045431, &(0x7f00003b9fdc))
syz_open_pts(r3, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
getresgid(&(0x7f00000000c0), &(0x7f00000001c0), &(0x7f0000000200)=<r4=>0x0)
getgroups(0x8, &(0x7f0000000240)=[<r5=>0xffffffffffffffff, 0xee01, 0xee00, 0xee01, 0xee00, 0xee00, 0xee01, 0xee01])
lstat(&(0x7f0000000280)='./file0/file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0, <r8=>0x0}, &(0x7f00000004c0)=0xc)
lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getgroups(0x3, &(0x7f0000000600)=[0xee00, 0xee00, <r10=>0xffffffffffffffff])
lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setgroups(0x8, &(0x7f0000000700)=[r4, r5, r6, r7, r8, r9, r10, r11])
fstat(r2, &(0x7f0000000140))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000fd7ff0)={0x77359400}, &(0x7f0000048000), 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r12=>0x0})
futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, &(0x7f000000b000)={r12}, &(0x7f0000048000), 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f000000d000)={0x0, 0x7f}, &(0x7f0000048000), 0x0)

03:33:57 executing program 5:
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x7434, 0x8000000000000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
socket$kcm(0xa, 0x5, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xc6)
openat$cgroup_ro(r0, &(0x7f0000000080)="2f67726f75702e73746174003c23fb572a1f0294e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0)
sysfs$2(0x2, 0x1ff, &(0x7f0000000000)=""/101)

[  295.505298] rdma_op 00000000e5ec353f conn xmit_rdma           (null)
03:33:57 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x402)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x5, 0x1, 0x2, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f00000000c0)={0x4, 0x2})
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000100)={0x7ff, <r2=>0x0, 0x10003, 0x8})
ioctl$DRM_IOCTL_AGP_UNBIND(r0, 0x40106437, &(0x7f0000000140)={r2, 0x4})

03:33:57 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r1, 0x5457, &(0x7f0000000040))
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @mcast2, 0x3}, 0x1c)
syz_emit_ethernet(0x3e, &(0x7f0000694ffe)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "06f526", 0x8, 0x11, 0x0, @empty, @mcast2, {[], @udp={0x0, 0x4e22, 0x8}}}}}}, &(0x7f0000775000))

03:33:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000000c0)=0x1000000002)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vga_arbiter\x00', 0x400000, 0x0)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000480)={<r2=>0x0, 0x58, "f64d97e8e7795531ef90f5b1c308194b5adce5b86eb03db74bf979f4e74d3135ba07aba7266d7804b96ab4c2470e43239c623494213233aa697f93c9b2b8422d71390e016803853ee080dd6008942d703be6b8ade612e2d7"}, &(0x7f0000000500)=0x60)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000540)={r2, 0x81, 0x9}, &(0x7f0000000580)=0x8)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000140))
r4 = gettid()
socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000180)={<r5=>0xffffffffffffffff})
readahead(r5, 0x2, 0xc62)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@multicast2}, 0x0, @in=@rand_addr}}, &(0x7f00000001c0)=0xe8)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000240)={'team_slave_1\x00', r6})
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r0})
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r7 = syz_open_pts(r0, 0x0)
syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x6, 0x180)
ioctl$TCXONC(r7, 0x540a, 0x0)

03:33:57 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="d98c5b0cb8614fcff9bfb780b73f93a60000000000", 0x15)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="46db71d34b7d9dce7801757f6d178122e30cae779e934a9f3ffb30f3b118d7a05408e19451853d47dba548d9e71d85e9a04853a37b83a2903fc648ac58eadf84242dfa4bfdf999bb349ffdfe42ceb33b0a7c2163a23db29ddd16a3b283bdaa703812414d8b94b23d64f008804f", 0x6d)

[  295.895242] QAT: Invalid ioctl
[  295.902147] QAT: Invalid ioctl
03:33:58 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000000)="0a5cc80700315f85715070")
fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x20400, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000340)={<r3=>0x0, 0xa9}, &(0x7f0000000380)=0x8)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000003c0)=@assoc_value={r3, 0x10000}, &(0x7f0000000400)=0x8)
setfsuid(r1)
accept4$vsock_stream(0xffffffffffffff9c, &(0x7f0000000100)={0x28, 0x0, 0x0, @host}, 0x10, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'ip_vti0\x00', &(0x7f0000000200)=@ethtool_flash={0x33, 0x14, "9109919e6e1c58de27d7851f7f36c64ee5047cccf496df00ae20b137252f41bcb6b82d02482c22fa268ded9078480b465235eb91a61f00dd04c534bd2d4a1b181f90c23b7deafe45b87fab02e8b689d99ff7193a542dbdc28341946c359c938943d5a3e3ccdfd5377c14c930a12c3d5d2bde6d9ff01542cff8df23c64c303703"}})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="04100072b557650216197b6e", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000080)=0x14)
getpeername$unix(r2, &(0x7f0000000480), &(0x7f0000000040)=0x6e)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto(r4, &(0x7f00000000c0), 0x26e, 0x0, &(0x7f0000000180)=@nl=@unspec, 0x80)

03:33:58 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000180)='/dev/loop#\x00', 0x0, 0x0)
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f0000000280))
r1 = socket$rds(0x15, 0x5, 0x0)
getsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000000), &(0x7f0000000040)=0x10)

03:33:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000000)="0f019d2c00f2f30f330f0197850066b9cf09000066b80a00000066ba000000000f300f18f6b8ca000f00d00fc75b1c0f070f01df2e36660fc732", 0x3a}], 0x1, 0x0, &(0x7f0000000300), 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x10040, 0x128)
setsockopt$inet_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000100)='tls\x00', 0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:58 executing program 4:
r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f00000000c0)={0x6, 0x0, 0x4})

03:33:58 executing program 2:
r0 = eventfd2(0x0, 0x1000000)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000d4a000)={0x40000013})
writev(r0, &(0x7f00000007c0)=[{&(0x7f0000000740)="77b2770dbfdb54f4", 0x8}], 0x1)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r1, &(0x7f0000000300)={0x80000000000009})
r2 = socket$inet(0x2, 0x1, 0x0)
r3 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r3, 0x8912, &(0x7f00000005c0)="0a5cc80700315f85714070")
r4 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r4, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000000107031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0)
clock_gettime(0x2, &(0x7f0000000280))
mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x2, 0x8973, r2, 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x8400, 0x0)
personality(0xc)
r6 = socket$inet6(0xa, 0x80006, 0x6)
ioctl(r6, 0x1000004000008912, &(0x7f0000000100)="295ee1311f16f477671070")
r7 = epoll_create1(0x80006)
r8 = socket(0x1d, 0x0, 0x1116)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000000)={0xfffffffe8000201f})
setsockopt$inet_udp_int(r8, 0x11, 0x6f, &(0x7f0000000100)=0x7, 0x4)
pipe(&(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r10, 0x84, 0x71, &(0x7f00000001c0)={<r11=>0x0, 0x7}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=r11, 0x4)
ioctl$BLKSECDISCARD(r9, 0x127d, &(0x7f00000002c0)=0x6)
r12 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$getown(r12, 0x9)
r13 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, &(0x7f0000000000)={0x0, 0x6, 0x4, 0x0, 0x1, 0x0, 0x3})
mq_notify(r13, &(0x7f0000000140)={0x0, 0x2e, 0x1, @thr={&(0x7f0000000040)="7be4d6b00202ca53878499e01146863a2e7c8ca45e1910e5eba6453bb6f234b5a1b1bca731970a74bfc8e1793749ea18156c9b8a615bfa2f506fcf44060d36e38f66f111149434d5139e416358ea33f34b4507cdc299f7868d5f186e6bd604", &(0x7f00000000c0)="3c5d8da40d1477844fc4c160b6004a90edc520a6935a49cf5da4c2b525d13146ed27d429c762a4b0e9aaed82555cd1ae"}})
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x101000, 0x0)
preadv(r7, &(0x7f0000000440)=[{&(0x7f0000000340)=""/249, 0xf9}], 0x1, 0x0)
mq_timedsend(r13, &(0x7f00000e6000), 0x0, 0xe7, &(0x7f0000000480))

[  296.327883] netlink: 5 bytes leftover after parsing attributes in process `syz-executor2'.
03:33:58 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))
getuid()

03:33:58 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x100008912, &(0x7f0000000100)="025cc80700145f8f764070")
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000140), &(0x7f0000000180)=0x4)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000100)=0x4, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0)
syz_mount_image$ntfs(&(0x7f00000001c0)='ntfs\x00', &(0x7f0000000200)='./file0\x00', 0x8, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000780)="aefdd9f9deb535a7497880198acaaf0035ddc99b9db584355703dbb940e97c", 0x1f, 0x10000}], 0x2000, &(0x7f0000000240)=ANY=[@ANYBLOB="756d61736b3d30305b2f350e30303030303030303030303030303030342c472e9aff00"])
socket(0xa, 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="0a5cc8070031")
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vhost-vsock\x00', 0x2, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f00000000c0)={0x3, 0x7})
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x82002, 0x0)
getsockname$inet(r3, &(0x7f0000000900)={0x2, 0x0, @dev}, &(0x7f0000000940)=0x70)

03:33:58 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x20000, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r4, 0x10e, 0x5, &(0x7f00000000c0)=0xfffffffffffffffb, 0x4)

03:33:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000540)={&(0x7f0000000400), 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2000000007000100000000000000000002000000000000000000000000000000"], 0x20}}, 0x0)
r1 = accept(r0, &(0x7f0000000240)=@sco, &(0x7f00000002c0)=0x3f8)
getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f00000000c0)=0x80000000, &(0x7f0000000100)=0x4)
ioctl$EVIOCGVERSION(0xffffffffffffffff, 0x80044501, &(0x7f0000000180)=""/164)

[  296.482310] netlink: 5 bytes leftover after parsing attributes in process `syz-executor2'.
[  296.522504] *** Guest State ***
[  296.538193] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
03:33:58 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r0, &(0x7f00000006c0)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "8811888754a539d39f2bd6a40fa80cc00c27860525fec2541e21ccf67e1d7b55cabe9e068dd58ce565aa9a9d325e01c7627ffe7a54cdbd77b300", 0x2e}, 0x259)
listen(r0, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000180)={0x0, 0x2710}, 0x100000267)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000000)={0x1a, 0x1, 0x0, 0x0, 0x0, 0xff, @dev}, 0x10)
recvmmsg(r1, &(0x7f0000001140)=[{{&(0x7f0000000100)=@alg, 0x80, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=""/234, 0xea, 0x6}, 0xfffffffffffffff9}, {{&(0x7f00000002c0)=@pppol2tp={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000340)=""/77, 0x4d}, {&(0x7f00000003c0)=""/167, 0xa7}, {&(0x7f0000000480)=""/23, 0x17}, {&(0x7f00000004c0)=""/27, 0x1b}], 0x4, &(0x7f0000000540)=""/175, 0xaf, 0x1}, 0xc00000}, {{&(0x7f0000000600)=@nfc_llcp, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000680)=""/223, 0xdf}, {&(0x7f0000000780)=""/57, 0x39}, {&(0x7f00000007c0)=""/72, 0x48}, {&(0x7f0000000840)=""/30, 0x1e}, {&(0x7f0000000880)=""/132, 0x84}, {&(0x7f0000000940)=""/45, 0x2d}, {&(0x7f0000000980)=""/116, 0x74}, {&(0x7f0000000a00)}, {&(0x7f0000000a40)=""/178, 0xb2}, {&(0x7f0000000b00)=""/243, 0xf3}], 0xa, &(0x7f0000000cc0)=""/53, 0x35, 0x80000000}, 0x5}], 0x3, 0x3, &(0x7f0000001240))
socket$pppoe(0x18, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={[], [], @broadcast}}, 0x1c)
sendmmsg(r1, &(0x7f0000001ec0)=[{{&(0x7f0000000080)=@nfc={0x27, 0x1411}, 0x80, &(0x7f0000000200), 0x0, &(0x7f0000000240)}}, {{&(0x7f0000001b00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0xf, &(0x7f0000001e40)}}], 0x2, 0x0)
getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f0000001f40)=""/4096, &(0x7f0000000040)=0x1000)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000a00), &(0x7f0000000e80)=0x4)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000d00)={<r3=>0x0, @in6={{0xa, 0x4e20, 0x100, @empty, 0x100000000}}, 0x5bb5, 0x3, 0x101, 0x28e, 0x2}, &(0x7f0000000dc0)=0x98)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000e00)={r3, 0x2, 0x1}, 0x8)

[  296.585536] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
03:33:58 executing program 2:
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000200)={{{@in=@local, @in=@remote}}, {{@in6=@loopback}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0xfffffffffffffffe}}, 0xe8)

[  296.635859] CR3 = 0x0000000000000000
03:33:58 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8911, &(0x7f0000000100)="0a5cc80700315f8571507091638cf9fd0a60a6092b317a1b8c3e3c608b4310b87f1a5da2272f88153474b13b536cddd2c3748fc570c3c954ee408d53b2de6b8fa98840dc5964759e47121191157f2e6c1010eb85a6536ae3362f9906a6e28949be7c7eb22a8814cd0748c573e3d843f4d0c98d512dd11b3235db62d9aefea25ddec6ff8db0a23caf4d60ce7f11e48d3d81233bf8deee893e2a53ec94b741a2a2a9fba725d3b498865ec2385cadc6714aab127eb2808f85576e7da265570d5edbcb4906af54648ca04366857b3176d1f5482ce4e0e492b56f1af9692937df4af15bb3f0d0a56267911b2b4b0b9e194f8309e15c7b8a565a5d7cc6ef70ba9b6352875c2db79c1112923b97e5dac14deb887c62c84302dfc0c3689f693b649065afffbe52763bfffd9f235d62171bc535ad7d08")
getpeername$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, &(0x7f00000000c0)=0x1c)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @rand_addr}, {}, 0x14, {0x2, 0x0, @broadcast}, 'veth0_to_bond\x00'})

03:33:58 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x6, 0x4000)
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000000)=""/43, 0x2b}], 0x1)
socketpair$unix(0x1, 0x202, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$inet_dccp_int(r0, 0x21, 0x11, &(0x7f0000000240)=0x8, 0x4)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$int_in(r0, 0x800000c0045009, &(0x7f00000000c0)=0x10)
ioctl$TCGETA(r0, 0x5405, &(0x7f00000002c0))
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000100)={{{@in6=@ipv4={[], [], @remote}, @in=@multicast1}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in=@remote}}, &(0x7f0000000200)=0xe8)
ioctl$int_in(r0, 0x80000040045010, &(0x7f0000000080))
signalfd(r1, &(0x7f0000000280)={0x7fffffff}, 0x8)

[  296.671276] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  296.707555] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  296.733933] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  296.762051] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  296.775598] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:58 executing program 2:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x8000, 0x0)
write$FUSE_WRITE(r0, &(0x7f0000000080)={0x18, 0x0, 0x1, {0x6fd}}, 0x18)
r1 = memfd_create(&(0x7f0000000100)='/dev/vhci\x00', 0x0)
r2 = syz_open_dev$sndseq(&(0x7f00000001c0)='/dev/snd/seq\x00', 0x0, 0x82)
r3 = dup2(r2, r1)
getitimer(0x1, &(0x7f0000000040))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000003c0)={0x0, 0x0, 0x0, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"})
write$P9_RSTAT(r3, &(0x7f0000000200)=ANY=[@ANYBLOB="72ff0100000000006b000000000000400000000000000000b8680000"], 0x1c)
write$P9_RSTAT(r3, &(0x7f0000000240)={0x13a, 0x7d, 0x0, {0x0, 0x133, 0x20, 0x0, {0x83}, 0x0, 0x0, 0x0, 0x0, 0x40, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d", 0x40, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d", 0x40, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d", 0x40, "9ec77a8c5ae95ec8672c93340f643a664f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa8faf8fb574dbcfa6dc4d"}}, 0x13a)
ioctl$EVIOCRMFF(r3, 0x40044581, &(0x7f00000000c0))

03:33:58 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x15, 0x80005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x5)

[  296.809790] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  296.832653] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:58 executing program 4:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x100008912, &(0x7f0000000100)="025cc80700145f8f764070")
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000140), &(0x7f0000000180)=0x4)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000100)=0x4, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0)
syz_mount_image$ntfs(&(0x7f00000001c0)='ntfs\x00', &(0x7f0000000200)='./file0\x00', 0x8, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000780)="aefdd9f9deb535a7497880198acaaf0035ddc99b9db584355703dbb940e97c", 0x1f, 0x10000}], 0x2000, &(0x7f0000000240)=ANY=[@ANYBLOB="756d61736b3d30305b2f350e30303030303030303030303030303030342c472e9aff00"])
socket(0xa, 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="0a5cc8070031")
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vhost-vsock\x00', 0x2, 0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$BLKRESETZONE(r2, 0x40101283, &(0x7f00000000c0)={0x3, 0x7})
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x82002, 0x0)
getsockname$inet(r3, &(0x7f0000000900)={0x2, 0x0, @dev}, &(0x7f0000000940)=0x70)

03:33:58 executing program 3:
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.upper\x00', &(0x7f0000000380)={0x0, 0xfb, 0x1015, 0x4, 0x100, "ae2be2417ba18ea58c95f36d0843867a", "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"}, 0x1015, 0x1)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
fcntl$getflags(r0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ioctl$VT_GETMODE(r0, 0x5601, &(0x7f00000001c0))
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
ptrace(0x421f, r2)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  296.874950] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  296.908972] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  296.953596] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  296.969525] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.004073] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  297.017865] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.028684] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  297.036362] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  297.044408] Interruptibility = 00000000  ActivityState = 00000000
[  297.056112] *** Host State ***
[  297.060090] RIP = 0xffffffff81212522  RSP = 0xffff88018b99f350
[  297.066852] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  297.075962] FSBase=00007f24c9115700 GSBase=ffff8801dac00000 TRBase=fffffe0000033000
[  297.092379] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  297.099147] CR0=0000000080050033 CR3=00000001c19a3000 CR4=00000000001426f0
[  297.106474] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  297.113904] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  297.131654] *** Control State ***
[  297.139803] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  297.149905] EntryControls=0000d3ff ExitControls=002fefff
[  297.155859] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  297.163922] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  297.171567] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  297.178607]         reason=80000021 qualification=0000000000000000
[  297.189628] IDTVectoring: info=00000000 errcode=00000000
[  297.198122] TSC Offset = 0xffffff5eaa9c0e98
[  297.202661] EPT pointer = 0x000000019560001e
03:33:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))
getuid()

03:33:59 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x8001, 0x0)
ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000140)=""/147)
sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480), 0xc, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000002200010000000000deffffff0500000023504735265f6d5a49441e06a1f70f7251927d150cf224024107242321a0ad7e753fcad4b2bbb5"], 0x14}}, 0x0)
r2 = dup(r0)
setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000100), 0x1)

03:33:59 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x15, 0x80005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x5)

03:33:59 executing program 4:
r0 = socket$l2tp(0x18, 0x1, 0x1)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetlb.2MB.usage_ir_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000000c0)={0x20})
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r1, 0x2)
r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000380), 0x10076)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x1732)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0})
r3 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x108000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x59c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup2(r3, r5)
stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, <r7=>0x0}, &(0x7f00000002c0)=0xc)
lchown(&(0x7f0000000100)='./file0\x00', r6, r7)
ioctl$int_out(r0, 0x5460, &(0x7f0000000080))

[  297.355269] *** Guest State ***
[  297.360809] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  297.373263] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  297.382947] CR3 = 0x0000000000000000
[  297.386907] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  297.393500] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  297.400112] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  297.406800] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.414868] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.423264] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.431338] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.439473] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.448138] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.456174] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  297.464330] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.472638] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  297.480794] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.488893] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  297.495745] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  297.503252] Interruptibility = 00000000  ActivityState = 00000000
[  297.509617] *** Host State ***
[  297.512823] RIP = 0xffffffff81212522  RSP = 0xffff88018b99f350
[  297.518849] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  297.525252] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  297.533177] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  297.539154] CR0=0000000080050033 CR3=00000001c3cb7000 CR4=00000000001426e0
[  297.546251] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  297.553073] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  297.559201] *** Control State ***
[  297.568088] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  297.576830] EntryControls=0000d3ff ExitControls=002fefff
[  297.583719] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  297.591881] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
03:33:59 executing program 1:
r0 = socket$pptp(0x18, 0x1, 0x2)
socket$l2tp(0x18, 0x1, 0x1)
r1 = socket(0xa, 0x3, 0x3f)
socket$bt_bnep(0x1f, 0x3, 0x4)
write$nbd(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="67446698010000000100010002000000f244bb287f2fa591f4a31791668c4cab58bcd4be1784c4f33aa201fd13a8e1c8f1630b9cb6ee36764fdcc3b94e44e587efe3c9ca4b09000000092cc6577e73fcf4a391195da95493354bfc8d6f2e5d34cb156ef6a36a42e7e790999a425a"], 0x74)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
write$USERIO_CMD_REGISTER(r2, &(0x7f00000000c0)={0x0, 0x1ffc0}, 0x2)
getpeername(r0, &(0x7f0000000140)=@pppol2tp, &(0x7f00000001c0)=0x80)

03:33:59 executing program 2:
syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
setsockopt(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000003c0)="5e2c19b26cab8e9c71a7dc9e335035d022f83f4e", 0x14)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$kcm(0x10, 0x3, 0x0)
recvmsg$kcm(r1, &(0x7f0000001740)={&(0x7f0000001600)=@sco, 0x80, &(0x7f00000016c0), 0x0, &(0x7f0000001700)=""/62, 0x3e}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000280)="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", 0xcfa}], 0x1, &(0x7f0000000000)}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0)
set_tid_address(&(0x7f0000000180))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={"00ac720000000000ec973f820f7c4000"})
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000001380)={&(0x7f0000000040)=@in6, 0x80, &(0x7f0000001300)}, 0x0)
mq_timedsend(0xffffffffffffffff, &(0x7f0000001100), 0x0, 0x0, &(0x7f0000001140))
socketpair$inet6_sctp(0xa, 0x0, 0x84, &(0x7f0000000100))
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, &(0x7f0000000840), 0x4)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001000)=@filter={'filter\x00', 0xe, 0x1, 0x0, [0x0, 0x200005c0, 0x2000073c, 0x2000076c], 0x0, &(0x7f0000000000), &(0x7f00000005c0)=ANY=[]}, 0x78)
syz_open_dev$admmidi(&(0x7f00000000c0)='/dev/admmidi#\x00', 0x100, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(0xffffffffffffffff, 0x400442c8, &(0x7f00000007c0)={0xffffffffffffffff, 0x0, 0xfffffffffffffff9})
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000880)=ANY=[]}], 0x1, 0x80)

03:33:59 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x15, 0x80005, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x5)

03:33:59 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000002180), 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{&(0x7f0000000140)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000640)=""/48, 0x30}, {&(0x7f0000000680)=""/105, 0x69}, {&(0x7f0000000700)=""/4, 0x4}, {&(0x7f0000000800)}, {&(0x7f0000000940)=""/221, 0xdd}], 0x5, &(0x7f0000000ac0)=""/221, 0xdd, 0xff}, 0x7fff}, {{&(0x7f0000000cc0)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000840)=""/52, 0x34}, {&(0x7f0000000d40)=""/197, 0xc5}, {&(0x7f00000008c0)=""/51, 0x33}], 0x3, &(0x7f0000000f40)=""/161, 0xa1, 0x9}, 0x4}], 0x2, 0x0, &(0x7f0000001000)={0x77359400})
r1 = accept$alg(r0, 0x0, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x0, 0x0)
recvmmsg(r1, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x34e, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400})

[  297.607497] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  297.627272]         reason=80000021 qualification=0000000000000000
03:33:59 executing program 0:
r0 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x1, 0x40000)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e22, @multicast1}, @in={0x2, 0x4e23, @broadcast}], 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000200)={0x2, {{0x2, 0x0, @multicast2}}}, 0x149)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000080), 0x4)

[  297.657054] IDTVectoring: info=00000000 errcode=00000000
[  297.670708] TSC Offset = 0xffffff5e39f92147
[  297.679695] EPT pointer = 0x00000001d8ba501e
[  297.689696] netlink: 3298 bytes leftover after parsing attributes in process `syz-executor2'.
03:33:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))
getuid()

[  297.736783] netlink: 3298 bytes leftover after parsing attributes in process `syz-executor2'.
[  297.768632] netlink: 3298 bytes leftover after parsing attributes in process `syz-executor2'.
03:33:59 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="5044ad2cebaa8d3f4b519862c844c3d422e5f9002ede9f1fae003218bb99502c17edfcca41fe9cf3a6f3ba0249ee2168efd7e9ae8a88736454654bdea2b8c296c23409dc5b7d20c656d9e47a0f0d2d5b0acf372df3da844a3a58c8b72e9423418e81cb6076d46b5a6d508d2ca8f16e373b752028f3df78995adb71894b8f696c75736bdeaea294ce68e307de8509f42422c74581cc2ac9f4b9e2fe0f7ec1a2c1096964d3b520cf48b25b689f5bf63c2f2330f17c82b84331f9e2a9d8f48b9589a13b25fb08119f955d6cbdf533ab2e9e32f83ccea251169a291c55a78b59902f6494b2c2e62d5744641250f385484d638f2862a72fceb6a500db66d746aa87b5")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  297.853387] kernel msg: ebtables bug: please report to author: Entries_size never zero
[  297.906159] *** Guest State ***
[  297.909733] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  297.918700] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  297.927660] CR3 = 0x0000000000000000
[  297.931490] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  297.938806] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  297.944988] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  297.952139] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.960275] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.960291] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.960305] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.960325] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  297.960338] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  298.001642] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  298.009970] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  298.017982] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  298.025958] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  298.033971] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  298.040405] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  298.047844] Interruptibility = 00000000  ActivityState = 00000000
[  298.054096] *** Host State ***
[  298.057288] RIP = 0xffffffff81212522  RSP = 0xffff88018f007350
[  298.063346] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  298.069798] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000033000
[  298.077642] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  298.083591] CR0=0000000080050033 CR3=00000001c1b70000 CR4=00000000001426e0
[  298.090939] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  298.097611] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  298.103705] *** Control State ***
[  298.107158] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  298.113857] EntryControls=0000d3ff ExitControls=002fefff
[  298.119340] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  298.126347] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  298.134011] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  298.142846]         reason=80000021 qualification=0000000000000000
[  298.150139] IDTVectoring: info=00000000 errcode=00000000
[  298.155798] TSC Offset = 0xffffff5dec6598b1
[  298.160718] EPT pointer = 0x00000001bf2e801e
[  298.809977] attempt to access beyond end of device
[  298.815067] loop1: rw=1, want=130, limit=112
[  298.819681] Buffer I/O error on dev loop1, logical block 129, lost async page write
[  298.827490] attempt to access beyond end of device
[  298.832442] loop1: rw=1, want=131, limit=112
[  298.836843] Buffer I/O error on dev loop1, logical block 130, lost async page write
[  298.844676] attempt to access beyond end of device
[  298.849610] loop1: rw=1, want=132, limit=112
[  298.853999] Buffer I/O error on dev loop1, logical block 131, lost async page write
[  298.861825] attempt to access beyond end of device
[  298.866765] loop1: rw=1, want=133, limit=112
[  298.871191] Buffer I/O error on dev loop1, logical block 132, lost async page write
[  298.879008] attempt to access beyond end of device
[  298.883965] loop1: rw=1, want=142, limit=112
[  298.888391] Buffer I/O error on dev loop1, logical block 141, lost async page write
[  298.896286] attempt to access beyond end of device
[  298.901238] loop1: rw=1, want=143, limit=112
[  298.905851] Buffer I/O error on dev loop1, logical block 142, lost async page write
[  298.913728] attempt to access beyond end of device
[  298.918677] loop1: rw=1, want=144, limit=112
[  298.923062] Buffer I/O error on dev loop1, logical block 143, lost async page write
[  298.930888] attempt to access beyond end of device
[  298.935804] loop1: rw=1, want=145, limit=112
[  298.940235] Buffer I/O error on dev loop1, logical block 144, lost async page write
[  298.949770] attempt to access beyond end of device
[  298.954688] loop1: rw=1, want=2178, limit=112
03:34:01 executing program 4:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1000000000000}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/group.stat\x00', 0x2761, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x6611, 0x0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x98, r1, 0x102, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x5}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_DAEMON={0x64, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syz_tun\x00'}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x2000c010}, 0x2000c000)

03:34:01 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x2100000000000002, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x995ba2d8201dca0b}, 0xc)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x32}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x8e, 0x4, 0x4}}, 0xe8)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x280100, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000040)={<r4=>0x0})
ioctl$BINDER_GET_NODE_DEBUG_INFO(r3, 0xc018620b, &(0x7f0000000100)={r4})
sendmsg(r1, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000001680)}, 0x0)

03:34:01 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
r4 = request_key(&(0x7f0000000080)='syzkaller\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000001c0)='lo-*user\x00', 0xfffffffffffffffa)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in=@multicast1, @in6=@ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@multicast1}, 0x0, @in=@rand_addr}}, &(0x7f0000000240)=0xe8)
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
keyctl$chown(0x4, r4, r5, r6)

03:34:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="8960451d9de741e23fd1f429ee50ace7b72f8542d6ab3f3da5af2035cce43ead1ff2acc1e1be297bee615ec608e0bddc046b33eaaa7006e86617799041936c28f9988aeb30f1b1831c34978e3e24f3eb230d0a15a3a091a0e7a91457ece597eb85edfea4d0adc0f24a653707238ca1e7a4ae7b300b326932f46e8e7a51e15dade16c73372bd4b0043e7849f0f07e6e678030c494006a2dd25acddeb6ff34cfe9458a08f666ad26d08b96342e99040c4f57d708f0666048f6faba93d5fb8acf9f42433dad1e92cf01a44ab99694119a431217b815dbe252bc9de09fd0d4ad643776642b62e7dc7bcfd91c42f2181460dca1d093e25c50a3fe39d42fdcd6c59699")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))
getuid()

03:34:01 executing program 1:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="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")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

03:34:01 executing program 2:
r0 = socket$inet6(0xa, 0xa, 0x7ffe)
clone(0x230007fa, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x200000, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000240)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e21, 0x9, @local, 0x1}, @in={0x2, 0x4e20, @multicast2}, @in6={0xa, 0x4e23, 0x1, @local, 0x90000000000000}], 0x68)
sched_setscheduler(r1, 0x5, &(0x7f0000000040))
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x100, 0x0)
ioctl$KVM_SET_DEBUGREGS(r3, 0x4080aea2, &(0x7f00000000c0)={[0x10d000, 0x4000, 0x105000, 0x5001], 0x10001, 0x10, 0x9})
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0, @ANYRES64=r2, @ANYRESDEC=r3, @ANYRES64=r0, @ANYRES16=r3, @ANYRES64=r2, @ANYRES64=r3, @ANYRES16=r3, @ANYRES64=r0, @ANYRES16=r1], 0xa)

03:34:01 executing program 2:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="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")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  300.009530] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
03:34:02 executing program 4:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1000000000000}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='/group.stat\x00', 0x2761, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x6611, 0x0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x98, r1, 0x102, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x5}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_DAEMON={0x64, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syz_tun\x00'}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x2000c010}, 0x2000c000)

[  300.065990] *** Guest State ***
[  300.070367] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  300.082303] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  300.093397] CR3 = 0x0000000000000000
03:34:02 executing program 0:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="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")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  300.121245] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  300.135887] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  300.142607] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  300.160690] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:02 executing program 4:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="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")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  300.206233] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.248815] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.295459] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.304296] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.314961] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.326398] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  300.369050] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:02 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
fcntl$getown(r0, 0x9)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x80000)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x8000000000000000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0xfffffffffffffffe)
socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fadvise64(r3, 0x0, 0x5, 0x7)
accept4$inet(r4, 0x0, &(0x7f00000000c0), 0x800)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  300.480509] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  300.533062] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  300.571005] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  300.581202] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  300.596484] Interruptibility = 00000000  ActivityState = 00000000
[  300.603189] *** Host State ***
[  300.606605] RIP = 0xffffffff81212522  RSP = 0xffff88018d9bf350
[  300.612974] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  300.620097] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000033000
[  300.628237] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  300.634377] CR0=0000000080050033 CR3=00000001ceb85000 CR4=00000000001426e0
[  300.641708] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  300.648786] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  300.655073] *** Control State ***
[  300.666155] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
03:34:02 executing program 2:
r0 = memfd_create(&(0x7f0000000040)='iocharset', 0x2)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000001f80)="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")
syz_mount_image$vfat(&(0x7f0000000500)='vfat\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000340))
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = accept4(0xffffffffffffff9c, &(0x7f0000000140)=@rc, &(0x7f0000000040)=0x80, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x3}, 0xc, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="2c0000002600200300000000dbdf25000000f60059345619ea0532781becbc9320020015cccc08620c0b937a620096ffc5b6c0e8f4dbba03796b8d37df208586545d81c08baf4a23f912"], 0x1}}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind(0xffffffffffffffff, &(0x7f00000003c0)=@xdp={0x2c, 0x0, 0x0, 0x3d}, 0x80)
recvmmsg(r2, &(0x7f0000001f00)=[{{&(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @rand_addr}}}, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000000600)=""/189, 0xbd}, {&(0x7f0000000900)=""/189, 0xbd}, {&(0x7f00000009c0)=""/199, 0xc7}, {&(0x7f0000000ac0)=""/67, 0x43}, {&(0x7f0000000b40)=""/87, 0x57}, {&(0x7f00000001c0)=""/60, 0x3c}, {&(0x7f0000000bc0)=""/222, 0xde}, {&(0x7f0000000cc0)=""/4096, 0x1000}], 0x8, 0x0, 0x0, 0xffffffff94f21c89}, 0x3}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000001d40)=""/180, 0xb4}], 0x1, &(0x7f0000001e00)=""/194, 0xc2, 0xffff}, 0x1000}], 0x2, 0x0, &(0x7f00000006c0))
lseek(r3, 0x0, 0x6)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
gettid()
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000800)={{0x0, 0x0, 0x100000000, 0x2, 0x7ff}, 0x2, 0xffffffff})
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000200), &(0x7f00000007c0)=0x4)
ioctl$LOOP_CTL_REMOVE(r4, 0x5421, 0x0)
keyctl$setperm(0x5, 0x0, 0x12010100)
sendmsg(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000500)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000000880), 0x0, &(0x7f0000003b40)=[{0x10, 0x107, 0x5}], 0x10, 0x20040000}, 0x8001)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0x0)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x100, 0x0)
sendto$unix(r5, &(0x7f0000000100)="9b0f3bc6445750cd60df6190fbc894ab56871030fc490859", 0x18, 0x4844, &(0x7f0000000700)=@file={0x1, './file0/file0/file0\x00'}, 0x6e)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
fchdir(r1)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
truncate(&(0x7f0000000280)='./file0\x00', 0x100007)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

[  300.679093] EntryControls=0000d3ff ExitControls=002fefff
[  300.690441] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  300.714296] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
03:34:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000fd0ffc)=0x2)
dup3(r1, r0, 0x0)

03:34:02 executing program 4:
socketpair(0x0, 0x2, 0x401, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getpeername$unix(r0, &(0x7f0000000040)=@abs, &(0x7f0000000140)=0x6e)
syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@nls={'nls', 0x3d, 'none'}}]})

[  300.731428] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  300.742112]         reason=80000021 qualification=0000000000000000
[  300.749059] attempt to access beyond end of device
[  300.754009] loop2: rw=1, want=114, limit=112
[  300.760990] IDTVectoring: info=00000000 errcode=00000000
[  300.761646] Buffer I/O error on dev loop2, logical block 113, lost async page write
[  300.766554] TSC Offset = 0xffffff5cc63e03ad
[  300.766564] EPT pointer = 0x000000019560001e
[  300.768440] attempt to access beyond end of device
[  300.774858] attempt to access beyond end of device
[  300.788614] loop2: rw=1, want=115, limit=112
[  300.793057] loop1: rw=1, want=114, limit=112
[  300.793073] Buffer I/O error on dev loop1, logical block 113, lost async page write
[  300.793105] attempt to access beyond end of device
[  300.797589] attempt to access beyond end of device
[  300.802631] loop1: rw=1, want=115, limit=112
[  300.810901] loop2: rw=1, want=116, limit=112
[  300.815829] attempt to access beyond end of device
03:34:02 executing program 0:
syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000040)='.\x00', 0x8, 0x5, &(0x7f00000002c0)=[{&(0x7f0000000380)="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", 0x1000, 0x3}, {&(0x7f0000000080)="fb8003741796efec8508fcbcbcffc94025c4b87ad367faf758432b6de664b2e5f6b0eacd4d2138ba9a6d77981ca0fa43078505f7dc945534daa4fd589f7de4d44eeba49937d59a46001dc9c8b1d326b00b6fe1d6c8e86d25d13dadfbc600bd29236404c24a791346403c76805b5ba9f5c4d6d58f4c6c327caa93c96951a48d6613aa0043d984b2a2bd7b3b", 0x8b, 0x100000001}, {&(0x7f0000000140)="f40833bc9d74d445e5298595cfd28d6a29a8aafb91c1d3ab1e953225a631b10ec8d08b140bbc31ff54d34e295fa08ace6031a27822694d2ee37eaeabd391744102485bc3d5ca109629d58de4fbc62add5f10e402c242893853f972cf7c458026ab5431b52c9658c43bc59cde1c98d85bbfa6c7b5a0916738ff26719e15cb336bf6b28a48b89dc9daac9fbc5486294e9a83d0d057eb14900b823ceec863c61c5f8a74f199ae3fe9fcdc8b224ee0abbda2e563d25b5a8e338b9dff1bb978d33472", 0xc0, 0xeb0}, {&(0x7f0000000200)="e9643f1f799a5a493dc58c6ec3b6a2f65ee4c9eb8eaec2c2ba0f711ba99bedbd263bef3bbf8cdfba50e64daaaf1ba03420a850020d127a7b2cc0631ff153ce6f17e7cfbcfc23335c9e462f6f59af2b2cacea02f1319f535cef5f17", 0x5b, 0x6}, {&(0x7f0000000280)="ceea425f48a686fc1ddc", 0xa, 0x73}], 0x414, &(0x7f0000001380)=ANY=[@ANYBLOB="74b7d103636f6d706f73652c00"])
syz_mount_image$hfsplus(&(0x7f0000000340)='hfsplus\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001780), 0x0, &(0x7f0000001580)={[{@creator={'creator', 0x3d, "32b5df2c"}}]})
r0 = dup(0xffffffffffffff9c)
recvmsg$kcm(r0, &(0x7f0000001740)={&(0x7f0000001400)=@sco, 0x80, &(0x7f00000016c0)=[{&(0x7f0000001480)=""/74, 0x4a}, {&(0x7f00000015c0)=""/204, 0xcc}, {&(0x7f0000001500)=""/115, 0x73}], 0x3, &(0x7f0000001700)=""/37, 0x25, 0x4}, 0x40000002)

[  300.829371] attempt to access beyond end of device
[  300.838643] attempt to access beyond end of device
[  300.843573] loop1: rw=1, want=116, limit=112
[  300.844623] loop2: rw=1, want=117, limit=112
[  300.849555] loop4: rw=1, want=114, limit=112
[  300.859983] attempt to access beyond end of device
[  300.861387] attempt to access beyond end of device
[  300.868553] loop4: rw=1, want=115, limit=112
[  300.870388] attempt to access beyond end of device
[  300.878048] attempt to access beyond end of device
[  300.879737] loop2: rw=1, want=130, limit=112
[  300.884305] loop4: rw=1, want=116, limit=112
[  300.884341] attempt to access beyond end of device
[  300.889194] attempt to access beyond end of device
[  300.889205] loop2: rw=1, want=131, limit=112
[  300.889237] attempt to access beyond end of device
[  300.889246] loop2: rw=1, want=132, limit=112
[  300.889268] attempt to access beyond end of device
[  300.889277] loop2: rw=1, want=133, limit=112
[  300.892012] attempt to access beyond end of device
03:34:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))

[  300.894326] loop1: rw=1, want=117, limit=112
[  300.899822] loop2: rw=1, want=2174, limit=112
[  300.905334] attempt to access beyond end of device
[  300.917859] loop4: rw=1, want=117, limit=112
[  300.923079] attempt to access beyond end of device
[  300.941052] loop0: rw=1, want=114, limit=112
[  300.950316] attempt to access beyond end of device
[  300.964677] attempt to access beyond end of device
[  300.969702] loop1: rw=1, want=130, limit=112
[  300.974135] attempt to access beyond end of device
[  300.979252] loop0: rw=1, want=115, limit=112
[  300.983801] attempt to access beyond end of device
[  300.988909] loop4: rw=1, want=130, limit=112
[  300.993356] attempt to access beyond end of device
[  300.998321] loop0: rw=1, want=116, limit=112
[  301.002780] attempt to access beyond end of device
[  301.007705] loop0: rw=1, want=117, limit=112
[  301.012193] loop1: rw=1, want=131, limit=112
[  301.016641] attempt to access beyond end of device
[  301.021624] loop4: rw=1, want=131, limit=112
[  301.026076] attempt to access beyond end of device
[  301.026092] loop4: rw=1, want=132, limit=112
[  301.035452] loop1: rw=1, want=132, limit=112
[  301.035489] attempt to access beyond end of device
[  301.044894] attempt to access beyond end of device
[  301.049899] attempt to access beyond end of device
[  301.054824] loop4: rw=1, want=133, limit=112
[  301.059870] loop0: rw=1, want=130, limit=112
[  301.061970] attempt to access beyond end of device
[  301.069232] loop4: rw=1, want=2174, limit=112
[  301.073830] loop1: rw=1, want=133, limit=112
03:34:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000000))

[  301.091066] attempt to access beyond end of device
[  301.101268] loop0: rw=1, want=131, limit=112
[  301.105806] attempt to access beyond end of device
[  301.107410] attempt to access beyond end of device
[  301.118061] loop0: rw=1, want=132, limit=112
[  301.119368] loop1: rw=1, want=2174, limit=112
[  301.126001] attempt to access beyond end of device
[  301.132256] loop0: rw=1, want=133, limit=112
[  301.151969] attempt to access beyond end of device
[  301.166934] loop0: rw=1, want=2174, limit=112
[  301.204892] *** Guest State ***
[  301.208747] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  301.217667] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  301.227730] CR3 = 0x0000000000000000
[  301.253711] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  301.262282] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  301.269609] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  301.314274] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  301.337371] hfsplus: unable to parse mount options
[  301.348291] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:03 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x2c000, 0x0)
write$P9_RLERROR(r1, &(0x7f00000000c0)={0x9, 0x7, 0x1}, 0x9)
r2 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x1ff, 0x4000000000000001)
ioctl$KVM_SET_CPUID(r2, 0xc0185500, &(0x7f0000000080)={0xaaa0300, 0x7a})

03:34:03 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x40000, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000040)={0x1, 0x7}, 0xc)
syz_mount_image$ntfs(&(0x7f00000002c0)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f00000018c0), 0x0, &(0x7f0000001b00)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2bbe"])

[  301.366190] hfsplus: unable to load nls mapping "none"
[  301.371841] hfsplus: unable to parse mount options
[  301.391030] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:03 executing program 2:
capset(&(0x7f0000581ff8)={0x19980330}, &(0x7f00005ccfe8))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00008f2000)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x2)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000040)={0x549, 0xfff, 0x7, 0x1, 0x4, 0x1})
ioctl$sock_proto_private(r0, 0x89e0, &(0x7f000012d000))
r2 = request_key(&(0x7f00000000c0)='.dead\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000140)='/dev/audio#\x00', 0xfffffffffffffff8)
keyctl$assume_authority(0x10, r2)

03:34:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000380)="5a471507fad1cdb6de04ff3b63a914dfb05f2ed4117bcc466a5c7b59ce40d76b6d683c5b1467c05b25130d101eab3884b226b7406866c2ee0316d5d457f1e6c73499b6610c249568275d2db1a6cb0f7d9d0bc3bcd5f01cde75b8057a0f87ad5e54408686cb6f26528d0b87291e8ad652ce086c26ef70b429891a822af7403b6effd3c8439ea272c8970983e96ea08689d78bc33936ecde93d86109f4d0f4e309b05f0e8c206245f4e52ef21144b697f522878d20760a7b66323f93f11986f7670555a1e18ad4ea2feea9d7a9a39e21d16fff146593b57d991dae6a13fea3164d2479dcbde09a61ba7cd71fa9950713")
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  301.448747] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  301.465432] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  301.474194] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:03 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2c, &(0x7f0000d2effc)=0x81, 0x4)
clone(0x24000100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
tee(r0, r0, 0x20, 0x0)
setsockopt$sock_int(r0, 0x1, 0x34, &(0x7f0000000180), 0x4)

[  301.511338] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  301.519890] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  301.532865] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  301.545158] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:03 executing program 4:
openat$vsock(0xffffffffffffff9c, &(0x7f0000000d00)='/dev/vsock\x00', 0x0, 0x0)
syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000940))
chdir(&(0x7f0000000040)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100))

[  301.556710] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  301.563730] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  301.572895] Interruptibility = 00000000  ActivityState = 00000000
[  301.580125] *** Host State ***
[  301.583412] RIP = 0xffffffff81212522  RSP = 0xffff8801bed67350
[  301.589790] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  301.596279] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  301.604380] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  301.610683] CR0=0000000080050033 CR3=00000001bf540000 CR4=00000000001426e0
[  301.617708] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  301.632721] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  301.633354] ntfs: (device loop0): parse_options(): Invalid errors option argument: remount-ro+¾
[  301.647878] *** Control State ***
[  301.651723] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
03:34:03 executing program 1:
r0 = socket$inet6(0xa, 0x1000000000005, 0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x20000, 0x0)
sendmsg$key(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x2, 0x1, 0x2, 0xe, 0x9, 0x0, 0x70bd2a, 0x25dfdbfc, [@sadb_spirange={0x2, 0x10, 0x4d3, 0x4d2}, @sadb_x_filter={0x5, 0x1a, @in6=@local, @in=@multicast1, 0x11, 0x4}]}, 0x48}}, 0x4000040)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r2 = syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x282, 0x4)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000100)={0x7, 0x2, 0x3ff, 0x7, 0xb8})
openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x2, 0x0)
r4 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x200, 0x0)
ioctl$NBD_SET_SOCK(r2, 0x1261, r4)

03:34:03 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_vs\x00')
getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4)
sendmsg(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f0000001300)=@vsock={0x28, 0x0, 0x2711, @reserved}, 0x3f, &(0x7f0000001740)=[{&(0x7f00000017c0)="a7995a9b12ce3829bd9b46e03cdd165c8666176be010f64488a66fde14deb64518ddc2e22d01259880bc8912eac9f94d6d837d595ef8261268c6c709afc6be0653b097aa6d652f3e07fcfc955833a20eb062f1d408978f462aaf7ee528e50428b31efc99046950e62642c1c6233ad46cae194cea58764db09198e0496918b256cfa85cf929a23de6a3ccc8845a7b7ba071135f38a2eb07b359bdfd27fc907a49b3325ece93dfee886d96409d7e0b50635c8dda"}, {&(0x7f0000001440)="b58de11eea41f30c3fbe7e5fb653cdc057d2e64d04a8a6a4df5164c4ab5cdcd2d3c374cd0e320c04bff49f61b8f4f69b56b47a8943b73fcfa5bf5f64e303bccb1c4bd2562ed4bbd0028377dd77ea202ef5b4d492583d24c1263cf4eb06e07023106f2f5831c1f5b8256caff7145783bf202a9e3e818c48f22420917f8ec925a583ae3b569f5a996172349fac13bb98c09688d8a399de29bd40765ec8bf639dceef33"}, {&(0x7f0000001500)="c7b186a046a3be2a4d3b87d253a6f54550c44ca3d3944a253c49ba4d1720e375cd4a38964ef941729d7eb0daa803e65118d3b1edf104181fddd7bb447bbda77f1d1904b5289bee88824bb19ef4da07e4a0ad9d234e55f0ce6b835886d49514e47de34f3e550b852ec5fdf512f6d7b3574629847c135896de605446275ddb7221f0677958e7e51975e4292e15ed1982ff3d498f74c2e57cffe6404c63ba6e5b6a24341ebfa37b1013476be7c59959af7fd26d3288ddeb4bcebde66e22d70cf96f097696984a7592256a907d69dfa641c5205e9cbf5b"}, {&(0x7f0000001600)="dee1875268b979061038a6a18dd2982aece8f8ccbacd0fc9bc4e7ce541aefd1584e6df7ae461d4be9f97c671e810b863d231d6f7adcfe59612a4c8e326acba2a"}, {&(0x7f0000001640)="cc5afa15d3592f7a91bcb0572c533e6e52ced3aaf56096438604d1769ad195a4c3426fcbf000de91b740a19bc38d4206fa"}, {&(0x7f0000001680)="3cd750bc13658a8cc2901adbf7c9a359ed0c85b2c6d76d528ad3d5d43fac1657da08b8b7bcec6f5770863b4ba5a38fb7fcc15edcdb4bbbb5900703922dcb29a3f67c6be21ac9fa445217d030e16eab17aafbcdc3d928f4444a92c62fd5d150aff8e93085811c3156781be92174a7b843f172deadf1063da29e9c7d3e40092511a115ad55e8fd0f21ef023d6341ddadb573d1251d905fbc91103779383ccdf1fd3045dfde6601f1b59be6b704449e10fce4848d51ff5c1f26e735"}], 0x0, &(0x7f00000002c0)=ANY=[], 0x0, 0x1}, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000080)=0x66)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={<r2=>0x0, 0x3}, &(0x7f0000000200)=0x8)
mq_timedsend(r0, &(0x7f0000001380)="5c6b997ba11c4c539a223b3f2051f9c11d8e2473058fc2087725b1e53133922b2d9be508aa19be1f08150961fe605b32399a024d81ee5ef102b624b4dafd17ec2f9dbee9a9b15829855a21938ed38e22eb608f8c2424414f05b52ee1f5ee3715f4a88ae1cfd0724ccedf63da9267c3470eea73a9c10f80210bb5b882c79e", 0x7e, 0xffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000240)={r2, 0x1000, "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"}, &(0x7f0000001280)=0xffffffffffffff69)
preadv(r0, &(0x7f00000017c0), 0x1fe, 0x400000000000)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x8000, 0x0)

[  301.690406] ntfs: (device loop0): parse_options(): Invalid errors option argument: remount-ro+¾
[  301.712170] EntryControls=0000d3ff ExitControls=002fefff
[  301.745153] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
03:34:03 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.current\x00', 0x0, 0x0)
ioctl$RTC_PLL_SET(r0, 0x40207012, &(0x7f0000000040)={0x7f, 0x10001, 0x100, 0x5, 0x1, 0x5, 0x6})
r1 = socket$nl_route(0x10, 0x3, 0x0)
fstat(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresgid(0x0, 0x0, r2)
setfsgid(r2)

[  301.801748] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
03:34:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x800, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000240))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000080)={0x7, 0x7fffffff, 0x6, 0x10000, 0xc0, 0x401, 0x6, 0x1, 0x80000000, 0x66e})
flistxattr(r1, &(0x7f00000001c0)=""/38, 0x26)
ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000380)=""/137)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000040)={0x3, 0x0, @ioapic})
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x20000, 0x0)
socketpair(0x10, 0x7, 0xffff, &(0x7f0000000280))
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000140)={<r3=>0x0, 0x6}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000200)={r3, 0x2, 0x200}, &(0x7f0000000240)=0x8)

[  301.856211] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  301.886208]         reason=80000021 qualification=0000000000000000
[  301.949906] IDTVectoring: info=00000000 errcode=00000000
[  301.955388] TSC Offset = 0xffffff5c27db2d88
[  301.999021] EPT pointer = 0x00000001c0e9c01e
03:34:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f00000000c0)="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")
getuid()

03:34:03 executing program 2:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000740)=@nat={'nat\x00', 0x1b, 0x5, 0x448, 0x210, 0xf8, 0x210, 0x2e0, 0x2e0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x5, &(0x7f0000000380), {[{{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x7fffffff, 0xfffffffffffffffb}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @empty, @icmp_id=0x65, @gre_key=0xffd}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @empty, 0xffffffff, 0x0, 'dummy0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x1, 0x8}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x8}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0xf, @remote, @local, @port=0x4e22, @gre_key=0x7ff}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x8, @empty, @broadcast, @icmp_id=0x67, @icmp_id=0x64}}}}, {{@ip={@remote, @local, 0xffffffff, 0xff, 'syz_tun\x00', 'ifb0\x00', {0xff}, {0xff}, 0x8, 0x2, 0x4}, 0x0, 0x98, 0xd0}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x8, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @port=0x4e23, @gre_key=0xfffffffffffffffa}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
sendmsg$nl_generic(r2, &(0x7f0000000500)={&(0x7f0000000000), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x10404)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, "7665746831000000000000001100", 0x4}, 0x18)
r4 = memfd_create(&(0x7f0000002b00)='/dev/loop#\x00', 0x0)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000002780))
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000028c0)={0x10})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000002c0)={0x62, @local, 0x4e23, 0x2, 'fo\x00', 0x1, 0x6, 0x4b}, 0x2c)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f00000027c0)={{0x3, 0x0, 0x4, 0x3, 0x8}, 0x7, 0x1, 'id1\x00', 'timer1\x00', 0x0, 0x1, 0x81, 0x0, 0x101})
r5 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={<r6=>0x0}, &(0x7f0000000280)=0xc)
getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000180), &(0x7f0000000300)=0xc)
perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x50, 0x3ff, 0x6, 0x3, 0x0, 0x7, 0x4100, 0xc, 0x9, 0x4, 0x8, 0x1, 0x9, 0x100000000000001, 0x6, 0x7dd, 0x7a, 0x7, 0x2, 0xfffffffffffff800, 0x101, 0x72f7, 0x4, 0x2, 0xfff, 0xc000000000000000, 0x5, 0x5, 0x8, 0x0, 0x322, 0x1, 0x7f, 0x80000000, 0xfffffffffffff001, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x2000, 0x0, 0x2, 0x2, 0xffffffffffffff8b, 0xfffffffffffff000, 0x2}, r6, 0x1, r1, 0x8)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000140)=0x100000008001)
readv(r5, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
r7 = getpid()
ioctl$RTC_AIE_ON(r4, 0x7001)
tkill(r7, 0x1000000000015)
accept$inet(r4, &(0x7f0000000400)={0x2, 0x0, @dev}, &(0x7f0000000440)=0x10)

03:34:03 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000040)=0x9)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket(0xa, 0x1, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000002c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$sock_int(r0, 0x1, 0x1d, &(0x7f0000000140), 0x4)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x20000, 0x0)

03:34:03 executing program 0:
r0 = socket$inet6(0xa, 0x100040000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(r0, 0x8)
r1 = socket$inet6(0xa, 0x6, 0x0)
r2 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x800)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000080)={@loopback, @empty, 0x1, 0xa, [@multicast1, @broadcast, @broadcast, @remote, @loopback, @broadcast, @loopback, @local, @loopback, @local]}, 0x38)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000f68000)={@loopback, 0x800, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_int(r1, 0x29, 0x21, &(0x7f000089b000)=0xffffffffffffffff, 0x4)
connect$inet6(r1, &(0x7f000000cfe4)={0xa, 0x4e20, 0x807}, 0x1c)

03:34:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x1ff, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:03 executing program 4:
clone(0x2102201ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
r0 = getpid()
r1 = memfd_create(&(0x7f0000000040)="00ac3d9dd2dbe6bfb408ed634a8e84d44e129b1f09bd112b865416a3b3ae309f393fef6fa46b01323ea19c86781c9f841935de975f097ef3591222705ec10f", 0x0)
r2 = dup3(r1, r1, 0x80000)
write(r1, &(0x7f0000000140)="e07c48c61ab2430c5ec5d379de7961b9394d3d6a90e1ce9f446018dc275ece381645449c40b9b86b2c4056e977583cfad08f39bcbe3cabe8365e9828f131df7cefe2f54885aed97c3421c25f44ac7be33336e1d5e474c46202b275d206fd37a830b9771a83923b378503939c2318807457d00beb138d5333cc0557fd", 0x151)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x11, r1, 0x0)
sched_setscheduler(r0, 0x5, &(0x7f0000000200))
getsockopt$inet_udp_int(r2, 0x11, 0x6f, &(0x7f0000000000), &(0x7f0000000080)=0x4)
io_setup(0x3, &(0x7f0000000100))

03:34:04 executing program 4:
r0 = gettid()
sched_setaffinity(r0, 0x8, &(0x7f0000000440)=0xffffffffffffffff)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, 0xffffffffffffffff, 0x145000, 0x0)
r3 = dup2(r1, r1)
sendmsg$kcm(r2, &(0x7f0000000400)={&(0x7f0000000200)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x1, 0x2, 0x0, 0x4, {0xa, 0x4e23, 0x8, @dev={0xfe, 0x80, [], 0xf}, 0x1f}}}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000280)="80a9bdf4bfe5721b8f94bebf5d4d78c6edd9f59a1fa731071c79d59de3e0e7de37a3c87c6f246e153182a4b853712ca97ea137b0339ea84d683c5577509103ae4c4f432e2c2c9a8243e5d81d3b18f3e8308b7d7c87ed0410e720ac9d2c825deed3d7872247b418ce19e43a80db4cfa505cff5a21efad70c791ee85bb323c30d273accdedf9e1060abb0204e9dd9d411e69e9685d8b6f405d87b9ae1239509401a4caf29270e1f81a", 0xa8}, {&(0x7f0000000340)="eb0a010319458f398ef026272f8be299b24403a7d4c45dc1133dcab27409d2410e7814a363deb8b473cca680b0c60ba2be6cfe4098cf6890b8db3ba8037ea28a0d7ec84e7ed0e740e8d37542c64c325c4b609b3cb5ca84f23d8ddf4a2b61aaef05cb64fe723c51de233ef358f48be8ee26af8b50d69ff4dc1809e78ef09492a8fc789c05045dcebe3ffdf35e8ea1132548c5ef93462bd2dc99fed85b272120c8e3daf2ef07223a9a99dc395f", 0xac}], 0x2}, 0x8090)
r4 = perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffbfffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000020080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0xffffffffffffff01, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x1, 0x400000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r4, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00')
ptrace$getregset(0x4204, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=""/45, 0x2d})
writev(r5, &(0x7f0000000080), 0x1a6)

03:34:04 executing program 1:
socket$inet6(0xa, 0x3, 0x800000000000004)
r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2)
write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES32], 0x4b)
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/33, 0x24}], 0x1)
pipe2(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4000)
ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f0000000300)={&(0x7f00000002c0)=[0x1, 0xffffffff, 0x8020000000, 0x2, 0x7, 0x1, 0x1, 0x1], 0x8, 0x5, 0xffffffffffffffe0, 0x1, 0x2, 0x1ff, {0x7, 0xffff, 0x4, 0x7, 0x7f, 0x1, 0x4, 0x4, 0x5c, 0x5, 0x80000000, 0xfffffffffffffff7, 0x800, 0x0, "3e05c8ce7b5b0c68331d405c08663054c906d59c3139119f4a3be8f7670cf728"}})
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f00000003c0)=ANY=[@ANYBLOB="7a78e223ba3aba97ba6fafee2568cdff522500", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000100)=0xc)
getrusage(0xffffffffffffffff, &(0x7f0000000180))
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000280)={<r3=>0x0, 0x80000, r2})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000380)={r3, 0x80000, r2})

[  302.108334] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1, syncid = 4, id = 0
03:34:04 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f00000001c0), &(0x7f0000000740)=0x4)
clone(0x4, &(0x7f0000000280)="0d6da42101d5e16edf91a2c1a8df594bd366505bf7e00430a451288991283e8a722a7f1736aff3e23bda1780bad32f410bea441f631445d65156691e0aaa846a58818034a89b6676b1d5a7c9d254b40c2ba62a4eb559c1ebc04fffee7969c9e4a32a24e7000000003e2d388a360c06a814789d2422cb701e6fd542c3bed99f6f3634108b898bb96733dfa4075f65d1510b46f8899d7081406ecbd24c58a5625a1fcbe0a4f47b710ca46518bc5e56ffe7c9e3d6aa375243891fbcd540dbb9571b95d03ca18cca8b0c", &(0x7f0000000100), &(0x7f00000000c0), &(0x7f0000000140))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000900)='/dev/audio\x00', 0x113a02, 0x0)
accept$packet(r2, &(0x7f0000000940)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000980)=0x14)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/net/pfkey\x00', 0x2, 0x0)
ioctl$TUNSETSTEERINGEBPF(0xffffffffffffffff, 0x800454e0, &(0x7f00000007c0)=r3)
r4 = syz_open_dev$vcsa(&(0x7f00000008c0)='/dev/vcsa#\x00', 0x3a8, 0x3fffff)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000400)={<r5=>r1})
setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000440)={0x0, 0x0, 0x1, 0x0, 0x9, 0x3f, 0x0, 0x0, 0x0, 0x8000, 0x1f}, 0xb)
finit_module(r0, &(0x7f0000000140)='\'+[keyringeth0@vboxnet0{userselfcgroup+trustedGPL\x00', 0x0)
ioctl$SCSI_IOCTL_DOORUNLOCK(0xffffffffffffffff, 0x5381)
ioctl$sock_SIOCGIFBR(r4, 0x8940, &(0x7f0000000800)=@generic={0x3, 0x9, 0x3})
mkdir(&(0x7f0000000640)='./file0\x00', 0x0)
set_tid_address(&(0x7f00000003c0))
accept$unix(r5, &(0x7f0000000200)=@abs, &(0x7f0000000780)=0x6e)
socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000880))
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r5, 0x84, 0xf, &(0x7f0000000480)={0x0, @in={{0x2, 0x4e21}}, 0x0, 0x0, 0x0, 0x262, 0x7}, &(0x7f0000000540)=0x98)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000580)={0x4122d220, 0x9, 0x0, 0x9}, &(0x7f0000000680)=0x10)
ioctl$TIOCCBRK(r4, 0x5428)
r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/rfkill\x00', 0x0, 0x0)
ioctl$TIOCMBIC(r4, 0x5417, &(0x7f0000000840)=0x8)
ioctl$KVM_SET_DEBUGREGS(r6, 0x4080aea2, &(0x7f00000006c0)={[0x0, 0x0, 0x0, 0x1f000], 0xffffffff, 0x94, 0x7d})
openat$userio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/userio\x00', 0x400, 0x0)
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x15, 0x2}, 0x7)

[  302.163908] *** Guest State ***
[  302.197030] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  302.230059] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
03:34:04 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
r0 = msgget$private(0x0, 0x0)
msgctl$IPC_RMID(r0, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x80, 0x0)
read$eventfd(r1, &(0x7f0000000040), 0x8)

[  302.241489] sg_write: data in/out 65499/33 bytes for SCSI command 0x0-- guessing data in;
[  302.241489]    program syz-executor1 not setting count and/or reply_len properly
[  302.268563] CR3 = 0x0000000000000000
[  302.276264] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  302.283883] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  302.291042] sg_write: data in/out 65499/33 bytes for SCSI command 0x0-- guessing data in;
[  302.291042]    program syz-executor1 not setting count and/or reply_len properly
[  302.308646] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  302.322349] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.335872] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:04 executing program 4:
mmap(&(0x7f0000600000/0x4000)=nil, 0x4000, 0x0, 0x44031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000240))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000f8dfe0)={{&(0x7f00002a9000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000300)={{&(0x7f000069f000/0x4000)=nil, 0x4000}})

03:34:04 executing program 1:
clock_gettime(0x0, &(0x7f00000006c0)={0x0, <r0=>0x0})
nanosleep(&(0x7f0000000780)={0x0, r0+30000000}, &(0x7f00000007c0))
r1 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000180)}}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000))
tkill(r1, 0x401104000000016)
socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000080), &(0x7f00000000c0)=0x8)

[  302.344847] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.355726] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.378756] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.398805] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.407459] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  302.417856] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.433256] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  302.458669] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  302.466917] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  302.473847] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  302.481474] Interruptibility = 00000000  ActivityState = 00000000
[  302.488784] *** Host State ***
[  302.492517] RIP = 0xffffffff81212522  RSP = 0xffff8801941bf350
[  302.498719] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  302.505964] FSBase=00007f24c9115700 GSBase=ffff8801dac00000 TRBase=fffffe0000003000
[  302.513999] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  302.520060] CR0=0000000080050033 CR3=00000001cb6b7000 CR4=00000000001426f0
[  302.527185] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  302.534134] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  302.545419] *** Control State ***
[  302.549089] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
03:34:04 executing program 0:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000001880)='/dev/sequencer2\x00', 0x8000, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000001940)=0x9)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000001900)={0x0, 0x8, 0x3000000, &(0x7f00000018c0)=0x6})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "bd7974017ccae74153c2ed1fea6e8bec9cc462ddcd84c21c6ecc19557f026bce96b2ceb57428cde7b2f18c05f75b4d80bb148bccffd332606cbe6ad28f5ae827", "b94ded0a7b56da8471f04fa4dd4f175d1ece4fd252a4c4130d63f606506c4ce1"})
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000100)='trusted.overlay.redirect\x00', &(0x7f0000000140)='./file0\x00', 0x8, 0x3)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f00000003c0)=[@textreal={0x8, &(0x7f0000000340)="66b9920a000066b8f0ffffff66baff7f00000f300f01c9660f57f566b9800000c00f326635000400000f300f23faba610066b84b00000066ef660f583d2e0f693600000f00d50f01c9"}], 0xa0, 0x0, &(0x7f0000000040), 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_NMI(r6, 0xae9a)
recvmsg$kcm(r4, &(0x7f0000001840)={&(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @reserved}, 0x80, &(0x7f0000001700)=[{&(0x7f0000000440)=""/145, 0x91}, {&(0x7f00000001c0)=""/56, 0x38}, {&(0x7f00000002c0)=""/28, 0x1c}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/154, 0x9a}, {&(0x7f00000015c0)=""/230, 0xe6}, {&(0x7f0000000300)=""/63, 0x3f}, {&(0x7f00000016c0)=""/19, 0x13}], 0x8, &(0x7f0000001780)=""/148, 0x94, 0x81}, 0x20)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[  302.556896] EntryControls=0000d3ff ExitControls=002fefff
[  302.567205] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  302.574324] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  302.581068] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  302.588025]         reason=80000021 qualification=0000000000000000
[  302.594519] IDTVectoring: info=00000000 errcode=00000000
[  302.600437] TSC Offset = 0xffffff5ba64e0ae3
[  302.604862] EPT pointer = 0x00000001c0f9d01e
03:34:04 executing program 2:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000740)=@nat={'nat\x00', 0x1b, 0x5, 0x448, 0x210, 0xf8, 0x210, 0x2e0, 0x2e0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x5, &(0x7f0000000380), {[{{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x7fffffff, 0xfffffffffffffffb}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @empty, @icmp_id=0x65, @gre_key=0xffd}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @empty, 0xffffffff, 0x0, 'dummy0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x1, 0x8}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x8}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0xf, @remote, @local, @port=0x4e22, @gre_key=0x7ff}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x8, @empty, @broadcast, @icmp_id=0x67, @icmp_id=0x64}}}}, {{@ip={@remote, @local, 0xffffffff, 0xff, 'syz_tun\x00', 'ifb0\x00', {0xff}, {0xff}, 0x8, 0x2, 0x4}, 0x0, 0x98, 0xd0}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x8, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @port=0x4e23, @gre_key=0xfffffffffffffffa}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
sendmsg$nl_generic(r2, &(0x7f0000000500)={&(0x7f0000000000), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x10404)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, "7665746831000000000000001100", 0x4}, 0x18)
r4 = memfd_create(&(0x7f0000002b00)='/dev/loop#\x00', 0x0)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000002780))
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000028c0)={0x10})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000002c0)={0x62, @local, 0x4e23, 0x2, 'fo\x00', 0x1, 0x6, 0x4b}, 0x2c)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f00000027c0)={{0x3, 0x0, 0x4, 0x3, 0x8}, 0x7, 0x1, 'id1\x00', 'timer1\x00', 0x0, 0x1, 0x81, 0x0, 0x101})
r5 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={<r6=>0x0}, &(0x7f0000000280)=0xc)
getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000180), &(0x7f0000000300)=0xc)
perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x50, 0x3ff, 0x6, 0x3, 0x0, 0x7, 0x4100, 0xc, 0x9, 0x4, 0x8, 0x1, 0x9, 0x100000000000001, 0x6, 0x7dd, 0x7a, 0x7, 0x2, 0xfffffffffffff800, 0x101, 0x72f7, 0x4, 0x2, 0xfff, 0xc000000000000000, 0x5, 0x5, 0x8, 0x0, 0x322, 0x1, 0x7f, 0x80000000, 0xfffffffffffff001, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x2000, 0x0, 0x2, 0x2, 0xffffffffffffff8b, 0xfffffffffffff000, 0x2}, r6, 0x1, r1, 0x8)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000140)=0x100000008001)
readv(r5, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
r7 = getpid()
ioctl$RTC_AIE_ON(r4, 0x7001)
tkill(r7, 0x1000000000015)
accept$inet(r4, &(0x7f0000000400)={0x2, 0x0, @dev}, &(0x7f0000000440)=0x10)

03:34:04 executing program 1:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x519c00, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000380)={0x0, 0xfff, 0x20, 0x7, 0x7}, &(0x7f00000003c0)=0x18)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000440)={0x0, @in6={{0xa, 0x4e23, 0x8, @mcast2, 0xfffffffffffffffe}}, 0x80000001, 0x3f, 0x7, 0x7ff, 0x6}, &(0x7f0000000500)=0x98)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000540)={<r1=>0x0, @in6={{0xa, 0x4e24, 0x6, @dev={0xfe, 0x80, [], 0xe}, 0xfff}}, 0x7, 0x80000000, 0x43d, 0x5, 0xffffffffffffffff}, &(0x7f0000000600)=0x98)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000400)={<r2=>r1, 0x6, 0x35d}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000280)={r2, @in6={{0xa, 0x4e21, 0xff, @local, 0x1}}}, &(0x7f0000000340)=0x84)
getsockname$packet(r0, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000640)=0x14)
r3 = socket$inet(0x2, 0x1, 0x0)
r4 = dup(r3)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
sendto$inet(r4, &(0x7f0000000200)="96", 0x74d6cd88abb3439c, 0x3fff, &(0x7f00000000c0), 0xfffffffffffffd74)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000266ffc), 0x4)
sendmsg$TEAM_CMD_NOOP(r4, &(0x7f0000004bc0)={&(0x7f0000000000), 0xc, &(0x7f0000004b80)={&(0x7f0000000280)=ANY=[@ANYBLOB], 0x1}}, 0x0)
sendto$inet(r4, &(0x7f0000000100)="89", 0x1, 0x3fffffd, &(0x7f00000001c0)={0x2, 0x0, @dev}, 0x10)
write$cgroup_pid(r3, &(0x7f0000000080), 0xffed)

03:34:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
r3 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x1, 0x400000)
ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x8905, &(0x7f00000000c0))
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:04 executing program 4:
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000000))
mmap(&(0x7f000035d000/0x1000)=nil, 0x1000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f000035dffc))

03:34:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:04 executing program 0:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x805, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0x7fffffff, 0x40)
socketpair(0xf, 0x5, 0x20, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000400)={'syz1\x00'}, 0x45c)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snapshot\x00', 0x181002, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000240)='/dev/uinput\x00', 0x802, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000000200)={0x0, 0x0, 0x3, 0x2, '\x00', 0x1})
remap_file_pages(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000001, 0x5, 0x11e142)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000100)={r0, 0x10, &(0x7f00000000c0)={&(0x7f0000000000)=""/73, 0x49, <r3=>0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=r3, 0x4)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4)
ioctl$UI_DEV_SETUP(r0, 0x5501, &(0x7f0000000280)={{0xfffffffffffffffc, 0x1, 0x0, 0xbc60}, 'syz0\x00', 0x4})

[  302.980760] input: syz1 as /devices/virtual/input/input12
03:34:04 executing program 4:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000740)=@nat={'nat\x00', 0x1b, 0x5, 0x448, 0x210, 0xf8, 0x210, 0x2e0, 0x2e0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x5, &(0x7f0000000380), {[{{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x7fffffff, 0xfffffffffffffffb}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @empty, @icmp_id=0x65, @gre_key=0xffd}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @empty, 0xffffffff, 0x0, 'dummy0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x1, 0x8}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x8}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0xf, @remote, @local, @port=0x4e22, @gre_key=0x7ff}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x8, @empty, @broadcast, @icmp_id=0x67, @icmp_id=0x64}}}}, {{@ip={@remote, @local, 0xffffffff, 0xff, 'syz_tun\x00', 'ifb0\x00', {0xff}, {0xff}, 0x8, 0x2, 0x4}, 0x0, 0x98, 0xd0}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x8, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @port=0x4e23, @gre_key=0xfffffffffffffffa}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
sendmsg$nl_generic(r2, &(0x7f0000000500)={&(0x7f0000000000), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x10404)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, "7665746831000000000000001100", 0x4}, 0x18)
r4 = memfd_create(&(0x7f0000002b00)='/dev/loop#\x00', 0x0)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000002780))
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000028c0)={0x10})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000002c0)={0x62, @local, 0x4e23, 0x2, 'fo\x00', 0x1, 0x6, 0x4b}, 0x2c)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f00000027c0)={{0x3, 0x0, 0x4, 0x3, 0x8}, 0x7, 0x1, 'id1\x00', 'timer1\x00', 0x0, 0x1, 0x81, 0x0, 0x101})
r5 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={<r6=>0x0}, &(0x7f0000000280)=0xc)
getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000180), &(0x7f0000000300)=0xc)
perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x50, 0x3ff, 0x6, 0x3, 0x0, 0x7, 0x4100, 0xc, 0x9, 0x4, 0x8, 0x1, 0x9, 0x100000000000001, 0x6, 0x7dd, 0x7a, 0x7, 0x2, 0xfffffffffffff800, 0x101, 0x72f7, 0x4, 0x2, 0xfff, 0xc000000000000000, 0x5, 0x5, 0x8, 0x0, 0x322, 0x1, 0x7f, 0x80000000, 0xfffffffffffff001, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x2000, 0x0, 0x2, 0x2, 0xffffffffffffff8b, 0xfffffffffffff000, 0x2}, r6, 0x1, r1, 0x8)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000140)=0x100000008001)
readv(r5, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
r7 = getpid()
ioctl$RTC_AIE_ON(r4, 0x7001)
tkill(r7, 0x1000000000015)
accept$inet(r4, &(0x7f0000000400)={0x2, 0x0, @dev}, &(0x7f0000000440)=0x10)

03:34:04 executing program 1:
syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xffffffffffffffff, 0x4002)

[  303.021196] *** Guest State ***
[  303.027250] input: syz1 as /devices/virtual/input/input13
[  303.036408] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  303.053618] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  303.067013] CR3 = 0x0000000000000000
[  303.071719] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  303.089413] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  303.102909] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  303.113039] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:05 executing program 0:
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @multicast1, 0x2}, 0xc)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @loopback, @multicast1}, 0xc)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000000)={@multicast2, @multicast1, @multicast1}, 0x9)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x9, 0x800)
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000100)={0x1, 0x8, [@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, @link_local, @remote, @random="2f3df76c379f", @local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote, @random="8b645d2beb04"]})

03:34:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000006800)={'lo\x00', <r1=>0x0})
r2 = gettid()
sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000080), 0xc, &(0x7f0000000540)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000100001000009000122fcd1136f6900000000000000000098a64193720254b768a31b472c464872d355933444d2c8cbd2dfc86e2adfbf044726b3c4598d1575a7bf9db29796f3bc19dac9b586362274705a700f646d6c7dd7243aff4a9e4c723e265e937bed02d656959106cd80a0bbf1fe6cedaa200948c44a3e4bd61206", @ANYRES32=r1, @ANYBLOB="000000000000000008001300", @ANYRES32=r2], 0x28}}, 0x0)
r3 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0xfff, 0x20101)
write$FUSE_DIRENT(r3, &(0x7f00000001c0)={0x98, 0xfffffffffffffff5, 0x7, [{0x4, 0x7fff, 0x8, 0xce, 'eth1ppp0'}, {0x6, 0x6, 0x2d, 0x101, '%+{mime_typenodev^%@&,\'\x00ppp0eth1\\}ppp1-nodev@'}, {0x0, 0xfff, 0x3, 0x4a33, 'lo\x00'}]}, 0x98)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x40, 0x0)

03:34:05 executing program 0:
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8408a)
r2 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000180)="ae1fedbb35e74a889a3a94dc9c60a0b9dfba259fc1bed449a9d45fb43efbbe7099e0d8171c293e103ec6d1dde620cbecc1296b738e5c1f9b35a077fd1e12914f44682342cbaf3e69a0937babe8e4c91202db8540bd16768168f0bc56faebf93a1fef7b890a8919d9b67f327e14e6b8094605e8bf59e2915cc2a988620797603b431c8200ab917dde4fab668e1d0194ac4d45792b82e94f2524d5", 0x9a, 0x0)
r4 = request_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000300)='oeth1\x00', 0xfffffffffffffffb)
keyctl$instantiate(0xc, r3, &(0x7f0000000240)="0f2ee846033c530639575a827c2014f8539d9096ed33fde72c68408b3399bfaa6d0f8986854e3e63b002d688341ecaf108f5d4744f2d2cf601b2b9913d30556c30fd1adac5ec520b339a", 0x4a, r4)
fdatasync(r2)

[  303.135436] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1, syncid = 4, id = 0
[  303.152568] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.173749] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.211461] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
[  303.216754] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.234834] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.243278] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
[  303.243516] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:05 executing program 1:
r0 = socket$inet6(0xa, 0x6, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpgrp(0x0)
sched_setscheduler(r1, 0x5, &(0x7f0000000040))
getsockopt$inet6_buf(r0, 0x10d, 0xc0, &(0x7f0000000100)=""/12, &(0x7f0000000140)=0xc)

[  303.262210] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  303.271174] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.280152] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  303.289055] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  303.297775] EFER =     0x0000000000006500  PAT = 0x0007040600070406
[  303.313945] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  303.321714] Interruptibility = 00000000  ActivityState = 00000000
[  303.331557] *** Host State ***
[  303.337806] RIP = 0xffffffff81212522  RSP = 0xffff88018bdef350
[  303.346260] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  303.353462] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  303.362096] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  303.368180] CR0=0000000080050033 CR3=00000001c0f27000 CR4=00000000001426e0
[  303.377638] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  303.385519] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  303.398197] *** Control State ***
[  303.403979] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  303.419252] EntryControls=0000d3ff ExitControls=002fefff
[  303.425513] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  303.433136] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  303.440030] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  303.446695]         reason=80000021 qualification=0000000000000000
[  303.453365] IDTVectoring: info=00000000 errcode=00000000
[  303.460626] TSC Offset = 0xffffff5b300e44ef
[  303.465029] EPT pointer = 0x00000001bac3b01e
03:34:05 executing program 2:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000740)=@nat={'nat\x00', 0x1b, 0x5, 0x448, 0x210, 0xf8, 0x210, 0x2e0, 0x2e0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x5, &(0x7f0000000380), {[{{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x7fffffff, 0xfffffffffffffffb}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @empty, @icmp_id=0x65, @gre_key=0xffd}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @empty, 0xffffffff, 0x0, 'dummy0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x1, 0x8}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x8}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0xf, @remote, @local, @port=0x4e22, @gre_key=0x7ff}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x8, @empty, @broadcast, @icmp_id=0x67, @icmp_id=0x64}}}}, {{@ip={@remote, @local, 0xffffffff, 0xff, 'syz_tun\x00', 'ifb0\x00', {0xff}, {0xff}, 0x8, 0x2, 0x4}, 0x0, 0x98, 0xd0}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x8, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @port=0x4e23, @gre_key=0xfffffffffffffffa}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
sendmsg$nl_generic(r2, &(0x7f0000000500)={&(0x7f0000000000), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x10404)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, "7665746831000000000000001100", 0x4}, 0x18)
r4 = memfd_create(&(0x7f0000002b00)='/dev/loop#\x00', 0x0)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000002780))
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000028c0)={0x10})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000002c0)={0x62, @local, 0x4e23, 0x2, 'fo\x00', 0x1, 0x6, 0x4b}, 0x2c)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f00000027c0)={{0x3, 0x0, 0x4, 0x3, 0x8}, 0x7, 0x1, 'id1\x00', 'timer1\x00', 0x0, 0x1, 0x81, 0x0, 0x101})
r5 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={<r6=>0x0}, &(0x7f0000000280)=0xc)
getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000180), &(0x7f0000000300)=0xc)
perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x50, 0x3ff, 0x6, 0x3, 0x0, 0x7, 0x4100, 0xc, 0x9, 0x4, 0x8, 0x1, 0x9, 0x100000000000001, 0x6, 0x7dd, 0x7a, 0x7, 0x2, 0xfffffffffffff800, 0x101, 0x72f7, 0x4, 0x2, 0xfff, 0xc000000000000000, 0x5, 0x5, 0x8, 0x0, 0x322, 0x1, 0x7f, 0x80000000, 0xfffffffffffff001, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x2000, 0x0, 0x2, 0x2, 0xffffffffffffff8b, 0xfffffffffffff000, 0x2}, r6, 0x1, r1, 0x8)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000140)=0x100000008001)
readv(r5, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
r7 = getpid()
ioctl$RTC_AIE_ON(r4, 0x7001)
tkill(r7, 0x1000000000015)
accept$inet(r4, &(0x7f0000000400)={0x2, 0x0, @dev}, &(0x7f0000000440)=0x10)

03:34:05 executing program 1:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x200, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000140)={0x14, 0x49, 0x1, {0x80, 0x3, 0x1}}, 0x14)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[]}}, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x81, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af14, &(0x7f0000000080)={0x0, 0x8})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$inet6(0xa, 0x5, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8923, &(0x7f0000000380)={"62707130000b00fe0000007a00faff00", r4})
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'bpq0\x00', 0x1212})

03:34:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/softnet_stat\x00')
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000001c0)={'bridge0\x00', {0x2, 0x4e22, @rand_addr=0x2}})
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000080)={0x8, 0x5, 0x5, 0x9, 0x7ff, 0x9081, 0x100, 0x3, 0x5, 0x40})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:05 executing program 0:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'teql0\x00', 0x102})
r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x8, 0x0)
ioctl$BLKRAGET(r1, 0x1263, &(0x7f0000000180))
r2 = creat(&(0x7f0000000240)='./file0\x00', 0x400100025)
ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000000140)={0x5, 0x36, &(0x7f0000000100)="5ad932f55897a9558a0581d6ccb5ec61d940901ffda714bc783151e4ee57f95be0589cec9144064067437a43d24b9eb02df98c27be54"})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'syzkaller0\x00', 0x400})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'bpq0\x00', 0x200})

03:34:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:05 executing program 4:
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000000)=0x1)
fchown(r0, 0x0, 0x0)

[  303.900777] 
: renamed from bpq0
03:34:05 executing program 4:
r0 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x34, 0x1)
ioctl$int_out(r0, 0x20000000c0385720, &(0x7f0000000000))

03:34:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:05 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xfff, 0x200000)
syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x401, 0x80400)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000100)='/dev/sequencer2\x00', 0xffffffffffffffff}, 0x30)
r0 = syz_open_dev$audion(&(0x7f0000000180)='/dev/audio#\x00', 0x8, 0x100)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x80001000a0000000)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$BLKSECTGET(r1, 0x1267, &(0x7f0000000040))
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0x40085112, &(0x7f0000b18000)={{0xffffff92}, {0xffffffb0}})

03:34:06 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x20001)
r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0)
clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
r3 = getpid()
sched_setscheduler(r3, 0x7, &(0x7f0000000040))
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000100)={0x5, 0x4, 0x6, 0x0, 0x0, [{r2, 0x0, 0xd8}, {r2, 0x0, 0x1ff}, {r2, 0x0, 0xffffffff}, {r0, 0x0, 0x2}, {r0, 0x0, 0x6}, {r2, 0x0, 0x1f}]})
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc0a85352, &(0x7f0000000280)={{0xffffff80}})
getpid()

03:34:06 executing program 1:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x200, 0x0)
write$P9_RMKDIR(r0, &(0x7f0000000140)={0x14, 0x49, 0x1, {0x80, 0x3, 0x1}}, 0x14)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[]}}, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x81, 0x0)
ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af14, &(0x7f0000000080)={0x0, 0x8})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$inet6(0xa, 0x5, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'lo\x00', <r4=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8923, &(0x7f0000000380)={"62707130000b00fe0000007a00faff00", r4})
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'bpq0\x00', 0x1212})

[  304.211838] 
: renamed from bpq0
03:34:06 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
clone(0x210007fe, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
openat$cgroup_subtree(r0, &(0x7f0000000480)='0group.subtree_control\x00', 0x2, 0x0)
r2 = socket$inet6(0xa, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000240)={<r4=>0x0, 0x87, "7e11213476c4a98ae8a25f7670866bc392e10659dcd4566abe6fd8782328cd52eae81de70e682bac399ff76b3b22523ab4f148bf4925c38d51acdb6e9cb44bbbc392810d34405db2c6102a71e28a1d21446c771938fc33f5ed805f2f543adb52666953ab38aedb31d9ada203cfabf9b0b0c3c78602007bd9344d9e1a74b12f8bd0103b825b9c32"}, &(0x7f0000000300)=0x8f)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={r4, @in6={{0xa, 0x4e22, 0x8000, @mcast2, 0x3f}}, 0xfffffffffffffffa, 0x200, 0x7f, 0x8, 0x11}, 0x98)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f00000000c0)={0x15, 0x110, 0xfa00, {r3, 0x0, 0x0, 0x0, 0x0, @ib={0x1b, 0x5, 0xcc, {"66af1f5861123b95b45b34c60e48e343"}, 0xfffffffffffffffc, 0x9, 0xfff}, @in6={0xa, 0x4e23, 0x5, @local, 0x1000}}}, 0x118)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(0xffffffffffffffff, 0x84, 0x21, &(0x7f0000000000)=0x68724e85, 0x4)

03:34:06 executing program 2:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000740)=@nat={'nat\x00', 0x1b, 0x5, 0x448, 0x210, 0xf8, 0x210, 0x2e0, 0x2e0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x3b0, 0x5, &(0x7f0000000380), {[{{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@icmp={0x28, 'icmp\x00', 0x0, {0xb, 0x7fffffff, 0xfffffffffffffffb}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @empty, @empty, @icmp_id=0x65, @gre_key=0xffd}}}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x14}, @empty, 0xffffffff, 0x0, 'dummy0\x00', 'veth1_to_bridge\x00', {}, {0xff}, 0x0, 0x1, 0x8}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}, @common=@ttl={0x28, 'ttl\x00', 0x0, {0x3, 0x8}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0xf, @remote, @local, @port=0x4e22, @gre_key=0x7ff}}}}, {{@uncond, 0x0, 0x98, 0xd0}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x8, @empty, @broadcast, @icmp_id=0x67, @icmp_id=0x64}}}}, {{@ip={@remote, @local, 0xffffffff, 0xff, 'syz_tun\x00', 'ifb0\x00', {0xff}, {0xff}, 0x8, 0x2, 0x4}, 0x0, 0x98, 0xd0}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x8, @empty, @dev={0xac, 0x14, 0x14, 0xe}, @port=0x4e23, @gre_key=0xfffffffffffffffa}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x4a8)
sendmsg$nl_generic(r2, &(0x7f0000000500)={&(0x7f0000000000), 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x10404)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, "7665746831000000000000001100", 0x4}, 0x18)
r4 = memfd_create(&(0x7f0000002b00)='/dev/loop#\x00', 0x0)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000002780))
pwritev(r4, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81806)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000028c0)={0x10})
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000002c0)={0x62, @local, 0x4e23, 0x2, 'fo\x00', 0x1, 0x6, 0x4b}, 0x2c)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r4, 0xc0f85403, &(0x7f00000027c0)={{0x3, 0x0, 0x4, 0x3, 0x8}, 0x7, 0x1, 'id1\x00', 'timer1\x00', 0x0, 0x1, 0x81, 0x0, 0x101})
r5 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={<r6=>0x0}, &(0x7f0000000280)=0xc)
getsockopt$IP_VS_SO_GET_INFO(r4, 0x0, 0x481, &(0x7f0000000180), &(0x7f0000000300)=0xc)
perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x50, 0x3ff, 0x6, 0x3, 0x0, 0x7, 0x4100, 0xc, 0x9, 0x4, 0x8, 0x1, 0x9, 0x100000000000001, 0x6, 0x7dd, 0x7a, 0x7, 0x2, 0xfffffffffffff800, 0x101, 0x72f7, 0x4, 0x2, 0xfff, 0xc000000000000000, 0x5, 0x5, 0x8, 0x0, 0x322, 0x1, 0x7f, 0x80000000, 0xfffffffffffff001, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x2, 0x4}, 0x2000, 0x0, 0x2, 0x2, 0xffffffffffffff8b, 0xfffffffffffff000, 0x2}, r6, 0x1, r1, 0x8)
perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r5, 0xc0045516, &(0x7f0000000140)=0x100000008001)
readv(r5, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
r7 = getpid()
ioctl$RTC_AIE_ON(r4, 0x7001)
tkill(r7, 0x1000000000015)
accept$inet(r4, &(0x7f0000000400)={0x2, 0x0, @dev}, &(0x7f0000000440)=0x10)

03:34:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [0x3a, 0x1, 0x3a]})

03:34:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x801, 0x0)
write$P9_ROPEN(r3, &(0x7f00000000c0)={0x18, 0x71, 0x1, {{0x2, 0x0, 0x5}, 0x7}}, 0x18)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:06 executing program 1:
r0 = gettid()
add_key(&(0x7f0000000200)='dns_resolver\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12, 0x2, @thr={&(0x7f00000000c0)="95e4517ca352c40ea022cbccb3b847b609ecb6cc7f3f16a4003840af91ba", &(0x7f0000000100)="db91485a11fbc8630d195775fd5a1cc0fc5e9416e99260cd0a2832575f7c5f0e6dc516e81d2888091f203f0ccf687ea93664d4431ea805da42886b2a5ce5bee2fe2d503a4b1862e14c5c383cd3a3a8caa25554052db3e6920a296d4b45f0c23f76e11948637ea0bbd3b7eca10c177006aa2686ce6017c4036a2c595d5bdd2b38110452161a65c4b7367606568144cbbd11f1e3765f7232ebb24c766a72071e8d7be44e59f9a638f1bc0866ff0e16b183f89cd6e315fed572"}}, &(0x7f00000001c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000000240))
clock_nanosleep(0x2, 0xb8ef9e4c5c28237b, &(0x7f0000000000)={0x0, 0x1c9c380}, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x100000000031, 0xffffffffffffffff, 0x0)
tkill(r0, 0x1000000000014)
clock_gettime(0x3, &(0x7f00000002c0))

03:34:06 executing program 0:
getpgid(0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000180))
r0 = getpgrp(0xffffffffffffffff)
r1 = syz_open_procfs(r0, &(0x7f0000000140)='net/rfcomm\x00')
r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r2)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x200031, 0xffffffffffffffff, 0x0)
fstat(r1, &(0x7f0000000600))

03:34:06 executing program 4:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000000c0)="153f6234488dd25d766070")
r1 = socket$inet6(0xa, 0x1, 0x8010000400000084)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f00000003c0)={0x80000000}, 0x4)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080)=<r2=>0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000100)={0x2, 0x3, 0x7fffffff, 0x4, r2})
shutdown(r1, 0x0)
sendto$inet6(r1, &(0x7f0000000000)="e2", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

03:34:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getuid()

03:34:06 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7, 0x2, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0xfffffffffffffef2}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3fffe99, 0x0)

03:34:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getuid()

03:34:06 executing program 4:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000019c0)='bpf\x00', 0x0, &(0x7f0000000700)=ANY=[])
mkdir(&(0x7f00000006c0)='./file0/file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000500)='bpf\x00', 0x100000, &(0x7f0000000480)=ANY=[])
mount$bpf(0x20000000, &(0x7f00000003c0)='./file0/file0\x00', &(0x7f0000000140)='bpf\x00', 0x2001001, &(0x7f0000001900)=ANY=[])
mount$bpf(0x0, &(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000580)='bpf\x00', 0x80000, &(0x7f0000000780)=ANY=[@ANYPTR64=&(0x7f0000000340)=ANY=[@ANYRESOCT, @ANYRESHEX=0x0, @ANYPTR=&(0x7f00000005c0)=ANY=[@ANYRES64, @ANYRES32, @ANYRESOCT, @ANYRESOCT, @ANYBLOB="eebfd44966be8da35ce3f1a8fe130e20ac849c8ebac51ff1772730949fd0d02de25aa6e34600de89a5e4897f20df8ff5c05b606a1ed8d64a4ce0728c2ec71ae8ad06fca4954d39c7211cd81635922144563083f32a7c5208919e912d7b0a6fda166cf41a23a79299350bb077a99aed645f836a93c25a9ee1", @ANYRES64], @ANYRESDEC, @ANYRESDEC], @ANYRES16, @ANYPTR64=&(0x7f0000000100)=ANY=[@ANYRES64, @ANYRESOCT=0x0, @ANYRES64], @ANYRES32, @ANYRESDEC, @ANYPTR=&(0x7f0000001a40)=ANY=[@ANYPTR64, @ANYRESDEC, @ANYRES32, @ANYRESOCT, @ANYBLOB="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", @ANYRESOCT, @ANYBLOB="404995864a005fb7a3c260b9b4a43ffe51e318e8222a9647f743bf71509bfdbdea801ba105c3c789766d80e153bc2258273ba510ec9818176f59040ab6af07c7285cdf6e991e24dd06473028cea1559564654137", @ANYPTR64], @ANYBLOB="ecd13a244f2744f08fcb9a7da19310384ba6d1a2a1441244e845466d407e299a98fe2947d63f6210d12793840fd13e9f45e1f597bac60d53f282"])
mount$bpf(0x20000000, &(0x7f0000000940)='./file0/file0\x00', &(0x7f0000001a00)='bpf\x00', 0x5004, &(0x7f0000000900)=ANY=[])
mount$bpf(0x20000000, &(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000440)='bpf\x00', 0x5890, &(0x7f0000000280)=ANY=[])
mount$bpf(0x0, &(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='bpf\x00', 0x0, &(0x7f0000000680))

03:34:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
r1 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x100000000, 0x8400)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f00000000c0)={0x486, 0x81})
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000280)=0x20000000080)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140)={0x4})
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
syz_open_pts(r0, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x8)

03:34:07 executing program 0:
socketpair(0x11, 0x1, 0x8, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000000c0)=0xc98, 0x4)
r1 = memfd_create(&(0x7f0000000080)='.\x00', 0x0)
r2 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x20005)
r3 = dup2(r2, r1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48000000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"})
clock_gettime(0x0, &(0x7f00000003c0)={<r4=>0x0})
write$sndseq(r1, &(0x7f0000000040)=[{0x0, 0x3, 0x0, 0x0, @time={r4}, {}, {}, @ext={0x0, &(0x7f0000038ffe)}}], 0x30)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000140)={0x4a48b125e136533})

03:34:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getuid()

03:34:07 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4}, 0x1c)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x200, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f00000001c0)={@nfc_llcp={0x27, 0x1, 0x2, 0x4, 0x1, 0x5, "7ab017fa87b5191ca5b27a9e163f2731be731d29ee25ada60b509a6052dc40d3049183211352ebdd6cfa4f80b64c9221ac003074cf82a96d584a1eb372fa1c", 0x5}, {&(0x7f00000000c0)=""/202, 0xca}, &(0x7f0000000040), 0x2}, 0xa0)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c)

03:34:07 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x3)
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x100, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000340)={<r3=>0xffffffffffffffff}, 0x13f, 0x100b}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r2, &(0x7f0000000440)={0x6, 0x118, 0xfa00, {{0x6, 0x1, "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", 0xc0, 0x9ea, 0x101, 0x6, 0x1, 0x6, 0xaf, 0x1}, r3}}, 0x120)
ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000080)={0x79, 0x0, [0x7, 0x7, 0xeb1, 0x9c]})
ioctl$sock_inet_SIOCRTMSG(r2, 0x890d, &(0x7f0000000140)={0x1, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xb}}, {0x2, 0x4e20, @loopback}, {0x2, 0x4e20, @remote}, 0x8, 0x7, 0x100000000, 0x5, 0x7, &(0x7f0000000100)='bridge_slave_1\x00', 0x8001, 0xeda})
recvmsg(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f00000001c0)=""/222, 0xde}, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
setsockopt(r1, 0x20000100000114, 0xa, &(0x7f00003cbffc)="02000000", 0x4)
mmap(&(0x7f0000000000/0x5000)=nil, 0x5000, 0x2, 0x10031, 0xffffffffffffffff, 0x0)
connect$inet(r1, &(0x7f0000adf000)={0x2, 0x0, @loopback}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)={0xe, 0x4, 0x4, 0x8}, 0x2c)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r4, &(0x7f0000000000), &(0x7f0000000240)=""/202}, 0x18)
sendmsg$alg(r1, &(0x7f0000159fc8)={0x0, 0x0, &(0x7f0000fc8000), 0x0, &(0x7f0000000e8e)}, 0x0)
fcntl$dupfd(r2, 0x0, r0)

03:34:07 executing program 2:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
ftruncate(r0, 0x1000)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
ioctl$SCSI_IOCTL_SYNC(r0, 0x4)
unlink(&(0x7f0000000040)='./bus\x00')
ftruncate(r1, 0x0)

03:34:07 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_vif\x00')
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xc, 0x13, r0, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000040)=<r2=>0x0)
syz_open_procfs(r2, &(0x7f0000000080)='net/udplite\x00')
r3 = timerfd_create(0x0, 0x0)
timerfd_settime(r3, 0x0, &(0x7f0000005000)={{}, {0x0, 0x1c9c380}}, &(0x7f0000af9ff0))
r4 = gettid()
fcntl$setflags(r1, 0x2, 0x0)
ptrace$peekuser(0x3, r4, 0x200)

03:34:07 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mknod(&(0x7f0000000100)='./file0\x00', 0x1040, 0xfffffffe)
pause()
open$dir(&(0x7f0000000080)='./file0\x00', 0x103001, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000280), &(0x7f0000000200)}}, &(0x7f00009b1ffc))
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff)
mount$fuse(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='fuse\x00', 0x40, &(0x7f0000000600)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
tkill(r1, 0x12)
open$dir(&(0x7f0000296ff8)='./file0\x00', 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xe8, 0x100, 0x7fff, {"8eb85a26ce762c9802ef91e2d7d37e1bd662a44982797860c1f86c7e1171536547b4dc84834c7980a7008a37c3d0f64d51e4f589cb4fb3c10afeb18ef28c904de3502fdc2b5a9a494e107416235531db0ce5e7e92c4ff6f01a2196e6d9db69c83f0f2c2cbc5067fb434102f9fd5670f15182dae15675bf7d889476240bbcfe033b972ccc5d03ca21559fb725edf1d04442957b57e06a147cdd68159d431bdc8e0d63144e8947e5369f7b8c61170dbd7b11e1ed3ddcc9256c096634db9ece10e582e7d8721d476664f990bcb94a923e68ef2627e8a3bd6b369a08334a8519b8d02a9cc5b9af8b"}}, {0x0, "5d9b156b67c38288228492bfa9357c8be1d062da1c4881a4fd9f185330249be6b18dbc36b8648feb3b4fd34b6f56a17931c25eac40fc6f9c75240fd757c6ba988d3a3149ff48c90fa3743e830b97341f8989f4ce9e1bc8bd4d215d65a4580e01ae18ad642f5621abd12608a7335240e2320c202737b8f4e460206856179a73f300aa24cf6dc170215c00025b3323454da3efa6e40a457b6d7adc6bfc0949ff483c95722164e474d8dacd9f93e6a6b24cddf5ef4bc84dab8a29892f84ae6b4dac204dbc33800ad9"}}, &(0x7f0000000680)=""/4096, 0x1c9, 0x1000, 0x1}, 0x20)

[  305.608545] Unknown ioctl 1080602275
[  305.617368] Unknown ioctl 35085
03:34:07 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getuid()

03:34:07 executing program 2:
prctl$setname(0xf, &(0x7f0000000440)='/dev/infiniband/rdma_cm\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0xb2a5, 0x200000)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000040)={0x3, 0x3, 0x9f8a, 0x3, 0x1})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x4, 0x0)

[  305.689127] Unknown ioctl 1080602275
[  305.704619] Unknown ioctl 35085
03:34:07 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00')
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000140)={'team0\x00', <r2=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000380)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x60, r1, 0x1, 0x0, 0x0, {}, [{{0x8, 0x1, r2}, {0x44, 0x2, [{0x51, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8}}, {0x8}}}]}}]}, 0x60}}, 0x0)

03:34:07 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getuid()

03:34:08 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0xef, 0x200000)
ioctl$sock_inet_SIOCSIFPFLAGS(r3, 0x8934, &(0x7f00000000c0)={'bcsf0\x00', 0x7})
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:08 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x1000000000000010, 0x80802, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000200)={0x1, 0x100000001, 0x1, 0x7ff, 0x8, [{0x8, 0x8, 0x3ff, 0x0, 0x0, 0x80}, {0x8a2, 0x7fffffff, 0x5, 0x0, 0x0, 0x1d8a}, {0xfffffffffffffff9, 0x0, 0x7f, 0x0, 0x0, 0x2201}, {0x0, 0x7, 0x37e, 0x0, 0x0, 0x1100}, {0x5, 0x6, 0x0, 0x0, 0x0, 0x1280}, {0xfffffffffffffe3c, 0x1, 0x7, 0x0, 0x0, 0x400}, {0x0, 0x3, 0xffffffff, 0x0, 0x0, 0x882}, {0xbb, 0x7fff, 0xdb2, 0x0, 0x0, 0x80}]})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r1 = dup(r0)
write(r1, &(0x7f0000000100)="2400000058001f02ff07f4f9002304000a04f51108000100020100020800028001000000", 0xffffffffffffff41)

03:34:08 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="00000000000000000a00000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000035e0ee58bf0ccf8c3dbce4dc2d488c1bb41b9c03a6acbf006808145969e7a93d19e618d65274631691067f0cc8f5b0f2046f39ca1a22b5a358d5bfe02c6fabd3527cf15056bb755852c06842bc3e76f8ecf3304168fb62674d0eae4784bb70099bad9c5fe7073dbfc99d472d298adb2d55456c7994c8"], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in6}}, &(0x7f0000000580)=0xe8)
bind$packet(r1, &(0x7f0000000800)={0x11, 0x1c, r4, 0x1, 0x9, 0x6, @remote}, 0x14)

03:34:08 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
getuid()

03:34:08 executing program 2:
r0 = memfd_create(&(0x7f0000000000)='*ppp0]\x00', 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000080)={<r1=>0x0, 0x1}, &(0x7f0000000140)=0x8)
r2 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$invalidate(0x15, r2)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={r1, 0x51, 0x30}, &(0x7f00000001c0)=0xc)
name_to_handle_at(r0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x56, 0x6, "714e079df798412827a4a19476b748659ce69a6dde551ed583e8790895318f7622082c5a785418c9446cb5ad4f9a88681f605766b3b176432f1c3b8fcebaff545d3b42f550ed40f7960a355df676"}, &(0x7f0000000300), 0x1000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
syz_mount_image$xfs(&(0x7f0000000500)='xfs\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0xbe1, &(0x7f0000000540), 0x2000002b3c039, &(0x7f0000001840)=ANY=[@ANYRES64=r3, @ANYPTR=&(0x7f0000001740)=ANY=[@ANYRES16=r3, @ANYPTR=&(0x7f0000001700)=ANY=[@ANYRES64=r0, @ANYRES64=r4, @ANYRESDEC=r0, @ANYRES16=r4], @ANYBLOB="8aa9bda885ac7cb6bf54229ada42af33f6f00a02686b283f582ee431fa50c37f5a4cf0c412b6bea756c48340375bf7e4584453e02e966e4c89a1171d4c9fb283ef7e1ea819bc26353cfdc349d292d4b6cf02f9659ac7f45faff64153159cd0786f20ec67", @ANYRESDEC, @ANYRESHEX=r0], @ANYPTR64=&(0x7f0000000580)=ANY=[@ANYRESHEX=r3, @ANYRES16=r3], @ANYPTR64, @ANYBLOB="58b881a05351fa2350d979392b44daa6460c37f716fcbf2a4ea5c2c1a0a89617dd9947dd2b11858eb2c4d20dfc244fbe47e6873453f24b7b35f5ac66808efddddd7c9b285ae69b6edffb0be5d7faf6fa0802ed2e9963df7781"])

03:34:08 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:08 executing program 4:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040), 0x0, 0x0, r0)
keyctl$setperm(0x5, r1, 0x20000015)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x1, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000200))
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100))
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
preadv(r3, &(0x7f0000000480), 0x1000000000000156, 0x0)

03:34:08 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x800000000000004)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d5c6070")
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x5, 0x200201)
getsockopt$llc_int(r2, 0x10c, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0xff}, 0xa, @in6, 0x0, 0x1, 0x0, 0xdffffffffffffffe}}, 0xe8)
sendmmsg(r1, &(0x7f0000000a80)=[{{&(0x7f0000000100)=@in={0x2, 0xc67a}, 0x80, &(0x7f0000000240), 0x0, &(0x7f0000000280)}}], 0x1, 0x0)

03:34:08 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:08 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in6}}, &(0x7f0000000580)=0xe8)
bind$packet(r1, &(0x7f0000000800)={0x11, 0x1c, r4, 0x1, 0x9, 0x6, @remote}, 0x14)

03:34:08 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:08 executing program 1:
perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000000c0), 0x0)
r1 = socket$kcm(0xa, 0x522000000003, 0x11)
sendmsg$kcm(r1, &(0x7f0000000240)={&(0x7f0000000040)=@nl=@unspec={0x0, 0xffffff7f00000000, 0x7e4c, 0x80fe}, 0xfd3d, &(0x7f00000001c0), 0x12f}, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0)='tls\x00', 0x4)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r0, 0x3)

03:34:08 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000080)=""/11, 0xfffffffffffffec9)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
ioctl$TIOCCBRK(r0, 0x5428)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x2c0140, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000380)={<r4=>0x0, @in={{0x2, 0x4e22, @rand_addr=0x1}}, 0x3, 0x0, 0x100, 0x7, 0x1}, &(0x7f00000000c0)=0x98)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f00000001c0)={r4, 0xffffffffffffffe0}, &(0x7f0000000240)=0x8)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
syz_open_pts(r0, 0x0)

03:34:08 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in6}}, &(0x7f0000000580)=0xe8)
bind$packet(r1, &(0x7f0000000800)={0x11, 0x1c, r4, 0x1, 0x9, 0x6, @remote}, 0x14)

03:34:08 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:08 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:09 executing program 2:
r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$ndb(&(0x7f0000000340)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)={0x0, @speck128, 0x3, "480a034607ef09a1"})
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0x15}, 0x6}, @in={0x2, 0x4e22}, @in6={0xa, 0x4e21, 0x5, @mcast2, 0x4}, @in={0x2, 0x4e24, @remote}, @in6={0xa, 0x4e20, 0x2, @mcast2, 0x40}, @in6={0xa, 0x4e24, 0x2, @loopback, 0x9}, @in={0x2, 0x4e22}, @in={0x2, 0x4e23, @local}], 0xb0)
ioctl$sock_inet_SIOCRTMSG(r2, 0x890d, &(0x7f0000000280)={0x457d1890, {0x2, 0x4e23}, {0x2, 0x4e21, @multicast1}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xd}}, 0x8, 0x6, 0x0, 0x800, 0x8, &(0x7f00000001c0)='ip_vti0\x00', 0x12a8, 0x80000001, 0xfffffffffffffffe})
ioctl$NBD_SET_SIZE(r1, 0xab02, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000040))
openat$uhid(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uhid\x00', 0x802, 0x0)

03:34:09 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000240)={@in6, 0x0, 0x7, 0x0, "7189c6ea81e6d75e07ea6980a840c6aab0b3fa0ca0728f0e779e41c35427961e53eee56e7e8d4061344abe9ac15a5048823a106f43e3c9b1772d981150067834106d4f4651a70638764aad85c3525f4b"}, 0xd8)
r1 = syz_open_dev$adsp(&(0x7f0000000200)='/dev/adsp#\x00', 0x7, 0x1)
linkat(r1, &(0x7f0000000180)='./file0\x00', r1, &(0x7f00000001c0)='./file0\x00', 0x400)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f00000000c0)={0x4, 0x0, [{0xc000001f, 0x10001, 0x2, 0x524, 0x9}, {0x80000001, 0x18d1, 0x6, 0xffff, 0x4, 0x6, 0x40}, {0x80000019, 0x6, 0x0, 0x3ff67243, 0x5, 0xffff, 0x20}, {0xc0000001, 0x1, 0x0, 0x5, 0xe5b, 0x6, 0x7}]})
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x2)
r2 = fcntl$getown(r1, 0x9)
mknodat(r1, &(0x7f0000000340)='./file0\x00', 0xcb, 0x8)
r3 = getpgrp(0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000040)={r1, r1, 0x7ef7})
connect$inet6(r0, &(0x7f0000000080), 0x1c)

03:34:09 executing program 4:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040), 0x0, 0x0, r0)
keyctl$setperm(0x5, r1, 0x20000015)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x1, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000200))
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100))
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
preadv(r3, &(0x7f0000000480), 0x1000000000000156, 0x0)

03:34:09 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@dev}, 0x0, @in6}}, &(0x7f0000000580)=0xe8)
bind$packet(r1, &(0x7f0000000800)={0x11, 0x1c, r4, 0x1, 0x9, 0x6, @remote}, 0x14)

03:34:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r1, &(0x7f0000000080)={0x40000012})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:09 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getuid()

03:34:09 executing program 1:
r0 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @local}}, 0xfffffe63)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x10000, 0x0)
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000000100)=""/66)

03:34:09 executing program 2:
r0 = socket$inet6(0xa, 0x80003, 0x800000000000006)
ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234488dd25d766070")
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x200000, 0x0)
write$P9_RFSYNC(r2, &(0x7f00000000c0)={0x7, 0x33, 0x1}, 0x7)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r1, 0x4)
sendto$inet(r3, &(0x7f0000000180), 0x0, 0x0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback}, 0x10)

03:34:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:09 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="00000000000000000a00000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000035e0ee58bf0ccf8c3dbce4dc2d488c1bb41b9c03a6acbf006808145969e7a93d19e618d65274631691067f0cc8f5b0f2046f39ca1a22b5a358d5bfe02c6fabd3527cf15056bb755852c06842bc3e76f8ecf3304168fb62674d0eae4784bb70099bad9c5fe7073dbfc99d472d298adb2d55456c7994c8"], 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@remote, @in6}}, {{@in=@dev}, 0x0, @in6}}, &(0x7f0000000580)=0xe8)

03:34:09 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0x9, &(0x7f0000000340), 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x4001, 0x0)
getsockname$netlink(r2, &(0x7f0000000080), &(0x7f00000000c0)=0xc)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0xc0145401, &(0x7f0000000100)={0x3, 0x0, 0x3, 0x0, 0x6})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

03:34:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:09 executing program 2:
syz_open_pts(0xffffffffffffff9c, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2cf2146f77ba0b0021020011", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(r0, &(0x7f0000001000), 0x1000)
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, 0x1, {0x7, 0x1b, 0x0, 0x3ffd}}, 0x50)
r1 = open(&(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001000), 0x1000)
r2 = open$dir(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001000), 0x1000)
write$FUSE_OPEN(r0, &(0x7f0000000040)={0x20, 0x0, 0x3}, 0x20)
write$FUSE_ENTRY(r0, &(0x7f0000000580)={0x90, 0x0, 0x2}, 0x90)
getdents(r2, &(0x7f0000000240)=""/185, 0xb9)
read$FUSE(r0, &(0x7f0000002000), 0x1000)
connect$l2tp(r1, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x4, 0x0, 0x3, 0x1, {0xa, 0x4e20, 0x3, @dev={0xfe, 0x80, [], 0x13}, 0x40}}}, 0x32)
ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f0000000140)={'team_slave_0\x00', {0x2, 0x4e20, @loopback}})

03:34:09 executing program 1:
r0 = socket$inet6(0xa, 0x802, 0x800000000000006)
ioctl$int_in(r0, 0x0, &(0x7f0000000340)=0xffff)
ioctl(r0, 0x8912, &(0x7f0000000040)="153f6234488dd25d766070")
r1 = socket$inet(0x10, 0x3, 0xc)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000080)={<r2=>0x0, @in={{0x2, 0x4e21, @loopback}}, 0x9c63, 0x1}, &(0x7f0000000140)=0x90)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000180)={r2, 0x4, 0x3, [0xfffffffffffffffa, 0x2947, 0x6]}, &(0x7f0000000200)=0xe)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000380)={'filter\x00'}, &(0x7f0000000400)=0x54)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000240)=ANY=[@ANYBLOB="0700000058a9687d0100000000000000090000000000000000744236f9ddeccc0000070000000000000009000000000000000600000000000000090000000000000081000000ffff000000000800000000000000050000000000000006000000000000005f00000000000000000000000000000000000000"])
ioctl$DRM_IOCTL_FREE_BUFS(r1, 0x4010641a, &(0x7f0000000300)={0x1, &(0x7f00000002c0)=[0x6]})
sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000020907041dfffd946fa2830020200a0009000200001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0)

[  307.725045] netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.
[  307.763300] netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.
03:34:09 executing program 4:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040), 0x0, 0x0, r0)
keyctl$setperm(0x5, r1, 0x20000015)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x1, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000200))
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000100))
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000240)='stack\x00')
preadv(r3, &(0x7f0000000480), 0x1000000000000156, 0x0)

03:34:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  308.132615] IPVS: ftp: loaded support on port[0] = 21
[  309.253020] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.259548] bridge0: port 1(bridge_slave_0) entered disabled state
[  309.266349] device bridge_slave_0 entered promiscuous mode
[  309.388522] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.394913] bridge0: port 2(bridge_slave_1) entered disabled state
[  309.402068] device bridge_slave_1 entered promiscuous mode
[  309.538182] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready
[  309.566434] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready
[  309.573589] IPVS: stopping backup sync thread 13714 ...
[  309.705241] bond0: Enslaving bond_slave_0 as an active interface with an up link
[  309.752483] bond0: Enslaving bond_slave_1 as an active interface with an up link
[  309.921472] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready
[  309.928817] team0: Port device team_slave_0 added
[  309.972567] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready
[  309.979828] team0: Port device team_slave_1 added
[  310.002861] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  310.090003] device bridge_slave_1 left promiscuous mode
[  310.095697] bridge0: port 2(bridge_slave_1) entered disabled state
[  310.148638] device bridge_slave_0 left promiscuous mode
[  310.154091] bridge0: port 1(bridge_slave_0) entered disabled state
03:34:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = syz_open_dev$vcsn(&(0x7f0000000400)='/dev/vcs#\x00', 0x7f, 0x20000)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000240)={0x0, 0x94d5, 0x0, &(0x7f00000001c0)=0x100})
ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000080)={0x101, 0x40000000, 0xed, 0x594d, 0x9})
r2 = epoll_create1(0x0)
dup3(r0, r0, 0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r2, &(0x7f0000000140)={0xfffffffffffffffb})
r3 = gettid()
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000280))
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r4, 0x660c)
ioctl$TCXONC(r4, 0x540a, 0x0)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000380)=0x8)

03:34:12 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1)

03:34:12 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xb, 0x7f, 0x7, 0x5, 0x1}, 0x2c)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x200000, 0x0)
ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f00000000c0))
setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000100)={0x3a, @multicast1, 0x0, 0x0, 'dh\x00'}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000080), &(0x7f0000000140)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000040)={r0, &(0x7f0000000100), &(0x7f00000001c0)=""/168}, 0x18)

03:34:12 executing program 1:
socketpair$nbd(0x2, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000140)='trusted.overlay.opaque\x00', &(0x7f0000000180)='y\x00', 0x2, 0x2)
r1 = socket$inet6(0xa, 0x201000000000001, 0x0)
r2 = syz_open_dev$mice(&(0x7f0000000240)='/dev/input/mice\x00', 0x0, 0x100)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000200))
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0xe, &(0x7f00000000c0), &(0x7f0000000000)=0x3)
setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000280)=0x7, 0x4)
shmget(0xffffffffffffffff, 0x3000, 0x0, &(0x7f0000ffb000/0x3000)=nil)
shmat(0x0, &(0x7f0000ffb000/0x3000)=nil, 0x0)
fcntl$lock(r1, 0x7, &(0x7f00000001c0)={0x3, 0x0, 0x100000000, 0x1, r3})

03:34:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:12 executing program 2:
r0 = socket$inet(0x2b, 0x2, 0xe)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000080)='trusted.overlay.upper\x00', &(0x7f00000002c0)={0x0, 0xfb, 0x1015, 0x4, 0x7, "e233d95791e1900874adb4dd41efe230", "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"}, 0x1015, 0x1)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000001c0)={0x2, 0x4e23, @rand_addr}, 0x10)
setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4)
setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4)

03:34:12 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:12 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x1)

03:34:12 executing program 1:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gretap0\x00', <r1=>0x0})
bind$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x7fffffff, 0x1, 0x1, 0xfa0, 0x0, 0x5}, 0x9}, 0xa)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000440)={&(0x7f0000000340), 0xc, &(0x7f0000000400)={&(0x7f0000000380)=@setlink={0x2c, 0x13, 0x811, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_ADDRESS={0xc}]}, 0x2c}}, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$EVIOCGABS0(r3, 0x80184540, &(0x7f00000000c0)=""/161)

03:34:12 executing program 2:
read(0xffffffffffffffff, &(0x7f0000fb6000)=""/28, 0x3f0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffff9c, 0x84, 0x14, &(0x7f0000000240)=@assoc_value={<r1=>0x0}, &(0x7f0000000280)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000002c0)={r1, @in={{0x2, 0x4e22, @multicast1}}, 0x420, 0x0, 0x9, 0x2, 0xc0}, 0x98)
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r4, &(0x7f0000000600)="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", 0x1000)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r4, 0x81785501, &(0x7f00000001c0)=""/15)
r6 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
write$cgroup_type(r6, &(0x7f0000000000)='threaded\x00', 0x9)
fallocate(r6, 0x0, 0x0, 0x10001)
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f00000003c0)={0x3, &(0x7f0000000380)=[{0x2639, 0x0, 0x6, 0x8}, {0x800, 0x40, 0x20, 0x8000}, {0x800, 0x2, 0x9, 0x14}]})
fallocate(r6, 0x3, 0x5e00, 0x2cbd)
fallocate(r4, 0x11, 0x401, 0x10000)
sendfile(r4, r5, &(0x7f0000002000), 0xffffffff000)
tkill(r2, 0x1000000000014)

[  311.424815] syz-executor2 (14138) used greatest stack depth: 11608 bytes left
[  312.519627] team0 (unregistering): Port device team_slave_1 removed
[  312.530002] team0 (unregistering): Port device team_slave_0 removed
[  312.539894] bond0 (unregistering): Releasing backup interface bond_slave_1
[  312.621765] bond0 (unregistering): Releasing backup interface bond_slave_0
[  312.696238] bond0 (unregistering): Released all slaves
[  312.761066] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready
[  312.773578] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  312.782354] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  312.830164] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready
[  312.837294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  312.848077] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  312.871313] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready
[  312.878459] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  312.886142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  313.204015] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.210445] bridge0: port 2(bridge_slave_1) entered forwarding state
[  313.217108] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.223488] bridge0: port 1(bridge_slave_0) entered forwarding state
[  313.231260] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready
[  313.788376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  314.380938] 8021q: adding VLAN 0 to HW filter on device bond0
[  314.454275] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready
[  314.527683] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready
[  314.533848] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  314.541696] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  314.613276] 8021q: adding VLAN 0 to HW filter on device team0
03:34:17 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00')
ioctl$TCSETAW(r0, 0x5407, &(0x7f00000000c0)={0x0, 0x401, 0x10000, 0x8, 0x6, 0x0, 0x7, 0x9, 0x300000000, 0x11b})
r1 = socket$inet6(0xa, 0x1, 0x8010000000000084)
ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000000)={'bpq0\x00', {0x2, 0x0, @multicast2}})
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0x4)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x4, 0x1)
sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_misc(r2, &(0x7f0000000140)=ANY=[], 0x0)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000300), &(0x7f0000000340)=0x4)
accept4(r1, 0x0, &(0x7f0000000040), 0x0)
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000280)={'team0\x00', @dev={[], 0x19}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='eth0\\\x00'}, 0x10)

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})
ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xf8)

03:34:17 executing program 3:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x2000, 0x0)
r1 = signalfd(0xffffffffffffff9c, &(0x7f00000001c0)={0x8001}, 0x8)
sendmsg$nl_netfilter(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x180000}, 0xc, &(0x7f0000000240)={&(0x7f0000000380)={0x12f4, 0x5, 0x6, 0x0, 0x70bd2b, 0x25dfdbfb, {0x3, 0x0, 0x6}, [@nested={0x11b0, 0x1f, [@generic="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", @generic="0deec98c7b422189cab148b649cb408294d81102adb57d87b537c9f0997794f9da92f7a41dc7b0162c061586a9b9cbd4967907f20c0d2775ce81880951a9997d7c40644a96404492d69371fb20503cdfaa7dd7a0d7ed6b9e60c6b490bc6f3b555432acd4838cd46ec07f22ddc47b39ef51e62ac719de25ff5a87e7d0d902e9ca8ea88422241dd55063ec64adf970b3cde40e8f043b21d4a8244b13e1c02397067b76cbd7bf14e9bb", @typed={0xc, 0x6a, @u64}, @typed={0x8, 0x4d, @fd=r1}, @generic="43dc336caa58776f5e323442d8c2a4d8d9b25fd2e7ad85004c99096185f63b17c4d09ea2e5800c80dd347554499dbebb07d638ebd8d44ea26020312634481912ed476de5613ed3ccdc4b41e953fb6c0c642ac51ccadc07a87edb37703f07ef693fb15dbbdd5fe135bf377149a3f45272af78d6dd0b338efb83897f64008c0d9666b9a6891c5a67c3717d8da618b24e10f122bf4874d79b7cbece98d6a97e3964fdd79ad8f2bda3509ba26220f9ff42124592d0aee353346c8df153a8d9968b60e7203e9b819abab3bf3f1de73344870aa4bacf2c21793e3a6da1c1fa1cb914513bed40c8536ea9d867fd709780f291db"]}, @nested={0x4, 0x91}, @nested={0xc8, 0x38, [@typed={0xc4, 0x7a, @binary="72256e83bbec1ef59c72e99aea331b47be9392d5adf59758c7812f98be3cefaab04552b9f0113908b07c5e4680da900f614bf1ecb8ec1b745b4245eec74c9104326ac1f214af5403d827d9d92d60433a194bbf24fc90daa74281107f3df4021021c900d3e847759e12573fec2f38fc301bf3076339369e3e00707f9a7ea1f4996bb6a4558332045e7bf08d22c644f0e3f2d0a5ca34c2f629552232f697896f2012323f90cf3ff5ba6eb97ca2b8e8cab2ca16a8bf9ac2baf17ba93a0e795c"}]}, @generic="08dc28848831c2de4c8a53b01907838166b421916f030ee5dc9b345651b78cf469a66e99154ce0431899e61f4d5cfc", @generic="8ed1b5a9c9099fa7ceedaa2fcd0debe2bdfd6aad7366bfa273bfe10cd072400a7d13c02840ca459734adcbf4", @typed={0x8, 0x1b, @ipv4=@rand_addr=0x7bfbcffa}]}, 0x12f4}, 0x1, 0x0, 0x0, 0x4}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r2, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r2})
openat$uinput(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/uinput\x00', 0x802, 0x0)
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r2, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000001680)={0x9, 0x20, 0x5, 0x1, 0x80000001, 0x8, 0x80, 0x5b8e, 0x7, 0x3, 0x4})
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:17 executing program 1:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhci\x00', 0x1, 0x0)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000200)={"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"})
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x10003, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfdffffff}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@random={'trusted.', ']#wlan1wlan0#\\\x00'}, &(0x7f0000000180)='GPLproc-]security\x00', 0x12, 0x1)
unlink(&(0x7f0000000000)='./file0\x00')

03:34:17 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000140)={0x3, 0xfffffffffffffd53, 0xfa00, {{0xa, 0xfffffffffffffffc}, {0xa, 0x0, 0x0, @local}, r1, 0x4}}, 0x48)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@ipv4={[], [], @remote}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@ipv4={[], [], @rand_addr}}}, &(0x7f0000000040)=0xe8)
r3 = syz_open_dev$mice(&(0x7f0000000480)='/dev/input/mice\x00', 0x0, 0x107000)
ioctl$KDGKBDIACR(r3, 0x4b4a, &(0x7f00000004c0)=""/25)
ioctl$ASHMEM_SET_NAME(r3, 0x41007701, &(0x7f0000000500)='/dev/infiniband/rdma_cm\x00')
getresgid(&(0x7f00000000c0), &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000380))
write$P9_RGETATTR(r0, &(0x7f00000003c0)={0xa0, 0x19, 0x2, {0x1084, {0x1, 0x3, 0x2}, 0x110, r2, r4, 0x7ff, 0x4, 0x6f82, 0x5, 0x10000000100000, 0x20, 0xf1e7, 0x6, 0x5, 0x5, 0x0, 0x2, 0x2040000, 0x23dc, 0x4}}, 0xa0)

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r1, &(0x7f0000000680)={0x80002001})

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))

03:34:17 executing program 1:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x200, 0x0)
epoll_pwait(r0, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}], 0x6, 0x9, &(0x7f0000000100)={0xf3}, 0x8)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000200)={"616800000000a9004000"}, &(0x7f0000000240)=0xfcaf)
rt_sigreturn()
r2 = semget$private(0x0, 0x7, 0x0)
ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="0100800000000000", @ANYPTR=&(0x7f0000000140)=ANY=[@ANYBLOB="03f3ac42f1833195d01090ac7b0d66bf06f7fd"], @ANYBLOB="080306000700ea57000000000000000000007fffaeda1bd4b5ec306934f70739e35db3e3f5e867"])
semctl$GETNCNT(r2, 0x4, 0xe, &(0x7f0000000280)=""/4096)
syz_open_dev$dmmidi(&(0x7f0000001280)='/dev/dmmidi#\x00', 0x4, 0x14400)

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x602000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080))
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0x0, 0xfffffffffffffffc})
pipe2(&(0x7f0000001280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x84000)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000012c0)={<r4=>0x0, 0x3, 0x30}, &(0x7f0000001300)=0xc)
ioctl$DRM_IOCTL_MODESET_CTL(r3, 0x40086408, &(0x7f0000000000)={0x4, 0x37})
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000001340)={r4, 0xb38d}, &(0x7f0000001380)=0x8)

03:34:17 executing program 2:
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000080))

[  315.346037] QAT: Invalid ioctl
03:34:17 executing program 1:
r0 = socket$inet(0x2, 0x200000002, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f000000a000)=ANY=[@ANYBLOB="aa2aaaaaaaaaffffffffffff08004500001c0000000000119078ac14ffbbe000000100004e2100089078"], 0x0)

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))

[  315.399024] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[  315.417219] QAT: Invalid ioctl
03:34:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
r1 = dup3(r0, r0, 0x80000)
getresuid(&(0x7f00000000c0)=<r2=>0x0, &(0x7f00000001c0), &(0x7f0000000240))
r3 = getpgrp(0x0)
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
r5 = fcntl$getown(r0, 0x9)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000400)=<r6=>0x0)
sendmsg$nl_generic(r1, &(0x7f0000001940)={&(0x7f0000000080), 0xc, &(0x7f0000001900)={&(0x7f0000000440)={0x14bc, 0x32, 0x101, 0x70bd26, 0x25dfdbfe, {0x12}, [@nested={0x11a0, 0x2f, [@generic="17f9c9cb56947288736a05479f8aa3aa340affcff0f0f24140468cd2f031debbfb07184c9f0e7113fc3cb509dd359690fa77c741bb2ef50b21597f04682626fec05bf32693da16fad9a93439667a37e7582fca8508901ab34fd2f4f35f85aa803ffb36c0fb7fe19d0a3e9f234b6601e440396e322fbb36d346337454f2348ef0ac51922690f863f901e17db5a53e5bd04441374de17ba5c7ab158e3c05e1d728d956d06c9a8379a08bb1afd678fd7d370c8fd2873607dd0f832c6b86652f254f58fd51b61c786d4b13", @typed={0x8, 0x58, @fd=r0}, @generic="b07bf7fbc1a5e17fe2533c5f68e6b2288a26cce4c04bb12d2f1a2026e88cf8102cddc8b53be3f6ba6c99b15b681454bebdec45b6b6ff5f8a1472905beaacbe273a3cbc36612f9dc2bd9942bd7a20e223308310803c4741aaae8073e3d2cb17b6b631adbef7a6858770a50a57714a71c30b1d90a98a42e3b5b079afd96377a7f98e388c49ad421e43166b3ea9e656797136884c651ed436771e919f8c5832ec7dab6f6ec0e8682cea", @generic="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", @typed={0x8, 0x27, @fd=r0}, @typed={0x8, 0x50, @str='\x00'}, @typed={0x8, 0x6, @uid=r2}, @typed={0x8, 0x7f, @fd=r0}]}, @nested={0x218, 0x44, [@generic="be8b8942e3450a2f52ca88aca3abaecd241a7e771e555f499cafa800869a34179119ab7e0b0e51ad5b4095712cf2a86e3cfd425741ea89170117130a46e4bd55d7cce57c8e7645033dc89d87bb2303f549438e65378d318605344aa963af806512240a34c82b4118b169dc43b379a4063f5c332c689cb8ac33630bdce9e2629e32acf4624e09ece6af61841515ec9afa567bf37d0fad15e51f33fc2406dfd67a0fcd5ec35b8dba814d2f6f8c6ea26b39170a1d671b25517ce09e2dac364624906018fbb41a91eab8805074acac7f8ee3028a345dff7a1d69c2c83eb84b98aa4061080e72dda56eec", @typed={0x14, 0x65, @ipv6=@mcast1}, @generic="4e57594229a175b1bcb0620d302ceb45a12c05694d704e38961d55108a0538d5fd0ebea854439c0d08357a0d59c274dab6f0401439fc7be86bd3180c8f14421e1dbc23bbef10fb48b289d8a3e5e8e7788b10a1e9d422af8d59c753ee1e0c89c344dd1fbed3f27395b06983362768a9d685ffa1b6ae9e9c6f297c5fffa8f91e67a2462309a50b68cbd3d7fc0698036c77ea03cadf4e70e1ed7e36845d78dc15101e30b4e39c0631f00764adc99c0a94296929a4c1a7f20501bc64b54e185549b558ad224c9612fac017a6be5b2a56d64ba511ff6b1ab88d7102903a0f7cd6750025a99aae91d58ecbbc1c48aa64", @typed={0x4, 0x5e}, @typed={0x4, 0x67}, @typed={0x8, 0xb, @pid=r3}, @typed={0x8, 0x10, @uid=r4}, @typed={0x8, 0x36, @pid=r5}, @typed={0x8, 0x38, @pid=r6}]}, @generic="cd60728868af29ff960e6a9743d77ef60c344c97eaccbce13b179bab98f84d5e534bf081cb6da0178e132788d8967005597e86863beac52fb61aa7876d5156555efd137315b11348650d2a18e690b005838bf54aae9ca348aed2fbc4faa37b1adeaea5ecd7e69250747e6d9b3bfb230fc873138c53420c05290bf02ce1903106b2929b609cf09d5257f4430f5b13d789395782fbe2cdb8eb396665df43fc6285d6843abf87488b2c09be3a2bf6c049a07a83f40aa950cc705b3b7c3c9c07301b0ef585f0eafc215bc42d2a5187aebc3df6771182a3dd46e2a10931f34a1db28eb83b7799f445ca6b6450a56e9d"]}, 0x14bc}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
write$P9_RCLUNK(r1, &(0x7f0000001a00)={0x7, 0x79, 0x1}, 0x7)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000001980))
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r0, &(0x7f0000000140))
r8 = gettid()
kcmp$KCMP_EPOLL_TFD(r8, r8, 0x7, r7, &(0x7f0000000000)={r7, r0})
ppoll(&(0x7f00000002c0)=[{r7}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r9 = syz_open_pts(r0, 0x0)
setsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f00000019c0)=0x4, 0x2)
ioctl$TCXONC(r9, 0x540a, 0x0)

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 4:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
sendmsg$kcm(r3, &(0x7f0000000440)={&(0x7f0000000200)=@nfc_llcp={0x27, 0x1, 0x2, 0x3, 0x2, 0x0, "47cdfbc84b23372fd1e8b2d404aa47e889268a70fcb82167feddc7c4a63a904a3c765d68dd8075a6cefa99ca4c2d642e9c8ea0d956f2eb99995f5c0ad25188", 0xd}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000080)="f737d95b3ce7d44387e020363cf12ac62509e2519a373b9884968c4de504e078b0a0fd6329f240ab4135e766", 0x2c}, {&(0x7f0000000280)="c188442a16e11e5ddb27fce26ea6888b1789209e965e4e90b35ad29e9099c64475cd440027dd2bbe2d01d2ecd6274f38cb87dbcbc8acf78ecdff0375886ceffbf4637589d275a9ffb11426741447da7dcd11e2434da8528a42e6b30b95299e986ae262da6ba621f2422c99ddbc9e37d884f437a1d55a3c8ce953fa5605dcbebe9950fa21b42df6c20611a34714c80d28f9de1faf8a171b2123ffd475ee2707dbcb996298cb314ae804ffbfbe9ad396192e6897d5e2bdebe76e4131277231", 0xbe}, {&(0x7f0000000340)="ca009ba3148d8753317f1d6356d75c4bd0132956ade3f73b231693eb50cdf083d1149843e58549e280382eefbc98918d192eb17102009a8316afcbc12c68ce83c281e2551fe269c257aa744e6ddd62becbf6a4f29bcbe87af2857ee7cdbea868c7c2579fa1376fc1b338ad7d7fca36f22359d0ef7f313b9e3888624c68f9d77b4d51b2d7fc7f441357b36b0c8b1b1121a690a595a80a8865daa02b7e7d614f4c3fd48393f458e41965844775f4aafa76e1cc", 0xb2}], 0x3, &(0x7f0000000400)=[{0x38, 0x10f, 0x9, "9f7eb0a6bb7cf0d47a655da1401c16eedf88a0290c4e72fd69c8cc21550de1f3ac2e"}], 0x38, 0x44}, 0x4000010)
clock_settime(0x0, &(0x7f0000000840))

03:34:17 executing program 1:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, &(0x7f00000007c0))
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f000045fff8)={0x0, <r2=>0x0})
ptrace$setopts(0x4206, r2, 0x0, 0x0)
ptrace(0xffffffffffffffff, r2)
ptrace$getregset(0x4, r2, 0x400002, &(0x7f0000000000)={&(0x7f0000002280)=""/4096, 0xd7})
mount(&(0x7f0000d04000), &(0x7f0000903000)='./file0\x00', &(0x7f0000000340)='bdev\x00', 0x100000, &(0x7f00000002c0))
mount(&(0x7f0000000500)=ANY=[@ANYBLOB="d5aef03c3897bafe0e2a33d35c37cf99ac5248684e14349545e01af81e07003b84b14c1fa4f1663228550994eeb07d4bac3386d8a24f719a2cd51e780b8e4ec61cb31df02be5fb0dbee5c14d25bc8dfe80f59cba9d79d9bd6bb197ecad2f4b6f93e669995843419b3e83af6725bbe6329392189d4d00000000000000cbc99c555dcdd99f61c9735177276b24091331856b2495d22d767a6de7c14cbe74025e4f7c4e36d4d3e75836837d0705e54a765a8b54313d7bb7787aa08d5d9157a2cc4c7becc27e2f45643ea422e2930c1f953f4e876f7ddf0a5ed916d2fd2f68b046f04e1f"], &(0x7f0000000240)='./file0\x00', &(0x7f00000003c0)="6365706800e9939d7656b741d1e0f62a0c9a60e76130f91c17a16f8a5437c9680aad3b4e45eddd76aab71a9e975d0177bc8f8d8bc8f9d30f9c55ced1150431a9b1a839bbf3fe67d3c0acde4e07a4ba536d54200f4e4dc3b02679197d7ba36309981462765060c41372bfb4f51c4a130a10ce0ac1731ce47f5ba461f37619f3ad2f00f19a93b6f27a14fbfbec7c5373c0ebc09635", 0x0, 0x0)
mount(&(0x7f0000fb6000), &(0x7f0000d78000)='.', &(0x7f0000fdb000)='ubifs\x00', 0x1003, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000480)="5dbc3d948123a089da95b5f5ccd24b4d3b2fb93375c404b7bc49c52a3b8d0784fa0068f384988ee0b486bf39a711768d5528b2113624770ec5ac0c971610d22d4d0bb6bf6fdae8456a71b41bd5304a2664c410b7b9f589c8", 0x58)
umount2(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0)
sendfile(r0, r3, &(0x7f0000d83ff8), 0x8000fffffffe)
close(r0)

[  315.519719] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000140))
clock_settime(0x0, &(0x7f0000000840))

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 4:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0x0, 0x100082)
r2 = memfd_create(&(0x7f00000004c0)="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", 0x0)
pwritev(r2, &(0x7f0000000340)=[{&(0x7f00000001c0)='\'', 0x1}], 0x1, 0x81806)
ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r0)
sendfile(r1, r2, &(0x7f0000000240)=0xa4, 0x20000102000007)
fallocate(0xffffffffffffffff, 0x820, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)=ANY=[], &(0x7f0000000100))
syz_mount_image$xfs(&(0x7f00000003c0)='xfs\x00', &(0x7f0000000400)='./file0\x00', 0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="70716e6f3909e8697263652c00"])
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000600)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@mcast1}, 0x0, @in6=@remote}}, &(0x7f00000002c0)=0xe8)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000700)={{{@in6=@local, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@local}, 0x0, @in6=@loopback}}, &(0x7f0000000440)=0xe8)
getpgrp(0xffffffffffffffff)
getpgid(0x0)
setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000001a00)={{{@in=@dev={0xac, 0x14, 0x14, 0x21}, @in=@broadcast, 0x4e24, 0x0, 0x4e24, 0x145, 0xa, 0x20, 0x0, 0x2b, r3, r4}, {0x7, 0x100, 0x1000, 0x6, 0xffffffffffff0001, 0x40, 0xdce, 0x6}, {0x0, 0x3, 0x4, 0x8}, 0x4, 0x6e6bbd, 0x3, 0x1, 0x2, 0x1}, {{@in=@broadcast, 0x4d2, 0xff}, 0x2, @in=@dev={0xac, 0x14, 0x14, 0x14}, 0x3504, 0x7, 0x2, 0x29, 0x2a8, 0x81, 0x2}}, 0xe8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004440), &(0x7f0000004480)=0xc)
socketpair$unix(0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
pwritev(r5, &(0x7f0000001980)=[{&(0x7f0000000800)="e78e6ea1d096a52b5c9e03558275c53070706f951bfe5da6b52ecaf46282633f434cd7076edee1c76abb842b480942ca72e62f20e6611ae7bbe705cc910daee527dc048c02a62547eba174e962b79b5a5b76cc156fa689d1166d61721e65479867224c67efa014b9c10c58334b763a746c56d34b089ae8695daa02bd17e30f9a826418ebc0c57e4b77c948081878e6ddaf5f6673f72bd8d33ff90822442e438ac05ee3e113b4473ced19a4af", 0xac}, {&(0x7f0000000080)="160065ad68fba99408ec3fe75337eae75c6e2e9b1a4105550b1fe2d8fd5312c907df7b95f2b5c09373452363d5bda15c4210", 0x32}, {&(0x7f00000008c0)="bb206282e97a585e9969ee46cc3a4916fce166820daaba7c7de5d788a1434215e8373b251717b9881bb072e07a489ea34e0ff8d8beff2eef5a67c19905251d637e614b04590f62fc42381b03797796fe79f3d26f583b5300ff3558e0732bc7082bf58b918f7fd248dc046fa889733ce02a821df6c4942e1baf4a4d0c08ebfe0f4c551116affd", 0x86}, {&(0x7f0000000980)="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", 0x1000}, {&(0x7f00000000c0)="47199e524c5e15e2b3ba23f880121e18ebdd81cd7ceacc7431f1d2cf2e9bbb28a55e70aef33feeb33d4484b3ce14db69f73ba6e7", 0x34}, {&(0x7f0000000180)="bf7cf1274583d31347daaa13e9c3fc9345f7b576c9739c1609f1a8d351a84dd6b29e982970b0d32bc5a3c6d98f47b2ec54189c7f6f04092fe2f578c33f", 0x3d}], 0x6, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)

03:34:17 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x34008}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x2f, 0x829, 0x0, 0x0, {0x4, 0xb000000}, [@nested={0x18, 0x0, [@typed={0x14, 0x9, @ipv6=@loopback={0x6000000000000000}}]}]}, 0x2c}}, 0x0)
r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xe3, 0x100)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f0000000040)={0xff, 0x4b0, 0x3, 0x7})

03:34:17 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000040000006a0a00fe00000000850000000a000000b7000000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x248000, 0x0)
ioctl$KVM_GET_FPU(r1, 0x81a0ae8c, &(0x7f0000000480))
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000100)={r1, r0})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xe, 0xd9, &(0x7f0000000080)="e2f0c81712ae29674b6ecd94f9df", &(0x7f0000000380)=""/217, 0xd90b}, 0x28)

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  315.756889] XFS (loop4): unknown mount option [pqno9	èirce].
03:34:17 executing program 2:
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x100, 0x108)
ioctl$HDIO_GETGEO(r0, 0x301, &(0x7f0000000040))
ppoll(&(0x7f0000000080)=[{r0, 0x1008}, {r0, 0x40}, {r0, 0x4}, {r0, 0x1}, {r0, 0x200}, {r0, 0x10}], 0x6, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000100)={0x6}, 0x8)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0)
pselect6(0x40, &(0x7f0000000180)={0x9, 0x8, 0xa4, 0x1000, 0x3, 0x20, 0x4, 0x5}, &(0x7f00000001c0)={0x2, 0x5, 0x1, 0x6, 0x3ff, 0x6, 0x7, 0x7fff}, &(0x7f0000000200)={0x0, 0x400, 0x1, 0x8, 0x1, 0x3ff, 0x725b, 0x5}, &(0x7f0000000240), &(0x7f00000002c0)={&(0x7f0000000280)={0x1}, 0x8})
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000300)={0x8001, 0x7, 0x8})
get_mempolicy(&(0x7f0000000340), &(0x7f0000000380), 0x7, &(0x7f0000ffb000/0x4000)=nil, 0x2)
prctl$seccomp(0x16, 0x2, &(0x7f0000000400)={0x3, &(0x7f00000003c0)=[{0x0, 0x6, 0x7, 0x2}, {0x8, 0x7, 0x7, 0x1}, {0x3f, 0x7ff, 0x459a21ba, 0x4}]})
ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000440)={0x6, 0x5})
write$FUSE_DIRENT(r1, &(0x7f0000000480)={0xe0, 0x0, 0x3, [{0x6, 0x3f, 0x3, 0x4, '$lo'}, {0x6, 0xfffffffffffffffe, 0xa, 0x62, '/dev/fuse\x00'}, {0x4, 0x10001, 0x32, 0x6, ':{posix_acl_access\bselinuxusereth0-usernodev\\wlan1'}, {0x3, 0x6, 0x0, 0x4c4}, {0x2, 0x3, 0x3, 0x100, '(*!'}]}, 0xe0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000880)={0x53, 0xffffffffffffffff, 0x17, 0x6, @scatter={0x3, 0x0, &(0x7f0000000700)=[{&(0x7f0000000580)=""/23, 0x17}, {&(0x7f00000005c0)=""/10, 0xa}, {&(0x7f0000000600)=""/215, 0xd7}]}, &(0x7f0000000740)="677016967188bb6bbaae223f9183e76ca189716cbf2415", &(0x7f0000000780)=""/162, 0x5, 0x10000, 0x0, &(0x7f0000000840)})
clock_gettime(0x0, &(0x7f0000000940)={<r2=>0x0, <r3=>0x0})
ppoll(&(0x7f0000000900)=[{r0, 0x8000}, {r0, 0x110}, {r1, 0x4002}], 0x3, &(0x7f0000000980)={r2, r3+30000000}, &(0x7f00000009c0)={0x4}, 0x8)
syz_mount_image$reiserfs(&(0x7f0000000a00)='reiserfs\x00', &(0x7f0000000a40)='./file0\x00', 0x9, 0x9, &(0x7f0000001f00)=[{&(0x7f0000000a80)="0ad5639730e810dd8127625c3bb2e80f89c3cee5a96ca1432cca844069884b1609d1bde04cf2f06fa2405fa7593ed6371f159e90ff5787003e7540ab5e536e4f64f8a8d239", 0x45}, {&(0x7f0000000b00)="59310d2d9886e5ea126c6420ea65915f017936276cf310b27ef61a65d50e96bb27a0ae3c0ecab8f6c158cff82cdb25130f8db0367c64ae910eda536fe0288fee9ee38f3547a91e5fe4722d7c485424d6cffee51f90733beb357294fba5fcb7dda624c8494ca24f9f62c4f2e38df37c92b8d1140ec97c891e0105f8f54a16dd5d222fa4c337f10a0ee161e30b1db1476e046bdab80896702efd5c37162de27d4d9729", 0xa2, 0x7}, {&(0x7f0000000bc0)="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", 0x1000, 0xb3}, {&(0x7f0000001bc0)="518531e91910486fc7c783172e54b5432d1f2c48c3f0159e0dd015f264b29d068dc09c7ae38615ca8332f92e2e848717c9e5900b", 0x34, 0xffffffff}, {&(0x7f0000001c00)="fd53dcb69b8822ebe8568899663d1c4bc83fad116a5d53a5b754f469910bc41c0e7248de5917ebbfe97eeb708d8ccb716d3aa0193ee046c8f66e0defc81e91ddbd62ada920e038a25c2ab2f7cea3982a26e31f7090116f83af77d839158660ed1d673ea0dcc12bd9f8f8bfc46f063207234f0937600f91a2f4c5990b5c510878638c77ac04962bd4ab3e0978be4cb2a020054fc03c229d39587e597c12a43906a1d057ec8bf3b946325933b8fdad2284edb651d90dd630b9f15acc3a4cad283454474427da99c4035b9bd6c5be13831ef833dd4e05ce6b7f1e0297776536cca924f3bae251b92b9af58864c2", 0xec, 0x400}, {&(0x7f0000001d00)="4a75eaf309f40b43a30c8ab9a7b4197713458b7bcbb85de2535c1dd86c28e825ea98de2deaa2c97d93a296ae083ed9cd843b7147f60c3d", 0x37, 0x1}, {&(0x7f0000001d40)="271294cfd60e95165708ee85c881c59b7f23898753f69ee124e7e5bfe94ee19191d4702afd3cc569658f3e8b6ef29f3752d3926ede1bc48e4884ea0f107e90ced364a8b0b15cd1c6ba5a995a4d9a33fbc651fbdeae306bd98a81fe3b1f3416c3b2a89261a792786caa2f6c3bdf5f853cc40fe3b44bfc3aa533", 0x79, 0x3}, {&(0x7f0000001dc0)="ba606018cd7908b4354457bbb1366ce84a759a50dd14874107140df8df7cb0a0957b12012c723117c2999f385a96a9185eecefddcc1a74cd6dff8ae57c8b8bd714d13d560a2a41d03063eb69b49b9e0265d476e7", 0x54, 0x7}, {&(0x7f0000001e40)="a56763f64aa432c6c36e3c797faf616875df500dbdae190f04a8269db26a4c95c2f64cf1365d0516472b87e604dd53be29e36b109139c48c7756ecd8194950371c0950998f81102ea2f245c70d41a607d2bc3d2b982d19f65b1254c45ecfa2ac8a53aea0b0a1b027372532102e205348071e83c76e28ea50679a3047425346250bc8873b4d39a797c4d41d3d5aa1a812dcf981e1bfe392e135bed144703a4ec89661c37ff5ccd57e6764c2d474bab91bb107dd8a9a307c8b3a11c638cc243b", 0xbf, 0x1}], 0x20000, &(0x7f0000002000)={[{@resize={'resize', 0x3d, 0x1}}, {@nolargeio='nolargeio'}]})
setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r0, 0x111, 0x1, 0x8, 0x4)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000002040))
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000002140)={0x0, @aes256, 0x0, "874ce27762088b83"})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000002180)={'veth1_to_bridge\x00', 0x100})
ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f00000021c0)=""/90)
setsockopt$inet_udp_int(r0, 0x11, 0xb, &(0x7f0000002240)=0xbe, 0x4)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f00000022c0)={0x9, 0x8001, {0x55, 0x100, 0x80000000, {0x1ff}, {0x1ff, 0x6}, @period={0x58, 0x3, 0x5, 0xffff, 0x5, {0x9b1f, 0x800, 0x0, 0x9}, 0x6, &(0x7f0000002280)=[0x5, 0x7, 0x80000000, 0x1, 0x40, 0xfffffffffffffffa]}}, {0x52, 0x2, 0xfa79, {0x8, 0x4}, {0x1000, 0x4cfc}, @ramp={0xffffffffffffffe0, 0x6, {0x9, 0x0, 0xce9, 0x7}}}})
mlockall(0x3)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000002340))
ioctl$SNDRV_TIMER_IOCTL_STOP(r0, 0x54a1)
socketpair$inet6(0xa, 0x3, 0xfffffffffffffff9, &(0x7f0000002380)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
read$FUSE(r0, &(0x7f00000023c0), 0x1000)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
ioctl$EVIOCSABS3F(r4, 0x401845ff, &(0x7f00000033c0)={0x1, 0x59fc, 0x1, 0x0, 0x1, 0x4})
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000003400)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68)
fcntl$setlease(r4, 0x400, 0x1)

03:34:17 executing program 4:
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0xffffffff00000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000000)=@ipv4_delroute={0x24, 0x19, 0x401, 0x0, 0x0, {0x2, 0x20, 0x0, 0xf0ffff, 0xff}, [@RTA_DST={0x8, 0x1, @dev}]}, 0x24}}, 0xfffffffffffffffd)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000300)=[@in6={0xa, 0x4e23, 0x401, @empty, 0x1}, @in6={0xa, 0x4e23, 0x6, @local, 0x7b32}, @in6={0xa, 0x4e22, 0x800, @empty, 0x6}, @in={0x2, 0x4e23, @rand_addr=0x4451}, @in6={0xa, 0x4e23, 0x80000001, @mcast1, 0x69}, @in6={0xa, 0x4e21, 0x8, @empty, 0x4}], 0x9c)
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="a0000000", @ANYRES64=r0, @ANYBLOB="000227bd7000fedbdf250a0000000800060007000000580003000800040009000000140002006272696467655f736c6176655f300000080003000200000014000600fe8000000000000000000000000000bb14000600fe8000000000000000000000000000bb080007004e23000024000200080002004e2200000800030007000000080003000200000008000400738600000800050009000000ec7c836eab1ae4399efa14a3683a281049defd1dca2343273622675f6d13704e4e6875aa64d8e3f2fe6e"], 0x3}, 0x1, 0x0, 0x0, 0x4000000}, 0x2000c004)
sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"], 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)

03:34:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000001c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:17 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
accept(r0, 0x0, &(0x7f0000000040))
sendmsg$nl_xfrm(r2, &(0x7f000014f000)={&(0x7f00003c7ff4), 0xc, &(0x7f00000bfff0)={&(0x7f0000000880)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c2ed99b615ed1c370000000000000000000000000000000000000000000000000000000000000000000000000000000000008c90"], 0xb8}}, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:17 executing program 4:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x11, 0x3, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)}], 0x1}, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x2000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000600)={{0xffffffffffffffff, 0x2, 0x0, 0x0, 0x7}, 0x3, 0x66, 0x10000})
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@ipx={0x4, 0x80000001, 0x0, "0950fe4adba7"}, 0x16, &(0x7f0000000000), 0x0, &(0x7f0000000240)}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6, 0x0, 0x2, 0x1, 0x8}, 0x15d)
sendmsg(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)=@sco={0x1f, {0x8, 0x0, 0x2}}, 0x80, &(0x7f0000000300)}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000000), 0x2b5)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000003840)=[{&(0x7f00000004c0)=""/158, 0x9e}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/98, 0x62}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/115, 0x73}], 0x5}, 0x0)
getsockname(r3, &(0x7f0000000680)=@can={0x1d, <r5=>0x0}, &(0x7f0000000700)=0x80)
sendmsg$nl_route_sched(r4, &(0x7f0000000800)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)=@newqdisc={0x4c, 0x24, 0x418, 0x70bd29, 0x6, {0x0, r5, {0xffe0, 0xffff}, {0xfff3, 0x10}, {0xffff}}, [@qdisc_kind_options=@q_codel={{0xc, 0x1, 'codel\x00'}, {0x14, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x1}, @TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x8}]}}, @TCA_RATE={0x8, 0x5, {0x1f, 0x5}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24000800}, 0x40040)
sendmsg$kcm(r1, &(0x7f0000000480)={&(0x7f00000000c0)=@in6={0x31100, 0x894f, 0x5, @dev={0xfe, 0x80, [0x0, 0x0, 0x0, 0x329]}}, 0x80, &(0x7f0000000340), 0x3c1, &(0x7f0000000380)}, 0x0)
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000400), 0xc, &(0x7f0000000580)={&(0x7f00000038c0)=ANY=[@ANYBLOB="140000001406f30aba625a3955eed5f1ee"], 0x11}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
close(r0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f00000002c0)={<r6=>0xffffffffffffffff})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000840)={<r7=>0x0, 0x3}, &(0x7f0000000880)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000940)={r7, 0x78, &(0x7f00000008c0)=[@in={0x2, 0x4e23, @local}, @in={0x2, 0x4e23, @multicast1}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e21, 0x8, @loopback, 0xffff}, @in6={0xa, 0x4e22, 0x101, @remote, 0x3f}, @in={0x2, 0x4e23, @multicast2}]}, &(0x7f0000000980)=0x10)

03:34:17 executing program 1:
io_setup(0x0, &(0x7f0000000000)=<r0=>0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x40, 0x0)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000340)={0x9, [0x3, 0x6, 0x6, 0x5, 0xc79, 0x240000000000, 0x5, 0x5, 0x42]}, &(0x7f0000000380)=0x16)
io_cancel(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x6, r1, &(0x7f0000000040)="8847a87dbb50c73a1d04e4639f6bf99dba33acdf6df83bf2ecb11c56dc48b82b4c929b8a09a978f93b168c4a5e056c3e7adaf6c495e22116fde31960822086cbf3b6c47fe7da4b8650e99938627f590c795268b04110a36ba39763d6c86ea2288e66b040df47ec81eab4f801668690e44d5ec7804ef5bff58a740404e5d35376e13eaf1c8fc69ed10dbdf34bcad75d1d32ad33831d034f7a4475c144ad8f643f66e23eb21943779713644cb752eb6f0313d03b8032dd28b613adbe9aefb871fc3209fa99face3d8371e9932a328b190c7879270ec97d7dec8b481dd817", 0xdd, 0x20, 0x0, 0x0, r2}, &(0x7f0000000280))
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000005c0)={{{@in6=@remote, @in6=@ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@remote}, 0x0, @in=@loopback}}, &(0x7f00000006c0)=0xe8)
bind$xdp(r2, &(0x7f0000000700)={0x2c, 0x1, r3, 0x36, r2}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_SERVICE(r4, &(0x7f0000000300)={&(0x7f0000000180), 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x3c, r5, 0x121, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_PORT={0x8}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x569804098ec3d0c8}, 0x40000)

03:34:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:18 executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x6)
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)=0x2)
sendmsg(0xffffffffffffffff, &(0x7f0000075000)={&(0x7f0000fc9f80)=@generic={0x0, "67a4e2a4434dee85c820726df1022c14555ac2a241595dedbf86ca64cbbc0828671b30dad3987f927bcd9ad68daf13dd07b6797b52124ebed4afcd475b210044247a27ab8616b77d44f67e09414d4fa70d8d1ff1209f16447e6ea33a7c818fb3f54b42ee497439c1714153bc5ecd270cf4d4c4497b858f0744b148bb4d50"}, 0x80, &(0x7f0000301000), 0x0, &(0x7f000079a000)}, 0x0)

03:34:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
accept(r0, 0x0, &(0x7f0000000040))
clock_settime(0x0, &(0x7f0000000840))

[  316.110496] netlink: 'syz-executor1': attribute type 1 has an invalid length.
[  316.129184] netlink: 'syz-executor1': attribute type 4 has an invalid length.
03:34:18 executing program 1:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

03:34:18 executing program 4:
r0 = syz_open_dev$sndseq(&(0x7f000011c000)='/dev/snd/seq\x00', 0x0, 0x8000000000102)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000380)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f00000001c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000080)={0x0, 0x7a120, 0x60, {0x77359400}})
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x90080, 0x0)
write$FUSE_LSEEK(r1, &(0x7f0000000040)={0x18, 0xfffffffffffffff5, 0x3, {0x7}}, 0x18)

03:34:18 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = getpid()
sched_setattr(r1, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f00000001c0)={0x8})
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(r3, &(0x7f00000001c0), 0xfffffef3)
write$FUSE_BMAP(r3, &(0x7f0000000040)={0x18}, 0xfffffee4)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000180), 0x0)
close(r2)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mkdir(&(0x7f0000000040)='./file0\x00', 0x100)
mount(&(0x7f0000000240)=ANY=[], &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='sysfs\x00', 0x0, &(0x7f000000a000))
r4 = inotify_init1(0x0)
inotify_add_watch(r4, &(0x7f0000ac5000)='./file0\x00', 0xa400295c)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x600, 0x0)
utime(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140))
msgget(0x1, 0x40)

03:34:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:18 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bond_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000180)={&(0x7f0000000200)=@delqdisc={0x34, 0x25, 0x3, 0x0, 0x0, {0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xc, 0x1, 'codel\x00'}, {0x4}}]}, 0x34}}, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x40)
connect$packet(r2, &(0x7f00000000c0)={0x11, 0xd, r1, 0x1, 0x9, 0x6, @remote}, 0x14)

03:34:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
clock_settime(0x0, &(0x7f0000000840))

03:34:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140))
r1 = gettid()
kcmp$KCMP_EPOLL_TFD(r1, r1, 0x7, 0xffffffffffffffff, &(0x7f0000000000)={0xffffffffffffffff, r0})
ppoll(&(0x7f00000002c0)=[{}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000080)={0x40000000}, 0x8)
r2 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)

03:34:18 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x80000, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
timer_create(0x1000000000000b, &(0x7f0000000180)={0x0, 0x0, 0x1, @thr={&(0x7f0000000000), &(0x7f0000000080)}}, &(0x7f0000000140))
getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000080)={'ipvs\x00'}, &(0x7f00000000c0)=0x1e)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{}, {0x0, 0x9}}, &(0x7f0000000400))

03:34:18 executing program 4:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/ppp\x00', 0x0, 0x0)
syz_emit_ethernet(0x3fe, &(0x7f0000000300)={@local, @local, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0xf401, 0x0, @remote={0xac, 0x1c}, @local}, @igmp={0x0, 0x0, 0x0, @broadcast}}}}}, &(0x7f00000002c0))
io_setup(0x101, &(0x7f0000000000)=<r1=>0x0)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000200)=0xd0, 0x4)
io_submit(r1, 0x2, &(0x7f0000000180)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000040)="a396fbf0edfd53bed323c26106be647b4764fc645ffa91ca21a05b3894bac0abecb87ef46897410184ba7b4b08d4c3085260b925c396baf2e2e82e386c396fc30156ce2ae6c252586646ce333a1cee7de14c7243dacfebc26e969bd25c", 0x5d, 0x0, 0x0, 0x1, r0}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0x6, r0, &(0x7f0000000100)="2f1c7c342d47acd62b985a6ce9ab", 0xe, 0x434, 0x0, 0x3, r0}])
ioctl$SNDRV_TIMER_IOCTL_TREAD(r0, 0x40045402, &(0x7f00000001c0))

03:34:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:18 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r1, 0x0, 0x0, 0x10000)
fallocate(r0, 0x0, 0x0, 0x10001)
fadvise64(r1, 0x5a, 0x9, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, r1, 0x2, 0x0, 0x4})

03:34:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
clock_settime(0x0, &(0x7f0000000840))

[  316.666506] *** Guest State ***
[  316.683629] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  316.694951] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  316.707098] CR3 = 0x0000000000000000
03:34:18 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, &(0x7f00000001c0))
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000340)=0x7fc000000000, 0xfffffffffffffeb7)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x1, &(0x7f0000000040)=0x3, 0x4)
io_setup(0xa, &(0x7f0000000180)=<r2=>0x0)
io_cancel(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000400)="daad30e724a8a601a5551302d43526c368c5b41650141ebe65664ccfae1d6b27a2a2c905c46122d58e27431eb1c93a1721dc822da568e2a65ff205460b7250fc95a5e39899fff600fdd61621f6d4d078ae77d134f268574f4de8d1fbf2442f424b4a9c0980ce95718f41a793bee989d3c26998ca332bc881e5a65c716af59dea5b224e6ec1a670d4104a8e185ab0e5e8a6e3d37e5dff761c5a67327570b4c7fbf31bbf357c28abd6c65b005cb0409264d1c3d68c3b90e5907dae1ba0008637b3c243e354fc5ca5795fd7e150b1d89f14a6ae56be18a06c5f89732275a1fd44f017f22ed77991d4e83b43c63a79d633ca3484805eba1ecfc0", 0xf8, 0x7fff, 0x0, 0x2}, &(0x7f0000000380))
setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f00000000c0)=0x7, 0x4)
sendto$inet6(r1, &(0x7f00000001c0), 0x1bf, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev}, 0x1c)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x0, 0x0)
fcntl$setsig(r0, 0xa, 0x1d)
ioctl$SG_SET_DEBUG(r3, 0x227e, &(0x7f0000000140)=0x1)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ppp\x00', 0x6, 0x0)
ioctl$EVIOCGPROP(r3, 0xc004743e, &(0x7f0000000200)=""/246)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001600)='/dev/ppp\x00', 0x0, 0x0)
dup2(r5, r4)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f0000000700)=ANY=[@ANYRES32=<r6=>0x0, @ANYBLOB="308b6e0500000000000000d403118d74cde92002f4b00c0b2696ff1a61b044aacc0c0d47f85f098b6410d27db9ee859e8543d92339205784e02ea770d60b6d254da06931573d5e38cc2ac2c06d92ee3c89d1af2fc16e8a1485cee05257f657bd09abe887900475b6f6b37d7123053b56ec6ff0cff8dc78c480d20c4da54823a368d00ec666f6c5dd0000000000000000000000000000000000"], &(0x7f0000000540)=0xe)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000580)={<r7=>0x0, 0x2}, &(0x7f00000005c0)=0x8)
getsockopt$inet_sctp_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000000600)={r6, 0x1000, 0x3f, 0x7ff, 0x3, 0x3, 0x4, 0xfff, {r7, @in6={{0xa, 0x4e20, 0x80, @mcast1, 0x90000000}}, 0x9, 0x1, 0x8, 0x8, 0x8}}, &(0x7f00000006c0)=0xb0)

03:34:18 executing program 4:
syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000001500)=[{&(0x7f0000000400)="1a55c82f2def877d6fdcfe8351e4db6d1ee976972782e4115932bdc06d183c46733206b37890efdbad672e1ea4049c9be0bfc481812be6124fe0e2bc6e09c4e5dd3e3463eda77cbbd385d3a136dca2a4f4723d55c963525174241eb9e576b1a01c0558ed2393cffc3e9e848aceb4e21cc6f3c82ab8099edb3eb87b87214abfa58fe642446611578498a9557b6141eba0341116076bd26d852ec5cdc12b18e29f41fbfe34092547ebb3e62fcc0687bea72b5f4f9acd99bbc96cc033f98c8e46a3070ad7103c832885364f1030aae96bb592504e730975b74d133d669ff1f8803353a519c1fedb6a667a550b6dc057361cad6735ba4e3934700584650be1f2be78069d234e6c3d2c5b0560c4f0cba91b4823abd53fd53f26c59cc2d9f7f081de3054e8ed299f3db151879c9ac53f4a7a9f33d0c0f58dbcfe7d29a2a2bae0d912215e5ded35e7f981a6483f155ae6e183781e8b76daa286057f16fe6baf906461ef6478536779c13b230cd1c57efe22b6f2e590a1af7b3255ea3f7045e9abcb519ffdebbd1288eb0a92c378098146b386c06dde1830f3510fbbc75ccec1e339c08507a6837be0417705a62094ce6be590e8fc138a8b715380810e15c805edb7f6c02b", 0x1c1, 0x3f}], 0x8401, &(0x7f0000000100)=ANY=[@ANYBLOB="407b8af54a00b834b1213e76823f218954942e976200a113797c64143e74177c30b6"])
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x2)
ioctl$KVM_X86_SET_MCE(r0, 0x4040ae9e, &(0x7f00000000c0)={0x1500000000000000, 0x3004, 0xffffffff, 0x40000000006, 0x2})
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_percpu\x00', 0x0, 0x0)
ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000140)=""/36)

[  316.711479] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  316.731121] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
03:34:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f0000000080)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r0 = memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
getsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000600), &(0x7f0000000640)=0x4)
clock_settime(0x0, &(0x7f0000000840))

[  316.773764] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  316.790756] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  316.846601] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  316.857585] ntfs: (device loop4): parse_options(): Unrecognized mount option @{ŠõJ.
[  316.873279] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:18 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r1, 0x0, 0x0, 0x10000)
fallocate(r0, 0x0, 0x0, 0x10001)
fadvise64(r1, 0x5a, 0x9, 0x3)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, r1, 0x2, 0x0, 0x4})

[  316.897494] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  316.906989] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  316.920609] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:18 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x2, 0x0)
memfd_create(&(0x7f00000005c0)='userproc\x00', 0x4)
clock_settime(0x0, &(0x7f0000000840))

03:34:18 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
r1 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0xffff, 0x480000)
ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f0000000700)={&(0x7f0000ffe000/0x1000)=nil, 0xfff, 0x0, 0x20, &(0x7f0000ffd000/0x3000)=nil, 0x1ff})
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vhci\x00', 0x406040, 0x0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000440)='IPVS\x00')
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000580)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80040080}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x48, r3, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x4000080)
r4 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x1ff, 0x400103)
r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x8a4, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setsig(r4, 0xa, 0x1b)
r6 = add_key$keyring(&(0x7f0000000600)='keyring\x00', &(0x7f0000000640), 0x0, 0x0, 0xffffffffffffffff)
r7 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000005c0), 0x0, 0x0, r6)
r8 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000480), 0x0, 0x0, r7)
r9 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000000), 0x0, 0x0, r8)
r10 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000180), &(0x7f0000000680)="009b43d57da49b", 0x7, r9)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000380)={0x0, 0x1, 0x6, @link_local}, 0xfffffffffffffebd)
r11 = add_key$user(&(0x7f0000002cc0)='user\x00', &(0x7f00000006c0), &(0x7f0000000280), 0x0, r8)
fadvise64(r5, 0x0, 0x80000000, 0x7)
keyctl$dh_compute(0x17, &(0x7f0000000240)={r10, r11, r10}, &(0x7f0000000280)=""/132, 0x174, 0x0)
r12 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0)
ioctl$SG_SET_DEBUG(r12, 0x227e, &(0x7f00000001c0)=0xffffffffffffffff)
ioctl$KVM_SET_CPUID(r4, 0xc0185500, &(0x7f0000000200)=ANY=[@ANYBLOB="0105aa0a7a0000005b3ed3f4a6630458bd24ddadfe498293c31012680181ecbef091e44d1b1edb2dcae1eee2be34b697fe74975a"])

[  316.955380] ntfs: (device loop4): parse_options(): Unrecognized mount option @{ŠõJ.
[  316.976297] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:18 executing program 4:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000))
r0 = getpid()
process_vm_readv(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/98, 0x62}], 0x1, &(0x7f0000000300)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000000180)=""/174, 0xae}, {&(0x7f0000000240)=""/162, 0xa2}], 0x4, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
perf_event_open$cgroup(&(0x7f0000000040)={0x5, 0x70, 0xfffffffffffffffb, 0x1, 0x77b, 0xff, 0x0, 0x37c, 0x200, 0x6, 0x40, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc178, 0x0, 0x0, 0x0, 0x0, 0x0, 0x452, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x0, 0x80)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f0000000440)={<r3=>0x0, 0x1c, &(0x7f0000000400)=[@in6={0xa, 0x4e21, 0x800, @loopback, 0x1}]}, &(0x7f0000000480)=0x10)
setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f00000004c0)={r3, 0x1, 0x8, 0x7fffffff}, 0x10)

03:34:18 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2000000000000, 0xd)
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0xfffffffffffffe14)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x9c3, 0x0, 0x6}, 0x14)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r2, &(0x7f0000000100)="22694a04fcc9c7568a0315134c4823b2364ffa853652286cfd679dd8dfa4e1881ac06af04a494da168419d61b32c76d746d9b5f91a664a8ba8c8659847ec", &(0x7f00000014c0)=""/204}, 0x18)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000080)='X', 0x1, 0xe4ffffff00000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x3, @loopback}, 0x1c)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f00000006c0))
r4 = dup2(r0, r0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, &(0x7f0000000040))
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000002c0), 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000140)={<r6=>0x0, 0x7ff}, &(0x7f0000000680)=0x8)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r2, 0x80045301, &(0x7f0000000800))
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000700)={r6, @in={{0x2, 0x4e24, @multicast2}}}, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r5, 0x84, 0x70, &(0x7f0000001380)={0x0, @in={{0x2, 0x4e22, @multicast2}}, [0x0, 0xffff, 0x4, 0x3ff, 0x0, 0x1, 0xb14a, 0x5, 0x1, 0x8]}, &(0x7f00000001c0)=0x100)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000280))
ioctl$KVM_XEN_HVM_CONFIG(r5, 0x4038ae7a, &(0x7f0000000640)={0x5, 0x965, &(0x7f00000004c0)="fd10633ec53ad38e0ded66d17767c5096bba890c13ce9de64522b0e374595a984845848e5b67d1dc91fbba47d50765b122c29d1d59fe3ba7850bd401bc3cdcf51aa155d807d2dfc4b9bd33c7df60b463e9f484d3684e3622087ad9c96cf628641faddf1316cb2d8ca8f0adb0e066298a26f1a29cdc91d6dd808cd4ff4c3ab4a4d338bc096d5fb4229232a2da1cd72e76c2a1a9b15d3ade5220c799128dd3a2eb21c0cddf1e2faa46dd4a5a40a96950c5c71b6e598d7fbb2c0a1f10bf7017d347e4f83a0b703b7258b85a6fdf6fb57bb4e11430ab84b711230431e89843dbfda89e54e1405b43b5", &(0x7f00000005c0)="05e5e9ffb80ee85b0d902b6c391cacea5ef3366d1dd12df8283fe679a7eaedd13c6537b9fa2eb8f034bc0e04e582f75ba830c583d1be0fda98c05a40e6089615aa9e67292ec74a3f7660c151", 0xe7, 0x4c})
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f0000000380)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @ib={0x1b, 0x0, 0x0, {"2e98952e805a1acdbf60867cea48bd81"}, 0x85f, 0xff, 0xc30b}, @in={0x2, 0x4e23, @multicast1}}}, 0x118)

[  317.020931] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.111683] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  317.138758] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.154056] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  317.163289] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.188182] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  317.194939] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  317.202768] Interruptibility = 00000000  ActivityState = 00000000
[  317.209305] *** Host State ***
[  317.212630] RIP = 0xffffffff81212522  RSP = 0xffff8801c19cf350
[  317.218861] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  317.225266] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000033000
[  317.234055] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  317.242754] CR0=0000000080050033 CR3=000000019950e000 CR4=00000000001426e0
[  317.249970] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  317.256746] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  317.263498] *** Control State ***
[  317.266938] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  317.273767] EntryControls=0000d1ff ExitControls=002fefff
[  317.279252] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  317.286868] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.293654] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  317.301819]         reason=80000021 qualification=0000000000000000
[  317.308586] IDTVectoring: info=00000000 errcode=00000000
03:34:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:19 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x2, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:19 executing program 4:
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x800000009)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x1}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4={[], [], @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1f}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5}}, 0xe8)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c)
sendmmsg(r0, &(0x7f00000002c0), 0x4cc, 0x0)

03:34:19 executing program 2:
io_setup(0x8, &(0x7f0000001740)=<r0=>0x0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001ac0)='/dev/vcs\x00', 0x400, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f0000001bc0)={<r2=>0x0, 0x9c, &(0x7f0000001b00)=[@in={0x2, 0x4e20, @multicast1}, @in6={0xa, 0x4e20, 0x1, @empty, 0x9}, @in6={0xa, 0x4e21, 0x1ff, @empty, 0x100000001}, @in6={0xa, 0x4e22, 0x8, @empty, 0xea}, @in6={0xa, 0x4e23, 0x2, @remote, 0x101}, @in6={0xa, 0x4e22, 0x40, @loopback, 0x7}]}, &(0x7f0000001c00)=0x10)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000001c40)={r2, 0xe, 0xe4, 0x0, 0x100000001, 0x5}, &(0x7f0000001c80)=0x14)
r3 = syz_open_dev$dspn(&(0x7f0000001780)='/dev/dsp#\x00', 0x8, 0x70002)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001880)='/dev/hwrng\x00', 0x0, 0x0)
r5 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000001900)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
r6 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000)
io_submit(r0, 0x2, &(0x7f0000001a80)=[&(0x7f00000018c0)={0x0, 0x0, 0x0, 0xe, 0x0, r3, &(0x7f00000017c0)="2f9cb1355de3e53336898e64adbdaf249c3f7773119d5e4314c9f739bd1958d8aeebb1d6375efc06bf8aed7677c42fa412c2b7e2ff1480779ce5217c47f3dde1f80e45b3e5051af60dd5426b03cd8a4f31f08121cdcbb6619da7b6c7cfe5c2fb80f2ea89901973ddbed1c6ac2cebecd091a8722d605d1517ff060070453f64971f677e56360d", 0x86, 0x3661, 0x0, 0x2, r4}, &(0x7f0000001a40)={0x0, 0x0, 0x0, 0x3, 0x1, r5, &(0x7f0000001940)="962fec9c2bd2c83369e9f2bb1a54db586827c39cd5f4f8374815b0f88a8084332ef6a119c270dc6b7fcaa6015c5bb5b4d64af732d8eb6de6e93b6c5426245e664309da42ea458ff4d893e2169d9781a2a76f2fea12dbda9a438150c23d9c0fa306a52cabfd46a25d66a0771126d33ce40a83c1a65eae267f1f8127e26dc3f915ecc76dd53f55d8b3cb7a74d4b98e2bd352c2966819ad3f79a26b9378304be379187794ce62810876d1c18737d405b477f3389873e1f635f9db48924e2d54035cd747131b94a212b7470beb4de97883538ca53fe200c0c5d6459b7672fef68d3991d6a6ba883eb45a58b6", 0xea, 0x200, 0x0, 0x0, r6}])
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r8 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0xfffffffffffffffa, 0x200000)
r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
syz_open_dev$usbmon(&(0x7f0000001580)='/dev/usbmon#\x00', 0x0, 0x10000)
syz_mount_image$bfs(&(0x7f00000015c0)='bfs\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0xbe, &(0x7f0000001500)=[{&(0x7f00000002c0)="d953b686ede4e114", 0x8, 0x6}, {&(0x7f0000000300)="1a62877c39e5c1ba38b860bd572d4edcc5e2ded7ed71e9200305bafe640d67d6af4e9322d574d34730ca05902c8e46e31873b3b4956db37c77bc184d67279c15e0a102c0efacaf680c1aaf36a5b9617763ad594e0cdac55150a8652cbc19983cb874140cbc3d03a252748629cda16ff0487aa02a10c58b4fefd8d4c142c500aac5798a56a36bf100e781", 0x8a}, {&(0x7f00000003c0)="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", 0x1000, 0x6}, {&(0x7f00000013c0)="b0e2bcc5374f2cbecd87b4e2af673c84883b85c1babc5190b85393992918769b2b5cd2b8c8f541439f69cef3f6384371ad857f2cb8b4f0fa7b9a934c9868317a6c3e1451074f87646f7837e7d5e431e17c2779955ff82cdadf1eff14c075fa204ad0ea986271609bbbfad33da79ae2b71ac744c068390431c11c081358f6e6dfd01edea865be530392ab80e1e675242983518f89fb461e2470f706acd018e283098a1e84158b9cf1030ff39d6d8a9cd75b9a86b7d57562d4251358f2b2f83c2902524153266d9a3c501b230c68ec53a1446936f4c040f0d1f99844dd18ffe83fc94017911d2697761705ab304294", 0xee, 0xe3f}, {&(0x7f00000014c0)="12e708ac708a832aae301eb30a547c66a7ec02f44216d7b3cea0e5db4bd139749b7cc2bf6c7ff8b9aefd579b2fa0f08088fa301edb811cddf7", 0x39, 0x1}], 0x10000, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r10, 0x4008ae89, &(0x7f00000001c0)={0x5, 0x0, [0x40000021, 0x3]})
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r10, 0x84, 0x66, &(0x7f0000001600)={<r11=>0x0}, &(0x7f0000001640)=0x8)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r8, 0x84, 0x6, &(0x7f0000001680)={r11, @in6={{0xa, 0x4e21, 0xf13, @loopback, 0x8}}}, 0x84)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r12 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x109802, 0x0)
write$P9_RWALK(r12, &(0x7f0000001cc0)=ANY=[@ANYBLOB="230000006f0100020000020000000700000000000000010000000d0000000000000000bcc06b7e2cfec46a13b7665ab7f5bdc0626a6135a35d34b3596a46963a8ba717258ec1763020c10745794a154412abd7d7effa18bb4951a4b8a2c4eac51213581f73d4136eb79fc8cef19a6072ac8d055e37dc07a9b220bf35e2521632b003990cdc9340dfa9ca1fcd81d2e108c9fbe3e4e03b5961c9c2459f4600a2fe9efa1513d5d874afeecf084eacaf7967058495814afb286a8ab37b824c52cdbb588492b492226b00d29d109fecc80f94bb678b2b51d42be75919e01a"], 0x23)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={<r13=>0xffffffffffffffff}, 0x12, 0x100b}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r12, &(0x7f0000000140)={0xa, 0x4, 0xfa00, {r13}}, 0xc)

03:34:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
getpeername(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f00000001c0)=0x80)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000240)='eql\x00', 0x10)

[  317.314136] TSC Offset = 0xffffff53e05d5436
[  317.319225] EPT pointer = 0x0000000199c1301e
03:34:19 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2000000000000, 0xd)
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0xfffffffffffffe14)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x9c3, 0x0, 0x6}, 0x14)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000240)={r2, &(0x7f0000000100)="22694a04fcc9c7568a0315134c4823b2364ffa853652286cfd679dd8dfa4e1881ac06af04a494da168419d61b32c76d746d9b5f91a664a8ba8c8659847ec", &(0x7f00000014c0)=""/204}, 0x18)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000080)='X', 0x1, 0xe4ffffff00000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x3, @loopback}, 0x1c)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f00000006c0))
r4 = dup2(r0, r0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(0xffffffffffffffff, 0x80045300, &(0x7f0000000040))
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000002c0), 0x4)
socket$inet_udplite(0x2, 0x2, 0x88)
r5 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000140)={<r6=>0x0, 0x7ff}, &(0x7f0000000680)=0x8)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r2, 0x80045301, &(0x7f0000000800))
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000700)={r6, @in={{0x2, 0x4e24, @multicast2}}}, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r5, 0x84, 0x70, &(0x7f0000001380)={0x0, @in={{0x2, 0x4e22, @multicast2}}, [0x0, 0xffff, 0x4, 0x3ff, 0x0, 0x1, 0xb14a, 0x5, 0x1, 0x8]}, &(0x7f00000001c0)=0x100)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000280))
ioctl$KVM_XEN_HVM_CONFIG(r5, 0x4038ae7a, &(0x7f0000000640)={0x5, 0x965, &(0x7f00000004c0)="fd10633ec53ad38e0ded66d17767c5096bba890c13ce9de64522b0e374595a984845848e5b67d1dc91fbba47d50765b122c29d1d59fe3ba7850bd401bc3cdcf51aa155d807d2dfc4b9bd33c7df60b463e9f484d3684e3622087ad9c96cf628641faddf1316cb2d8ca8f0adb0e066298a26f1a29cdc91d6dd808cd4ff4c3ab4a4d338bc096d5fb4229232a2da1cd72e76c2a1a9b15d3ade5220c799128dd3a2eb21c0cddf1e2faa46dd4a5a40a96950c5c71b6e598d7fbb2c0a1f10bf7017d347e4f83a0b703b7258b85a6fdf6fb57bb4e11430ab84b711230431e89843dbfda89e54e1405b43b5", &(0x7f00000005c0)="05e5e9ffb80ee85b0d902b6c391cacea5ef3366d1dd12df8283fe679a7eaedd13c6537b9fa2eb8f034bc0e04e582f75ba830c583d1be0fda98c05a40e6089615aa9e67292ec74a3f7660c151", 0xe7, 0x4c})
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f0000000380)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @ib={0x1b, 0x0, 0x0, {"2e98952e805a1acdbf60867cea48bd81"}, 0x85f, 0xff, 0xc30b}, @in={0x2, 0x4e23, @multicast1}}}, 0x118)

[  317.416209] BFS-fs: bfs_fill_super(): No BFS filesystem on loop2 (magic=08e7121a)
03:34:19 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  317.462999] *** Guest State ***
[  317.469960] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  317.481284] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  317.530792] CR3 = 0x0000000000000000
[  317.545283] BFS-fs: bfs_fill_super(): No BFS filesystem on loop2 (magic=08e7121a)
[  317.565654] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  317.598669] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  317.614873] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  317.629067] RFLAGS=0x00000002         DR7 = 0x0000000000000400
03:34:19 executing program 0:
clock_settime(0x0, &(0x7f0000000840))

[  317.645098] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:34:19 executing program 2:
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000000)="0a5cc8070031afa8b40a08d5bd805d55438ca8ca2fb3b088626fc887ca8cdaf34f4b3dfc7281f3a8267ad879e68792")
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4)
getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000340)=0x21, &(0x7f0000000380)=0x4)
epoll_create(0x1)
write$FUSE_POLL(r2, &(0x7f00000000c0)={0x18, 0x0, 0x0, {0x1ff}}, 0x18)
bind$inet(r3, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10)
accept$inet6(r1, 0x0, &(0x7f0000000400))
r4 = mq_open(&(0x7f0000000080)='bdev\x00', 0x41, 0xc4, &(0x7f00000000c0)={0x7, 0x6, 0x94, 0xffffffff, 0x20, 0x10000, 0x1, 0x7})
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f00000002c0)={0x4, 0x0, &(0x7f00000004c0)="6e212e31e312e41ca0ca056a7973c8adff604d4a4f09bf1dc287b3c90b4d55249284db4822f93816f1d022fb7a04e4437669d2af8325575b91156e0085b4b64ea21e3e0921980d676b", &(0x7f0000000540)="05ba047dd3c04a8602f00636f403d1f79e5e1478fbe51c3587c33c0d3aeb29f869660e20a0d3531c38171b40ee4bb0b2af5b536cb349bcc79f2dedb94f215fb1cbadd0cb9cf90ee559e0770ad86572004be8941b095db58fa8556f08f9ce372cf52f69e63ceeb7c3d184e988917b0c2cef76a25ee08008e3235db2e1df8047b14297ab45bec37efedf45d83f599dee8313e369236917b8d18d42313e51922a2577b0f8f12c8b74b2b0a8fdf185511f9178e3e632e796", 0x49, 0xb6})
mq_timedsend(r4, &(0x7f0000000000)="e1bd6cd0afde34321df09a6d21a196923c8789fbec2ea693ba8964b3fe243e2d42cdc1b9eef3721daa36ba559839d6", 0x2f, 0x6, &(0x7f0000000040)={0x1000000000, 0x989680})
mq_timedsend(r4, &(0x7f0000000240)="73b3cafec3dbd277099115feb843043bcd21914a3dd770451ca1844af1702112de1c7734850769393d14c839755a14d817df51fee3f9c0eb552a2c2ed1587ddc4541f459edf88ac4aeb604daa86338ecf4a9ac6ff010cf7c5811", 0x5a, 0x5, &(0x7f00000001c0))
ioctl$SG_SET_TIMEOUT(r2, 0x2201, &(0x7f00000003c0)=0x3)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000440)={0x400, {0x2, 0x4e23, @rand_addr=0x86c5}, {0x2, 0x4e21, @rand_addr=0x3}, {0x2, 0x4e22}, 0x300, 0x2983, 0x8, 0x52, 0x5, &(0x7f0000000100)='ipddp0\x00', 0x5, 0x8, 0x100000000})
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
ioctl$int_in(r3, 0x5421, &(0x7f0000000900)=0x6)
ioctl$int_in(r3, 0x5452, &(0x7f0000000140)=0x9)
socket$vsock_dgram(0x28, 0x2, 0x0)
sendto$inet(r3, &(0x7f0000000a00), 0x73c5d3417c1b93e7, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r3, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)=0x1)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000300)={0x0, 0x7, 0x8}, 0x8)

[  317.701873] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.733296] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:19 executing program 4:
r0 = socket$inet(0x2, 0x3, 0x2000000000001)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x2, 0x130, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, &(0x7f0000000000), &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x1ab)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000000c0))
setsockopt$inet_dccp_buf(r0, 0x21, 0xc2, &(0x7f0000000340)="0575dbe72f7bf31fbf50dced93e254c999921f8f26b1fe2549e6c7e52322b30bb19808dfbab7693249e3a94563f74fcee85420d94c6044974dbef7ba36ab6eff6b21348d7509fe9b332b3f8b946dbce2686af74cf8d277cdb7fbfc487512c93e4f0348c228a8ca76592f27866f4fc2dffd072e485e7bc79098da5739e5457279c14dab8678fa7405b16a541a59216ab4a5cb613d7e97a2f46335eeb7679b882439e3eb057ee2c10b66a36aaec2203a46c2e9895923cfd8efd46d156ec49b0e90893f34c22eb37f77d79a4bd6cf3c9c721d31248866292354b14baf3d94ce47655d87a6dcc838b985c414b0acb3d5", 0x81)

03:34:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
ioctl$VT_RELDISP(r0, 0x5605)
r3 = syz_open_procfs(r2, &(0x7f0000000080)='status\x00')
ioctl$SG_NEXT_CMD_LEN(r3, 0x2283, &(0x7f00000000c0)=0x96)
r4 = syz_open_pts(r0, 0x0)
epoll_create1(0x80000)
ioctl$TCXONC(r4, 0x540a, 0x0)

[  317.753690] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.769899] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.778277] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.787027] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:34:19 executing program 0:
clock_settime(0x0, &(0x7f0000000840))

[  317.799552] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  317.813417] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.828726] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  317.866276] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  317.885379] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  317.899762] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  317.902324] kernel msg: ebtables bug: please report to author: Wrong len argument
[  317.917109] kernel msg: ebtables bug: please report to author: Wrong len argument
[  317.926882] Interruptibility = 00000000  ActivityState = 00000000
[  317.936882] *** Host State ***
[  317.940927] RIP = 0xffffffff81212522  RSP = 0xffff880194be7350
[  317.947401] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  317.955058] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000003000
[  317.963118] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  317.969418] CR0=0000000080050033 CR3=00000001c0986000 CR4=00000000001426e0
[  317.982177] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  317.995248] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  318.001421] *** Control State ***
[  318.004885] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  318.011642] EntryControls=0000d1ff ExitControls=002fefff
[  318.017093] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  318.024291] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.040351] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  318.047129]         reason=80000021 qualification=0000000000000000
[  318.055727] IDTVectoring: info=00000000 errcode=00000000
[  318.061894] TSC Offset = 0xffffff5373deda7f
03:34:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:20 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
sendfile(r0, r0, 0x0, 0xb6)

03:34:20 executing program 0:
clock_settime(0x0, &(0x7f0000000840))

03:34:20 executing program 4:
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
stat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = getegid()
mount$fuseblk(&(0x7f0000000000)='/dev/loop0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='fuseblk\x00', 0x4010, &(0x7f00000001c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xf000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x400}}, {@max_read={'max_read', 0x3d, 0x9d}}, {@blksize={'blksize', 0x3d, 0x800}}, {@max_read={'max_read', 0x3d, 0x20}}, {@allow_other='allow_other'}, {@allow_other='allow_other'}]}})
mount$bpf(0x0, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)='bpf\x00', 0x4002, &(0x7f0000000340)={[{@mode={'mode', 0x3d, 0xffffffffffff8000}}, {@mode={'mode', 0x3d, 0x3ff}}, {@mode={'mode'}}]})
bind$unix(r0, &(0x7f00000003c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
getpeername$unix(r0, &(0x7f0000000440), &(0x7f00000004c0)=0x6e)
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000)
keyctl$set_reqkey_keyring(0xe, 0x6)
getpeername$unix(r1, &(0x7f0000000500), &(0x7f0000000580)=0x6e)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x40, 0x0)
ioctl$ASHMEM_SET_NAME(r1, 0x41007701, &(0x7f0000000600)='/dev/loop0\x00')
ioctl$INOTIFY_IOC_SETNEXTWD(r1, 0x40044900, 0xffff)
setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000640)=0x1f, 0x4)
ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000680))
lstat(&(0x7f00000006c0)='./file1\x00', &(0x7f0000000700))
openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000780)='/proc/self/attr/exec\x00', 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000007c0)={<r5=>0x0, 0x4}, &(0x7f0000000800)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000840)={0xfdfd, 0x8000, 0xffffffffffffffc1, 0x7, <r6=>r5}, &(0x7f0000000880)=0x10)
r7 = socket$inet6(0xa, 0x7, 0x5)
getsockopt$packet_buf(r0, 0x107, 0x6, &(0x7f00000008c0)=""/186, &(0x7f0000000980)=0xba)
listxattr(&(0x7f00000009c0)='./file1\x00', &(0x7f0000000a00)=""/4096, 0x1000)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000001a00)={<r8=>r6, @in6={{0xa, 0x4e20, 0x0, @local, 0x7}}}, &(0x7f0000001ac0)=0x84)
readv(r4, &(0x7f0000001ec0)=[{&(0x7f0000001b00)=""/238, 0xee}, {&(0x7f0000001c00)=""/18, 0x12}, {&(0x7f0000001c40)=""/253, 0xfd}, {&(0x7f0000001d40)=""/225, 0xe1}, {&(0x7f0000001e40)=""/83, 0x53}], 0x5)
fstat(r7, &(0x7f0000001f40))
setsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000001fc0)={r8, 0x1}, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002040)=@filter={'filter\x00', 0xe, 0x4, 0x438, 0x118, 0x0, 0x118, 0x0, 0x118, 0x368, 0x368, 0x368, 0x368, 0x368, 0x4, &(0x7f0000002000), {[{{@ipv6={@dev={0xfe, 0x80, [], 0x13}, @remote, [0xffffffff, 0xffffffff, 0xff], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], 'team0\x00', 'veth0_to_bridge\x00', {}, {0xff}, 0x5c, 0x80, 0x7, 0x44}, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@eui64={0x28, 'eui64\x00'}]}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x9}}}, {{@ipv6={@loopback, @loopback, [0xffffffff, 0xffffff00, 0xff000000], [0xffffffff, 0xffffffff, 0xffffff00, 0xffffffff], 'veth1_to_bond\x00', 'veth1_to_team\x00', {}, {0xff}, 0x2f, 0x8866, 0x1, 0x6}, 0x0, 0xc8, 0x110}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x20, 'syz1\x00', 0x9}}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@common=@icmp6={0x28, 'icmp6\x00', 0x0, {0x1f, 0xffffffff, 0x800, 0x1}}, @common=@eui64={0x28, 'eui64\x00'}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0xe}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x498)
getsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f0000002500), &(0x7f0000002540)=0x4)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000002580)={0x8, <r9=>0x0, 0x2, 0x4})
ioctl$DRM_IOCTL_AGP_UNBIND(r1, 0x40106437, &(0x7f00000025c0)={r9, 0xfff})

03:34:20 executing program 2:
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000000)="0a5cc8070031afa8b40a08d5bd805d55438ca8ca2fb3b088626fc887ca8cdaf34f4b3dfc7281f3a8267ad879e68792")
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vcs\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f00000007c0)=0x800000000000002, 0x4)
getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000340)=0x21, &(0x7f0000000380)=0x4)
epoll_create(0x1)
write$FUSE_POLL(r2, &(0x7f00000000c0)={0x18, 0x0, 0x0, {0x1ff}}, 0x18)
bind$inet(r3, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10)
accept$inet6(r1, 0x0, &(0x7f0000000400))
r4 = mq_open(&(0x7f0000000080)='bdev\x00', 0x41, 0xc4, &(0x7f00000000c0)={0x7, 0x6, 0x94, 0xffffffff, 0x20, 0x10000, 0x1, 0x7})
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f00000002c0)={0x4, 0x0, &(0x7f00000004c0)="6e212e31e312e41ca0ca056a7973c8adff604d4a4f09bf1dc287b3c90b4d55249284db4822f93816f1d022fb7a04e4437669d2af8325575b91156e0085b4b64ea21e3e0921980d676b", &(0x7f0000000540)="05ba047dd3c04a8602f00636f403d1f79e5e1478fbe51c3587c33c0d3aeb29f869660e20a0d3531c38171b40ee4bb0b2af5b536cb349bcc79f2dedb94f215fb1cbadd0cb9cf90ee559e0770ad86572004be8941b095db58fa8556f08f9ce372cf52f69e63ceeb7c3d184e988917b0c2cef76a25ee08008e3235db2e1df8047b14297ab45bec37efedf45d83f599dee8313e369236917b8d18d42313e51922a2577b0f8f12c8b74b2b0a8fdf185511f9178e3e632e796", 0x49, 0xb6})
mq_timedsend(r4, &(0x7f0000000000)="e1bd6cd0afde34321df09a6d21a196923c8789fbec2ea693ba8964b3fe243e2d42cdc1b9eef3721daa36ba559839d6", 0x2f, 0x6, &(0x7f0000000040)={0x1000000000, 0x989680})
mq_timedsend(r4, &(0x7f0000000240)="73b3cafec3dbd277099115feb843043bcd21914a3dd770451ca1844af1702112de1c7734850769393d14c839755a14d817df51fee3f9c0eb552a2c2ed1587ddc4541f459edf88ac4aeb604daa86338ecf4a9ac6ff010cf7c5811", 0x5a, 0x5, &(0x7f00000001c0))
ioctl$SG_SET_TIMEOUT(r2, 0x2201, &(0x7f00000003c0)=0x3)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000440)={0x400, {0x2, 0x4e23, @rand_addr=0x86c5}, {0x2, 0x4e21, @rand_addr=0x3}, {0x2, 0x4e22}, 0x300, 0x2983, 0x8, 0x52, 0x5, &(0x7f0000000100)='ipddp0\x00', 0x5, 0x8, 0x100000000})
mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
ioctl$int_in(r3, 0x5421, &(0x7f0000000900)=0x6)
ioctl$int_in(r3, 0x5452, &(0x7f0000000140)=0x9)
socket$vsock_dgram(0x28, 0x2, 0x0)
sendto$inet(r3, &(0x7f0000000a00), 0x73c5d3417c1b93e7, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback}, 0x10)
sendto$inet(r3, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)=0x1)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000300)={0x0, 0x7, 0x8}, 0x8)

[  318.066220] EPT pointer = 0x00000001b9dba01e
03:34:20 executing program 1:
sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9)
openat$userio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/userio\x00', 0xa000, 0x0)
getpid()
wait4(0x0, &(0x7f0000000100), 0x0, &(0x7f0000000500))
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
perf_event_open(&(0x7f0000000280)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x100000000, 0x400, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffff284, 0x8, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x46}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
r1 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000600)='cgroup.procs\x00', 0x2, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0))
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000400)='tasks\x00', 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000200)="2f6578650000c10000000000e9ff0700000000000054fa07424adee916d2da75afe70b35a0fd6a1f0200f5ab26d7a071fb35331ce39c5a6568641006d7c0206a74e33326530000000000000000000000")
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000740)={{{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@local}, 0x0, @in6=@loopback}}, &(0x7f0000000440)=0xe8)
getresgid(&(0x7f0000000480)=<r4=>0x0, &(0x7f00000004c0), &(0x7f00000005c0))
fchown(r1, r3, r4)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000180), &(0x7f00000001c0)=0x14)
r5 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
ioctl$EVIOCGABS3F(0xffffffffffffffff, 0x8018457f, &(0x7f0000000300)=""/194)
fcntl$setstatus(r5, 0x4, 0x6100)
sendfile(r5, r2, &(0x7f0000000040), 0x100000001)

03:34:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  318.193938] *** Guest State ***
[  318.211469] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
03:34:20 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x7, &(0x7f0000013e95), 0x4)
close(0xffffffffffffffff)
close(r1)

03:34:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  318.245476] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871
[  318.278574] CR3 = 0x0000000000000000
[  318.294227] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
03:34:20 executing program 2:
r0 = socket$inet6(0xa, 0x802, 0x88)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000a80)="153f6234488dd25d766070")
setsockopt$inet6_udp_int(r0, 0x11, 0x100000000a, &(0x7f0000f9bffc)=0x7ff, 0x4)
sendmsg$inet_sctp(r0, &(0x7f0000000000)={&(0x7f0000ed5fe4)=@in6={0xa, 0x4e23, 0x0, @mcast2}, 0x1c, &(0x7f0000001040)=[{&(0x7f0000000040)="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", 0x7f8}], 0x1}, 0x0)
socketpair(0xa, 0x802, 0x9, &(0x7f0000000840)={<r2=>0xffffffffffffffff})
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r2, 0x800442d2, &(0x7f00000008c0)={0x1, &(0x7f0000000880)=[{0x0, 0x0, 0x0, @local}]})

03:34:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x24000, 0x0)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:20 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f00000007c0)='./file0\x00', 0x4)
rt_sigaction(0x10, &(0x7f00000002c0)={0x0, {0x100000000}, 0x0, 0x0}, &(0x7f0000000300), 0x8, &(0x7f0000000340))
getpeername(r0, &(0x7f0000000380)=@hci={0x1f, <r2=>0x0}, &(0x7f0000000400)=0x80)
syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
faccessat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000100)=[{0x50, 0x0, 0x0, 0xffffffffffffffff}, {0x6}]}, 0x10)
r3 = memfd_create(&(0x7f0000000440)='/dev/snd/seq\x00', 0x1)
bind$can_raw(r3, &(0x7f0000000480)={0x1d, r2}, 0x10)
sendmmsg(r0, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002240), 0x1ba, &(0x7f00000022c0)}}, {{0x0, 0x0, &(0x7f00000026c0), 0x0, &(0x7f0000002700)}}], 0x75a, 0x0)

[  318.332621] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  318.350473] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  318.415714] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  318.442386] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  318.481700] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.515943] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.561835] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.587819] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.612250] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.631391] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.646279] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.660393] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.675562] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.688852] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.715291] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  318.728059] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  318.748759] Interruptibility = 00000000  ActivityState = 00000000
[  318.758345] *** Host State ***
[  318.766379] RIP = 0xffffffff81212522  RSP = 0xffff88018a2df350
[  318.777417] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  318.792296] FSBase=00007f24c9115700 GSBase=ffff8801dad00000 TRBase=fffffe0000033000
[  318.802837] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  318.809919] CR0=0000000080050033 CR3=00000001975e3000 CR4=00000000001426e0
[  318.817221] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  318.826400] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  318.832986] *** Control State ***
[  318.836449] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  318.843255] EntryControls=0000d1ff ExitControls=002fefff
[  318.848811] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  318.855785] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
03:34:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getuid()

03:34:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:20 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00')
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x65, &(0x7f0000013e95), 0x4)
sendfile(r0, r1, &(0x7f0000000040)=0x100000, 0x8001)
fsetxattr(r2, &(0x7f0000000000)=@random={'trusted.', '\x00'}, &(0x7f0000000080)='pagemap\x00', 0x8, 0x1)
ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f00000002c0)=0x3ff)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000180)=ANY=[@ANYBLOB="07fbff00", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=<r3=>0x0, @ANYRES32=0x0], &(0x7f00000001c0)=0x20)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={r3, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x16}}}, 0x7, 0x8}, 0x90)

03:34:20 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
umount2(&(0x7f00000007c0)='./file0\x00', 0x4)
rt_sigaction(0x10, &(0x7f00000002c0)={0x0, {0x100000000}, 0x0, 0x0}, &(0x7f0000000300), 0x8, &(0x7f0000000340))
getpeername(r0, &(0x7f0000000380)=@hci={0x1f, <r2=>0x0}, &(0x7f0000000400)=0x80)
syz_open_dev$sndseq(&(0x7f0000000140)='/dev/snd/seq\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
faccessat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000100)=[{0x50, 0x0, 0x0, 0xffffffffffffffff}, {0x6}]}, 0x10)
r3 = memfd_create(&(0x7f0000000440)='/dev/snd/seq\x00', 0x1)
bind$can_raw(r3, &(0x7f0000000480)={0x1d, r2}, 0x10)
sendmmsg(r0, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002240), 0x1ba, &(0x7f00000022c0)}}, {{0x0, 0x0, &(0x7f00000026c0), 0x0, &(0x7f0000002700)}}], 0x75a, 0x0)

03:34:20 executing program 1:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000040)={0x2, 0x4e23, @rand_addr=0x5}, 0x10)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140))
setsockopt$kcm_KCM_RECV_DISABLE(r1, 0x119, 0x1, &(0x7f0000000080)=0x2, 0x4)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x80803, 0x87)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000000041}, 0xc)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000400)={{{@in, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x2b}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x90}}, 0xe8)
connect$inet6(r2, &(0x7f00000000c0), 0x1c)
arch_prctl(0x1003, &(0x7f0000000040))

[  318.862735] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.869495]         reason=80000021 qualification=0000000000000000
[  318.875878] IDTVectoring: info=00000000 errcode=00000000
[  318.881382] TSC Offset = 0xffffff531299fa88
[  318.888441] EPT pointer = 0x00000001b95b001e
03:34:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:20 executing program 2:
r0 = semget$private(0x0, 0x8, 0x81)
semctl$IPC_RMID(r0, 0x2000000, 0x10)
semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000000)=""/254)

03:34:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[])
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x400000, 0x0)
mknodat(r0, &(0x7f0000000180)="2e2f66692e65318c", 0x0, 0x0)
r1 = fanotify_init(0x0, 0x0)
fanotify_mark(r1, 0x11, 0x2, r0, &(0x7f00000000c0)="2e2f66692e65318c00")
r2 = creat(&(0x7f0000000300)='./file1\x00', 0x0)
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000100)=0x1000000)
r3 = open(&(0x7f0000000040)="2e2f66692e65318c00", 0x80241, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r3, 0xc010640b, &(0x7f0000000200)={0x0, <r4=>0x0, 0x9})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f0000000280)={r4, 0x80000, r3})
write$evdev(r2, &(0x7f00000001c0)=[{}], 0x18c)
write$P9_RWRITE(r3, &(0x7f0000000240)={0xfffffffffffffd94}, 0x9)
readv(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/45, 0x2d}], 0x1)

03:34:21 executing program 5 (fault-call:5 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:21 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  319.112247] FAT-fs (loop1): bogus number of reserved sectors
[  319.124194] FAT-fs (loop1): Can't find a valid FAT filesystem
[  319.179877] FAULT_INJECTION: forcing a failure.
[  319.179877] name failslab, interval 1, probability 0, space 0, times 1
[  319.198066] CPU: 1 PID: 14751 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  319.206574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  319.215920] Call Trace:
[  319.218523]  dump_stack+0x1d3/0x2c4
[  319.222161]  ? dump_stack_print_info.cold.2+0x52/0x52
[  319.227356]  ? __lock_acquire+0x7ec/0x4ec0
[  319.231612]  should_fail.cold.4+0xa/0x17
[  319.235674]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  319.240772]  ? print_usage_bug+0xc0/0xc0
[  319.244832]  ? graph_lock+0x170/0x170
[  319.248630]  ? print_usage_bug+0xc0/0xc0
[  319.252685]  ? print_usage_bug+0xc0/0xc0
[  319.256743]  ? graph_lock+0x170/0x170
[  319.260555]  ? find_held_lock+0x36/0x1c0
[  319.264613]  ? __lock_is_held+0xb5/0x140
[  319.268683]  ? ttwu_stat+0x5c0/0x5c0
[  319.272404]  __should_failslab+0x124/0x180
[  319.276637]  should_failslab+0x9/0x14
[  319.280434]  kmem_cache_alloc+0x2be/0x730
[  319.284574]  ? vmx_flush_tlb_gva+0x380/0x380
[  319.288984]  ? print_usage_bug+0xc0/0xc0
[  319.293041]  ? d_splice_alias+0x7c9/0x11d0
[  319.297297]  mmu_topup_memory_caches+0xf7/0x390
[  319.301970]  kvm_mmu_load+0x21/0xfa0
[  319.305705]  vcpu_enter_guest+0x3e9d/0x6260
[  319.310033]  ? emulator_read_emulated+0x50/0x50
[  319.314707]  ? vmx_vcpu_load+0xb06/0x1030
[  319.318854]  ? vmx_write_tsc_offset+0x670/0x670
[  319.323531]  ? graph_lock+0x170/0x170
[  319.327327]  ? lock_downgrade+0x900/0x900
[  319.331470]  ? check_preemption_disabled+0x48/0x200
[  319.336489]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  319.342024]  ? check_preemption_disabled+0x48/0x200
[  319.347047]  ? __lock_is_held+0xb5/0x140
[  319.351106]  ? lock_acquire+0x1ed/0x520
[  319.355082]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  319.360105]  ? lock_release+0x970/0x970
[  319.364067]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  319.369338]  ? kvm_arch_dev_ioctl+0x630/0x630
[  319.373822]  ? preempt_notifier_dec+0x20/0x20
[  319.378335]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  319.383172]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  319.388191]  kvm_vcpu_ioctl+0x5c8/0x1150
[  319.392246]  ? kvm_vcpu_block+0x1020/0x1020
[  319.396566]  ? find_held_lock+0x36/0x1c0
[  319.400644]  ? __fget+0x4aa/0x740
[  319.404093]  ? check_preemption_disabled+0x48/0x200
[  319.409125]  ? kasan_check_read+0x11/0x20
[  319.413283]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  319.418569]  ? rcu_softirq_qs+0x20/0x20
[  319.422554]  ? __fget+0x4d1/0x740
[  319.426006]  ? ksys_dup3+0x680/0x680
[  319.429722]  ? find_held_lock+0x36/0x1c0
[  319.433781]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  319.438716]  ? kvm_vcpu_block+0x1020/0x1020
[  319.443048]  do_vfs_ioctl+0x1de/0x1720
[  319.446967]  ? __lock_is_held+0xb5/0x140
[  319.451036]  ? ioctl_preallocate+0x300/0x300
[  319.455478]  ? __fget_light+0x2e9/0x430
[  319.459463]  ? fget_raw+0x20/0x20
[  319.462914]  ? __sb_end_write+0xd9/0x110
[  319.466987]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  319.472523]  ? fput+0x130/0x1a0
[  319.475804]  ? do_syscall_64+0x9a/0x820
[  319.479778]  ? do_syscall_64+0x9a/0x820
[  319.483749]  ? lockdep_hardirqs_on+0x421/0x5c0
[  319.488328]  ? security_file_ioctl+0x94/0xc0
[  319.492851]  ksys_ioctl+0xa9/0xd0
[  319.496295]  __x64_sys_ioctl+0x73/0xb0
[  319.500164]  do_syscall_64+0x1b9/0x820
[  319.504029]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  319.509370]  ? syscall_return_slowpath+0x5e0/0x5e0
[  319.514283]  ? trace_hardirqs_off+0x310/0x310
[  319.518756]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  319.523767]  ? recalc_sigpending_tsk+0x180/0x180
[  319.528503]  ? kasan_check_write+0x14/0x20
[  319.532720]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  319.537540]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  319.542706] RIP: 0033:0x457679
[  319.545878] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  319.564756] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  319.572441] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  319.579686] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  319.586937] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  319.594182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  319.601437] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000000
[  319.910816] FAT-fs (loop1): Unrecognized mount option "”ýÿÿw" or missing value
03:34:23 executing program 3:
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x40)
ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f00000000c0))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r1, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r1})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r1, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:23 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000380)="6e7230010060a19ef9d2c673d9a1571cb9e1369bcd61ef7e49793ae18712eceb1daa769497800b7fbbd35b170c10751d39aeb660d863e49b8c4f3b3cad48902b5b2d6cfd0abd372c63bcf5d70df3fd4d2e8d443c88c60fd7140fbc0e5637dd82fc3435bed4de5d693c9a781c863e05d8a6f8689a5be29216061f3ff53f8b6b396678e7ba155ef9152d7e43b1eccb2331eb8eb1ed5586dcf8b3b0b999361a44ff2c22c2abbef42dd24eabe6723346a6e46c0499a21442d8d00dcb57f013ff7595edd0ff076930de3675d34117a44eb0e4f832936da44e")
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x801})
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x101000, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000018c0)={0xf4, r4, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x68, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x639a38d6993848ff}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x45b4f377ac0953d1)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000240)=0x1, 0x4)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x308)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000000280)=0x40)
recvmsg$kcm(r1, &(0x7f0000001880)={0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000000540)=""/47, 0x2f}, {&(0x7f00000005c0)=""/9, 0x9}, {&(0x7f0000000600)=""/117, 0x75}, {&(0x7f00000006c0)=""/229, 0xe5}, {&(0x7f00000007c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001840)=""/33, 0x21, 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='memory.stat\x00', 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000500), 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000400), 0x2c)
sendmsg$key(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="020c06080b00002028bd7000fddbdf2507001900000000000a004e2407000000fe8000000000000000000000000000100200000002004c20ac1414bb00000000000000000000000002001000000004d5000004d20000000093f4647018ec1f0aafa0b6c5a307f61699cb51ce87d4a7a9dbe32f512c38d8789533f50a36d28a895a8ada9ec254ee696657d0b465c0e243de9dfecb3a98e2cbb06397bd6f8152c3aabb710c3b7beb16282f3374fa7b2561ecbea9b757b9df405274ebef3b6f56036129f3b4e8f7a570575447e2971dd4d8c0511e99cd0c849eb598efe136f59818e2f6597e40cbdcbd125d332d1dacb65d5798ffc1edb031e56b3c40638fbbd6d1f9571409bb5c28b9a7348a188af21df53d19bdd80f77b9351a8068b63a185f96cabbed55619e1a0bfbe610e73e913db643978b4637bed164c89b90e3a73fa893b18ae7092633c710ab27a27c0d3580fd712b78c335991e787877b6537c8835d1ee5ba188aeb64861403cc342f49140b6fb63e8012ee0d1954b3647cd25ad355642be7dab8a9256486a68f041230ffe52424548678caefa281093f78667ab0f3132e3d68be13e8f188a609d5a8b64df731f7c071d25589a9497d18ef57c7876e928bf"], 0x1c2}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x200000080}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r7, &(0x7f0000000300), &(0x7f0000000280)}, 0x20)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={0xffffffffffffffff, 0x3, 0x1, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x20)

03:34:23 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:23 executing program 5 (fault-call:5 fault-nth:1):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:23 executing program 4:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x2, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0xa840)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, r2, 0xd66f934bb350cc6b}, 0xc)
socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x890b, &(0x7f0000000000))

03:34:23 executing program 1:
r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x1, 0x800000000200)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0xbfad}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000200)={0x8000, 0x2, 'client0\x00', 0x5, "187e1a61b59fde03", "f331d3ecc4b1f159a9c86e9d789e31e98fb13ff69d170536c15bfb139f135934", 0xffffffff, 0xffffffff})
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040)=0xffffffffffff0000, 0x4)

03:34:23 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  321.501701] FAULT_INJECTION: forcing a failure.
[  321.501701] name failslab, interval 1, probability 0, space 0, times 0
[  321.534502] CPU: 0 PID: 14769 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  321.543028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  321.552390] Call Trace:
[  321.554973]  dump_stack+0x1d3/0x2c4
[  321.558615]  ? dump_stack_print_info.cold.2+0x52/0x52
[  321.563809]  ? __kernel_text_address+0xd/0x40
[  321.568304]  ? unwind_get_return_address+0x61/0xa0
[  321.573228]  should_fail.cold.4+0xa/0x17
[  321.577276]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  321.582384]  ? save_stack+0xa9/0xd0
[  321.585997]  ? graph_lock+0x170/0x170
[  321.589782]  ? kasan_slab_alloc+0x12/0x20
[  321.593919]  ? kmem_cache_alloc+0x12e/0x730
[  321.598238]  ? mmu_topup_memory_caches+0xf7/0x390
[  321.603065]  ? kvm_mmu_load+0x21/0xfa0
[  321.606938]  ? vcpu_enter_guest+0x3e9d/0x6260
[  321.611423]  ? graph_lock+0x170/0x170
[  321.615297]  ? ksys_ioctl+0xa9/0xd0
[  321.618906]  ? __x64_sys_ioctl+0x73/0xb0
[  321.622951]  ? do_syscall_64+0x1b9/0x820
[  321.627005]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  321.632377]  ? find_held_lock+0x36/0x1c0
[  321.636426]  ? __lock_is_held+0xb5/0x140
[  321.640481]  ? ttwu_stat+0x5c0/0x5c0
[  321.644192]  __should_failslab+0x124/0x180
[  321.648412]  should_failslab+0x9/0x14
[  321.652196]  kmem_cache_alloc+0x2be/0x730
[  321.656626]  ? vmx_flush_tlb_gva+0x380/0x380
[  321.661029]  ? print_usage_bug+0xc0/0xc0
[  321.665075]  ? d_splice_alias+0x7c9/0x11d0
[  321.669388]  ? mmu_topup_memory_caches+0xf7/0x390
[  321.674229]  mmu_topup_memory_caches+0xf7/0x390
[  321.678889]  kvm_mmu_load+0x21/0xfa0
[  321.682599]  vcpu_enter_guest+0x3e9d/0x6260
[  321.686915]  ? emulator_read_emulated+0x50/0x50
[  321.691576]  ? vmx_vcpu_load+0xb06/0x1030
[  321.695754]  ? vmx_write_tsc_offset+0x670/0x670
[  321.700423]  ? graph_lock+0x170/0x170
[  321.704227]  ? lock_downgrade+0x900/0x900
[  321.708362]  ? check_preemption_disabled+0x48/0x200
[  321.713368]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  321.718907]  ? check_preemption_disabled+0x48/0x200
[  321.723927]  ? __lock_is_held+0xb5/0x140
[  321.727981]  ? lock_acquire+0x1ed/0x520
[  321.731941]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  321.737039]  ? lock_release+0x970/0x970
[  321.740997]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  321.746281]  ? kvm_arch_dev_ioctl+0x630/0x630
[  321.750774]  ? preempt_notifier_dec+0x20/0x20
[  321.755269]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  321.760098]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  321.765108]  kvm_vcpu_ioctl+0x5c8/0x1150
[  321.769160]  ? kvm_vcpu_block+0x1020/0x1020
[  321.773571]  ? find_held_lock+0x36/0x1c0
[  321.777622]  ? __fget+0x4aa/0x740
[  321.781061]  ? check_preemption_disabled+0x48/0x200
[  321.786078]  ? kasan_check_read+0x11/0x20
[  321.790225]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  321.795487]  ? rcu_softirq_qs+0x20/0x20
[  321.799479]  ? __fget+0x4d1/0x740
[  321.802931]  ? ksys_dup3+0x680/0x680
[  321.806750]  ? find_held_lock+0x36/0x1c0
[  321.810821]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  321.815750]  ? kvm_vcpu_block+0x1020/0x1020
[  321.820062]  do_vfs_ioctl+0x1de/0x1720
[  321.823938]  ? __lock_is_held+0xb5/0x140
[  321.827987]  ? ioctl_preallocate+0x300/0x300
[  321.832380]  ? __fget_light+0x2e9/0x430
[  321.836341]  ? fget_raw+0x20/0x20
[  321.839790]  ? __sb_end_write+0xd9/0x110
[  321.843840]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  321.849378]  ? fput+0x130/0x1a0
[  321.852641]  ? do_syscall_64+0x9a/0x820
[  321.856601]  ? do_syscall_64+0x9a/0x820
[  321.860569]  ? lockdep_hardirqs_on+0x421/0x5c0
[  321.865136]  ? security_file_ioctl+0x94/0xc0
[  321.869535]  ksys_ioctl+0xa9/0xd0
[  321.872977]  __x64_sys_ioctl+0x73/0xb0
[  321.876846]  do_syscall_64+0x1b9/0x820
[  321.880717]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  321.886591]  ? syscall_return_slowpath+0x5e0/0x5e0
[  321.891507]  ? trace_hardirqs_off+0x310/0x310
[  321.895986]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  321.900986]  ? recalc_sigpending_tsk+0x180/0x180
[  321.905733]  ? kasan_check_write+0x14/0x20
[  321.909974]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  321.914806]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  321.920092] RIP: 0033:0x457679
[  321.923271] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  321.942156] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
03:34:23 executing program 1:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0xffefffffffffff7f)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x0, 0x30}, 0xc)
r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200000, 0x0)
setsockopt$bt_hci_HCI_TIME_STAMP(r2, 0x0, 0x3, &(0x7f0000000040)=0x8000, 0x4)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x2}, 0x8)
write$binfmt_aout(r1, &(0x7f0000000140)=ANY=[@ANYBLOB='i'], 0x1)
write$binfmt_misc(r1, &(0x7f0000000240)={'syz1'}, 0x34000)

[  321.949849] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  321.957101] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  321.964367] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  321.971621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  321.978875] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000001
[  322.032914] device nr0
 entered promiscuous mode
03:34:24 executing program 5 (fault-call:5 fault-nth:2):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  322.102416] FAULT_INJECTION: forcing a failure.
[  322.102416] name failslab, interval 1, probability 0, space 0, times 0
[  322.114037] CPU: 0 PID: 14796 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  322.122530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  322.131881] Call Trace:
[  322.134475]  dump_stack+0x1d3/0x2c4
[  322.138119]  ? dump_stack_print_info.cold.2+0x52/0x52
[  322.143317]  ? __kernel_text_address+0xd/0x40
[  322.147812]  ? unwind_get_return_address+0x61/0xa0
[  322.147836]  should_fail.cold.4+0xa/0x17
[  322.156903]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  322.162023]  ? save_stack+0xa9/0xd0
[  322.162043]  ? graph_lock+0x170/0x170
[  322.169426]  ? kasan_slab_alloc+0x12/0x20
[  322.173566]  ? kmem_cache_alloc+0x12e/0x730
[  322.177883]  ? mmu_topup_memory_caches+0xf7/0x390
[  322.182727]  ? kvm_mmu_load+0x21/0xfa0
[  322.186619]  ? vcpu_enter_guest+0x3e9d/0x6260
[  322.191117]  ? graph_lock+0x170/0x170
[  322.194915]  ? ksys_ioctl+0xa9/0xd0
[  322.198542]  ? __x64_sys_ioctl+0x73/0xb0
03:34:24 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

[  322.202620]  ? do_syscall_64+0x1b9/0x820
[  322.206673]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  322.212049]  ? find_held_lock+0x36/0x1c0
[  322.216116]  ? __lock_is_held+0xb5/0x140
[  322.220191]  ? ttwu_stat+0x5c0/0x5c0
[  322.223891]  __should_failslab+0x124/0x180
[  322.228110]  should_failslab+0x9/0x14
[  322.231896]  kmem_cache_alloc+0x2be/0x730
[  322.236031]  ? vmx_flush_tlb_gva+0x380/0x380
[  322.240426]  ? print_usage_bug+0xc0/0xc0
[  322.244479]  ? d_splice_alias+0x7c9/0x11d0
[  322.248716]  ? mmu_topup_memory_caches+0xf7/0x390
[  322.253562]  mmu_topup_memory_caches+0xf7/0x390
[  322.258226]  kvm_mmu_load+0x21/0xfa0
[  322.261941]  vcpu_enter_guest+0x3e9d/0x6260
[  322.266262]  ? emulator_read_emulated+0x50/0x50
[  322.270922]  ? vmx_vcpu_load+0xb06/0x1030
[  322.275064]  ? vmx_write_tsc_offset+0x670/0x670
[  322.279718]  ? graph_lock+0x170/0x170
[  322.283502]  ? lock_downgrade+0x900/0x900
[  322.287640]  ? check_preemption_disabled+0x48/0x200
[  322.292648]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  322.298172]  ? check_preemption_disabled+0x48/0x200
[  322.303182]  ? __lock_is_held+0xb5/0x140
[  322.307358]  ? lock_acquire+0x1ed/0x520
[  322.311319]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  322.316344]  ? lock_release+0x970/0x970
[  322.320309]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  322.325573]  ? kvm_arch_dev_ioctl+0x630/0x630
[  322.330052]  ? preempt_notifier_dec+0x20/0x20
[  322.334568]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  322.339483]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  322.344498]  kvm_vcpu_ioctl+0x5c8/0x1150
[  322.348556]  ? kvm_vcpu_block+0x1020/0x1020
[  322.352874]  ? find_held_lock+0x36/0x1c0
[  322.356934]  ? __fget+0x4aa/0x740
[  322.360381]  ? check_preemption_disabled+0x48/0x200
[  322.365387]  ? kasan_check_read+0x11/0x20
[  322.369520]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  322.374784]  ? rcu_softirq_qs+0x20/0x20
[  322.378763]  ? __fget+0x4d1/0x740
[  322.382210]  ? ksys_dup3+0x680/0x680
[  322.385910]  ? find_held_lock+0x36/0x1c0
[  322.389968]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  322.395020]  ? kvm_vcpu_block+0x1020/0x1020
[  322.399331]  do_vfs_ioctl+0x1de/0x1720
[  322.403205]  ? __lock_is_held+0xb5/0x140
[  322.407263]  ? ioctl_preallocate+0x300/0x300
[  322.411661]  ? __fget_light+0x2e9/0x430
[  322.415629]  ? fget_raw+0x20/0x20
[  322.419101]  ? __sb_end_write+0xd9/0x110
[  322.423166]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  322.428695]  ? fput+0x130/0x1a0
[  322.431959]  ? do_syscall_64+0x9a/0x820
[  322.435918]  ? do_syscall_64+0x9a/0x820
[  322.439880]  ? lockdep_hardirqs_on+0x421/0x5c0
[  322.444449]  ? security_file_ioctl+0x94/0xc0
[  322.448848]  ksys_ioctl+0xa9/0xd0
[  322.452290]  __x64_sys_ioctl+0x73/0xb0
[  322.456162]  do_syscall_64+0x1b9/0x820
[  322.460035]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  322.465382]  ? syscall_return_slowpath+0x5e0/0x5e0
[  322.470297]  ? trace_hardirqs_off+0x310/0x310
[  322.474780]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  322.479778]  ? recalc_sigpending_tsk+0x180/0x180
[  322.484516]  ? kasan_check_write+0x14/0x20
[  322.489175]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  322.494029]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  322.499222] RIP: 0033:0x457679
[  322.502404] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  322.521288] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  322.528983] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  322.536243] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  322.543499] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
03:34:24 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0)
r1 = getpid()
dup2(r0, r0)
sched_setscheduler(r1, 0x5, &(0x7f0000000200))
flock(r0, 0x0)

[  322.550750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  322.557999] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000002
03:34:24 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vsock\x00', 0x305000, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f00000001c0)={<r2=>0x0, 0xe2, 0xfffffffffffffff8, 0x2}, &(0x7f0000000300)=0x10)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/self/net/pfkey\x00', 0x400600, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000340)={r2, 0x2, 0x7, [0x350c, 0x4, 0x9, 0x1, 0x2, 0x3ff, 0x100]}, &(0x7f0000000380)=0x16)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000940)={'ip6gre0\x00', <r3=>0x0})
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x400, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, <r5=>0x0})
write$FUSE_LK(r4, &(0x7f0000000080)={0x28, 0x0, 0x7, {{0xa4c4, 0xe2, 0x2, r5}}}, 0x28)
lsetxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='trusted.overlay.opaque\x00', &(0x7f0000000140)='y\x00', 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f0000000200), 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@mpls_getnetconf={0x1c, 0x52, 0x1, 0x0, 0x0, {}, [@NETCONFA_IFINDEX={0x8, 0x1, r3}]}, 0x1c}}, 0x0)

03:34:24 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sequencer\x00', 0x2040, 0x0)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f00000004c0)={<r4=>0x0, 0xffffffffffff7adc}, &(0x7f0000000500)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000540)=ANY=[@ANYRES32=r4, @ANYBLOB="82000000ba17b8dbde322d7488316f0000bf3859dd70f5868b652e8be826aaae595738b86f61d5e5a3897e8c264469648629a57cc6847edd2b16abdbb288483d21bee130657f8a4f3d99d15fe1e83b2866db3a33a8fe781c4e50b401219597d62dd9412b300c96bd6ccb5719f0be765047d7d9576403da6a87d0feee9b5e776435e565d23af0"], &(0x7f0000000600)=0x8a)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000001c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f00000000c0)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r3, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:24 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000380)="6e7230010060a19ef9d2c673d9a1571cb9e1369bcd61ef7e49793ae18712eceb1daa769497800b7fbbd35b170c10751d39aeb660d863e49b8c4f3b3cad48902b5b2d6cfd0abd372c63bcf5d70df3fd4d2e8d443c88c60fd7140fbc0e5637dd82fc3435bed4de5d693c9a781c863e05d8a6f8689a5be29216061f3ff53f8b6b396678e7ba155ef9152d7e43b1eccb2331eb8eb1ed5586dcf8b3b0b999361a44ff2c22c2abbef42dd24eabe6723346a6e46c0499a21442d8d00dcb57f013ff7595edd0ff076930de3675d34117a44eb0e4f832936da44e")
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x801})
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x101000, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000018c0)={0xf4, r4, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x68, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x639a38d6993848ff}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x45b4f377ac0953d1)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000240)=0x1, 0x4)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x308)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000000280)=0x40)
recvmsg$kcm(r1, &(0x7f0000001880)={0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000000540)=""/47, 0x2f}, {&(0x7f00000005c0)=""/9, 0x9}, {&(0x7f0000000600)=""/117, 0x75}, {&(0x7f00000006c0)=""/229, 0xe5}, {&(0x7f00000007c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001840)=""/33, 0x21, 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='memory.stat\x00', 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000500), 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000400), 0x2c)
sendmsg$key(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], 0x1c2}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x200000080}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r7, &(0x7f0000000300), &(0x7f0000000280)}, 0x20)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={0xffffffffffffffff, 0x3, 0x1, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x20)

03:34:24 executing program 4:
r0 = syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x0, 0x0)
r1 = socket$inet(0x2, 0x10080082, 0x3)
ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000100))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x0, 0x0)
setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000000)={{0x3}, 0x2}, 0x10)
ioctl$TUNGETVNETHDRSZ(0xffffffffffffffff, 0x800454d7, &(0x7f0000000140))
r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/fib_trie\x00')
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r0, 0x2)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000440)=<r3=>0x0)
setpgid(0x0, r3)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, <r4=>0x0}, &(0x7f0000000080)=0xc)
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
getresgid(&(0x7f0000000240), &(0x7f0000000280), &(0x7f0000000340))
setresgid(r4, r5, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000002fc8)={&(0x7f00000002c0)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224-generic\x00'}, 0x80, &(0x7f0000000100), 0x0, &(0x7f00000002c0)=ANY=[]}, 0x0)
preadv(r2, &(0x7f00000017c0), 0x1bf, 0x400000001f00)

03:34:24 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:24 executing program 5 (fault-call:5 fault-nth:3):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:24 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x4800, 0x0)
ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000080)=0x29)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x800000000000000, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000200))
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc008ae09, &(0x7f0000000000)={0x700})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

03:34:24 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x20102, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000080)={0x80, 0x9, 0x100000001, {r1, r2+30000000}, 0x7ff, 0x80000000})
write$UHID_CREATE2(r0, &(0x7f0000000100)={0xb, 'syz1\x00', 'syz0\x00', 'syz0\x00', 0xa1, 0xfffffffffffffc00, 0x6, 0x5, 0x0, 0x8001, "7c36fd7919fd7d512d627152140ffae9c97232a2664e8afed7bf07aa110838cfb6ecbf3f7a023f9cf5e3ad56490fa0c6c53cc8acfc9b5d3e02aa51a03fcd8c6c7f6b58d3f9dc54e3bd84358643c190b768d78965fb688855fb817d1529ffce969e06ec02b41c2a0c4f0ceff8ff586b085d4f1a695822748c9f699e1e47f780efb568c399646a9d8318c224320a3d328fbe71e3d3a6862babe273537afee41a8a8f"}, 0x1b9)
ioctl$RNDCLEARPOOL(r0, 0x5206, &(0x7f00000002c0)=0x3)
timerfd_gettime(r0, &(0x7f0000000300))
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000340)=0x8, 0x4)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000380))
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000003c0), &(0x7f0000000400)=0x30)
recvmsg$kcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000440)=""/78, 0x4e}], 0x1, &(0x7f0000000500)=""/60, 0x3c, 0xffffffff}, 0x10000)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000580)={<r3=>0x0, @in={{0x2, 0x4e24, @rand_addr=0x101}}, 0x4, 0x8, 0x6, 0x3, 0x7fffffff}, &(0x7f0000000640)=0x98)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000680)={<r4=>r3, 0x80000000}, &(0x7f00000006c0)=0x8)
r5 = syz_open_dev$vcsa(&(0x7f0000000700)='/dev/vcsa#\x00', 0x100000001, 0x80000)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000740)=0x1020005, 0x4)
connect$inet(r5, &(0x7f0000000780)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
ioctl$FS_IOC_GETVERSION(r5, 0x80087601, &(0x7f00000007c0))
ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000800)=0x3)
name_to_handle_at(r5, &(0x7f0000000840)='./file0\x00', &(0x7f0000000880)={0x3d, 0x401, "04f52492f026352eb5f3af47fa3a589018dcc32300a553eaa75ca4a91d59f85f17c0965cc5a03e9155d37305e5adca3a3a494adc3c"}, &(0x7f00000008c0), 0x1000)
r6 = socket$inet6(0xa, 0x800, 0x101)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000900)=0x1800000000000000, 0x4)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000940)={r4, 0x8c8}, &(0x7f0000000980)=0x8)
ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f00000009c0))
r7 = dup2(r0, r6)
r8 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000a80)='/dev/sequencer\x00', 0x1, 0x0)
getresuid(&(0x7f0000000ac0)=<r9=>0x0, &(0x7f0000000b00)=<r10=>0x0, &(0x7f0000000b40))
mount$9p_fd(0x0, &(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40)='9p\x00', 0x4, &(0x7f0000000b80)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@version_9p2000='version=9p2000'}, {@cachetag={'cachetag', 0x3d, '['}}, {@access_any='access=any'}, {@cache_loose='cache=loose'}, {@privport='privport'}, {@version_9p2000='version=9p2000'}, {@dfltuid={'dfltuid', 0x3d, r10}}, {@privport='privport'}, {@version_9p2000='version=9p2000'}]}})
sendmsg$unix(r0, &(0x7f00000022c0)={&(0x7f0000000c40)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000021c0)=[{&(0x7f0000000cc0)="c690921145aceb88fdbb163193e208021db346404bc5027050bb61989526a275e0b3542e499d94731c206232a0b8ec210a55825028f9029161a4fd49f92e0b0ad66ccb2fc19c51a8942bfb890a4f522fb2a02a9b6e225ee5563463b1a3f2ae7fdfc212d5a5ca92a652a82c5736ce0f324c96eabd9268e907bbbff1cbb3bcb9b0e3a804f69c4a08515d2a0f17", 0x8c}, {&(0x7f0000000d80)="1fbbfddeafc2f33d8e673bea0558e4ccc1f6e1e8d0bc04893f782985379703d18a7d3d0317af3ed5de99b1bf5195120f7a0611eb1d7a13e41ab3f5349159b9289a4aa811c04e9073f149bd1167517333e737db92cfba0a0d3bcb550709a1df2eb453023e2ca5b0d79ebf2b058bf6cda02fabb9597c588bbdf30c90ea988135416a4ec10872c0819957", 0x89}, {&(0x7f0000000e40)="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", 0x1000}, {&(0x7f0000001e40)="838a0b66abb90ab2f34b54c81d822b3aab8b5c627efd9f373289204f393fcfc66142aa25f6094e5e53ef72e37c0345b7437ec2efa959bf426f9bab30810459a761d7bde9b323", 0x46}, {&(0x7f0000001ec0)="82f17fb9afbc853b23a33b79956668df43666cc796c9b8f2361d1bcbfde38e184d61711334f71591d1859ebdac53769609791fb2bdccc39e2d3ba03e40d286d2f87fb435abf759b58171243ea7c9305bbb91e89d1c7415429e320289088987df", 0x60}, {&(0x7f0000001f40)="c31f3de97c553efde71a1d606baf217cc253e4b89c98be8125ec0b26dc12985bcebd0f94f934e6583e97597ced52ef23032483945a54f1a4bbab1c93a1aa283a3ebeb3821c4fdb3420f4f9386a8b0a77f9612aeecc34c408848e87c6a437127f3a53366268d4bb4ad9194af37503f523cb3d5bcc9c2cdd16fde559a00ad050d65198ae3c570f86926a30d8f3613f0f", 0x8f}, {&(0x7f0000002000)="f0eb2d1375c4e7f4e650bfff9c8270c973a3fa4b043c7a34eb502beb5d2cb4fbe38021a2e42d965242419a667fa1ac393d946d822501897a05c10921df2109accc8ceef50025451dec48a1f21bd9739b1898c3f3066cb70ef2ce91275de8d7a3822fcdfc9d3651e0fef571a70a1274975e510bf110433ec71813d921007671a56878a55ea54682ef34c1a0afcfde61f58e5088930ad2217c1e653d", 0x9b}, {&(0x7f00000020c0)="7878085ceda002eff9bc778027611a04b131643c1b0f474c7841f8f5a680961b631a77750e81a5bcaddb147caff0be6d413afb86c7df47a1536b905bb9191196ddc011de694be8548eaff556b6d84f7dac7f129f8d4b12cc658d7214297c8621610565faaa842e5b60f9ec91070880bbc369725fe2a87c968ce8ae1fa732093631620ff62d05b1b0f685e6df9c7fb47aafe0368f0b7d04622b368974cabbb5b9e07bff9ed618a71c0ad8d959b07c045c254e630f0ab1e5a97e055f5ce44c239cddcc43797080dcb9906a4b", 0xcb}], 0x8, &(0x7f0000002240)=[@rights={0x28, 0x1, 0x1, [r7, r8, r6, r5, r8]}, @rights={0x28, 0x1, 0x1, [r6, r6, r5, r5, r7]}], 0x50, 0x20000000}, 0x20000080)
ioctl$TUNSETOWNER(r5, 0x400454cc, r9)
fgetxattr(r7, &(0x7f0000002300)=@random={'security.', 'wlan1md5sum}trustedcgrouploeth1@+\x00'}, &(0x7f0000002340)=""/18, 0x12)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r5, 0x84, 0x77, &(0x7f0000002380)={r3, 0x22, 0x7, [0x1000000000000000, 0xb69, 0x5, 0x3fa6e6f6, 0x7ff, 0x7, 0x11da]}, 0x16)

[  323.053717] FAULT_INJECTION: forcing a failure.
[  323.053717] name failslab, interval 1, probability 0, space 0, times 0
[  323.087877] CPU: 0 PID: 14840 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  323.096476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  323.105831] Call Trace:
[  323.108426]  dump_stack+0x1d3/0x2c4
[  323.112057]  ? dump_stack_print_info.cold.2+0x52/0x52
[  323.117252]  ? __kernel_text_address+0xd/0x40
[  323.121741]  ? unwind_get_return_address+0x61/0xa0
[  323.126676]  should_fail.cold.4+0xa/0x17
[  323.130737]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  323.135835]  ? save_stack+0xa9/0xd0
[  323.139456]  ? graph_lock+0x170/0x170
[  323.143257]  ? kasan_slab_alloc+0x12/0x20
[  323.147404]  ? kmem_cache_alloc+0x12e/0x730
[  323.151742]  ? mmu_topup_memory_caches+0xf7/0x390
[  323.156582]  ? kvm_mmu_load+0x21/0xfa0
[  323.160494]  ? vcpu_enter_guest+0x3e9d/0x6260
[  323.164987]  ? graph_lock+0x170/0x170
[  323.168794]  ? ksys_ioctl+0xa9/0xd0
[  323.172412]  ? __x64_sys_ioctl+0x73/0xb0
[  323.176470]  ? do_syscall_64+0x1b9/0x820
[  323.180528]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  323.185894]  ? find_held_lock+0x36/0x1c0
[  323.189957]  ? __lock_is_held+0xb5/0x140
[  323.194046]  ? ttwu_stat+0x5c0/0x5c0
[  323.197765]  __should_failslab+0x124/0x180
[  323.202001]  should_failslab+0x9/0x14
[  323.205797]  kmem_cache_alloc+0x2be/0x730
[  323.209942]  ? vmx_flush_tlb_gva+0x380/0x380
[  323.214350]  ? mark_held_locks+0xc7/0x130
[  323.218496]  ? mmu_topup_memory_caches+0xf7/0x390
[  323.223341]  mmu_topup_memory_caches+0xf7/0x390
[  323.228028]  kvm_mmu_load+0x21/0xfa0
[  323.231746]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  323.236754]  ? kvm_get_time_scale+0x188/0x1e0
[  323.241250]  vcpu_enter_guest+0x3e9d/0x6260
[  323.245579]  ? emulator_read_emulated+0x50/0x50
[  323.250256]  ? vmx_vcpu_load+0xb06/0x1030
[  323.254408]  ? vmx_write_tsc_offset+0x670/0x670
[  323.259073]  ? graph_lock+0x170/0x170
[  323.262871]  ? lock_downgrade+0x900/0x900
[  323.267015]  ? check_preemption_disabled+0x48/0x200
[  323.272027]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  323.277561]  ? check_preemption_disabled+0x48/0x200
[  323.282585]  ? __lock_is_held+0xb5/0x140
[  323.286663]  ? lock_acquire+0x1ed/0x520
[  323.290635]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  323.295659]  ? lock_release+0x970/0x970
[  323.299632]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  323.304911]  ? kvm_arch_dev_ioctl+0x630/0x630
[  323.309401]  ? preempt_notifier_dec+0x20/0x20
[  323.313899]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  323.318737]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  323.323765]  kvm_vcpu_ioctl+0x5c8/0x1150
[  323.327838]  ? kvm_vcpu_block+0x1020/0x1020
[  323.332164]  ? find_held_lock+0x36/0x1c0
[  323.336229]  ? __fget+0x4aa/0x740
[  323.339695]  ? check_preemption_disabled+0x48/0x200
[  323.344723]  ? kasan_check_read+0x11/0x20
[  323.348872]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  323.354180]  ? rcu_softirq_qs+0x20/0x20
[  323.358163]  ? __fget+0x4d1/0x740
[  323.361636]  ? ksys_dup3+0x680/0x680
[  323.365347]  ? find_held_lock+0x36/0x1c0
[  323.369411]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  323.374337]  ? kvm_vcpu_block+0x1020/0x1020
[  323.378679]  do_vfs_ioctl+0x1de/0x1720
[  323.382563]  ? __lock_is_held+0xb5/0x140
[  323.386629]  ? ioctl_preallocate+0x300/0x300
[  323.391036]  ? __fget_light+0x2e9/0x430
[  323.395036]  ? fget_raw+0x20/0x20
[  323.398490]  ? __sb_end_write+0xd9/0x110
[  323.402551]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  323.408112]  ? fput+0x130/0x1a0
[  323.411386]  ? do_syscall_64+0x9a/0x820
[  323.415353]  ? do_syscall_64+0x9a/0x820
[  323.419326]  ? lockdep_hardirqs_on+0x421/0x5c0
[  323.423908]  ? security_file_ioctl+0x94/0xc0
[  323.428326]  ksys_ioctl+0xa9/0xd0
[  323.431777]  __x64_sys_ioctl+0x73/0xb0
[  323.435679]  do_syscall_64+0x1b9/0x820
[  323.439564]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  323.444928]  ? syscall_return_slowpath+0x5e0/0x5e0
[  323.450024]  ? trace_hardirqs_off+0x310/0x310
[  323.454613]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  323.459679]  ? recalc_sigpending_tsk+0x180/0x180
[  323.464579]  ? kasan_check_write+0x14/0x20
[  323.468818]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  323.473669]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  323.478850] RIP: 0033:0x457679
[  323.482040] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:34:25 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000080)={'lo\x00@\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000180)={'lo\x00', 0x1})
dup2(r1, r0)

[  323.501375] RSP: 002b:00007f24c90f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  323.509081] RAX: ffffffffffffffda RBX: 00007f24c90f46d4 RCX: 0000000000457679
[  323.516345] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  323.523609] RBP: 000000000072bfa0 R08: 0000000000000000 R09: 0000000000000000
[  323.530882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  323.538146] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000003
03:34:25 executing program 4:
r0 = socket$inet6(0xa, 0x80003, 0x800000000000006)
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)="2f67726f75702e73746174003c23fb572a1f0294e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0)
write$cgroup_type(r1, &(0x7f00000001c0)='threaded\b', 0xfff9)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000140)={0x0, 0x1, 0x0, 0xd4e})
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f00000002c0)=ANY=[])

03:34:25 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0xa3})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x2, 0x0, 0xffffffffffffff4a, 0x1, 0x81, 0xff, 0x1, 0x0, 0x7ff, 0x250, 0x8, 0x3a})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$VT_WAITACTIVE(r0, 0x5607)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:26 executing program 5 (fault-call:5 fault-nth:4):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:26 executing program 0 (fault-call:1 fault-nth:0):
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x3, 0x2000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  324.172830] FAULT_INJECTION: forcing a failure.
[  324.172830] name failslab, interval 1, probability 0, space 0, times 0
[  324.213694] CPU: 0 PID: 14876 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  324.222299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  324.231646] Call Trace:
[  324.234238]  dump_stack+0x1d3/0x2c4
[  324.237900]  ? dump_stack_print_info.cold.2+0x52/0x52
[  324.243095]  ? __kernel_text_address+0xd/0x40
[  324.247592]  ? unwind_get_return_address+0x61/0xa0
[  324.252533]  should_fail.cold.4+0xa/0x17
[  324.256602]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  324.261797]  ? save_stack+0xa9/0xd0
[  324.265427]  ? graph_lock+0x170/0x170
[  324.269234]  ? kasan_slab_alloc+0x12/0x20
[  324.273373]  ? kmem_cache_alloc+0x12e/0x730
[  324.277687]  ? mmu_topup_memory_caches+0xf7/0x390
[  324.282525]  ? kvm_mmu_load+0x21/0xfa0
[  324.286409]  ? vcpu_enter_guest+0x3e9d/0x6260
[  324.290895]  ? graph_lock+0x170/0x170
[  324.294691]  ? ksys_ioctl+0xa9/0xd0
[  324.298312]  ? __x64_sys_ioctl+0x73/0xb0
[  324.302364]  ? do_syscall_64+0x1b9/0x820
[  324.306420]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  324.311788]  ? find_held_lock+0x36/0x1c0
[  324.315850]  ? __lock_is_held+0xb5/0x140
[  324.319926]  ? ttwu_stat+0x5c0/0x5c0
[  324.323655]  __should_failslab+0x124/0x180
[  324.327887]  should_failslab+0x9/0x14
[  324.331681]  kmem_cache_alloc+0x2be/0x730
[  324.335819]  ? vmx_flush_tlb_gva+0x380/0x380
[  324.340221]  ? print_usage_bug+0xc0/0xc0
[  324.344276]  ? d_splice_alias+0x7c9/0x11d0
[  324.348513]  ? mmu_topup_memory_caches+0xf7/0x390
[  324.353357]  mmu_topup_memory_caches+0xf7/0x390
[  324.358118]  kvm_mmu_load+0x21/0xfa0
[  324.361849]  vcpu_enter_guest+0x3e9d/0x6260
[  324.366180]  ? emulator_read_emulated+0x50/0x50
[  324.370845]  ? vmx_vcpu_load+0xb06/0x1030
[  324.374993]  ? vmx_write_tsc_offset+0x670/0x670
[  324.379654]  ? graph_lock+0x170/0x170
[  324.383449]  ? lock_downgrade+0x900/0x900
[  324.387605]  ? check_preemption_disabled+0x48/0x200
[  324.392623]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  324.398156]  ? check_preemption_disabled+0x48/0x200
[  324.403192]  ? __lock_is_held+0xb5/0x140
[  324.407260]  ? lock_acquire+0x1ed/0x520
[  324.411232]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  324.416251]  ? lock_release+0x970/0x970
[  324.420221]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  324.425500]  ? kvm_arch_dev_ioctl+0x630/0x630
[  324.429991]  ? preempt_notifier_dec+0x20/0x20
[  324.434500]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  324.439336]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  324.444356]  kvm_vcpu_ioctl+0x5c8/0x1150
[  324.448522]  ? kvm_vcpu_block+0x1020/0x1020
[  324.452856]  ? find_held_lock+0x36/0x1c0
[  324.456928]  ? __fget+0x4aa/0x740
[  324.460367]  ? check_preemption_disabled+0x48/0x200
[  324.465366]  ? kasan_check_read+0x11/0x20
[  324.469500]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  324.475001]  ? rcu_softirq_qs+0x20/0x20
[  324.478965]  ? __fget+0x4d1/0x740
[  324.482416]  ? ksys_dup3+0x680/0x680
[  324.486108]  ? find_held_lock+0x36/0x1c0
[  324.490152]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  324.495077]  ? kvm_vcpu_block+0x1020/0x1020
[  324.499394]  do_vfs_ioctl+0x1de/0x1720
[  324.503378]  ? __lock_is_held+0xb5/0x140
[  324.507429]  ? ioctl_preallocate+0x300/0x300
[  324.511820]  ? __fget_light+0x2e9/0x430
[  324.515777]  ? fget_raw+0x20/0x20
[  324.519211]  ? __sb_end_write+0xd9/0x110
[  324.523256]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  324.528773]  ? fput+0x130/0x1a0
[  324.532033]  ? do_syscall_64+0x9a/0x820
[  324.535986]  ? do_syscall_64+0x9a/0x820
[  324.539947]  ? lockdep_hardirqs_on+0x421/0x5c0
[  324.544514]  ? security_file_ioctl+0x94/0xc0
[  324.548907]  ksys_ioctl+0xa9/0xd0
[  324.552339]  __x64_sys_ioctl+0x73/0xb0
[  324.556205]  do_syscall_64+0x1b9/0x820
[  324.560090]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  324.565439]  ? syscall_return_slowpath+0x5e0/0x5e0
[  324.570356]  ? trace_hardirqs_off+0x310/0x310
[  324.574832]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  324.579833]  ? recalc_sigpending_tsk+0x180/0x180
[  324.584580]  ? kasan_check_write+0x14/0x20
[  324.588813]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  324.593663]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  324.598848] RIP: 0033:0x457679
[  324.602037] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  324.620924] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  324.628611] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  324.635859] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  324.643106] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  324.650354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  324.657601] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000004
03:34:26 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000380)="6e7230010060a19ef9d2c673d9a1571cb9e1369bcd61ef7e49793ae18712eceb1daa769497800b7fbbd35b170c10751d39aeb660d863e49b8c4f3b3cad48902b5b2d6cfd0abd372c63bcf5d70df3fd4d2e8d443c88c60fd7140fbc0e5637dd82fc3435bed4de5d693c9a781c863e05d8a6f8689a5be29216061f3ff53f8b6b396678e7ba155ef9152d7e43b1eccb2331eb8eb1ed5586dcf8b3b0b999361a44ff2c22c2abbef42dd24eabe6723346a6e46c0499a21442d8d00dcb57f013ff7595edd0ff076930de3675d34117a44eb0e4f832936da44e")
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x801})
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x101000, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000018c0)={0xf4, r4, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x68, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x639a38d6993848ff}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x45b4f377ac0953d1)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000240)=0x1, 0x4)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x308)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000000280)=0x40)
recvmsg$kcm(r1, &(0x7f0000001880)={0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000000540)=""/47, 0x2f}, {&(0x7f00000005c0)=""/9, 0x9}, {&(0x7f0000000600)=""/117, 0x75}, {&(0x7f00000006c0)=""/229, 0xe5}, {&(0x7f00000007c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001840)=""/33, 0x21, 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='memory.stat\x00', 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000500), 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000400), 0x2c)
sendmsg$key(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], 0x1c2}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x200000080}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r7, &(0x7f0000000300), &(0x7f0000000280)}, 0x20)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={0xffffffffffffffff, 0x3, 0x1, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x20)

03:34:26 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x4000, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:26 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:26 executing program 4:
clock_gettime(0x0, &(0x7f00000000c0)={<r0=>0x0, <r1=>0x0})
clock_nanosleep(0x5, 0x800, &(0x7f0000000100)={r0, r1+30000000}, 0x0)
shmget(0x2, 0x1000, 0x20, &(0x7f0000ffc000/0x1000)=nil)
shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffc000/0x4000)=nil)
r2 = accept$inet(0xffffffffffffff9c, &(0x7f0000000000)={0x2, 0x0, @rand_addr}, &(0x7f0000000040)=0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e24, @remote}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x21}}], 0x20)

03:34:26 executing program 5 (fault-call:5 fault-nth:5):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:26 executing program 1:
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, <r1=>0x0})
ptrace$setopts(0x4206, r1, 0x0, 0x0)
ptrace(0x4207, r1)
ptrace$setopts(0x420d, r1, 0x0, 0x0)

03:34:26 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='memory.events\x00', 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x200000, 0x0)
socketpair(0x3, 0x0, 0x5, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x8)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000080)=0x32, 0x4)
connect$inet(r1, &(0x7f0000593000)={0x2, 0x0, @broadcast}, 0x10)
sendto$inet(r1, &(0x7f0000000100), 0xfe68, 0x0, 0x0, 0x19f)
get_mempolicy(&(0x7f0000000180), &(0x7f00000001c0), 0x1fe5c820, &(0x7f0000ffd000/0x1000)=nil, 0x0)

[  325.016318] FAULT_INJECTION: forcing a failure.
[  325.016318] name failslab, interval 1, probability 0, space 0, times 0
[  325.030912] CPU: 0 PID: 14904 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  325.039516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  325.048864] Call Trace:
[  325.048889]  dump_stack+0x1d3/0x2c4
[  325.048910]  ? dump_stack_print_info.cold.2+0x52/0x52
[  325.048941]  ? __kernel_text_address+0xd/0x40
[  325.048959]  ? unwind_get_return_address+0x61/0xa0
[  325.055176]  should_fail.cold.4+0xa/0x17
[  325.055198]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  325.078896]  ? save_stack+0xa9/0xd0
[  325.082528]  ? graph_lock+0x170/0x170
[  325.086413]  ? kasan_slab_alloc+0x12/0x20
[  325.090575]  ? kmem_cache_alloc+0x12e/0x730
[  325.094900]  ? mmu_topup_memory_caches+0xf7/0x390
[  325.099751]  ? kvm_mmu_load+0x21/0xfa0
[  325.103641]  ? vcpu_enter_guest+0x3e9d/0x6260
[  325.108142]  ? graph_lock+0x170/0x170
[  325.111943]  ? ksys_ioctl+0xa9/0xd0
03:34:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000040)={0x3, 0x3, 0x1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001400)=ANY=[@ANYBLOB="0f010e008f"], 0x5)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x80000000]})
keyctl$join(0x1, &(0x7f0000000000)={0x73, 0x79, 0x7a, 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  325.115570]  ? __x64_sys_ioctl+0x73/0xb0
[  325.119633]  ? do_syscall_64+0x1b9/0x820
[  325.123697]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  325.129073]  ? find_held_lock+0x36/0x1c0
[  325.133129]  ? __lock_is_held+0xb5/0x140
[  325.137201]  ? ttwu_stat+0x5c0/0x5c0
[  325.140924]  __should_failslab+0x124/0x180
[  325.145170]  should_failslab+0x9/0x14
[  325.148968]  kmem_cache_alloc+0x2be/0x730
[  325.153108]  ? vmx_flush_tlb_gva+0x380/0x380
[  325.157511]  ? print_usage_bug+0xc0/0xc0
[  325.161596]  ? d_splice_alias+0x7c9/0x11d0
[  325.165838]  ? mmu_topup_memory_caches+0xf7/0x390
[  325.170683]  mmu_topup_memory_caches+0xf7/0x390
[  325.175381]  kvm_mmu_load+0x21/0xfa0
[  325.179123]  vcpu_enter_guest+0x3e9d/0x6260
[  325.179147]  ? emulator_read_emulated+0x50/0x50
[  325.179164]  ? vmx_vcpu_load+0xb06/0x1030
[  325.179180]  ? vmx_write_tsc_offset+0x670/0x670
[  325.179196]  ? graph_lock+0x170/0x170
[  325.188149]  ? lock_downgrade+0x900/0x900
[  325.188166]  ? check_preemption_disabled+0x48/0x200
[  325.188186]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  325.188199]  ? check_preemption_disabled+0x48/0x200
[  325.188218]  ? __lock_is_held+0xb5/0x140
[  325.188235]  ? lock_acquire+0x1ed/0x520
[  325.228534]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  325.233564]  ? lock_release+0x970/0x970
[  325.237542]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  325.242820]  ? kvm_arch_dev_ioctl+0x630/0x630
[  325.247328]  ? preempt_notifier_dec+0x20/0x20
[  325.251837]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  325.256681]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  325.261712]  kvm_vcpu_ioctl+0x5c8/0x1150
[  325.265783]  ? kvm_vcpu_block+0x1020/0x1020
[  325.270108]  ? find_held_lock+0x36/0x1c0
[  325.274298]  ? __fget+0x4aa/0x740
[  325.277758]  ? check_preemption_disabled+0x48/0x200
[  325.282802]  ? kasan_check_read+0x11/0x20
[  325.286951]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  325.292311]  ? rcu_softirq_qs+0x20/0x20
[  325.296294]  ? __fget+0x4d1/0x740
[  325.299752]  ? ksys_dup3+0x680/0x680
[  325.303472]  ? find_held_lock+0x36/0x1c0
[  325.307538]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  325.312484]  ? kvm_vcpu_block+0x1020/0x1020
[  325.316812]  do_vfs_ioctl+0x1de/0x1720
[  325.320707]  ? __lock_is_held+0xb5/0x140
[  325.324770]  ? ioctl_preallocate+0x300/0x300
[  325.329173]  ? __fget_light+0x2e9/0x430
[  325.333147]  ? fget_raw+0x20/0x20
[  325.336602]  ? __sb_end_write+0xd9/0x110
[  325.340670]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  325.346202]  ? fput+0x130/0x1a0
[  325.349488]  ? do_syscall_64+0x9a/0x820
[  325.353476]  ? do_syscall_64+0x9a/0x820
[  325.357450]  ? lockdep_hardirqs_on+0x421/0x5c0
[  325.362045]  ? security_file_ioctl+0x94/0xc0
[  325.366458]  ksys_ioctl+0xa9/0xd0
[  325.369923]  __x64_sys_ioctl+0x73/0xb0
[  325.373822]  do_syscall_64+0x1b9/0x820
[  325.377710]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  325.383079]  ? syscall_return_slowpath+0x5e0/0x5e0
[  325.388010]  ? trace_hardirqs_off+0x310/0x310
[  325.392509]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  325.397520]  ? recalc_sigpending_tsk+0x180/0x180
[  325.402276]  ? kasan_check_write+0x14/0x20
[  325.406526]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  325.411382]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  325.416591] RIP: 0033:0x457679
[  325.419785] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  325.438775] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  325.446483] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  325.453749] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  325.461027] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
03:34:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x0, 0x0)
write$eventfd(r1, &(0x7f00000000c0)=0x3, 0x8)
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000240)=0x10000)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)
ioctl$GIO_CMAP(r4, 0x4b70, &(0x7f00000001c0))

03:34:27 executing program 1:
mkdir(&(0x7f0000027000)='./file0\x00', 0x0)
mount(&(0x7f0000018000), &(0x7f000001c000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x0, &(0x7f000000a000))
open$dir(&(0x7f00000000c0)='./file0/bus\x00', 0x800000088040, 0x0)
mount(&(0x7f0000033ff4), &(0x7f000000fff8)='./file0\x00', &(0x7f0000032ffb)='fuse\x00', 0x7ffbf, &(0x7f0000032000))
creat(&(0x7f0000000000)='./file0/bus\x00', 0x0)
io_setup(0x5, &(0x7f0000000040)=<r0=>0x0)
io_getevents(r0, 0x5, 0x1, &(0x7f0000000080)=[{}], 0x0)

[  325.468290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  325.475649] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000005
03:34:27 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x100000000000000, &(0x7f0000000840))

03:34:27 executing program 5 (fault-call:5 fault-nth:6):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  325.631421] FAULT_INJECTION: forcing a failure.
[  325.631421] name failslab, interval 1, probability 0, space 0, times 0
[  325.643562] CPU: 1 PID: 14936 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  325.652180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  325.661993] Call Trace:
[  325.664589]  dump_stack+0x1d3/0x2c4
[  325.668399]  ? dump_stack_print_info.cold.2+0x52/0x52
[  325.673621]  ? __kernel_text_address+0xd/0x40
[  325.678125]  ? unwind_get_return_address+0x61/0xa0
[  325.683066]  should_fail.cold.4+0xa/0x17
[  325.687127]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  325.692235]  ? save_stack+0xa9/0xd0
[  325.695866]  ? graph_lock+0x170/0x170
[  325.699677]  ? kasan_slab_alloc+0x12/0x20
[  325.703818]  ? kmem_cache_alloc+0x12e/0x730
[  325.708136]  ? mmu_topup_memory_caches+0xf7/0x390
[  325.712971]  ? kvm_mmu_load+0x21/0xfa0
[  325.716854]  ? vcpu_enter_guest+0x3e9d/0x6260
[  325.721352]  ? graph_lock+0x170/0x170
[  325.725159]  ? ksys_ioctl+0xa9/0xd0
[  325.728782]  ? __x64_sys_ioctl+0x73/0xb0
[  325.732840]  ? do_syscall_64+0x1b9/0x820
[  325.737021]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  325.742409]  ? find_held_lock+0x36/0x1c0
[  325.746474]  ? __lock_is_held+0xb5/0x140
[  325.750551]  ? ttwu_stat+0x5c0/0x5c0
[  325.754276]  __should_failslab+0x124/0x180
[  325.758512]  should_failslab+0x9/0x14
[  325.762311]  kmem_cache_alloc+0x2be/0x730
[  325.766457]  ? vmx_flush_tlb_gva+0x380/0x380
[  325.770862]  ? print_usage_bug+0xc0/0xc0
[  325.774921]  ? d_splice_alias+0x7c9/0x11d0
[  325.779159]  ? mmu_topup_memory_caches+0xf7/0x390
[  325.784007]  mmu_topup_memory_caches+0xf7/0x390
[  325.788680]  kvm_mmu_load+0x21/0xfa0
[  325.792410]  vcpu_enter_guest+0x3e9d/0x6260
[  325.796740]  ? emulator_read_emulated+0x50/0x50
[  325.801412]  ? vmx_vcpu_load+0xb06/0x1030
[  325.805581]  ? vmx_write_tsc_offset+0x670/0x670
[  325.810249]  ? graph_lock+0x170/0x170
[  325.814054]  ? lock_downgrade+0x900/0x900
[  325.818198]  ? check_preemption_disabled+0x48/0x200
[  325.823215]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  325.828750]  ? check_preemption_disabled+0x48/0x200
[  325.833871]  ? __lock_is_held+0xb5/0x140
[  325.837960]  ? lock_acquire+0x1ed/0x520
[  325.841937]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  325.846952]  ? lock_release+0x970/0x970
[  325.850927]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  325.856208]  ? kvm_arch_dev_ioctl+0x630/0x630
[  325.860698]  ? preempt_notifier_dec+0x20/0x20
[  325.865203]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  325.870041]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  325.875243]  kvm_vcpu_ioctl+0x5c8/0x1150
[  325.879310]  ? kvm_vcpu_block+0x1020/0x1020
[  325.883635]  ? find_held_lock+0x36/0x1c0
[  325.887703]  ? __fget+0x4aa/0x740
[  325.891162]  ? check_preemption_disabled+0x48/0x200
[  325.896183]  ? kasan_check_read+0x11/0x20
[  325.900340]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  325.905624]  ? rcu_softirq_qs+0x20/0x20
[  325.909610]  ? __fget+0x4d1/0x740
[  325.913063]  ? ksys_dup3+0x680/0x680
[  325.916776]  ? find_held_lock+0x36/0x1c0
[  325.920863]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  325.925799]  ? kvm_vcpu_block+0x1020/0x1020
[  325.930138]  do_vfs_ioctl+0x1de/0x1720
[  325.934035]  ? __lock_is_held+0xb5/0x140
[  325.938117]  ? ioctl_preallocate+0x300/0x300
[  325.942521]  ? __fget_light+0x2e9/0x430
[  325.946497]  ? fget_raw+0x20/0x20
[  325.949973]  ? __sb_end_write+0xd9/0x110
[  325.954042]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  325.959572]  ? fput+0x130/0x1a0
[  325.962857]  ? do_syscall_64+0x9a/0x820
[  325.966833]  ? do_syscall_64+0x9a/0x820
[  325.970805]  ? lockdep_hardirqs_on+0x421/0x5c0
[  325.975389]  ? security_file_ioctl+0x94/0xc0
[  325.979809]  ksys_ioctl+0xa9/0xd0
[  325.983264]  __x64_sys_ioctl+0x73/0xb0
[  325.987168]  do_syscall_64+0x1b9/0x820
[  325.991057]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  325.996424]  ? syscall_return_slowpath+0x5e0/0x5e0
[  326.001365]  ? trace_hardirqs_off+0x310/0x310
[  326.005879]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  326.010897]  ? recalc_sigpending_tsk+0x180/0x180
[  326.015659]  ? kasan_check_write+0x14/0x20
[  326.020030]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  326.024884]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  326.030068] RIP: 0033:0x457679
[  326.033273] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  326.052187] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  326.059940] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  326.067199] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  326.074477] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  326.081755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  326.089019] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000006
03:34:28 executing program 2:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffa4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8914, &(0x7f0000000380)="6e7230010060a19ef9d2c673d9a1571cb9e1369bcd61ef7e49793ae18712eceb1daa769497800b7fbbd35b170c10751d39aeb660d863e49b8c4f3b3cad48902b5b2d6cfd0abd372c63bcf5d70df3fd4d2e8d443c88c60fd7140fbc0e5637dd82fc3435bed4de5d693c9a781c863e05d8a6f8689a5be29216061f3ff53f8b6b396678e7ba155ef9152d7e43b1eccb2331eb8eb1ed5586dcf8b3b0b999361a44ff2c22c2abbef42dd24eabe6723346a6e46c0499a21442d8d00dcb57f013ff7595edd0ff076930de3675d34117a44eb0e4f832936da44e")
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={"6e72300100", 0x801})
r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x101000, 0x0)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000580)={&(0x7f00000018c0)={0xf4, r4, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x68, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x80}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x639a38d6993848ff}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x45b4f377ac0953d1)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000240)=0x1, 0x4)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x308)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x0, 0x0)
ioctl$EVIOCREVOKE(r5, 0x40044591, &(0x7f0000000280)=0x40)
recvmsg$kcm(r1, &(0x7f0000001880)={0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000000540)=""/47, 0x2f}, {&(0x7f00000005c0)=""/9, 0x9}, {&(0x7f0000000600)=""/117, 0x75}, {&(0x7f00000006c0)=""/229, 0xe5}, {&(0x7f00000007c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001840)=""/33, 0x21, 0x1}, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='memory.stat\x00', 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000500), 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000400), 0x2c)
sendmsg$key(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], 0x1c2}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x200000080}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r7, &(0x7f0000000300), &(0x7f0000000280)}, 0x20)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={0xffffffffffffffff, 0x3, 0x1, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x20)

03:34:28 executing program 1:
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0x7}, 0x7)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r2, 0x200000008912, &(0x7f0000000100)="153f6234488dd25d766070")
sendfile(r0, r1, &(0x7f0000d83ff8), 0x8000fffffffe)
lseek(r0, 0x0, 0x4)

03:34:28 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xffc99a3b, &(0x7f0000000840))

03:34:28 executing program 5 (fault-call:5 fault-nth:7):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:28 executing program 4:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x1, 0x0)
signalfd4(r0, &(0x7f0000000000)={0x6}, 0x8, 0x80000)
open(&(0x7f0000000040)='./file0\x00', 0x400, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x3, &(0x7f00000000c0)=@framed={{0x2c, 0x0, 0x0, 0x0, 0x7, 0x27}}, &(0x7f00000002c0)='syzkaller\x00', 0x9, 0x4ae, &(0x7f0000000340)=""/207}, 0x48)

03:34:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x2, 0x0)
getsockname$packet(0xffffffffffffff9c, &(0x7f00000001c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000380)=0x14)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f00000003c0)={r5, 0x1, 0x6, @random="fbb1140a0c69"}, 0x10)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:28 executing program 4:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000540)='/dev/null\x00', 0x0, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=0x4)
r1 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0x0, &(0x7f00000000c0), 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000004c0)='cgroup.stat\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000005c0)={0x6, 0x5, 0xadf, 0x8}, &(0x7f0000000600)=0x10)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f00000003c0)=<r4=>0x0)
ptrace$getsig(0x4202, r4, 0x0, &(0x7f0000000480))
syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0x6, 0x90000)
ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f0000000200)=0xf593)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x400}]}, 0x10)
setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000340)=0x800000001ff, 0x10000038f)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000640)=ANY=[@ANYRES32=0x0], &(0x7f0000000180)=0x1)
clock_gettime(0x0, &(0x7f0000000240))
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x6)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, &(0x7f0000000040), 0xfe30, 0x20000006, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty={[0xe00000000000000, 0xfe80000000000000, 0x0, 0xe603000000000000]}}, 0x1c)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
r7 = getuid()
setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000240)={{{@in=@dev, @in6=@mcast2, 0x4e24, 0xd1d8, 0x4e21, 0x4, 0xa, 0x80, 0x80, 0x7e, r6, r7}, {0x9, 0x0, 0x0, 0x2, 0x1ff, 0xffffffffffffff80, 0x0, 0xfff}, {0x46d5, 0x9, 0x25c, 0x3}, 0x0, 0x0, 0x3, 0x1, 0x0, 0x3}, {{@in6=@mcast2, 0x4d5}, 0xa, @in6=@dev={0xfe, 0x80, [], 0x13}, 0x3504, 0x0, 0x3, 0x0, 0x5, 0x5, 0x8}}, 0xe8)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xf, 0x0, 0x4cf, 0x101, 0x12, 0xffffffffffffff9c, 0xff}, 0x2c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

[  326.291751] FAULT_INJECTION: forcing a failure.
[  326.291751] name failslab, interval 1, probability 0, space 0, times 0
[  326.323401] CPU: 1 PID: 14953 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  326.332046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  326.341513] Call Trace:
[  326.344091]  dump_stack+0x1d3/0x2c4
[  326.347705]  ? dump_stack_print_info.cold.2+0x52/0x52
[  326.352896]  should_fail.cold.4+0xa/0x17
[  326.356960]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  326.362061]  ? save_stack+0xa9/0xd0
[  326.365673]  ? graph_lock+0x170/0x170
[  326.369452]  ? kasan_slab_alloc+0x12/0x20
[  326.373716]  ? kmem_cache_alloc+0x12e/0x730
[  326.378023]  ? mmu_topup_memory_caches+0xf7/0x390
[  326.382845]  ? kvm_mmu_load+0x21/0xfa0
[  326.386733]  ? vcpu_enter_guest+0x3e9d/0x6260
[  326.391223]  ? graph_lock+0x170/0x170
[  326.395006]  ? ksys_ioctl+0xa9/0xd0
[  326.398612]  ? __x64_sys_ioctl+0x73/0xb0
[  326.402655]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  326.408007]  ? find_held_lock+0x36/0x1c0
[  326.412052]  ? __lock_is_held+0xb5/0x140
[  326.416107]  ? ttwu_stat+0x5c0/0x5c0
[  326.419809]  __should_failslab+0x124/0x180
[  326.424027]  should_failslab+0x9/0x14
[  326.427813]  kmem_cache_alloc+0x2be/0x730
[  326.431946]  ? vmx_flush_tlb_gva+0x380/0x380
[  326.436354]  ? print_usage_bug+0xc0/0xc0
[  326.440399]  ? mmu_topup_memory_caches+0xf7/0x390
[  326.445224]  mmu_topup_memory_caches+0xf7/0x390
[  326.449881]  kvm_mmu_load+0x21/0xfa0
[  326.453584]  vcpu_enter_guest+0x3e9d/0x6260
[  326.457906]  ? emulator_read_emulated+0x50/0x50
[  326.462556]  ? zap_class+0x640/0x640
[  326.466253]  ? vmx_vcpu_load+0xb06/0x1030
[  326.470406]  ? vmx_write_tsc_offset+0x670/0x670
[  326.475060]  ? graph_lock+0x170/0x170
[  326.478844]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  326.484368]  ? check_preemption_disabled+0x48/0x200
[  326.489758]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  326.495279]  ? check_preemption_disabled+0x48/0x200
[  326.500292]  ? __lock_is_held+0xb5/0x140
[  326.504346]  ? lock_acquire+0x1ed/0x520
[  326.508312]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  326.513319]  ? lock_release+0x970/0x970
[  326.517271]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  326.522537]  ? kvm_arch_dev_ioctl+0x630/0x630
[  326.527015]  ? preempt_notifier_dec+0x20/0x20
[  326.531504]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  326.536327]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  326.541341]  kvm_vcpu_ioctl+0x5c8/0x1150
[  326.545392]  ? kvm_vcpu_block+0x1020/0x1020
[  326.549702]  ? find_held_lock+0x36/0x1c0
[  326.553753]  ? __fget+0x4aa/0x740
[  326.557281]  ? check_preemption_disabled+0x48/0x200
[  326.562311]  ? kasan_check_read+0x11/0x20
[  326.566442]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  326.571707]  ? rcu_softirq_qs+0x20/0x20
[  326.575676]  ? __fget+0x4d1/0x740
[  326.579120]  ? ksys_dup3+0x680/0x680
[  326.582820]  ? find_held_lock+0x36/0x1c0
[  326.586874]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  326.591791]  ? kvm_vcpu_block+0x1020/0x1020
[  326.596097]  do_vfs_ioctl+0x1de/0x1720
[  326.599969]  ? ioctl_preallocate+0x300/0x300
[  326.604362]  ? __fget_light+0x2e9/0x430
[  326.608320]  ? fget_raw+0x20/0x20
[  326.611758]  ? __sb_end_write+0xd9/0x110
[  326.615805]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  326.621322]  ? fput+0x130/0x1a0
[  326.624585]  ? do_syscall_64+0x9a/0x820
[  326.628545]  ? do_syscall_64+0x9a/0x820
[  326.632501]  ? lockdep_hardirqs_on+0x421/0x5c0
[  326.637071]  ? security_file_ioctl+0x94/0xc0
[  326.641487]  ksys_ioctl+0xa9/0xd0
[  326.644928]  __x64_sys_ioctl+0x73/0xb0
[  326.648810]  do_syscall_64+0x1b9/0x820
[  326.652679]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  326.658501]  ? syscall_return_slowpath+0x5e0/0x5e0
[  326.663416]  ? trace_hardirqs_off+0x310/0x310
[  326.667917]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  326.672915]  ? recalc_sigpending_tsk+0x180/0x180
[  326.677651]  ? kasan_check_write+0x14/0x20
[  326.681873]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  326.686699]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  326.691865] RIP: 0033:0x457679
[  326.695042] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  326.714013] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  326.721703] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  326.728965] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  326.736212] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  326.743459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  326.750729] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000007
03:34:28 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x40000000, &(0x7f0000000840))

[  326.850490] device nr0
 entered promiscuous mode
03:34:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
syz_open_dev$sndmidi(&(0x7f0000000240)='/dev/snd/midiC#D#\x00', 0x688a, 0x101000)
r1 = open(&(0x7f0000000280)='./file0\x00', 0x2, 0x100)
clock_gettime(0x0, &(0x7f0000000380)={<r2=>0x0, <r3=>0x0})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_STATUS(r1, 0xc05c5340, &(0x7f00000003c0)={0xd11a, 0x10001, 0xa5e7, {r2, r3+10000000}, 0x7, 0x2771})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000140))
r5 = gettid()
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000000)={r4, r0})
ppoll(&(0x7f00000002c0)=[{r4}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x2)
r6 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r6, 0x540a, 0x0)

03:34:28 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xb00, &(0x7f0000000840))

03:34:28 executing program 5 (fault-call:5 fault-nth:8):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:29 executing program 4:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffff9c)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000240), &(0x7f00000003c0)=0xffffffffffffff36)
getuid()
socketpair$inet_udplite(0x2, 0x2, 0x88, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = getpid()
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0)='9p\x00', 0x2240000, &(0x7f0000000540)=ANY=[@ANYBLOB="1a503b7109cc6a92aab1016e6ecbf9a16210efd541a7dfc2b974dfd2cbf7c2c3eaf1748617f2f722f79f37affc4fbd9235bcecaf099ba5aff31cf877f88103418ae79fb063eaa5a06ab1661e040dde63b39e0f3ae8d53ef835addc85eefb464bb719de4377ade260271b45667e5ad8ef3bf1d41a648e9f", @ANYRESHEX=r0, @ANYBLOB="6fb1c91a6a2594504855260827a8c6fdd440e74b33f647fae1551420f5ff869cd264f7b903bb7296fce0ffffffffffffffc3e9cc0d00cb31bf11a0545e6c582bbd3d859a2560725b25e02375df814348f5cf772248a73c84d9931e3cdc68ab07827dec4f9d52063ab2bf509d0596963bc385ef324bce62", @ANYRESHEX=r1, @ANYBLOB=',version=9p2000.u,cache=none,\x00'])
open(&(0x7f0000000000)='./file0\x00', 0x101040, 0x14)
sched_setscheduler(r3, 0x5, &(0x7f0000000080))
connect(r2, &(0x7f00000002c0)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha512\x00'}, 0x80)
semget(0x2, 0x4, 0x130)
lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140))

[  327.193842] FAULT_INJECTION: forcing a failure.
[  327.193842] name failslab, interval 1, probability 0, space 0, times 0
[  327.212604] CPU: 1 PID: 15001 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  327.221134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  327.230574] Call Trace:
[  327.233166]  dump_stack+0x1d3/0x2c4
[  327.236828]  ? dump_stack_print_info.cold.2+0x52/0x52
[  327.242021]  ? __kernel_text_address+0xd/0x40
[  327.246780]  ? unwind_get_return_address+0x61/0xa0
[  327.251728]  should_fail.cold.4+0xa/0x17
[  327.255797]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  327.260903]  ? save_stack+0xa9/0xd0
[  327.264535]  ? graph_lock+0x170/0x170
[  327.268342]  ? kasan_slab_alloc+0x12/0x20
[  327.272500]  ? kmem_cache_alloc+0x12e/0x730
[  327.276830]  ? mmu_topup_memory_caches+0xf7/0x390
[  327.281678]  ? kvm_mmu_load+0x21/0xfa0
[  327.285572]  ? vcpu_enter_guest+0x3e9d/0x6260
[  327.290073]  ? graph_lock+0x170/0x170
[  327.293880]  ? ksys_ioctl+0xa9/0xd0
[  327.297508]  ? __x64_sys_ioctl+0x73/0xb0
[  327.301574]  ? do_syscall_64+0x1b9/0x820
[  327.305639]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  327.311149]  ? find_held_lock+0x36/0x1c0
[  327.315231]  ? __lock_is_held+0xb5/0x140
[  327.319317]  ? ttwu_stat+0x5c0/0x5c0
[  327.323058]  __should_failslab+0x124/0x180
[  327.327302]  should_failslab+0x9/0x14
[  327.331107]  kmem_cache_alloc+0x2be/0x730
[  327.335260]  ? vmx_flush_tlb_gva+0x380/0x380
[  327.339676]  ? print_usage_bug+0xc0/0xc0
[  327.343740]  ? d_splice_alias+0x7c9/0x11d0
[  327.347986]  ? mmu_topup_memory_caches+0xf7/0x390
[  327.352851]  mmu_topup_memory_caches+0xf7/0x390
[  327.357604]  kvm_mmu_load+0x21/0xfa0
[  327.361341]  vcpu_enter_guest+0x3e9d/0x6260
[  327.365683]  ? emulator_read_emulated+0x50/0x50
[  327.370373]  ? vmx_vcpu_load+0xb06/0x1030
[  327.374535]  ? vmx_write_tsc_offset+0x670/0x670
[  327.379229]  ? graph_lock+0x170/0x170
[  327.383034]  ? lock_downgrade+0x900/0x900
[  327.387187]  ? check_preemption_disabled+0x48/0x200
[  327.392246]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  327.397806]  ? check_preemption_disabled+0x48/0x200
[  327.402829]  ? __lock_is_held+0xb5/0x140
[  327.406896]  ? lock_acquire+0x1ed/0x520
[  327.410877]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  327.415901]  ? lock_release+0x970/0x970
[  327.419877]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  327.425236]  ? kvm_arch_dev_ioctl+0x630/0x630
[  327.429729]  ? preempt_notifier_dec+0x20/0x20
[  327.434235]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  327.439071]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  327.444088]  kvm_vcpu_ioctl+0x5c8/0x1150
[  327.448147]  ? kvm_vcpu_block+0x1020/0x1020
[  327.452466]  ? find_held_lock+0x36/0x1c0
[  327.456530]  ? __fget+0x4aa/0x740
[  327.459981]  ? check_preemption_disabled+0x48/0x200
[  327.464995]  ? kasan_check_read+0x11/0x20
[  327.469146]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  327.474426]  ? rcu_softirq_qs+0x20/0x20
[  327.478401]  ? __fget+0x4d1/0x740
[  327.481854]  ? ksys_dup3+0x680/0x680
[  327.485562]  ? find_held_lock+0x36/0x1c0
[  327.489621]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  327.494551]  ? kvm_vcpu_block+0x1020/0x1020
[  327.498866]  do_vfs_ioctl+0x1de/0x1720
[  327.502747]  ? __lock_is_held+0xb5/0x140
[  327.506808]  ? ioctl_preallocate+0x300/0x300
[  327.511232]  ? __fget_light+0x2e9/0x430
[  327.515390]  ? fget_raw+0x20/0x20
[  327.518842]  ? __sb_end_write+0xd9/0x110
[  327.522905]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  327.528443]  ? fput+0x130/0x1a0
[  327.531729]  ? do_syscall_64+0x9a/0x820
[  327.535776]  ? do_syscall_64+0x9a/0x820
[  327.539750]  ? lockdep_hardirqs_on+0x421/0x5c0
[  327.544343]  ? security_file_ioctl+0x94/0xc0
[  327.548842]  ksys_ioctl+0xa9/0xd0
[  327.552291]  __x64_sys_ioctl+0x73/0xb0
[  327.556176]  do_syscall_64+0x1b9/0x820
[  327.560081]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  327.565438]  ? syscall_return_slowpath+0x5e0/0x5e0
[  327.570366]  ? trace_hardirqs_off+0x310/0x310
[  327.574987]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  327.579998]  ? recalc_sigpending_tsk+0x180/0x180
[  327.584750]  ? kasan_check_write+0x14/0x20
[  327.588985]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  327.593827]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  327.599008] RIP: 0033:0x457679
[  327.602213] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  327.621116] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  327.628830] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  327.636094] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  327.643354] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  327.650620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  327.657896] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000008
03:34:29 executing program 2:
r0 = socket$pptp(0x18, 0x1, 0x2)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000240), 0x10)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = fcntl$dupfd(r1, 0x406, r1)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000180), &(0x7f00000001c0)=0x14)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, &(0x7f00000002c0)={{}, {0x0, 0xe7}, 0x0, 0x2, 0x100000000})
recvmmsg(0xffffffffffffffff, &(0x7f0000004900)=[{{&(0x7f0000001680)=@nfc, 0x80, &(0x7f0000001780), 0x0, &(0x7f00000017c0)=""/116, 0x74}}], 0x1, 0x0, &(0x7f0000000100))
ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000200)='ipddp0\x00')
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000004c0)=ANY=[], &(0x7f0000000400))
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x8001, 0x0, 0x0, 0x0, 0xffff, 0x7adf, 0x4}, &(0x7f0000000140)=0x20)
unshare(0x24020400)
mknod(&(0x7f00000056c0)='./file0\x00', 0x0, 0x0)
process_vm_writev(0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000300), 0x0, 0x0)
execve(&(0x7f0000000000)='./bus\x00', &(0x7f00000000c0), &(0x7f0000000140))
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
open(&(0x7f0000363ff8)='./file0\x00', 0x8000, 0x169)

03:34:29 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x3b9ac9ff, &(0x7f0000000840))

03:34:29 executing program 5 (fault-call:5 fault-nth:9):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:29 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000008380)=[{{&(0x7f0000000000)=@in={0x2, 0x4e22, @dev}, 0x80, &(0x7f0000001180), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1400002200000072000000000000000047e04029"], 0x14}}], 0x1, 0x0)
connect$inet6(r0, &(0x7f0000002740)={0xa, 0x0, 0x0, @dev, 0x4}, 0xfffffffffffffffa)
sendmmsg(r0, &(0x7f0000007e00), 0x136a88c8311572c, 0x0)

03:34:29 executing program 1:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x1ff, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x8000, 0x101100)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000780)={0x1001, 0x11000})
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)="2f67726f75702e7374619fd474002b044a7b09ab0b0274e10985a6fa15b35ba69421f204dec5668a06000000b90ff860e01f262bafac750a6d5ce259cb61ea0cd94458583eef2fc597ea93a7dec9b4168e468be0576d1d0ebf8bc4478f8ed85b547c6924880400000000000000901e428b98add1375f51e135848fea98c6e3574511e0c61ff22ff61f", 0x2761, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xfffffffffffffd9f, &(0x7f0000000100), 0x0, &(0x7f0000001580), 0xfcdb}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000004c0)='\x00')
ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000700)=ANY=[])
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000000c0))
fstat(r2, &(0x7f0000000700))
sched_setattr(0x0, &(0x7f0000000500)={0x30, 0x2, 0x0, 0x10000, 0x7, 0x3, 0x0, 0xffff}, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x4030582a, &(0x7f0000000000))
accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz0\x00', 0x1ff)
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000080))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r2, 0x50, &(0x7f00000005c0)}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000900)={r2, 0x50, &(0x7f0000000880)={0x0, <r3=>0x0}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000840)=r3, 0xffffff21)
r4 = getpid()
perf_event_open(&(0x7f0000000540)={0x0, 0x70, 0x2771, 0xfffffffffffffffd, 0x0, 0x3ff, 0x0, 0x3, 0x4, 0xc, 0x5, 0xdeca180000000000, 0x100000000, 0x0, 0xfffffffffffffffa, 0x9, 0x0, 0x0, 0x0, 0x1, 0xa3, 0x324, 0x4, 0xe0da000000, 0x9, 0x3b3400000000, 0x7, 0x4, 0x0, 0x0, 0x0, 0x4f, 0x7, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x9}, 0x800, 0x6, 0x0, 0x6, 0x0, 0x2}, r4, 0x3, r0, 0x1)
ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f00000007c0)={'veth1\x00', {0x2, 0x4e22, @broadcast}})
recvmsg$kcm(r2, &(0x7f0000002b00)={&(0x7f00000002c0)=@sco, 0x80, &(0x7f0000002940)=[{&(0x7f0000000340)=""/114, 0x72}, {&(0x7f00000003c0)=""/200, 0xc8}, {&(0x7f00000014c0)=""/194, 0xc2}, {&(0x7f00000015c0)=""/197, 0xc5}, {&(0x7f00000026c0)=""/242, 0xf2}, {&(0x7f00000027c0)=""/215, 0xd7}], 0x6, &(0x7f0000002a00)=""/216, 0xd8, 0x3}, 0x0)
ioctl$TUNSETLINK(r2, 0x400454cd, 0x0)
mkdir(&(0x7f00000006c0)='./file1\x00', 0x0)
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f0000000640)={0x9, 0x47})

03:34:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xffc99a3b00000000, &(0x7f0000000840))

[  327.804259] FAULT_INJECTION: forcing a failure.
[  327.804259] name failslab, interval 1, probability 0, space 0, times 0
[  327.868108] CPU: 1 PID: 15013 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  327.876682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  327.886183] Call Trace:
[  327.888795]  dump_stack+0x1d3/0x2c4
[  327.892452]  ? dump_stack_print_info.cold.2+0x52/0x52
[  327.897662]  ? __kernel_text_address+0xd/0x40
[  327.902162]  ? unwind_get_return_address+0x61/0xa0
[  327.907119]  should_fail.cold.4+0xa/0x17
[  327.911197]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  327.916301]  ? save_stack+0xa9/0xd0
[  327.919929]  ? graph_lock+0x170/0x170
[  327.923728]  ? kasan_slab_alloc+0x12/0x20
[  327.927869]  ? kmem_cache_alloc+0x12e/0x730
[  327.932210]  ? mmu_topup_memory_caches+0xf7/0x390
[  327.937046]  ? kvm_mmu_load+0x21/0xfa0
[  327.940933]  ? vcpu_enter_guest+0x3e9d/0x6260
[  327.945428]  ? graph_lock+0x170/0x170
[  327.949232]  ? ksys_ioctl+0xa9/0xd0
[  327.952855]  ? __x64_sys_ioctl+0x73/0xb0
[  327.956911]  ? do_syscall_64+0x1b9/0x820
[  327.960970]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  327.966336]  ? find_held_lock+0x36/0x1c0
[  327.970398]  ? __lock_is_held+0xb5/0x140
[  327.974465]  ? ttwu_stat+0x5c0/0x5c0
[  327.978201]  __should_failslab+0x124/0x180
[  327.982439]  should_failslab+0x9/0x14
[  327.986235]  kmem_cache_alloc+0x2be/0x730
[  327.990380]  ? vmx_flush_tlb_gva+0x380/0x380
[  327.994787]  ? mark_held_locks+0xc7/0x130
[  327.998940]  ? mmu_topup_memory_caches+0xf7/0x390
[  328.003784]  mmu_topup_memory_caches+0xf7/0x390
[  328.008452]  kvm_mmu_load+0x21/0xfa0
[  328.012183]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  328.017201]  ? kvm_get_time_scale+0x188/0x1e0
[  328.021700]  vcpu_enter_guest+0x3e9d/0x6260
[  328.026031]  ? emulator_read_emulated+0x50/0x50
[  328.030702]  ? vmx_vcpu_load+0xb06/0x1030
[  328.034857]  ? vmx_write_tsc_offset+0x670/0x670
[  328.039527]  ? graph_lock+0x170/0x170
[  328.043323]  ? lock_downgrade+0x900/0x900
[  328.047475]  ? check_preemption_disabled+0x48/0x200
[  328.052511]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  328.058047]  ? check_preemption_disabled+0x48/0x200
[  328.063066]  ? __lock_is_held+0xb5/0x140
[  328.067126]  ? lock_acquire+0x1ed/0x520
[  328.071111]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  328.076126]  ? lock_release+0x970/0x970
[  328.080114]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  328.085393]  ? kvm_arch_dev_ioctl+0x630/0x630
[  328.089884]  ? preempt_notifier_dec+0x20/0x20
[  328.094383]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  328.099228]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  328.104254]  kvm_vcpu_ioctl+0x5c8/0x1150
[  328.108316]  ? kvm_vcpu_block+0x1020/0x1020
[  328.112639]  ? find_held_lock+0x36/0x1c0
[  328.116703]  ? __fget+0x4aa/0x740
[  328.120362]  ? check_preemption_disabled+0x48/0x200
[  328.125509]  ? kasan_check_read+0x11/0x20
[  328.129659]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  328.134932]  ? rcu_softirq_qs+0x20/0x20
[  328.138912]  ? __fget+0x4d1/0x740
[  328.142367]  ? ksys_dup3+0x680/0x680
[  328.146076]  ? find_held_lock+0x36/0x1c0
[  328.150138]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  328.155092]  ? kvm_vcpu_block+0x1020/0x1020
[  328.159412]  do_vfs_ioctl+0x1de/0x1720
[  328.163296]  ? __lock_is_held+0xb5/0x140
[  328.167359]  ? ioctl_preallocate+0x300/0x300
[  328.171768]  ? __fget_light+0x2e9/0x430
[  328.175742]  ? fget_raw+0x20/0x20
[  328.179200]  ? __sb_end_write+0xd9/0x110
[  328.183266]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  328.188802]  ? fput+0x130/0x1a0
[  328.192080]  ? do_syscall_64+0x9a/0x820
[  328.196048]  ? do_syscall_64+0x9a/0x820
[  328.200019]  ? lockdep_hardirqs_on+0x421/0x5c0
[  328.204600]  ? security_file_ioctl+0x94/0xc0
[  328.209008]  ksys_ioctl+0xa9/0xd0
[  328.212464]  __x64_sys_ioctl+0x73/0xb0
[  328.216357]  do_syscall_64+0x1b9/0x820
[  328.220243]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  328.225605]  ? syscall_return_slowpath+0x5e0/0x5e0
[  328.230534]  ? trace_hardirqs_off+0x310/0x310
[  328.235026]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  328.240045]  ? recalc_sigpending_tsk+0x180/0x180
[  328.244797]  ? kasan_check_write+0x14/0x20
[  328.249032]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  328.253878]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  328.259062] RIP: 0033:0x457679
[  328.262255] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  328.281170] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  328.288887] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  328.296168] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  328.303433] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  328.310703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
03:34:30 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  328.317967] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000009
03:34:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
ioctl$TCSETS(r0, 0x5402, &(0x7f00000001c0)={0x2, 0x4, 0x100, 0x4, 0x9, 0xffff, 0x9, 0x0, 0x5, 0x3, 0xffffffffffffffff, 0x8})
r2 = gettid()
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x40000, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r3, 0x29, 0x1, &(0x7f00000000c0), 0x4)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:34:31 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x3f000000, &(0x7f0000000840))

03:34:31 executing program 5 (fault-call:5 fault-nth:10):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:31 executing program 2:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x0, 0x0)
ioctl$int_in(r0, 0x8000000002500e, &(0x7f00000004c0)=0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
getresuid(&(0x7f0000000040), &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000100))
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@mcast1, @in=@dev={0xac, 0x14, 0x14, 0x17}, 0x4e23, 0x50e3e1aa, 0x4e23, 0x3, 0x2, 0x20, 0x80, 0x0, r1, r2}, {0x7f, 0x8f, 0x7, 0x7, 0x4, 0x8989, 0x100, 0x8}, {0x6, 0x0, 0x4, 0x7fffffff}, 0x8, 0x6e6bba, 0x0, 0x0, 0x3}, {{@in=@remote, 0x4d6, 0x32}, 0xa, @in=@multicast1, 0x3506, 0x3, 0x1, 0x1ff, 0xf37, 0x2, 0x6}}, 0xe8)

03:34:31 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:31 executing program 1:
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0)
ioctl$BLKROSET(r0, 0x90000915, &(0x7f0000000100))
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000480)='/dev/dsp\x00', 0x400, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000500)={<r2=>0x0}, &(0x7f0000000540)=0xc)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000580)={{{@in6=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6}, 0x0, @in=@loopback}}, &(0x7f0000000680)=0xe8)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000002940)=0x6, 0x4)
sendmsg$nl_generic(r1, &(0x7f0000002900)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000028c0)={&(0x7f00000006c0)={0x21e4, 0x23, 0x8, 0x70bd2a, 0x25dfdbfd, {0xe}, [@nested={0x54, 0x2a, [@typed={0x8, 0x87, @pid=r2}, @typed={0x14, 0x70, @ipv6=@remote}, @generic="a5fb3b74c0b94efb30f9ab98b6329e71cd4b9874ad6fd15241f3d9c7349652dfdb08643e044e4a6a1b4e98edf8e154922af65a"]}, @nested={0x217c, 0x5c, [@typed={0x4, 0x8}, @typed={0x8, 0x63, @str='GPL\x00'}, @generic="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", @typed={0x2c, 0x30, @binary="93fc32bcfc75130972faacfa2e86cb7e9bf7c93d8a04c4a048f083ccc80e74acc0065650a80742"}, @typed={0x1004, 0x33, @binary="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"}, @generic="653653681e53564a08fe8ee3127e7139f6606d9df64c1a368e5519f956ed6a3eb4394cf32a150b8de3e303ed404cb0fb02ffe5190fa43e2b3c74a8f1b9904036f6cba41e40cf540e34703f11bf5dfc86380977abe9388643bdbe873515807b528754fdfe56bd474590fb7ebfdca249643ea146f51da254499b1798", @generic="d47f31e51ecbcc3e20f49bd5ce3d83930aec5a834c9ac84fe695e14f7fce9ff5f433cb498a9a4237eaeedf6083f38c64d18e9e089031effc544927c82125a18e1d31395c9c565998277bd56f95b415c03f6d26209be7630d8c8918f562abaf030a18c31f6e77b47df5d2ea1c77e260ae306ae2f385eef7439266a51e49f53e0d9940ed5513774db9b12d3fd4c13a3ee1fb16fce0bec24b3f3dd618d94c7a1798496fc256c565cf", @typed={0x8, 0x1c, @uid=r3}, @typed={0x8, 0xf, @u32=0x81}, @typed={0x8, 0xc, @ipv4=@multicast2}]}]}, 0x21e4}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r4 = dup3(r0, r0, 0x80000)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x6, 0x3, &(0x7f0000000400)=[{&(0x7f0000000140)="94556d1adf578b9604f042662a64d6e147da80c1b41875201edb47046db670686d68518f049c452dc4b33dde3bbf972f34320f50fecbaa391dceb5f98fbb9a0011cb3cf20db78a62dadcb80b0b3974d342197c22036a751c3a9f1602b44d83fd5165b800f675479d427625b3dcd45b56f7f3285f3b480b1fc8659bca05f283c49ef9715a3c0a85a9d57aca346f2f9f94db579d82ea2486005bd5f3ce48de3d0453e182d00e602f37fdfc3dc154a45a1217bed13da1f7b5f410f29261cd6972f0368e1875fc9fd0", 0xc7, 0x9}, {&(0x7f0000000240)="9d77de8b705beabb9d62d44fd487d8e1d557f5fd7d4cfb307cf43f5e746c76ec9d218c238c935e291a269f6f55d55fcf36a50d8e7bcbd4cbae477d8f0b1f6ad848d302a5afa8bce34b56e3847d193165e303b2b45c41e7a7b094a77f48d563ff23ddb9e248a57c58a7587d68d92ac667a240d53186b18012389fb90d9d2d7bb0cf5952c8901d07953ad4e9932b08653e9090e6c29299105ca808c3eba03b1664a0dab703a94368baee12879202eff455303ee79a73e16ae71bc7085c67e34fdc87c9df2f01c2e9f4613306808c16173c6a38553af0949824b6aa80d0a191329dfd99852374e9217e9df4acbb542b", 0xee, 0x90}, {&(0x7f0000000340)="b542162cafc0fb6fc64cb6a8af4e235bcf5da3afa43c1d18574ef0b83b2730d2df658dac24925468f7e8933de83f9a01c2ad9c787049cc733881b5db31305a8bfec9d5a235857569172eb0ebd94dca4a4d1d47310ee0a38c7f7b412fb226af4bd58c9ec77786f924be4112ff6282d3915e22dbbe0002328227cf1140d6d0a101c599526dbc05bc8d2fbbe7037fdf0bb8ed42b5da8475ad9ef47864afbfe36f74922c3fc52bfa556c3c1fd76b668447b1857dc7e40bf00df187", 0xb9, 0x2}], 0x1008, &(0x7f00000000c0))
r5 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r5)

03:34:32 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

[  330.062393] FAULT_INJECTION: forcing a failure.
[  330.062393] name failslab, interval 1, probability 0, space 0, times 0
[  330.086071] CPU: 0 PID: 15047 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  330.094600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  330.094607] Call Trace:
[  330.094629]  dump_stack+0x1d3/0x2c4
[  330.094650]  ? dump_stack_print_info.cold.2+0x52/0x52
[  330.115426]  ? __kernel_text_address+0xd/0x40
[  330.119946]  ? unwind_get_return_address+0x61/0xa0
[  330.125060]  should_fail.cold.4+0xa/0x17
[  330.125080]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  330.134245]  ? save_stack+0xa9/0xd0
[  330.137898]  ? graph_lock+0x170/0x170
[  330.141718]  ? kasan_slab_alloc+0x12/0x20
[  330.145878]  ? kmem_cache_alloc+0x12e/0x730
[  330.150219]  ? mmu_topup_memory_caches+0xf7/0x390
[  330.155074]  ? kvm_mmu_load+0x21/0xfa0
[  330.159001]  ? vcpu_enter_guest+0x3e9d/0x6260
[  330.163352] IPVS: length: 193 != 8
[  330.163512]  ? graph_lock+0x170/0x170
[  330.163529]  ? ksys_ioctl+0xa9/0xd0
[  330.163540]  ? __x64_sys_ioctl+0x73/0xb0
[  330.163554]  ? do_syscall_64+0x1b9/0x820
[  330.163575]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  330.188218]  ? find_held_lock+0x36/0x1c0
[  330.192299]  ? __lock_is_held+0xb5/0x140
[  330.196388]  ? ttwu_stat+0x5c0/0x5c0
[  330.200131]  __should_failslab+0x124/0x180
[  330.204384]  should_failslab+0x9/0x14
[  330.208197]  kmem_cache_alloc+0x2be/0x730
[  330.212359]  ? vmx_flush_tlb_gva+0x380/0x380
[  330.216781]  ? print_usage_bug+0xc0/0xc0
[  330.220858]  ? d_splice_alias+0x7c9/0x11d0
[  330.225109]  ? mmu_topup_memory_caches+0xf7/0x390
[  330.229997]  mmu_topup_memory_caches+0xf7/0x390
[  330.234690]  kvm_mmu_load+0x21/0xfa0
[  330.238431]  vcpu_enter_guest+0x3e9d/0x6260
[  330.242781]  ? emulator_read_emulated+0x50/0x50
[  330.247474]  ? vmx_vcpu_load+0xb06/0x1030
[  330.251645]  ? vmx_write_tsc_offset+0x670/0x670
[  330.256328]  ? graph_lock+0x170/0x170
[  330.260148]  ? lock_downgrade+0x900/0x900
[  330.264316]  ? check_preemption_disabled+0x48/0x200
[  330.269347]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  330.274899]  ? check_preemption_disabled+0x48/0x200
[  330.279969]  ? __lock_is_held+0xb5/0x140
[  330.284062]  ? lock_acquire+0x1ed/0x520
[  330.288052]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  330.293089]  ? lock_release+0x970/0x970
[  330.297077]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  330.302371]  ? kvm_arch_dev_ioctl+0x630/0x630
[  330.306880]  ? preempt_notifier_dec+0x20/0x20
[  330.311402]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  330.316257]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  330.321300]  kvm_vcpu_ioctl+0x5c8/0x1150
[  330.325377]  ? kvm_vcpu_block+0x1020/0x1020
[  330.329723]  ? find_held_lock+0x36/0x1c0
[  330.333811]  ? __fget+0x4aa/0x740
[  330.337285]  ? check_preemption_disabled+0x48/0x200
[  330.342322]  ? kasan_check_read+0x11/0x20
[  330.346485]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  330.351781]  ? rcu_softirq_qs+0x20/0x20
[  330.355783]  ? __fget+0x4d1/0x740
[  330.359257]  ? ksys_dup3+0x680/0x680
[  330.363023]  ? find_held_lock+0x36/0x1c0
[  330.367103]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  330.372059]  ? kvm_vcpu_block+0x1020/0x1020
[  330.376401]  do_vfs_ioctl+0x1de/0x1720
[  330.380307]  ? __lock_is_held+0xb5/0x140
[  330.384393]  ? ioctl_preallocate+0x300/0x300
[  330.388813]  ? __fget_light+0x2e9/0x430
[  330.392804]  ? fget_raw+0x20/0x20
[  330.396276]  ? __sb_end_write+0xd9/0x110
[  330.400357]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  330.405910]  ? fput+0x130/0x1a0
[  330.409226]  ? do_syscall_64+0x9a/0x820
[  330.413215]  ? do_syscall_64+0x9a/0x820
[  330.417208]  ? lockdep_hardirqs_on+0x421/0x5c0
[  330.421809]  ? security_file_ioctl+0x94/0xc0
[  330.426241]  ksys_ioctl+0xa9/0xd0
[  330.429709]  __x64_sys_ioctl+0x73/0xb0
[  330.433611]  do_syscall_64+0x1b9/0x820
[  330.437517]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  330.442896]  ? syscall_return_slowpath+0x5e0/0x5e0
[  330.447867]  ? trace_hardirqs_off+0x310/0x310
[  330.452380]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  330.457435]  ? recalc_sigpending_tsk+0x180/0x180
[  330.462206]  ? kasan_check_write+0x14/0x20
[  330.466464]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  330.471336]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  330.476536] RIP: 0033:0x457679
[  330.479742] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  330.499166] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  330.506889] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
03:34:32 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  330.514194] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  330.521478] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  330.528762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  330.536043] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000a
03:34:32 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xb000000, &(0x7f0000000840))

03:34:32 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  330.663880] IPVS: length: 193 != 8
03:34:32 executing program 5 (fault-call:5 fault-nth:11):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000380)=ANY=[@ANYBLOB="204230d3e29c517aa7ff0b3639550b81d79eec46a20d4ebafc855691e1b87066de5a5e3dfd895adbd6896f9f0daf6b37b68361481f1f2b62f3997eb5dbe8ee7bd28db6171fea6fc062bc5932f7f03f579a1b54676108a2ff7d10efcfbf42955a2714472e0ccff6c2ede6dcc396add8d41e4ed4002a953e07884a0d04fcd1f0bfa335882465d47ae8c27648ea714ba201029ec7146efff303b6d912614ce3012cba98b88848c9d3b5df28307585eda3414c5193dd2bc5b0d02844326aaa5271a8cb073d08f641ac"])
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x1000000000000040)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000000080)={0x101, 0x2a})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
lremovexattr(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=@random={'btrfs.', '\x00'})
r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x100000000, 0x20c00)
ioctl$SG_EMULATED_HOST(r1, 0x2203, &(0x7f0000000040))
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={<r4=>0x0, 0x5}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f00000001c0)={r4}, 0x8)

[  330.878496] FAULT_INJECTION: forcing a failure.
[  330.878496] name failslab, interval 1, probability 0, space 0, times 0
[  330.890583] CPU: 0 PID: 15083 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  330.899090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  330.899098] Call Trace:
[  330.899121]  dump_stack+0x1d3/0x2c4
[  330.899141]  ? dump_stack_print_info.cold.2+0x52/0x52
[  330.919913]  ? __kernel_text_address+0xd/0x40
[  330.919932]  ? unwind_get_return_address+0x61/0xa0
[  330.919961]  should_fail.cold.4+0xa/0x17
[  330.919980]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  330.938566]  ? save_stack+0xa9/0xd0
[  330.938587]  ? graph_lock+0x170/0x170
[  330.938598]  ? kasan_slab_alloc+0x12/0x20
[  330.938614]  ? kmem_cache_alloc+0x12e/0x730
[  330.946035]  ? mmu_topup_memory_caches+0xf7/0x390
[  330.946049]  ? kvm_mmu_load+0x21/0xfa0
[  330.946069]  ? vcpu_enter_guest+0x3e9d/0x6260
[  330.967717]  ? graph_lock+0x170/0x170
[  330.971516]  ? ksys_ioctl+0xa9/0xd0
[  330.975140]  ? __x64_sys_ioctl+0x73/0xb0
[  330.979203]  ? do_syscall_64+0x1b9/0x820
[  330.983260]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  330.988625]  ? find_held_lock+0x36/0x1c0
[  330.992685]  ? __lock_is_held+0xb5/0x140
[  330.996757]  ? ttwu_stat+0x5c0/0x5c0
[  331.000476]  __should_failslab+0x124/0x180
[  331.004708]  should_failslab+0x9/0x14
[  331.008503]  kmem_cache_alloc+0x2be/0x730
[  331.012647]  ? vmx_flush_tlb_gva+0x380/0x380
[  331.017052]  ? print_usage_bug+0xc0/0xc0
[  331.021110]  ? d_splice_alias+0x7c9/0x11d0
[  331.025401]  ? mmu_topup_memory_caches+0xf7/0x390
[  331.030246]  mmu_topup_memory_caches+0xf7/0x390
[  331.034924]  kvm_mmu_load+0x21/0xfa0
[  331.038657]  vcpu_enter_guest+0x3e9d/0x6260
[  331.042984]  ? emulator_read_emulated+0x50/0x50
[  331.047653]  ? vmx_vcpu_load+0xb06/0x1030
[  331.051802]  ? vmx_write_tsc_offset+0x670/0x670
[  331.056469]  ? graph_lock+0x170/0x170
[  331.060264]  ? lock_downgrade+0x900/0x900
[  331.064411]  ? check_preemption_disabled+0x48/0x200
[  331.069427]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  331.074964]  ? check_preemption_disabled+0x48/0x200
[  331.079994]  ? __lock_is_held+0xb5/0x140
[  331.084059]  ? lock_acquire+0x1ed/0x520
[  331.088030]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  331.093049]  ? lock_release+0x970/0x970
[  331.097021]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  331.102295]  ? kvm_arch_dev_ioctl+0x630/0x630
[  331.106786]  ? preempt_notifier_dec+0x20/0x20
[  331.111289]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  331.116131]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  331.121157]  kvm_vcpu_ioctl+0x5c8/0x1150
[  331.125215]  ? kvm_vcpu_block+0x1020/0x1020
[  331.129539]  ? find_held_lock+0x36/0x1c0
[  331.133600]  ? __fget+0x4aa/0x740
[  331.137053]  ? check_preemption_disabled+0x48/0x200
[  331.142070]  ? kasan_check_read+0x11/0x20
[  331.146215]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  331.151487]  ? rcu_softirq_qs+0x20/0x20
[  331.155467]  ? __fget+0x4d1/0x740
[  331.158980]  ? ksys_dup3+0x680/0x680
[  331.162693]  ? find_held_lock+0x36/0x1c0
[  331.166754]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  331.171685]  ? kvm_vcpu_block+0x1020/0x1020
[  331.176004]  do_vfs_ioctl+0x1de/0x1720
[  331.179911]  ? __lock_is_held+0xb5/0x140
[  331.183978]  ? ioctl_preallocate+0x300/0x300
[  331.188383]  ? __fget_light+0x2e9/0x430
[  331.192359]  ? fget_raw+0x20/0x20
[  331.195813]  ? __sb_end_write+0xd9/0x110
[  331.199893]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  331.205426]  ? fput+0x130/0x1a0
[  331.208702]  ? do_syscall_64+0x9a/0x820
[  331.212672]  ? do_syscall_64+0x9a/0x820
[  331.216642]  ? lockdep_hardirqs_on+0x421/0x5c0
[  331.221226]  ? security_file_ioctl+0x94/0xc0
[  331.225633]  ksys_ioctl+0xa9/0xd0
[  331.229084]  __x64_sys_ioctl+0x73/0xb0
[  331.232970]  do_syscall_64+0x1b9/0x820
[  331.236873]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  331.242238]  ? syscall_return_slowpath+0x5e0/0x5e0
[  331.247167]  ? trace_hardirqs_off+0x310/0x310
[  331.251665]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  331.256678]  ? recalc_sigpending_tsk+0x180/0x180
[  331.261432]  ? kasan_check_write+0x14/0x20
[  331.265667]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  331.270515]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  331.275702] RIP: 0033:0x457679
[  331.278956] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  331.297871] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  331.305584] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  331.312866] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  331.320132] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  331.327395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  331.334661] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000b
03:34:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
ioctl$KDENABIO(r0, 0x4b36)
mknod(&(0x7f0000000080)='./file0\x00', 0x1, 0x1)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)
munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000)

03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:35 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xb, &(0x7f0000000840))

03:34:35 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

03:34:35 executing program 5 (fault-call:5 fault-nth:12):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:35 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

[  333.132835] FAULT_INJECTION: forcing a failure.
[  333.132835] name failslab, interval 1, probability 0, space 0, times 0
[  333.150382] CPU: 0 PID: 15093 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  333.158919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  333.158926] Call Trace:
[  333.158953]  dump_stack+0x1d3/0x2c4
[  333.158977]  ? dump_stack_print_info.cold.2+0x52/0x52
[  333.159008]  should_fail.cold.4+0xa/0x17
[  333.159030]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  333.159050]  ? save_stack+0xa9/0xd0
[  333.159070]  ? graph_lock+0x170/0x170
[  333.174966]  ? kasan_slab_alloc+0x12/0x20
[  333.174981]  ? kmem_cache_alloc+0x12e/0x730
[  333.174999]  ? mmu_topup_memory_caches+0xf7/0x390
[  333.175011]  ? kvm_mmu_load+0x21/0xfa0
[  333.175032]  ? vcpu_enter_guest+0x3e9d/0x6260
[  333.204383] IPVS: length: 193 != 8
[  333.205293]  ? graph_lock+0x170/0x170
[  333.205313]  ? ksys_ioctl+0xa9/0xd0
[  333.205326]  ? __x64_sys_ioctl+0x73/0xb0
[  333.205344]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  333.205366]  ? find_held_lock+0x36/0x1c0
[  333.238969]  ? __lock_is_held+0xb5/0x140
[  333.239006]  ? ttwu_stat+0x5c0/0x5c0
[  333.239038]  __should_failslab+0x124/0x180
[  333.239056]  should_failslab+0x9/0x14
[  333.247168]  kmem_cache_alloc+0x2be/0x730
[  333.247185]  ? vmx_flush_tlb_gva+0x380/0x380
[  333.247202]  ? print_usage_bug+0xc0/0xc0
[  333.247222]  ? mmu_topup_memory_caches+0xf7/0x390
[  333.247243]  mmu_topup_memory_caches+0xf7/0x390
[  333.252914] IPVS: length: 193 != 8
[  333.255188]  kvm_mmu_load+0x21/0xfa0
[  333.255219]  vcpu_enter_guest+0x3e9d/0x6260
[  333.292764]  ? emulator_read_emulated+0x50/0x50
[  333.297463]  ? zap_class+0x640/0x640
[  333.301206]  ? vmx_vcpu_load+0xb06/0x1030
[  333.305380]  ? vmx_write_tsc_offset+0x670/0x670
[  333.310070]  ? graph_lock+0x170/0x170
[  333.313895]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  333.319456]  ? check_preemption_disabled+0x48/0x200
[  333.324497]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  333.330060]  ? check_preemption_disabled+0x48/0x200
[  333.335113]  ? __lock_is_held+0xb5/0x140
[  333.339204]  ? lock_acquire+0x1ed/0x520
[  333.343200]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  333.348242]  ? lock_release+0x970/0x970
[  333.352232]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  333.357535]  ? kvm_arch_dev_ioctl+0x630/0x630
[  333.362048]  ? preempt_notifier_dec+0x20/0x20
[  333.366579]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  333.371441]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  333.376494]  kvm_vcpu_ioctl+0x5c8/0x1150
03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  333.380605]  ? kvm_vcpu_block+0x1020/0x1020
[  333.384950]  ? find_held_lock+0x36/0x1c0
[  333.389044]  ? __fget+0x4aa/0x740
[  333.392523]  ? check_preemption_disabled+0x48/0x200
[  333.397567]  ? kasan_check_read+0x11/0x20
[  333.401743]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  333.407038]  ? rcu_softirq_qs+0x20/0x20
[  333.411047]  ? __fget+0x4d1/0x740
[  333.414530]  ? ksys_dup3+0x680/0x680
[  333.418261]  ? find_held_lock+0x36/0x1c0
[  333.422350]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  333.427312]  ? kvm_vcpu_block+0x1020/0x1020
[  333.431652]  do_vfs_ioctl+0x1de/0x1720
[  333.435589]  ? ioctl_preallocate+0x300/0x300
[  333.440014]  ? __fget_light+0x2e9/0x430
[  333.444006]  ? fget_raw+0x20/0x20
[  333.447473]  ? __sb_end_write+0xd9/0x110
[  333.451562]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  333.457122]  ? fput+0x130/0x1a0
[  333.460421]  ? do_syscall_64+0x9a/0x820
[  333.464413]  ? do_syscall_64+0x9a/0x820
[  333.468419]  ? lockdep_hardirqs_on+0x421/0x5c0
[  333.473033]  ? security_file_ioctl+0x94/0xc0
[  333.477465]  ksys_ioctl+0xa9/0xd0
03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  333.480942]  __x64_sys_ioctl+0x73/0xb0
[  333.484851]  do_syscall_64+0x1b9/0x820
[  333.488760]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  333.494144]  ? syscall_return_slowpath+0x5e0/0x5e0
[  333.499106]  ? trace_hardirqs_off+0x310/0x310
[  333.503632]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  333.508719]  ? recalc_sigpending_tsk+0x180/0x180
[  333.513502]  ? kasan_check_write+0x14/0x20
[  333.517776]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  333.522678]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  333.527886] RIP: 0033:0x457679
03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:35 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  333.531095] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  333.550019] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  333.557758] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  333.565044] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  333.572330] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
03:34:35 executing program 5 (fault-call:5 fault-nth:13):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  333.579617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  333.586928] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000c
[  333.693216] FAULT_INJECTION: forcing a failure.
[  333.693216] name failslab, interval 1, probability 0, space 0, times 0
[  333.707426] CPU: 1 PID: 15124 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  333.715952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  333.715959] Call Trace:
[  333.715980]  dump_stack+0x1d3/0x2c4
[  333.716000]  ? dump_stack_print_info.cold.2+0x52/0x52
[  333.731568]  ? __kernel_text_address+0xd/0x40
[  333.731584]  ? unwind_get_return_address+0x61/0xa0
[  333.731609]  should_fail.cold.4+0xa/0x17
[  333.750258]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  333.755369]  ? save_stack+0xa9/0xd0
[  333.759000]  ? graph_lock+0x170/0x170
[  333.762803]  ? kasan_slab_alloc+0x12/0x20
[  333.766947]  ? kmem_cache_alloc+0x12e/0x730
[  333.771269]  ? mmu_topup_memory_caches+0xf7/0x390
[  333.776105]  ? kvm_mmu_load+0x21/0xfa0
[  333.779988]  ? vcpu_enter_guest+0x3e9d/0x6260
[  333.784480]  ? graph_lock+0x170/0x170
[  333.788277]  ? ksys_ioctl+0xa9/0xd0
[  333.791897]  ? __x64_sys_ioctl+0x73/0xb0
[  333.795955]  ? do_syscall_64+0x1b9/0x820
[  333.800017]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  333.805384]  ? find_held_lock+0x36/0x1c0
[  333.809539]  ? __lock_is_held+0xb5/0x140
[  333.813611]  ? ttwu_stat+0x5c0/0x5c0
[  333.817352]  __should_failslab+0x124/0x180
[  333.821585]  should_failslab+0x9/0x14
[  333.825384]  kmem_cache_alloc+0x2be/0x730
[  333.829528]  ? vmx_flush_tlb_gva+0x380/0x380
[  333.833935]  ? print_usage_bug+0xc0/0xc0
[  333.837990]  ? d_splice_alias+0x7c9/0x11d0
[  333.842225]  ? mmu_topup_memory_caches+0xf7/0x390
[  333.847066]  mmu_topup_memory_caches+0xf7/0x390
[  333.851737]  kvm_mmu_load+0x21/0xfa0
[  333.855455]  vcpu_enter_guest+0x3e9d/0x6260
[  333.859782]  ? emulator_read_emulated+0x50/0x50
[  333.864454]  ? vmx_vcpu_load+0xb06/0x1030
[  333.868604]  ? vmx_write_tsc_offset+0x670/0x670
[  333.873294]  ? graph_lock+0x170/0x170
[  333.877088]  ? lock_downgrade+0x900/0x900
[  333.881234]  ? check_preemption_disabled+0x48/0x200
[  333.886251]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  333.891788]  ? check_preemption_disabled+0x48/0x200
[  333.896813]  ? __lock_is_held+0xb5/0x140
[  333.900878]  ? lock_acquire+0x1ed/0x520
[  333.904854]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  333.909917]  ? lock_release+0x970/0x970
[  333.913887]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  333.919165]  ? kvm_arch_dev_ioctl+0x630/0x630
[  333.923666]  ? preempt_notifier_dec+0x20/0x20
[  333.928179]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  333.933017]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  333.938041]  kvm_vcpu_ioctl+0x5c8/0x1150
[  333.942102]  ? kvm_vcpu_block+0x1020/0x1020
[  333.946427]  ? find_held_lock+0x36/0x1c0
[  333.950495]  ? __fget+0x4aa/0x740
[  333.953947]  ? check_preemption_disabled+0x48/0x200
[  333.958965]  ? kasan_check_read+0x11/0x20
[  333.963111]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  333.968384]  ? rcu_softirq_qs+0x20/0x20
[  333.972365]  ? __fget+0x4d1/0x740
[  333.975825]  ? ksys_dup3+0x680/0x680
[  333.979536]  ? find_held_lock+0x36/0x1c0
[  333.983625]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  333.988557]  ? kvm_vcpu_block+0x1020/0x1020
[  333.992878]  do_vfs_ioctl+0x1de/0x1720
[  333.996765]  ? __lock_is_held+0xb5/0x140
[  334.000826]  ? ioctl_preallocate+0x300/0x300
[  334.005232]  ? __fget_light+0x2e9/0x430
[  334.009206]  ? fget_raw+0x20/0x20
[  334.012671]  ? __sb_end_write+0xd9/0x110
[  334.016733]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  334.022266]  ? fput+0x130/0x1a0
[  334.025547]  ? do_syscall_64+0x9a/0x820
[  334.029520]  ? do_syscall_64+0x9a/0x820
[  334.033495]  ? lockdep_hardirqs_on+0x421/0x5c0
[  334.038077]  ? security_file_ioctl+0x94/0xc0
[  334.042488]  ksys_ioctl+0xa9/0xd0
[  334.045941]  __x64_sys_ioctl+0x73/0xb0
[  334.049871]  do_syscall_64+0x1b9/0x820
[  334.053756]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  334.059122]  ? syscall_return_slowpath+0x5e0/0x5e0
[  334.064051]  ? trace_hardirqs_off+0x310/0x310
[  334.068543]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  334.073556]  ? recalc_sigpending_tsk+0x180/0x180
[  334.078313]  ? kasan_check_write+0x14/0x20
[  334.082548]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  334.087393]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  334.092577] RIP: 0033:0x457679
[  334.095789] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  334.114687] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  334.122520] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  334.129783] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  334.137052] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  334.144316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  334.151584] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000d
03:34:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080)=0x5)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
getdents64(0xffffffffffffffff, &(0x7f0000001940)=""/102, 0x66)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
process_vm_readv(r2, &(0x7f00000017c0)=[{&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000380)=""/194, 0xc2}, {&(0x7f0000000480)=""/147, 0x93}, {&(0x7f0000000540)=""/255, 0xff}, {&(0x7f0000000640)=""/137, 0x89}, {&(0x7f00000000c0)=""/5, 0x5}, {&(0x7f0000000700)=""/4096, 0x1000}, {&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000001700)=""/156, 0x9c}], 0x9, &(0x7f0000000280)=[{&(0x7f0000001880)=""/69, 0x45}], 0x1, 0x0)
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:36 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x4000000000000000, &(0x7f0000000840))

03:34:36 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

03:34:36 executing program 4:
socketpair$unix(0x1, 0x8000001, 0x0, &(0x7f0000000040))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:36 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

03:34:36 executing program 5 (fault-call:5 fault-nth:14):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  334.387563] FAULT_INJECTION: forcing a failure.
[  334.387563] name failslab, interval 1, probability 0, space 0, times 0
[  334.423099] IPVS: length: 193 != 8
[  334.426851] CPU: 0 PID: 15145 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  334.435355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  334.444718] Call Trace:
[  334.447326]  dump_stack+0x1d3/0x2c4
[  334.447350]  ? dump_stack_print_info.cold.2+0x52/0x52
[  334.447370]  ? __kernel_text_address+0xd/0x40
[  334.447389]  ? unwind_get_return_address+0x61/0xa0
[  334.456216]  should_fail.cold.4+0xa/0x17
[  334.456239]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  334.456258]  ? save_stack+0xa9/0xd0
[  334.456281]  ? graph_lock+0x170/0x170
[  334.474853]  ? kasan_slab_alloc+0x12/0x20
[  334.474869]  ? kmem_cache_alloc+0x12e/0x730
[  334.474887]  ? mmu_topup_memory_caches+0xf7/0x390
[  334.474896]  ? kvm_mmu_load+0x21/0xfa0
[  334.474915]  ? vcpu_enter_guest+0x3e9d/0x6260
[  334.482342]  ? graph_lock+0x170/0x170
[  334.508267]  ? ksys_ioctl+0xa9/0xd0
[  334.509834] IPVS: length: 193 != 8
[  334.511909]  ? __x64_sys_ioctl+0x73/0xb0
[  334.511925]  ? do_syscall_64+0x1b9/0x820
[  334.511947]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  334.529012]  ? find_held_lock+0x36/0x1c0
[  334.533099]  ? __lock_is_held+0xb5/0x140
[  334.537216]  ? ttwu_stat+0x5c0/0x5c0
[  334.540965]  __should_failslab+0x124/0x180
[  334.545218]  should_failslab+0x9/0x14
[  334.549037]  kmem_cache_alloc+0x2be/0x730
[  334.553204]  ? vmx_flush_tlb_gva+0x380/0x380
[  334.557636]  ? print_usage_bug+0xc0/0xc0
[  334.561716]  ? d_splice_alias+0x7c9/0x11d0
[  334.565972]  ? mmu_topup_memory_caches+0xf7/0x390
[  334.570839]  mmu_topup_memory_caches+0xf7/0x390
[  334.575529]  kvm_mmu_load+0x21/0xfa0
[  334.579296]  vcpu_enter_guest+0x3e9d/0x6260
[  334.583653]  ? emulator_read_emulated+0x50/0x50
[  334.588345]  ? vmx_vcpu_load+0xb06/0x1030
[  334.592518]  ? vmx_write_tsc_offset+0x670/0x670
[  334.597236]  ? graph_lock+0x170/0x170
[  334.601065]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  334.606708]  ? check_preemption_disabled+0x48/0x200
[  334.611754]  ? __lock_is_held+0xb5/0x140
[  334.615840]  ? lock_acquire+0x1ed/0x520
[  334.619833]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  334.624877]  ? lock_release+0x970/0x970
[  334.628867]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  334.634167]  ? kvm_arch_dev_ioctl+0x630/0x630
[  334.638680]  ? preempt_notifier_dec+0x20/0x20
[  334.643208]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  334.648072]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  334.653122]  kvm_vcpu_ioctl+0x5c8/0x1150
[  334.657209]  ? kvm_vcpu_block+0x1020/0x1020
[  334.661581]  ? find_held_lock+0x36/0x1c0
[  334.665673]  ? __fget+0x4aa/0x740
[  334.669146]  ? check_preemption_disabled+0x48/0x200
[  334.674180]  ? kasan_check_read+0x11/0x20
[  334.678346]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  334.683638]  ? rcu_softirq_qs+0x20/0x20
[  334.687646]  ? __fget+0x4d1/0x740
[  334.691123]  ? ksys_dup3+0x680/0x680
[  334.694858]  ? find_held_lock+0x36/0x1c0
[  334.698944]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  334.703902]  ? kvm_vcpu_block+0x1020/0x1020
[  334.708246]  do_vfs_ioctl+0x1de/0x1720
[  334.712157]  ? __lock_is_held+0xb5/0x140
[  334.716241]  ? ioctl_preallocate+0x300/0x300
[  334.720663]  ? __fget_light+0x2e9/0x430
[  334.724658]  ? fget_raw+0x20/0x20
[  334.728134]  ? __sb_end_write+0xd9/0x110
[  334.732217]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  334.737769]  ? fput+0x130/0x1a0
[  334.741066]  ? do_syscall_64+0x9a/0x820
[  334.745056]  ? do_syscall_64+0x9a/0x820
[  334.749050]  ? lockdep_hardirqs_on+0x421/0x5c0
[  334.753683]  ? security_file_ioctl+0x94/0xc0
[  334.758114]  ksys_ioctl+0xa9/0xd0
[  334.761616]  __x64_sys_ioctl+0x73/0xb0
[  334.765522]  do_syscall_64+0x1b9/0x820
[  334.769453]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  334.774835]  ? syscall_return_slowpath+0x5e0/0x5e0
[  334.779787]  ? trace_hardirqs_off+0x310/0x310
[  334.784301]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  334.789334]  ? recalc_sigpending_tsk+0x180/0x180
[  334.794110]  ? kasan_check_write+0x14/0x20
[  334.798369]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  334.803235]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  334.808437] RIP: 0033:0x457679
[  334.811649] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  334.830578] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
03:34:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:36 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x37dc12502000000, &(0x7f0000000840))

[  334.838310] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  334.845597] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  334.852964] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  334.860245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  334.867549] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000e
03:34:36 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:36 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x1000000, &(0x7f0000000840))

03:34:36 executing program 5 (fault-call:5 fault-nth:15):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:36 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  335.100719] FAULT_INJECTION: forcing a failure.
[  335.100719] name failslab, interval 1, probability 0, space 0, times 0
[  335.141176] CPU: 1 PID: 15171 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  335.149717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  335.149724] Call Trace:
[  335.149748]  dump_stack+0x1d3/0x2c4
[  335.149771]  ? dump_stack_print_info.cold.2+0x52/0x52
[  335.149790]  ? __kernel_text_address+0xd/0x40
[  335.149812]  ? unwind_get_return_address+0x61/0xa0
[  335.179953]  should_fail.cold.4+0xa/0x17
[  335.184021]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  335.189130]  ? save_stack+0xa9/0xd0
[  335.192763]  ? graph_lock+0x170/0x170
[  335.196561]  ? kasan_slab_alloc+0x12/0x20
[  335.200708]  ? kmem_cache_alloc+0x12e/0x730
[  335.205029]  ? mmu_topup_memory_caches+0xf7/0x390
[  335.209870]  ? kvm_mmu_load+0x21/0xfa0
[  335.213755]  ? vcpu_enter_guest+0x3e9d/0x6260
[  335.218247]  ? graph_lock+0x170/0x170
[  335.222049]  ? ksys_ioctl+0xa9/0xd0
[  335.225735]  ? __x64_sys_ioctl+0x73/0xb0
[  335.229882]  ? do_syscall_64+0x1b9/0x820
[  335.233943]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  335.239308]  ? find_held_lock+0x36/0x1c0
[  335.243368]  ? __lock_is_held+0xb5/0x140
[  335.247483]  ? ttwu_stat+0x5c0/0x5c0
[  335.251223]  __should_failslab+0x124/0x180
[  335.255465]  should_failslab+0x9/0x14
[  335.259324]  kmem_cache_alloc+0x2be/0x730
[  335.263467]  ? vmx_flush_tlb_gva+0x380/0x380
[  335.267899]  ? print_usage_bug+0xc0/0xc0
[  335.271958]  ? d_splice_alias+0x7c9/0x11d0
[  335.276191]  ? mmu_topup_memory_caches+0xf7/0x390
[  335.281035]  mmu_topup_memory_caches+0xf7/0x390
[  335.285705]  kvm_mmu_load+0x21/0xfa0
[  335.289425]  vcpu_enter_guest+0x3e9d/0x6260
[  335.293753]  ? emulator_read_emulated+0x50/0x50
[  335.298429]  ? vmx_vcpu_load+0xb06/0x1030
[  335.302586]  ? vmx_write_tsc_offset+0x670/0x670
[  335.307253]  ? graph_lock+0x170/0x170
[  335.311053]  ? lock_downgrade+0x900/0x900
[  335.315201]  ? check_preemption_disabled+0x48/0x200
[  335.320223]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  335.325766]  ? check_preemption_disabled+0x48/0x200
[  335.330789]  ? __lock_is_held+0xb5/0x140
[  335.334852]  ? lock_acquire+0x1ed/0x520
[  335.338910]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  335.343930]  ? lock_release+0x970/0x970
[  335.347904]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  335.353183]  ? kvm_arch_dev_ioctl+0x630/0x630
[  335.357674]  ? preempt_notifier_dec+0x20/0x20
[  335.362175]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  335.367019]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  335.372056]  kvm_vcpu_ioctl+0x5c8/0x1150
[  335.376120]  ? kvm_vcpu_block+0x1020/0x1020
[  335.380445]  ? find_held_lock+0x36/0x1c0
[  335.384524]  ? __fget+0x4aa/0x740
[  335.387980]  ? check_preemption_disabled+0x48/0x200
[  335.392997]  ? kasan_check_read+0x11/0x20
[  335.397145]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  335.402418]  ? rcu_softirq_qs+0x20/0x20
[  335.406400]  ? __fget+0x4d1/0x740
[  335.409858]  ? ksys_dup3+0x680/0x680
[  335.413582]  ? find_held_lock+0x36/0x1c0
[  335.417646]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  335.422581]  ? kvm_vcpu_block+0x1020/0x1020
[  335.427038]  do_vfs_ioctl+0x1de/0x1720
[  335.430924]  ? __lock_is_held+0xb5/0x140
[  335.434985]  ? ioctl_preallocate+0x300/0x300
[  335.439392]  ? __fget_light+0x2e9/0x430
[  335.443367]  ? fget_raw+0x20/0x20
[  335.446820]  ? __sb_end_write+0xd9/0x110
[  335.450882]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  335.456413]  ? fput+0x130/0x1a0
[  335.459696]  ? do_syscall_64+0x9a/0x820
[  335.463720]  ? do_syscall_64+0x9a/0x820
[  335.467695]  ? lockdep_hardirqs_on+0x421/0x5c0
[  335.472277]  ? security_file_ioctl+0x94/0xc0
[  335.476686]  ksys_ioctl+0xa9/0xd0
[  335.480139]  __x64_sys_ioctl+0x73/0xb0
[  335.484154]  do_syscall_64+0x1b9/0x820
[  335.488043]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  335.493408]  ? syscall_return_slowpath+0x5e0/0x5e0
[  335.498337]  ? trace_hardirqs_off+0x310/0x310
[  335.502829]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  335.507840]  ? recalc_sigpending_tsk+0x180/0x180
[  335.512598]  ? kasan_check_write+0x14/0x20
[  335.516838]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  335.521684]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  335.526869] RIP: 0033:0x457679
[  335.530064] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  335.549048] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  335.556755] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  335.564025] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  335.571288] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  335.578555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  335.585819] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000000f
03:34:37 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:37 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x4000, &(0x7f0000000840))

03:34:37 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

03:34:37 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:37 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x1, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x0, &(0x7f0000000040)=0xffffffffffffffff)
sched_setscheduler(r2, 0x5, &(0x7f0000000000))
setsockopt$inet6_buf(r1, 0x29, 0x22, &(0x7f0000000040), 0x0)

03:34:37 executing program 5 (fault-call:5 fault-nth:16):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:37 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000180))
r1 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
r2 = syz_open_dev$dspn(&(0x7f00000004c0)='/dev/dsp#\x00', 0x8001, 0x109000)
getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x1c, &(0x7f0000000500), &(0x7f0000000540)=0x4)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000001c0), 0xffffffffffffffff)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000200))
setsockopt$inet6_group_source_req(r1, 0x29, 0x2f, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}}}, {{0xa, 0x0, 0x0, @mcast1}}}, 0x108)

03:34:37 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x3f00, &(0x7f0000000840))

[  335.803963] FAULT_INJECTION: forcing a failure.
[  335.803963] name failslab, interval 1, probability 0, space 0, times 0
[  335.838141] CPU: 0 PID: 15191 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  335.846686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  335.856050] Call Trace:
[  335.858663]  dump_stack+0x1d3/0x2c4
[  335.862315]  ? dump_stack_print_info.cold.2+0x52/0x52
[  335.863250] IPVS: length: 193 != 8
[  335.867530]  ? __kernel_text_address+0xd/0x40
[  335.867551]  ? unwind_get_return_address+0x61/0xa0
[  335.867580]  should_fail.cold.4+0xa/0x17
[  335.867602]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  335.867619]  ? save_stack+0xa9/0xd0
[  335.880582]  ? graph_lock+0x170/0x170
[  335.889734]  ? kasan_slab_alloc+0x12/0x20
03:34:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  335.889747]  ? kmem_cache_alloc+0x12e/0x730
[  335.889763]  ? mmu_topup_memory_caches+0xf7/0x390
[  335.889775]  ? kvm_mmu_load+0x21/0xfa0
[  335.889789]  ? vcpu_enter_guest+0x3e9d/0x6260
[  335.889806]  ? graph_lock+0x170/0x170
[  335.922748]  ? ksys_ioctl+0xa9/0xd0
[  335.926394]  ? __x64_sys_ioctl+0x73/0xb0
[  335.930514]  ? do_syscall_64+0x1b9/0x820
[  335.934594]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  335.939990]  ? find_held_lock+0x36/0x1c0
[  335.944077]  ? __lock_is_held+0xb5/0x140
[  335.948170]  ? ttwu_stat+0x5c0/0x5c0
03:34:37 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet6_dccp(0xa, 0x6, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @multicast2}, 0x10)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000140)={'nat\x00'}, &(0x7f0000000000)=0x78)
getsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
sendto$inet(r0, &(0x7f0000000200), 0xfffffffffffffeb4, 0x20008011, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback, [0x2]}, 0x10)
recvfrom(r0, &(0x7f0000f9cf9b)=""/101, 0xffffff24, 0x122, 0x0, 0x4f)
read(r0, &(0x7f0000000380)=""/172, 0xffffffc7)

[  335.951916]  __should_failslab+0x124/0x180
[  335.956169]  should_failslab+0x9/0x14
[  335.959983]  kmem_cache_alloc+0x2be/0x730
[  335.964143]  ? vmx_flush_tlb_gva+0x380/0x380
[  335.968568]  ? print_usage_bug+0xc0/0xc0
[  335.972645]  ? d_splice_alias+0x7c9/0x11d0
[  335.976896]  ? mmu_topup_memory_caches+0xf7/0x390
[  335.981752]  mmu_topup_memory_caches+0xf7/0x390
[  335.981774]  kvm_mmu_load+0x21/0xfa0
[  335.981803]  vcpu_enter_guest+0x3e9d/0x6260
[  335.981830]  ? emulator_read_emulated+0x50/0x50
[  335.981850]  ? vmx_vcpu_load+0xb06/0x1030
[  335.981869]  ? vmx_write_tsc_offset+0x670/0x670
[  335.981887]  ? graph_lock+0x170/0x170
[  336.011853]  ? lock_downgrade+0x900/0x900
[  336.016026]  ? check_preemption_disabled+0x48/0x200
[  336.021069]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  336.026627]  ? check_preemption_disabled+0x48/0x200
[  336.031678]  ? __lock_is_held+0xb5/0x140
[  336.035764]  ? lock_acquire+0x1ed/0x520
[  336.039758]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  336.044801]  ? lock_release+0x970/0x970
[  336.048792]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  336.054115]  ? kvm_arch_dev_ioctl+0x630/0x630
[  336.058627]  ? preempt_notifier_dec+0x20/0x20
[  336.061110] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
[  336.063148]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  336.063164]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  336.063192]  kvm_vcpu_ioctl+0x5c8/0x1150
[  336.063211]  ? kvm_vcpu_block+0x1020/0x1020
[  336.098970]  ? find_held_lock+0x36/0x1c0
[  336.103048]  ? __fget+0x4aa/0x740
[  336.106518]  ? check_preemption_disabled+0x48/0x200
[  336.111547]  ? kasan_check_read+0x11/0x20
[  336.115704]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  336.121073]  ? rcu_softirq_qs+0x20/0x20
[  336.125067]  ? __fget+0x4d1/0x740
[  336.128535]  ? ksys_dup3+0x680/0x680
[  336.132251]  ? find_held_lock+0x36/0x1c0
[  336.136323]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  336.141265]  ? kvm_vcpu_block+0x1020/0x1020
[  336.145595]  do_vfs_ioctl+0x1de/0x1720
[  336.149488]  ? __lock_is_held+0xb5/0x140
[  336.153555]  ? ioctl_preallocate+0x300/0x300
[  336.157963]  ? __fget_light+0x2e9/0x430
[  336.161943]  ? fget_raw+0x20/0x20
[  336.165421]  ? __sb_end_write+0xd9/0x110
[  336.169497]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  336.175033]  ? fput+0x130/0x1a0
[  336.178317]  ? do_syscall_64+0x9a/0x820
[  336.182290]  ? do_syscall_64+0x9a/0x820
[  336.186269]  ? lockdep_hardirqs_on+0x421/0x5c0
[  336.190860]  ? security_file_ioctl+0x94/0xc0
[  336.195275]  ksys_ioctl+0xa9/0xd0
[  336.198737]  __x64_sys_ioctl+0x73/0xb0
[  336.202635]  do_syscall_64+0x1b9/0x820
[  336.206523]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  336.211893]  ? syscall_return_slowpath+0x5e0/0x5e0
[  336.216826]  ? trace_hardirqs_off+0x310/0x310
[  336.221328]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  336.226351]  ? recalc_sigpending_tsk+0x180/0x180
[  336.231109]  ? kasan_check_write+0x14/0x20
[  336.235351]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  336.240203]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  336.245415] RIP: 0033:0x457679
[  336.248616] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  336.267519] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.275231] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  336.282502] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  336.289774] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  336.297043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
03:34:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  336.304360] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000010
03:34:38 executing program 5 (fault-call:5 fault-nth:17):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:38 executing program 3:
socketpair(0x1, 0x0, 0x9, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
accept$packet(0xffffffffffffffff, &(0x7f0000003880)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000038c0)=0x14)
connect$can_bcm(r0, &(0x7f0000003900)={0x1d, r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r2, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r2})
dup3(r3, r3, 0x0)
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r2, 0x0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000080)=0x80000001, 0x4)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:38 executing program 2:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f0000000600)=0x8, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000700)={@mcast2, 0x3, 0x3, 0x0, 0x4, 0x2, 0x2, 0x40}, 0x20)
accept(r0, &(0x7f0000000680)=@generic, &(0x7f0000000900)=0xffffffffffffff90)
r1 = open(&(0x7f00000008c0)='./file0\x00', 0x0, 0x58)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000980))
sendto$inet(r0, &(0x7f0000a88f88), 0x332, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23}, 0x10)
ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000740))
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x5084f74d, {0x2, 0x4e22, @rand_addr}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x2, 0x4e21, @broadcast}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xcf39, 0x80000001, 0x4})
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000180)=""/193, &(0x7f0000000280)=0xc1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000880)={0xffff, 0x100000000, 0x7e, 0xc60, 0x9, 0x5})
munlockall()
pipe2(&(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
r4 = add_key$user(&(0x7f0000000400)='user\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000480)="7daa82ba42b49fe0f8dace1e99a63e7330199736360e2d39fb356928ca980ede1713bb42469a3e3c01364a6c24397a39", 0x30, 0xffffffffffffffff)
r5 = add_key(&(0x7f00000004c0)='asymmetric\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000540)="8e8043e6c81d81d58d21133ece0fc1fc3e0b551f8d0fd4b577b01c2a52be54", 0x1f, 0xfffffffffffffffd)
keyctl$unlink(0x9, r4, r5)
fcntl$dupfd(r3, 0x406, 0xffffffffffffffff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000780))
setsockopt$inet_tcp_int(r2, 0x6, 0x22, &(0x7f0000000940)=0x3, 0xc6)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000840)={0x6, &(0x7f0000000800)=[{0xef4b, 0x8}, {0x5, 0x4000000000}, {0x7c, 0x2}, {0xffffffff, 0x8}, {0x0, 0x947d}, {0x675, 0x80000000}]})
r6 = geteuid()
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000640)=@generic={0xd4, 0xd9, 0x2d})
r7 = getuid()
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xffffffffffffffad)
setresuid(r6, r7, r7)
sendto$inet(r0, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x10)

03:34:38 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x225c17d03, &(0x7f0000000840))

03:34:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  336.518245] FAULT_INJECTION: forcing a failure.
[  336.518245] name failslab, interval 1, probability 0, space 0, times 0
[  336.533651] CPU: 0 PID: 15229 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  336.542184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  336.551556] Call Trace:
[  336.554166]  dump_stack+0x1d3/0x2c4
[  336.557821]  ? dump_stack_print_info.cold.2+0x52/0x52
[  336.559215] IPVS: length: 193 != 8
[  336.563032]  ? __kernel_text_address+0xd/0x40
[  336.563053]  ? unwind_get_return_address+0x61/0xa0
[  336.563075]  should_fail.cold.4+0xa/0x17
[  336.580107]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  336.585240]  ? save_stack+0xa9/0xd0
[  336.588895]  ? graph_lock+0x170/0x170
[  336.592715]  ? kasan_slab_alloc+0x12/0x20
[  336.596879]  ? kmem_cache_alloc+0x12e/0x730
[  336.601217]  ? mmu_topup_memory_caches+0xf7/0x390
[  336.606076]  ? kvm_mmu_load+0x21/0xfa0
[  336.609983]  ? vcpu_enter_guest+0x3e9d/0x6260
[  336.614500]  ? graph_lock+0x170/0x170
[  336.618318]  ? ksys_ioctl+0xa9/0xd0
[  336.621956]  ? __x64_sys_ioctl+0x73/0xb0
[  336.626036]  ? do_syscall_64+0x1b9/0x820
[  336.630116]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  336.635506]  ? find_held_lock+0x36/0x1c0
[  336.639589]  ? __lock_is_held+0xb5/0x140
[  336.643681]  ? ttwu_stat+0x5c0/0x5c0
[  336.647449]  __should_failslab+0x124/0x180
[  336.651705]  should_failslab+0x9/0x14
[  336.655548]  kmem_cache_alloc+0x2be/0x730
[  336.659711]  ? vmx_flush_tlb_gva+0x380/0x380
[  336.664137]  ? print_usage_bug+0xc0/0xc0
[  336.668212]  ? d_splice_alias+0x7c9/0x11d0
[  336.672465]  ? mmu_topup_memory_caches+0xf7/0x390
[  336.677329]  mmu_topup_memory_caches+0xf7/0x390
[  336.682041]  kvm_mmu_load+0x21/0xfa0
[  336.685783]  vcpu_enter_guest+0x3e9d/0x6260
[  336.690133]  ? emulator_read_emulated+0x50/0x50
[  336.694821]  ? vmx_vcpu_load+0xb06/0x1030
[  336.698988]  ? vmx_write_tsc_offset+0x670/0x670
[  336.703676]  ? graph_lock+0x170/0x170
[  336.707492]  ? lock_downgrade+0x900/0x900
[  336.711658]  ? check_preemption_disabled+0x48/0x200
[  336.716694]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  336.722248]  ? check_preemption_disabled+0x48/0x200
[  336.727295]  ? __lock_is_held+0xb5/0x140
[  336.731475]  ? lock_acquire+0x1ed/0x520
[  336.735466]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  336.740509]  ? lock_release+0x970/0x970
[  336.744496]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  336.749789]  ? kvm_arch_dev_ioctl+0x630/0x630
[  336.754298]  ? preempt_notifier_dec+0x20/0x20
[  336.758823]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  336.763678]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  336.768724]  kvm_vcpu_ioctl+0x5c8/0x1150
[  336.772804]  ? kvm_vcpu_block+0x1020/0x1020
[  336.777149]  ? find_held_lock+0x36/0x1c0
[  336.781239]  ? __fget+0x4aa/0x740
[  336.784718]  ? check_preemption_disabled+0x48/0x200
[  336.789756]  ? kasan_check_read+0x11/0x20
[  336.793917]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  336.799210]  ? rcu_softirq_qs+0x20/0x20
[  336.803213]  ? __fget+0x4d1/0x740
[  336.806687]  ? ksys_dup3+0x680/0x680
[  336.810428]  ? find_held_lock+0x36/0x1c0
[  336.814512]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  336.819468]  ? kvm_vcpu_block+0x1020/0x1020
[  336.823812]  do_vfs_ioctl+0x1de/0x1720
[  336.827718]  ? __lock_is_held+0xb5/0x140
[  336.831804]  ? ioctl_preallocate+0x300/0x300
[  336.836222]  ? __fget_light+0x2e9/0x430
[  336.840214]  ? fget_raw+0x20/0x20
[  336.843684]  ? __sb_end_write+0xd9/0x110
[  336.847765]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  336.853321]  ? fput+0x130/0x1a0
[  336.856642]  ? do_syscall_64+0x9a/0x820
[  336.860634]  ? do_syscall_64+0x9a/0x820
[  336.864629]  ? lockdep_hardirqs_on+0x421/0x5c0
[  336.869232]  ? security_file_ioctl+0x94/0xc0
[  336.873663]  ksys_ioctl+0xa9/0xd0
[  336.877133]  __x64_sys_ioctl+0x73/0xb0
[  336.881036]  do_syscall_64+0x1b9/0x820
[  336.884939]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  336.890317]  ? syscall_return_slowpath+0x5e0/0x5e0
[  336.895286]  ? trace_hardirqs_off+0x310/0x310
[  336.899797]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  336.904828]  ? recalc_sigpending_tsk+0x180/0x180
[  336.909601]  ? kasan_check_write+0x14/0x20
[  336.913860]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  336.918727]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  336.923929] RIP: 0033:0x457679
[  336.927137] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  336.946050] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  336.953775] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  336.961058] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:34:38 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  336.968364] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  336.975658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  336.982937] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000011
03:34:38 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0xb00000000000000, &(0x7f0000000840))

03:34:39 executing program 5 (fault-call:5 fault-nth:18):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:34:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "6674381b6ab6661143b4cd18fd3c6e8df1e0e7c0bd4de9178efba7b67f89a277ea0eb2894477bd052220d2aec4fad4b92c821f2b02cc937664d38fbb537eb41d634bb8439b14f130d2fc30581fbdf51a677c4ec77e58ec957940d3b61c4b8b9e309779258e803e6ceb38ea11b3378660e40a472afafeb4838f2bf3125b832c106462dc044e7aec5540185b7181aba42b1220b40b4546666fd1a3a958a0a614d63f2a5c669ac3a78dcb8a96ecc5b600a86527b6822945bfb8e7e1cac7fa79739351e2ac5510592f7c1391e685368e3014ac3940a7d1c1e3cfcf21fa5565669f7b68030893477ab491263a2253d7f413291b67236d35be36b0c3eaad0a2198c29113f83c9349a0f452034f7bc996fc56a8248cacb290dc3e92e0072034cc2dab18214dc3c56093e425fa36040d378306a0637c3dd32680acc50627a9f98485715e377ca6901cd2b1feff953234b9629010c31e25cf6da7b2b1f8e98461b86b2468a3fe1ea27df243c0335fd945f775b603c0f393445c040809acf595025b9287b9e6a8ccb500d8cf77a184ad47e6c3fc216b94ab2f15e964d6ddbe2a17b9d3b4d8039320a8aea30999bb6e1038c5734c67f48e17397c50231085d7c7e3c4c87cc5483fa1c0a0a58b440aad1d111f6e8ebd83c31f8d9576ec94fc25fdb25d645b847e129ae12946a91b0c5186d144f798082bc57e2a3ea78f1bcaf87263d6b85a193a84ee8d2f6cddcace90e97568abdd3b971ac34c5257a7084c9f52deb0e9421b5867cfa28f9f21ba57c7b473576b94baf70cac372f6ca90a561904499597d03ac2cedb437b12c1edf257de475496ce703176ef2e92d3a7b60dbf2e4c713f54f685fc3a9085d4b9f665c602829d27f915488bbfdcef6709d1bcdb1659ce99eca112737dd8bb1a0a2a2a7fa359fc2f4cb43c06d4cf81934f344b303f01c69be0606d24d84644071a36d30e174ad4afee1c54515a9e019a3983da8f242c8350117cfe6db3a6bababc0e4970e97b1a4a2861cf906a9bbe55291b6ffec078944c7ef31f60c76d0881cb2dac57977f5e01906ea5331ddf288fb57bbeb6aa267858cdd732872b19ede6345aa561e4381ad660c041f00717d2ef25c4ab9857e4eedb3f2e1e4470d3a682d3bb9a3224896ce1feee54990fa063736ff0dc521d1adaf7e6fdbe009ff4b2e3fdcf44786ddc3da9c1eca2e63c1101b2c284d89f62ffdf1728e2696e0939ce8725aa068889c549c7e7798331aeca6cc46699fd86faceaf493f1a630b502070d48d0408c0e94dddd539501d5047a45967df1051d37828de6d8e8330e296f1a133924fca7e65f86456aba47e92f345eef6b8131f5770cfb6f917921b73f4d890455a6de3b4d41ba13954d27092b210abc3c46803de73450da1040f0a9c456a748ecccba01d45a73c916dea88ca90dd576c57a9ecd76f505212da9301c5dccc82312871e9ceef6f99c4bfc2664ac1a86910f6ba326d44a900979ba9ffe2b0a7bd5e333072c9a977527d98c3f23dd2054a9217d0e197e581eec8657c01ee7a38e60d8e7b416223611172ff11c33d2ade9b42fec8c7b7db439498c3fb7090736c7edf7c9015c214caabbd52c0fd2cba5c91768f724a586739af8be240e052d43e6a8d7fbe61b2fa5239440437270f43808c19dee31e0c0a7fe5ad10fb1ff893c2b61a55d268301acdbfaddec0f9201029c449e99f0ef8cad638b94c31a0b9227919a7ec1ed922d90ef7af0f5f1dda50e4409a171748f90da3b48edb6646ed6a6d2ab5eeeee8a7386f7559554015de6cc6fec3c218fcdf1f0c421cf1da0e6011d4e471a32bb8032243ff402f2fe55c63dd66bbb503000dfb72bfaa40be301af07b63251f402b1ce85ef329f86b39697e6efde679a22e33423dc4d170b823baaada8716c0c428781643837e360ab01ecea2c79c884d31eb899bbade4a3199ef5617c4d09ca429aceff51af55805eb78a7465ba3a327286ca702a6eaeb71046d0060de643129a56ee1d31aad7a37daf0f338b1d97e5b107eccd44a2041c337c704f5638ae8235b8be94728a79ab2e25b0a9575789f2e71ca2ffae4e790482e035adfb0eaf4ef2898bd149e1f32cf634f848e3e8041eaa4d4f0895836ca726b6efac0b8cd9e1fd73147ea78eddff8b78d91c4d50ac540c260cf17dd03dd8623abcf0efa90138c9661d88462eec1706d02a5ffca9c85c38228d3d83c16d24aa2da35f422c12898b7d4299dac137db050e22a9b3f278e231f9e61f600f83802087ed4f2fcc9b219c074da7ece31bcf883b3970247dfbfac9b97c868565e1238d08cea51d4f00d711c215a22607aa1b07c5a97c028bb8acf116d55ef8cb59f57e89b1f65a48ed416f0d1e4fa7f3faddeafd6734af3f53513c18af0cf9c802a7c265528da464054bfbe34e0de474932050161a59f376253b0da37ce7de0eca20b4355c88874f108b4f18695dab737a78d74e95feb56405c3e488fd26ca081601322378dee1cbd3ea29d9e2629ce5c6df182aeee87da97b0bc2ce1b02d9888e9fef14a5047de2bdc2e70dc2d8ec5bcc3d7a633d59458e32f21856138113daf1f61298f7cbfa7b7bb5ee55c37cb884c76f024f3be758e3ad87191c477dd2b877ac39ebb4f54502d1677ca570ed65056394de17445d2b6bfe2aef9e0801c9ac00cca5995887c74ea0a78b0bedbc8a9858df794336a510c89f30d7f17931acda138d1ca6cd6fae648fcb6ecfacc49198521d8c1660a1c4c1d310349320fa9cbf0f8d1985ab1fa60b4b95d8bd7cd744ed28bda9af5f7ef76cf8e86ab47d09abd917bcbf458796a6fd4067d5cc92ce87238f18e83ea9b232c1819302198883cc5a3a8acfa754a3e50886a01ad2a63ed1a1ab93a0315703fc79a184f216a7370491020a4b886a45112c2ba0b471529d9d4323bcb5afcdfc5bf7e594ef89fd611765504f2da0113857e4cd357ba4375d7316f7f83b1ad1ebb3fe8a26033d5e68f0152bee15e1fb376422c59b0a3d9afefcb0b8031512f7f245e166dd8d89a6fecda2ddc5cf9b1833f63c94c780fd264e30a5c3079cdfe955318f9ad8da1849718df7ccf30d2c9278c123521aae2a8b4402e4b5188b3f4081522756b1b544df0cd4151882957965807e6fe37f17723b1deda87e87c84305cf8d9206155f5544023d3600a5b678546cce08441aaa7066a30145e41f7268b18a226faa418eab1b9b99e118fd929a3503fb1002e0a020692087c728157836dbf3e33859b2b8b9efaff6d4596e08f2bf0b6801c5ad7830148baba7b1521065e25dbb466729442169209c6763d7e21228454b7c8324ad48e7a8e481ee279db3aec69c6db8b1be78caf15589182a1ba3f9b3a787d8a3ffe59ffb4eb6f44408f4ca78d0ef2e8859254064778b50a717ca1765e4f3b45ddb5052834a89e058390ce45db2393ebd1d947e3a1922abe5a094abe3c0ad45892ead84f1f64566cf423903eb5c6eba7b36f5a86e0c8a80ef0430349594239ec3572632441237b9f699e9d680fc6c8ac31d1f8404c9ee75241110cacd0e2e3991114d01de9a860589f8fd1d75355d492c0c23b2038d14c2f0b64fd86feea22b09013b7fad23fc0ea514034c09c5de203783d12af5ef874431ab2346820f2ede22602591348d1f91f31d5871b67850ea2051e539b054c354709797fc895b0bbe3ce5e6ffe0541b704c169bc46b16cd1f854e35dca3f31f1caddee26783cf130dd39464a79ca3012cc86b72b7e63d591ccabaa72ca48c40c14fcc7349eba50c8fe309bbb2dda7ab380656e5c6736dca9893d7c8c179e89ad90df84a354c428f6eba5144f1e141112ad6f082705fd25ad348b68d06751722237ca14d70681e2209b4a8d1e4a52ec48da5f1fc328a770af12c4cfe24ffe6e00d7981b22dcccd81241bc0336dc4ba8cf612040a65fc5c990703a96abe9fc6577912a69b75eea89777f7569777c4e8323d5e3ff6d12a873553d05de04843c24c7ea42e7983ba79a95d47b9ceef08ae6e1f0c84a0e2c41415343d77b437ce6a9dc5587b71b54fcecc7b94a0c8984b0648d2d6e949121ee9054d4cd8018299d17d1912e64b9fcf7b29bdbfb5a766646b2b2494d4aae64acc18c5b69d84049e70fc7f25cb1a7e1ff7f2f6850adf22d84c4d92d1a5aed105320c35d41462ec5f351b731a287f2b01ffe0ef45dccf71a60bc6b266c1a710d1aa0b412d231c46577a694b368aea3627e7bb0ed33e5678553c1b663c717bb651573cba62d9e9366c208f6ba5701962178e3b58dc7caf816f79c7483676761fd005fc3e41a03e7d76f75662a6b6bfee36a9922225a12e5cb4d52d16cb5baa86d24d5302beecff05844f7911319e649c655e2608bb0680245a7b7c33188df50a7017047c6a674dc3a8f72382301d5f7de0e25da6557a8982c2547017ce5588f6faad07e877c852cc156fc9499916b1b900c1040e5e7857aea685d0223d16224555adab614180e09d45fbbf6ccfb82b3ce5699a4b35ec2eb891be02ff9c8e3cd0e670e213487a449f87aba0ce2a69a2382c00e0392bcb1453307ab56799a5ecea41df0f762d7bb97374b528748159292adff4a7dee581cab8f958a731a6b932d073710485c97a5afb0495fd5b32bfbb676b6dd71fb41e9cc6ee075895b28b368ccfd216cf30a54e2979fa52d53080bbb2526f64a69f86a22fce98123d6329370fc0818cdad8b2b7a373d708a9c808dc1294f45717ab80d1943448dd1f133dc0ef03705f4245a92b701b4a78e5b4cabbc1c8014b103cadd5127e35fd35964a835bca89e9614fb039195929cd82ce59cb679f8214ff4f1f3027b4479d17799fe7ec403614e46c3ec09b60e2f47450a6a9ecbf0efaf32b007fe93ba40abbf170aaef410aadc7c2fa13ed232f836b6b1e438c9fb2fc86c401028f95c07e77a7738bc111215e2d112d4dae24bd93d84dd535bc557b9cbf3bd4e21dde9fe9cd593c3f73e6f8ca6e6c69966929e5d7ccfcb13752d866678980989d33474238df00d180b0996793bb2416faec0c098a72be31b6488cb0c16cabf016e43540bcb996e7919d6c6da091c9bbdcf9aa37d358c85d5f5ef77b8050093f2b0cef8f4d451b43cf2d69c1aeb9e194c73db4b3a4828f2c9fd86d4ec93bcee53a8af9e282bf6c2ada8bc7b43f8cc06b1b5c09d49893ec4638c9f55cac1f127e0cedfe764088de68e09db4f284d3ec3e24b4673d68deb5ee2c5d4a663ecfeafc631b16dd161d0245b129f3c37b656a78d428e06f364ad940ee9bd1aea0f3424c7ce631933741b0f4053e29979b644f26dd17ff5f1a179e592c8c82253fbca568dbf433f4efc0fe702a9b5a00dcde401c6228099e0cb975746924dd8133f04a9b2228173ce5645b39822dd3ba89bff3d52824dee8006348a309bcc17990cf76486a3b56c1611428ab1c08278c26eee855639b995db54e02c0027182144c86239464c64241697a01fb3dd2cffbf149ca643a2fa2dcda7ff4d6ab2a9b40e162c87e5bb5451d49571dc5b96faa840e09d10d1ea4854cb7c34027ed3cfb3c6adf13629ad9e41c020bbd1355f95b723784c1ca2180c507200891ba8b75920c0a3064cdc258fd445c7c0c76dd3fcd99a88479167c7e659fc2dad7be17792b4ed3a8033f8b425edd94cc856c9cb915bb0ff0a37b65c6000f1605ab7c5b94b04e96ea838f4e916f9c7683b776357cc29709abeb65f43ce738793067985ce99a550407eec005addc1449fe2a2063ba2f7b58f6ea6e7845479a9850729eb611d0c0414dc10654bdf55d6fa7d6c4642ade2fa6a1ecc3e69ee8ea99aef95"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  337.205472] FAULT_INJECTION: forcing a failure.
[  337.205472] name failslab, interval 1, probability 0, space 0, times 0
[  337.223478] CPU: 1 PID: 15259 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  337.232022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  337.232033] Call Trace:
[  337.243990]  dump_stack+0x1d3/0x2c4
[  337.244014]  ? dump_stack_print_info.cold.2+0x52/0x52
[  337.244037]  ? __kernel_text_address+0xd/0x40
[  337.257351]  ? unwind_get_return_address+0x61/0xa0
[  337.262289]  should_fail.cold.4+0xa/0x17
[  337.266370]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  337.271472]  ? save_stack+0xa9/0xd0
[  337.275101]  ? graph_lock+0x170/0x170
[  337.278899]  ? kasan_slab_alloc+0x12/0x20
[  337.283041]  ? kmem_cache_alloc+0x12e/0x730
[  337.287365]  ? mmu_topup_memory_caches+0xf7/0x390
[  337.292205]  ? kvm_mmu_load+0x21/0xfa0
[  337.296088]  ? vcpu_enter_guest+0x3e9d/0x6260
[  337.300579]  ? graph_lock+0x170/0x170
[  337.304388]  ? ksys_ioctl+0xa9/0xd0
[  337.308012]  ? __x64_sys_ioctl+0x73/0xb0
[  337.312068]  ? do_syscall_64+0x1b9/0x820
[  337.316127]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  337.321496]  ? find_held_lock+0x36/0x1c0
[  337.325560]  ? __lock_is_held+0xb5/0x140
[  337.329629]  ? ttwu_stat+0x5c0/0x5c0
[  337.333362]  __should_failslab+0x124/0x180
[  337.337595]  should_failslab+0x9/0x14
[  337.341396]  kmem_cache_alloc+0x2be/0x730
[  337.345541]  ? vmx_flush_tlb_gva+0x380/0x380
[  337.349947]  ? print_usage_bug+0xc0/0xc0
[  337.354005]  ? d_splice_alias+0x7c9/0x11d0
[  337.358239]  ? mmu_topup_memory_caches+0xf7/0x390
[  337.363079]  mmu_topup_memory_caches+0xf7/0x390
[  337.367746]  kvm_mmu_load+0x21/0xfa0
[  337.371492]  vcpu_enter_guest+0x3e9d/0x6260
[  337.375818]  ? emulator_read_emulated+0x50/0x50
[  337.380492]  ? vmx_vcpu_load+0xb06/0x1030
[  337.384643]  ? vmx_write_tsc_offset+0x670/0x670
[  337.389329]  ? graph_lock+0x170/0x170
[  337.393127]  ? lock_downgrade+0x900/0x900
[  337.397274]  ? check_preemption_disabled+0x48/0x200
[  337.402326]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  337.407865]  ? check_preemption_disabled+0x48/0x200
[  337.412890]  ? __lock_is_held+0xb5/0x140
[  337.416951]  ? lock_acquire+0x1ed/0x520
[  337.420971]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  337.425992]  ? lock_release+0x970/0x970
[  337.429962]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  337.435237]  ? kvm_arch_dev_ioctl+0x630/0x630
[  337.439730]  ? preempt_notifier_dec+0x20/0x20
[  337.444230]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  337.449070]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  337.454094]  kvm_vcpu_ioctl+0x5c8/0x1150
[  337.458157]  ? kvm_vcpu_block+0x1020/0x1020
[  337.462479]  ? find_held_lock+0x36/0x1c0
[  337.466544]  ? __fget+0x4aa/0x740
[  337.470000]  ? check_preemption_disabled+0x48/0x200
[  337.475019]  ? kasan_check_read+0x11/0x20
[  337.479166]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  337.484543]  ? rcu_softirq_qs+0x20/0x20
[  337.488523]  ? __fget+0x4d1/0x740
[  337.491979]  ? ksys_dup3+0x680/0x680
[  337.495693]  ? find_held_lock+0x36/0x1c0
[  337.499756]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  337.504689]  ? kvm_vcpu_block+0x1020/0x1020
[  337.509053]  do_vfs_ioctl+0x1de/0x1720
[  337.512940]  ? __lock_is_held+0xb5/0x140
[  337.517005]  ? ioctl_preallocate+0x300/0x300
[  337.521417]  ? __fget_light+0x2e9/0x430
[  337.525389]  ? fget_raw+0x20/0x20
[  337.528845]  ? __sb_end_write+0xd9/0x110
[  337.532905]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  337.538434]  ? fput+0x130/0x1a0
[  337.541711]  ? do_syscall_64+0x9a/0x820
[  337.545680]  ? do_syscall_64+0x9a/0x820
[  337.549651]  ? lockdep_hardirqs_on+0x421/0x5c0
[  337.554231]  ? security_file_ioctl+0x94/0xc0
[  337.558639]  ksys_ioctl+0xa9/0xd0
[  337.562090]  __x64_sys_ioctl+0x73/0xb0
[  337.565974]  do_syscall_64+0x1b9/0x820
[  337.569873]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  337.575230]  ? syscall_return_slowpath+0x5e0/0x5e0
[  337.580154]  ? trace_hardirqs_off+0x310/0x310
[  337.584645]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  337.589656]  ? recalc_sigpending_tsk+0x180/0x180
[  337.594410]  ? kasan_check_write+0x14/0x20
[  337.598640]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  337.603481]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  337.608658] RIP: 0033:0x457679
[  337.611852] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  337.630737] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  337.638427] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  337.645673] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:34:39 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x3f00000000000000, &(0x7f0000000840))

03:34:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x0, 0xbff, [0xc001001b]})

[  337.652923] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  337.660820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  337.668074] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000012
03:34:39 executing program 5 (fault-call:5 fault-nth:19):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x40c002, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0xffffffff00000000, 0x8204, 0xffffffffffffffff, 0x5, <r2=>0x0}, &(0x7f00000001c0)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000240)={r2, 0x0, 0x15, "20c09ce8c90a664885826b318bb9f56f2ef352b983"}, 0x1d)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r0})
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x0, 0xbff, [0xc001001b]})

03:34:39 executing program 0:
r0 = syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x40, 0x2200)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000000c0)={0x0, @aes128, 0x0, "88b811f33744520d"})
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x4ddd, @ipv4, 0x9e0}, 0x1c)

[  337.803148] FAULT_INJECTION: forcing a failure.
[  337.803148] name failslab, interval 1, probability 0, space 0, times 0
[  337.852413] CPU: 1 PID: 15283 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  337.860951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  337.870319] Call Trace:
[  337.872913]  dump_stack+0x1d3/0x2c4
[  337.876551]  ? dump_stack_print_info.cold.2+0x52/0x52
[  337.881754]  ? __kernel_text_address+0xd/0x40
[  337.886264]  ? unwind_get_return_address+0x61/0xa0
[  337.891202]  should_fail.cold.4+0xa/0x17
[  337.895278]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  337.900383]  ? save_stack+0xa9/0xd0
[  337.904012]  ? graph_lock+0x170/0x170
[  337.907814]  ? kasan_slab_alloc+0x12/0x20
[  337.911956]  ? kmem_cache_alloc+0x12e/0x730
[  337.916284]  ? mmu_topup_memory_caches+0xf7/0x390
[  337.921129]  ? kvm_mmu_load+0x21/0xfa0
[  337.925014]  ? vcpu_enter_guest+0x3e9d/0x6260
[  337.929508]  ? graph_lock+0x170/0x170
[  337.933303]  ? ksys_ioctl+0xa9/0xd0
[  337.936927]  ? __x64_sys_ioctl+0x73/0xb0
[  337.940986]  ? do_syscall_64+0x1b9/0x820
[  337.945043]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  337.950414]  ? find_held_lock+0x36/0x1c0
[  337.954476]  ? __lock_is_held+0xb5/0x140
[  337.958549]  ? ttwu_stat+0x5c0/0x5c0
[  337.962282]  __should_failslab+0x124/0x180
[  337.966514]  should_failslab+0x9/0x14
[  337.970326]  kmem_cache_alloc+0x2be/0x730
[  337.974470]  ? vmx_flush_tlb_gva+0x380/0x380
[  337.978876]  ? print_usage_bug+0xc0/0xc0
[  337.982931]  ? d_splice_alias+0x7c9/0x11d0
[  337.987165]  ? mmu_topup_memory_caches+0xf7/0x390
[  337.992008]  mmu_topup_memory_caches+0xf7/0x390
[  337.996678]  kvm_mmu_load+0x21/0xfa0
[  338.000405]  vcpu_enter_guest+0x3e9d/0x6260
[  338.004737]  ? emulator_read_emulated+0x50/0x50
[  338.009448]  ? vmx_vcpu_load+0xb06/0x1030
[  338.013629]  ? vmx_write_tsc_offset+0x670/0x670
[  338.018299]  ? graph_lock+0x170/0x170
[  338.022093]  ? lock_downgrade+0x900/0x900
[  338.026250]  ? check_preemption_disabled+0x48/0x200
[  338.031280]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  338.036824]  ? check_preemption_disabled+0x48/0x200
[  338.041848]  ? __lock_is_held+0xb5/0x140
[  338.045935]  ? lock_acquire+0x1ed/0x520
[  338.049908]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  338.054926]  ? lock_release+0x970/0x970
[  338.058892]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  338.064167]  ? kvm_arch_dev_ioctl+0x630/0x630
[  338.068658]  ? preempt_notifier_dec+0x20/0x20
[  338.073163]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  338.078004]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  338.083037]  kvm_vcpu_ioctl+0x5c8/0x1150
[  338.087097]  ? kvm_vcpu_block+0x1020/0x1020
[  338.091424]  ? find_held_lock+0x36/0x1c0
[  338.095489]  ? __fget+0x4aa/0x740
[  338.098943]  ? check_preemption_disabled+0x48/0x200
[  338.103960]  ? kasan_check_read+0x11/0x20
[  338.108108]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  338.113378]  ? rcu_softirq_qs+0x20/0x20
[  338.117360]  ? __fget+0x4d1/0x740
[  338.120827]  ? ksys_dup3+0x680/0x680
[  338.124539]  ? find_held_lock+0x36/0x1c0
[  338.128603]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  338.133536]  ? kvm_vcpu_block+0x1020/0x1020
[  338.137856]  do_vfs_ioctl+0x1de/0x1720
[  338.141741]  ? __lock_is_held+0xb5/0x140
[  338.145816]  ? ioctl_preallocate+0x300/0x300
[  338.150232]  ? __fget_light+0x2e9/0x430
[  338.154204]  ? fget_raw+0x20/0x20
[  338.157671]  ? __sb_end_write+0xd9/0x110
[  338.161736]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  338.167267]  ? fput+0x130/0x1a0
[  338.170549]  ? do_syscall_64+0x9a/0x820
[  338.174518]  ? do_syscall_64+0x9a/0x820
[  338.178494]  ? lockdep_hardirqs_on+0x421/0x5c0
[  338.183077]  ? security_file_ioctl+0x94/0xc0
[  338.187487]  ksys_ioctl+0xa9/0xd0
[  338.190940]  __x64_sys_ioctl+0x73/0xb0
[  338.194826]  do_syscall_64+0x1b9/0x820
[  338.198748]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  338.204113]  ? syscall_return_slowpath+0x5e0/0x5e0
[  338.209041]  ? trace_hardirqs_off+0x310/0x310
[  338.213535]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  338.218548]  ? recalc_sigpending_tsk+0x180/0x180
[  338.223302]  ? kasan_check_write+0x14/0x20
[  338.227540]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  338.232386]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  338.237569] RIP: 0033:0x457679
[  338.240762] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  338.259660] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  338.267369] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  338.274632] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  338.281894] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  338.289156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  338.296422] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000013
03:34:40 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x0, 0xbff, [0xc001001b]})

03:34:40 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:40 executing program 5 (fault-call:5 fault-nth:20):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:40 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x6, &(0x7f0000000040)={0x0, 0x1c9c380})
r0 = open(&(0x7f0000000080)='./file0\x00', 0x8000, 0x94)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000280)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000200)={0x78, r1, 0x210, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_DEST={0x54, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@dev={0xac, 0x14, 0x14, 0x20}}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x9504}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x50}, 0x24000010)
clock_settime(0x0, &(0x7f0000000840))

[  338.488862] FAULT_INJECTION: forcing a failure.
[  338.488862] name failslab, interval 1, probability 0, space 0, times 0
[  338.506511] CPU: 1 PID: 15311 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  338.515041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  338.524404] Call Trace:
[  338.527011]  dump_stack+0x1d3/0x2c4
[  338.530667]  ? dump_stack_print_info.cold.2+0x52/0x52
[  338.535879]  ? __kernel_text_address+0xd/0x40
[  338.540395]  ? unwind_get_return_address+0x61/0xa0
[  338.545341]  should_fail.cold.4+0xa/0x17
[  338.549415]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  338.554523]  ? save_stack+0xa9/0xd0
[  338.558153]  ? graph_lock+0x170/0x170
[  338.561962]  ? kasan_slab_alloc+0x12/0x20
[  338.566106]  ? kmem_cache_alloc+0x12e/0x730
[  338.570424]  ? mmu_topup_memory_caches+0xf7/0x390
[  338.575264]  ? kvm_mmu_load+0x21/0xfa0
[  338.579150]  ? vcpu_enter_guest+0x3e9d/0x6260
[  338.583641]  ? graph_lock+0x170/0x170
[  338.587438]  ? ksys_ioctl+0xa9/0xd0
[  338.591064]  ? __x64_sys_ioctl+0x73/0xb0
[  338.595120]  ? do_syscall_64+0x1b9/0x820
[  338.599191]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  338.604562]  ? find_held_lock+0x36/0x1c0
[  338.608625]  ? __lock_is_held+0xb5/0x140
[  338.612699]  ? ttwu_stat+0x5c0/0x5c0
[  338.616421]  __should_failslab+0x124/0x180
[  338.620657]  should_failslab+0x9/0x14
[  338.624452]  kmem_cache_alloc+0x2be/0x730
[  338.628596]  ? vmx_flush_tlb_gva+0x380/0x380
[  338.633004]  ? mmu_topup_memory_caches+0xf7/0x390
[  338.637845]  mmu_topup_memory_caches+0xf7/0x390
[  338.642514]  kvm_mmu_load+0x21/0xfa0
[  338.646230]  ? finish_task_switch+0x3d7/0x900
[  338.650732]  ? __switch_to_asm+0x34/0x70
[  338.655268]  vcpu_enter_guest+0x3e9d/0x6260
[  338.659587]  ? __switch_to_asm+0x40/0x70
[  338.663729]  ? __switch_to_asm+0x34/0x70
[  338.667789]  ? __switch_to_asm+0x40/0x70
[  338.671847]  ? __switch_to_asm+0x34/0x70
[  338.675902]  ? __switch_to_asm+0x40/0x70
[  338.679961]  ? __switch_to_asm+0x34/0x70
[  338.684029]  ? emulator_read_emulated+0x50/0x50
[  338.688698]  ? __schedule+0x874/0x1ed0
[  338.692588]  ? __sched_text_start+0x8/0x8
[  338.696745]  ? mark_held_locks+0xc7/0x130
[  338.700895]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  338.705650]  ? lockdep_hardirqs_on+0x421/0x5c0
[  338.710229]  ? retint_kernel+0x2d/0x2d
[  338.714119]  ? trace_hardirqs_on_caller+0xc0/0x310
[  338.719045]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  338.724058]  ? __bpf_trace_preemptirq_template+0x30/0x30
[  338.729501]  ? retint_kernel+0x1b/0x2d
[  338.733395]  ? lock_acquire+0x1ed/0x520
[  338.737363]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  338.742378]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  338.747135]  ? lock_release+0x970/0x970
[  338.751118]  ? retint_kernel+0x2d/0x2d
[  338.755019]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  338.759862]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  338.764890]  kvm_vcpu_ioctl+0x5c8/0x1150
[  338.768954]  ? kvm_vcpu_block+0x1020/0x1020
[  338.773280]  ? find_held_lock+0x36/0x1c0
[  338.777350]  ? __fget+0x4aa/0x740
[  338.780805]  ? check_preemption_disabled+0x48/0x200
[  338.785823]  ? kasan_check_read+0x11/0x20
[  338.789968]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  338.795242]  ? rcu_softirq_qs+0x20/0x20
[  338.799260]  ? __fget+0x4d1/0x740
[  338.802717]  ? ksys_dup3+0x680/0x680
[  338.806432]  ? find_held_lock+0x36/0x1c0
[  338.810521]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  338.815456]  ? kvm_vcpu_block+0x1020/0x1020
[  338.819774]  do_vfs_ioctl+0x1de/0x1720
[  338.823659]  ? __lock_is_held+0xb5/0x140
[  338.827729]  ? ioctl_preallocate+0x300/0x300
[  338.832137]  ? __fget_light+0x2e9/0x430
[  338.836125]  ? fget_raw+0x20/0x20
[  338.839581]  ? __sb_end_write+0xd9/0x110
[  338.843643]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  338.849186]  ? fput+0x130/0x1a0
[  338.852466]  ? do_syscall_64+0x9a/0x820
[  338.856439]  ? do_syscall_64+0x9a/0x820
[  338.860411]  ? lockdep_hardirqs_on+0x421/0x5c0
[  338.864995]  ? security_file_ioctl+0x94/0xc0
[  338.869405]  ksys_ioctl+0xa9/0xd0
[  338.872858]  __x64_sys_ioctl+0x73/0xb0
[  338.876745]  do_syscall_64+0x1b9/0x820
[  338.880629]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  338.886023]  ? syscall_return_slowpath+0x5e0/0x5e0
[  338.890954]  ? trace_hardirqs_off+0x310/0x310
[  338.895448]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  338.900461]  ? recalc_sigpending_tsk+0x180/0x180
[  338.905213]  ? kasan_check_write+0x14/0x20
[  338.909452]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  338.914301]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  338.919490] RIP: 0033:0x457679
03:34:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff})

[  338.922683] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  338.941583] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  338.949292] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  338.956554] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  338.963817] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  338.971081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  338.978351] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000014
03:34:40 executing program 5 (fault-call:5 fault-nth:21):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff})

[  339.073054] FAULT_INJECTION: forcing a failure.
[  339.073054] name failslab, interval 1, probability 0, space 0, times 0
[  339.116016] CPU: 1 PID: 15330 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  339.124565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  339.133931] Call Trace:
[  339.136540]  dump_stack+0x1d3/0x2c4
[  339.140195]  ? dump_stack_print_info.cold.2+0x52/0x52
[  339.145404]  ? __kernel_text_address+0xd/0x40
[  339.149919]  ? unwind_get_return_address+0x61/0xa0
[  339.154876]  should_fail.cold.4+0xa/0x17
[  339.158961]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  339.164083]  ? save_stack+0xa9/0xd0
[  339.167727]  ? graph_lock+0x170/0x170
[  339.171531]  ? kasan_slab_alloc+0x12/0x20
[  339.175681]  ? kmem_cache_alloc+0x12e/0x730
[  339.180011]  ? mmu_topup_memory_caches+0xf7/0x390
[  339.184854]  ? kvm_mmu_load+0x21/0xfa0
[  339.188743]  ? vcpu_enter_guest+0x3e9d/0x6260
[  339.193238]  ? graph_lock+0x170/0x170
[  339.197036]  ? ksys_ioctl+0xa9/0xd0
[  339.200657]  ? __x64_sys_ioctl+0x73/0xb0
[  339.204716]  ? do_syscall_64+0x1b9/0x820
[  339.208773]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  339.214155]  ? find_held_lock+0x36/0x1c0
[  339.218222]  ? __lock_is_held+0xb5/0x140
[  339.222298]  ? ttwu_stat+0x5c0/0x5c0
[  339.226025]  __should_failslab+0x124/0x180
[  339.230260]  should_failslab+0x9/0x14
[  339.234054]  kmem_cache_alloc+0x2be/0x730
[  339.238206]  ? mmu_topup_memory_caches+0xf7/0x390
[  339.243050]  mmu_topup_memory_caches+0xf7/0x390
[  339.247724]  kvm_mmu_load+0x21/0xfa0
[  339.251435]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  339.256445]  ? kvm_get_time_scale+0x188/0x1e0
[  339.260950]  vcpu_enter_guest+0x3e9d/0x6260
[  339.265279]  ? emulator_read_emulated+0x50/0x50
[  339.269951]  ? vmx_vcpu_load+0xb06/0x1030
[  339.274102]  ? vmx_write_tsc_offset+0x670/0x670
[  339.278778]  ? graph_lock+0x170/0x170
[  339.282574]  ? lock_downgrade+0x900/0x900
[  339.286723]  ? check_preemption_disabled+0x48/0x200
[  339.291740]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  339.297272]  ? check_preemption_disabled+0x48/0x200
[  339.302300]  ? __lock_is_held+0xb5/0x140
[  339.306363]  ? lock_acquire+0x1ed/0x520
[  339.310336]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  339.315355]  ? lock_release+0x970/0x970
[  339.319323]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  339.324596]  ? kvm_arch_dev_ioctl+0x630/0x630
[  339.329085]  ? preempt_notifier_dec+0x20/0x20
[  339.333605]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  339.338442]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  339.343467]  kvm_vcpu_ioctl+0x5c8/0x1150
[  339.347528]  ? kvm_vcpu_block+0x1020/0x1020
[  339.351852]  ? find_held_lock+0x36/0x1c0
[  339.355919]  ? __fget+0x4aa/0x740
[  339.359371]  ? check_preemption_disabled+0x48/0x200
[  339.364390]  ? kasan_check_read+0x11/0x20
[  339.368534]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  339.373810]  ? rcu_softirq_qs+0x20/0x20
[  339.377796]  ? __fget+0x4d1/0x740
[  339.381262]  ? ksys_dup3+0x680/0x680
[  339.384974]  ? find_held_lock+0x36/0x1c0
[  339.389039]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  339.393974]  ? kvm_vcpu_block+0x1020/0x1020
[  339.398296]  do_vfs_ioctl+0x1de/0x1720
[  339.402184]  ? __lock_is_held+0xb5/0x140
[  339.406244]  ? ioctl_preallocate+0x300/0x300
[  339.410649]  ? __fget_light+0x2e9/0x430
[  339.414626]  ? fget_raw+0x20/0x20
[  339.418080]  ? __sb_end_write+0xd9/0x110
[  339.422156]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  339.427694]  ? fput+0x130/0x1a0
[  339.430973]  ? do_syscall_64+0x9a/0x820
[  339.434944]  ? do_syscall_64+0x9a/0x820
[  339.438919]  ? lockdep_hardirqs_on+0x421/0x5c0
[  339.443502]  ? security_file_ioctl+0x94/0xc0
[  339.447920]  ksys_ioctl+0xa9/0xd0
[  339.451374]  __x64_sys_ioctl+0x73/0xb0
[  339.455262]  do_syscall_64+0x1b9/0x820
[  339.459147]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  339.464511]  ? syscall_return_slowpath+0x5e0/0x5e0
[  339.469441]  ? trace_hardirqs_off+0x310/0x310
[  339.473936]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  339.478980]  ? recalc_sigpending_tsk+0x180/0x180
[  339.483735]  ? kasan_check_write+0x14/0x20
[  339.487974]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  339.492823]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  339.498010] RIP: 0033:0x457679
03:34:41 executing program 0:
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040), 0x4)
r1 = perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x70, 0xe38, 0x101, 0xfffffffffffeffff, 0x3, 0x0, 0x7ff, 0x10000, 0x2, 0x8, 0x1, 0x40, 0x4de, 0x7, 0x3, 0x2, 0x4, 0xffffffff7fffffff, 0x2, 0x1, 0x0, 0x4d, 0x1, 0x0, 0x4c4, 0x0, 0x2, 0x4, 0x3, 0x401, 0x1, 0x3, 0x3, 0x5, 0x2, 0x9, 0x3d578eef, 0x0, 0x3, 0x1, @perf_config_ext={0x6, 0xffffffffffffffe0}, 0x20000, 0x1ff800, 0x80000000, 0x3, 0x2, 0x1d49, 0x2}, 0xffffffffffffff9c, 0x9, 0xffffffffffffff9c, 0x8)
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x301000, 0x0)
r3 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={0xefe}, 0x8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$inet_sctp(0x2, 0x5, 0x84, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
r6 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r7, 0x84, 0xc, &(0x7f00000003c0), &(0x7f0000000400)=0x4)
socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000440)={<r8=>0xffffffffffffffff})
ppoll(&(0x7f00000002c0)=[{r0, 0x4000}, {r1}, {r2, 0x2000}, {r3, 0x9084}, {r4, 0x48}, {r5, 0x460}, {r6}, {r8, 0x4000}], 0x8, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340)={0x4}, 0x8)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:34:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
syz_open_pts(r0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x3e)

[  339.501202] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  339.520110] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  339.527820] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  339.535088] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  339.542370] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  339.549638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  339.556904] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000015
03:34:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff})

03:34:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f00000013c0)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x4800, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000380)={<r5=>0x0, 0x1000, "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"}, &(0x7f00000000c0)=0x1008)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000280)={'bcsh0\x00', 0x1810})
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000001c0)={r5, 0x0, 0x1ff}, &(0x7f0000000240)=0x8)
ioctl$TCXONC(r3, 0x540a, 0x0)

03:34:41 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000040))
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth0\x00', 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)

03:34:41 executing program 5 (fault-call:5 fault-nth:22):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  339.833129] FAULT_INJECTION: forcing a failure.
[  339.833129] name failslab, interval 1, probability 0, space 0, times 0
[  339.845254] CPU: 1 PID: 15372 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  339.853766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  339.863123] Call Trace:
[  339.863150]  dump_stack+0x1d3/0x2c4
[  339.863173]  ? dump_stack_print_info.cold.2+0x52/0x52
[  339.863193]  ? __kernel_text_address+0xd/0x40
[  339.863211]  ? unwind_get_return_address+0x61/0xa0
[  339.863233]  should_fail.cold.4+0xa/0x17
[  339.869437]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  339.869459]  ? save_stack+0xa9/0xd0
[  339.869479]  ? graph_lock+0x170/0x170
[  339.900651]  ? kasan_slab_alloc+0x12/0x20
[  339.904842]  ? kmem_cache_alloc+0x12e/0x730
[  339.909170]  ? mmu_topup_memory_caches+0xf7/0x390
[  339.914013]  ? kvm_mmu_load+0x21/0xfa0
[  339.917909]  ? vcpu_enter_guest+0x3e9d/0x6260
[  339.922410]  ? graph_lock+0x170/0x170
[  339.926210]  ? ksys_ioctl+0xa9/0xd0
[  339.929833]  ? __x64_sys_ioctl+0x73/0xb0
[  339.933888]  ? do_syscall_64+0x1b9/0x820
[  339.937949]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  339.943324]  ? find_held_lock+0x36/0x1c0
[  339.947388]  ? __lock_is_held+0xb5/0x140
[  339.951461]  ? ttwu_stat+0x5c0/0x5c0
[  339.955184]  __should_failslab+0x124/0x180
[  339.959423]  should_failslab+0x9/0x14
[  339.963222]  kmem_cache_alloc+0x2be/0x730
[  339.967368]  ? vmx_flush_tlb_gva+0x380/0x380
[  339.971781]  ? mark_held_locks+0xc7/0x130
[  339.975925]  ? mmu_topup_memory_caches+0xf7/0x390
[  339.980769]  mmu_topup_memory_caches+0xf7/0x390
[  339.985446]  kvm_mmu_load+0x21/0xfa0
[  339.989163]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  339.994177]  ? kvm_get_time_scale+0x188/0x1e0
[  339.998710]  vcpu_enter_guest+0x3e9d/0x6260
[  340.003061]  ? emulator_read_emulated+0x50/0x50
[  340.007738]  ? vmx_vcpu_load+0xb06/0x1030
[  340.011892]  ? vmx_write_tsc_offset+0x670/0x670
[  340.016595]  ? graph_lock+0x170/0x170
[  340.020397]  ? lock_downgrade+0x900/0x900
[  340.024548]  ? check_preemption_disabled+0x48/0x200
[  340.029599]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  340.035175]  ? check_preemption_disabled+0x48/0x200
[  340.040197]  ? __lock_is_held+0xb5/0x140
[  340.044262]  ? lock_acquire+0x1ed/0x520
[  340.048232]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  340.053251]  ? lock_release+0x970/0x970
[  340.057221]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  340.062494]  ? kvm_arch_dev_ioctl+0x630/0x630
[  340.066986]  ? preempt_notifier_dec+0x20/0x20
[  340.071491]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  340.076331]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  340.081362]  kvm_vcpu_ioctl+0x5c8/0x1150
[  340.085422]  ? kvm_vcpu_block+0x1020/0x1020
[  340.089748]  ? find_held_lock+0x36/0x1c0
[  340.093814]  ? __fget+0x4aa/0x740
[  340.097270]  ? check_preemption_disabled+0x48/0x200
[  340.102287]  ? kasan_check_read+0x11/0x20
[  340.106431]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  340.111708]  ? rcu_softirq_qs+0x20/0x20
[  340.115691]  ? __fget+0x4d1/0x740
[  340.119244]  ? ksys_dup3+0x680/0x680
[  340.122958]  ? find_held_lock+0x36/0x1c0
[  340.127022]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  340.131969]  ? kvm_vcpu_block+0x1020/0x1020
[  340.136289]  do_vfs_ioctl+0x1de/0x1720
[  340.140174]  ? __lock_is_held+0xb5/0x140
[  340.144236]  ? ioctl_preallocate+0x300/0x300
[  340.148641]  ? __fget_light+0x2e9/0x430
[  340.152620]  ? fget_raw+0x20/0x20
[  340.156100]  ? __sb_end_write+0xd9/0x110
[  340.160168]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  340.165700]  ? fput+0x130/0x1a0
[  340.168976]  ? do_syscall_64+0x9a/0x820
[  340.172946]  ? do_syscall_64+0x9a/0x820
[  340.176916]  ? lockdep_hardirqs_on+0x421/0x5c0
[  340.181498]  ? security_file_ioctl+0x94/0xc0
[  340.185909]  ksys_ioctl+0xa9/0xd0
[  340.189415]  __x64_sys_ioctl+0x73/0xb0
[  340.193299]  do_syscall_64+0x1b9/0x820
[  340.197186]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  340.202550]  ? syscall_return_slowpath+0x5e0/0x5e0
[  340.207479]  ? trace_hardirqs_off+0x310/0x310
[  340.211974]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  340.216985]  ? recalc_sigpending_tsk+0x180/0x180
[  340.221736]  ? kasan_check_write+0x14/0x20
[  340.225973]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  340.230822]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  340.236007] RIP: 0033:0x457679
[  340.239210] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  340.258137] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  340.265844] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  340.273108] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:34:41 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
socket$bt_rfcomm(0x1f, 0xb, 0x3)

03:34:42 executing program 5 (fault-call:5 fault-nth:23):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  340.280373] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  340.287636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  340.294903] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000016
[  340.363841] FAULT_INJECTION: forcing a failure.
[  340.363841] name failslab, interval 1, probability 0, space 0, times 0
[  340.375801] CPU: 0 PID: 15386 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  340.384293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  340.393638] Call Trace:
[  340.396237]  dump_stack+0x1d3/0x2c4
[  340.399892]  ? dump_stack_print_info.cold.2+0x52/0x52
[  340.405097]  ? __kernel_text_address+0xd/0x40
[  340.409597]  ? unwind_get_return_address+0x61/0xa0
[  340.414543]  should_fail.cold.4+0xa/0x17
[  340.418605]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  340.423702]  ? save_stack+0xa9/0xd0
[  340.427323]  ? graph_lock+0x170/0x170
[  340.431118]  ? kasan_slab_alloc+0x12/0x20
[  340.435257]  ? kmem_cache_alloc+0x12e/0x730
[  340.439613]  ? mmu_topup_memory_caches+0xf7/0x390
[  340.444446]  ? kvm_mmu_load+0x21/0xfa0
[  340.448325]  ? vcpu_enter_guest+0x3e9d/0x6260
[  340.452813]  ? graph_lock+0x170/0x170
[  340.456607]  ? ksys_ioctl+0xa9/0xd0
[  340.460222]  ? __x64_sys_ioctl+0x73/0xb0
[  340.464273]  ? do_syscall_64+0x1b9/0x820
[  340.468330]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  340.473695]  ? find_held_lock+0x36/0x1c0
[  340.477753]  ? __lock_is_held+0xb5/0x140
[  340.481815]  ? ttwu_stat+0x5c0/0x5c0
[  340.485529]  __should_failslab+0x124/0x180
[  340.490244]  should_failslab+0x9/0x14
[  340.494073]  kmem_cache_alloc+0x2be/0x730
[  340.498221]  ? mmu_topup_memory_caches+0xf7/0x390
[  340.503059]  mmu_topup_memory_caches+0xf7/0x390
[  340.507728]  kvm_mmu_load+0x21/0xfa0
[  340.511446]  vcpu_enter_guest+0x3e9d/0x6260
[  340.515770]  ? emulator_read_emulated+0x50/0x50
[  340.520439]  ? vmx_vcpu_load+0xb06/0x1030
[  340.524625]  ? vmx_write_tsc_offset+0x670/0x670
[  340.529291]  ? graph_lock+0x170/0x170
[  340.533088]  ? lock_downgrade+0x900/0x900
[  340.537233]  ? check_preemption_disabled+0x48/0x200
[  340.542245]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  340.547776]  ? check_preemption_disabled+0x48/0x200
[  340.552791]  ? __lock_is_held+0xb5/0x140
[  340.556849]  ? lock_acquire+0x1ed/0x520
[  340.560817]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  340.565831]  ? lock_release+0x970/0x970
[  340.569799]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  340.575077]  ? kvm_arch_dev_ioctl+0x630/0x630
[  340.579568]  ? preempt_notifier_dec+0x20/0x20
[  340.584068]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  340.588906]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  340.593928]  kvm_vcpu_ioctl+0x5c8/0x1150
[  340.597987]  ? kvm_vcpu_block+0x1020/0x1020
[  340.602320]  ? find_held_lock+0x36/0x1c0
[  340.606413]  ? __fget+0x4aa/0x740
[  340.609867]  ? check_preemption_disabled+0x48/0x200
[  340.614880]  ? kasan_check_read+0x11/0x20
[  340.619034]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  340.624345]  ? rcu_softirq_qs+0x20/0x20
[  340.628321]  ? __fget+0x4d1/0x740
[  340.631771]  ? ksys_dup3+0x680/0x680
[  340.635480]  ? find_held_lock+0x36/0x1c0
[  340.639537]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  340.644498]  ? kvm_vcpu_block+0x1020/0x1020
[  340.649163]  do_vfs_ioctl+0x1de/0x1720
[  340.653042]  ? __lock_is_held+0xb5/0x140
[  340.657105]  ? ioctl_preallocate+0x300/0x300
[  340.661504]  ? __fget_light+0x2e9/0x430
[  340.665473]  ? fget_raw+0x20/0x20
[  340.668923]  ? __sb_end_write+0xd9/0x110
[  340.672981]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  340.678521]  ? fput+0x130/0x1a0
[  340.681793]  ? do_syscall_64+0x9a/0x820
[  340.685758]  ? do_syscall_64+0x9a/0x820
[  340.689727]  ? lockdep_hardirqs_on+0x421/0x5c0
[  340.694306]  ? security_file_ioctl+0x94/0xc0
[  340.698713]  ksys_ioctl+0xa9/0xd0
[  340.702162]  __x64_sys_ioctl+0x73/0xb0
[  340.706051]  do_syscall_64+0x1b9/0x820
[  340.709930]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  340.715288]  ? syscall_return_slowpath+0x5e0/0x5e0
[  340.720214]  ? trace_hardirqs_off+0x310/0x310
[  340.724705]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  340.729713]  ? recalc_sigpending_tsk+0x180/0x180
[  340.734462]  ? kasan_check_write+0x14/0x20
[  340.738739]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  340.743582]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  340.748760] RIP: 0033:0x457679
[  340.751949] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  340.770839] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  340.778542] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  340.785805] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  340.793072] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  340.800331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  340.807589] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000017
03:34:42 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff})

03:34:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
r2 = memfd_create(&(0x7f0000000080)='/dev/ptmx\x00', 0x7)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f00000000c0)={<r3=>0x0, 0xb34}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000380)={r3, 0xc8, "d2e4056c82fa33f8de093931c744670238d69c9c7a20ef59f530d0913207bfd84168658714b74d3ce812a2656b0f6bd969cd3a5372bbc5729af43f1f0f845df48020200a88fbbc881c3d92a15b8f286108854d4eb364472e7bbb2cecd16fa165fe9fdaa2e9372bfaf0dbcb92a5b62b6cd83d09021bba67e72d894c15cc0238d1879cef807f45c6f9e4589c5d3c6a92bfda2324e2d41d4889000344d81b8bf882c75bf368a9e55cc3d78c97756710c4c89d0f9ccb4df62e30a2716034c3b16a62c5de69e1aa8a3a14"}, &(0x7f0000000240)=0xd0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:42 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0xf, 0x0)
getsockopt$inet_int(r0, 0x0, 0x36, &(0x7f0000000140), &(0x7f0000000200)=0x4)
clock_settime(0x0, &(0x7f0000000840))
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @multicast1}, &(0x7f00000000c0)=0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000100)={'team0\x00', r2})

03:34:42 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x40c002, 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0xffffffff00000000, 0x8204, 0xffffffffffffffff, 0x5, <r2=>0x0}, &(0x7f00000001c0)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000240)={r2, 0x0, 0x15, "20c09ce8c90a664885826b318bb9f56f2ef352b983"}, 0x1d)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000000)={r3, r0})
ppoll(&(0x7f00000002c0)=[{r3}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:34:42 executing program 5 (fault-call:5 fault-nth:24):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:34:42 executing program 2:
r0 = syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x40, 0x2200)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000000c0)={0x0, @aes128, 0x0, "88b811f33744520d"})
r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x4ddd, @ipv4, 0x9e0}, 0x1c)

[  341.017503] FAULT_INJECTION: forcing a failure.
[  341.017503] name failslab, interval 1, probability 0, space 0, times 0
[  341.039581] CPU: 1 PID: 15408 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  341.048096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  341.057440] Call Trace:
[  341.060036]  dump_stack+0x1d3/0x2c4
03:34:43 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x3, &(0x7f0000000080))
clock_settime(0x0, &(0x7f0000000840))
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0)
write$FUSE_POLL(r0, &(0x7f00000000c0)={0x18, 0xffffffffffffffda, 0x7, {0x3}}, 0x18)

[  341.063691]  ? dump_stack_print_info.cold.2+0x52/0x52
[  341.068903]  ? __kernel_text_address+0xd/0x40
[  341.073410]  ? unwind_get_return_address+0x61/0xa0
[  341.078355]  should_fail.cold.4+0xa/0x17
[  341.082436]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  341.087555]  ? save_stack+0xa9/0xd0
[  341.091199]  ? graph_lock+0x170/0x170
[  341.095008]  ? kasan_slab_alloc+0x12/0x20
[  341.095019]  ? kmem_cache_alloc+0x12e/0x730
[  341.095037]  ? mmu_topup_memory_caches+0xf7/0x390
[  341.103487]  ? kvm_mmu_load+0x21/0xfa0
[  341.103504]  ? vcpu_enter_guest+0x3e9d/0x6260
[  341.103527]  ? graph_lock+0x170/0x170
[  341.103543]  ? ksys_ioctl+0xa9/0xd0
[  341.103557]  ? __x64_sys_ioctl+0x73/0xb0
[  341.128223]  ? do_syscall_64+0x1b9/0x820
[  341.132291]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  341.137665]  ? find_held_lock+0x36/0x1c0
[  341.141746]  ? __lock_is_held+0xb5/0x140
[  341.145813]  ? ttwu_stat+0x5c0/0x5c0
[  341.149528]  __should_failslab+0x124/0x180
[  341.153776]  should_failslab+0x9/0x14
[  341.157586]  kmem_cache_alloc+0x2be/0x730
[  341.161737]  ? vmx_flush_tlb_gva+0x380/0x380
[  341.166142]  ? print_usage_bug+0xc0/0xc0
[  341.170202]  ? d_splice_alias+0x7c9/0x11d0
[  341.174435]  ? mmu_topup_memory_caches+0xf7/0x390
[  341.179278]  mmu_topup_memory_caches+0xf7/0x390
[  341.183961]  kvm_mmu_load+0x21/0xfa0
[  341.187675]  vcpu_enter_guest+0x3e9d/0x6260
[  341.192004]  ? emulator_read_emulated+0x50/0x50
[  341.196672]  ? vmx_vcpu_load+0xb06/0x1030
[  341.200817]  ? vmx_write_tsc_offset+0x670/0x670
[  341.205478]  ? graph_lock+0x170/0x170
[  341.209275]  ? lock_downgrade+0x900/0x900
[  341.213416]  ? check_preemption_disabled+0x48/0x200
[  341.218430]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  341.223972]  ? check_preemption_disabled+0x48/0x200
[  341.229030]  ? __lock_is_held+0xb5/0x140
[  341.233087]  ? lock_acquire+0x1ed/0x520
[  341.237056]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  341.242067]  ? lock_release+0x970/0x970
[  341.246036]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  341.251305]  ? kvm_arch_dev_ioctl+0x630/0x630
[  341.255795]  ? preempt_notifier_dec+0x20/0x20
[  341.260293]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  341.265127]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  341.270147]  kvm_vcpu_ioctl+0x5c8/0x1150
[  341.274206]  ? kvm_vcpu_block+0x1020/0x1020
[  341.278525]  ? find_held_lock+0x36/0x1c0
[  341.282585]  ? __fget+0x4aa/0x740
[  341.286034]  ? check_preemption_disabled+0x48/0x200
[  341.291046]  ? kasan_check_read+0x11/0x20
[  341.295189]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  341.300457]  ? rcu_softirq_qs+0x20/0x20
[  341.304464]  ? __fget+0x4d1/0x740
[  341.307922]  ? ksys_dup3+0x680/0x680
[  341.311645]  ? find_held_lock+0x36/0x1c0
[  341.315701]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  341.320630]  ? kvm_vcpu_block+0x1020/0x1020
[  341.324960]  do_vfs_ioctl+0x1de/0x1720
[  341.328843]  ? __lock_is_held+0xb5/0x140
[  341.332899]  ? ioctl_preallocate+0x300/0x300
[  341.337306]  ? __fget_light+0x2e9/0x430
[  341.341277]  ? fget_raw+0x20/0x20
[  341.344726]  ? __sb_end_write+0xd9/0x110
[  341.348788]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  341.354319]  ? fput+0x130/0x1a0
[  341.357591]  ? do_syscall_64+0x9a/0x820
[  341.361557]  ? do_syscall_64+0x9a/0x820
[  341.365524]  ? lockdep_hardirqs_on+0x421/0x5c0
[  341.370103]  ? security_file_ioctl+0x94/0xc0
[  341.374512]  ksys_ioctl+0xa9/0xd0
[  341.377978]  __x64_sys_ioctl+0x73/0xb0
[  341.381862]  do_syscall_64+0x1b9/0x820
[  341.385745]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  341.391101]  ? syscall_return_slowpath+0x5e0/0x5e0
[  341.396024]  ? trace_hardirqs_off+0x310/0x310
[  341.400515]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  341.405528]  ? recalc_sigpending_tsk+0x180/0x180
[  341.410279]  ? kasan_check_write+0x14/0x20
[  341.414512]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  341.419351]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  341.424534] RIP: 0033:0x457679
[  341.427724] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  341.446618] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  341.454321] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  341.461583] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:34:43 executing program 5 (fault-call:5 fault-nth:25):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  341.468846] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  341.476105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  341.483366] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000018
03:34:43 executing program 1:
r0 = dup(0xffffffffffffff9c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)=',securitywlan0\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f00006a4000)={@broadcast, @remote, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @igmp={0x14, 0x0, 0x0, @empty, "000000081e84d84b2db57b8a0af02ad8c4fda114"}}}}}, &(0x7f0000aed000)={0x0, 0x2000000000000004, [0x0, 0x419]})
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x40000, 0x0)
setsockopt$inet6_dccp_buf(r1, 0x21, 0x80, &(0x7f0000000040)="bb353f1341e0ad3a516702e5846bb8c5cbb37a8ef5fddf327470ae374479542dfc0139a2d4357666eb5e878dbe093b2cd9df7e4d0a92a504a1751fc18aa1db430e0a5a595d6b28a1f25577ce3befd061274d3b1381ebceadbba9c7b97b5b4e49ce0edec028c4167b621e4d7bf367770c13f43848f90297707921260daa10db3f021fdd46678c8d722b390bea440426fa5a68c91acec31297", 0x98)

03:34:43 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x47)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x8000, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r1, 0x4004ae8b, &(0x7f0000000040)={0xde, "0ee521add7016f88f618bff7cf1097ed911d5d6696e79c9672bec8888da3749304ea2f45fa161a66fef9383127782f3f07deb5c5c187de6bb937dab817d7c06d7e62d73f3392cba189ef595b7328008ce24018603ed9fc1fee46224ca8d5d8f4554ef77d6a9858202d1e9db72736b27d43642039b5a7f8aec36314eed71655c247692ac986d266f877d07eb0329d64ca790c4b36b19620cb4ca488e68ee06bf0916951a36573b98888e1d9f45b20c7511639d54f4b49cebead900e34f4e240b5c7c270c4e51b94312af03f0250b72deacabe590c01f8a5445c36c3d98f58"})
ioctl(r0, 0x8912, &(0x7f0000000280)="153f6234488dd25d766070")
r2 = socket(0x40000000002, 0x3, 0x39)
openat$cgroup_type(r1, &(0x7f0000000140)='cgroup.type\x00', 0x2, 0x0)
sendto$unix(r2, &(0x7f00000001c0), 0x0, 0x0, &(0x7f0000000d00)=@abs, 0x6e)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, r2, 0x0)
ioctl$sock_bt(r2, 0x541b, &(0x7f0000000040))

[  341.589558] FAULT_INJECTION: forcing a failure.
[  341.589558] name failslab, interval 1, probability 0, space 0, times 0
[  341.598646] raw_sendmsg: syz-executor2 forgot to set AF_INET. Fix it!
[  341.628828] CPU: 1 PID: 15428 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  341.637381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  341.646733] Call Trace:
[  341.649343]  dump_stack+0x1d3/0x2c4
[  341.652993]  ? dump_stack_print_info.cold.2+0x52/0x52
[  341.658735]  ? __kernel_text_address+0xd/0x40
[  341.663241]  ? unwind_get_return_address+0x61/0xa0
[  341.668194]  should_fail.cold.4+0xa/0x17
[  341.672268]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  341.677386]  ? save_stack+0xa9/0xd0
[  341.681023]  ? graph_lock+0x170/0x170
[  341.684829]  ? kasan_slab_alloc+0x12/0x20
[  341.688974]  ? kmem_cache_alloc+0x12e/0x730
[  341.693285]  ? mmu_topup_memory_caches+0xf7/0x390
[  341.698118]  ? kvm_mmu_load+0x21/0xfa0
[  341.702000]  ? vcpu_enter_guest+0x3e9d/0x6260
[  341.706489]  ? graph_lock+0x170/0x170
[  341.710280]  ? ksys_ioctl+0xa9/0xd0
[  341.713912]  ? __x64_sys_ioctl+0x73/0xb0
[  341.717967]  ? do_syscall_64+0x1b9/0x820
[  341.722033]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  341.727401]  ? find_held_lock+0x36/0x1c0
[  341.731463]  ? __lock_is_held+0xb5/0x140
[  341.735627]  ? ttwu_stat+0x5c0/0x5c0
[  341.739368]  __should_failslab+0x124/0x180
[  341.743602]  should_failslab+0x9/0x14
[  341.747394]  kmem_cache_alloc+0x2be/0x730
[  341.751539]  ? mmu_topup_memory_caches+0xf7/0x390
[  341.756373]  mmu_topup_memory_caches+0xf7/0x390
[  341.761036]  kvm_mmu_load+0x21/0xfa0
[  341.764746]  vcpu_enter_guest+0x3e9d/0x6260
[  341.769063]  ? emulator_read_emulated+0x50/0x50
[  341.773726]  ? vmx_vcpu_load+0xb06/0x1030
[  341.777866]  ? vmx_write_tsc_offset+0x670/0x670
[  341.782543]  ? graph_lock+0x170/0x170
[  341.786346]  ? lock_downgrade+0x900/0x900
[  341.790493]  ? check_preemption_disabled+0x48/0x200
[  341.795504]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  341.801040]  ? check_preemption_disabled+0x48/0x200
[  341.806068]  ? __lock_is_held+0xb5/0x140
[  341.810141]  ? lock_acquire+0x1ed/0x520
[  341.814115]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  341.819140]  ? lock_release+0x970/0x970
[  341.823184]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  341.828459]  ? kvm_arch_dev_ioctl+0x630/0x630
[  341.832947]  ? preempt_notifier_dec+0x20/0x20
[  341.837446]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  341.842279]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  341.847296]  kvm_vcpu_ioctl+0x5c8/0x1150
[  341.851358]  ? kvm_vcpu_block+0x1020/0x1020
[  341.855676]  ? find_held_lock+0x36/0x1c0
[  341.859743]  ? __fget+0x4aa/0x740
[  341.863218]  ? check_preemption_disabled+0x48/0x200
[  341.868238]  ? kasan_check_read+0x11/0x20
[  341.872375]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  341.877644]  ? rcu_softirq_qs+0x20/0x20
[  341.881619]  ? __fget+0x4d1/0x740
[  341.885070]  ? ksys_dup3+0x680/0x680
[  341.888777]  ? find_held_lock+0x36/0x1c0
[  341.892835]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  341.897760]  ? kvm_vcpu_block+0x1020/0x1020
[  341.902076]  do_vfs_ioctl+0x1de/0x1720
[  341.905969]  ? __lock_is_held+0xb5/0x140
[  341.910035]  ? ioctl_preallocate+0x300/0x300
[  341.914440]  ? __fget_light+0x2e9/0x430
[  341.918416]  ? fget_raw+0x20/0x20
[  341.921901]  ? __sb_end_write+0xd9/0x110
[  341.925968]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  341.931559]  ? fput+0x130/0x1a0
[  341.934836]  ? do_syscall_64+0x9a/0x820
[  341.938813]  ? do_syscall_64+0x9a/0x820
[  341.942789]  ? lockdep_hardirqs_on+0x421/0x5c0
[  341.947362]  ? security_file_ioctl+0x94/0xc0
[  341.951765]  ksys_ioctl+0xa9/0xd0
[  341.955211]  __x64_sys_ioctl+0x73/0xb0
[  341.959101]  do_syscall_64+0x1b9/0x820
[  341.962999]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  341.968352]  ? syscall_return_slowpath+0x5e0/0x5e0
[  341.973356]  ? trace_hardirqs_off+0x310/0x310
[  341.977858]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  341.982907]  ? recalc_sigpending_tsk+0x180/0x180
[  341.987662]  ? kasan_check_write+0x14/0x20
[  341.991913]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  341.996760]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  342.001938] RIP: 0033:0x457679
[  342.005194] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  342.024083] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.031783] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
03:34:43 executing program 2:
mkdir(&(0x7f00000002c0)='./control\x00', 0x0)
chmod(&(0x7f00000000c0)='./control\x00', 0x9c32f69e6caa24eb)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x2c7c9588, 0x280000)
pipe(&(0x7f0000000240))
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000280)='/dev/full\x00', 0x4a100, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x6)
stat(&(0x7f0000000080)='./control\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
chown(&(0x7f0000000180)='./control\x00', 0x0, r1)
open(&(0x7f0000000000)='./control\x00', 0xd40beb2474dfd227, 0xf6ffffff)

03:34:44 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xff, 0x400)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x1000, @mcast1, 0x1}}, 0x6, 0x4, 0xeb04, 0xdf, 0x10}, &(0x7f0000000140)=0x98)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000200)={r1, 0x98, "78c85a66e3a527ee13c59968c4f7b709235e9a8a72993d9be896cb7763d8333876850699da6ffcfe4a00524cc6f465457397aa9efb6881098bb41dd833cf2a8d1b36b7e265e6942327b746d73d8409c079f270a8e0afe45b036db559bc34ac16a9033fcb5c4caa5e8cb71528b238f123ec6dcafb3d16d1f7d7d8775d4568c0ab602b92598fbdcf33e6a50d2c1cc44fac0567ec5b6f8037b8"}, &(0x7f00000002c0)=0xa0)
clock_settime(0x0, &(0x7f0000000840)={0x77359400})

03:34:44 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x800000000000004)
r1 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x100, 0x400200)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000080)={0x1, 0x5, 0x5, 0x9, 0x6, 0x0, 0xfa26}, 0xc)
ioctl(r0, 0x8912, &(0x7f0000000000)="153f6234488dd25d766070")
r2 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f00000001c0)}}, &(0x7f0000000180))
r3 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
read(r3, &(0x7f00000002c0)=""/128, 0x80)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
tkill(r2, 0x1004000000016)

[  342.039043] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  342.046303] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  342.053560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  342.060821] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000019
03:34:44 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x80003)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000000c0)=0xab)
ppoll(&(0x7f0000000080)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200, 0x0)
write$FUSE_LSEEK(r3, &(0x7f0000000240)={0x18, 0x0, 0x4, {0x80000000}}, 0x18)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000280)=0x2, 0x4)
ioctl(r1, 0xffffffffffffff7f, &(0x7f0000000380)="fd58138d72b1919f8d62e5490efa3ee6f06b0674aede100bb98b07c89195485ef8fe73a4d4c1dc274416bc0add4339dbb2a1456fe511a27554ddb61485f1280d2d910747e543f0901da2090b4ac1130a5a1afe3fce03694e54a63c07835f811d06dd818d29613c443aa6102fb85a496116985589cd8d31a58ff9283834308c52d8f2bb308b9acf60a2571b061077b848d1653fba5c83f2ffc580ec8955797ebd33e367a8962d0ceb8a867824a2b8ed49932654253d74a5a488214fa7647f0038e98e61e8aa1ed059bbd4557b8145a61b443399ac3634403f8efdecad46966d30")

03:34:44 executing program 5 (fault-call:5 fault-nth:26):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:20 executing program 2:
r0 = socket$inet(0x2, 0x0, 0x1)
getsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f00000000c0)=""/230, &(0x7f0000000000)=0xe6)
r1 = socket$inet6(0x10, 0x80000, 0x9)
getsockopt$sock_int(r1, 0x1, 0x13, &(0x7f0000000040), &(0x7f0000000080)=0xfffffee1)

03:33:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x40000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000080)={{0xffffffffffffffff, 0x3, 0x9, 0x3, 0x9}, 0x4, 0x5})

[  342.239001] FAULT_INJECTION: forcing a failure.
[  342.239001] name failslab, interval 1, probability 0, space 0, times 0
[  342.251237] CPU: 1 PID: 15459 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  342.259743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  342.269095] Call Trace:
[  342.269120]  dump_stack+0x1d3/0x2c4
[  342.269143]  ? dump_stack_print_info.cold.2+0x52/0x52
[  342.269162]  ? __kernel_text_address+0xd/0x40
[  342.269183]  ? unwind_get_return_address+0x61/0xa0
[  342.269206]  should_fail.cold.4+0xa/0x17
[  342.269224]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  342.269242]  ? save_stack+0xa9/0xd0
[  342.302800]  ? graph_lock+0x170/0x170
[  342.306600]  ? kasan_slab_alloc+0x12/0x20
[  342.310745]  ? kmem_cache_alloc+0x12e/0x730
[  342.315067]  ? mmu_topup_memory_caches+0xf7/0x390
[  342.319903]  ? kvm_mmu_load+0x21/0xfa0
[  342.323787]  ? vcpu_enter_guest+0x3e9d/0x6260
[  342.328282]  ? graph_lock+0x170/0x170
[  342.332081]  ? ksys_ioctl+0xa9/0xd0
[  342.335701]  ? __x64_sys_ioctl+0x73/0xb0
[  342.339757]  ? do_syscall_64+0x1b9/0x820
[  342.343814]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  342.349194]  ? find_held_lock+0x36/0x1c0
[  342.353260]  ? __lock_is_held+0xb5/0x140
[  342.357330]  ? ttwu_stat+0x5c0/0x5c0
[  342.361056]  __should_failslab+0x124/0x180
[  342.365294]  should_failslab+0x9/0x14
[  342.369090]  kmem_cache_alloc+0x2be/0x730
[  342.373235]  ? vmx_flush_tlb_gva+0x380/0x380
[  342.377641]  ? print_usage_bug+0xc0/0xc0
[  342.381697]  ? d_splice_alias+0x7c9/0x11d0
[  342.385935]  ? mmu_topup_memory_caches+0xf7/0x390
[  342.390782]  mmu_topup_memory_caches+0xf7/0x390
[  342.395451]  kvm_mmu_load+0x21/0xfa0
[  342.399175]  vcpu_enter_guest+0x3e9d/0x6260
[  342.403507]  ? emulator_read_emulated+0x50/0x50
[  342.408179]  ? vmx_vcpu_load+0xb06/0x1030
[  342.412330]  ? vmx_write_tsc_offset+0x670/0x670
[  342.416999]  ? graph_lock+0x170/0x170
[  342.420798]  ? lock_downgrade+0x900/0x900
[  342.424954]  ? check_preemption_disabled+0x48/0x200
[  342.429975]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  342.435512]  ? check_preemption_disabled+0x48/0x200
[  342.440534]  ? __lock_is_held+0xb5/0x140
[  342.444599]  ? lock_acquire+0x1ed/0x520
[  342.448571]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  342.453590]  ? lock_release+0x970/0x970
[  342.457560]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  342.462848]  ? kvm_arch_dev_ioctl+0x630/0x630
[  342.467338]  ? preempt_notifier_dec+0x20/0x20
[  342.471854]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  342.476692]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  342.481718]  kvm_vcpu_ioctl+0x5c8/0x1150
[  342.485783]  ? kvm_vcpu_block+0x1020/0x1020
[  342.490450]  ? find_held_lock+0x36/0x1c0
[  342.494519]  ? __fget+0x4aa/0x740
[  342.497976]  ? check_preemption_disabled+0x48/0x200
[  342.502994]  ? kasan_check_read+0x11/0x20
[  342.507141]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  342.512415]  ? rcu_softirq_qs+0x20/0x20
[  342.516402]  ? __fget+0x4d1/0x740
[  342.519879]  ? ksys_dup3+0x680/0x680
[  342.523593]  ? find_held_lock+0x36/0x1c0
[  342.527661]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  342.532595]  ? kvm_vcpu_block+0x1020/0x1020
[  342.536918]  do_vfs_ioctl+0x1de/0x1720
[  342.540804]  ? __lock_is_held+0xb5/0x140
[  342.544885]  ? ioctl_preallocate+0x300/0x300
[  342.549291]  ? __fget_light+0x2e9/0x430
[  342.553265]  ? fget_raw+0x20/0x20
[  342.556719]  ? __sb_end_write+0xd9/0x110
[  342.560783]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  342.566329]  ? fput+0x130/0x1a0
[  342.569610]  ? do_syscall_64+0x9a/0x820
[  342.573584]  ? do_syscall_64+0x9a/0x820
[  342.577557]  ? lockdep_hardirqs_on+0x421/0x5c0
[  342.582142]  ? security_file_ioctl+0x94/0xc0
[  342.586552]  ksys_ioctl+0xa9/0xd0
[  342.590006]  __x64_sys_ioctl+0x73/0xb0
[  342.593893]  do_syscall_64+0x1b9/0x820
[  342.597774]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  342.603135]  ? syscall_return_slowpath+0x5e0/0x5e0
[  342.608069]  ? trace_hardirqs_off+0x310/0x310
[  342.612564]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  342.617579]  ? recalc_sigpending_tsk+0x180/0x180
[  342.622333]  ? kasan_check_write+0x14/0x20
[  342.626569]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  342.631418]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  342.636603] RIP: 0033:0x457679
[  342.639795] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  342.659206] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  342.666916] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  342.674182] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  342.681447] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
03:33:20 executing program 5 (fault-call:5 fault-nth:27):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  342.688712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  342.695977] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001a
03:33:20 executing program 2:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xff, 0x400)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x1000, @mcast1, 0x1}}, 0x6, 0x4, 0xeb04, 0xdf, 0x10}, &(0x7f0000000140)=0x98)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000200)={r1, 0x98, "78c85a66e3a527ee13c59968c4f7b709235e9a8a72993d9be896cb7763d8333876850699da6ffcfe4a00524cc6f465457397aa9efb6881098bb41dd833cf2a8d1b36b7e265e6942327b746d73d8409c079f270a8e0afe45b036db559bc34ac16a9033fcb5c4caa5e8cb71528b238f123ec6dcafb3d16d1f7d7d8775d4568c0ab602b92598fbdcf33e6a50d2c1cc44fac0567ec5b6f8037b8"}, &(0x7f00000002c0)=0xa0)
clock_settime(0x0, &(0x7f0000000840)={0x77359400})

03:33:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x4, 0x80000, 0xfffffffffffffffe, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000240)={0x8, &(0x7f0000000200)=[{0xe53, 0x6}, {0x6, 0x4}, {0x5, 0x5}, {0x8695, 0x9}, {0x9, 0x1}, {0x6, 0x9}, {0x100000001, 0x3}, {0xe8, 0xbbc7}]})
ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000280)=""/86)
ioctl$DRM_IOCTL_AGP_ENABLE(r1, 0x40086432, &(0x7f0000000300)=0xb3)
clock_settime(0x0, &(0x7f0000000840))
clone(0x800000, &(0x7f0000000040)="624fc9162ca088c0ea3497847a4d26c620d4173747fd9b33d2682a716a6862e92fbb624502656727d658c2d2a252dee75684fccaa3ea3e51eb9eba7affa26668f8da09e6182cffdba8fe1aaaad41", &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000880)="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")

03:33:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
accept4$inet6(0xffffffffffffff9c, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f00000001c0)=0x1c, 0x80000)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x50000, 0x0)
read(r1, &(0x7f0000000080)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

[  342.824831] FAULT_INJECTION: forcing a failure.
[  342.824831] name failslab, interval 1, probability 0, space 0, times 0
[  342.844848] CPU: 1 PID: 15478 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  342.853378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  342.862739] Call Trace:
[  342.865339]  dump_stack+0x1d3/0x2c4
[  342.865368]  ? dump_stack_print_info.cold.2+0x52/0x52
[  342.865392]  ? __kernel_text_address+0xd/0x40
[  342.874197]  ? unwind_get_return_address+0x61/0xa0
[  342.874226]  should_fail.cold.4+0xa/0x17
[  342.874247]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  342.874267]  ? save_stack+0xa9/0xd0
[  342.896460]  ? graph_lock+0x170/0x170
[  342.900275]  ? kasan_slab_alloc+0x12/0x20
[  342.904433]  ? kmem_cache_alloc+0x12e/0x730
[  342.908767]  ? mmu_topup_memory_caches+0xf7/0x390
[  342.913643]  ? kvm_mmu_load+0x21/0xfa0
[  342.917547]  ? vcpu_enter_guest+0x3e9d/0x6260
[  342.922065]  ? graph_lock+0x170/0x170
[  342.925882]  ? ksys_ioctl+0xa9/0xd0
[  342.929515]  ? __x64_sys_ioctl+0x73/0xb0
[  342.933575]  ? do_syscall_64+0x1b9/0x820
[  342.937633]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  342.943006]  ? find_held_lock+0x36/0x1c0
[  342.947069]  ? __lock_is_held+0xb5/0x140
[  342.951136]  ? ttwu_stat+0x5c0/0x5c0
[  342.954859]  __should_failslab+0x124/0x180
[  342.959089]  should_failslab+0x9/0x14
[  342.962880]  kmem_cache_alloc+0x2be/0x730
[  342.967020]  ? vmx_flush_tlb_gva+0x380/0x380
[  342.971420]  ? print_usage_bug+0xc0/0xc0
[  342.975476]  ? d_splice_alias+0x7c9/0x11d0
[  342.979705]  ? mmu_topup_memory_caches+0xf7/0x390
[  342.984543]  mmu_topup_memory_caches+0xf7/0x390
[  342.989207]  kvm_mmu_load+0x21/0xfa0
[  342.992921]  vcpu_enter_guest+0x3e9d/0x6260
[  342.997243]  ? emulator_read_emulated+0x50/0x50
[  343.001909]  ? vmx_vcpu_load+0xb06/0x1030
[  343.006055]  ? vmx_write_tsc_offset+0x670/0x670
[  343.010720]  ? graph_lock+0x170/0x170
[  343.014513]  ? lock_downgrade+0x900/0x900
[  343.018654]  ? check_preemption_disabled+0x48/0x200
[  343.023665]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  343.029194]  ? check_preemption_disabled+0x48/0x200
[  343.034207]  ? __lock_is_held+0xb5/0x140
[  343.038262]  ? lock_acquire+0x1ed/0x520
[  343.042227]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  343.047237]  ? lock_release+0x970/0x970
[  343.051200]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  343.056467]  ? kvm_arch_dev_ioctl+0x630/0x630
[  343.060946]  ? preempt_notifier_dec+0x20/0x20
[  343.065432]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  343.070272]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  343.075282]  kvm_vcpu_ioctl+0x5c8/0x1150
[  343.079332]  ? kvm_vcpu_block+0x1020/0x1020
[  343.083636]  ? find_held_lock+0x36/0x1c0
[  343.087681]  ? __fget+0x4aa/0x740
[  343.091116]  ? check_preemption_disabled+0x48/0x200
[  343.096117]  ? kasan_check_read+0x11/0x20
[  343.100251]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  343.105507]  ? rcu_softirq_qs+0x20/0x20
[  343.109473]  ? __fget+0x4d1/0x740
[  343.112908]  ? ksys_dup3+0x680/0x680
[  343.116601]  ? find_held_lock+0x36/0x1c0
[  343.120656]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  343.125573]  ? kvm_vcpu_block+0x1020/0x1020
[  343.129878]  do_vfs_ioctl+0x1de/0x1720
[  343.133743]  ? __lock_is_held+0xb5/0x140
[  343.137791]  ? ioctl_preallocate+0x300/0x300
[  343.142178]  ? __fget_light+0x2e9/0x430
[  343.146138]  ? fget_raw+0x20/0x20
[  343.149573]  ? __sb_end_write+0xd9/0x110
[  343.153626]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  343.159141]  ? fput+0x130/0x1a0
[  343.162403]  ? do_syscall_64+0x9a/0x820
[  343.166354]  ? do_syscall_64+0x9a/0x820
[  343.170309]  ? lockdep_hardirqs_on+0x421/0x5c0
[  343.174889]  ? security_file_ioctl+0x94/0xc0
[  343.179280]  ksys_ioctl+0xa9/0xd0
[  343.182712]  __x64_sys_ioctl+0x73/0xb0
[  343.186579]  do_syscall_64+0x1b9/0x820
[  343.190446]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  343.195792]  ? syscall_return_slowpath+0x5e0/0x5e0
[  343.200701]  ? trace_hardirqs_off+0x310/0x310
[  343.205174]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  343.210175]  ? recalc_sigpending_tsk+0x180/0x180
[  343.214927]  ? kasan_check_write+0x14/0x20
[  343.219158]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  343.223983]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  343.229151] RIP: 0033:0x457679
[  343.232329] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  343.251209] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.258896] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  343.266165] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:33:20 executing program 5 (fault-call:5 fault-nth:28):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  343.273414] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  343.280664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  343.287914] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001b
[  343.344338] FAULT_INJECTION: forcing a failure.
[  343.344338] name failslab, interval 1, probability 0, space 0, times 0
[  343.356268] CPU: 1 PID: 15495 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  343.364797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.374144] Call Trace:
[  343.376753]  dump_stack+0x1d3/0x2c4
[  343.380388]  ? dump_stack_print_info.cold.2+0x52/0x52
[  343.385572]  ? __kernel_text_address+0xd/0x40
[  343.390057]  ? unwind_get_return_address+0x61/0xa0
[  343.394982]  should_fail.cold.4+0xa/0x17
[  343.399048]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  343.404149]  ? save_stack+0xa9/0xd0
[  343.407765]  ? graph_lock+0x170/0x170
[  343.411557]  ? kasan_slab_alloc+0x12/0x20
[  343.415702]  ? kmem_cache_alloc+0x12e/0x730
[  343.420028]  ? mmu_topup_memory_caches+0xf7/0x390
[  343.424942]  ? kvm_mmu_load+0x21/0xfa0
[  343.428816]  ? vcpu_enter_guest+0x3e9d/0x6260
[  343.433302]  ? graph_lock+0x170/0x170
[  343.437087]  ? ksys_ioctl+0xa9/0xd0
[  343.440796]  ? __x64_sys_ioctl+0x73/0xb0
[  343.444842]  ? do_syscall_64+0x1b9/0x820
[  343.448891]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  343.454246]  ? find_held_lock+0x36/0x1c0
[  343.458298]  ? __lock_is_held+0xb5/0x140
[  343.462357]  ? ttwu_stat+0x5c0/0x5c0
[  343.466067]  __should_failslab+0x124/0x180
[  343.470298]  should_failslab+0x9/0x14
[  343.474082]  kmem_cache_alloc+0x2be/0x730
[  343.478229]  ? mmu_topup_memory_caches+0xf7/0x390
[  343.483059]  mmu_topup_memory_caches+0xf7/0x390
[  343.487717]  kvm_mmu_load+0x21/0xfa0
[  343.491435]  vcpu_enter_guest+0x3e9d/0x6260
[  343.495757]  ? emulator_read_emulated+0x50/0x50
[  343.500420]  ? vmx_vcpu_load+0xb06/0x1030
[  343.504558]  ? vmx_write_tsc_offset+0x670/0x670
[  343.509210]  ? graph_lock+0x170/0x170
[  343.513010]  ? lock_downgrade+0x900/0x900
[  343.517142]  ? check_preemption_disabled+0x48/0x200
[  343.522166]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  343.527691]  ? check_preemption_disabled+0x48/0x200
[  343.532848]  ? __lock_is_held+0xb5/0x140
[  343.536895]  ? lock_acquire+0x1ed/0x520
[  343.540876]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  343.545904]  ? lock_release+0x970/0x970
[  343.549860]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  343.555123]  ? kvm_arch_dev_ioctl+0x630/0x630
[  343.559601]  ? preempt_notifier_dec+0x20/0x20
[  343.564097]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  343.568923]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  343.573935]  kvm_vcpu_ioctl+0x5c8/0x1150
[  343.577985]  ? kvm_vcpu_block+0x1020/0x1020
[  343.582308]  ? find_held_lock+0x36/0x1c0
[  343.586362]  ? __fget+0x4aa/0x740
[  343.589805]  ? check_preemption_disabled+0x48/0x200
[  343.594813]  ? kasan_check_read+0x11/0x20
[  343.598944]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  343.604201]  ? rcu_softirq_qs+0x20/0x20
[  343.608173]  ? __fget+0x4d1/0x740
[  343.611615]  ? ksys_dup3+0x680/0x680
[  343.615312]  ? find_held_lock+0x36/0x1c0
[  343.619366]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  343.624290]  ? kvm_vcpu_block+0x1020/0x1020
[  343.628596]  do_vfs_ioctl+0x1de/0x1720
[  343.632465]  ? __lock_is_held+0xb5/0x140
[  343.636515]  ? ioctl_preallocate+0x300/0x300
[  343.640912]  ? __fget_light+0x2e9/0x430
[  343.644872]  ? fget_raw+0x20/0x20
[  343.648316]  ? __sb_end_write+0xd9/0x110
[  343.652366]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  343.658779]  ? fput+0x130/0x1a0
[  343.662045]  ? do_syscall_64+0x9a/0x820
[  343.666003]  ? do_syscall_64+0x9a/0x820
[  343.669963]  ? lockdep_hardirqs_on+0x421/0x5c0
[  343.674536]  ? security_file_ioctl+0x94/0xc0
[  343.678940]  ksys_ioctl+0xa9/0xd0
[  343.682382]  __x64_sys_ioctl+0x73/0xb0
[  343.686251]  do_syscall_64+0x1b9/0x820
[  343.690127]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  343.695478]  ? syscall_return_slowpath+0x5e0/0x5e0
[  343.700397]  ? trace_hardirqs_off+0x310/0x310
[  343.704880]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  343.709877]  ? recalc_sigpending_tsk+0x180/0x180
[  343.714619]  ? kasan_check_write+0x14/0x20
[  343.718940]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  343.723775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  343.728947] RIP: 0033:0x457679
03:33:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000240)={<r1=>0x0, 0x57, "beaf0942851547ea103da4cf4df380def1bb8a7c0de1a91332e08ca81c78af134a72c1308ea0e46b56cfc5032d2be9a9b87af78636318e196df62d8f3ac67cfddb2dbf4249d5aa17d6e77b74c6207355323ad54295bf7b"}, &(0x7f00000001c0)=0x5f)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000380)=r1, 0x4)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
fcntl$getflags(r0, 0x40b)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x40200, 0x0)
clock_gettime(0x0, &(0x7f0000000440)={<r4=>0x0, <r5=>0x0})
futimesat(r3, &(0x7f0000000400)='./file0\x00', &(0x7f0000000480)={{0x77359400}, {r4, r5/1000+30000}})
r6 = gettid()
ioctl$TIOCNOTTY(r0, 0x5422)
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r2, &(0x7f0000000000)={r2, r0})
r7 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x34d00, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r7, 0x10e, 0x8, &(0x7f00000000c0)=0x7fff, 0x4)
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r8 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r8, 0x540a, 0x0)

03:33:20 executing program 2:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xff, 0x400)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x3)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x1000, @mcast1, 0x1}}, 0x6, 0x4, 0xeb04, 0xdf, 0x10}, &(0x7f0000000140)=0x98)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000200)={r1, 0x98, "78c85a66e3a527ee13c59968c4f7b709235e9a8a72993d9be896cb7763d8333876850699da6ffcfe4a00524cc6f465457397aa9efb6881098bb41dd833cf2a8d1b36b7e265e6942327b746d73d8409c079f270a8e0afe45b036db559bc34ac16a9033fcb5c4caa5e8cb71528b238f123ec6dcafb3d16d1f7d7d8775d4568c0ab602b92598fbdcf33e6a50d2c1cc44fac0567ec5b6f8037b8"}, &(0x7f00000002c0)=0xa0)
clock_settime(0x0, &(0x7f0000000840)={0x77359400})

03:33:20 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x80003)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000000c0)=0xab)
ppoll(&(0x7f0000000080)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x200, 0x0)
write$FUSE_LSEEK(r3, &(0x7f0000000240)={0x18, 0x0, 0x4, {0x80000000}}, 0x18)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000280)=0x2, 0x4)
ioctl(r1, 0xffffffffffffff7f, &(0x7f0000000380)="fd58138d72b1919f8d62e5490efa3ee6f06b0674aede100bb98b07c89195485ef8fe73a4d4c1dc274416bc0add4339dbb2a1456fe511a27554ddb61485f1280d2d910747e543f0901da2090b4ac1130a5a1afe3fce03694e54a63c07835f811d06dd818d29613c443aa6102fb85a496116985589cd8d31a58ff9283834308c52d8f2bb308b9acf60a2571b061077b848d1653fba5c83f2ffc580ec8955797ebd33e367a8962d0ceb8a867824a2b8ed49932654253d74a5a488214fa7647f0038e98e61e8aa1ed059bbd4557b8145a61b443399ac3634403f8efdecad46966d30")

[  343.732128] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  343.751037] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.758731] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  343.765998] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  343.773252] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  343.780503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  343.787753] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001c
03:33:20 executing program 5 (fault-call:5 fault-nth:29):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  343.942858] FAULT_INJECTION: forcing a failure.
[  343.942858] name failslab, interval 1, probability 0, space 0, times 0
[  343.958738] CPU: 0 PID: 15516 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  343.967249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  343.976688] Call Trace:
[  343.976710]  dump_stack+0x1d3/0x2c4
[  343.976729]  ? dump_stack_print_info.cold.2+0x52/0x52
[  343.976779]  should_fail.cold.4+0xa/0x17
[  343.976797]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  343.976816]  ? save_stack+0xa9/0xd0
[  344.000936]  ? graph_lock+0x170/0x170
[  344.004724]  ? kasan_slab_alloc+0x12/0x20
[  344.008853]  ? kmem_cache_alloc+0x12e/0x730
[  344.013171]  ? mmu_topup_memory_caches+0xf7/0x390
[  344.017991]  ? kvm_mmu_load+0x21/0xfa0
[  344.021865]  ? vcpu_enter_guest+0x3e9d/0x6260
[  344.026342]  ? graph_lock+0x170/0x170
[  344.030124]  ? ksys_ioctl+0xa9/0xd0
[  344.033728]  ? __x64_sys_ioctl+0x73/0xb0
[  344.037779]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  344.043133]  ? find_held_lock+0x36/0x1c0
[  344.047179]  ? __lock_is_held+0xb5/0x140
[  344.051238]  ? ttwu_stat+0x5c0/0x5c0
[  344.054948]  __should_failslab+0x124/0x180
[  344.059169]  should_failslab+0x9/0x14
[  344.062949]  kmem_cache_alloc+0x2be/0x730
[  344.067077]  ? vmx_flush_tlb_gva+0x380/0x380
[  344.071466]  ? print_usage_bug+0xc0/0xc0
[  344.075512]  ? mmu_topup_memory_caches+0xf7/0x390
[  344.080338]  mmu_topup_memory_caches+0xf7/0x390
[  344.085003]  kvm_mmu_load+0x21/0xfa0
[  344.088706]  vcpu_enter_guest+0x3e9d/0x6260
[  344.093018]  ? emulator_read_emulated+0x50/0x50
[  344.097689]  ? zap_class+0x640/0x640
[  344.101385]  ? vmx_vcpu_load+0xb06/0x1030
[  344.105521]  ? vmx_write_tsc_offset+0x670/0x670
[  344.110171]  ? graph_lock+0x170/0x170
[  344.113951]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  344.119577]  ? check_preemption_disabled+0x48/0x200
[  344.124577]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  344.130099]  ? check_preemption_disabled+0x48/0x200
[  344.135102]  ? __lock_is_held+0xb5/0x140
[  344.139147]  ? lock_acquire+0x1ed/0x520
[  344.143101]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  344.148101]  ? lock_release+0x970/0x970
[  344.152054]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  344.157309]  ? kvm_arch_dev_ioctl+0x630/0x630
[  344.161818]  ? preempt_notifier_dec+0x20/0x20
[  344.166300]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  344.171238]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  344.176245]  kvm_vcpu_ioctl+0x5c8/0x1150
[  344.180322]  ? kvm_vcpu_block+0x1020/0x1020
[  344.184637]  ? find_held_lock+0x36/0x1c0
[  344.188696]  ? __fget+0x4aa/0x740
[  344.192134]  ? check_preemption_disabled+0x48/0x200
[  344.197132]  ? kasan_check_read+0x11/0x20
[  344.201267]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  344.206527]  ? rcu_softirq_qs+0x20/0x20
[  344.210489]  ? __fget+0x4d1/0x740
[  344.213930]  ? ksys_dup3+0x680/0x680
[  344.217631]  ? find_held_lock+0x36/0x1c0
[  344.221693]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  344.226625]  ? kvm_vcpu_block+0x1020/0x1020
[  344.230931]  do_vfs_ioctl+0x1de/0x1720
[  344.234827]  ? ioctl_preallocate+0x300/0x300
[  344.239219]  ? __fget_light+0x2e9/0x430
[  344.243176]  ? fget_raw+0x20/0x20
[  344.246635]  ? __sb_end_write+0xd9/0x110
[  344.250688]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  344.256291]  ? fput+0x130/0x1a0
[  344.259553]  ? do_syscall_64+0x9a/0x820
[  344.263513]  ? do_syscall_64+0x9a/0x820
[  344.267486]  ? lockdep_hardirqs_on+0x421/0x5c0
[  344.272053]  ? security_file_ioctl+0x94/0xc0
[  344.276449]  ksys_ioctl+0xa9/0xd0
[  344.279884]  __x64_sys_ioctl+0x73/0xb0
[  344.283756]  do_syscall_64+0x1b9/0x820
[  344.287628]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  344.292985]  ? syscall_return_slowpath+0x5e0/0x5e0
[  344.297908]  ? trace_hardirqs_off+0x310/0x310
[  344.302477]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  344.307475]  ? recalc_sigpending_tsk+0x180/0x180
[  344.312215]  ? kasan_check_write+0x14/0x20
[  344.316453]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  344.321287]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  344.326457] RIP: 0033:0x457679
03:33:20 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000001c0)="153f6234488dd25d766070")
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000000)={<r2=>0x0, 0x4, 0x6, 0x7, 0x867e, 0x3}, &(0x7f0000000040)=0x14)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000080)={r2, 0x22b27495, 0x5}, &(0x7f00000000c0)=0x8)
unshare(0x400)
getsockopt$inet6_buf(r1, 0x29, 0x7, &(0x7f0000000100)=""/66, &(0x7f0000000240)=0x42)

[  344.329634] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  344.348519] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  344.356221] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  344.363470] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  344.370724] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  344.377974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  344.385223] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001d
03:33:20 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r1, 0x5386, &(0x7f0000000080))
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
ioctl$EVIOCGPROP(r2, 0xc004743e, &(0x7f000082ef0a)=""/246)
ioctl$EVIOCGREP(r2, 0x80047441, &(0x7f0000d1df52)=""/174)

03:33:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x7, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r0=>0x0, <r1=>0x0})
syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0xe7db, 0x4400)
clock_settime(0x2, &(0x7f0000000080)={r0, r1+10000000})

03:33:20 executing program 5 (fault-call:5 fault-nth:30):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:20 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/loop-control\x00', 0x28000, 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
add_key$user(&(0x7f0000000140)='user\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000200), 0x0, 0xfffffffffffffff9)
perf_event_open(&(0x7f0000000040)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(0xffffffffffffffff, 0xc0505405, &(0x7f0000000100)={{}, 0x20})
ioctl(0xffffffffffffffff, 0x100008912, &(0x7f0000000000))
r1 = socket(0x10, 0x802, 0x0)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000002c0)={'team0\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000100)={"7465616d300000ffffffc000", 0x4bfd})
write$UHID_DESTROY(r2, &(0x7f00000003c0), 0x4)
ioctl$UI_SET_FFBIT(r2, 0x4004556b, 0x32)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
write$P9_RGETATTR(0xffffffffffffffff, &(0x7f0000000200)={0xa0, 0x19, 0x1}, 0xa0)
getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000340), &(0x7f0000000380)=0xb)
keyctl$set_timeout(0xf, 0x0, 0x9)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400)={0x0, <r3=>0x0}, &(0x7f0000001900)=0xc)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000001940)={{{@in6=@loopback, @in=@loopback, 0x4e23, 0x0, 0x4e22, 0x0, 0xa, 0x0, 0x80, 0x0, 0x0, r3}, {0x8000, 0x8, 0x4, 0x9, 0x0, 0x0, 0x2, 0xd2}, {0x1, 0x9, 0xccc4, 0x9}, 0x0, 0x6e6bc0, 0x1, 0x0, 0x3}, {{@in6=@remote, 0x4d3, 0x6c}, 0xa, @in6, 0x3505, 0x3, 0x1, 0x9, 0x7, 0x3f, 0x100000000}}, 0xe8)

03:33:20 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x8240, 0x0)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000000c0)=0xa95c, 0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x86a00, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000100)={0x8, 0x9})

03:33:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x82, 0x0)
ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f00000000c0)=0x8000)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

[  344.609008] FAULT_INJECTION: forcing a failure.
[  344.609008] name failslab, interval 1, probability 0, space 0, times 0
[  344.621244] CPU: 1 PID: 15542 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  344.629869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  344.629876] Call Trace:
[  344.629897]  dump_stack+0x1d3/0x2c4
[  344.629917]  ? dump_stack_print_info.cold.2+0x52/0x52
[  344.650825]  ? __kernel_text_address+0xd/0x40
[  344.655772]  ? unwind_get_return_address+0x61/0xa0
[  344.660701]  should_fail.cold.4+0xa/0x17
[  344.664853]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  344.670035]  ? save_stack+0xa9/0xd0
[  344.673652]  ? graph_lock+0x170/0x170
[  344.677432]  ? kasan_slab_alloc+0x12/0x20
[  344.681564]  ? kmem_cache_alloc+0x12e/0x730
[  344.685874]  ? mmu_topup_memory_caches+0xf7/0x390
[  344.690713]  ? kvm_mmu_load+0x21/0xfa0
[  344.694587]  ? vcpu_enter_guest+0x3e9d/0x6260
[  344.699078]  ? graph_lock+0x170/0x170
[  344.702876]  ? ksys_ioctl+0xa9/0xd0
[  344.706495]  ? __x64_sys_ioctl+0x73/0xb0
[  344.710543]  ? do_syscall_64+0x1b9/0x820
[  344.714589]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  344.719958]  ? find_held_lock+0x36/0x1c0
[  344.724011]  ? __lock_is_held+0xb5/0x140
[  344.728068]  ? ttwu_stat+0x5c0/0x5c0
[  344.731881]  __should_failslab+0x124/0x180
[  344.736104]  should_failslab+0x9/0x14
[  344.739894]  kmem_cache_alloc+0x2be/0x730
[  344.744037]  ? vmx_flush_tlb_gva+0x380/0x380
[  344.748432]  ? mark_held_locks+0xc7/0x130
[  344.752665]  ? mmu_topup_memory_caches+0xf7/0x390
[  344.757500]  mmu_topup_memory_caches+0xf7/0x390
[  344.762180]  kvm_mmu_load+0x21/0xfa0
[  344.765918]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  344.771174]  ? kvm_get_time_scale+0x188/0x1e0
[  344.775661]  vcpu_enter_guest+0x3e9d/0x6260
[  344.779992]  ? emulator_read_emulated+0x50/0x50
[  344.784657]  ? vmx_vcpu_load+0xb06/0x1030
[  344.788797]  ? vmx_write_tsc_offset+0x670/0x670
[  344.793452]  ? graph_lock+0x170/0x170
[  344.797236]  ? lock_downgrade+0x900/0x900
[  344.801372]  ? check_preemption_disabled+0x48/0x200
[  344.806376]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  344.811901]  ? check_preemption_disabled+0x48/0x200
[  344.816929]  ? __lock_is_held+0xb5/0x140
[  344.820987]  ? lock_acquire+0x1ed/0x520
[  344.824968]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  344.829983]  ? lock_release+0x970/0x970
[  344.833941]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  344.839202]  ? kvm_arch_dev_ioctl+0x630/0x630
[  344.843681]  ? preempt_notifier_dec+0x20/0x20
[  344.848219]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  344.853048]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  344.858060]  kvm_vcpu_ioctl+0x5c8/0x1150
[  344.862109]  ? kvm_vcpu_block+0x1020/0x1020
[  344.866416]  ? find_held_lock+0x36/0x1c0
[  344.870481]  ? __fget+0x4aa/0x740
[  344.873923]  ? check_preemption_disabled+0x48/0x200
[  344.878930]  ? kasan_check_read+0x11/0x20
[  344.883086]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  344.888363]  ? rcu_softirq_qs+0x20/0x20
[  344.892339]  ? __fget+0x4d1/0x740
[  344.895797]  ? ksys_dup3+0x680/0x680
[  344.899497]  ? find_held_lock+0x36/0x1c0
[  344.903546]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  344.908471]  ? kvm_vcpu_block+0x1020/0x1020
[  344.912884]  do_vfs_ioctl+0x1de/0x1720
[  344.916784]  ? __lock_is_held+0xb5/0x140
[  344.920853]  ? ioctl_preallocate+0x300/0x300
[  344.925247]  ? __fget_light+0x2e9/0x430
[  344.929210]  ? fget_raw+0x20/0x20
[  344.932668]  ? __sb_end_write+0xd9/0x110
[  344.936719]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  344.942241]  ? fput+0x130/0x1a0
[  344.945521]  ? do_syscall_64+0x9a/0x820
[  344.949490]  ? do_syscall_64+0x9a/0x820
[  344.953457]  ? lockdep_hardirqs_on+0x421/0x5c0
[  344.958064]  ? security_file_ioctl+0x94/0xc0
[  344.962469]  ksys_ioctl+0xa9/0xd0
[  344.965912]  __x64_sys_ioctl+0x73/0xb0
[  344.969790]  do_syscall_64+0x1b9/0x820
[  344.973680]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  344.979028]  ? syscall_return_slowpath+0x5e0/0x5e0
[  344.983945]  ? trace_hardirqs_off+0x310/0x310
[  344.988435]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  344.993436]  ? recalc_sigpending_tsk+0x180/0x180
[  344.998183]  ? kasan_check_write+0x14/0x20
[  345.002410]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  345.007385]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  345.012562] RIP: 0033:0x457679
[  345.015751] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  345.034660] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  345.042354] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  345.049609] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  345.056887] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  345.064140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  345.071397] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001e
03:33:21 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000240)={<r1=>0x0, 0x57, "beaf0942851547ea103da4cf4df380def1bb8a7c0de1a91332e08ca81c78af134a72c1308ea0e46b56cfc5032d2be9a9b87af78636318e196df62d8f3ac67cfddb2dbf4249d5aa17d6e77b74c6207355323ad54295bf7b"}, &(0x7f00000001c0)=0x5f)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000380)=r1, 0x4)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
fcntl$getflags(r0, 0x40b)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x40200, 0x0)
clock_gettime(0x0, &(0x7f0000000440)={<r4=>0x0, <r5=>0x0})
futimesat(r3, &(0x7f0000000400)='./file0\x00', &(0x7f0000000480)={{0x77359400}, {r4, r5/1000+30000}})
r6 = gettid()
ioctl$TIOCNOTTY(r0, 0x5422)
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r2, &(0x7f0000000000)={r2, r0})
r7 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x34d00, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r7, 0x10e, 0x8, &(0x7f00000000c0)=0x7fff, 0x4)
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r8 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r8, 0x540a, 0x0)

03:33:21 executing program 5 (fault-call:5 fault-nth:31):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  345.222880] FAULT_INJECTION: forcing a failure.
[  345.222880] name failslab, interval 1, probability 0, space 0, times 0
[  345.248577] CPU: 0 PID: 15559 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  345.257094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  345.266459] Call Trace:
[  345.269051]  dump_stack+0x1d3/0x2c4
[  345.272682]  ? dump_stack_print_info.cold.2+0x52/0x52
[  345.277893]  ? __kernel_text_address+0xd/0x40
[  345.282390]  ? unwind_get_return_address+0x61/0xa0
[  345.287327]  should_fail.cold.4+0xa/0x17
[  345.291393]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  345.296499]  ? save_stack+0xa9/0xd0
[  345.300134]  ? graph_lock+0x170/0x170
[  345.303940]  ? kasan_slab_alloc+0x12/0x20
[  345.308097]  ? kmem_cache_alloc+0x12e/0x730
[  345.312422]  ? mmu_topup_memory_caches+0xf7/0x390
[  345.317257]  ? kvm_mmu_load+0x21/0xfa0
[  345.321177]  ? vcpu_enter_guest+0x3e9d/0x6260
[  345.325673]  ? graph_lock+0x170/0x170
[  345.329481]  ? ksys_ioctl+0xa9/0xd0
[  345.333121]  ? __x64_sys_ioctl+0x73/0xb0
[  345.337172]  ? do_syscall_64+0x1b9/0x820
[  345.341228]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  345.346598]  ? find_held_lock+0x36/0x1c0
[  345.350665]  ? __lock_is_held+0xb5/0x140
[  345.354736]  ? ttwu_stat+0x5c0/0x5c0
[  345.358461]  __should_failslab+0x124/0x180
[  345.362708]  should_failslab+0x9/0x14
[  345.366504]  kmem_cache_alloc+0x2be/0x730
[  345.370647]  ? vmx_flush_tlb_gva+0x380/0x380
[  345.375049]  ? print_usage_bug+0xc0/0xc0
[  345.379123]  ? d_splice_alias+0x7c9/0x11d0
[  345.383355]  ? mmu_topup_memory_caches+0xf7/0x390
[  345.388207]  mmu_topup_memory_caches+0xf7/0x390
[  345.392877]  kvm_mmu_load+0x21/0xfa0
[  345.396598]  vcpu_enter_guest+0x3e9d/0x6260
[  345.400930]  ? emulator_read_emulated+0x50/0x50
[  345.405603]  ? vmx_vcpu_load+0xb06/0x1030
[  345.409783]  ? vmx_write_tsc_offset+0x670/0x670
[  345.414451]  ? graph_lock+0x170/0x170
[  345.418251]  ? lock_downgrade+0x900/0x900
[  345.422401]  ? check_preemption_disabled+0x48/0x200
[  345.427420]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  345.432955]  ? check_preemption_disabled+0x48/0x200
[  345.437981]  ? __lock_is_held+0xb5/0x140
[  345.442074]  ? lock_acquire+0x1ed/0x520
[  345.446048]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  345.451082]  ? lock_release+0x970/0x970
[  345.455049]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  345.460326]  ? kvm_arch_dev_ioctl+0x630/0x630
[  345.464833]  ? preempt_notifier_dec+0x20/0x20
[  345.469338]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  345.474178]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  345.479205]  kvm_vcpu_ioctl+0x5c8/0x1150
[  345.483267]  ? kvm_vcpu_block+0x1020/0x1020
[  345.487995]  ? find_held_lock+0x36/0x1c0
[  345.492061]  ? __fget+0x4aa/0x740
[  345.495524]  ? check_preemption_disabled+0x48/0x200
[  345.500558]  ? kasan_check_read+0x11/0x20
[  345.504706]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  345.509979]  ? rcu_softirq_qs+0x20/0x20
[  345.513985]  ? __fget+0x4d1/0x740
[  345.517452]  ? ksys_dup3+0x680/0x680
[  345.521169]  ? find_held_lock+0x36/0x1c0
[  345.525242]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  345.530173]  ? kvm_vcpu_block+0x1020/0x1020
[  345.534493]  do_vfs_ioctl+0x1de/0x1720
[  345.538385]  ? __lock_is_held+0xb5/0x140
[  345.542450]  ? ioctl_preallocate+0x300/0x300
[  345.546885]  ? __fget_light+0x2e9/0x430
[  345.550871]  ? fget_raw+0x20/0x20
[  345.554336]  ? __sb_end_write+0xd9/0x110
[  345.558406]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  345.563939]  ? fput+0x130/0x1a0
[  345.567234]  ? do_syscall_64+0x9a/0x820
[  345.571225]  ? do_syscall_64+0x9a/0x820
[  345.575212]  ? lockdep_hardirqs_on+0x421/0x5c0
[  345.579799]  ? security_file_ioctl+0x94/0xc0
[  345.584214]  ksys_ioctl+0xa9/0xd0
[  345.587670]  __x64_sys_ioctl+0x73/0xb0
[  345.591562]  do_syscall_64+0x1b9/0x820
[  345.595458]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  345.600822]  ? syscall_return_slowpath+0x5e0/0x5e0
[  345.605754]  ? trace_hardirqs_off+0x310/0x310
[  345.610248]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  345.615259]  ? recalc_sigpending_tsk+0x180/0x180
[  345.620012]  ? kasan_check_write+0x14/0x20
[  345.624270]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  345.629134]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  345.634352] RIP: 0033:0x457679
[  345.637556] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  345.657004] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  345.664710] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
03:33:21 executing program 4 (fault-call:3 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:21 executing program 0:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x100, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x2)
r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x800)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000100))
clock_settime(0x0, &(0x7f0000000840))

[  345.671973] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  345.679413] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  345.686678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  345.693943] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000001f
[  345.769064] FAULT_INJECTION: forcing a failure.
[  345.769064] name failslab, interval 1, probability 0, space 0, times 0
[  345.794925] CPU: 0 PID: 15566 Comm: syz-executor4 Not tainted 4.19.0-rc4-next-20180921+ #77
[  345.803438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  345.812791] Call Trace:
[  345.815386]  dump_stack+0x1d3/0x2c4
[  345.819021]  ? dump_stack_print_info.cold.2+0x52/0x52
[  345.824313]  should_fail.cold.4+0xa/0x17
[  345.828380]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  345.833750]  ? graph_lock+0x170/0x170
[  345.837551]  ? graph_lock+0x170/0x170
[  345.841353]  ? __lock_acquire+0x7ec/0x4ec0
[  345.845589]  ? graph_lock+0x170/0x170
[  345.849399]  ? find_held_lock+0x36/0x1c0
[  345.853465]  ? __lock_is_held+0xb5/0x140
[  345.857542]  ? __might_fault+0x12b/0x1e0
[  345.861604]  ? ttwu_stat+0x5c0/0x5c0
[  345.865332]  ? lock_downgrade+0x900/0x900
[  345.869482]  ? lock_release+0x970/0x970
[  345.873491]  __should_failslab+0x124/0x180
[  345.877738]  should_failslab+0x9/0x14
[  345.881542]  __kmalloc_track_caller+0x2d0/0x750
[  345.886219]  ? msr_io+0x11c/0x380
[  345.889679]  memdup_user+0x2c/0xa0
[  345.893217]  msr_io+0x11c/0x380
[  345.896498]  ? lock_release+0x970/0x970
[  345.900570]  ? kvm_set_msr+0x370/0x370
[  345.904454]  ? kvm_set_tsc_khz+0x420/0x420
[  345.908686]  ? check_preemption_disabled+0x48/0x200
[  345.913711]  kvm_arch_vcpu_ioctl+0x1976/0x3ae0
[  345.918291]  ? kvm_arch_vcpu_ioctl+0x1921/0x3ae0
[  345.923044]  ? __lock_acquire+0x7ec/0x4ec0
[  345.927278]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  345.932411]  ? kvm_arch_vcpu_put+0x420/0x420
[  345.936816]  ? print_usage_bug+0xc0/0xc0
[  345.940899]  ? mark_held_locks+0x130/0x130
[  345.945133]  ? print_usage_bug+0xc0/0xc0
[  345.949189]  ? do_raw_spin_lock+0xc1/0x200
[  345.953439]  ? print_usage_bug+0xc0/0xc0
[  345.957517]  ? print_usage_bug+0xc0/0xc0
[  345.961588]  ? __lock_acquire+0x7ec/0x4ec0
[  345.965835]  ? mark_held_locks+0x130/0x130
[  345.970077]  ? mark_held_locks+0x130/0x130
[  345.974327]  ? print_usage_bug+0xc0/0xc0
[  345.978383]  ? mark_held_locks+0x130/0x130
[  345.982621]  ? print_usage_bug+0xc0/0xc0
[  345.986680]  ? mark_held_locks+0x130/0x130
[  345.990911]  ? print_usage_bug+0xc0/0xc0
[  345.994967]  ? d_splice_alias+0x7c9/0x11d0
[  345.999200]  ? lock_acquire+0x1ed/0x520
[  346.003174]  ? kvm_vcpu_ioctl+0x1e5/0x1150
[  346.007412]  ? lock_release+0x970/0x970
[  346.011383]  ? ttwu_stat+0x5c0/0x5c0
[  346.015114]  ? __mutex_lock+0x85e/0x1700
[  346.019194]  ? kvm_vcpu_ioctl+0x1e5/0x1150
[  346.023434]  ? mutex_trylock+0x2b0/0x2b0
[  346.027518]  ? __lock_acquire+0x7ec/0x4ec0
[  346.031753]  ? lock_downgrade+0x900/0x900
[  346.035918]  ? check_preemption_disabled+0x48/0x200
[  346.040946]  ? print_usage_bug+0xc0/0xc0
[  346.045003]  ? __lock_acquire+0x7ec/0x4ec0
[  346.049236]  ? graph_lock+0x170/0x170
[  346.053037]  ? graph_lock+0x170/0x170
[  346.056839]  ? graph_lock+0x170/0x170
[  346.060640]  ? graph_lock+0x170/0x170
[  346.064448]  ? __lock_acquire+0x7ec/0x4ec0
[  346.068687]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  346.074224]  ? _parse_integer+0x134/0x180
[  346.078373]  ? graph_lock+0x170/0x170
[  346.082174]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  346.087717]  kvm_vcpu_ioctl+0x278/0x1150
[  346.091782]  ? kvm_vcpu_block+0x1020/0x1020
[  346.096110]  ? find_held_lock+0x36/0x1c0
[  346.100180]  ? __fget+0x4aa/0x740
[  346.103633]  ? lock_downgrade+0x900/0x900
[  346.107791]  ? check_preemption_disabled+0x48/0x200
[  346.112810]  ? rcu_read_unlock_special+0x1c0/0x1c0
[  346.117741]  ? kasan_check_read+0x11/0x20
[  346.121897]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  346.127174]  ? rcu_softirq_qs+0x20/0x20
[  346.131164]  ? __fget+0x4d1/0x740
[  346.134624]  ? ksys_dup3+0x680/0x680
[  346.138338]  ? find_held_lock+0x36/0x1c0
[  346.142409]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  346.147355]  ? kvm_vcpu_block+0x1020/0x1020
[  346.151674]  do_vfs_ioctl+0x1de/0x1720
[  346.155566]  ? __lock_is_held+0xb5/0x140
[  346.159631]  ? ioctl_preallocate+0x300/0x300
[  346.164039]  ? __fget_light+0x2e9/0x430
[  346.168017]  ? fget_raw+0x20/0x20
[  346.171473]  ? __sb_end_write+0xd9/0x110
[  346.175551]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  346.181084]  ? fput+0x130/0x1a0
[  346.184395]  ? do_syscall_64+0x9a/0x820
[  346.188385]  ? do_syscall_64+0x9a/0x820
[  346.192374]  ? lockdep_hardirqs_on+0x421/0x5c0
[  346.196957]  ? security_file_ioctl+0x94/0xc0
[  346.201370]  ksys_ioctl+0xa9/0xd0
[  346.204824]  __x64_sys_ioctl+0x73/0xb0
[  346.208716]  do_syscall_64+0x1b9/0x820
[  346.212601]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  346.217962]  ? syscall_return_slowpath+0x5e0/0x5e0
[  346.222889]  ? trace_hardirqs_off+0x310/0x310
[  346.227405]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  346.232429]  ? recalc_sigpending_tsk+0x180/0x180
[  346.237202]  ? kasan_check_write+0x14/0x20
[  346.241449]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  346.246321]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  346.251505] RIP: 0033:0x457679
03:33:22 executing program 5 (fault-call:5 fault-nth:32):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  346.254705] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  346.273604] RSP: 002b:00007fa1c029dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  346.281310] RAX: ffffffffffffffda RBX: 00007fa1c029e6d4 RCX: 0000000000457679
[  346.288572] RDX: 0000000020000140 RSI: 00000000c008ae88 RDI: 0000000000000005
[  346.295858] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  346.303124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  346.310404] R13: 00000000004cff08 R14: 00000000004bfdf1 R15: 0000000000000000
03:33:22 executing program 4 (fault-call:3 fault-nth:1):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:22 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
unshare(0x20000000)
clone(0x0, &(0x7f0000b53000), &(0x7f000084effc), &(0x7f0000c35ffc), &(0x7f0000b3bfff))
sync()
r0 = socket$inet6(0xa, 0x2, 0xffff)
bind$inet6(r0, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c)
listen(r0, 0x40)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendto$inet6(r1, &(0x7f000087dffe)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r1, 0x1)
recvmmsg(r0, &(0x7f0000005fc0)=[{{&(0x7f0000000040)=@nl=@unspec, 0x80, &(0x7f0000002580)=[{&(0x7f00000000c0)=""/249, 0xf9}, {&(0x7f0000000280)=""/123, 0x7b}, {&(0x7f00000001c0)=""/46, 0x2e}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/78, 0x4e}, {&(0x7f0000001380)=""/130, 0x82}, {&(0x7f0000001440)=""/3, 0x3}, {&(0x7f0000001480)=""/193, 0xc1}, {&(0x7f0000001580)=""/4096, 0x1000}], 0x9, &(0x7f0000002640)=""/72, 0x48, 0x3}, 0x3}, {{&(0x7f00000026c0)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000003800)=[{&(0x7f0000002740)=""/4096, 0x1000}, {&(0x7f0000003740)=""/139, 0x8b}], 0x2, &(0x7f0000003840)=""/41, 0x29}, 0xffffffff00000001}, {{&(0x7f0000003880)=@ipx, 0x80, &(0x7f0000003a80)=[{&(0x7f0000003900)=""/96, 0x60}, {&(0x7f0000003980)=""/222, 0xde}], 0x2, &(0x7f0000003ac0)=""/199, 0xc7, 0x3}}, {{&(0x7f0000003bc0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000003e00)=[{&(0x7f0000003c40)=""/220, 0xdc}, {&(0x7f0000003d40)=""/183, 0xb7}], 0x2, &(0x7f0000003e40)=""/86, 0x56, 0x2}, 0x3}, {{&(0x7f0000003ec0)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, &(0x7f0000004040)=[{&(0x7f0000003f40)=""/195, 0xc3}], 0x1, &(0x7f0000004080)=""/151, 0x97, 0x6}, 0x9d}, {{&(0x7f0000004140)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, &(0x7f0000005300)=[{&(0x7f00000041c0)=""/22, 0x16}, {&(0x7f0000004200)=""/124, 0x7c}, {&(0x7f0000004280)=""/4096, 0x1000}, {&(0x7f0000005280)=""/57, 0x39}, {&(0x7f00000052c0)=""/58, 0x3a}], 0x5, &(0x7f0000005380)=""/106, 0x6a, 0x4e}, 0x20}, {{&(0x7f0000005400)=@vsock, 0x80, &(0x7f00000054c0)=[{&(0x7f0000005480)=""/51, 0x33}], 0x1, &(0x7f0000005500)=""/124, 0x7c, 0xfffffffffffffac5}, 0x5}, {{&(0x7f0000005580)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000005700)=[{&(0x7f0000005600)=""/253, 0xfd}], 0x1, &(0x7f0000005740)=""/94, 0x5e, 0xffffffffffffff80}, 0x2}, {{&(0x7f00000057c0)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000005d40)=[{&(0x7f0000005840)=""/92, 0x5c}, {&(0x7f00000058c0)=""/100, 0x64}, {&(0x7f0000005940)=""/96, 0x60}, {&(0x7f00000059c0)=""/223, 0xdf}, {&(0x7f0000005ac0)=""/134, 0x86}, {&(0x7f0000005b80)=""/137, 0x89}, {&(0x7f0000005c40)=""/212, 0xd4}], 0x7, &(0x7f0000005dc0)=""/121, 0x79, 0x10000}, 0x2f}, {{&(0x7f0000005e40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000005f80)=[{&(0x7f0000005ec0)=""/5, 0x5}, {&(0x7f0000005f00)=""/107, 0x6b}], 0x2}, 0x9}], 0xa, 0x2000, 0x0)

03:33:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
syz_open_pts(r0, 0x200)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0x7)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vsock\x00', 0x42, 0x0)
fcntl$setpipe(r0, 0x407, 0x100)
ioctl$sock_bt_hci(r1, 0x400448df, &(0x7f00000004c0)="6e9ae08725173e78745c5d864b3144d1c6bfef38195d4714781b3f36cf1b0328f7b5b357db20164ca53e4ceb2c7b9ac9da9ebafafdb6418f53161a956e01929f")
r2 = epoll_create1(0x0)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000500)={0x2, 0x0, [{0x7, 0x8, 0x2, 0x100, 0x80, 0x2, 0x4}, {0xc0000007, 0x4, 0x1, 0x9, 0x4fb2, 0x4, 0x7}]})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000000)={r2, r0})
r4 = accept4(0xffffffffffffffff, &(0x7f0000000080)=@generic, &(0x7f00000001c0)=0x80, 0x80000)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000240)={<r5=>0x0, 0x4, 0x100}, &(0x7f0000000280)=0x8)
syz_open_dev$dmmidi(&(0x7f0000000440)='/dev/dmmidi#\x00', 0xffffffffffffffe0, 0x8000)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000380)={r5, 0x10001}, &(0x7f00000003c0)=0x8)
ppoll(&(0x7f00000002c0)=[{r2}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r6 = fcntl$dupfd(r2, 0x406, r0)
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000400)={'team0\x00', @broadcast})
r7 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r7, 0x540a, 0x0)

03:33:22 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$unix(0x1, 0x1, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:33:22 executing program 2:
r0 = openat$vcs(0xffffffffffffff9c, 0xffffffffffffffff, 0x2000, 0x0)
recvfrom$unix(r0, &(0x7f0000000180)=""/232, 0xe8, 0x100, &(0x7f0000000280)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
r1 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r1, 0x8912, &(0x7f0000000080)="153f6234488dd25d766070")
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x84e23, @multicast1}, 0x10)
sendto$inet(r2, &(0x7f00000002c0), 0xff72, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
mq_timedreceive(r2, &(0x7f0000000300)=""/162, 0xa2, 0x2b, &(0x7f0000000040))
sendto$inet(r2, &(0x7f0000000000), 0xfffffffffffffe4e, 0xc0, &(0x7f00000000c0), 0x6)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000140)='gre0\x00', 0x10)
close(r2)

[  346.682762] FAULT_INJECTION: forcing a failure.
[  346.682762] name failslab, interval 1, probability 0, space 0, times 0
[  346.718392] CPU: 0 PID: 15588 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  346.726990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  346.726998] Call Trace:
[  346.727020]  dump_stack+0x1d3/0x2c4
[  346.727043]  ? dump_stack_print_info.cold.2+0x52/0x52
[  346.747780]  ? __kernel_text_address+0xd/0x40
[  346.752269]  ? unwind_get_return_address+0x61/0xa0
[  346.757194]  should_fail.cold.4+0xa/0x17
[  346.761262]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  346.766366]  ? save_stack+0xa9/0xd0
[  346.770005]  ? graph_lock+0x170/0x170
[  346.773814]  ? kasan_slab_alloc+0x12/0x20
[  346.777949]  ? kmem_cache_alloc+0x12e/0x730
[  346.782261]  ? mmu_topup_memory_caches+0xf7/0x390
[  346.787088]  ? kvm_mmu_load+0x21/0xfa0
[  346.790963]  ? vcpu_enter_guest+0x3e9d/0x6260
[  346.795451]  ? graph_lock+0x170/0x170
[  346.799261]  ? ksys_ioctl+0xa9/0xd0
[  346.802870]  ? __x64_sys_ioctl+0x73/0xb0
[  346.806917]  ? do_syscall_64+0x1b9/0x820
[  346.810966]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  346.816323]  ? find_held_lock+0x36/0x1c0
[  346.820389]  ? __lock_is_held+0xb5/0x140
[  346.824535]  ? ttwu_stat+0x5c0/0x5c0
[  346.828246]  __should_failslab+0x124/0x180
[  346.832470]  should_failslab+0x9/0x14
[  346.836260]  kmem_cache_alloc+0x2be/0x730
[  346.840405]  ? vmx_flush_tlb_gva+0x380/0x380
[  346.844803]  ? print_usage_bug+0xc0/0xc0
[  346.848847]  ? d_splice_alias+0x7c9/0x11d0
[  346.853072]  ? mmu_topup_memory_caches+0xf7/0x390
[  346.857920]  mmu_topup_memory_caches+0xf7/0x390
[  346.862582]  kvm_mmu_load+0x21/0xfa0
[  346.866292]  vcpu_enter_guest+0x3e9d/0x6260
[  346.870607]  ? emulator_read_emulated+0x50/0x50
[  346.875298]  ? vmx_vcpu_load+0xb06/0x1030
[  346.879444]  ? vmx_write_tsc_offset+0x670/0x670
[  346.884100]  ? graph_lock+0x170/0x170
[  346.887885]  ? lock_downgrade+0x900/0x900
[  346.892023]  ? check_preemption_disabled+0x48/0x200
[  346.897042]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  346.902563]  ? check_preemption_disabled+0x48/0x200
[  346.907572]  ? __lock_is_held+0xb5/0x140
[  346.911624]  ? lock_acquire+0x1ed/0x520
[  346.915594]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  346.920602]  ? lock_release+0x970/0x970
[  346.924562]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  346.929826]  ? kvm_arch_dev_ioctl+0x630/0x630
[  346.934413]  ? preempt_notifier_dec+0x20/0x20
[  346.938905]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  346.943735]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  346.948746]  kvm_vcpu_ioctl+0x5c8/0x1150
[  346.952794]  ? kvm_vcpu_block+0x1020/0x1020
[  346.957109]  ? find_held_lock+0x36/0x1c0
[  346.961172]  ? __fget+0x4aa/0x740
[  346.964615]  ? check_preemption_disabled+0x48/0x200
[  346.969633]  ? kasan_check_read+0x11/0x20
[  346.973765]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  346.979043]  ? rcu_softirq_qs+0x20/0x20
[  346.983013]  ? __fget+0x4d1/0x740
[  346.986473]  ? ksys_dup3+0x680/0x680
[  346.990193]  ? find_held_lock+0x36/0x1c0
[  346.994250]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  346.999170]  ? kvm_vcpu_block+0x1020/0x1020
[  347.003481]  do_vfs_ioctl+0x1de/0x1720
[  347.007354]  ? __lock_is_held+0xb5/0x140
[  347.011413]  ? ioctl_preallocate+0x300/0x300
[  347.015810]  ? __fget_light+0x2e9/0x430
[  347.019772]  ? fget_raw+0x20/0x20
[  347.023225]  ? __sb_end_write+0xd9/0x110
[  347.027280]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  347.032806]  ? fput+0x130/0x1a0
[  347.036075]  ? do_syscall_64+0x9a/0x820
[  347.040053]  ? do_syscall_64+0x9a/0x820
[  347.044017]  ? lockdep_hardirqs_on+0x421/0x5c0
[  347.048600]  ? security_file_ioctl+0x94/0xc0
[  347.053013]  ksys_ioctl+0xa9/0xd0
[  347.056483]  __x64_sys_ioctl+0x73/0xb0
[  347.060361]  do_syscall_64+0x1b9/0x820
[  347.064237]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  347.069586]  ? syscall_return_slowpath+0x5e0/0x5e0
[  347.074501]  ? trace_hardirqs_off+0x310/0x310
[  347.078984]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  347.083986]  ? recalc_sigpending_tsk+0x180/0x180
[  347.088727]  ? kasan_check_write+0x14/0x20
[  347.092953]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  347.097792]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  347.102975] RIP: 0033:0x457679
[  347.106156] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  347.125040] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
03:33:23 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet6_opts(r0, 0x29, 0x3f, &(0x7f0000000040)=""/40, &(0x7f0000000080)=0x28)
clock_settime(0x0, &(0x7f0000000840))

[  347.132733] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  347.139985] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  347.147247] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  347.154502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  347.161769] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000020
03:33:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  347.221968] Unknown ioctl 1074022623
[  347.237093] Unknown ioctl 1074310800
03:33:23 executing program 5 (fault-call:5 fault-nth:33):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:23 executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x0, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
pipe2(&(0x7f0000000000), 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000140))
ioctl$UI_BEGIN_FF_ERASE(r0, 0x4004556a, &(0x7f0000000040))

03:33:23 executing program 0:
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={<r0=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000200)='\x00'}, 0x30)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2}, r0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
io_setup(0x7ff, &(0x7f0000000040)=<r1=>0x0)
io_pgetevents(r1, 0x80000000, 0x80000000000006c, &(0x7f0000000080)=[{}, {}], &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000280)={0xe1}, 0x8})

[  347.399803] FAULT_INJECTION: forcing a failure.
[  347.399803] name failslab, interval 1, probability 0, space 0, times 0
[  347.432077] CPU: 1 PID: 15618 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  347.440599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  347.440606] Call Trace:
[  347.440626]  dump_stack+0x1d3/0x2c4
[  347.440645]  ? dump_stack_print_info.cold.2+0x52/0x52
[  347.440670]  should_fail.cold.4+0xa/0x17
[  347.440689]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  347.470506]  ? save_stack+0xa9/0xd0
[  347.474122]  ? graph_lock+0x170/0x170
[  347.477913]  ? kasan_slab_alloc+0x12/0x20
[  347.482057]  ? kmem_cache_alloc+0x12e/0x730
[  347.486368]  ? mmu_topup_memory_caches+0xf7/0x390
[  347.491193]  ? kvm_mmu_load+0x21/0xfa0
[  347.495062]  ? vcpu_enter_guest+0x3e9d/0x6260
[  347.499540]  ? graph_lock+0x170/0x170
[  347.503363]  ? ksys_ioctl+0xa9/0xd0
[  347.506972]  ? __x64_sys_ioctl+0x73/0xb0
[  347.511017]  ? do_syscall_64+0x1b9/0x820
[  347.515075]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  347.520440]  ? find_held_lock+0x36/0x1c0
[  347.524488]  ? __lock_is_held+0xb5/0x140
[  347.528545]  ? ttwu_stat+0x5c0/0x5c0
[  347.532276]  __should_failslab+0x124/0x180
[  347.536513]  should_failslab+0x9/0x14
[  347.540310]  kmem_cache_alloc+0x2be/0x730
[  347.544447]  ? vmx_flush_tlb_gva+0x380/0x380
[  347.548838]  ? print_usage_bug+0xc0/0xc0
[  347.552896]  ? mmu_topup_memory_caches+0xf7/0x390
[  347.557734]  mmu_topup_memory_caches+0xf7/0x390
[  347.562391]  kvm_mmu_load+0x21/0xfa0
[  347.566095]  vcpu_enter_guest+0x3e9d/0x6260
[  347.570403]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  347.575929]  ? check_preemption_disabled+0x48/0x200
[  347.580935]  ? emulator_read_emulated+0x50/0x50
[  347.585591]  ? perf_trace_lock+0x7a0/0x7a0
[  347.589813]  ? vmx_write_tsc_offset+0x670/0x670
[  347.594467]  ? graph_lock+0x170/0x170
[  347.598251]  ? check_preemption_disabled+0x48/0x200
[  347.603249]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  347.608772]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  347.614305]  ? check_preemption_disabled+0x48/0x200
[  347.619309]  ? __lock_is_held+0xb5/0x140
[  347.623360]  ? lock_acquire+0x1ed/0x520
[  347.627315]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  347.632328]  ? lock_release+0x970/0x970
[  347.636302]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  347.641563]  ? kvm_arch_dev_ioctl+0x630/0x630
[  347.646139]  ? preempt_notifier_dec+0x20/0x20
[  347.650626]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  347.655981]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  347.660990]  kvm_vcpu_ioctl+0x5c8/0x1150
[  347.665053]  ? kvm_vcpu_block+0x1020/0x1020
[  347.669379]  ? find_held_lock+0x36/0x1c0
[  347.673432]  ? __fget+0x4aa/0x740
[  347.676875]  ? check_preemption_disabled+0x48/0x200
[  347.681875]  ? kasan_check_read+0x11/0x20
[  347.686009]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  347.691267]  ? rcu_softirq_qs+0x20/0x20
[  347.695231]  ? __fget+0x4d1/0x740
[  347.698669]  ? ksys_dup3+0x680/0x680
[  347.702365]  ? find_held_lock+0x36/0x1c0
[  347.706417]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  347.711333]  ? kvm_vcpu_block+0x1020/0x1020
[  347.715646]  do_vfs_ioctl+0x1de/0x1720
[  347.719527]  ? __lock_is_held+0xb5/0x140
[  347.723583]  ? ioctl_preallocate+0x300/0x300
[  347.727984]  ? __fget_light+0x2e9/0x430
[  347.731941]  ? fget_raw+0x20/0x20
[  347.735395]  ? __sb_end_write+0xd9/0x110
[  347.739451]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  347.745053]  ? fput+0x130/0x1a0
[  347.748321]  ? do_syscall_64+0x9a/0x820
[  347.752403]  ? do_syscall_64+0x9a/0x820
[  347.756362]  ? lockdep_hardirqs_on+0x421/0x5c0
[  347.760932]  ? security_file_ioctl+0x94/0xc0
[  347.765327]  ksys_ioctl+0xa9/0xd0
[  347.768785]  __x64_sys_ioctl+0x73/0xb0
[  347.772659]  do_syscall_64+0x1b9/0x820
[  347.776531]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  347.781881]  ? syscall_return_slowpath+0x5e0/0x5e0
[  347.786802]  ? trace_hardirqs_off+0x310/0x310
[  347.791367]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  347.796374]  ? recalc_sigpending_tsk+0x180/0x180
[  347.801115]  ? kasan_check_write+0x14/0x20
[  347.805348]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  347.810181]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  347.815375] RIP: 0033:0x457679
[  347.818564] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  347.837461] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
03:33:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae8a, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:23 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="abbaf7babebbca0097e360c26464180174b08a0a383b1da99c73cf5a74801c5a0ed39942c2361534c462f65b44f4bc091e", 0x31, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000100)="cba01d0000000000000000a298432cb933c04077", 0x14, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @remote}, 0x1c)

[  347.845168] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  347.852422] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  347.859672] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  347.866923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  347.874176] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000021
[  347.884437] Unknown ioctl 1074022623
[  347.898648] Unknown ioctl 1074310800
03:33:24 executing program 1:
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x0, 0x3, 0x20, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x7}, 0xb)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0x0, 0x81})
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)

03:33:24 executing program 5 (fault-call:5 fault-nth:34):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:24 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000780))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000500)={0x0, @in={{0x2, 0x4e22, @rand_addr=0x87ea}}}, &(0x7f00000005c0)=0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000600)={0x0, 0xa, "b81668da8533a9d923b8"}, &(0x7f0000000640)=0x12)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000680)={<r4=>0x0, @in6={{0xa, 0x4e22, 0x1000, @mcast1, 0x2dd8}}, 0xfff, 0x7, 0x1, 0x1, 0x8}, &(0x7f0000000740)=0x98)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000380)={<r5=>r4, @in6={{0xa, 0x4e20, 0x2, @remote, 0x10001}}, 0x100000001, 0xffffffff}, &(0x7f00000000c0)=0x73)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000440)={r5, @in6={{0xa, 0x4e22, 0xe8, @remote, 0x2}}, 0x3c12, 0x8001, 0x1ec, 0x1ff, 0x80}, 0x98)
ioctl$VT_RELDISP(r3, 0x5605)
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r6 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r6, 0x540a, 0x0)
setxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="6f6929d720dc6d6f8879230676656e746300"], &(0x7f0000000280)='\x00', 0x1, 0x1)

03:33:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4004ae8b, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  348.008218] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
03:33:24 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
timer_create(0x2, &(0x7f0000000300)={0x0, 0xd, 0x4, @thr={&(0x7f0000000280)="ed13684a0b07eb5ae8e2f97ed7dd1ac35c3fcb0cabd9fab390a269eabe60ff69ca5e7ad23af08e8d6ab2946ff975", &(0x7f00000002c0)="53e55b9325cb9b1687385e9a8573a2246fb2d6b35bfeba45f5dc7b832875dac5512050d1b9855554e701ca8155fa42"}}, &(0x7f0000000340))
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x5, @thr={&(0x7f0000000040)="9182c88066d908d907ce31252a25beff080328a0f17cdb2fd7d60d6d2c8172ef361d3ab66ffa7d5f92850e8232d102e59b5db7cf55116526d695298b9916abd03370038f03c8c3110a1bbe1619c8b7029c473777f353397f397a4dc875a721b585edb812f74ff764d5cc288315592d39524d", &(0x7f00000000c0)="ff71c9e451b2c73493608432c20c0931911bce41b13b1504efd80adf1d11e913e81d0b33f59c60d4fceb4c321f60e5c1c64442de8e42e7a2f6fbaa6aab75823ecd33bf8b557cb420527697cfd9"}}, &(0x7f0000000200))
r0 = syz_open_dev$sndctrl(&(0x7f0000000240)='/dev/snd/controlC#\x00', 0x14, 0x0)
write$P9_RMKNOD(r0, &(0x7f0000000380)={0x14, 0x13, 0x2, {0x81, 0x1, 0x3}}, 0x14)

[  348.092532] FAULT_INJECTION: forcing a failure.
[  348.092532] name failslab, interval 1, probability 0, space 0, times 0
[  348.121088] CPU: 1 PID: 15644 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  348.129599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  348.139058] Call Trace:
[  348.141651]  dump_stack+0x1d3/0x2c4
[  348.145288]  ? dump_stack_print_info.cold.2+0x52/0x52
[  348.150492]  ? __kernel_text_address+0xd/0x40
[  348.154987]  ? unwind_get_return_address+0x61/0xa0
[  348.159921]  should_fail.cold.4+0xa/0x17
[  348.163981]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  348.169093]  ? save_stack+0xa9/0xd0
[  348.172722]  ? graph_lock+0x170/0x170
[  348.176522]  ? kasan_slab_alloc+0x12/0x20
[  348.180670]  ? kmem_cache_alloc+0x12e/0x730
[  348.184995]  ? mmu_topup_memory_caches+0xf7/0x390
03:33:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x2, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:24 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="abbaf7babebbca0097e360c26464180174b08a0a383b1da99c73cf5a74801c5a0ed39942c2361534c462f65b44f4bc091e", 0x31, 0x8000, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x44000102, 0x0)
sendto$inet6(r0, &(0x7f0000000100)="cba01d0000000000000000a298432cb933c04077", 0x14, 0x0, &(0x7f0000000300)={0xa, 0x0, 0x0, @remote}, 0x1c)

[  348.189830]  ? kvm_mmu_load+0x21/0xfa0
[  348.189846]  ? vcpu_enter_guest+0x3e9d/0x6260
[  348.189866]  ? graph_lock+0x170/0x170
[  348.189879]  ? ksys_ioctl+0xa9/0xd0
[  348.189889]  ? __x64_sys_ioctl+0x73/0xb0
[  348.189905]  ? do_syscall_64+0x1b9/0x820
[  348.198253]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  348.198276]  ? find_held_lock+0x36/0x1c0
[  348.198299]  ? __lock_is_held+0xb5/0x140
[  348.198325]  ? ttwu_stat+0x5c0/0x5c0
[  348.198348]  __should_failslab+0x124/0x180
[  348.235359]  should_failslab+0x9/0x14
[  348.239164]  kmem_cache_alloc+0x2be/0x730
[  348.243320]  ? vmx_flush_tlb_gva+0x380/0x380
[  348.247738]  ? print_usage_bug+0xc0/0xc0
[  348.251801]  ? d_splice_alias+0x7c9/0x11d0
[  348.256039]  ? mmu_topup_memory_caches+0xf7/0x390
[  348.260898]  mmu_topup_memory_caches+0xf7/0x390
[  348.265562]  kvm_mmu_load+0x21/0xfa0
[  348.269305]  vcpu_enter_guest+0x3e9d/0x6260
[  348.273640]  ? emulator_read_emulated+0x50/0x50
[  348.278306]  ? vmx_vcpu_load+0xb06/0x1030
[  348.282456]  ? vmx_write_tsc_offset+0x670/0x670
[  348.287124]  ? graph_lock+0x170/0x170
[  348.290909]  ? lock_downgrade+0x900/0x900
[  348.295046]  ? check_preemption_disabled+0x48/0x200
[  348.300068]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  348.305621]  ? check_preemption_disabled+0x48/0x200
[  348.310633]  ? __lock_is_held+0xb5/0x140
[  348.314689]  ? lock_acquire+0x1ed/0x520
[  348.318652]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  348.323662]  ? lock_release+0x970/0x970
[  348.327661]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  348.332929]  ? kvm_arch_dev_ioctl+0x630/0x630
[  348.337442]  ? preempt_notifier_dec+0x20/0x20
[  348.341964]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  348.346809]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  348.351828]  kvm_vcpu_ioctl+0x5c8/0x1150
[  348.355883]  ? kvm_vcpu_block+0x1020/0x1020
[  348.360197]  ? find_held_lock+0x36/0x1c0
[  348.364257]  ? __fget+0x4aa/0x740
[  348.367708]  ? check_preemption_disabled+0x48/0x200
[  348.372716]  ? kasan_check_read+0x11/0x20
[  348.376868]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  348.382134]  ? rcu_softirq_qs+0x20/0x20
[  348.386219]  ? __fget+0x4d1/0x740
[  348.389667]  ? ksys_dup3+0x680/0x680
[  348.393378]  ? find_held_lock+0x36/0x1c0
[  348.397450]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  348.402477]  ? kvm_vcpu_block+0x1020/0x1020
[  348.406792]  do_vfs_ioctl+0x1de/0x1720
[  348.410668]  ? __lock_is_held+0xb5/0x140
[  348.414732]  ? ioctl_preallocate+0x300/0x300
[  348.419126]  ? __fget_light+0x2e9/0x430
[  348.423096]  ? fget_raw+0x20/0x20
[  348.426538]  ? __sb_end_write+0xd9/0x110
[  348.430596]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  348.436119]  ? fput+0x130/0x1a0
[  348.439389]  ? do_syscall_64+0x9a/0x820
[  348.443365]  ? do_syscall_64+0x9a/0x820
[  348.447340]  ? lockdep_hardirqs_on+0x421/0x5c0
[  348.451933]  ? security_file_ioctl+0x94/0xc0
[  348.456329]  ksys_ioctl+0xa9/0xd0
[  348.459792]  __x64_sys_ioctl+0x73/0xb0
[  348.463688]  do_syscall_64+0x1b9/0x820
[  348.467565]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  348.472915]  ? syscall_return_slowpath+0x5e0/0x5e0
[  348.477858]  ? trace_hardirqs_off+0x310/0x310
[  348.482357]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  348.487925]  ? recalc_sigpending_tsk+0x180/0x180
[  348.492674]  ? kasan_check_write+0x14/0x20
[  348.496901]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  348.501738]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  348.506926] RIP: 0033:0x457679
[  348.510129] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  348.529024] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  348.536719] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
03:33:24 executing program 5 (fault-call:5 fault-nth:35):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

[  348.543974] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  348.551227] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  348.558484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  348.565742] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000022
03:33:24 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
r0 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x200000, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000100)=0x5)
clock_settime(0x6, &(0x7f0000000080)={0x0, 0x989680})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0)
bind$vsock_dgram(r0, &(0x7f0000000280)={0x28, 0x0, 0x0, @host}, 0x10)
ioctl$KDSKBLED(r1, 0x4b65, 0x6)
setxattr$trusted_overlay_redirect(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x3)

[  348.721198] FAULT_INJECTION: forcing a failure.
[  348.721198] name failslab, interval 1, probability 0, space 0, times 0
[  348.733175] CPU: 1 PID: 15665 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  348.741670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  348.741677] Call Trace:
[  348.741698]  dump_stack+0x1d3/0x2c4
[  348.741716]  ? dump_stack_print_info.cold.2+0x52/0x52
[  348.741735]  ? __kernel_text_address+0xd/0x40
[  348.753685]  ? unwind_get_return_address+0x61/0xa0
[  348.771864]  should_fail.cold.4+0xa/0x17
[  348.775911]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  348.781006]  ? save_stack+0xa9/0xd0
[  348.784636]  ? graph_lock+0x170/0x170
[  348.788418]  ? kasan_slab_alloc+0x12/0x20
[  348.792563]  ? kmem_cache_alloc+0x12e/0x730
[  348.796884]  ? mmu_topup_memory_caches+0xf7/0x390
[  348.801713]  ? kvm_mmu_load+0x21/0xfa0
[  348.805601]  ? vcpu_enter_guest+0x3e9d/0x6260
[  348.810081]  ? graph_lock+0x170/0x170
[  348.813876]  ? ksys_ioctl+0xa9/0xd0
[  348.817494]  ? __x64_sys_ioctl+0x73/0xb0
[  348.821536]  ? do_syscall_64+0x1b9/0x820
[  348.825582]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  348.830933]  ? find_held_lock+0x36/0x1c0
[  348.834978]  ? __lock_is_held+0xb5/0x140
[  348.839030]  ? ttwu_stat+0x5c0/0x5c0
[  348.842749]  __should_failslab+0x124/0x180
[  348.846966]  should_failslab+0x9/0x14
[  348.850748]  kmem_cache_alloc+0x2be/0x730
[  348.854877]  ? vmx_flush_tlb_gva+0x380/0x380
[  348.859366]  ? print_usage_bug+0xc0/0xc0
[  348.863414]  ? mmu_topup_memory_caches+0xf7/0x390
[  348.868258]  mmu_topup_memory_caches+0xf7/0x390
[  348.872931]  kvm_mmu_load+0x21/0xfa0
[  348.876636]  vcpu_enter_guest+0x3e9d/0x6260
[  348.880949]  ? emulator_read_emulated+0x50/0x50
[  348.885627]  ? vmx_vcpu_load+0xb06/0x1030
[  348.889796]  ? vmx_write_tsc_offset+0x670/0x670
[  348.894450]  ? graph_lock+0x170/0x170
[  348.898243]  ? lock_downgrade+0x900/0x900
[  348.902375]  ? check_preemption_disabled+0x48/0x200
[  348.907480]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  348.913000]  ? check_preemption_disabled+0x48/0x200
[  348.918001]  ? __lock_is_held+0xb5/0x140
[  348.922048]  ? lock_acquire+0x1ed/0x520
[  348.926003]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  348.931004]  ? lock_release+0x970/0x970
[  348.934960]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  348.940257]  ? kvm_arch_dev_ioctl+0x630/0x630
[  348.944733]  ? preempt_notifier_dec+0x20/0x20
[  348.949217]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  348.954049]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  348.959064]  kvm_vcpu_ioctl+0x5c8/0x1150
[  348.963109]  ? kvm_vcpu_block+0x1020/0x1020
[  348.967415]  ? find_held_lock+0x36/0x1c0
[  348.971464]  ? __fget+0x4aa/0x740
[  348.974910]  ? check_preemption_disabled+0x48/0x200
[  348.979910]  ? kasan_check_read+0x11/0x20
[  348.984042]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  348.989299]  ? rcu_softirq_qs+0x20/0x20
[  348.993272]  ? __fget+0x4d1/0x740
[  348.996715]  ? ksys_dup3+0x680/0x680
[  349.000414]  ? find_held_lock+0x36/0x1c0
[  349.004460]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  349.009391]  ? kvm_vcpu_block+0x1020/0x1020
[  349.013710]  do_vfs_ioctl+0x1de/0x1720
[  349.017580]  ? __lock_is_held+0xb5/0x140
[  349.021623]  ? ioctl_preallocate+0x300/0x300
[  349.026011]  ? __fget_light+0x2e9/0x430
[  349.029978]  ? fget_raw+0x20/0x20
[  349.033421]  ? __sb_end_write+0xd9/0x110
[  349.037468]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  349.043010]  ? fput+0x130/0x1a0
[  349.046271]  ? do_syscall_64+0x9a/0x820
[  349.050232]  ? do_syscall_64+0x9a/0x820
[  349.054224]  ? lockdep_hardirqs_on+0x421/0x5c0
[  349.058793]  ? security_file_ioctl+0x94/0xc0
[  349.063184]  ksys_ioctl+0xa9/0xd0
[  349.066622]  __x64_sys_ioctl+0x73/0xb0
[  349.070497]  do_syscall_64+0x1b9/0x820
[  349.074369]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  349.079841]  ? syscall_return_slowpath+0x5e0/0x5e0
[  349.084757]  ? trace_hardirqs_off+0x310/0x310
[  349.089241]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  349.094242]  ? recalc_sigpending_tsk+0x180/0x180
[  349.098980]  ? kasan_check_write+0x14/0x20
[  349.103219]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  349.108051]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  349.113227] RIP: 0033:0x457679
[  349.116405] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  349.135287] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  349.142986] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  349.150261] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  349.157513] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  349.164769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
03:33:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x5452, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  349.172026] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000023
03:33:25 executing program 5 (fault-call:5 fault-nth:36):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:25 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0xec3cb9ac915778ed, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x9, 0x3, 0x20, 0x4, 0x0, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0xfffffffffffffffc, 0x81})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a45323, &(0x7f0000000480)={{0x80000000000000, 0xffffffff}, "706f72743100000000000000000000000000000a972db50000000000000000000000000000000000000000000000000000000000ffffffffffffffff00", 0x20, 0x100000, 0x0, 0x5, 0x0, 0xf6b8, 0xffffffffffffffff})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180), &(0x7f0000000240)=0x4)

[  349.364305] FAULT_INJECTION: forcing a failure.
[  349.364305] name failslab, interval 1, probability 0, space 0, times 0
[  349.378066] CPU: 0 PID: 15681 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  349.386567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  349.395909] Call Trace:
[  349.398489]  dump_stack+0x1d3/0x2c4
[  349.402106]  ? dump_stack_print_info.cold.2+0x52/0x52
[  349.407304]  should_fail.cold.4+0xa/0x17
[  349.411354]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  349.416447]  ? save_stack+0xa9/0xd0
[  349.420148]  ? graph_lock+0x170/0x170
[  349.423934]  ? kasan_slab_alloc+0x12/0x20
[  349.428074]  ? kmem_cache_alloc+0x12e/0x730
[  349.432382]  ? mmu_topup_memory_caches+0xf7/0x390
[  349.437223]  ? kvm_mmu_load+0x21/0xfa0
[  349.441118]  ? vcpu_enter_guest+0x3e9d/0x6260
[  349.445598]  ? graph_lock+0x170/0x170
[  349.449385]  ? ksys_ioctl+0xa9/0xd0
[  349.452994]  ? __x64_sys_ioctl+0x73/0xb0
[  349.457041]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  349.462405]  ? find_held_lock+0x36/0x1c0
[  349.466455]  ? __lock_is_held+0xb5/0x140
[  349.470513]  ? ttwu_stat+0x5c0/0x5c0
[  349.474231]  __should_failslab+0x124/0x180
[  349.478469]  should_failslab+0x9/0x14
[  349.482261]  kmem_cache_alloc+0x2be/0x730
[  349.486830]  ? vmx_flush_tlb_gva+0x380/0x380
[  349.491222]  ? print_usage_bug+0xc0/0xc0
[  349.495275]  ? mmu_topup_memory_caches+0xf7/0x390
[  349.500107]  mmu_topup_memory_caches+0xf7/0x390
[  349.504779]  kvm_mmu_load+0x21/0xfa0
[  349.508490]  vcpu_enter_guest+0x3e9d/0x6260
[  349.512817]  ? emulator_read_emulated+0x50/0x50
[  349.517474]  ? zap_class+0x640/0x640
[  349.521263]  ? vmx_vcpu_load+0xb06/0x1030
[  349.525400]  ? vmx_write_tsc_offset+0x670/0x670
[  349.530053]  ? graph_lock+0x170/0x170
[  349.533840]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  349.539363]  ? check_preemption_disabled+0x48/0x200
[  349.544451]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  349.549972]  ? check_preemption_disabled+0x48/0x200
[  349.554983]  ? __lock_is_held+0xb5/0x140
[  349.559033]  ? lock_acquire+0x1ed/0x520
[  349.562990]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  349.568032]  ? lock_release+0x970/0x970
[  349.572017]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  349.577281]  ? kvm_arch_dev_ioctl+0x630/0x630
[  349.581787]  ? preempt_notifier_dec+0x20/0x20
[  349.586281]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  349.591109]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  349.596207]  kvm_vcpu_ioctl+0x5c8/0x1150
[  349.600267]  ? kvm_vcpu_block+0x1020/0x1020
[  349.604579]  ? find_held_lock+0x36/0x1c0
[  349.608634]  ? __fget+0x4aa/0x740
[  349.612088]  ? check_preemption_disabled+0x48/0x200
[  349.617134]  ? kasan_check_read+0x11/0x20
[  349.621278]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  349.626556]  ? rcu_softirq_qs+0x20/0x20
[  349.630525]  ? __fget+0x4d1/0x740
[  349.633970]  ? ksys_dup3+0x680/0x680
[  349.637668]  ? find_held_lock+0x36/0x1c0
[  349.641721]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  349.646645]  ? kvm_vcpu_block+0x1020/0x1020
[  349.650951]  do_vfs_ioctl+0x1de/0x1720
[  349.655202]  ? ioctl_preallocate+0x300/0x300
[  349.659603]  ? __fget_light+0x2e9/0x430
[  349.663568]  ? fget_raw+0x20/0x20
[  349.667011]  ? __sb_end_write+0xd9/0x110
[  349.671063]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  349.676582]  ? fput+0x130/0x1a0
[  349.679848]  ? do_syscall_64+0x9a/0x820
[  349.683807]  ? do_syscall_64+0x9a/0x820
[  349.687767]  ? lockdep_hardirqs_on+0x421/0x5c0
[  349.692338]  ? security_file_ioctl+0x94/0xc0
[  349.696736]  ksys_ioctl+0xa9/0xd0
[  349.700183]  __x64_sys_ioctl+0x73/0xb0
[  349.704058]  do_syscall_64+0x1b9/0x820
[  349.707931]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  349.713290]  ? syscall_return_slowpath+0x5e0/0x5e0
[  349.718317]  ? trace_hardirqs_off+0x310/0x310
[  349.722796]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  349.727809]  ? recalc_sigpending_tsk+0x180/0x180
[  349.732639]  ? kasan_check_write+0x14/0x20
[  349.736864]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  349.741703]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  349.746905] RIP: 0033:0x457679
[  349.750099] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  349.768983] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  349.776694] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  349.784035] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  349.791306] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  349.798560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  349.805812] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000024
03:33:25 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x0, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x6, 0x9, 0x3, 0x20, 0x4, 0x20, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)

03:33:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x5450, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:27 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000240)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
ioctl$VT_ACTIVATE(r0, 0x5606, 0x2)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280)='/dev/zero\x00', 0x1c7000, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'team_slave_1\x00', 0x2402})
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r1, &(0x7f0000000000)={r1, r0})
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000001c0)=0x10000)
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x0)

03:33:27 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x2000000000000000, 0xffffffffffffffff, 0xfffffffffffffffd)
clock_settime(0x1, &(0x7f0000000840)={0x77359400})
r0 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x2, 0x80000)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x0, 0xf}}, 0x20)
write$RDMA_USER_CM_CMD_ACCEPT(r0, &(0x7f0000000200)={0x8, 0x120, 0xfa00, {0x0, {0x8, 0x400, "8661272d8a1a40162cf4228fec6c3f07790bc2cdf2a42a2b17d81d6868a48a2f021140f44df8d71a80c7b3dfcda5378417742ba86d818aef1babec66da4ca6472d4b818c6f28a84294498e49dd433f3bd483bfc9a7392e0e368d6abdcafd55c34762e30011799b576fa96ad6c2b57c93ae3110668c02adb2f8e1226dc6d53543d37332183c501790d0c3d1888ec95d5a04957509fca96c4f618f2848fe9b6dcd9cb2b1ba742db027b514125e702f96a1659938ab4eb9c6db45b64007cc284c89d1e820ca50b2f88709d19aec1c2dc8166787d90b7943bbc6206b05ad5e74e713befc334c7b71fc60f9047ff3a01caa57fb4bb3d849b159cd7ea37e19d8d5e93a", 0x9, 0x0, 0x5, 0x3, 0x5, 0xfffffffffffffffd, 0x5, 0x1}, r1}}, 0x128)

03:33:27 executing program 5 (fault-call:5 fault-nth:37):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x8400ae8e, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:27 executing program 2:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0xec3cb9ac915778ed, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x9, 0x3, 0x20, 0x4, 0x0, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0xfffffffffffffffc, 0x81})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a45323, &(0x7f0000000480)={{0x80000000000000, 0xffffffff}, "706f72743100000000000000000000000000000a972db50000000000000000000000000000000000000000000000000000000000ffffffffffffffff00", 0x20, 0x100000, 0x0, 0x5, 0x0, 0xf6b8, 0xffffffffffffffff})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180), &(0x7f0000000240)=0x4)

03:33:27 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0xec3cb9ac915778ed, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x9, 0x3, 0x20, 0x4, 0x0, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0xfffffffffffffffc, 0x81})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a45323, &(0x7f0000000480)={{0x80000000000000, 0xffffffff}, "706f72743100000000000000000000000000000a972db50000000000000000000000000000000000000000000000000000000000ffffffffffffffff00", 0x20, 0x100000, 0x0, 0x5, 0x0, 0xf6b8, 0xffffffffffffffff})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180), &(0x7f0000000240)=0x4)

[  351.136538] FAULT_INJECTION: forcing a failure.
[  351.136538] name failslab, interval 1, probability 0, space 0, times 0
[  351.149944] CPU: 0 PID: 15716 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  351.158558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.158564] Call Trace:
[  351.158587]  dump_stack+0x1d3/0x2c4
[  351.158607]  ? dump_stack_print_info.cold.2+0x52/0x52
[  351.158627]  ? __kernel_text_address+0xd/0x40
[  351.158644]  ? unwind_get_return_address+0x61/0xa0
[  351.158665]  should_fail.cold.4+0xa/0x17
[  351.158683]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  351.158702]  ? save_stack+0xa9/0xd0
[  351.158717]  ? graph_lock+0x170/0x170
[  351.158731]  ? kasan_slab_alloc+0x12/0x20
[  351.174282]  ? kmem_cache_alloc+0x12e/0x730
[  351.174299]  ? mmu_topup_memory_caches+0xf7/0x390
[  351.183971]  ? kvm_mmu_load+0x21/0xfa0
[  351.183988]  ? vcpu_enter_guest+0x3e9d/0x6260
[  351.184004]  ? graph_lock+0x170/0x170
[  351.184026]  ? ksys_ioctl+0xa9/0xd0
03:33:27 executing program 0:
r0 = gettid()
r1 = perf_event_open(&(0x7f0000000400)={0x0, 0x70, 0x5, 0x6, 0x3, 0x8, 0x0, 0xd25, 0x8000, 0xf, 0xf09, 0x0, 0x8e2, 0x7, 0x80000001, 0xfff, 0x8001, 0x6, 0x1, 0x1, 0x9, 0x5, 0x71448239, 0x400, 0x8000, 0x2, 0x1, 0x4, 0x7, 0x7, 0x10000, 0x81, 0x9, 0x8001, 0x6, 0x7, 0x6, 0x1, 0x0, 0x6, 0x1, @perf_bp={&(0x7f00000003c0), 0x2}, 0x400, 0x4, 0x40, 0x4, 0xc0000000000, 0x5d75}, 0x0, 0x7, 0xffffffffffffffff, 0xb)
perf_event_open(&(0x7f0000000340)={0x2, 0x70, 0x3f, 0xfba, 0x2, 0xffff, 0x0, 0x0, 0x40000, 0x5, 0x0, 0xffffffffffff0000, 0xffff, 0x8ace, 0x401, 0xc6cf61e, 0x5, 0x7fffffff, 0x6, 0x6, 0x1, 0x1, 0x4, 0x10001, 0x1e0f, 0x8, 0x80, 0xd9, 0x7, 0x7, 0x8e76, 0x1, 0x8, 0x100000000, 0x1000, 0xfff, 0x7f, 0x1, 0x0, 0x64, 0x5, @perf_bp={&(0x7f0000000300), 0xf}, 0x0, 0x0, 0x3a3, 0x0, 0xff, 0x8, 0x4}, r0, 0x0, r1, 0x8)
r2 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0x3, 0x800)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000080)=<r3=>0x0)
r4 = perf_event_open(&(0x7f0000000180)={0x3ffffffff, 0x70, 0x3e5, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x101, 0x20000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x1000000000000}, r3, 0x0, 0xffffffffffffffff, 0x2)
r5 = dup3(r4, r4, 0x80000)
write$P9_RCREATE(r5, &(0x7f00000000c0)={0x18, 0x73, 0x2, {{0x2, 0x3, 0x8}, 0x93d3}}, 0x18)
clock_settime(0x0, &(0x7f0000000040))
ioctl(r4, 0x0, &(0x7f0000000200)="806f1971bb50ca141dcce24807725c77f4d59c1dbacb036e8a199328c004bf2eacca50e3cdee95971047aa93c9897280e15357ab1911760d0d3125c2f396b4c58bd65b8086f7d8c950faa91309d2aef0467327958e5337699b0e8fdc91df910a7b03e6520d27c13df59c4638691fb166dddd4cf4932846a2de9cceae0c4bd2ba48e317204c215a2f731f16d587bbdc392070bbc3eba42a1e175380756a3c96e6fe249c680d4b9b7beffa68c67e4d68cb37ff332d59a02e340752a24eb24d988394d4180aa737ab6c2a6d9b3c1de09fd5bffc0774cdd1f603d8b4e82cf1132979b40aa6eda77a096ea9982c373bbca855")
write$FUSE_IOCTL(r4, &(0x7f0000000100)={0x20, 0x0, 0x8, {0x8, 0x0, 0xfff, 0x5157}}, 0x20)

03:33:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4004ae99, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  351.184040]  ? __x64_sys_ioctl+0x73/0xb0
[  351.198074]  ? do_syscall_64+0x1b9/0x820
[  351.198096]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  351.198131]  ? find_held_lock+0x36/0x1c0
[  351.198149]  ? __lock_is_held+0xb5/0x140
[  351.198173]  ? ttwu_stat+0x5c0/0x5c0
[  351.205564]  __should_failslab+0x124/0x180
[  351.205580]  should_failslab+0x9/0x14
[  351.205592]  kmem_cache_alloc+0x2be/0x730
[  351.205603]  ? vmx_flush_tlb_gva+0x380/0x380
[  351.205619]  ? mark_held_locks+0xc7/0x130
[  351.280591]  ? mmu_topup_memory_caches+0xf7/0x390
[  351.285439]  mmu_topup_memory_caches+0xf7/0x390
[  351.290116]  kvm_mmu_load+0x21/0xfa0
[  351.293821]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[  351.298842]  ? kvm_get_time_scale+0x188/0x1e0
[  351.303331]  vcpu_enter_guest+0x3e9d/0x6260
[  351.307647]  ? emulator_read_emulated+0x50/0x50
[  351.312304]  ? vmx_vcpu_load+0xb06/0x1030
[  351.316460]  ? vmx_write_tsc_offset+0x670/0x670
[  351.321116]  ? graph_lock+0x170/0x170
[  351.324901]  ? lock_downgrade+0x900/0x900
[  351.329052]  ? check_preemption_disabled+0x48/0x200
[  351.334056]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  351.339674]  ? check_preemption_disabled+0x48/0x200
[  351.344679]  ? __lock_is_held+0xb5/0x140
[  351.348741]  ? lock_acquire+0x1ed/0x520
[  351.352711]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  351.357715]  ? lock_release+0x970/0x970
[  351.361670]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  351.367024]  ? kvm_arch_dev_ioctl+0x630/0x630
[  351.371503]  ? preempt_notifier_dec+0x20/0x20
[  351.375989]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  351.380818]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  351.385834]  kvm_vcpu_ioctl+0x5c8/0x1150
[  351.389881]  ? kvm_vcpu_block+0x1020/0x1020
[  351.394191]  ? find_held_lock+0x36/0x1c0
[  351.398242]  ? __fget+0x4aa/0x740
[  351.401680]  ? check_preemption_disabled+0x48/0x200
[  351.406686]  ? kasan_check_read+0x11/0x20
[  351.410826]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  351.416086]  ? rcu_softirq_qs+0x20/0x20
[  351.420053]  ? __fget+0x4d1/0x740
[  351.423499]  ? ksys_dup3+0x680/0x680
[  351.427192]  ? find_held_lock+0x36/0x1c0
[  351.431240]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  351.436164]  ? kvm_vcpu_block+0x1020/0x1020
[  351.440473]  do_vfs_ioctl+0x1de/0x1720
[  351.444363]  ? __lock_is_held+0xb5/0x140
[  351.448429]  ? ioctl_preallocate+0x300/0x300
[  351.452818]  ? __fget_light+0x2e9/0x430
[  351.456786]  ? fget_raw+0x20/0x20
[  351.460226]  ? __sb_end_write+0xd9/0x110
[  351.464279]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  351.469912]  ? fput+0x130/0x1a0
[  351.473199]  ? do_syscall_64+0x9a/0x820
[  351.477153]  ? do_syscall_64+0x9a/0x820
[  351.481125]  ? lockdep_hardirqs_on+0x421/0x5c0
[  351.486022]  ? security_file_ioctl+0x94/0xc0
[  351.490416]  ksys_ioctl+0xa9/0xd0
[  351.493852]  __x64_sys_ioctl+0x73/0xb0
[  351.497725]  do_syscall_64+0x1b9/0x820
[  351.501597]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  351.506961]  ? syscall_return_slowpath+0x5e0/0x5e0
[  351.511880]  ? trace_hardirqs_off+0x310/0x310
[  351.516359]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  351.521361]  ? recalc_sigpending_tsk+0x180/0x180
[  351.526112]  ? kasan_check_write+0x14/0x20
[  351.530365]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  351.535207]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  351.540378] RIP: 0033:0x457679
[  351.543736] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  351.562619] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  351.570325] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  351.577582] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:33:27 executing program 5 (fault-call:5 fault-nth:38):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:27 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
set_thread_area(&(0x7f0000000300)={0xffffffffffff8000, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffff8bd1, 0x100000000, 0x6, 0x100000001, 0x8000, 0x8, 0x3})
r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x3, 0x2)
r1 = msgget$private(0x0, 0xfffffffffffffffe)
msgctl$MSG_INFO(r1, 0xc, &(0x7f00000000c0)=""/167)
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000200)="1bc34c3004d2be0889ae5d38561ea75bc72ef65f35b4b4cb3af577820b1ff4f1a87f3b76f8ff58f459a1c0d0b58a9e91bb0246aba6fb05e97c45ac8e675c025f7280ae1ce033216bc7117ef937b5355fa813dda8a57f777d6ee6f9e84350142d111ca6a8b0099a45f624c629d154e998226751df026fec22d96b2af78c913fd5771bff53c1654a3d4c377c2accbe3cd31578a0d7d17d1ce8498ccd2fe533194934c7352ac3380c9dd631c247ba415d705bdebb03e453b8726a893a22767e9364bfd502a495dac8d4c9a990aa84838d59a5c9cc43a410d28e43b717145f0f26fdf126a829444c7a518681d89e7894a8c6342a9a009a48")
unlinkat(r0, &(0x7f0000000080)='./file0\x00', 0x200)

[  351.584834] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  351.592094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  351.599347] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000025
[  351.735953] FAULT_INJECTION: forcing a failure.
[  351.735953] name failslab, interval 1, probability 0, space 0, times 0
[  351.766689] CPU: 1 PID: 15738 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  351.775215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.784559] Call Trace:
[  351.787141]  dump_stack+0x1d3/0x2c4
[  351.790757]  ? dump_stack_print_info.cold.2+0x52/0x52
[  351.795950]  ? __kernel_text_address+0xd/0x40
[  351.800442]  ? unwind_get_return_address+0x61/0xa0
[  351.805366]  should_fail.cold.4+0xa/0x17
[  351.809416]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  351.814529]  ? save_stack+0xa9/0xd0
[  351.818142]  ? graph_lock+0x170/0x170
[  351.821928]  ? kasan_slab_alloc+0x12/0x20
[  351.826061]  ? kmem_cache_alloc+0x12e/0x730
[  351.830368]  ? mmu_topup_memory_caches+0xf7/0x390
[  351.835189]  ? kvm_mmu_load+0x21/0xfa0
[  351.839072]  ? vcpu_enter_guest+0x3e9d/0x6260
[  351.843583]  ? graph_lock+0x170/0x170
[  351.847371]  ? ksys_ioctl+0xa9/0xd0
[  351.850983]  ? __x64_sys_ioctl+0x73/0xb0
[  351.855042]  ? do_syscall_64+0x1b9/0x820
[  351.859090]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  351.864442]  ? find_held_lock+0x36/0x1c0
[  351.868592]  ? __lock_is_held+0xb5/0x140
[  351.872647]  ? ttwu_stat+0x5c0/0x5c0
[  351.876352]  __should_failslab+0x124/0x180
[  351.880575]  should_failslab+0x9/0x14
[  351.884377]  kmem_cache_alloc+0x2be/0x730
[  351.888529]  ? mmu_topup_memory_caches+0xf7/0x390
[  351.893359]  mmu_topup_memory_caches+0xf7/0x390
[  351.898029]  kvm_mmu_load+0x21/0xfa0
[  351.901736]  vcpu_enter_guest+0x3e9d/0x6260
[  351.906049]  ? emulator_read_emulated+0x50/0x50
[  351.910709]  ? vmx_vcpu_load+0xb06/0x1030
[  351.914847]  ? vmx_write_tsc_offset+0x670/0x670
[  351.919506]  ? graph_lock+0x170/0x170
[  351.923296]  ? lock_downgrade+0x900/0x900
[  351.927440]  ? check_preemption_disabled+0x48/0x200
[  351.932535]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  351.938087]  ? check_preemption_disabled+0x48/0x200
[  351.943097]  ? __lock_is_held+0xb5/0x140
[  351.947145]  ? lock_acquire+0x1ed/0x520
[  351.951111]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  351.956115]  ? lock_release+0x970/0x970
[  351.960068]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  351.965326]  ? kvm_arch_dev_ioctl+0x630/0x630
[  351.969807]  ? preempt_notifier_dec+0x20/0x20
[  351.974293]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  351.979134]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  351.984174]  kvm_vcpu_ioctl+0x5c8/0x1150
[  351.988222]  ? kvm_vcpu_block+0x1020/0x1020
[  351.992545]  ? find_held_lock+0x36/0x1c0
[  351.996606]  ? __fget+0x4aa/0x740
[  352.000064]  ? check_preemption_disabled+0x48/0x200
[  352.005070]  ? kasan_check_read+0x11/0x20
[  352.009218]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  352.014480]  ? rcu_softirq_qs+0x20/0x20
[  352.018450]  ? __fget+0x4d1/0x740
[  352.021891]  ? ksys_dup3+0x680/0x680
[  352.025590]  ? find_held_lock+0x36/0x1c0
[  352.029641]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  352.034561]  ? kvm_vcpu_block+0x1020/0x1020
[  352.038887]  do_vfs_ioctl+0x1de/0x1720
[  352.042807]  ? __lock_is_held+0xb5/0x140
[  352.046866]  ? ioctl_preallocate+0x300/0x300
[  352.051269]  ? __fget_light+0x2e9/0x430
[  352.055234]  ? fget_raw+0x20/0x20
[  352.058686]  ? __sb_end_write+0xd9/0x110
[  352.062738]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  352.068256]  ? fput+0x130/0x1a0
[  352.071524]  ? do_syscall_64+0x9a/0x820
[  352.075482]  ? do_syscall_64+0x9a/0x820
[  352.079457]  ? lockdep_hardirqs_on+0x421/0x5c0
[  352.084027]  ? security_file_ioctl+0x94/0xc0
[  352.088428]  ksys_ioctl+0xa9/0xd0
[  352.091868]  __x64_sys_ioctl+0x73/0xb0
[  352.095843]  do_syscall_64+0x1b9/0x820
[  352.099714]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  352.105068]  ? syscall_return_slowpath+0x5e0/0x5e0
[  352.110000]  ? trace_hardirqs_off+0x310/0x310
[  352.114475]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  352.119479]  ? recalc_sigpending_tsk+0x180/0x180
[  352.124222]  ? kasan_check_write+0x14/0x20
[  352.128478]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  352.133316]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  352.138493] RIP: 0033:0x457679
[  352.141678] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  352.160663] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  352.168358] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  352.175622] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
03:33:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0xec3cb9ac915778ed, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x9, 0x3, 0x20, 0x4, 0x0, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0xfffffffffffffffc, 0x81})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a45323, &(0x7f0000000480)={{0x80000000000000, 0xffffffff}, "706f72743100000000000000000000000000000a972db50000000000000000000000000000000000000000000000000000000000ffffffffffffffff00", 0x20, 0x100000, 0x0, 0x5, 0x0, 0xf6b8, 0xffffffffffffffff})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180), &(0x7f0000000240)=0x4)

03:33:28 executing program 2:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0x24, &(0x7f0000000140)={@in={{0x2, 0x0, @dev}}, 0x0, 0x0, 0x0, "799894cdb90a2db186e7871a1d0862ac37d9a9199f6992cf49a89eda234d4c332eb69345b3779e1c39faf19d12ac869dddee087615e0fd22f36a7d907957d2c97ee7276ddb53dc1596e5653f7e032bc8"}, 0xd8)

[  352.182901] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  352.190162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  352.197445] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000026
03:33:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x200, 0x0)
write$P9_RCREATE(r2, &(0x7f00000001c0)={0x18, 0x73, 0x1, {{0x4, 0x2}, 0x100000001}}, 0x18)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000080))
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r1, &(0x7f0000000000)={r1, r0})
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000004c0)={<r4=>0xffffffffffffffff}, 0x111, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r2, &(0x7f0000000540)={0xb, 0x10, 0xfa00, {&(0x7f0000000400), r4, 0x6}}, 0x18)
ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f0000000380)={0x20000, 0x100, 0x20000, 0xac, 0x5, 0x9})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
write$P9_RMKNOD(r2, &(0x7f00000003c0)={0x14, 0x13, 0x1, {0x2a, 0x2, 0x3}}, 0x14)
ioctl$TIOCLINUX4(r2, 0x541c, &(0x7f0000000280))
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000240)={0x4, 0x89, 0x3f})
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x0)

03:33:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x8000, 0x0)
ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f0000000080))
eventfd(0x3)
accept4$alg(r1, 0x0, 0x0, 0x801)
ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f00000000c0)={0x17, 0x1000, &(0x7f0000000200)="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"})
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000100)={0x0, @speck128})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000001200)={0x4, 0x0, &(0x7f0000ffc000/0x3000)=nil})

03:33:28 executing program 5 (fault-call:5 fault-nth:39):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4040ae9e, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:28 executing program 0:
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x44)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, r0, 0x0)
clock_settime(0x0, &(0x7f0000000840))

03:33:28 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
ioctl$VHOST_SET_VRING_NUM(0xffffffffffffffff, 0x4008af10, &(0x7f00000000c0)={0x1, 0x1})
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000000))
prctl$setmm(0x23, 0x4, &(0x7f0000ffc000/0x3000)=nil)

[  352.460390] FAULT_INJECTION: forcing a failure.
[  352.460390] name failslab, interval 1, probability 0, space 0, times 0
[  352.502285] CPU: 1 PID: 15760 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  352.510841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  352.510848] Call Trace:
[  352.510870]  dump_stack+0x1d3/0x2c4
[  352.510898]  ? dump_stack_print_info.cold.2+0x52/0x52
[  352.510916]  ? __kernel_text_address+0xd/0x40
[  352.510954]  ? unwind_get_return_address+0x61/0xa0
[  352.510977]  should_fail.cold.4+0xa/0x17
[  352.523348]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  352.523367]  ? save_stack+0xa9/0xd0
[  352.523384]  ? graph_lock+0x170/0x170
[  352.523397]  ? kasan_slab_alloc+0x12/0x20
[  352.523409]  ? kmem_cache_alloc+0x12e/0x730
[  352.523424]  ? mmu_topup_memory_caches+0xf7/0x390
[  352.523435]  ? kvm_mmu_load+0x21/0xfa0
[  352.523449]  ? vcpu_enter_guest+0x3e9d/0x6260
[  352.523468]  ? graph_lock+0x170/0x170
[  352.532256]  ? ksys_ioctl+0xa9/0xd0
[  352.532269]  ? __x64_sys_ioctl+0x73/0xb0
[  352.541723]  ? do_syscall_64+0x1b9/0x820
[  352.541741]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
03:33:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4004ae86, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  352.541766]  ? find_held_lock+0x36/0x1c0
[  352.541784]  ? __lock_is_held+0xb5/0x140
[  352.541812]  ? ttwu_stat+0x5c0/0x5c0
[  352.541837]  __should_failslab+0x124/0x180
[  352.550968]  should_failslab+0x9/0x14
[  352.550979]  kmem_cache_alloc+0x2be/0x730
[  352.550997]  ? mmu_topup_memory_caches+0xf7/0x390
[  352.551013]  mmu_topup_memory_caches+0xf7/0x390
[  352.551030]  kvm_mmu_load+0x21/0xfa0
[  352.551055]  vcpu_enter_guest+0x3e9d/0x6260
[  352.558469]  ? emulator_read_emulated+0x50/0x50
[  352.558492]  ? vmx_vcpu_load+0xb06/0x1030
[  352.567130]  ? vmx_write_tsc_offset+0x670/0x670
[  352.567147]  ? graph_lock+0x170/0x170
[  352.567160]  ? lock_downgrade+0x900/0x900
[  352.567179]  ? check_preemption_disabled+0x48/0x200
[  352.567203]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  352.567241]  ? check_preemption_disabled+0x48/0x200
[  352.567268]  ? __lock_is_held+0xb5/0x140
[  352.576073]  ? lock_acquire+0x1ed/0x520
[  352.576090]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  352.601663]  ? lock_release+0x970/0x970
[  352.601678]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  352.601693]  ? kvm_arch_dev_ioctl+0x630/0x630
[  352.601731]  ? preempt_notifier_dec+0x20/0x20
[  352.601762]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  352.601781]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  352.601819]  kvm_vcpu_ioctl+0x5c8/0x1150
[  352.609945]  ? kvm_vcpu_block+0x1020/0x1020
[  352.652077]  ? find_held_lock+0x36/0x1c0
[  352.652099]  ? __fget+0x4aa/0x740
[  352.660562]  ? check_preemption_disabled+0x48/0x200
[  352.660582]  ? kasan_check_read+0x11/0x20
[  352.680287]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
03:33:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x9000aea4, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  352.680301]  ? rcu_softirq_qs+0x20/0x20
[  352.680328]  ? __fget+0x4d1/0x740
[  352.680347]  ? ksys_dup3+0x680/0x680
[  352.688354]  ? find_held_lock+0x36/0x1c0
[  352.688374]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  352.688397]  ? kvm_vcpu_block+0x1020/0x1020
[  352.697364]  do_vfs_ioctl+0x1de/0x1720
[  352.697379]  ? __lock_is_held+0xb5/0x140
[  352.697397]  ? ioctl_preallocate+0x300/0x300
[  352.707181]  ? __fget_light+0x2e9/0x430
[  352.707199]  ? fget_raw+0x20/0x20
[  352.707218]  ? __sb_end_write+0xd9/0x110
[  352.737652]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  352.737665]  ? fput+0x130/0x1a0
[  352.737682]  ? do_syscall_64+0x9a/0x820
[  352.746828]  ? do_syscall_64+0x9a/0x820
[  352.746844]  ? lockdep_hardirqs_on+0x421/0x5c0
[  352.746863]  ? security_file_ioctl+0x94/0xc0
[  352.767360]  ksys_ioctl+0xa9/0xd0
[  352.776569]  __x64_sys_ioctl+0x73/0xb0
[  352.776606]  do_syscall_64+0x1b9/0x820
[  352.776626]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  352.800395]  ? syscall_return_slowpath+0x5e0/0x5e0
[  352.800413]  ? trace_hardirqs_off+0x310/0x310
[  352.800436]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  352.813190]  ? recalc_sigpending_tsk+0x180/0x180
[  352.833447]  ? kasan_check_write+0x14/0x20
[  352.833470]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  352.833494]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  352.842751] RIP: 0033:0x457679
[  352.842772] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
03:33:29 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0xec3cb9ac915778ed, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000740)={@ethernet={0x0, @dev={[], 0x16}}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7f7})
io_destroy(0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/syz1\x00', 0x1ff)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f00000000c0)={0xfffffffffffffffb, 0x6, 0x9, 0x3, 0x20, 0x4, 0x0, 0x80000001, 0x7, 0x4d, 0x7}, 0xb)
ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x10000, 0x28, 0xfffffffffffffffc, 0x81})
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$LOOP_GET_STATUS(0xffffffffffffffff, 0x4c03, &(0x7f0000000800))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x47744279}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={0x0, r0, 0x2, 0x1}, 0x14)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94)
ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x7704, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a45323, &(0x7f0000000480)={{0x80000000000000, 0xffffffff}, "706f72743100000000000000000000000000000a972db50000000000000000000000000000000000000000000000000000000000ffffffffffffffff00", 0x20, 0x100000, 0x0, 0x5, 0x0, 0xf6b8, 0xffffffffffffffff})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000))
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000180), &(0x7f0000000240)=0x4)

[  352.842779] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  352.852184] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  352.852196] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  352.852204] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  352.852212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  352.852220] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000027
03:33:29 executing program 2:

03:33:29 executing program 5 (fault-call:5 fault-nth:40):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4048ae9b, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  353.170174] FAULT_INJECTION: forcing a failure.
[  353.170174] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  353.185008] CPU: 0 PID: 15795 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  353.193513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  353.202860] Call Trace:
[  353.202882]  dump_stack+0x1d3/0x2c4
[  353.202908]  ? dump_stack_print_info.cold.2+0x52/0x52
[  353.202935]  should_fail.cold.4+0xa/0x17
[  353.202959]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  353.209188]  ? graph_lock+0x170/0x170
[  353.209206]  ? rcu_softirq_qs+0x20/0x20
[  353.209235]  ? unwind_dump+0x190/0x190
[  353.209250]  ? graph_lock+0x170/0x170
[  353.209291]  ? is_bpf_text_address+0xd3/0x170
[  353.209318]  ? __lock_is_held+0xb5/0x140
[  353.209345]  ? lock_release+0x970/0x970
[  353.209360]  ? ttwu_stat+0x5c0/0x5c0
[  353.209376]  ? save_stack+0x43/0xd0
[  353.209388]  ? kasan_kmalloc+0xc7/0xe0
[  353.209400]  ? kasan_slab_alloc+0x12/0x20
[  353.209420]  ? __might_sleep+0x95/0x190
[  353.209442]  __alloc_pages_nodemask+0x34b/0xdd0
[  353.209457]  ? lock_downgrade+0x900/0x900
[  353.209473]  ? check_preemption_disabled+0x48/0x200
[  353.209493]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  353.209506]  ? kasan_check_read+0x11/0x20
[  353.209520]  ? graph_lock+0x170/0x170
[  353.209533]  ? rcu_softirq_qs+0x20/0x20
[  353.209551]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  353.209579]  ? check_preemption_disabled+0x48/0x200
[  353.209602]  ? __lock_is_held+0xb5/0x140
[  353.209627]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  353.209649]  alloc_pages_current+0x10c/0x210
[  353.326322]  __get_free_pages+0xc/0x40
[  353.330288]  mmu_topup_memory_caches+0x1ee/0x390
[  353.335054]  kvm_mmu_load+0x21/0xfa0
[  353.338779]  vcpu_enter_guest+0x3e9d/0x6260
[  353.343086]  ? __phys_addr+0xa6/0x120
[  353.346890]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  353.352632]  ? vmcs_load+0xd8/0x150
[  353.356253]  ? emulator_read_emulated+0x50/0x50
[  353.360915]  ? vmx_vcpu_load+0xb06/0x1030
[  353.365070]  ? vmx_write_tsc_offset+0x670/0x670
[  353.369727]  ? graph_lock+0x170/0x170
[  353.373512]  ? lock_downgrade+0x900/0x900
[  353.377655]  ? check_preemption_disabled+0x48/0x200
[  353.382657]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  353.388178]  ? check_preemption_disabled+0x48/0x200
[  353.393183]  ? __lock_is_held+0xb5/0x140
[  353.397232]  ? lock_acquire+0x1ed/0x520
[  353.401191]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  353.406199]  ? lock_release+0x970/0x970
[  353.410171]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  353.415436]  ? kvm_arch_dev_ioctl+0x630/0x630
[  353.419919]  ? preempt_notifier_dec+0x20/0x20
[  353.424409]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  353.429235]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  353.434262]  kvm_vcpu_ioctl+0x5c8/0x1150
[  353.438311]  ? kvm_vcpu_block+0x1020/0x1020
[  353.442621]  ? find_held_lock+0x36/0x1c0
[  353.446674]  ? __fget+0x4aa/0x740
[  353.450121]  ? check_preemption_disabled+0x48/0x200
[  353.455124]  ? kasan_check_read+0x11/0x20
[  353.459258]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  353.464539]  ? rcu_softirq_qs+0x20/0x20
[  353.468504]  ? __fget+0x4d1/0x740
[  353.471953]  ? ksys_dup3+0x680/0x680
[  353.475649]  ? find_held_lock+0x36/0x1c0
[  353.479711]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  353.484645]  ? kvm_vcpu_block+0x1020/0x1020
[  353.489343]  do_vfs_ioctl+0x1de/0x1720
[  353.493232]  ? __lock_is_held+0xb5/0x140
[  353.497284]  ? ioctl_preallocate+0x300/0x300
[  353.501683]  ? __fget_light+0x2e9/0x430
[  353.505642]  ? fget_raw+0x20/0x20
[  353.509082]  ? __sb_end_write+0xd9/0x110
[  353.513130]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  353.518663]  ? fput+0x130/0x1a0
[  353.522032]  ? do_syscall_64+0x9a/0x820
[  353.525989]  ? do_syscall_64+0x9a/0x820
[  353.529947]  ? lockdep_hardirqs_on+0x421/0x5c0
[  353.534517]  ? security_file_ioctl+0x94/0xc0
[  353.538916]  ksys_ioctl+0xa9/0xd0
[  353.542354]  __x64_sys_ioctl+0x73/0xb0
[  353.546227]  do_syscall_64+0x1b9/0x820
[  353.550104]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  353.555476]  ? syscall_return_slowpath+0x5e0/0x5e0
[  353.560406]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  353.565236]  ? trace_hardirqs_off+0x310/0x310
[  353.569826]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  353.574938]  ? prepare_exit_to_usermode+0x291/0x3b0
[  353.579940]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  353.584801]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  353.589978] RIP: 0033:0x457679
[  353.593162] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  353.612220] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  353.619912] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  353.627163] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  353.634427] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  353.641682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  353.648949] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000028
03:33:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x7fff, 0xc40)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000500)={{{@in6=@mcast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@remote}, 0x0, @in6=@mcast2}}, &(0x7f0000000480)=0xe8)
sendmsg$can_raw(r2, &(0x7f00000006c0)={&(0x7f0000000600)={0x1d, r3}, 0x10, &(0x7f0000000680)={&(0x7f0000000640)=@can={{0x1, 0x200, 0x6c3, 0xffffffffffffff4e}, 0x4, 0x2, 0x0, 0x0, "2766d0c319168ccd"}, 0x10}, 0x1, 0x0, 0x0, 0x20040000}, 0x44)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
pipe2(&(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4000)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240)='nbd\x00')
sendmsg$NBD_CMD_STATUS(r4, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0x88, r6, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x4}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2b}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x4}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xd8c}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0xff}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xfffffffffffff2bc}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x40000c1)
r7 = gettid()
kcmp$KCMP_EPOLL_TFD(r7, r7, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
setsockopt$inet_sctp6_SCTP_NODELAY(r2, 0x84, 0x3, &(0x7f0000000780)=0x1ff, 0x4)
move_pages(r7, 0x5, &(0x7f0000000700)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil], 0x0, &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4)
r8 = syz_open_pts(r0, 0x0)
open$dir(&(0x7f00000004c0)='./file0/../file0\x00', 0x2080, 0x1a4)
ioctl$TCXONC(r8, 0x540a, 0x0)
ioctl$TIOCSCTTY(r5, 0x540e, 0x4)

03:33:29 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip_vti0\x00', 0x200})
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x184)
ioctl$KVM_ASSIGN_PCI_DEVICE(r0, 0x8040ae69, &(0x7f00000000c0)={0x5, 0x7, 0x8, 0x4, 0x33})

03:33:29 executing program 5 (fault-call:5 fault-nth:41):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:29 executing program 2:

03:33:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x5421, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:29 executing program 1:

[  353.871892] FAULT_INJECTION: forcing a failure.
[  353.871892] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  353.889727] CPU: 1 PID: 15816 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  353.898253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  353.898259] Call Trace:
[  353.898283]  dump_stack+0x1d3/0x2c4
[  353.898303]  ? dump_stack_print_info.cold.2+0x52/0x52
[  353.898322]  ? graph_lock+0x170/0x170
[  353.898350]  should_fail.cold.4+0xa/0x17
[  353.898372]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  353.910322]  ? graph_lock+0x170/0x170
[  353.919125]  ? graph_lock+0x170/0x170
[  353.919148]  ? percpu_ref_put_many+0x11c/0x260
[  353.919165]  ? lock_downgrade+0x900/0x900
[  353.919185]  ? check_preemption_disabled+0x48/0x200
[  353.948516]  ? __lock_is_held+0xb5/0x140
[  353.948540]  ? check_preemption_disabled+0x48/0x200
[  353.948559]  ? lock_release+0x970/0x970
[  353.957609]  ? ttwu_stat+0x5c0/0x5c0
[  353.957628]  ? __lock_is_held+0xb5/0x140
[  353.957649]  ? __might_sleep+0x95/0x190
[  353.978342]  __alloc_pages_nodemask+0x34b/0xdd0
[  353.983014]  ? lock_downgrade+0x900/0x900
[  353.987157]  ? check_preemption_disabled+0x48/0x200
[  353.987177]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  353.997180]  ? kasan_check_read+0x11/0x20
[  354.001346]  ? graph_lock+0x170/0x170
[  354.005168]  ? rcu_softirq_qs+0x20/0x20
[  354.009166]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  354.014712]  ? check_preemption_disabled+0x48/0x200
[  354.019787]  ? __lock_is_held+0xb5/0x140
[  354.023869]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  354.023890]  alloc_pages_current+0x10c/0x210
[  354.023908]  __get_free_pages+0xc/0x40
[  354.033829]  mmu_topup_memory_caches+0x1ee/0x390
[  354.033851]  kvm_mmu_load+0x21/0xfa0
[  354.033869]  ? kvm_sched_in+0x82/0xa0
[  354.033891]  vcpu_enter_guest+0x3e9d/0x6260
[  354.046228]  ? preempt_notifier_register+0x200/0x200
[  354.046245]  ? __switch_to_asm+0x34/0x70
[  354.046272]  ? __switch_to_asm+0x34/0x70
[  354.046295]  ? emulator_read_emulated+0x50/0x50
[  354.054387]  ? __switch_to_asm+0x34/0x70
[  354.054404]  ? __switch_to_asm+0x34/0x70
[  354.054417]  ? __switch_to_asm+0x40/0x70
[  354.054435]  ? __schedule+0x874/0x1ed0
[  354.063576]  ? graph_lock+0x170/0x170
[  354.063592]  ? lock_downgrade+0x900/0x900
[  354.063614]  ? check_preemption_disabled+0x48/0x200
[  354.072320]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  354.072339]  ? check_preemption_disabled+0x48/0x200
[  354.072365]  ? __lock_is_held+0xb5/0x140
[  354.072387]  ? lock_acquire+0x1ed/0x520
[  354.096359]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  354.112033]  ? lock_release+0x970/0x970
[  354.112047]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  354.112064]  ? preempt_schedule_common+0x1f/0xd0
[  354.139073]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  354.139090]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  354.148928]  kvm_vcpu_ioctl+0x5c8/0x1150
[  354.148945]  ? kvm_vcpu_block+0x1020/0x1020
[  354.148967]  ? find_held_lock+0x36/0x1c0
[  354.161378]  ? __fget+0x4aa/0x740
[  354.164845]  ? check_preemption_disabled+0x48/0x200
[  354.169877]  ? kasan_check_read+0x11/0x20
[  354.174028]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  354.174043]  ? rcu_softirq_qs+0x20/0x20
[  354.174070]  ? __fget+0x4d1/0x740
[  354.186758]  ? ksys_dup3+0x680/0x680
[  354.190480]  ? find_held_lock+0x36/0x1c0
[  354.194559]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  354.199501]  ? kvm_vcpu_block+0x1020/0x1020
[  354.199521]  do_vfs_ioctl+0x1de/0x1720
[  354.199537]  ? __lock_is_held+0xb5/0x140
[  354.199560]  ? ioctl_preallocate+0x300/0x300
[  354.216353]  ? __fget_light+0x2e9/0x430
[  354.220331]  ? fget_raw+0x20/0x20
[  354.220351]  ? __sb_end_write+0xd9/0x110
[  354.220374]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  354.220386]  ? fput+0x130/0x1a0
[  354.220408]  ? do_syscall_64+0x9a/0x820
[  354.227889]  ? do_syscall_64+0x9a/0x820
[  354.227907]  ? lockdep_hardirqs_on+0x421/0x5c0
[  354.227926]  ? security_file_ioctl+0x94/0xc0
[  354.227945]  ksys_ioctl+0xa9/0xd0
[  354.227960]  __x64_sys_ioctl+0x73/0xb0
[  354.240763]  do_syscall_64+0x1b9/0x820
[  354.240780]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  354.240799]  ? syscall_return_slowpath+0x5e0/0x5e0
[  354.249345]  ? trace_hardirqs_off+0x310/0x310
[  354.249363]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  354.249379]  ? recalc_sigpending_tsk+0x180/0x180
[  354.249394]  ? kasan_check_write+0x14/0x20
[  354.249413]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  354.257252]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  354.257280] RIP: 0033:0x457679
03:33:30 executing program 1:

03:33:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x8040ae9f, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:30 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
r2 = add_key(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000380)="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", 0xff, 0xfffffffffffffffc)
r3 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000240)={0x73, 0x79, 0x7a, 0x0}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$instantiate(0xc, r2, 0x0, 0x0, r3)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r5 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)

03:33:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4040aea0, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:30 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ppp\x00', 0x400000, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
clock_settime(0x0, &(0x7f0000000840))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2c240, 0x1)
getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000440), &(0x7f0000000480)=0x8)
r3 = perf_event_open$cgroup(&(0x7f0000000080)={0x3, 0x70, 0x200, 0x7b9a668a, 0x9, 0x5, 0x0, 0x9, 0xa01, 0x1, 0x0, 0xa8c, 0x125, 0xca, 0x100000000, 0x3800000000000, 0xf49, 0xfffffffffffffed2, 0x20, 0x76, 0xd88, 0x0, 0x40, 0x1, 0x7, 0xd4, 0x1, 0x1128, 0x2, 0x1, 0xfffffffffffff001, 0x69d4ed6, 0x100000000, 0x8, 0x9, 0x0, 0x0, 0xffffffff7fffffff, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000040), 0x941dfc1b29500a5b}, 0x0, 0xfffffffffffffd50, 0x4, 0x7, 0x2, 0x2, 0x851b}, r2, 0x9, r0, 0x0)
r4 = shmget(0x2, 0x1000, 0x10, &(0x7f0000ffc000/0x1000)=nil)
r5 = getuid()
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = getuid()
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, <r8=>0x0}, &(0x7f00000002c0)=0xc)
r9 = fcntl$getown(r3, 0x9)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000300)={<r10=>0x0}, &(0x7f0000000340)=0xc)
shmctl$IPC_SET(r4, 0x1, &(0x7f0000000380)={{0xfd18, r5, r6, r7, r8, 0x10, 0x100000001}, 0x8001, 0x4, 0x9, 0x1ff, r9, r10, 0x623})

03:33:30 executing program 2:

03:33:30 executing program 1:

[  354.257302] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  354.265123] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  354.265140] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  354.265150] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  354.265158] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  354.265171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  354.275676] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 0000000000000029
03:33:30 executing program 2:
pipe2(&(0x7f0000000080)={<r0=>0xffffffffffffffff}, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
write$cgroup_type(r2, &(0x7f0000000000)='threaded\x00', 0xfffffdb9)
fallocate(r1, 0x0, 0x0, 0xfffd)
dup2(r0, r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

03:33:30 executing program 5 (fault-call:5 fault-nth:42):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:30 executing program 0:
r0 = userfaultfd(0x80800)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x2000, 0x1})
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x7ffd, &(0x7f0000000080)={0x0, 0x1c9c380})
r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x6, 0x10041)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x4, 0x2, 0x10, "dbb4c6761641ee9aa691228090bc0bb6154f8ee9251becec2a6d7e1bf7105455e0e6466f819146e96aedceb5ea3f00c9d57d43de11d247392f4e73dad0e0acb1", "0fbdd3699130961662ec1f94c5e825ac436a7f9c28f9a1a99797b2a471381cc2", [0x7fffffff, 0xd09]})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000480)="2f6465762f76637323003f178253b71659317a66a48deb06004ccdd2f7a665d141169156752ae165b6de5b116e7e49a2ebb24cb78f67fa490000000000000000141e861c4b1f08b77c0fc8317ad0fba00fc226d5b22af684fa4975adfafb7199d3b64e5ce015678b9c511d8dc2f8a17a8a0e57fe1ad56990f3b729a8b36e019f147dc02b472c6ce8d9b3c1648c224c2f530f5ecb1352b7c4a5e88a45fd")

03:33:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x41a0ae8d, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

03:33:30 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cast5)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="0a0775b005", 0x5)
r1 = accept$alg(r0, 0x0, 0x0)
write$UHID_CREATE(r1, &(0x7f0000000340)={0x0, 'syz1\x00', 'syz1\x00', 'syz1\x00', &(0x7f00000007c0)=""/4096, 0x1000}, 0x120)
recvmsg(r1, &(0x7f0000000740)={&(0x7f0000000140)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000500)=""/142, 0x8e}, {&(0x7f00000005c0)=""/63, 0x200005ff}], 0x2}, 0x0)

[  354.579355] FAULT_INJECTION: forcing a failure.
[  354.579355] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  354.601239] CPU: 1 PID: 15859 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  354.609865] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  354.619218] Call Trace:
[  354.619243]  dump_stack+0x1d3/0x2c4
[  354.619267]  ? dump_stack_print_info.cold.2+0x52/0x52
[  354.619285]  ? graph_lock+0x170/0x170
[  354.619308]  should_fail.cold.4+0xa/0x17
[  354.619326]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  354.638526]  ? graph_lock+0x170/0x170
[  354.638544]  ? graph_lock+0x170/0x170
[  354.638562]  ? percpu_ref_put_many+0x11c/0x260
[  354.638578]  ? lock_downgrade+0x900/0x900
[  354.647457]  ? check_preemption_disabled+0x48/0x200
[  354.647489]  ? __lock_is_held+0xb5/0x140
[  354.660511]  ? check_preemption_disabled+0x48/0x200
[  354.660532]  ? lock_release+0x970/0x970
03:33:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc0045878, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  354.660549]  ? ttwu_stat+0x5c0/0x5c0
[  354.660576]  ? __lock_is_held+0xb5/0x140
[  354.660595]  ? __might_sleep+0x95/0x190
[  354.669685]  __alloc_pages_nodemask+0x34b/0xdd0
[  354.669710]  ? lock_downgrade+0x900/0x900
[  354.669725]  ? check_preemption_disabled+0x48/0x200
[  354.669744]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  354.678718]  ? kasan_check_read+0x11/0x20
[  354.686454]  ? graph_lock+0x170/0x170
[  354.686470]  ? rcu_softirq_qs+0x20/0x20
[  354.686488]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  354.686505]  ? check_preemption_disabled+0x48/0x200
[  354.731695]  ? __lock_is_held+0xb5/0x140
[  354.735795]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  354.741347]  alloc_pages_current+0x10c/0x210
[  354.745851]  __get_free_pages+0xc/0x40
[  354.749744]  mmu_topup_memory_caches+0x1ee/0x390
[  354.754505]  kvm_mmu_load+0x21/0xfa0
[  354.758238]  vcpu_enter_guest+0x3e9d/0x6260
[  354.762583]  ? emulator_read_emulated+0x50/0x50
[  354.767280]  ? vmx_vcpu_load+0xb06/0x1030
[  354.771436]  ? vmx_write_tsc_offset+0x670/0x670
[  354.776127]  ? graph_lock+0x170/0x170
[  354.779934]  ? lock_downgrade+0x900/0x900
[  354.784084]  ? check_preemption_disabled+0x48/0x200
[  354.789121]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  354.794661]  ? check_preemption_disabled+0x48/0x200
[  354.799708]  ? __lock_is_held+0xb5/0x140
[  354.803799]  ? lock_acquire+0x1ed/0x520
[  354.807778]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  354.812895]  ? lock_release+0x970/0x970
[  354.816873]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  354.822157]  ? kvm_arch_dev_ioctl+0x630/0x630
[  354.826656]  ? preempt_notifier_dec+0x20/0x20
[  354.831182]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  354.836032]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  354.841069]  kvm_vcpu_ioctl+0x5c8/0x1150
[  354.845139]  ? kvm_vcpu_block+0x1020/0x1020
[  354.849484]  ? find_held_lock+0x36/0x1c0
[  354.853568]  ? __fget+0x4aa/0x740
[  354.857025]  ? check_preemption_disabled+0x48/0x200
[  354.862050]  ? kasan_check_read+0x11/0x20
[  354.866208]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  354.871498]  ? rcu_softirq_qs+0x20/0x20
[  354.875505]  ? __fget+0x4d1/0x740
[  354.878970]  ? ksys_dup3+0x680/0x680
[  354.882695]  ? find_held_lock+0x36/0x1c0
[  354.886767]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  354.891713]  ? kvm_vcpu_block+0x1020/0x1020
[  354.896060]  do_vfs_ioctl+0x1de/0x1720
[  354.899951]  ? __lock_is_held+0xb5/0x140
[  354.904020]  ? ioctl_preallocate+0x300/0x300
[  354.908452]  ? __fget_light+0x2e9/0x430
[  354.912439]  ? fget_raw+0x20/0x20
[  354.916019]  ? __sb_end_write+0xd9/0x110
[  354.920089]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  354.925627]  ? fput+0x130/0x1a0
[  354.928907]  ? do_syscall_64+0x9a/0x820
[  354.932882]  ? do_syscall_64+0x9a/0x820
[  354.937132]  ? lockdep_hardirqs_on+0x421/0x5c0
[  354.941724]  ? security_file_ioctl+0x94/0xc0
[  354.946144]  ksys_ioctl+0xa9/0xd0
[  354.949603]  __x64_sys_ioctl+0x73/0xb0
[  354.953494]  do_syscall_64+0x1b9/0x820
[  354.957387]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  354.962755]  ? syscall_return_slowpath+0x5e0/0x5e0
[  354.967696]  ? trace_hardirqs_off+0x310/0x310
[  354.972219]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  354.977245]  ? recalc_sigpending_tsk+0x180/0x180
[  354.982002]  ? kasan_check_write+0x14/0x20
[  354.986251]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  354.991121]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  354.996328] RIP: 0033:0x457679
[  354.999561] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  355.018545] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
03:33:31 executing program 5 (fault-call:5 fault-nth:43):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getuid()

03:33:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r0}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r3 = syz_open_pts(r0, 0x0)
ioctl$TCXONC(r3, 0x540a, 0x0)

[  355.018559] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  355.018567] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  355.018573] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  355.018579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  355.018586] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000002a
03:33:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000000840)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, &(0x7f0000000340)=ANY=[])
socket$inet6(0xa, 0x0, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fchdir(r0)
open$dir(&(0x7f0000000240)='./file0\x00', 0x80440, 0x0)
getdents(r0, &(0x7f0000000a40)=""/59, 0x3b)

03:33:31 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clock_settime(0x0, &(0x7f0000000840))
r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x4, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x20, 0x8, 0x6, 0x6963, 0x9, 0x10001, 0x2, 0x3, 0x3, 0x117})

[  355.132639] FAULT_INJECTION: forcing a failure.
[  355.132639] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  355.192794] CPU: 0 PID: 15877 Comm: syz-executor5 Not tainted 4.19.0-rc4-next-20180921+ #77
[  355.201367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  355.210728] Call Trace:
[  355.213325]  dump_stack+0x1d3/0x2c4
[  355.216966]  ? dump_stack_print_info.cold.2+0x52/0x52
[  355.222168]  ? graph_lock+0x170/0x170
[  355.226003]  should_fail.cold.4+0xa/0x17
[  355.230078]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[  355.235206]  ? graph_lock+0x170/0x170
[  355.239013]  ? graph_lock+0x170/0x170
[  355.242825]  ? percpu_ref_put_many+0x11c/0x260
[  355.247432]  ? lock_downgrade+0x900/0x900
[  355.251596]  ? check_preemption_disabled+0x48/0x200
[  355.256658]  ? __lock_is_held+0xb5/0x140
[  355.260736]  ? check_preemption_disabled+0x48/0x200
[  355.265759]  ? lock_release+0x970/0x970
[  355.269755]  ? ttwu_stat+0x5c0/0x5c0
[  355.273486]  ? __lock_is_held+0xb5/0x140
[  355.277555]  ? __might_sleep+0x95/0x190
[  355.281539]  __alloc_pages_nodemask+0x34b/0xdd0
[  355.286212]  ? lock_downgrade+0x900/0x900
[  355.290365]  ? check_preemption_disabled+0x48/0x200
[  355.295396]  ? __alloc_pages_slowpath+0x2de0/0x2de0
[  355.300420]  ? kasan_check_read+0x11/0x20
[  355.304575]  ? graph_lock+0x170/0x170
[  355.308390]  ? rcu_softirq_qs+0x20/0x20
[  355.312374]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  355.317922]  ? check_preemption_disabled+0x48/0x200
[  355.322982]  ? __lock_is_held+0xb5/0x140
[  355.327061]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  355.332607]  alloc_pages_current+0x10c/0x210
[  355.337116]  __get_free_pages+0xc/0x40
[  355.341010]  mmu_topup_memory_caches+0x1ee/0x390
[  355.345774]  kvm_mmu_load+0x21/0xfa0
[  355.349503]  vcpu_enter_guest+0x3e9d/0x6260
[  355.353836]  ? emulator_read_emulated+0x50/0x50
[  355.358515]  ? vmx_vcpu_load+0xb06/0x1030
[  355.362674]  ? vmx_write_tsc_offset+0x670/0x670
[  355.367356]  ? graph_lock+0x170/0x170
[  355.371335]  ? lock_downgrade+0x900/0x900
[  355.375488]  ? check_preemption_disabled+0x48/0x200
[  355.380523]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  355.386076]  ? check_preemption_disabled+0x48/0x200
[  355.391117]  ? __lock_is_held+0xb5/0x140
[  355.395188]  ? lock_acquire+0x1ed/0x520
[  355.399164]  ? kvm_arch_vcpu_ioctl_run+0x22f/0x16e0
[  355.404194]  ? lock_release+0x970/0x970
[  355.408174]  ? kvm_arch_vcpu_ioctl_set_fpu+0x340/0x340
[  355.413470]  ? kvm_arch_dev_ioctl+0x630/0x630
[  355.417980]  ? preempt_notifier_dec+0x20/0x20
[  355.422526]  kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  355.427373]  ? kvm_arch_vcpu_ioctl_run+0x370/0x16e0
[  355.432399]  kvm_vcpu_ioctl+0x5c8/0x1150
[  355.432419]  ? kvm_vcpu_block+0x1020/0x1020
[  355.432442]  ? find_held_lock+0x36/0x1c0
[  355.432464]  ? __fget+0x4aa/0x740
[  355.432482]  ? check_preemption_disabled+0x48/0x200
[  355.440830]  ? kasan_check_read+0x11/0x20
[  355.440842]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  355.440853]  ? rcu_softirq_qs+0x20/0x20
[  355.440874]  ? __fget+0x4d1/0x740
[  355.440892]  ? ksys_dup3+0x680/0x680
[  355.440903]  ? find_held_lock+0x36/0x1c0
[  355.440919]  ? __mutex_unlock_slowpath+0x197/0x8c0
[  355.440936]  ? kvm_vcpu_block+0x1020/0x1020
[  355.440953]  do_vfs_ioctl+0x1de/0x1720
[  355.491459]  ? __lock_is_held+0xb5/0x140
[  355.495590]  ? ioctl_preallocate+0x300/0x300
[  355.499986]  ? __fget_light+0x2e9/0x430
[  355.504034]  ? fget_raw+0x20/0x20
[  355.507494]  ? __sb_end_write+0xd9/0x110
[  355.511546]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  355.517068]  ? fput+0x130/0x1a0
[  355.520333]  ? do_syscall_64+0x9a/0x820
[  355.524289]  ? do_syscall_64+0x9a/0x820
[  355.528245]  ? lockdep_hardirqs_on+0x421/0x5c0
[  355.532811]  ? security_file_ioctl+0x94/0xc0
[  355.537206]  ksys_ioctl+0xa9/0xd0
[  355.540645]  __x64_sys_ioctl+0x73/0xb0
[  355.544517]  do_syscall_64+0x1b9/0x820
[  355.548390]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  355.553837]  ? syscall_return_slowpath+0x5e0/0x5e0
[  355.558756]  ? trace_hardirqs_off+0x310/0x310
[  355.563235]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  355.568247]  ? recalc_sigpending_tsk+0x180/0x180
[  355.573169]  ? kasan_check_write+0x14/0x20
[  355.577391]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  355.582221]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  355.587402] RIP: 0033:0x457679
[  355.590597] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  355.609483] RSP: 002b:00007f24c9114c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  355.617202] RAX: ffffffffffffffda RBX: 00007f24c91156d4 RCX: 0000000000457679
[  355.624453] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  355.631707] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
03:33:31 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0x10000000000062)
read(r0, &(0x7f0000000040)=""/11, 0xb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))
r2 = gettid()
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rtc0\x00', 0x0, 0x0)
ioctl$RTC_IRQP_READ(r3, 0x8008700b, &(0x7f0000000240))
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0x7, 0x7fff, 0x6, 0x9, 0x7, 0x0, 0x6, 0x3, 0xba, 0x6, 0xffff, 0x1f})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000000)={r1, r0})
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, &(0x7f0000000300)={0x0, 0x1c9c380}, &(0x7f0000000340), 0x8)
r4 = syz_open_pts(r0, 0x0)
ioctl$PIO_FONTX(r4, 0x4b6c, &(0x7f0000000080)="788fb93f525beb6456b7b2a04ed699727983d80294f650553fae506a7b9724b30f4abe1cf7")
ioctl$TCXONC(r4, 0x540a, 0x0)

03:33:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4080aebf, &(0x7f0000000140)={0x7b, 0xbff, [0xc001001b]})

[  355.638967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  355.646218] R13: 00000000004d02e0 R14: 00000000004c0188 R15: 000000000000002b
[  355.731523] ==================================================================
[  355.739345] BUG: KASAN: use-after-free in finish_task_switch+0x78e/0x900
[  355.746191] Read of size 8 at addr ffff88018fce8d58 by task syz-executor4/15911
[  355.753629] 
[  355.755251] CPU: 0 PID: 15911 Comm: syz-executor4 Not tainted 4.19.0-rc4-next-20180921+ #77
[  355.763737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  355.773088] Call Trace:
[  355.775668]  dump_stack+0x1d3/0x2c4
[  355.779279]  ? dump_stack_print_info.cold.2+0x52/0x52
[  355.784451]  ? printk+0xa7/0xcf
[  355.787717]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[  355.792467]  print_address_description.cold.8+0x9/0x1ff
[  355.797815]  kasan_report.cold.9+0x242/0x309
[  355.802210]  ? finish_task_switch+0x78e/0x900
[  355.806695]  __asan_report_load8_noabort+0x14/0x20
[  355.811611]  finish_task_switch+0x78e/0x900
[  355.815945]  ? __switch_to_asm+0x40/0x70
[  355.819987]  ? __switch_to_asm+0x34/0x70
[  355.824036]  ? preempt_notifier_register+0x200/0x200
[  355.829123]  ? __switch_to_asm+0x34/0x70
[  355.833170]  ? __switch_to_asm+0x34/0x70
[  355.837213]  ? __switch_to_asm+0x40/0x70
[  355.841257]  ? __switch_to_asm+0x34/0x70
[  355.845300]  ? __switch_to_asm+0x40/0x70
[  355.849347]  ? __switch_to_asm+0x34/0x70
[  355.853389]  ? __switch_to_asm+0x40/0x70
[  355.857432]  ? __switch_to_asm+0x34/0x70
[  355.861472]  ? __switch_to_asm+0x34/0x70
[  355.865516]  ? __switch_to_asm+0x40/0x70
[  355.869557]  ? __switch_to_asm+0x34/0x70
[  355.873624]  ? __switch_to_asm+0x40/0x70
[  355.877794]  ? __switch_to_asm+0x34/0x70
[  355.881836]  ? __switch_to_asm+0x40/0x70
[  355.885879]  __schedule+0x874/0x1ed0
[  355.889576]  ? __init_rwsem+0x1cc/0x2a0
[  355.893539]  ? __sched_text_start+0x8/0x8
[  355.897674]  ? mark_held_locks+0xc7/0x130
[  355.901824]  ? preempt_schedule_irq+0x5e/0x110
[  355.906387]  ? preempt_schedule_irq+0x5e/0x110
[  355.910966]  ? lockdep_hardirqs_on+0x421/0x5c0
[  355.915620]  ? lock_downgrade+0x900/0x900
[  355.919765]  ? retint_kernel+0x1b/0x2d
[  355.923641]  ? trace_hardirqs_off_caller+0x300/0x300
[  355.928728]  ? mark_held_locks+0xc7/0x130
[  355.932861]  preempt_schedule_irq+0x87/0x110
[  355.937252]  retint_kernel+0x1b/0x2d
[  355.940950] RIP: 0010:qlist_free_all+0x118/0x140
[  355.945707] Code: 57 9d 0f 1f 44 00 00 eb af 48 89 df e8 21 70 77 ff 48 b9 00 00 00 00 00 ea ff ff 48 c1 e8 0c 48 c1 e0 06 48 01 c8 48 8b 50 08 <48> 8d 4a ff 83 e2 01 48 0f 45 c1 4c 8b 78 18 e9 04 ff ff ff 0f 0b
[  355.964614] RSP: 0018:ffff880196957560 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  355.972313] RAX: ffffea00075c3480 RBX: ffff8801d70d2a80 RCX: ffffea0000000000
[  355.979562] RDX: ffffea00076176c8 RSI: ffffffff81384f96 RDI: 0000000000000007
[  355.986819] RBP: ffff880196957590 R08: ffff880194edc180 R09: 0000000000000006
[  355.994072] R10: 0000000000000000 R11: ffff880194edc180 R12: 0000000000000000
[  356.001324] R13: ffff8801c9cbe000 R14: ffff8801d70d2a80 R15: 0000000000000000
[  356.008607]  ? __phys_addr+0xa6/0x120
[  356.012418]  quarantine_reduce+0x163/0x1a0
[  356.016652]  kasan_kmalloc+0x9b/0xe0
[  356.020457]  kasan_slab_alloc+0x12/0x20
[  356.024423]  kmem_cache_alloc+0x11b/0x730
[  356.028562]  alloc_inode+0xb2/0x190
[  356.032179]  new_inode_pseudo+0x71/0x1a0
[  356.036222]  ? prune_icache_sb+0x1c0/0x1c0
[  356.040467]  ? down_read+0x120/0x120
[  356.044188]  ? mntput+0x74/0xa0
[  356.047457]  new_inode+0x1c/0x40
[  356.050810]  debugfs_get_inode+0x19/0x120
[  356.054944]  __debugfs_create_file+0xb5/0x400
[  356.059535]  debugfs_create_file+0x57/0x70
[  356.063761]  kvm_dev_ioctl+0xc0a/0x1ae0
[  356.067721]  ? is_bpf_text_address+0xac/0x170
[  356.072205]  ? kvm_debugfs_release+0x90/0x90
[  356.076599]  ? graph_lock+0x170/0x170
[  356.080403]  ? do_futex+0x249/0x26d0
[  356.084099]  ? rcu_softirq_qs+0x20/0x20
[  356.088058]  ? rcu_softirq_qs+0x20/0x20
[  356.092014]  ? unwind_dump+0x190/0x190
[  356.095892]  ? find_held_lock+0x36/0x1c0
[  356.099961]  ? __fget+0x4aa/0x740
[  356.103420]  ? lock_downgrade+0x900/0x900
[  356.107587]  ? check_preemption_disabled+0x48/0x200
[  356.112601]  ? kasan_check_read+0x11/0x20
[  356.116740]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  356.122132]  ? rcu_softirq_qs+0x20/0x20
[  356.126214]  ? ksys_dup3+0x680/0x680
[  356.129998]  ? kasan_check_write+0x14/0x20
[  356.134215]  ? trace_hardirqs_off+0xb8/0x310
[  356.138610]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  356.144223]  ? kvm_debugfs_release+0x90/0x90
[  356.148616]  do_vfs_ioctl+0x1de/0x1720
[  356.152684]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  356.158203]  ? ioctl_preallocate+0x300/0x300
[  356.162598]  ? __fget_light+0x2e9/0x430
[  356.166565]  ? fget_raw+0x20/0x20
[  356.170009]  ? putname+0xf2/0x130
[  356.173444]  ? rcu_read_lock_sched_held+0x108/0x120
[  356.178458]  ? kmem_cache_free+0x24f/0x290
[  356.182684]  ? __x64_sys_futex+0x47f/0x6a0
[  356.186928]  ? do_syscall_64+0x9a/0x820
[  356.190883]  ? do_syscall_64+0x9a/0x820
[  356.194842]  ? lockdep_hardirqs_on+0x421/0x5c0
[  356.199414]  ? security_file_ioctl+0x94/0xc0
[  356.203812]  ksys_ioctl+0xa9/0xd0
[  356.207247]  __x64_sys_ioctl+0x73/0xb0
[  356.211121]  do_syscall_64+0x1b9/0x820
[  356.215001]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  356.220364]  ? syscall_return_slowpath+0x5e0/0x5e0
[  356.225281]  ? trace_hardirqs_off+0x310/0x310
[  356.229761]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  356.234761]  ? recalc_sigpending_tsk+0x180/0x180
[  356.239522]  ? kasan_check_write+0x14/0x20
[  356.243750]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  356.248593]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  356.253783] RIP: 0033:0x457679
[  356.256981] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  356.275864] RSP: 002b:00007fa1c029dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  356.283562] RAX: ffffffffffffffda RBX: 00007fa1c029e6d4 RCX: 0000000000457679
[  356.290812] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006
[  356.298063] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  356.305318] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  356.312670] R13: 00000000004cfe90 R14: 00000000004bfd7b R15: 0000000000000000
[  356.319961] 
[  356.321584] Allocated by task 15911:
[  356.325464]  save_stack+0x43/0xd0
[  356.328905]  kasan_kmalloc+0xc7/0xe0
[  356.332612]  kasan_slab_alloc+0x12/0x20
[  356.336580]  kmem_cache_alloc+0x12e/0x730
[  356.340849]  vmx_create_vcpu+0xcf/0x25c0
[  356.344906]  kvm_arch_vcpu_create+0xe5/0x220
[  356.349295]  kvm_vm_ioctl+0x472/0x1d60
[  356.353167]  do_vfs_ioctl+0x1de/0x1720
[  356.357036]  ksys_ioctl+0xa9/0xd0
[  356.360490]  __x64_sys_ioctl+0x73/0xb0
[  356.364404]  do_syscall_64+0x1b9/0x820
[  356.368278]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  356.373456] 
[  356.375066] Freed by task 15907:
[  356.378434]  save_stack+0x43/0xd0
[  356.381881]  __kasan_slab_free+0x102/0x150
[  356.386097]  kasan_slab_free+0xe/0x10
[  356.389881]  kmem_cache_free+0x83/0x290
[  356.393840]  vmx_free_vcpu+0x26b/0x300
[  356.397829]  kvm_arch_destroy_vm+0x365/0x7c0
[  356.402238]  kvm_put_kvm+0x6c8/0xff0
[  356.405945]  kvm_vcpu_release+0x7b/0xa0
[  356.409908]  __fput+0x3bc/0xa70
[  356.413278]  ____fput+0x15/0x20
[  356.416548]  task_work_run+0x1e8/0x2a0
[  356.420420]  exit_to_usermode_loop+0x318/0x380
[  356.424996]  do_syscall_64+0x6be/0x820
[  356.428879]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  356.434050] 
[  356.435667] The buggy address belongs to the object at ffff88018fce8d40
[  356.435667]  which belongs to the cache kvm_vcpu(17:syz4) of size 23872
[  356.449003] The buggy address is located 24 bytes inside of
[  356.449003]  23872-byte region [ffff88018fce8d40, ffff88018fceea80)
[  356.460955] The buggy address belongs to the page:
[  356.465872] page:ffffea00063f3a00 count:1 mapcount:0 mapping:ffff8801d90bde40 index:0x0 compound_mapcount: 0
[  356.475854] flags: 0x2fffc0000010200(slab|head)
[  356.480510] raw: 02fffc0000010200 ffffea0006292a08 ffffea0006e76a08 ffff8801d90bde40
[  356.488848] raw: 0000000000000000 ffff88018fce8d40 0000000100000001 ffff88019311c040
[  356.497074] page dumped because: kasan: bad access detected
[  356.502779] page->mem_cgroup:ffff88019311c040
[  356.507254] 
[  356.508875] Memory state around the buggy address:
[  356.513787]  ffff88018fce8c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  356.521128]  ffff88018fce8c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  356.528480] >ffff88018fce8d00: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[  356.535835]                                                     ^
[  356.542061]  ffff88018fce8d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  356.549413]  ffff88018fce8e00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  356.556761] ==================================================================
[  356.564185] Disabling lock debugging due to kernel taint
[  356.570026] Kernel panic - not syncing: panic_on_warn set ...
[  356.570026] 
[  356.577400] CPU: 0 PID: 15911 Comm: syz-executor4 Tainted: G    B             4.19.0-rc4-next-20180921+ #77
[  356.587272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  356.596607] Call Trace:
[  356.599181]  dump_stack+0x1d3/0x2c4
[  356.602794]  ? dump_stack_print_info.cold.2+0x52/0x52
[  356.607972]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  356.612713]  panic+0x238/0x4e7
[  356.615887]  ? add_taint.cold.5+0x16/0x16
[  356.620132]  ? trace_hardirqs_on+0xb4/0x310
[  356.624440]  kasan_end_report+0x47/0x4f
[  356.628398]  kasan_report.cold.9+0x76/0x309
[  356.632715]  ? finish_task_switch+0x78e/0x900
[  356.637194]  __asan_report_load8_noabort+0x14/0x20
[  356.642103]  finish_task_switch+0x78e/0x900
[  356.646407]  ? __switch_to_asm+0x40/0x70
[  356.650449]  ? __switch_to_asm+0x34/0x70
[  356.654496]  ? preempt_notifier_register+0x200/0x200
[  356.659589]  ? __switch_to_asm+0x34/0x70
[  356.663641]  ? __switch_to_asm+0x34/0x70
[  356.667697]  ? __switch_to_asm+0x40/0x70
[  356.671741]  ? __switch_to_asm+0x34/0x70
[  356.675780]  ? __switch_to_asm+0x40/0x70
[  356.679824]  ? __switch_to_asm+0x34/0x70
[  356.683864]  ? __switch_to_asm+0x40/0x70
[  356.688005]  ? __switch_to_asm+0x34/0x70
[  356.692046]  ? __switch_to_asm+0x34/0x70
[  356.696088]  ? __switch_to_asm+0x40/0x70
[  356.700132]  ? __switch_to_asm+0x34/0x70
[  356.704173]  ? __switch_to_asm+0x40/0x70
[  356.708217]  ? __switch_to_asm+0x34/0x70
[  356.712271]  ? __switch_to_asm+0x40/0x70
[  356.716331]  __schedule+0x874/0x1ed0
[  356.720026]  ? __init_rwsem+0x1cc/0x2a0
[  356.723983]  ? __sched_text_start+0x8/0x8
[  356.728116]  ? mark_held_locks+0xc7/0x130
[  356.732245]  ? preempt_schedule_irq+0x5e/0x110
[  356.736807]  ? preempt_schedule_irq+0x5e/0x110
[  356.741371]  ? lockdep_hardirqs_on+0x421/0x5c0
[  356.745944]  ? lock_downgrade+0x900/0x900
[  356.750074]  ? retint_kernel+0x1b/0x2d
[  356.753948]  ? trace_hardirqs_off_caller+0x300/0x300
[  356.759164]  ? mark_held_locks+0xc7/0x130
[  356.763305]  preempt_schedule_irq+0x87/0x110
[  356.767698]  retint_kernel+0x1b/0x2d
[  356.771395] RIP: 0010:qlist_free_all+0x118/0x140
[  356.776233] Code: 57 9d 0f 1f 44 00 00 eb af 48 89 df e8 21 70 77 ff 48 b9 00 00 00 00 00 ea ff ff 48 c1 e8 0c 48 c1 e0 06 48 01 c8 48 8b 50 08 <48> 8d 4a ff 83 e2 01 48 0f 45 c1 4c 8b 78 18 e9 04 ff ff ff 0f 0b
[  356.795203] RSP: 0018:ffff880196957560 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13
[  356.802911] RAX: ffffea00075c3480 RBX: ffff8801d70d2a80 RCX: ffffea0000000000
[  356.810173] RDX: ffffea00076176c8 RSI: ffffffff81384f96 RDI: 0000000000000007
[  356.817445] RBP: ffff880196957590 R08: ffff880194edc180 R09: 0000000000000006
[  356.824695] R10: 0000000000000000 R11: ffff880194edc180 R12: 0000000000000000
[  356.831946] R13: ffff8801c9cbe000 R14: ffff8801d70d2a80 R15: 0000000000000000
[  356.839206]  ? __phys_addr+0xa6/0x120
[  356.842994]  quarantine_reduce+0x163/0x1a0
[  356.847214]  kasan_kmalloc+0x9b/0xe0
[  356.850911]  kasan_slab_alloc+0x12/0x20
[  356.854866]  kmem_cache_alloc+0x11b/0x730
[  356.859002]  alloc_inode+0xb2/0x190
[  356.862613]  new_inode_pseudo+0x71/0x1a0
[  356.866661]  ? prune_icache_sb+0x1c0/0x1c0
[  356.870881]  ? down_read+0x120/0x120
[  356.874575]  ? mntput+0x74/0xa0
[  356.877838]  new_inode+0x1c/0x40
[  356.881185]  debugfs_get_inode+0x19/0x120
[  356.885314]  __debugfs_create_file+0xb5/0x400
[  356.889794]  debugfs_create_file+0x57/0x70
[  356.894018]  kvm_dev_ioctl+0xc0a/0x1ae0
[  356.897996]  ? is_bpf_text_address+0xac/0x170
[  356.902502]  ? kvm_debugfs_release+0x90/0x90
[  356.906895]  ? graph_lock+0x170/0x170
[  356.910679]  ? do_futex+0x249/0x26d0
[  356.914373]  ? rcu_softirq_qs+0x20/0x20
[  356.918344]  ? rcu_softirq_qs+0x20/0x20
[  356.922314]  ? unwind_dump+0x190/0x190
[  356.926186]  ? find_held_lock+0x36/0x1c0
[  356.930231]  ? __fget+0x4aa/0x740
[  356.933669]  ? lock_downgrade+0x900/0x900
[  356.937814]  ? check_preemption_disabled+0x48/0x200
[  356.942814]  ? kasan_check_read+0x11/0x20
[  356.946947]  ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170
[  356.952210]  ? rcu_softirq_qs+0x20/0x20
[  356.956177]  ? ksys_dup3+0x680/0x680
[  356.959882]  ? kasan_check_write+0x14/0x20
[  356.964101]  ? trace_hardirqs_off+0xb8/0x310
[  356.968510]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  356.974031]  ? kvm_debugfs_release+0x90/0x90
[  356.978425]  do_vfs_ioctl+0x1de/0x1720
[  356.982306]  ? rcu_lockdep_current_cpu_online+0x1a4/0x210
[  356.987827]  ? ioctl_preallocate+0x300/0x300
[  356.992236]  ? __fget_light+0x2e9/0x430
[  356.996195]  ? fget_raw+0x20/0x20
[  356.999634]  ? putname+0xf2/0x130
[  357.003085]  ? rcu_read_lock_sched_held+0x108/0x120
[  357.008102]  ? kmem_cache_free+0x24f/0x290
[  357.012320]  ? __x64_sys_futex+0x47f/0x6a0
[  357.016544]  ? do_syscall_64+0x9a/0x820
[  357.020504]  ? do_syscall_64+0x9a/0x820
[  357.024469]  ? lockdep_hardirqs_on+0x421/0x5c0
[  357.029044]  ? security_file_ioctl+0x94/0xc0
[  357.033435]  ksys_ioctl+0xa9/0xd0
[  357.036868]  __x64_sys_ioctl+0x73/0xb0
[  357.040750]  do_syscall_64+0x1b9/0x820
[  357.044622]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[  357.049973]  ? syscall_return_slowpath+0x5e0/0x5e0
[  357.054891]  ? trace_hardirqs_off+0x310/0x310
[  357.059370]  ? prepare_exit_to_usermode+0x3b0/0x3b0
[  357.064368]  ? recalc_sigpending_tsk+0x180/0x180
[  357.069125]  ? kasan_check_write+0x14/0x20
[  357.073348]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  357.078182]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  357.083357] RIP: 0033:0x457679
[  357.086552] Code: 1d b4 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  357.105446] RSP: 002b:00007fa1c029dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  357.113147] RAX: ffffffffffffffda RBX: 00007fa1c029e6d4 RCX: 0000000000457679
[  357.120397] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006
[  357.127660] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000
[  357.134910] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  357.142261] R13: 00000000004cfe90 R14: 00000000004bfd7b R15: 0000000000000000
[  357.150734] Kernel Offset: disabled
[  357.154356] Rebooting in 86400 seconds..